ff f7 d8 64 89 01 48
[ 2317.729221] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2317.729243] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2317.729256] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2317.729268] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2317.729279] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2317.729291] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
20:16:51 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xf0ffffff7f0000)

20:16:51 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xe4ffffff, 0x0, 0x0)

20:16:51 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x3f00000000000000)

20:16:51 executing program 1:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet(0x2, 0xa, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getsockname(r1, 0x0, &(0x7f0000000100))
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000440)={{0x1, 0x1, 0x18, <r5=>r0, {0x1}}, './file0\x00'})
io_uring_enter(r5, 0x58a8, 0xffffffff, 0x2, 0x0, 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0xc1)
syz_io_uring_setup(0x44db, &(0x7f0000000340)={0x0, 0x1e6a, 0x21, 0x2, 0x38c, 0x0, r2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f00000003c0), &(0x7f0000000400))
r6 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x803, 0x0)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000000240)={0x53, 0xfffffffffffffffb, 0x3c, 0x1, @buffer={0x0, 0xa, &(0x7f00000000c0)=""/10}, &(0x7f0000000100)="cdc0123818a5503de93e01ee19bf99966eff87cd1a142056cc2d073495569659511930833e73a3dc7cef7efb0fdf26d978247acea99e83514fece55b", &(0x7f0000000180)=""/42, 0x4, 0x6, 0x0, &(0x7f00000001c0)})

20:16:51 executing program 3:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4d, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:16:51 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x480, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:16:51 executing program 7:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x80, 0x0, 0x8001, 0x2, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:17:07 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x500, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:17:07 executing program 1:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x20}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:17:07 executing program 7:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000100), 0x1c1000, 0x0)
syz_io_uring_setup(0x4142, &(0x7f0000000180)={0x0, 0x8bff, 0x20, 0x0, 0x22f, 0x0, r3}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))
ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(0xffffffffffffffff, 0x8008f513, &(0x7f0000000380))
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x1b1000, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f00000000c0))
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = dup3(0xffffffffffffffff, r0, 0x0)
ioctl$sock_SIOCDELDLCI(r5, 0x8981, &(0x7f0000000040)={'bond0\x00', 0x401})
r6 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
read$eventfd(r6, 0x0, 0x0)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000340)=0x2c)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:17:07 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xff000000, 0x0, 0x0)

20:17:07 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x200000000000000)

20:17:07 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x4000000000000000)

20:17:07 executing program 3:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x8, 0x810, r0, 0x8000000)
r4 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x185842, 0x123)
ioctl$FS_IOC_RESVSP(r8, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
r9 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r10=>0x0, &(0x7f0000000140)=<r11=>0x0)
r12 = io_uring_register$IORING_REGISTER_PERSONALITY(r9, 0x9, 0x0, 0x0)
r13 = syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000000180)='./file1\x00', 0x7fff, 0x4, &(0x7f0000000580)=[{&(0x7f0000000240)="ffde77d9f6221e161dee0c355f7f89470e3dea670cd3804a39bb4a31397025a32a238676a401e3a22c9c7d02d03a457b14ebd97fa8086454c5e0f4b17678a09c4a75e29a43e332e953baba2292ea6a", 0x4f, 0xffffffff}, {&(0x7f0000000340)="8b4826c89eaf6fdf38504035f12158d2e6cecc136d65c8d6aa16a5406c5429026a72098fa0523eefc4233eb54e3819a3baaa0ad299cb07a5f903eb90ed00e02ab0b096a753dd5c9e9e01038ff6d16df5ae8d117a0d36d4c711ae6c2c65b0e60a88c0ff1c88b9abfc4249d02c78dedaed6b4134df74bb393dfa402c0a8c95165dabe5e1fc386264ca33", 0x89, 0x1}, {&(0x7f0000000400)="b46b3eb9abaf9793afdc9921f51522f665eb1025e1bf7671f82f97dbde36eafe87ac70229747def3f30761c61b7b26c4e8b09244aba48f43f77edfae0084dcc436d060e4f15ba282b07ead810439fea8729adc16245b8d8122bd847796d328198058cc083b247526cf273997b946f69f9b02d2ad05eaad6ab1f7bc34ce6916b0ca5c7044045125bddd43e1138a0da029ac5b0169caa1417b50ae12eef904525190526c198e869240002d70d01428f87660308730d078f1c3d10714442c9d57571466be879db67cb250466d0c9c64e4e707620e6e", 0xd4, 0x5}, {&(0x7f0000000500)="35bc0e2d5b2038bda405156051099fb966822034b514a2e3d577dc760cfd0b65949a90141e8fae91749640942d4dd501b83a9f6a3092134f352efcbde36c001c43c1e875b21bd3c5588a0dcaeabcb61fb9b25903f40ec5ff127a5bcf8d6df419e222afb838871c5e87ae24dc8718c6", 0x6f, 0x7fff}], 0x200000, &(0x7f0000000600)={[{@fat=@fmask}, {@fat=@showexec}, {@dots}, {@fat=@time_offset={'time_offset', 0x3d, 0x112}}, {@fat=@quiet}, {@nodots}, {@fat=@uid={'uid', 0x3d, 0xee00}}, {@fat=@usefree}], [{@context={'context', 0x3d, 'sysadm_u'}}, {@smackfsdef={'smackfsdef', 0x3d, '\x00'}}, {@func={'func', 0x3d, 'FILE_MMAP'}}]})
openat(r13, &(0x7f00000001c0)='./file0\x00', 0x200, 0x4)
syz_io_uring_submit(r10, r11, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r12}}, 0x0)
syz_io_uring_submit(r3, r6, &(0x7f0000000080)=@IORING_OP_OPENAT={0x12, 0x1, 0x0, r8, 0x0, &(0x7f0000000040)='./file0\x00', 0x180, 0x48200, 0x23456, {0x0, r12}}, 0x9)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:17:07 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 64)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

[ 2334.365370] FAULT_INJECTION: forcing a failure.
[ 2334.365370] name failslab, interval 1, probability 0, space 0, times 0
[ 2334.367205] CPU: 1 PID: 13902 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2334.368052] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2334.369085] Call Trace:
[ 2334.369431]  dump_stack+0x107/0x167
[ 2334.369888]  should_fail.cold+0x5/0xa
[ 2334.370379]  ? __alloc_skb+0x6d/0x5b0
[ 2334.370876]  should_failslab+0x5/0x20
[ 2334.371357]  kmem_cache_alloc_node+0x55/0x330
[ 2334.371935]  ? __lockdep_reset_lock+0x180/0x180
[ 2334.372514]  ? fib6_table_lookup+0x68f/0xb60
[ 2334.373083]  __alloc_skb+0x6d/0x5b0
[ 2334.373550]  alloc_skb_with_frags+0x92/0x570
[ 2334.374095]  ? mark_lock+0xf5/0x2df0
[ 2334.374578]  sock_alloc_send_pskb+0x7af/0x930
[ 2334.375172]  ? sk_alloc+0x350/0x350
[ 2334.375626]  ? find_held_lock+0x2c/0x110
[ 2334.376147]  ? perf_trace_lock+0xac/0x490
[ 2334.376701]  __ip6_append_data.isra.0+0x1c12/0x3a70
[ 2334.376730]  ? ip6_mtu+0x1bb/0x3d0
[ 2334.376745]  ? lock_downgrade+0x6d0/0x6d0
[ 2334.376759]  ? rawv6_exit+0x20/0x20
[ 2334.376788]  ? ip6_finish_output2+0x1fe0/0x1fe0
[ 2334.376804]  ? ip6_mtu+0x1e9/0x3d0
[ 2334.376820]  ? ip6_setup_cork+0xfb7/0x1740
[ 2334.376841]  ip6_append_data+0x1e7/0x330
[ 2334.376856]  ? rawv6_exit+0x20/0x20
[ 2334.376876]  ? rawv6_exit+0x20/0x20
[ 2334.376897]  icmp6_send+0x1257/0x1ff0
[ 2334.376931]  ? icmpv6_push_pending_frames+0x470/0x470
[ 2334.376945]  ? find_held_lock+0x2c/0x110
[ 2334.376992]  ? ipv6_proxy_select_ident+0x250/0x250
[ 2334.377017]  ip6_pkt_drop+0x3ae/0x7c0
[ 2334.377038]  ip6_local_out+0xb4/0x1a0
[ 2334.377058]  ip6_send_skb+0xb7/0x350
[ 2334.377078]  udp_v6_send_skb+0x7aa/0x15b0
[ 2334.377104]  udpv6_sendmsg+0x2113/0x2af0
[ 2334.377122]  ? ip_frag_init+0x350/0x350
[ 2334.377147]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2334.377174]  ? __lockdep_reset_lock+0x180/0x180
[ 2334.377189]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2334.377211]  ? lock_acquire+0x197/0x470
[ 2334.377224]  ? find_held_lock+0x2c/0x110
[ 2334.377254]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2334.377266]  ? trace_hardirqs_on+0x5b/0x180
[ 2334.377280]  ? sock_has_perm+0x1ea/0x280
[ 2334.377320]  ? __import_iovec+0x458/0x590
[ 2334.377335]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2334.377355]  inet6_sendmsg+0x105/0x140
[ 2334.377371]  ? inet6_compat_ioctl+0x320/0x320
[ 2334.377384]  __sock_sendmsg+0xf2/0x190
[ 2334.377401]  ____sys_sendmsg+0x334/0x870
[ 2334.377419]  ? sock_write_iter+0x3d0/0x3d0
[ 2334.377431]  ? do_recvmmsg+0x6d0/0x6d0
[ 2334.377456]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2334.377470]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2334.377482]  ? trace_hardirqs_on+0x5b/0x180
[ 2334.377502]  ___sys_sendmsg+0xf3/0x170
[ 2334.377520]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2334.377539]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2334.377555]  ? _raw_spin_unlock_irq+0x27/0x30
[ 2334.377573]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2334.377587]  ? finish_task_switch+0x126/0x5d0
[ 2334.377598]  ? finish_task_switch+0xef/0x5d0
[ 2334.377611]  ? __switch_to+0x572/0xf70
[ 2334.377624]  ? __switch_to_asm+0x3a/0x60
[ 2334.377637]  ? __switch_to_asm+0x34/0x60
[ 2334.377655]  ? __schedule+0x82c/0x1ea0
[ 2334.377678]  ? io_schedule_timeout+0x140/0x140
[ 2334.377708]  __sys_sendmmsg+0x195/0x470
[ 2334.377728]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2334.377744]  ? lock_downgrade+0x6d0/0x6d0
[ 2334.377775]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2334.377794]  ? wait_for_completion_io+0x270/0x270
[ 2334.377812]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2334.377827]  ? vfs_write+0x354/0xa70
[ 2334.377843]  ? fput_many+0x2f/0x1a0
[ 2334.377859]  ? ksys_write+0x1a9/0x260
[ 2334.377875]  ? __ia32_sys_read+0xb0/0xb0
[ 2334.377897]  __x64_sys_sendmmsg+0x99/0x100
[ 2334.377912]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2334.377928]  do_syscall_64+0x33/0x40
[ 2334.377942]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2334.377953] RIP: 0033:0x7fcaf2e26b19
[ 2334.377968] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2334.377977] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2334.377993] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2334.378012] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2334.378021] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2334.378030] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2334.378039] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
[ 2334.387667] kauditd_printk_skb: 102 callbacks suppressed
[ 2334.387681] audit: type=1326 audit(1709497027.488:6558): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13890 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2334.387753] audit: type=1326 audit(1709497027.489:6559): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13890 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2334.387818] audit: type=1326 audit(1709497027.489:6560): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13890 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2334.387883] audit: type=1326 audit(1709497027.489:6561): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13890 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2334.387947] audit: type=1326 audit(1709497027.489:6562): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13890 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2334.388533] audit: type=1326 audit(1709497027.491:6563): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13890 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2334.451043] audit: type=1326 audit(1709497027.535:6564): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13890 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f0851210ad7 code=0x7ffc0000
20:17:07 executing program 1:
acct(0x0)
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_io_uring_setup(0x3167, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f00000002c0)=<r4=>0x0, &(0x7f0000000000)=<r5=>0x0)
r6 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r6, 0x80, &(0x7f0000000140)=@rc={0x1f, @none}}, 0x0)
io_uring_enter(r3, 0x76d3, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2334.478790] audit: type=1326 audit(1709497027.535:6565): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13890 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2334.494495] audit: type=1326 audit(1709497027.535:6566): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13890 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2334.501803] audit: type=1326 audit(1709497027.535:6567): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13890 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
20:17:07 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xffffffe4, 0x0, 0x0)

20:17:07 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x4002002000000000)

[ 2334.527563] FAT-fs (loop3): Unrecognized mount option "smackfsdef=" or missing value
20:17:07 executing program 7:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x2626, &(0x7f0000000040)={0x0, 0xb42c, 0x1, 0x1, 0x135}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000100))
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2334.707385] FAT-fs (loop3): Unrecognized mount option "smackfsdef=" or missing value
20:17:21 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x500000000000000)

20:17:21 executing program 1:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_open_procfs(0x0, &(0x7f0000000100)='net/vlan/config\x00')
ioctl$TCSETSW2(r1, 0x402c542c, &(0x7f0000000180)={0x1, 0x3, 0x3abb, 0xd6e, 0x40, "3f90e6f86ab192988d45b3eb3500ca345b0d66", 0x7, 0x26c2})
r2 = syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDGKBMETA(r0, 0x4b62, &(0x7f00000000c0))
r3 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
r6 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
copy_file_range(r2, &(0x7f0000000040)=0x5, r6, &(0x7f0000000080)=0x7, 0x2, 0x0)
io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:17:21 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x8702000000000000)

20:17:21 executing program 7:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff, {0x3}}, './file0\x00'})
ioctl$GIO_SCRNMAP(r3, 0x4b40, &(0x7f0000000080)=""/61)

20:17:21 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 65)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:17:21 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x7ffffffff000, 0x0, 0x0)

20:17:21 executing program 3:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/seq/clients\x00', 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r5 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r4, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000000040)={0x0, r5, 0x2})
r6 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000100), 0xc0100, 0x0)
getsockopt$IP_SET_OP_GET_FNAME(r6, 0x1, 0x53, &(0x7f0000000180)={0x8, 0x7, 0x0, 'syz0\x00'}, &(0x7f00000001c0)=0x2c)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r8 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r7, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r7, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r7, 0xc028660f, &(0x7f0000000040)={0x0, r8, 0x2})
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r5, 0xc0189372, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r7, {0x401}}, './file0\x00'})
io_uring_enter(r3, 0x32bc, 0x95fc, 0x3, &(0x7f0000000080)={[0x8]}, 0x8)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x3, &(0x7f0000000240)}, 0x4)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:17:21 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x555, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

[ 2348.120759] kauditd_printk_skb: 35 callbacks suppressed
[ 2348.120778] audit: type=1326 audit(1709497041.223:6603): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13959 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2348.124404] audit: type=1326 audit(1709497041.223:6604): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13959 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2348.132003] audit: type=1326 audit(1709497041.223:6605): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13959 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2348.142384] audit: type=1326 audit(1709497041.224:6606): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13959 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2348.151035] audit: type=1326 audit(1709497041.224:6607): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13959 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2348.159409] FAULT_INJECTION: forcing a failure.
[ 2348.159409] name failslab, interval 1, probability 0, space 0, times 0
[ 2348.159427] CPU: 1 PID: 13970 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2348.159434] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2348.159439] Call Trace:
[ 2348.159459]  dump_stack+0x107/0x167
[ 2348.159473]  should_fail.cold+0x5/0xa
[ 2348.159494]  should_failslab+0x5/0x20
[ 2348.159509]  __kmalloc_node_track_caller+0x74/0x3b0
[ 2348.159523]  ? alloc_skb_with_frags+0x92/0x570
[ 2348.159536]  ? __lockdep_reset_lock+0x180/0x180
[ 2348.159552]  __alloc_skb+0xb1/0x5b0
[ 2348.159572]  alloc_skb_with_frags+0x92/0x570
[ 2348.159586]  ? mark_lock+0xf5/0x2df0
[ 2348.159608]  sock_alloc_send_pskb+0x7af/0x930
[ 2348.159635]  ? sk_alloc+0x350/0x350
[ 2348.159648]  ? find_held_lock+0x2c/0x110
[ 2348.159661]  ? perf_trace_lock+0xac/0x490
[ 2348.159688]  __ip6_append_data.isra.0+0x1c12/0x3a70
[ 2348.159711]  ? ip6_mtu+0x1bb/0x3d0
[ 2348.159724]  ? lock_downgrade+0x6d0/0x6d0
[ 2348.159735]  ? rawv6_exit+0x20/0x20
[ 2348.159758]  ? ip6_finish_output2+0x1fe0/0x1fe0
[ 2348.159771]  ? ip6_mtu+0x1e9/0x3d0
[ 2348.159785]  ? ip6_setup_cork+0xfb7/0x1740
[ 2348.159802]  ip6_append_data+0x1e7/0x330
[ 2348.159813]  ? rawv6_exit+0x20/0x20
[ 2348.159828]  ? rawv6_exit+0x20/0x20
[ 2348.159846]  icmp6_send+0x1257/0x1ff0
[ 2348.159873]  ? icmpv6_push_pending_frames+0x470/0x470
[ 2348.159885]  ? find_held_lock+0x2c/0x110
[ 2348.159924]  ? ipv6_proxy_select_ident+0x250/0x250
[ 2348.159944]  ip6_pkt_drop+0x3ae/0x7c0
[ 2348.159962]  ip6_local_out+0xb4/0x1a0
[ 2348.159978]  ip6_send_skb+0xb7/0x350
[ 2348.159994]  udp_v6_send_skb+0x7aa/0x15b0
[ 2348.160016]  udpv6_sendmsg+0x2113/0x2af0
[ 2348.160031]  ? ip_frag_init+0x350/0x350
[ 2348.160051]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2348.160073]  ? __lockdep_reset_lock+0x180/0x180
[ 2348.160092]  ? lock_acquire+0x197/0x470
[ 2348.160103]  ? find_held_lock+0x2c/0x110
[ 2348.160127]  ? sock_has_perm+0x1ea/0x280
[ 2348.160164]  ? __import_iovec+0x458/0x590
[ 2348.160177]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2348.160192]  inet6_sendmsg+0x105/0x140
[ 2348.160205]  ? inet6_compat_ioctl+0x320/0x320
[ 2348.160216]  __sock_sendmsg+0xf2/0x190
[ 2348.160229]  ____sys_sendmsg+0x334/0x870
[ 2348.160244]  ? sock_write_iter+0x3d0/0x3d0
[ 2348.160254]  ? do_recvmmsg+0x6d0/0x6d0
[ 2348.160269]  ? __lock_acquire+0x1657/0x5b00
[ 2348.160292]  ___sys_sendmsg+0xf3/0x170
[ 2348.160306]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2348.160322]  ? __lockdep_reset_lock+0x180/0x180
[ 2348.160333]  ? lock_downgrade+0x6d0/0x6d0
[ 2348.160350]  ? lock_acquire+0x197/0x470
[ 2348.160362]  ? find_held_lock+0x2c/0x110
[ 2348.160378]  ? __might_fault+0xd3/0x180
[ 2348.160390]  ? lock_downgrade+0x6d0/0x6d0
[ 2348.160418]  __sys_sendmmsg+0x195/0x470
[ 2348.160436]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2348.160448]  ? lock_downgrade+0x6d0/0x6d0
[ 2348.160475]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2348.160491]  ? wait_for_completion_io+0x270/0x270
[ 2348.160506]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2348.160518]  ? vfs_write+0x354/0xa70
[ 2348.160530]  ? fput_many+0x2f/0x1a0
[ 2348.160543]  ? ksys_write+0x1a9/0x260
[ 2348.160556]  ? __ia32_sys_read+0xb0/0xb0
[ 2348.160575]  __x64_sys_sendmmsg+0x99/0x100
[ 2348.160587]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2348.160600]  do_syscall_64+0x33/0x40
[ 2348.160612]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2348.160621] RIP: 0033:0x7fcaf2e26b19
[ 2348.160633] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2348.160640] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2348.160653] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2348.160661] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2348.160668] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2348.160675] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2348.160682] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
[ 2348.188431] audit: type=1326 audit(1709497041.224:6608): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13959 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f0851210ad7 code=0x7ffc0000
[ 2348.188535] audit: type=1326 audit(1709497041.224:6609): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13959 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2348.188603] audit: type=1326 audit(1709497041.227:6610): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13959 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2348.188671] audit: type=1326 audit(1709497041.227:6611): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13959 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2348.188764] audit: type=1326 audit(1709497041.227:6612): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13959 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
20:17:21 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x800000000000000)

20:17:21 executing program 7:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x541c, &(0x7f0000000040))
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:17:21 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x570, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:17:21 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x80000000000000, 0x0, 0x0)

20:17:21 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x9827000000000000)

20:17:21 executing program 1:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0xd9, 0x8, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100, 0x0, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:17:21 executing program 7:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r3=>r0}, './file0\x00'})
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x185842, 0x123)
ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
fcntl$getownex(r3, 0x10, &(0x7f0000000180)={0x0, <r5=>0x0})
sendmsg$nl_generic(r4, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000340)={0x134, 0x23, 0x2, 0x70bd2c, 0x25dfdbfb, {0x1f}, [@nested={0x11f, 0x7e, 0x0, 0x1, [@typed={0x8, 0x62, 0x0, 0x0, @pid=r5}, @generic="eb7b1f89155a871395964788c8133e3cc0c2cb03559141a5b7c5e4300a1dc7b2ec8106269486430c24acac38d55b010df95f020a034c58895ead9c4a3e130cc60829a4b4b78d76d89fdc2af0baf96b788a34b759ade8f2276a43cf784f9138b91e4d4d20f4062ff731d859bc65335b69517830faa12145fc2b0f19a1ece93d150454035e64f98b6fc1b969d73de763606c7cf3cf102af18ab4cf9d47ba226b47448844779e50809399f8", @typed={0x6, 0x7, 0x0, 0x0, @str='}\x00'}, @typed={0x8, 0x3e, 0x0, 0x0, @pid=0xffffffffffffffff}, @typed={0xc, 0x63, 0x0, 0x0, @u64=0x2}, @typed={0x14, 0x4b, 0x0, 0x0, @ipv6=@mcast1}, @typed={0x7, 0x8f, 0x0, 0x0, @str='}[\x00'}, @typed={0x5, 0x8a, 0x0, 0x0, @str='\x00'}, @generic="1185dd0a84607bd6a8456da283b33fe70dce878346871c691ae4b23dd23214dc93d4d7f81944b28c5c"]}]}, 0x134}, 0x1, 0x0, 0x0, 0x8000}, 0x46001)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f00000000c0)={'hsr0\x00', &(0x7f0000000080)=@ethtool_rxfh_indir={0x38, 0x6, [0x2, 0x7, 0x1000, 0x4, 0x8, 0x40]}})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:17:21 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2000000000000000)

20:17:21 executing program 3:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x6e4a, &(0x7f00000002c0)={0x0, 0x800000}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r5}}, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r7 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r6, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r6, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r6, 0xc028660f, &(0x7f0000000040)={0x0, r7, 0x2})
r8 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r9=>0x0, &(0x7f0000000140)=<r10=>0x0)
r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r11}}, 0x0)
r12 = epoll_create(0x8)
r13 = socket$inet6_tcp(0xa, 0x1, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r12, 0x1, r13, &(0x7f0000000100)={0x30000000})
epoll_ctl$EPOLL_CTL_MOD(r12, 0x3, r13, &(0x7f00000001c0))
syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_EPOLL_CTL=@del={0x1d, 0x5, 0x0, 0xffffffffffffffff, 0x0, r13}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:17:21 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 66)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:17:21 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xc00c000000000000)

20:17:21 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x600, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:17:21 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xf0ffffff7f0000, 0x0, 0x0)

[ 2348.801500] FAULT_INJECTION: forcing a failure.
[ 2348.801500] name failslab, interval 1, probability 0, space 0, times 0
[ 2348.802551] CPU: 1 PID: 14037 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2348.803099] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2348.803759] Call Trace:
[ 2348.803982]  dump_stack+0x107/0x167
[ 2348.804287]  should_fail.cold+0x5/0xa
[ 2348.804600]  ? create_object.isra.0+0x3a/0xa20
[ 2348.804966]  should_failslab+0x5/0x20
[ 2348.805278]  kmem_cache_alloc+0x5b/0x310
[ 2348.805613]  create_object.isra.0+0x3a/0xa20
[ 2348.805967]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2348.806406]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 2348.806811]  ? alloc_skb_with_frags+0x92/0x570
[ 2348.807179]  ? __lockdep_reset_lock+0x180/0x180
[ 2348.807554]  __alloc_skb+0xb1/0x5b0
[ 2348.807850]  alloc_skb_with_frags+0x92/0x570
[ 2348.808208]  ? mark_lock+0xf5/0x2df0
[ 2348.808509]  sock_alloc_send_pskb+0x7af/0x930
[ 2348.808877]  ? sk_alloc+0x350/0x350
[ 2348.809177]  ? find_held_lock+0x2c/0x110
[ 2348.809501]  ? perf_trace_lock+0xac/0x490
[ 2348.809846]  __ip6_append_data.isra.0+0x1c12/0x3a70
[ 2348.810282]  ? ip6_mtu+0x1bb/0x3d0
[ 2348.810567]  ? lock_downgrade+0x6d0/0x6d0
[ 2348.810903]  ? rawv6_exit+0x20/0x20
[ 2348.811212]  ? ip6_finish_output2+0x1fe0/0x1fe0
[ 2348.811582]  ? ip6_mtu+0x1e9/0x3d0
[ 2348.811871]  ? ip6_setup_cork+0xfb7/0x1740
[ 2348.812222]  ip6_append_data+0x1e7/0x330
[ 2348.812547]  ? rawv6_exit+0x20/0x20
[ 2348.812841]  ? rawv6_exit+0x20/0x20
[ 2348.813142]  icmp6_send+0x1257/0x1ff0
[ 2348.813464]  ? icmpv6_push_pending_frames+0x470/0x470
[ 2348.813871]  ? find_held_lock+0x2c/0x110
[ 2348.814250]  ? ipv6_proxy_select_ident+0x250/0x250
[ 2348.814654]  ip6_pkt_drop+0x3ae/0x7c0
[ 2348.814964]  ip6_local_out+0xb4/0x1a0
[ 2348.815285]  ip6_send_skb+0xb7/0x350
[ 2348.815590]  udp_v6_send_skb+0x7aa/0x15b0
[ 2348.815933]  udpv6_sendmsg+0x2113/0x2af0
[ 2348.816264]  ? ip_frag_init+0x350/0x350
[ 2348.816594]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2348.817014]  ? trace_hardirqs_on+0x5b/0x180
[ 2348.817363]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2348.817821]  ? sock_has_perm+0x1ea/0x280
[ 2348.818181]  ? __import_iovec+0x458/0x590
[ 2348.818524]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2348.818939]  inet6_sendmsg+0x105/0x140
[ 2348.819259]  ? inet6_compat_ioctl+0x320/0x320
[ 2348.819623]  __sock_sendmsg+0xf2/0x190
[ 2348.819948]  ____sys_sendmsg+0x334/0x870
[ 2348.820288]  ? sock_write_iter+0x3d0/0x3d0
[ 2348.820634]  ? do_recvmmsg+0x6d0/0x6d0
[ 2348.820957]  ? find_held_lock+0x2c/0x110
[ 2348.821299]  ___sys_sendmsg+0xf3/0x170
[ 2348.821624]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2348.822007]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2348.822479]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2348.822853]  ? trace_hardirqs_on+0x5b/0x180
[ 2348.823206]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2348.823575]  ? finish_task_switch+0x126/0x5d0
[ 2348.823941]  ? finish_task_switch+0xef/0x5d0
[ 2348.824302]  ? __switch_to+0x572/0xf70
[ 2348.824620]  ? __switch_to_asm+0x3a/0x60
[ 2348.824948]  ? __switch_to_asm+0x34/0x60
[ 2348.825281]  ? __schedule+0x82c/0x1ea0
[ 2348.825600]  ? io_schedule_timeout+0x140/0x140
[ 2348.825974]  __sys_sendmmsg+0x195/0x470
[ 2348.826317]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2348.826661]  ? lock_downgrade+0x6d0/0x6d0
[ 2348.827007]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2348.827398]  ? wait_for_completion_io+0x270/0x270
[ 2348.827793]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2348.828169]  ? vfs_write+0x354/0xa70
[ 2348.828471]  ? fput_many+0x2f/0x1a0
[ 2348.828763]  ? ksys_write+0x1a9/0x260
[ 2348.829065]  ? __ia32_sys_read+0xb0/0xb0
[ 2348.829409]  __x64_sys_sendmmsg+0x99/0x100
[ 2348.829750]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2348.830176]  do_syscall_64+0x33/0x40
[ 2348.830485]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2348.830891] RIP: 0033:0x7fcaf2e26b19
[ 2348.831201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2348.832652] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2348.833261] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2348.833828] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2348.834426] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2348.834988] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2348.835556] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
20:17:21 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x3f00000000000000)

20:17:21 executing program 1:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$cgroup_ro(r0, &(0x7f0000000040)='freezer.parent_freezing\x00', 0x0, 0x0)
ioctl$SG_SCSI_RESET(r1, 0x2284, 0x0)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:17:34 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xe4ffffff00000000)

20:17:34 executing program 7:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x1000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x6, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x3, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x4, 0x12, r0, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:17:34 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x4000000000000000)

20:17:34 executing program 1:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
ioctl$SG_IO(r0, 0x2285, &(0x7f0000000240)={0x0, 0xfffffffffffffffb, 0x1000, 0x46, @buffer={0x0, 0xf2, &(0x7f0000000040)=""/242}, &(0x7f0000000340)="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", &(0x7f0000000180)=""/15, 0x7ff, 0x2, 0xffffffffffffffff, &(0x7f00000001c0)})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:17:34 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x200000000000000, 0x0, 0x0)

20:17:34 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x700, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:17:34 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 67)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:17:34 executing program 3:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x4, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2361.530016] kauditd_printk_skb: 87 callbacks suppressed
[ 2361.530030] audit: type=1326 audit(1709497054.632:6700): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14074 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2361.533487] audit: type=1326 audit(1709497054.636:6701): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14074 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2361.540171] audit: type=1326 audit(1709497054.642:6702): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14074 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2361.542403] FAULT_INJECTION: forcing a failure.
[ 2361.542403] name failslab, interval 1, probability 0, space 0, times 0
[ 2361.542453] audit: type=1326 audit(1709497054.642:6703): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14074 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2361.543479] CPU: 0 PID: 14083 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2361.546238] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2361.547086] Call Trace:
[ 2361.547379]  dump_stack+0x107/0x167
[ 2361.547744]  should_fail.cold+0x5/0xa
[ 2361.548089]  ? ___slab_alloc+0x470/0x700
[ 2361.548508]  ? create_object.isra.0+0x3a/0xa20
[ 2361.548896]  should_failslab+0x5/0x20
[ 2361.549302]  kmem_cache_alloc+0x5b/0x310
[ 2361.549653]  create_object.isra.0+0x3a/0xa20
[ 2361.550099]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2361.550511]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 2361.551005]  ? alloc_skb_with_frags+0x92/0x570
[ 2361.551406]  __alloc_skb+0xb1/0x5b0
[ 2361.551771]  alloc_skb_with_frags+0x92/0x570
[ 2361.552123]  ? mark_lock+0xf5/0x2df0
[ 2361.552503]  sock_alloc_send_pskb+0x7af/0x930
[ 2361.552875]  ? sk_alloc+0x350/0x350
[ 2361.553257]  ? find_held_lock+0x2c/0x110
[ 2361.553603]  ? perf_trace_lock+0xac/0x490
[ 2361.554024]  __ip6_append_data.isra.0+0x1c12/0x3a70
[ 2361.554473]  ? ip6_mtu+0x1bb/0x3d0
[ 2361.554844]  ? lock_downgrade+0x6d0/0x6d0
[ 2361.555175]  ? rawv6_exit+0x20/0x20
[ 2361.555564]  ? ip6_finish_output2+0x1fe0/0x1fe0
[ 2361.555930]  ? ip6_mtu+0x1e9/0x3d0
[ 2361.555943]  ? ip6_setup_cork+0xfb7/0x1740
[ 2361.555958]  ip6_append_data+0x1e7/0x330
[ 2361.555968]  ? rawv6_exit+0x20/0x20
[ 2361.555982]  ? rawv6_exit+0x20/0x20
[ 2361.555998]  icmp6_send+0x1257/0x1ff0
[ 2361.556026]  ? icmpv6_push_pending_frames+0x470/0x470
[ 2361.556037]  ? find_held_lock+0x2c/0x110
[ 2361.556082]  ? ipv6_proxy_select_ident+0x250/0x250
[ 2361.556102]  ip6_pkt_drop+0x3ae/0x7c0
[ 2361.556118]  ip6_local_out+0xb4/0x1a0
[ 2361.556133]  ip6_send_skb+0xb7/0x350
[ 2361.556148]  udp_v6_send_skb+0x7aa/0x15b0
[ 2361.556169]  udpv6_sendmsg+0x2113/0x2af0
[ 2361.556184]  ? ip_frag_init+0x350/0x350
[ 2361.556204]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2361.556228]  ? __lockdep_reset_lock+0x180/0x180
[ 2361.556239]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2361.556254]  ? lock_acquire+0x197/0x470
[ 2361.556265]  ? find_held_lock+0x2c/0x110
[ 2361.556287]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2361.556299]  ? sock_has_perm+0x1ea/0x280
[ 2361.556335]  ? __import_iovec+0x458/0x590
[ 2361.556347]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2361.556361]  inet6_sendmsg+0x105/0x140
[ 2361.556372]  ? inet6_compat_ioctl+0x320/0x320
[ 2361.556382]  __sock_sendmsg+0xf2/0x190
[ 2361.556394]  ____sys_sendmsg+0x334/0x870
[ 2361.556408]  ? sock_write_iter+0x3d0/0x3d0
[ 2361.556417]  ? do_recvmmsg+0x6d0/0x6d0
[ 2361.556430]  ? __lock_acquire+0x1657/0x5b00
[ 2361.556451]  ___sys_sendmsg+0xf3/0x170
[ 2361.556462]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2361.556475]  ? __lockdep_reset_lock+0x180/0x180
[ 2361.556491]  ? lock_acquire+0x197/0x470
20:17:34 executing program 7:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000000c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, {0x1804}, 0x1, {0x0, r4}}, 0x6244)
r5 = syz_open_dev$evdev(&(0x7f0000000040), 0x7fffffff, 0x100)
ioctl$BTRFS_IOC_WAIT_SYNC(r5, 0x40089416, &(0x7f0000000080))
r6 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000100), 0x8602, 0x0)
ioctl$FIDEDUPERANGE(r6, 0xc0189436, &(0x7f0000000180)={0x22d, 0x7, 0x1, 0x0, 0x0, [{{r0}, 0x100000001}]})

[ 2361.556500]  ? find_held_lock+0x2c/0x110
[ 2361.556514]  ? __might_fault+0xd3/0x180
[ 2361.556543]  ? lock_downgrade+0x6d0/0x6d0
[ 2361.556555]  ? io_schedule_timeout+0x140/0x140
[ 2361.556574]  __sys_sendmmsg+0x195/0x470
[ 2361.556588]  ? __ia32_sys_sendmsg+0xb0/0xb0
20:17:34 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 68)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

[ 2361.556598]  ? lock_downgrade+0x6d0/0x6d0
[ 2361.556619]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2361.556632]  ? wait_for_completion_io+0x270/0x270
[ 2361.556645]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2361.556653]  ? vfs_write+0x354/0xa70
[ 2361.556664]  ? fput_many+0x2f/0x1a0
[ 2361.556674]  ? ksys_write+0x1a9/0x260
[ 2361.556685]  ? __ia32_sys_read+0xb0/0xb0
[ 2361.556700]  __x64_sys_sendmmsg+0x99/0x100
20:17:34 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x770, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

[ 2361.556710]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2361.556721]  do_syscall_64+0x33/0x40
[ 2361.556730]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2361.556737] RIP: 0033:0x7fcaf2e26b19
[ 2361.556748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2361.556753] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2361.556765] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2361.556771] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2361.556777] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2361.556783] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2361.556789] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
[ 2361.581809] audit: type=1326 audit(1709497054.665:6704): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14074 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2361.581897] audit: type=1326 audit(1709497054.666:6705): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14074 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f0851210ad7 code=0x7ffc0000
[ 2361.581975] audit: type=1326 audit(1709497054.666:6706): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14074 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2361.582050] audit: type=1326 audit(1709497054.666:6707): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14074 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2361.582240] audit: type=1326 audit(1709497054.666:6708): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14074 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2361.582330] audit: type=1326 audit(1709497054.667:6709): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14074 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2361.908944] FAULT_INJECTION: forcing a failure.
[ 2361.908944] name failslab, interval 1, probability 0, space 0, times 0
[ 2361.908974] CPU: 1 PID: 14108 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2361.908983] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2361.908988] Call Trace:
[ 2361.909009]  dump_stack+0x107/0x167
[ 2361.909026]  should_fail.cold+0x5/0xa
[ 2361.909044]  ? create_object.isra.0+0x3a/0xa20
[ 2361.909063]  should_failslab+0x5/0x20
[ 2361.909078]  kmem_cache_alloc+0x5b/0x310
[ 2361.909093]  ? lock_acquire+0x197/0x470
[ 2361.909111]  create_object.isra.0+0x3a/0xa20
[ 2361.909130]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2361.909151]  kmem_cache_alloc+0x159/0x310
[ 2361.909175]  skb_clone+0x14f/0x3d0
[ 2361.909196]  dev_queue_xmit_nit+0x3a7/0xb00
[ 2361.909223]  dev_hard_start_xmit+0xab/0x6f0
[ 2361.909239]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2361.909260]  __dev_queue_xmit+0x17ec/0x2710
[ 2361.909283]  ? find_held_lock+0x2c/0x110
[ 2361.909299]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2361.909325]  ? mark_held_locks+0x9e/0xe0
[ 2361.909345]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2361.909369]  ip6_finish_output2+0x17b4/0x1fe0
[ 2361.909400]  __ip6_finish_output.part.0+0x4f7/0xbc0
[ 2361.909422]  ip6_output+0x3aa/0x7e0
[ 2361.909447]  ip6_local_out+0xb4/0x1a0
[ 2361.909467]  ip6_send_skb+0xb7/0x350
[ 2361.909489]  ip6_push_pending_frames+0xbd/0xf0
[ 2361.909508]  icmpv6_push_pending_frames+0x29c/0x470
20:17:35 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0xa00, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

[ 2361.909533]  icmp6_send+0x16ad/0x1ff0
[ 2361.909568]  ? icmpv6_push_pending_frames+0x470/0x470
[ 2361.909582]  ? find_held_lock+0x2c/0x110
[ 2361.909638]  ? ipv6_proxy_select_ident+0x250/0x250
[ 2361.909665]  ip6_pkt_drop+0x3ae/0x7c0
[ 2361.909687]  ip6_local_out+0xb4/0x1a0
[ 2361.909706]  ip6_send_skb+0xb7/0x350
[ 2361.909727]  udp_v6_send_skb+0x7aa/0x15b0
[ 2361.909757]  udpv6_sendmsg+0x2113/0x2af0
[ 2361.909775]  ? ip_frag_init+0x350/0x350
[ 2361.909801]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2361.909831]  ? __lockdep_reset_lock+0x180/0x180
[ 2361.909846]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2361.909868]  ? lock_acquire+0x197/0x470
[ 2361.909882]  ? find_held_lock+0x2c/0x110
[ 2361.909912]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2361.909929]  ? sock_has_perm+0x1ea/0x280
[ 2361.909971]  ? __import_iovec+0x458/0x590
[ 2361.909987]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2361.910006]  inet6_sendmsg+0x105/0x140
[ 2361.910020]  ? inet6_compat_ioctl+0x320/0x320
[ 2361.910034]  __sock_sendmsg+0xf2/0x190
[ 2361.910051]  ____sys_sendmsg+0x334/0x870
[ 2361.910070]  ? sock_write_iter+0x3d0/0x3d0
[ 2361.910082]  ? do_recvmmsg+0x6d0/0x6d0
[ 2361.910101]  ? __lock_acquire+0x1657/0x5b00
[ 2361.910131]  ___sys_sendmsg+0xf3/0x170
[ 2361.910149]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2361.910169]  ? __lockdep_reset_lock+0x180/0x180
[ 2361.910192]  ? lock_acquire+0x197/0x470
[ 2361.910206]  ? find_held_lock+0x2c/0x110
[ 2361.910225]  ? __might_fault+0xd3/0x180
[ 2361.910239]  ? lock_downgrade+0x6d0/0x6d0
[ 2361.910257]  ? io_schedule_timeout+0x140/0x140
[ 2361.910290]  __sys_sendmmsg+0x195/0x470
[ 2361.910312]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2361.910337]  ? lock_downgrade+0x6d0/0x6d0
[ 2361.910371]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2361.910391]  ? wait_for_completion_io+0x270/0x270
[ 2361.910410]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2361.910424]  ? vfs_write+0x354/0xa70
[ 2361.910441]  ? fput_many+0x2f/0x1a0
[ 2361.910457]  ? ksys_write+0x1a9/0x260
[ 2361.910473]  ? __ia32_sys_read+0xb0/0xb0
[ 2361.910497]  __x64_sys_sendmmsg+0x99/0x100
[ 2361.910511]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2361.910527]  do_syscall_64+0x33/0x40
[ 2361.910541]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2361.910552] RIP: 0033:0x7fcaf2e26b19
[ 2361.910567] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2361.910575] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2361.910592] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2361.910601] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2361.910609] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2361.910618] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2361.910627] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
20:17:47 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 69)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:17:47 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0xc00, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:17:47 executing program 1:
recvmsg(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)=@nl=@proc, 0x80, &(0x7f0000000500)=[{&(0x7f00000000c0)=""/43, 0x2b}, {&(0x7f0000000180)=""/111, 0x6f}, {&(0x7f0000000240)=""/97, 0x61}, {&(0x7f0000000340)=""/134, 0x86}, {&(0x7f0000000400)=""/116, 0x74}, {&(0x7f0000000480)=""/71, 0x47}], 0x6, &(0x7f0000000580)=""/153, 0x99}, 0x300)
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x100, 0x0, 0x0, 0x1b}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:17:47 executing program 3:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x297c, &(0x7f0000000040)={0x0, 0x9f02, 0x10, 0x2, 0xc7, 0x0, r0}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000000c0)=<r3=>0x0, &(0x7f0000000100))
syz_io_uring_setup(0x53b5, &(0x7f0000000180)={0x0, 0x4112, 0x10, 0x2, 0x1ba, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000280)=<r4=>0x0)
r5 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
read$eventfd(r5, 0x0, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000340)=@IORING_OP_FSYNC={0x3, 0x4, 0x0, @fd=r5}, 0x16)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:17:47 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xff00000000000000)

20:17:47 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x7002000000000000)

20:17:47 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x500000000000000, 0x0, 0x0)

20:17:47 executing program 7:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
r4 = dup3(0xffffffffffffffff, r0, 0x0)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(r4, 0x8983, &(0x7f0000000040)={0x6, 'macvlan0\x00', {0x7}, 0xfff})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='numa_maps\x00')

[ 2374.049790] FAULT_INJECTION: forcing a failure.
[ 2374.049790] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2374.050841] CPU: 0 PID: 14129 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2374.051424] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2374.051430] Call Trace:
[ 2374.051447]  dump_stack+0x107/0x167
[ 2374.051458]  should_fail.cold+0x5/0xa
[ 2374.051476]  _copy_from_user+0x2e/0x1b0
[ 2374.051492]  __copy_msghdr_from_user+0x91/0x4b0
[ 2374.051504]  ? __ia32_sys_shutdown+0x80/0x80
[ 2374.051516]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2374.051529]  ? inet6_sendmsg+0xbd/0x140
[ 2374.051539]  ? inet6_compat_ioctl+0x320/0x320
[ 2374.051548]  ? __sock_sendmsg+0x55/0x190
[ 2374.051563]  sendmsg_copy_msghdr+0xa1/0x160
[ 2374.051573]  ? do_recvmmsg+0x6d0/0x6d0
[ 2374.051587]  ? __lock_acquire+0x1657/0x5b00
[ 2374.051606]  ___sys_sendmsg+0xc6/0x170
[ 2374.051618]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2374.051630]  ? __lockdep_reset_lock+0x180/0x180
[ 2374.051639]  ? trace_hardirqs_on+0x5b/0x180
[ 2374.051652]  ? lock_acquire+0x197/0x470
20:17:47 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 70)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

[ 2374.051661]  ? find_held_lock+0x2c/0x110
[ 2374.051676]  ? __might_fault+0xd3/0x180
[ 2374.051686]  ? lock_downgrade+0x6d0/0x6d0
[ 2374.051699]  ? io_schedule_timeout+0x140/0x140
[ 2374.051720]  __sys_sendmmsg+0x195/0x470
[ 2374.051733]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2374.051743]  ? lock_downgrade+0x6d0/0x6d0
[ 2374.051764]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2374.051777]  ? wait_for_completion_io+0x270/0x270
[ 2374.051789]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2374.051799]  ? vfs_write+0x354/0xa70
[ 2374.051809]  ? fput_many+0x2f/0x1a0
[ 2374.051819]  ? ksys_write+0x1a9/0x260
[ 2374.051829]  ? __ia32_sys_read+0xb0/0xb0
[ 2374.051843]  __x64_sys_sendmmsg+0x99/0x100
[ 2374.051853]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2374.051864]  do_syscall_64+0x33/0x40
[ 2374.051873]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2374.051881] RIP: 0033:0x7fcaf2e26b19
[ 2374.051891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2374.051897] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2374.051908] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2374.051914] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2374.051920] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2374.051926] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2374.051932] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
[ 2374.107023] kauditd_printk_skb: 114 callbacks suppressed
[ 2374.107043] audit: type=1326 audit(1709497067.209:6824): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14127 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2374.126938] audit: type=1326 audit(1709497067.209:6825): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14127 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2374.133384] audit: type=1326 audit(1709497067.228:6826): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14127 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2374.140010] audit: type=1326 audit(1709497067.229:6827): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14127 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2374.185531] audit: type=1326 audit(1709497067.229:6828): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14127 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2374.220361] audit: type=1326 audit(1709497067.248:6829): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14127 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2374.249470] audit: type=1326 audit(1709497067.248:6830): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14127 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f0851210ad7 code=0x7ffc0000
[ 2374.257969] FAULT_INJECTION: forcing a failure.
[ 2374.257969] name failslab, interval 1, probability 0, space 0, times 0
[ 2374.260047] CPU: 1 PID: 14150 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2374.261169] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2374.262512] Call Trace:
[ 2374.262946]  dump_stack+0x107/0x167
[ 2374.263543]  should_fail.cold+0x5/0xa
[ 2374.264163]  ? __alloc_skb+0x6d/0x5b0
[ 2374.264783]  should_failslab+0x5/0x20
[ 2374.265391]  kmem_cache_alloc_node+0x55/0x330
[ 2374.266116]  __alloc_skb+0x6d/0x5b0
[ 2374.266720]  alloc_skb_with_frags+0x92/0x570
[ 2374.267428]  sock_alloc_send_pskb+0x7af/0x930
[ 2374.268147]  ? sk_alloc+0x350/0x350
[ 2374.268726]  ? perf_trace_lock+0xac/0x490
[ 2374.269382]  ? lock_chain_count+0x20/0x20
[ 2374.270046]  __ip6_append_data.isra.0+0x1c12/0x3a70
[ 2374.270846]  ? ip6_mtu+0x1bb/0x3d0
[ 2374.271406]  ? lock_downgrade+0x6d0/0x6d0
[ 2374.272055]  ? ip_frag_init+0x350/0x350
[ 2374.272692]  ? ip6_finish_output2+0x1fe0/0x1fe0
[ 2374.273421]  ? ip6_mtu+0x1e9/0x3d0
[ 2374.273979]  ? ip6_setup_cork+0xfb7/0x1740
[ 2374.274660]  ip6_make_skb+0x2de/0x4e0
[ 2374.275257]  ? ip_frag_init+0x350/0x350
[ 2374.275886]  ? ip_frag_init+0x350/0x350
[ 2374.276512]  ? ip6_push_pending_frames+0xf0/0xf0
[ 2374.277262]  ? ip6_dst_hoplimit+0x199/0x440
[ 2374.277925]  ? lock_downgrade+0x6d0/0x6d0
[ 2374.278602]  udpv6_sendmsg+0x20d0/0x2af0
[ 2374.279248]  ? ip_frag_init+0x350/0x350
[ 2374.279891]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2374.280694]  ? __lockdep_reset_lock+0x180/0x180
[ 2374.281428]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2374.282173]  ? lock_acquire+0x197/0x470
[ 2374.282812]  ? find_held_lock+0x2c/0x110
[ 2374.283463]  ? sock_has_perm+0x1ea/0x280
[ 2374.284121]  ? __import_iovec+0x458/0x590
[ 2374.284772]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2374.285599]  inet6_sendmsg+0x105/0x140
[ 2374.286196]  ? inet6_compat_ioctl+0x320/0x320
[ 2374.286901]  __sock_sendmsg+0xf2/0x190
[ 2374.287513]  ____sys_sendmsg+0x334/0x870
[ 2374.288148]  ? sock_write_iter+0x3d0/0x3d0
[ 2374.288803]  ? do_recvmmsg+0x6d0/0x6d0
[ 2374.289413]  ? __lock_acquire+0x1657/0x5b00
[ 2374.290084]  ___sys_sendmsg+0xf3/0x170
[ 2374.290705]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2374.291419]  ? __lockdep_reset_lock+0x180/0x180
[ 2374.292143]  ? lock_acquire+0x197/0x470
[ 2374.292756]  ? find_held_lock+0x2c/0x110
[ 2374.293391]  ? __might_fault+0xd3/0x180
[ 2374.294009]  ? lock_downgrade+0x6d0/0x6d0
[ 2374.294664]  ? io_schedule_timeout+0x140/0x140
[ 2374.295391]  __sys_sendmmsg+0x195/0x470
[ 2374.296003]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2374.296699]  ? lock_downgrade+0x6d0/0x6d0
[ 2374.297364]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2374.298117]  ? wait_for_completion_io+0x270/0x270
[ 2374.298880]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2374.299604]  ? vfs_write+0x354/0xa70
[ 2374.300190]  ? fput_many+0x2f/0x1a0
[ 2374.300761]  ? ksys_write+0x1a9/0x260
[ 2374.301364]  ? __ia32_sys_read+0xb0/0xb0
[ 2374.302004]  __x64_sys_sendmmsg+0x99/0x100
[ 2374.302677]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2374.303481]  do_syscall_64+0x33/0x40
[ 2374.304063]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2374.304855] RIP: 0033:0x7fcaf2e26b19
[ 2374.305432] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2374.308283] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2374.309440] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2374.310560] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2374.311667] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2374.312770] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2374.313876] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
[ 2374.334709] audit: type=1326 audit(1709497067.248:6831): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14127 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2374.360349] audit: type=1326 audit(1709497067.260:6832): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14127 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2374.374653] audit: type=1326 audit(1709497067.261:6833): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14127 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
20:17:47 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xffffffff00000000)

20:17:47 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x800000000000000, 0x0, 0x0)

20:17:47 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xc00c000000000000)

20:17:47 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0xd00, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:17:47 executing program 7:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x8a1, &(0x7f0000000040)={0x0, 0x3c15, 0x1, 0x3, 0x30a, 0x0, r0}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f00000000c0)=<r3=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r3, r2, &(0x7f0000000180)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x1c00000)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:17:47 executing program 3:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_io_uring_setup(0x4d50, &(0x7f00000002c0)={0x0, 0xfffffffe}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x7)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:17:47 executing program 1:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_CONNECT={0x10, 0x4, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000180)=@l2={0x1f, 0xffff, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}}, 0x0, 0x0, 0x1}, 0x2)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
ioctl$SCSI_IOCTL_START_UNIT(r0, 0x5)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
r4 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
read$eventfd(r4, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r4)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = syz_io_uring_complete(r2)
pread64(r5, &(0x7f0000000040)=""/135, 0x87, 0x0)

20:17:47 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 71)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:17:47 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x2000000000000000, 0x0, 0x0)

20:17:47 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000340)={0xd7, 0x5, 0x4, "559e2c5a3db6f00730bdf77309311fc8317fd1ed0de9bac8292415cd658f01dfaa33f54cf869ba9b10ced72f7d89e677561b58108e4b5fb1a8c95efe502bcc88f6ab20f75445f8f2c66f95964fd6d9fe3c85b88e1b02de8928d73d0496d44546bfc4f1c3802557b9cde00b7036f0cef2473e446f46159d395b124d5b2ac5e3e443a54606ae6b7027516dc9ac9b17ec0e6b4fe52b2c72e8704143f6f7b9668be032a1fdb3be33dc474ab05e3f0c76c33bbacc33f638d1e8df742ec3637ee2985fa5c2a43cfa692786ea6b5acb3f2f579caaec3938f7da88"})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2374.860414] FAULT_INJECTION: forcing a failure.
[ 2374.860414] name failslab, interval 1, probability 0, space 0, times 0
[ 2374.861742] CPU: 0 PID: 14199 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2374.862387] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2374.863084] Call Trace:
[ 2374.863317]  dump_stack+0x107/0x167
[ 2374.863635]  should_fail.cold+0x5/0xa
[ 2374.863651]  ? create_object.isra.0+0x3a/0xa20
[ 2374.863664]  should_failslab+0x5/0x20
[ 2374.863675]  kmem_cache_alloc+0x5b/0x310
[ 2374.863687]  ? __is_insn_slot_addr+0x14c/0x290
[ 2374.863700]  create_object.isra.0+0x3a/0xa20
[ 2374.863710]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2374.863724]  kmem_cache_alloc_node+0x169/0x330
[ 2374.863739]  __alloc_skb+0x6d/0x5b0
[ 2374.863753]  alloc_skb_with_frags+0x92/0x570
[ 2374.863773]  sock_alloc_send_pskb+0x7af/0x930
[ 2374.863794]  ? sk_alloc+0x350/0x350
[ 2374.863809]  ? perf_trace_lock+0xac/0x490
[ 2374.863820]  ? lock_chain_count+0x20/0x20
[ 2374.863838]  __ip6_append_data.isra.0+0x1c12/0x3a70
[ 2374.863857]  ? ip6_mtu+0x1bb/0x3d0
[ 2374.863867]  ? lock_downgrade+0x6d0/0x6d0
[ 2374.863876]  ? ip_frag_init+0x350/0x350
[ 2374.863895]  ? ip6_finish_output2+0x1fe0/0x1fe0
[ 2374.863905]  ? ip6_mtu+0x1e9/0x3d0
[ 2374.863917]  ? ip6_setup_cork+0xfb7/0x1740
[ 2374.863929]  ip6_make_skb+0x2de/0x4e0
[ 2374.863938]  ? ip_frag_init+0x350/0x350
[ 2374.863951]  ? ip_frag_init+0x350/0x350
[ 2374.863963]  ? ip6_push_pending_frames+0xf0/0xf0
[ 2374.863978]  ? ip6_dst_hoplimit+0x199/0x440
[ 2374.863988]  ? lock_downgrade+0x6d0/0x6d0
[ 2374.864007]  udpv6_sendmsg+0x20d0/0x2af0
[ 2374.864020]  ? ip_frag_init+0x350/0x350
[ 2374.864035]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2374.864052]  ? __lockdep_reset_lock+0x180/0x180
[ 2374.864062]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2374.864075]  ? lock_acquire+0x197/0x470
[ 2374.864084]  ? find_held_lock+0x2c/0x110
[ 2374.864102]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2374.864112]  ? sock_has_perm+0x1ea/0x280
[ 2374.864135]  ? __import_iovec+0x458/0x590
[ 2374.864146]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2374.864158]  inet6_sendmsg+0x105/0x140
[ 2374.864169]  ? inet6_compat_ioctl+0x320/0x320
[ 2374.864178]  __sock_sendmsg+0xf2/0x190
[ 2374.864189]  ____sys_sendmsg+0x334/0x870
[ 2374.864201]  ? sock_write_iter+0x3d0/0x3d0
[ 2374.864209]  ? do_recvmmsg+0x6d0/0x6d0
[ 2374.864221]  ? __lock_acquire+0x1657/0x5b00
[ 2374.864238]  ___sys_sendmsg+0xf3/0x170
[ 2374.864249]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2374.864261]  ? __lockdep_reset_lock+0x180/0x180
[ 2374.864270]  ? trace_hardirqs_on+0x5b/0x180
[ 2374.864283]  ? lock_acquire+0x197/0x470
[ 2374.864292]  ? find_held_lock+0x2c/0x110
[ 2374.864305]  ? __might_fault+0xd3/0x180
[ 2374.864314]  ? lock_downgrade+0x6d0/0x6d0
[ 2374.864327]  ? io_schedule_timeout+0x140/0x140
[ 2374.864345]  __sys_sendmmsg+0x195/0x470
[ 2374.864358]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2374.864368]  ? lock_downgrade+0x6d0/0x6d0
[ 2374.864387]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2374.864399]  ? wait_for_completion_io+0x270/0x270
[ 2374.864411]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2374.864420]  ? vfs_write+0x354/0xa70
[ 2374.864430]  ? fput_many+0x2f/0x1a0
[ 2374.864441]  ? ksys_write+0x1a9/0x260
[ 2374.864451]  ? __ia32_sys_read+0xb0/0xb0
[ 2374.864465]  __x64_sys_sendmmsg+0x99/0x100
[ 2374.864475]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2374.864486]  do_syscall_64+0x33/0x40
[ 2374.864496]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2374.864503] RIP: 0033:0x7fcaf2e26b19
[ 2374.864514] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2374.864520] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2374.864531] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2374.864537] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2374.864543] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2374.864549] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2374.864555] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
20:18:03 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x1200, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:18:03 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 72)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:18:03 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r4 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r3, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000040)={0x0, r4, 0x2})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x320, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_bp={&(0x7f0000000080), 0xa}, 0xa047, 0x100000000000006, 0x8001, 0x0, 0x0, 0x400000, 0x1, 0x0, 0x2}, 0x0, 0xffffffffffffffff, r3, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:18:03 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xe327000000000000)

20:18:03 executing program 1:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:18:03 executing program 3:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1f5e, &(0x7f0000000040)={0x0, 0x93be, 0x20, 0x0, 0x37f}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000100))

20:18:03 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x3f00000000000000, 0x0, 0x0)

20:18:03 executing program 7:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
ioctl$VT_SETMODE(r0, 0x5602, &(0x7f0000000240)={0x0, 0x2, 0x8, 0x7})
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x80000000, 0x8}, 0x0, 0x0, 0x8001, 0x8, 0x0, 0x400100, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x6e39, &(0x7f0000000040)={0x0, 0x8b25, 0x8, 0x1, 0x232}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000000c0)=<r4=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r4, r3, &(0x7f00000001c0)=@IORING_OP_OPENAT={0x12, 0x1, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000180)='./file0\x00', 0x11, 0x100, 0x12345}, 0x4)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2390.426134] FAULT_INJECTION: forcing a failure.
[ 2390.426134] name failslab, interval 1, probability 0, space 0, times 0
[ 2390.427426] CPU: 1 PID: 14229 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2390.428115] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2390.428926] Call Trace:
[ 2390.429199]  dump_stack+0x107/0x167
[ 2390.429571]  should_fail.cold+0x5/0xa
[ 2390.429960]  ? create_object.isra.0+0x3a/0xa20
[ 2390.430421]  should_failslab+0x5/0x20
[ 2390.430825]  kmem_cache_alloc+0x5b/0x310
[ 2390.431237]  ? __is_insn_slot_addr+0x14c/0x290
[ 2390.431696]  create_object.isra.0+0x3a/0xa20
[ 2390.432134]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2390.432640]  kmem_cache_alloc_node+0x169/0x330
[ 2390.433105]  __alloc_skb+0x6d/0x5b0
[ 2390.433479]  alloc_skb_with_frags+0x92/0x570
[ 2390.433934]  sock_alloc_send_pskb+0x7af/0x930
[ 2390.434393]  ? sk_alloc+0x350/0x350
[ 2390.434786]  ? perf_trace_lock+0xac/0x490
[ 2390.435202]  ? lock_chain_count+0x20/0x20
[ 2390.435633]  __ip6_append_data.isra.0+0x1c12/0x3a70
[ 2390.436144]  ? ip6_mtu+0x1bb/0x3d0
[ 2390.436499]  ? lock_downgrade+0x6d0/0x6d0
[ 2390.436917]  ? ip_frag_init+0x350/0x350
[ 2390.437326]  ? ip6_finish_output2+0x1fe0/0x1fe0
[ 2390.437793]  ? ip6_mtu+0x1e9/0x3d0
[ 2390.438150]  ? ip6_setup_cork+0xfb7/0x1740
[ 2390.438582]  ip6_make_skb+0x2de/0x4e0
[ 2390.438983]  ? ip_frag_init+0x350/0x350
[ 2390.439387]  ? ip_frag_init+0x350/0x350
[ 2390.439789]  ? ip6_push_pending_frames+0xf0/0xf0
[ 2390.440273]  ? ip6_dst_hoplimit+0x199/0x440
[ 2390.440706]  ? lock_downgrade+0x6d0/0x6d0
[ 2390.441132]  udpv6_sendmsg+0x20d0/0x2af0
[ 2390.441546]  ? ip_frag_init+0x350/0x350
[ 2390.441953]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2390.442479]  ? __lockdep_reset_lock+0x180/0x180
[ 2390.442955]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2390.443442]  ? lock_acquire+0x197/0x470
[ 2390.443838]  ? find_held_lock+0x2c/0x110
[ 2390.444260]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2390.444780]  ? sock_has_perm+0x1ea/0x280
[ 2390.445211]  ? __import_iovec+0x458/0x590
[ 2390.445625]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2390.446146]  inet6_sendmsg+0x105/0x140
[ 2390.446538]  ? inet6_compat_ioctl+0x320/0x320
[ 2390.447005]  __sock_sendmsg+0xf2/0x190
[ 2390.447390]  ____sys_sendmsg+0x334/0x870
[ 2390.447803]  ? sock_write_iter+0x3d0/0x3d0
[ 2390.447815]  ? do_recvmmsg+0x6d0/0x6d0
[ 2390.447830]  ? __lock_acquire+0x1657/0x5b00
[ 2390.447853]  ___sys_sendmsg+0xf3/0x170
[ 2390.447868]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2390.447884]  ? __lockdep_reset_lock+0x180/0x180
[ 2390.447895]  ? trace_hardirqs_on+0x5b/0x180
[ 2390.447912]  ? lock_acquire+0x197/0x470
[ 2390.447924]  ? find_held_lock+0x2c/0x110
[ 2390.447940]  ? __might_fault+0xd3/0x180
[ 2390.447953]  ? lock_downgrade+0x6d0/0x6d0
[ 2390.447968]  ? io_schedule_timeout+0x140/0x140
[ 2390.447993]  __sys_sendmmsg+0x195/0x470
[ 2390.448010]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2390.448022]  ? lock_downgrade+0x6d0/0x6d0
[ 2390.448050]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2390.448065]  ? wait_for_completion_io+0x270/0x270
[ 2390.448081]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2390.448093]  ? vfs_write+0x354/0xa70
[ 2390.448105]  ? fput_many+0x2f/0x1a0
[ 2390.448119]  ? ksys_write+0x1a9/0x260
[ 2390.448132]  ? __ia32_sys_read+0xb0/0xb0
[ 2390.448150]  __x64_sys_sendmmsg+0x99/0x100
[ 2390.448163]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2390.448176]  do_syscall_64+0x33/0x40
[ 2390.448188]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2390.448197] RIP: 0033:0x7fcaf2e26b19
[ 2390.448210] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2390.448217] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2390.448231] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2390.448239] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2390.448246] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2390.448253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2390.448260] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
[ 2390.448626] kauditd_printk_skb: 70 callbacks suppressed
[ 2390.448638] audit: type=1326 audit(1709497083.530:6904): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14218 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2390.448707] audit: type=1326 audit(1709497083.530:6905): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14218 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2390.448767] audit: type=1326 audit(1709497083.530:6906): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14218 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2390.448827] audit: type=1326 audit(1709497083.530:6907): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14218 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2390.448884] audit: type=1326 audit(1709497083.541:6908): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14218 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f0851210ad7 code=0x7ffc0000
[ 2390.448945] audit: type=1326 audit(1709497083.546:6909): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14218 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2390.465035] audit: type=1326 audit(1709497083.553:6910): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14218 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2390.467203] audit: type=1326 audit(1709497083.569:6911): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14218 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2390.488128] audit: type=1326 audit(1709497083.569:6912): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14218 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2390.490092] audit: type=1326 audit(1709497083.592:6913): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14218 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
20:18:03 executing program 1:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x4000, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3, 0x3}, 0x200, 0x0, 0x8001, 0x0, 0x0, 0x3ffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:18:03 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x1201, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:18:03 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xe4ffffff00000000)

20:18:03 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x900, 0x42)
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:18:03 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140))
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r5}}, 0x0)
fchmod(r0, 0x100)
syz_io_uring_submit(r1, r4, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:18:03 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x4000000000000000, 0x0, 0x0)

20:18:03 executing program 7:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000c, 0x100010, r0, 0x8000000)
r4 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
r7 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0xc3a4, 0x0, 0x0, 0xfffffff9}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r8=>0x0, &(0x7f0000000180)=<r9=>0x0)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r10}}, 0x0)
syz_io_uring_submit(0x0, r6, &(0x7f0000000100)=@IORING_OP_LINK_TIMEOUT={0xf, 0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0x77359400}, 0x1, 0x0, 0x1, {0x0, r10}}, 0x5)
r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r11}}, 0x0)
syz_io_uring_submit(r3, r6, &(0x7f0000000040)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x1}, 0x800)
r12 = epoll_create(0x8)
r13 = socket$inet6_tcp(0xa, 0x1, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r12, 0x1, r13, &(0x7f0000000100)={0x30000000})
epoll_ctl$EPOLL_CTL_MOD(r12, 0x3, r13, &(0x7f00000001c0))
write$binfmt_elf64(r12, &(0x7f0000000340)=ANY=[@ANYBLOB="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"/2097], 0x831)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:18:03 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 73)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

[ 2390.956429] FAULT_INJECTION: forcing a failure.
[ 2390.956429] name failslab, interval 1, probability 0, space 0, times 0
[ 2390.957411] CPU: 1 PID: 14274 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2390.957960] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2390.958618] Call Trace:
[ 2390.958866]  dump_stack+0x107/0x167
[ 2390.959166]  should_fail.cold+0x5/0xa
[ 2390.959475]  ? create_object.isra.0+0x3a/0xa20
[ 2390.959846]  should_failslab+0x5/0x20
[ 2390.960153]  kmem_cache_alloc+0x5b/0x310
[ 2390.960483]  create_object.isra.0+0x3a/0xa20
[ 2390.960834]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2390.961242]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 2390.961651]  ? alloc_skb_with_frags+0x92/0x570
[ 2390.962023]  __alloc_skb+0xb1/0x5b0
[ 2390.962318]  alloc_skb_with_frags+0x92/0x570
[ 2390.962695]  sock_alloc_send_pskb+0x7af/0x930
[ 2390.963074]  ? sk_alloc+0x350/0x350
[ 2390.963374]  ? perf_trace_lock+0xac/0x490
[ 2390.963713]  ? lock_chain_count+0x20/0x20
[ 2390.964050]  __ip6_append_data.isra.0+0x1c12/0x3a70
[ 2390.964460]  ? ip6_mtu+0x1bb/0x3d0
[ 2390.964749]  ? lock_downgrade+0x6d0/0x6d0
[ 2390.965079]  ? ip_frag_init+0x350/0x350
[ 2390.965408]  ? ip6_finish_output2+0x1fe0/0x1fe0
[ 2390.965780]  ? ip6_mtu+0x1e9/0x3d0
[ 2390.966067]  ? ip6_setup_cork+0xfb7/0x1740
[ 2390.966411]  ip6_make_skb+0x2de/0x4e0
[ 2390.966733]  ? ip_frag_init+0x350/0x350
[ 2390.967058]  ? ip_frag_init+0x350/0x350
[ 2390.967383]  ? ip6_push_pending_frames+0xf0/0xf0
[ 2390.967769]  ? ip6_dst_hoplimit+0x199/0x440
[ 2390.968114]  ? lock_downgrade+0x6d0/0x6d0
[ 2390.968463]  udpv6_sendmsg+0x20d0/0x2af0
[ 2390.968793]  ? ip_frag_init+0x350/0x350
[ 2390.969120]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2390.969542]  ? __lockdep_reset_lock+0x180/0x180
[ 2390.969921]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2390.970312]  ? lock_acquire+0x197/0x470
[ 2390.970633]  ? find_held_lock+0x2c/0x110
[ 2390.970988]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2390.971411]  ? sock_has_perm+0x1ea/0x280
[ 2390.971756]  ? __import_iovec+0x458/0x590
[ 2390.972093]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2390.972510]  inet6_sendmsg+0x105/0x140
[ 2390.972830]  ? inet6_compat_ioctl+0x320/0x320
[ 2390.973186]  __sock_sendmsg+0xf2/0x190
[ 2390.973502]  ____sys_sendmsg+0x334/0x870
[ 2390.973831]  ? sock_write_iter+0x3d0/0x3d0
[ 2390.974171]  ? do_recvmmsg+0x6d0/0x6d0
[ 2390.974481]  ? __lock_acquire+0x1657/0x5b00
[ 2390.974859]  ___sys_sendmsg+0xf3/0x170
[ 2390.975174]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2390.975544]  ? __lockdep_reset_lock+0x180/0x180
[ 2390.975917]  ? trace_hardirqs_on+0x5b/0x180
[ 2390.976266]  ? lock_acquire+0x197/0x470
[ 2390.976582]  ? find_held_lock+0x2c/0x110
[ 2390.976910]  ? __might_fault+0xd3/0x180
[ 2390.977230]  ? lock_downgrade+0x6d0/0x6d0
[ 2390.977567]  ? io_schedule_timeout+0x140/0x140
[ 2390.977947]  __sys_sendmmsg+0x195/0x470
[ 2390.978267]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2390.978612]  ? lock_downgrade+0x6d0/0x6d0
[ 2390.978970]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2390.979359]  ? wait_for_completion_io+0x270/0x270
[ 2390.979748]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2390.980121]  ? vfs_write+0x354/0xa70
[ 2390.980421]  ? fput_many+0x2f/0x1a0
[ 2390.980718]  ? ksys_write+0x1a9/0x260
[ 2390.981024]  ? __ia32_sys_read+0xb0/0xb0
[ 2390.981356]  __x64_sys_sendmmsg+0x99/0x100
[ 2390.981693]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2390.982107]  do_syscall_64+0x33/0x40
[ 2390.982409]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2390.982838] RIP: 0033:0x7fcaf2e26b19
[ 2390.983139] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2390.984603] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2390.985212] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2390.985778] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2390.986343] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2390.986926] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2390.987499] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
20:18:04 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x6703000000000000, 0x0, 0x0)

20:18:04 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x1800, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:18:04 executing program 7:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = fsmount(0xffffffffffffffff, 0x1, 0xf3)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x6af6, &(0x7f0000000040)={0x0, 0xd682, 0x0, 0x2, 0x9c, 0x0, r3}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0)=<r5=>0x0, &(0x7f0000000100))
r6 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r9}}, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r6, 0xc020f509, &(0x7f00000001c0)={<r10=>r0, 0x9, 0x5, 0xfffffffffffff800})
getsockopt$IP_SET_OP_VERSION(r10, 0x1, 0x53, &(0x7f0000000240), &(0x7f0000000280)=0x8)
syz_io_uring_submit(r5, r8, &(0x7f0000000180)=@IORING_OP_MADVISE={0x19, 0x2, 0x0, 0x0, 0x0, &(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x14, 0x1, {0x0, r4}}, 0x1)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:18:04 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xff00000000000000)

20:18:18 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 74)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:18:18 executing program 7:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r5 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r7 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r6, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r6, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r6, 0xc028660f, &(0x7f0000000040)={0x0, r7, 0x2})
setsockopt$SO_BINDTODEVICE_wg(r7, 0x1, 0x19, &(0x7f0000000080)='wg1\x00', 0x4)
setsockopt$inet6_tcp_int(r7, 0x6, 0x2, &(0x7f0000000140)=0x400, 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000000040)={0x0, r5, 0x2})
fcntl$dupfd(r5, 0x406, r3)
pwritev(r6, &(0x7f0000001580)=[{&(0x7f0000000340)="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", 0x1000}, {&(0x7f0000000100)="de027e4b79d8fc58", 0x8}, {&(0x7f0000001340)="cae16ddf9c10064f5280008c5299e7e1cadbe77de2dce1936bc9408aa6a5879ac310c0fb7940e3b00f8695d9d053a8732f3820903786802e8317c5097368054f8deb7b96308294448683126dcb8573d1e994974a951c1cb4055fdad608d191c39b899bfcd4cc856fc17c07a30c3bf5890e8fe9c957b64ba6a9a09fe6b96d456272c13a30356760d490c926", 0x8b}, {&(0x7f0000000180)="ba16bf23d4153097b3c8727364bd015604a79e09f2168466c4858cfc1e8a67f36702741b368e1c41bcfc75103de38e35d96c39890fba36a597fa54bf93e7f8a7c1303f158bd3914f551306ca69e5a145293042422c30ff40f3f06af530c585bff1", 0x61}, {&(0x7f0000001400)="d28b879c875d8b71eb139ee6907a1d5bf8576e097f57d4f8bb89df9e20634989317405cec77e773974cbd3ae61d50ce696a98bfa966f0ec71e09adc4c662bbd2f38c0fdf9b0f1d7441a98b37384ce8c50e702b6c2d8d8f4c62438a3c4203869451b82f773de10d12c7387c82f43c12babeedd218003a15b48b2aa384d60744ef8e80b2a63ba574c482d5a675d7756795c46938d456d1b2ec3c72dc2ce516e0104ac5ec6f889056da0bc075ca2fcc794bdc522543e12d664b6ba83b16eef5db4d031a77664f9fbe3743d48ff3ecf09c2c5d4188ec7dc77fc722bf05e6751cf08d99928cd189d5392ccf0be1f836aa46042063dd54", 0xf4}, {&(0x7f0000000240)}, {&(0x7f0000001500)="d58259ff0c0bb663a1974e57dc3ce9a3282812d32110d353da15cffc53b478fa38fefbd616a30ffd301936532b8cf7bb34d60515e9243b7d4c525ffdc20a4a0087fe3fe571e8ff9f7d2f013f80b227d0b1bfcba990c4059e", 0x58}], 0x7, 0xffff, 0xffff)

20:18:18 executing program 1:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, 0xe15}, 0x0, 0xffffff7fffffffff, 0xffffffffffffffff, 0x3)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:18:18 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xffffffff00000000)

20:18:18 executing program 0:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
fstat(r0, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
fsetxattr$security_capability(r1, &(0x7f0000000100), &(0x7f0000000340)=@v1={0x1000000, [{0x9, 0xffffffff}]}, 0xc, 0x0)
mount$cgroup2(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x60, &(0x7f0000000240)={[{@memory_localevents}, {}], [{@uid_lt={'uid<', r5}}, {@smackfsfloor={'smackfsfloor', 0x3d, '\'//'}}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:18:18 executing program 3:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
read$eventfd(r3, 0x0, 0x0)
r4 = epoll_create(0x8)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r5, &(0x7f0000000100)={0x30000000})
epoll_ctl$EPOLL_CTL_MOD(r4, 0x3, r5, &(0x7f00000001c0))
fchmod(r4, 0x2a)
mount$cgroup2(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0xc1026, &(0x7f0000000340)={[{@subsystem='cpuset'}, {@memory_localevents}], [{@seclabel}, {@obj_type={'obj_type', 0x3d, '+'}}, {@dont_appraise}, {@appraise_type}, {@smackfsfloor={'smackfsfloor', 0x3d, '\x00'}}, {@obj_user={'obj_user', 0x3d, '!\\'}}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@dont_hash}]})
io_uring_setup(0x20d9, &(0x7f0000000040)={0x0, 0x5cfd, 0x1, 0x1, 0x162, 0x0, r3})
r6 = openat$cgroup_devices(0xffffffffffffffff, &(0x7f0000000180)='devices.allow\x00', 0x2, 0x0)
dup(r6)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:18:18 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x1c00, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:18:18 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xc00c000000000000, 0x0, 0x0)

[ 2405.771351] kauditd_printk_skb: 118 callbacks suppressed
[ 2405.771369] audit: type=1326 audit(1709497098.873:7032): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14317 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2405.781555] FAULT_INJECTION: forcing a failure.
[ 2405.781555] name failslab, interval 1, probability 0, space 0, times 0
[ 2405.782520] CPU: 0 PID: 14325 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2405.783085] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2405.783755] Call Trace:
[ 2405.783976]  dump_stack+0x107/0x167
[ 2405.784281]  should_fail.cold+0x5/0xa
[ 2405.784536] audit: type=1326 audit(1709497098.873:7033): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14317 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2405.784611]  ? __alloc_skb+0x6d/0x5b0
[ 2405.788063]  should_failslab+0x5/0x20
[ 2405.788075]  kmem_cache_alloc_node+0x55/0x330
[ 2405.788087]  ? __lockdep_reset_lock+0x180/0x180
[ 2405.788098]  ? fib6_table_lookup+0x68f/0xb60
[ 2405.788111]  __alloc_skb+0x6d/0x5b0
[ 2405.788126]  alloc_skb_with_frags+0x92/0x570
[ 2405.788138]  ? mark_lock+0xf5/0x2df0
[ 2405.788154]  sock_alloc_send_pskb+0x7af/0x930
[ 2405.788177]  ? sk_alloc+0x350/0x350
[ 2405.788188]  ? find_held_lock+0x2c/0x110
[ 2405.788199]  ? perf_trace_lock+0xac/0x490
[ 2405.788221]  __ip6_append_data.isra.0+0x1c12/0x3a70
[ 2405.788242]  ? ip6_mtu+0x1bb/0x3d0
[ 2405.788252]  ? lock_downgrade+0x6d0/0x6d0
[ 2405.788261]  ? rawv6_exit+0x20/0x20
[ 2405.788280]  ? ip6_finish_output2+0x1fe0/0x1fe0
[ 2405.788290]  ? ip6_mtu+0x1e9/0x3d0
[ 2405.788301]  ? ip6_setup_cork+0xfb7/0x1740
[ 2405.788316]  ip6_append_data+0x1e7/0x330
[ 2405.788324]  ? rawv6_exit+0x20/0x20
[ 2405.788337]  ? rawv6_exit+0x20/0x20
[ 2405.788352]  icmp6_send+0x1257/0x1ff0
[ 2405.788377]  ? icmpv6_push_pending_frames+0x470/0x470
[ 2405.788387]  ? find_held_lock+0x2c/0x110
[ 2405.788426]  ? ipv6_proxy_select_ident+0x250/0x250
[ 2405.788442]  ip6_pkt_drop+0x3ae/0x7c0
[ 2405.788456]  ip6_local_out+0xb4/0x1a0
[ 2405.788469]  ip6_send_skb+0xb7/0x350
[ 2405.788483]  udp_v6_send_skb+0x7aa/0x15b0
[ 2405.788500]  udpv6_sendmsg+0x2113/0x2af0
[ 2405.788512]  ? ip_frag_init+0x350/0x350
[ 2405.788528]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2405.788547]  ? __lockdep_reset_lock+0x180/0x180
[ 2405.788557]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2405.788571]  ? lock_acquire+0x197/0x470
[ 2405.788580]  ? find_held_lock+0x2c/0x110
[ 2405.788599]  ? sock_has_perm+0x1ea/0x280
[ 2405.788625]  ? __import_iovec+0x458/0x590
[ 2405.788635]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2405.788648]  inet6_sendmsg+0x105/0x140
[ 2405.788659]  ? inet6_compat_ioctl+0x320/0x320
[ 2405.788668]  __sock_sendmsg+0xf2/0x190
[ 2405.788679]  ____sys_sendmsg+0x334/0x870
[ 2405.788690]  ? sock_write_iter+0x3d0/0x3d0
[ 2405.788699]  ? do_recvmmsg+0x6d0/0x6d0
[ 2405.788711]  ? __lock_acquire+0x1657/0x5b00
[ 2405.788729]  ___sys_sendmsg+0xf3/0x170
[ 2405.788741]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2405.788754]  ? __lockdep_reset_lock+0x180/0x180
[ 2405.788769]  ? lock_acquire+0x197/0x470
[ 2405.788778]  ? find_held_lock+0x2c/0x110
[ 2405.788792]  ? __might_fault+0xd3/0x180
[ 2405.788802]  ? lock_downgrade+0x6d0/0x6d0
[ 2405.788814]  ? io_schedule_timeout+0x140/0x140
[ 2405.788834]  __sys_sendmmsg+0x195/0x470
[ 2405.788848]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2405.788858]  ? lock_downgrade+0x6d0/0x6d0
[ 2405.788879]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2405.788891]  ? wait_for_completion_io+0x270/0x270
[ 2405.788904]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2405.788914]  ? vfs_write+0x354/0xa70
[ 2405.788924]  ? fput_many+0x2f/0x1a0
[ 2405.788935]  ? ksys_write+0x1a9/0x260
[ 2405.788945]  ? __ia32_sys_read+0xb0/0xb0
[ 2405.788960]  __x64_sys_sendmmsg+0x99/0x100
[ 2405.788970]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2405.788981]  do_syscall_64+0x33/0x40
20:18:19 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x2000, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

[ 2405.788990]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2405.788997] RIP: 0033:0x7fcaf2e26b19
[ 2405.789009] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2405.789014] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2405.789025] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2405.789032] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2405.789038] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2405.789043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2405.789049] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
[ 2405.811070] audit: type=1326 audit(1709497098.879:7034): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14317 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2405.811221] audit: type=1326 audit(1709497098.879:7035): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14317 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
20:18:19 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 75)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

[ 2405.811342] audit: type=1326 audit(1709497098.880:7036): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14317 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2405.811454] audit: type=1326 audit(1709497098.885:7037): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14317 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f0851210ad7 code=0x7ffc0000
[ 2405.811538] audit: type=1326 audit(1709497098.885:7038): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14317 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2405.811631] audit: type=1326 audit(1709497098.892:7039): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14317 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2405.811716] audit: type=1326 audit(1709497098.909:7040): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14317 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2405.811803] audit: type=1326 audit(1709497098.909:7041): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14317 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
20:18:19 executing program 7:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x80, 0x8b8}, 0x8020, 0x0, 0x8001, 0x0, 0x0, 0x4400000, 0x1}, 0x0, 0xffffffffff7fffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x554c, &(0x7f0000000040)={0x0, 0x5290, 0x0, 0x2, 0x12f}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000000c0)=<r4=>0x0, &(0x7f0000000100))
r5 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r7 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
stat(&(0x7f0000000280)='./file1\x00', &(0x7f0000000340))
writev(r6, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r6, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r6, 0xc028660f, &(0x7f0000000040)={0x0, r7, 0x2})
syz_io_uring_submit(r4, r3, &(0x7f0000000240)=@IORING_OP_FILES_UPDATE={0x14, 0x5, 0x0, 0x0, 0x0, &(0x7f00000001c0)=[r5, r0, r7], 0x3}, 0x7)

20:18:19 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x2103, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:18:19 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xc42e000000000000, 0x0, 0x0)

[ 2406.216525] FAULT_INJECTION: forcing a failure.
[ 2406.216525] name failslab, interval 1, probability 0, space 0, times 0
[ 2406.218483] CPU: 1 PID: 14362 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2406.219617] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2406.220790] Call Trace:
[ 2406.221172]  dump_stack+0x107/0x167
[ 2406.221698]  should_fail.cold+0x5/0xa
[ 2406.222252]  ? create_object.isra.0+0x3a/0xa20
[ 2406.222972]  should_failslab+0x5/0x20
[ 2406.223529]  kmem_cache_alloc+0x5b/0x310
[ 2406.224233]  ? mark_lock+0xf5/0x2df0
[ 2406.224843]  create_object.isra.0+0x3a/0xa20
[ 2406.225470]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2406.226381]  kmem_cache_alloc_node+0x169/0x330
[ 2406.227089]  ? __lockdep_reset_lock+0x180/0x180
[ 2406.227790]  __alloc_skb+0x6d/0x5b0
[ 2406.228496]  alloc_skb_with_frags+0x92/0x570
[ 2406.229130]  ? mark_lock+0xf5/0x2df0
[ 2406.229750]  sock_alloc_send_pskb+0x7af/0x930
[ 2406.230581]  ? sk_alloc+0x350/0x350
[ 2406.231108]  ? find_held_lock+0x2c/0x110
[ 2406.231684]  ? perf_trace_lock+0xac/0x490
[ 2406.232284]  __ip6_append_data.isra.0+0x1c12/0x3a70
[ 2406.232999]  ? ip6_mtu+0x1bb/0x3d0
[ 2406.233503]  ? lock_downgrade+0x6d0/0x6d0
[ 2406.234085]  ? rawv6_exit+0x20/0x20
[ 2406.234619]  ? ip6_finish_output2+0x1fe0/0x1fe0
[ 2406.235293]  ? ip6_mtu+0x1e9/0x3d0
[ 2406.235802]  ? ip6_setup_cork+0xfb7/0x1740
[ 2406.236407]  ip6_append_data+0x1e7/0x330
[ 2406.236974]  ? rawv6_exit+0x20/0x20
[ 2406.237498]  ? rawv6_exit+0x20/0x20
[ 2406.238019]  icmp6_send+0x1257/0x1ff0
[ 2406.238583]  ? icmpv6_push_pending_frames+0x470/0x470
[ 2406.239318]  ? find_held_lock+0x2c/0x110
[ 2406.239928]  ? ipv6_proxy_select_ident+0x250/0x250
[ 2406.240634]  ip6_pkt_drop+0x3ae/0x7c0
[ 2406.241182]  ip6_local_out+0xb4/0x1a0
[ 2406.241726]  ip6_send_skb+0xb7/0x350
[ 2406.242265]  udp_v6_send_skb+0x7aa/0x15b0
[ 2406.242869]  udpv6_sendmsg+0x2113/0x2af0
[ 2406.243456]  ? ip_frag_init+0x350/0x350
[ 2406.244031]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2406.244777]  ? __lockdep_reset_lock+0x180/0x180
[ 2406.245439]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2406.246129]  ? lock_acquire+0x197/0x470
[ 2406.246695]  ? find_held_lock+0x2c/0x110
[ 2406.247295]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2406.248064]  ? trace_hardirqs_on+0x5b/0x180
[ 2406.248678]  ? sock_has_perm+0x1ea/0x280
[ 2406.249284]  ? __import_iovec+0x458/0x590
[ 2406.249875]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2406.250614]  inet6_sendmsg+0x105/0x140
[ 2406.251171]  ? inet6_compat_ioctl+0x320/0x320
[ 2406.251803]  __sock_sendmsg+0xf2/0x190
[ 2406.252360]  ____sys_sendmsg+0x334/0x870
[ 2406.252942]  ? sock_write_iter+0x3d0/0x3d0
[ 2406.253541]  ? do_recvmmsg+0x6d0/0x6d0
[ 2406.254106]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2406.254855]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2406.255625]  ? trace_hardirqs_on+0x5b/0x180
[ 2406.256246]  ___sys_sendmsg+0xf3/0x170
[ 2406.256802]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2406.257458]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2406.258093]  ? _raw_spin_unlock_irq+0x27/0x30
[ 2406.258735]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2406.259377]  ? finish_task_switch+0x126/0x5d0
[ 2406.260005]  ? finish_task_switch+0xef/0x5d0
[ 2406.260633]  ? __switch_to+0x572/0xf70
[ 2406.261185]  ? __switch_to_asm+0x3a/0x60
[ 2406.261757]  ? __switch_to_asm+0x34/0x60
[ 2406.262340]  ? __schedule+0x82c/0x1ea0
[ 2406.262819]  ? io_schedule_timeout+0x140/0x140
[ 2406.263392]  __sys_sendmmsg+0x195/0x470
[ 2406.263881]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2406.264398]  ? lock_downgrade+0x6d0/0x6d0
[ 2406.264914]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2406.265493]  ? wait_for_completion_io+0x270/0x270
[ 2406.266078]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2406.266634]  ? vfs_write+0x354/0xa70
[ 2406.267091]  ? fput_many+0x2f/0x1a0
[ 2406.267536]  ? ksys_write+0x1a9/0x260
[ 2406.268003]  ? __ia32_sys_read+0xb0/0xb0
[ 2406.268501]  __x64_sys_sendmmsg+0x99/0x100
[ 2406.269005]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2406.269625]  do_syscall_64+0x33/0x40
[ 2406.270068]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2406.270683] RIP: 0033:0x7fcaf2e26b19
[ 2406.271186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2406.273695] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2406.274610] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2406.275472] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2406.276323] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2406.277173] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2406.278023] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
20:18:19 executing program 1:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$SCSI_IOCTL_SYNC(r0, 0x4)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KDFONTOP_SET_DEF(r0, 0x4b72, &(0x7f0000000040)={0x2, 0x0, 0x9, 0x17, 0x3, &(0x7f0000000340)="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"})
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)

20:18:31 executing program 3:
syz_extract_tcp_res$synack(&(0x7f0000000040), 0x1, 0x0)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_io_uring_setup(0x4d4b, &(0x7f00000002c0)={0x0, 0x4, 0x10, 0x8000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000280)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
ioctl$TCSETA(r0, 0x5406, &(0x7f0000000240)={0x4, 0x8, 0x20, 0x3681, 0xf, "8119c2bcf3402d73"})
r4 = dup(r0)
r5 = openat$sr(0xffffffffffffff9c, &(0x7f0000000180), 0x193000, 0x0)
setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r5, 0x6, 0x21, &(0x7f00000001c0)="14ee9748798b7725819ff32741e7237c", 0x10)
ioctl$BINDER_CTL_ADD(r4, 0xc1086201, &(0x7f0000000340)={'custom0\x00'})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clock_gettime(0x0, &(0x7f0000000080)={<r6=>0x0, <r7=>0x0})
syz_io_uring_submit(r2, r3, &(0x7f0000000100)=@IORING_OP_LINK_TIMEOUT={0xf, 0x5, 0x0, 0x0, 0x0, &(0x7f00000000c0)={r6, r7+10000000}, 0x1, 0x1, 0x1}, 0xff)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:18:31 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 76)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:18:31 executing program 1:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$TIOCMBIS(r0, 0x5416, &(0x7f0000000040)=0x1ff)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:18:31 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
setsockopt$inet6_IPV6_PKTINFO(0xffffffffffffffff, 0x29, 0x32, &(0x7f0000000040)={@local}, 0x14)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r4 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r3, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000040)={0x0, r4, 0x2})
setsockopt$inet6_MCAST_MSFILTER(r3, 0x29, 0x30, &(0x7f0000000340)=ANY=[@ANYBLOB="08000000000000000a004e2000000200fc010000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000030000000a004e2300000400fc020000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000bc1f76a0f600000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a004e2400000401fc01000000000000000000000000000102000000000000000000000000000000000000000000000000000000000000000000728e2c150000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a004e2300000003000000000000000000000000000000010300"/528], 0x210)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0xfffffffffffffffc, 0x8001, 0x0, 0x0, 0x400000, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:18:31 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x2400, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:18:31 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xe4ffffff00000000, 0x0, 0x0)

20:18:31 executing program 7:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TCSETSW2(r0, 0x402c542c, &(0x7f0000000040)={0x3, 0xfffffffc, 0x20, 0x80000001, 0x8, "9fa4c712ed0d4cad45a5f0a0492552cbd22893", 0xfffffffe, 0x10001})
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x5000000, 0x10, r1, 0x8000000)
r4 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x0)
r8 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r9=>0x0, &(0x7f0000000140)=<r10=>0x0)
r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r11}}, 0x0)
syz_io_uring_submit(r9, r6, &(0x7f0000000080)=@IORING_OP_FALLOCATE={0x11, 0x1, 0x0, @fd_index=0xb, 0x400, 0x0, 0x6}, 0x10000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:18:31 executing program 0:
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
read$eventfd(r0, 0x0, 0x0)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
read$eventfd(r1, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f0000000100)={0x200a})
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
r5 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r8}}, 0x0)
syz_io_uring_submit(r3, r7, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x4, 0x0, 0x0, 0x0, 0x1}, 0x57f46734)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2418.804385] FAULT_INJECTION: forcing a failure.
[ 2418.804385] name failslab, interval 1, probability 0, space 0, times 0
[ 2418.805387] CPU: 1 PID: 14401 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2418.806121] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2418.806785] Call Trace:
[ 2418.807040]  dump_stack+0x107/0x167
[ 2418.807347]  should_fail.cold+0x5/0xa
[ 2418.807671]  should_failslab+0x5/0x20
[ 2418.807990]  __kmalloc_node_track_caller+0x74/0x3b0
[ 2418.808398]  ? alloc_skb_with_frags+0x92/0x570
[ 2418.808764]  ? __lockdep_reset_lock+0x180/0x180
[ 2418.809155]  __alloc_skb+0xb1/0x5b0
[ 2418.809452]  alloc_skb_with_frags+0x92/0x570
[ 2418.809816]  ? mark_lock+0xf5/0x2df0
[ 2418.810132]  sock_alloc_send_pskb+0x7af/0x930
[ 2418.810519]  ? sk_alloc+0x350/0x350
[ 2418.810829]  ? find_held_lock+0x2c/0x110
[ 2418.811183]  ? perf_trace_lock+0xac/0x490
[ 2418.811535]  __ip6_append_data.isra.0+0x1c12/0x3a70
[ 2418.811954]  ? ip6_mtu+0x1bb/0x3d0
[ 2418.812256]  ? lock_downgrade+0x6d0/0x6d0
[ 2418.812592]  ? rawv6_exit+0x20/0x20
[ 2418.812909]  ? ip6_finish_output2+0x1fe0/0x1fe0
[ 2418.813298]  ? ip6_mtu+0x1e9/0x3d0
[ 2418.813599]  ? ip6_setup_cork+0xfb7/0x1740
[ 2418.813948]  ip6_append_data+0x1e7/0x330
[ 2418.814292]  ? rawv6_exit+0x20/0x20
[ 2418.814594]  ? rawv6_exit+0x20/0x20
[ 2418.814910]  icmp6_send+0x1257/0x1ff0
[ 2418.815271]  ? icmpv6_push_pending_frames+0x470/0x470
[ 2418.815702]  ? find_held_lock+0x2c/0x110
[ 2418.816051]  ? nf_hook_slow+0x143/0x1e0
[ 2418.816388]  ? ipv6_proxy_select_ident+0x250/0x250
[ 2418.816801]  ip6_pkt_drop+0x3ae/0x7c0
[ 2418.817119]  ip6_local_out+0xb4/0x1a0
[ 2418.817433]  ip6_send_skb+0xb7/0x350
[ 2418.817750]  udp_v6_send_skb+0x7aa/0x15b0
[ 2418.818109]  udpv6_sendmsg+0x2113/0x2af0
[ 2418.818448]  ? ip_frag_init+0x350/0x350
[ 2418.818779]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2418.819230]  ? __lockdep_reset_lock+0x180/0x180
[ 2418.819605]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2418.820015]  ? lock_acquire+0x197/0x470
[ 2418.820340]  ? find_held_lock+0x2c/0x110
[ 2418.820693]  ? sock_has_perm+0x1ea/0x280
[ 2418.821034]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2418.821463]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2418.821906]  ? trace_hardirqs_on+0x5b/0x180
[ 2418.822274]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2418.822691]  inet6_sendmsg+0x105/0x140
[ 2418.823020]  ? inet6_compat_ioctl+0x320/0x320
[ 2418.823377]  __sock_sendmsg+0xf2/0x190
[ 2418.823701]  ____sys_sendmsg+0x334/0x870
[ 2418.824033]  ? sock_write_iter+0x3d0/0x3d0
[ 2418.824382]  ? do_recvmmsg+0x6d0/0x6d0
[ 2418.824695]  ? find_held_lock+0x2c/0x110
[ 2418.825037]  ___sys_sendmsg+0xf3/0x170
[ 2418.825358]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2418.825732]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2418.826176]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2418.826535]  ? trace_hardirqs_on+0x5b/0x180
[ 2418.826892]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2418.827266]  ? finish_task_switch+0x126/0x5d0
[ 2418.827642]  ? finish_task_switch+0xef/0x5d0
[ 2418.827992]  ? __switch_to+0x572/0xf70
[ 2418.828302]  ? __switch_to_asm+0x3a/0x60
[ 2418.828641]  ? __switch_to_asm+0x34/0x60
[ 2418.828972]  ? __schedule+0x82c/0x1ea0
[ 2418.829290]  ? io_schedule_timeout+0x140/0x140
[ 2418.829668]  __sys_sendmmsg+0x195/0x470
[ 2418.829992]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2418.830340]  ? lock_downgrade+0x6d0/0x6d0
[ 2418.830696]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2418.831090]  ? wait_for_completion_io+0x270/0x270
[ 2418.831491]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2418.831868]  ? vfs_write+0x354/0xa70
[ 2418.832178]  ? fput_many+0x2f/0x1a0
[ 2418.832471]  ? ksys_write+0x1a9/0x260
[ 2418.832785]  ? __ia32_sys_read+0xb0/0xb0
[ 2418.833114]  __x64_sys_sendmmsg+0x99/0x100
[ 2418.833470]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2418.833896]  do_syscall_64+0x33/0x40
[ 2418.834196]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2418.834618] RIP: 0033:0x7fcaf2e26b19
[ 2418.834920] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2418.836420] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2418.837029] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2418.837609] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2418.838197] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2418.838768] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2418.839354] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
[ 2418.845981] kauditd_printk_skb: 103 callbacks suppressed
[ 2418.845991] audit: type=1326 audit(1709497111.946:7145): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14395 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2418.848469] audit: type=1326 audit(1709497111.946:7146): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14395 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2418.854905] audit: type=1326 audit(1709497111.946:7147): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14395 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2418.862322] audit: type=1326 audit(1709497111.947:7148): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14395 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2418.876880] audit: type=1326 audit(1709497111.947:7149): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14395 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2418.883264] audit: type=1326 audit(1709497111.947:7150): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14395 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f0851210ad7 code=0x7ffc0000
[ 2418.887510] audit: type=1326 audit(1709497111.947:7151): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14395 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2418.887566] audit: type=1326 audit(1709497111.956:7152): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14395 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2418.887621] audit: type=1326 audit(1709497111.956:7153): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14395 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2418.887681] audit: type=1326 audit(1709497111.956:7154): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14395 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
20:18:32 executing program 2:
stat(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
r1 = open(&(0x7f0000000140)='./file1\x00', 0x100, 0x38)
lstat(&(0x7f00000002c0)='./file1\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0})
r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000180), 0x12041, 0x0)
getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f0000000380)={{{@in, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@multicast1}, 0x0, @in6=@loopback}}, &(0x7f00000004c0)=0xe8)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000500)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@dfltgid}, {@posixacl}, {@loose}, {@version_u}, {@dfltgid={'dfltgid', 0x3d, r2}}, {@version_9p2000}], [{@fowner_eq={'fowner', 0x3d, r4}}, {@dont_hash}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}, {@measure}, {@smackfshat={'smackfshat', 0x3d, '\',\'A'}}, {@seclabel}, {@pcr={'pcr', 0x3d, 0x33}}, {@defcontext={'defcontext', 0x3d, 'user_u'}}, {@appraise}]}})
fchown(0xffffffffffffffff, r0, r2)
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r5 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
r8 = open(&(0x7f0000000140)='./file1\x00', 0x100, 0x38)
lstat(&(0x7f00000002c0)='./file1\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, <r9=>0x0})
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000380)={{{@in, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r10=>0x0}}, {{@in=@multicast1}, 0x0, @in6=@loopback}}, &(0x7f00000004c0)=0xe8)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000500)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r8}, 0x2c, {[{@dfltgid}, {@posixacl}, {@loose}, {@version_u}, {@dfltgid={'dfltgid', 0x3d, r9}}, {@version_9p2000}], [{@fowner_eq={'fowner', 0x3d, r10}}, {@dont_hash}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}, {@measure}, {@smackfshat={'smackfshat', 0x3d, '\',\'A'}}, {@seclabel}, {@pcr={'pcr', 0x3d, 0x33}}, {@defcontext={'defcontext', 0x3d, 'user_u'}}, {@appraise}]}})
chown(&(0x7f00000001c0)='./file0\x00', 0x0, r9)
syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0xcb00d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
ioctl$SCSI_IOCTL_GET_BUS_NUMBER(0xffffffffffffffff, 0x5386, &(0x7f0000000040))
io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:18:32 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xff00000000000000, 0x0, 0x0)

20:18:32 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x3f00, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:18:32 executing program 1:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x5, 0x94080)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
read$eventfd(r0, 0x0, 0x0)
ioctl$TCSETS(r0, 0x5402, &(0x7f0000000080)={0x3, 0x1302, 0x4, 0xa, 0x9, "64c4b7e370f3087c072ccc224c0d507335a030"})
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
r4 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
read$eventfd(r4, 0x0, 0x0)
ioctl$VT_RELDISP(r4, 0x5605)
syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0xce6, &(0x7f0000000240), 0x0, 0x3}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:18:45 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
creat(&(0x7f0000000040)='./file0\x00', 0x1a3)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
stat(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0})
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
setresuid(0xffffffffffffffff, r4, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x3, 0x2, &(0x7f0000000180)=[{&(0x7f0000000340)="db5c0c2f4e8f2ae237103ed087c0e91cc0a42b8d4a9b710e84f8d173828f7f60f69a702aa41f8c18dfda3449d530fd6258e5b52010a1abc80d6adfe8265c90f7bc7a79bdf35d9482546da8d6e0ddf62347bc8d63e50526e88f6e495af323434aeccff3286e779a114832e5ea52c5f789a1da2132e14bc9143d6e37628f980f7e3e768e23fde22c7f09c47068cf3c8a79885eda0f58f4d5ae7ce9b07164de71dc3628d21c8a800798", 0xa8, 0x6}, {&(0x7f0000000400)="8e5ce7f398eab25902033942add6ff95695a88a2d5a42cbe067742251c61bfdf51ea0dbd4a519a41762fb2a1f388a8cd1bd7cf4177378cc725cb72b0aed8d95f06331b87d90d5fe9f2b0c798e5003a402af9880fb6da1711484803dbf28e5eae271fe79e044654a7ea3b032c17744d3d7e27bcf8e7aa2f50e4fdabd6332bea87abeadce94bede711fc9966bd32b88a967a763eb1745f7dc7b167274fb21e6894932e532f43bd0dd3ab82e124db6f5c36c9da9c", 0xb3, 0x80}], 0x20000, &(0x7f00000004c0)={[{@huge_within_size}, {@huge_never}, {@nr_inodes={'nr_inodes', 0x3d, [0x31, 0x6b, 0x65, 0x67, 0x1d, 0x2d, 0x78, 0x39]}}, {@huge_within_size}, {@nr_inodes={'nr_inodes', 0x3d, [0x65]}}, {@gid={'gid', 0x3d, r3}}, {@huge_always}, {@huge_advise}], [{@smackfsdef={'smackfsdef', 0x3d, '*6,,\x10+&--\x00'}}, {@dont_appraise}, {@euid_eq={'euid', 0x3d, r4}}, {@smackfsfloor={'smackfsfloor', 0x3d, '\xf7]-!^))'}}, {@fowner_lt}]})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = epoll_create(0x8)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r6, &(0x7f0000000100)={0x30000000})
epoll_ctl$EPOLL_CTL_MOD(r5, 0x3, r6, &(0x7f00000001c0))
readv(r5, &(0x7f0000000740)=[{&(0x7f00000005c0)=""/146, 0x92}, {&(0x7f0000000680)=""/152, 0x98}], 0x2)

20:18:45 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x4000, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:18:45 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0xffffffff00000000, 0x0, 0x0)

20:18:45 executing program 1:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x40000, 0x110)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x185842, 0x123)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
ioctl$SG_GET_PACK_ID(r0, 0x227c, &(0x7f0000000080))
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x4002, 0x0, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:18:45 executing program 7:
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x203d}}, './file0\x00'})
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, 0x4, 0x1, 0x101, 0x0, 0x0, {0xa, 0x0, 0x7}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x4000000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x185842, 0x123)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
r2 = syz_open_dev$vcsa(&(0x7f0000001480), 0x9, 0x2)
sendmsg$DEVLINK_CMD_PORT_UNSPLIT(r2, &(0x7f00000015c0)={&(0x7f0000001440)={0x10, 0x0, 0x0, 0x810}, 0xc, &(0x7f0000001580)={&(0x7f0000001700)={0xd8, 0x0, 0x200, 0x70bd29, 0x25dfdbfe, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40}, 0x44000)
syz_open_dev$tty20(0xc, 0x4, 0x1)
r3 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
read$eventfd(r6, 0x0, 0x0)
sendmsg$sock(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)="ad578d710a8ecf0e00019ac79dcf52f2000af440e8e35323bdbc0ca67048d7d5d468709ccf1f3df91a758f8fa5ce0f35d2850a85b39d9c34e39a7757f4745da72f6247dbe678ba2e7afa7b105eca19f79589a89d8e0adb556bb532d6f3c8bcc84b2144bdde74753dad7a76182919e964b735c4985879bd8b94a82db04865d3a7a42cf72693c11f34ad063feefff860d92839e39848e5ceac57f3d4f3d24cf429c03b5849176fa932ec89aaf10e27a93860b1aac301f783009d07a727ca6d4d0fc0d32d319794b6a9720ff151c9e1b950cace87a1963b0ba5cc52d2536a994dd0c651cc6594de6c1515481ea2acfa75ccb0f916653f", 0xf5}, {&(0x7f00000001c0)="a031da7e33fafc43985b2e51fa1f12dbe36576a6ddd0846dc0bc25ab9a67152d1223905cb2ed837a4d427dbcd47fca89ca50d80f", 0x34}, {&(0x7f0000000440)="a066a85a99f20b8d4dd8b77286295e273ab4da46102e2c3bc281ffdad69af6af8d9df16d61db49633f29cebf0f5ab52c2e010254b5c4f2f29546a0caa1261cfbf94a9f54861c169732a27fce57a6669dbbd76a25bfd9dc90189212712b1929a0e4d31ad3b00530719ff3ee2ba66739803df8e80dbbc6ff93a4aac1581afd30848ac1e5e46106c2508567660fec18c0309a0f2470138f35d0fa5beee4e05f4880fb79510fee516f08ee3f91e4f86bbfffe851a796a7eaa586bc7523cda67f99f5751c187e299c07e7c261611df121e248ada78050dfcf0f02a414e4a6dbc24db7a17d023fe008341ca309e5a12b485ba2e14957d0542029141048d63506bdd8d2c5994b04abb06cac42fdf90126b5808acd6ee3220054c65c2629aefd462f669a7490734b7cb0b270a9ad6c82563ed7eb5ce42b6278efab586340c4965ddeada82c39f6423c991816b05153473ae9fef1cf62ba3b23a55910b2a8320f7425b69c6f40e1efd95c751174b20a6965a077d0d0471af6b928bf5fec9a6ffe8a70803016c7a1869cc5a155fe59dd974ce3b9f9cfab05a3c2d67cfffd00de7e39060125e8cfd3bdc98c4cc165a3899f2d4532ef25277177a3af70a4b5f47e7fe3f0cc982821353fde8cb952ddaf49179ff373c2b5b1746295994639d34b0b532b18cb1ba85e524452d752109fabbc0c71480f5c7775aa33d674bede8eb2fa366a0d02ac6cb0d1f867902ccfe1631b2a9f9f0ba9981665b098891c82c28b1b9bae212a4c3ac68549629c06fbfd57042d31412ba932cfbec4469bc38d530e23126027c345ac190ad7fce004d86a87d120484a6127f66fb6b216bb63a1e0002a6309ea249e5878bc532e2f32a6e8691bb838d24df0504a87f21e05983892748ce0035c4f046ec1b47bd1038bfe89bb597e58409daf32181b574b8fb8379c9f247ebe68deb3436e008bc0d96dafa27dce35249fa3bcfc53f59296a61d65547714b4b956e617c240fb217cd3211098a42025e71c710990112ff106de205dfc9e086414d077fe849b95d66957e9cba0395af76beb49652acdce65d487a74d6b8e909c6cb9c90bd6c8859884467dad1d2097f2a12a0deafd134678e30d16e8450430c1a9389580c5b1958f4da070dee323a80dbd9169d7f4bb166518719eaa10e1fedfef7ff8cd26350e9fcd7ab7669638af4f5bbbc9a58e04ea5ff726f5142141bcd7de201d27c0417362628368a69ed90150188974f10d3b9bbda8f58b58d0966661e79f6dc181c49603a3d07542e5fff6e31fdb48ace99a242d6b7c5bef3f4d51b65d05e9c9e8285b58f063a56889efe65f68bc5aae15feaa243019e91f58d48c425bda3c12fddd42ceef0cb792175ee07a553027b65edc37b4493b320eaa07a2ab95674c88d13298ccb6a8331eb7d9365547ceca47aa893e57ace557e6cb7fb794fd6c103235fe8b98f220490cf0f52dbde29fa9ef33473f2847f5eb33a29c9f7ae36dc2350c335325059c5ff4988f1bd0b41dfb4a313a132b2893d9442aee77d32689ac123646ff683c6b813e56ccee6f28ffdb6f43d069e5148b594619916e1a5c5d67355560fd51f023f6d6773c6c5c77e9cab53e26f20ceb7f052b31ba75af7143d6aeb89285fd59aef088b0d4c497a212489f914088dc9f665dc8500912560ae321f4c5f371210d6f55c676106e9a01be2cdf399fda711453048669b352f0498c5ab227d251d95363c0d288738cc515a8cb8d5c85d061d388444a06a43fe4d6a4359678135808b8d53abbc90485fbeb33167fa0ed89e35b6fdfd0bedb57f5be26820eb6aa15fe311a95fa649ab4dc34a1290c852a91223e10869d8405a9e614c8b66b302e68bcfb690683d7c2c18697557753473c24590425fa5c93a1f330a12c1b80e6c6107d82125f7a7d84e6e2bf70efd7e004acd4f0e3b9edcde6685a29f20ab237c869ed2b91397666b0841044694865499cd8e05f070c3cdba8fd15950c698f66d3b540ac5c5ee84edac73340db1bcb6acff79e6ff859006aaeb4b3179be06ed49fdf555756cdf40100586d12d388aff8af5368480284760733e74cbb1ee6ed21ac013df47cfaa35f6b046b7abd7e68eec28ffacedfbc9169efd57464826a4c51f288733149ca2a49fd875fc01e511f309c40c38513c479091bbae301d4fdffa7fb45794700d768bfa53abfb118d5980c61ce46181a3aedcef0dd0fb770b327eac8f9802ef6a29dfc647fff173c7f144867e2b2f82e77b08a7a6e57eee4de4985df08db013744b135caf63bff6b73c509241ebd63daf92bf93519e44fd0a225d56b9d9ef53af0aae2fba44bf9d2e23dfa77f0b0e316c5db13062b687e079f55999cc1dd7dbffca5cbf678b23391569bca7afeded485a188d7c6adedbdeded51126a383309f137afcc591edcb2f30a233f3d85f3e1b09de786701ab5cb7a09de10f601438c3ed8fcb3748f5e3685d4241314b9edbcfaa72b5ed51b76ae516c37fa74c0e9a8bf676c652d877887ac22fb8cd9ce27da8f111b335b549142e1131613a1bd4d33dbd93b8977b5bca22eb3369f816d59cd4c86411c1295834c0ccbfc6a5e3a22aad8edc3615bb5f3b882fd0facba29cc097340a8413b4956a44dd3f727a1709a8732ea40b51075598a05637e360ec3634ae107028d8dbfb462827929701f2350d8f8d45dc6ae114d8579dd284f678ddcae7bd874af8ce1b914b03e126b6333ec1ae99a9c9ed48dc2bef65ae692bdf6c503781b8f47bf2719de4e113c62daf881f034001e0dbea96d5dacc5cd55be3e2917c3df049535b348cfbda541eba82bb0851a2704980a805f1f14e0527ae8d6614a997ab4a4b08a246aa0153af7c954654a1ae2f60525095c51c91cd606f21230e202bfd21b1ae19e13671bf69b6c2f257ea783131b8cc96665cb910cc6660a0650b751e16e70c470da881bd5e3a0be62d6c7f0e6ac207e1040cb74babffa580901666956b336cf197522cf4e02342d5b15d39d89a5c99b0975f56c03946864f6ae4cabf35c6ff3772d87050a7a7b870a642249c7a8c74d71cd371a868b3e663c6b12e6a34ea4bec9bd39a0c7f149e8bcd25018d4d92f8bf9f593c487794e162b1b919a24170c2c7ba69c3fdfc59a98f8fd472a515a3dfa278552141b6181985b5cea60fa5426a3f93d00d19a39f35c3363086dc2ff3981ad1ab1fba0b8dc590fc74af53a0ac372ff66be6a79ef3bc65420463f46aa1d63bdb5c13bdfb5f6a729ebeba2babdb313c6493f1a2e413e261c2119b18c2b3af793911d8b5b34205f11d51b8f0983364295e16fa9a102c8aa974529b30455fdcefbf6afac2ee99c8e7a5c7ef24ebcc7962d61ad026f2f7fe401c869d3cf843aaf56c6971e5b28d15c07ea27efd1e5f95bddeb880c7fa552b598d18887356b112c96a5e1bea48be8d55557ea6365da3e4b997e993385e4c561101558d547fe0397764bba494c821b15f12f12f95a1023853046c98bec29eae99d5d05d24f358d65b781091a75ed89fee3d9054ab7de19f25ca9fe7c843a85d17054304726a8667328721a292102c6cf0bae3c7d1d4fe1f3955d59c36604ebc973f962e7930f978530f5c1a5fc36e601c9cd3bd68605d237420cc7fe9ebaad78985deb0ab078662071720e0c70ed7f673edf011d46c2df82c651375f770460d1e42bfd1f2714049661aac1c22389d929f431bfdd57b5df22399b0be9a3f73e01d8953f74f874c523e7f67d84096241b0c603873cefe965d9c2bee28ebac758f6daaf6e3a0a5daf60c0a97c95d2e6b058064f2369f5a53082071ec0b7a2454a4aab1c47d10f85584e8b65f354f37f3dcf62777eae887ece1d0c991a094b81b0762bc5cc9c9f23ab2dfa25b3cd1f548ee098e909f92ebf2904933f861395f17593620522cdf37e2b8bc094c38407c3a1c13c823ad395ca672f306212e21b6aea82a15cc711564ddbdae92822e13db51a17e4059386fea03b132bcc34a06b97cfdefe11f78d30c400fabc9520e2601f5209d483bde55ed61c5f5e7244a9466449b3cb464dc31d80438c9d774cd818545d6f992f21372aea8603fd20143ab15f502e493b70068875199dd8fbd7eb9f9a9f67ecc338fa31ac888b6c2611acc548885ed1dfb5146729e0f96be04a3dc3da2769ccf63e78bd419f45412f521d979b90479d2f0227bff3742b78b6caeea03ed3c5a7290f958dd61c85af3968628373633e97cc4b4e32c32e25e4a4b776311cdeb86152b49d82997e891883323272710a26b120703e6440ebbfa975fd2b9f7dc6caea4d6888a731c9c5095ac84869cd24b1d6945882d29961dd7bebab5f653680dbb2b456212179d20b21b2b40e0a279fb875e9d7e3bc8b05f29434e7aa8ef495b3b7045cae6b4ab75ca3bb11a51de5f0c35d04cae38ec44945d1789c65ab0c33556207c36a12fe74d8eaf73bb3dc041dd168fb16b546c170b7f9bec6117197601afb8512f70b5aac5ca99ff976a54d1238c4d8cde87398cdf9fe7b33829945afc63dd2fdfcd647aca74aa23fc14123ac0c95c916668cc2d701ef03f175a771c485785d0c5add9f15aec784a06ee6de40ab5ae79e080a52fa037c2dbd71c4c5232a421f083a38979cf0e4c633713e8913b868cf8dbffb32f93f329418041922c91075d48a66e495c2f2dd692c9f70e9c872e7321f770e007f552afcafbbc8a69c87285543e101a1b76e7795f4f7e115adaba07e50f545cda7cd30d47fd363980737a17ee305a2e59099311b487c9b0488f8b8dad14f2c96d678f167401968bea72d4697d860aef5f47aa7e45bb7d0968fd5b229181ab8edd95d010cd87869f61b01d6fc82155582d49b832e5e31a841765f2bf21243bb0b5568f1ca815995f856e6bb81bd2cbf8ff82b6c422579e6e3f87b0d8a961a7d19d3491e977a58159f93463bb601405013c6d422043ea3d4f89f0dc0e86394d0f73deea99f6f3f0986452d6e93e1d0b492de672a8eda82b94d23f409f7336f64199007d12e04f74c65f2e0afa7474b009b773b6f85b2b09fa96a674078fc4a5959c03aa8a858cdde43ae6f9cf6c8ac4e2a862f8e925f322e2ce5335373a476a52fc69b132e0b2614bfcd0efe551cd28ec457bf516207f2446ebeb95812bd47458ea5390f2f46e7fa62cf734520627980f65cdfd2b9b0a9e78d6f7ec19f1aabf910d36f665244c0ed50714289084b3a948af8fa0fb51be29f08ae90ebaddf3ea05b7569d06bd8ed263df42d6388a07e8d7368f824026f9e3f86bcb3eb85654cf009d4c9a408a8d0861a395b83d1f5a818f1f2be405a4a565c3270fc42516b4802c0cabf92e816af3b35129a93d3e06fef7c53e68da215158c1bbe0a063c7b5468818cdce25e1073c7691461c706f40ab610c0dbaa11ef461bf97187aac50dd30dd79d673f61fa5a21642ee2c44cd3dae96f0788be49173fac1fee09563afed2ff482e035d4b0424f8515628535baedc0e4220aa6247a049af287836dd8b14180488048a54696720150e7f338ee278a1dd088183a33cceb6d0c2d4b6a564987079004c86dc8275794f831498d404801b4cb07f4a045a4a26d69bfc12c0dafd91083b5829ce8f887e7aa740500fceb3822430f5a78518e874f2ae35ac0734d7cd1563eb5a60641cd75ce7b3024bc4e61441e5837baeffbf796616f0eb849cebad96f14ef3ca19d2b34d773447f9c466c1cbd75c4eeef11abef1b1943e8da6169b7b44e544b00ffcab0de202798bc3683be460acf81e07d8f757c0e521ec5d2071238a5adf72256905e5ae3fac3eab065de6d3acbf6c7d05cf53", 0x1000}], 0x3}, 0x20004000)
io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:18:45 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 77)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:18:45 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r4 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r3, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000040)={0x0, r4, 0x2})
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x2, 0x8, 0x20, 0x0, 0x0, 0x10000, 0x200, 0x3, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0xfff, 0x1, @perf_config_ext={0x1}, 0x8000, 0x5, 0x200000, 0x0, 0xc000000000000000, 0x4, 0x6, 0x0, 0x9ec, 0x0, 0x9d}, 0x0, 0xd, r3, 0xb)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:18:45 executing program 3:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x23c7, &(0x7f0000000040)={0x0, 0x3c73, 0x0, 0x2, 0x38f, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000000c0)=<r3=>0x0, &(0x7f0000000100))
syz_io_uring_setup(0x4446, &(0x7f0000000180)={0x0, 0x2cb7, 0x10, 0x1, 0x33c, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280)=<r4=>0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000400)={{0x1, 0x1, 0x18, <r5=>r0, {0x58}}, './file0\x00'})
r6 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r9}}, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000001800)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r5, 0x0, &(0x7f00000017c0)={&(0x7f0000000440)=@pppoe={0x18, 0x0, {0x3, @local, 'ip6gretap0\x00'}}, 0x80, &(0x7f0000000580)=[{&(0x7f00000004c0)="1f616b6480e0044f7a395d0d09d8deee2110889ab0d0f1e30a6cdc5fc3dc073fcf4b03c6da15fb083471b91de1bf403b9471bdc7ab3d64d45eafe2490431aef2ebf67e43c3825af71702ced4e9aeb608b8fe9d64016c67c12f695510daf357280597316965cbcf2e66189dcd3e26ded14aeca14164b3fea6e50b30255dd78355ec6955c5a4e1cb718c", 0x89}], 0x1, &(0x7f00000005c0)=[{0x1010, 0x102, 0x3, "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"}, {0x78, 0x10e, 0x9, "63f2cb10f6096f7aa5a0552f05cae2a1fd7684ea6611e2b098cf5c51f13e04a6bdca255e3007477dd48fe65158546f5b2e6af910f08a8188ecb308f04db8bbfb3a580bd59a56e021bb0eb6858de9dc2315bc510eb464cf46d3f6b1356e4045516359"}, {0x70, 0xac99ed3542388eec, 0x2, "78477fa22812b0b125652b9d69b448d45b8fcd8e193add6d129449c5d69acad4989c42363ecbb5519dda869ad10cf809d033957971ef4b3dc431fac7b6a6f5699ac75913f709d89f4ea32f7b863844afd90383828f8d3d65c1faf1dace13"}, {0xf8, 0x10d, 0x35, "bf3e4ef75c6d9b8b4655cc7a9b0f0945adf004ba848556ba28014d7b6e3b734b3b7468b84d5a846d54913c98c3198b93798316116b489b3366d82f2dc3e2a0cf3a8618263e76e5dd8ca212bf8ec7a7d44b7c359c55fc341a2bb8234e9b89dcd006af5b86158647af520b41b77ca3e3f23dc2cbf1b7e044fd46c0a01cbc80375eb7654b7a3e7f0c09c9125c0c7cda3901f2884bb45dc154ec79f87b3eef34e90ef0bb6d2918fbad2cf145b9558d7d1ef13b7ab6915c123417efeb841a40f79c3d6e59ab707c66b65dd3e0082a61ec9241c391cf9120b2d299a4737db213eed9780796ace6f9af"}], 0x11f0}, 0x0, 0x20040005, 0x0, {0x0, r9}}, 0x7)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2431.968561] kauditd_printk_skb: 78 callbacks suppressed
[ 2431.968577] audit: type=1326 audit(1709497125.070:7233): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14457 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2431.971414] audit: type=1326 audit(1709497125.070:7234): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14457 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2431.973933] audit: type=1326 audit(1709497125.071:7235): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14457 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2431.979250] audit: type=1326 audit(1709497125.074:7236): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14457 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2432.006862] audit: type=1326 audit(1709497125.074:7237): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14457 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f0851210ad7 code=0x7ffc0000
[ 2432.025669] audit: type=1326 audit(1709497125.076:7238): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14457 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2432.039941] FAULT_INJECTION: forcing a failure.
[ 2432.039941] name failslab, interval 1, probability 0, space 0, times 0
[ 2432.041399] CPU: 1 PID: 14469 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2432.042121] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2432.042961] Call Trace:
[ 2432.043275]  dump_stack+0x107/0x167
[ 2432.043644]  should_fail.cold+0x5/0xa
[ 2432.044044]  ? create_object.isra.0+0x3a/0xa20
[ 2432.044509]  should_failslab+0x5/0x20
[ 2432.044917]  kmem_cache_alloc+0x5b/0x310
[ 2432.045333]  create_object.isra.0+0x3a/0xa20
[ 2432.045780]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2432.046290]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 2432.046820]  ? alloc_skb_with_frags+0x92/0x570
[ 2432.047313]  ? __lockdep_reset_lock+0x180/0x180
[ 2432.047822]  __alloc_skb+0xb1/0x5b0
[ 2432.048259]  alloc_skb_with_frags+0x92/0x570
[ 2432.048775]  ? mark_lock+0xf5/0x2df0
[ 2432.048997] audit: type=1326 audit(1709497125.076:7239): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14457 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2432.049157]  sock_alloc_send_pskb+0x7af/0x930
[ 2432.049193]  ? sk_alloc+0x350/0x350
[ 2432.053694]  ? find_held_lock+0x2c/0x110
[ 2432.054108]  ? perf_trace_lock+0xac/0x490
[ 2432.054563]  __ip6_append_data.isra.0+0x1c12/0x3a70
[ 2432.055078]  ? ip6_mtu+0x1bb/0x3d0
[ 2432.055468]  ? lock_downgrade+0x6d0/0x6d0
[ 2432.055882]  ? rawv6_exit+0x20/0x20
[ 2432.056264]  ? ip6_finish_output2+0x1fe0/0x1fe0
[ 2432.056721]  ? ip6_mtu+0x1e9/0x3d0
[ 2432.057092]  ? ip6_setup_cork+0xfb7/0x1740
[ 2432.057541]  ip6_append_data+0x1e7/0x330
[ 2432.057943]  ? rawv6_exit+0x20/0x20
[ 2432.058312]  ? rawv6_exit+0x20/0x20
[ 2432.058683]  icmp6_send+0x1257/0x1ff0
[ 2432.059089]  ? icmpv6_push_pending_frames+0x470/0x470
[ 2432.059613]  ? find_held_lock+0x2c/0x110
[ 2432.060065]  ? ipv6_proxy_select_ident+0x250/0x250
[ 2432.060595]  ip6_pkt_drop+0x3ae/0x7c0
[ 2432.060978]  ip6_local_out+0xb4/0x1a0
[ 2432.061374]  ip6_send_skb+0xb7/0x350
[ 2432.061753]  udp_v6_send_skb+0x7aa/0x15b0
[ 2432.062181]  udpv6_sendmsg+0x2113/0x2af0
[ 2432.062580] audit: type=1326 audit(1709497125.076:7240): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14457 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2432.062698] audit: type=1326 audit(1709497125.081:7241): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14457 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2432.064634]  ? ip_frag_init+0x350/0x350
[ 2432.064663]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2432.064696]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2432.064722]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2432.069866]  ? trace_hardirqs_on+0x5b/0x180
[ 2432.070307]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2432.070891]  ? sock_has_perm+0x1ea/0x280
[ 2432.071342]  ? __import_iovec+0x458/0x590
[ 2432.071758]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2432.072308]  inet6_sendmsg+0x105/0x140
[ 2432.072709]  ? inet6_compat_ioctl+0x320/0x320
[ 2432.073158]  __sock_sendmsg+0xf2/0x190
[ 2432.073549]  ____sys_sendmsg+0x334/0x870
[ 2432.073963]  ? sock_write_iter+0x3d0/0x3d0
[ 2432.074380]  ? do_recvmmsg+0x6d0/0x6d0
[ 2432.074762]  ? find_held_lock+0x2c/0x110
[ 2432.075214]  ___sys_sendmsg+0xf3/0x170
[ 2432.075600]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2432.076054]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2432.076580]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2432.076992]  ? trace_hardirqs_on+0x5b/0x180
[ 2432.077431]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2432.077867]  ? finish_task_switch+0x126/0x5d0
[ 2432.078307]  ? finish_task_switch+0xef/0x5d0
[ 2432.078746]  ? __switch_to+0x572/0xf70
[ 2432.079162]  ? __switch_to_asm+0x3a/0x60
[ 2432.079587]  ? __switch_to_asm+0x34/0x60
[ 2432.079886] audit: type=1326 audit(1709497125.081:7242): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14457 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2432.080010]  ? __schedule+0x82c/0x1ea0
[ 2432.083667]  ? io_schedule_timeout+0x140/0x140
[ 2432.084149]  __sys_sendmmsg+0x195/0x470
[ 2432.084563]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2432.085016]  ? lock_downgrade+0x6d0/0x6d0
[ 2432.085475]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2432.085975]  ? wait_for_completion_io+0x270/0x270
[ 2432.086461]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2432.086923]  ? vfs_write+0x354/0xa70
[ 2432.087339]  ? fput_many+0x2f/0x1a0
[ 2432.087699]  ? ksys_write+0x1a9/0x260
[ 2432.088082]  ? __ia32_sys_read+0xb0/0xb0
[ 2432.088481]  __x64_sys_sendmmsg+0x99/0x100
[ 2432.088877]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2432.089406]  do_syscall_64+0x33/0x40
[ 2432.089763]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2432.090269] RIP: 0033:0x7fcaf2e26b19
[ 2432.090641] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2432.092477] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2432.093242] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2432.093950] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2432.094654] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2432.095376] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2432.096086] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
20:18:45 executing program 1:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
r3 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r6}}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000680)=@IORING_OP_SENDMSG={0x9, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000040)="ee47856216df04e16788c2d042ed7558d5e4f0a5dd5a9ff3939102e14c6b1004e7d33408f34236d4a85f57cea4a82454e3d0194b491ca1b7473f8b723e8b7e7bc12d9e8b814fc0611f8d0811962133ce86f453b4c030120ea054da77da313771103409e7d52d8d377d29cf22cf839c24", 0x70}, {&(0x7f0000000340)="fbc51af49189e6e7f81bbbc7ff2c66894c2e55be44b2528051e328bb8b454ccb7c192e38e171b4b4455d0056eef1b6ba12fc836c12259ffacb03cc1c99ed058fc4f87f175444fe987028d8fc92a95b1239c65c66d3fdca7c708808b52a19158abe0917cac6ac3101caa5bf5ae4b3f8b23b03b3f435733f777b977f318e401aa32d6afa388e76867bbb48bf590100704722991a6c3dd2dea716e221a5c2c5ec32191975df8abd892271a45efbd6c3fb193536a0d5ee71278eee46a2c3962347ce8ed8bafe91962f7c19b0cf427237356311d0e2a99499a1fc6c5275a9ea", 0xdd}, {&(0x7f0000000440)="2a314fc65d097f6b2df5391a74661deab8ce7086d041af35b7cf31f4da43289ecd9941586db04afc388ea54c88d9bf116778a295f251f2f3bf2162a8f2adb53020dcd7b5685dddafbdb575873a532695ed534158c1b1e1961fcca2ccef755e5c24e976ded531aa75c4a81138df909cbbba34183ffda3afbd049293b7c13e05585f4f47cbf7ee1739cbab6ced8a1bae8ed2e2eee1f86462bd0d71952f244177675d071f1d21c4ddb5dd89f17f9fcbaba8734959ea2a99b2786ccafb79fbd922a2575131f6f3e3a6f28d11c8856aae380c752380aadc2f0c47d120596252f20bea207928174fb3ef8fe84e2995a0bd32b35b0f0c19e41626fafe", 0xf9}, {&(0x7f00000000c0)="7b4f95411c4c217720eef0ae27cdd1e59732bc6e0f0936302de5cc4fae1b6b91ef5857c3c7136d641a6143918122e035dcae7831920fcf1500cd0819a1e0b3fa2f58f30b5a831959dd32dd64324aa0de69204b40b1709c38d4f566ee45", 0x5d}, {&(0x7f0000000180)="0d2ea6da561d6650f8158b5871500414dd237f46315177ae5bfe01cc45484435f3f16e9780d528a9c8e48aa7d8bf5a92e328c85286b50e8c7e496e691cf367f733d6e72a", 0x44}, {&(0x7f0000000240)="cf52ad18a81a0ec78421dafb8a64e1743142c0bfa9b9a9a68b6ca4", 0x1b}, {&(0x7f0000000540)="f360ad2e283223a044c78e2257ec5c68b3b705f4be60177b95c7f39f7f38f6158ced46560e30d6ed917b3d164aa446edd46e5e8a8e2b6a26677fb7d5ba605f1d55489a8f6b92e242bd3c135eeb97b8db36b95f49ff960690487393ab8464d58885e8c0eeb7083df40c164155eb718cfa68e85cd541ef32d723e67759237c070a4d0e60ab304921c97022253165bc05dc3d2caef37f2f49b7a7f38b1475197672", 0xa0}], 0x7}, 0x0, 0x8800, 0x1, {0x0, r6}}, 0x20)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:18:45 executing program 7:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:18:45 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2)

20:18:45 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x4800, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:18:45 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_open_dev$sg(0x0, 0x80, 0x200)
r1 = pidfd_open(0xffffffffffffffff, 0x0)
pidfd_getfd(r1, r0, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
pipe(&(0x7f0000000040)={<r5=>0xffffffffffffffff})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2000000, 0x4000010, r5, 0x0)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:18:45 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0xc001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
io_uring_enter(r2, 0x400019e3, 0x1, 0x2, 0x0, 0x52)

20:18:45 executing program 3:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
r3 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r6}}, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000040)=@IORING_OP_NOP={0x0, 0x4}, 0xffffff00)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x380a, &(0x7f00000000c0)={0x0, 0xa330, 0x0, 0x1, 0x2d9}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000003000/0x3000)=nil, &(0x7f0000000180), &(0x7f00000001c0)=<r7=>0x0)
r8 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r9=>0x0, &(0x7f0000000140)=<r10=>0x0)
r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r11}}, 0x0)
r12 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r13 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r12, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r12, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r12, 0xc028660f, &(0x7f0000000040)={0x0, r13, 0x2})
syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140))
syz_io_uring_submit(r9, r7, &(0x7f0000000240)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, {0x683}, 0x1}, 0xe1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:18:59 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x5)

20:18:59 executing program 2:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fallocate(r4, 0x0, 0x0, 0x8000)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000040)=@IORING_OP_FALLOCATE={0x11, 0x5, 0x0, @fd=r4, 0x68, 0x0, 0x8, 0x0, 0x1, {0x0, r5}}, 0x2)
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r6 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x4007, @fd_index=0x3, 0x0, 0x0}, 0x0)
shmget(0x3, 0x2000, 0x2, &(0x7f0000ffc000/0x2000)=nil)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:18:59 executing program 1:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_open_pts(r0, 0x20000)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000080)=0xff)
syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r6 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r5, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r5, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r5, 0xc028660f, &(0x7f0000000040)={0x0, r6, 0x2})
ioctl$SG_SET_FORCE_PACK_ID(r5, 0x227b, &(0x7f0000000040))

20:18:59 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x4c00, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:18:59 executing program 7:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x2007, @fd_index=0x3, 0x0, 0x0, 0xb, 0x14}, 0x2)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x800001, 0x20010, r0, 0x8000000)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
write$nbd(0xffffffffffffffff, &(0x7f0000000080)={0x67446698, 0x0, 0x4, 0x4, 0x2, "0ee6ce1b4b7e416eaa3d869cbcfcc09a45083e7cf048e7499c38c4196d4c42605af367fba96648adfc629191739492fcd07ea072eb50f0f366aecf4f788cbaa25103703e958d551e5a386afdecf92a29de3d5f2d7995f007793f5dcdca2ef0c53399e05ff8102337c576d673d30d602f6244cb8182482db3f05b54212f3c1828af994d4aa6fc532f404d3c960f59ccce2cdb1bec805ca3717543c27fdb7746e9ea84dedc3edd2176c98591b8321ca9bcf055f637691042c1b8f7c73825b851910e1cc4e9b20d0967d2bb38c870d0d7d8eb5ef37f6f403ef6db24fbedc5740d4fb687fb636f56ae"}, 0xf7)

20:18:59 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x4, 0x0, 0x4, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:18:59 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 78)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:18:59 executing program 3:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000140), 0x4000, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r1, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r2, 0x2})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r0, {0x1}}, './file0/file0\x00'})
r3 = creat(&(0x7f0000000240)='./file0/file0\x00', 0x63)
fallocate(r3, 0x0, 0x0, 0x8000)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc018937e, &(0x7f0000000180)={{0x1, 0x1, 0x18, r3, @out_args}, './file0\x00'})
syz_open_dev$tty20(0xc, 0x4, 0x1)
r4 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x200}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000080)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
r8 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x8, 0x2010, r4, 0x10000000)
syz_io_uring_submit(r5, r8, &(0x7f0000000100)=@IORING_OP_READ=@pass_buffer={0x16, 0x3, 0x2004, @fd_index=0x9, 0x89, &(0x7f00000000c0)=""/26, 0x1a, 0xc, 0x209a7e1e575b47ae, {0x0, r7}}, 0x4)
syz_io_uring_submit(r5, 0x0, &(0x7f0000000040)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index=0x3, 0x100, 0x0, 0x5b, 0x4, 0x1, {0x0, r7}}, 0x0)
r9 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r10 = dup3(r9, 0xffffffffffffffff, 0x80000)
io_uring_enter(r10, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2446.466542] kauditd_printk_skb: 56 callbacks suppressed
[ 2446.466559] audit: type=1326 audit(1709497139.569:7299): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14540 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2446.478973] audit: type=1326 audit(1709497139.569:7300): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14540 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2446.488821] audit: type=1326 audit(1709497139.570:7301): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14540 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2446.504721] audit: type=1326 audit(1709497139.571:7302): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14540 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2446.526261] audit: type=1326 audit(1709497139.573:7303): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14540 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f0851210ad7 code=0x7ffc0000
[ 2446.528649] audit: type=1326 audit(1709497139.573:7304): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14540 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2446.532682] audit: type=1326 audit(1709497139.575:7305): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14540 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2446.535545] audit: type=1326 audit(1709497139.575:7306): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14540 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2446.538353] audit: type=1326 audit(1709497139.575:7307): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14540 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2446.539739] FAULT_INJECTION: forcing a failure.
[ 2446.539739] name failslab, interval 1, probability 0, space 0, times 0
[ 2446.540671] audit: type=1326 audit(1709497139.577:7308): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14540 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2446.542229] CPU: 0 PID: 14552 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2446.542240] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2446.542246] Call Trace:
[ 2446.542269]  dump_stack+0x107/0x167
[ 2446.542289]  should_fail.cold+0x5/0xa
[ 2446.547935]  ? lock_release+0x680/0x680
[ 2446.548472]  ? skb_clone+0x14f/0x3d0
[ 2446.548926]  should_failslab+0x5/0x20
[ 2446.549390]  kmem_cache_alloc+0x5b/0x310
[ 2446.549885]  skb_clone+0x14f/0x3d0
[ 2446.550323]  dev_queue_xmit_nit+0x3a7/0xb00
[ 2446.550856]  dev_hard_start_xmit+0xab/0x6f0
[ 2446.551386]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2446.552012]  __dev_queue_xmit+0x17ec/0x2710
[ 2446.552549]  ? find_held_lock+0x2c/0x110
[ 2446.553036]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2446.553602]  ? mark_held_locks+0x9e/0xe0
[ 2446.554104]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2446.554746]  ip6_finish_output2+0x17b4/0x1fe0
[ 2446.555294]  __ip6_finish_output.part.0+0x4f7/0xbc0
[ 2446.555916]  ip6_output+0x3aa/0x7e0
[ 2446.556367]  ip6_local_out+0xb4/0x1a0
[ 2446.556839]  ip6_send_skb+0xb7/0x350
[ 2446.557299]  ip6_push_pending_frames+0xbd/0xf0
[ 2446.557856]  icmpv6_push_pending_frames+0x29c/0x470
[ 2446.558472]  icmp6_send+0x16ad/0x1ff0
[ 2446.558949]  ? icmpv6_push_pending_frames+0x470/0x470
[ 2446.559579]  ? find_held_lock+0x2c/0x110
[ 2446.560107]  ? ipv6_proxy_select_ident+0x250/0x250
[ 2446.560707]  ip6_pkt_drop+0x3ae/0x7c0
[ 2446.561170]  ip6_local_out+0xb4/0x1a0
[ 2446.561637]  ip6_send_skb+0xb7/0x350
[ 2446.562088]  udp_v6_send_skb+0x7aa/0x15b0
[ 2446.562601]  udpv6_sendmsg+0x2113/0x2af0
[ 2446.563099]  ? ip_frag_init+0x350/0x350
[ 2446.563594]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2446.564230]  ? __lockdep_reset_lock+0x180/0x180
[ 2446.564795]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2446.565384]  ? lock_acquire+0x197/0x470
[ 2446.565862]  ? find_held_lock+0x2c/0x110
[ 2446.566368]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2446.567020]  ? sock_has_perm+0x1ea/0x280
[ 2446.567556]  ? __import_iovec+0x458/0x590
[ 2446.568050]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2446.568679]  inet6_sendmsg+0x105/0x140
[ 2446.569138]  ? inet6_compat_ioctl+0x320/0x320
[ 2446.569679]  __sock_sendmsg+0xf2/0x190
[ 2446.570153]  ____sys_sendmsg+0x334/0x870
[ 2446.570644]  ? sock_write_iter+0x3d0/0x3d0
[ 2446.571153]  ? do_recvmmsg+0x6d0/0x6d0
[ 2446.571632]  ? __lock_acquire+0x1657/0x5b00
[ 2446.572167]  ___sys_sendmsg+0xf3/0x170
[ 2446.572639]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2446.573179]  ? __lockdep_reset_lock+0x180/0x180
[ 2446.573747]  ? lock_acquire+0x197/0x470
[ 2446.574216]  ? find_held_lock+0x2c/0x110
[ 2446.574713]  ? __might_fault+0xd3/0x180
[ 2446.575196]  ? lock_downgrade+0x6d0/0x6d0
[ 2446.575709]  ? io_schedule_timeout+0x140/0x140
[ 2446.576268]  __sys_sendmmsg+0x195/0x470
[ 2446.576756]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2446.577267]  ? lock_downgrade+0x6d0/0x6d0
[ 2446.577784]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2446.578370]  ? wait_for_completion_io+0x270/0x270
[ 2446.578955]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2446.579521]  ? vfs_write+0x354/0xa70
[ 2446.579975]  ? fput_many+0x2f/0x1a0
[ 2446.580420]  ? ksys_write+0x1a9/0x260
[ 2446.580878]  ? __ia32_sys_read+0xb0/0xb0
[ 2446.581377]  __x64_sys_sendmmsg+0x99/0x100
[ 2446.581886]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2446.582511]  do_syscall_64+0x33/0x40
[ 2446.582998]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2446.583626] RIP: 0033:0x7fcaf2e26b19
[ 2446.584078] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2446.586302] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2446.587220] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2446.588099] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2446.588968] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2446.589835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2446.590720] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
20:18:59 executing program 3:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x7)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:18:59 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r3 = fork()
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r5 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r4, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000000040)={0x0, r5, 0x2})
perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0x1f, 0x20, 0x8, 0xc8, 0x0, 0x6, 0x10108, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x3, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x800, 0x0, @perf_bp={&(0x7f0000000040), 0x2}, 0x8, 0xffffffff, 0x200, 0x1, 0x0, 0x1, 0x101, 0x0, 0x3, 0x0, 0x3f}, r3, 0xd, r4, 0x8)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:18:59 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x8)

20:18:59 executing program 7:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ad, 0x0, 0x1, 0x0, 0x0)

20:18:59 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x5505, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:18:59 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x185842, 0x123)
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
ioctl$TIOCL_GETSHIFTSTATE(r3, 0x541c, &(0x7f0000000040))

20:18:59 executing program 1:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r5 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r4, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000000040)={0x0, r5, 0x2})
ioctl$FICLONE(r0, 0x40049409, r4)

20:18:59 executing program 3:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x3ffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)

20:18:59 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 79)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:19:00 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x367)

[ 2447.002767] FAULT_INJECTION: forcing a failure.
[ 2447.002767] name failslab, interval 1, probability 0, space 0, times 0
[ 2447.003948] CPU: 0 PID: 14616 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2447.004626] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2447.005459] Call Trace:
[ 2447.005724]  dump_stack+0x107/0x167
[ 2447.006099]  should_fail.cold+0x5/0xa
[ 2447.006496]  ? create_object.isra.0+0x3a/0xa20
[ 2447.006963]  should_failslab+0x5/0x20
[ 2447.007359]  kmem_cache_alloc+0x5b/0x310
[ 2447.007776]  create_object.isra.0+0x3a/0xa20
[ 2447.008224]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2447.008741]  kmem_cache_alloc+0x159/0x310
[ 2447.009175]  skb_clone+0x14f/0x3d0
[ 2447.009548]  dev_queue_xmit_nit+0x3a7/0xb00
[ 2447.009991]  dev_hard_start_xmit+0xab/0x6f0
[ 2447.010418]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2447.010957]  __dev_queue_xmit+0x17ec/0x2710
[ 2447.011396]  ? find_held_lock+0x2c/0x110
[ 2447.011808]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2447.012277]  ? mark_held_locks+0x9e/0xe0
[ 2447.012718]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2447.013244]  ip6_finish_output2+0x17b4/0x1fe0
[ 2447.013712]  __ip6_finish_output.part.0+0x4f7/0xbc0
[ 2447.014215]  ip6_output+0x3aa/0x7e0
[ 2447.014591]  ip6_local_out+0xb4/0x1a0
[ 2447.014974]  ip6_send_skb+0xb7/0x350
[ 2447.015351]  ip6_push_pending_frames+0xbd/0xf0
[ 2447.015816]  icmpv6_push_pending_frames+0x29c/0x470
[ 2447.016312]  icmp6_send+0x16ad/0x1ff0
[ 2447.016711]  ? icmpv6_push_pending_frames+0x470/0x470
[ 2447.017209]  ? find_held_lock+0x2c/0x110
[ 2447.017641]  ? ipv6_proxy_select_ident+0x250/0x250
[ 2447.018126]  ip6_pkt_drop+0x3ae/0x7c0
[ 2447.018519]  ip6_local_out+0xb4/0x1a0
[ 2447.018894]  ip6_send_skb+0xb7/0x350
[ 2447.019278]  udp_v6_send_skb+0x7aa/0x15b0
[ 2447.019698]  udpv6_sendmsg+0x2113/0x2af0
[ 2447.020110]  ? ip_frag_init+0x350/0x350
[ 2447.020513]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2447.021037]  ? __lockdep_reset_lock+0x180/0x180
[ 2447.021506]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2447.021990]  ? lock_acquire+0x197/0x470
[ 2447.022390]  ? find_held_lock+0x2c/0x110
[ 2447.022804]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2447.023357]  ? sock_has_perm+0x1ea/0x280
[ 2447.023787]  ? __import_iovec+0x458/0x590
20:19:00 executing program 2:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000001c0)='^#\xae\x00', 0x0, r0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_FILES_UPDATE={0x14, 0x3, 0x0, 0x0, 0x5, &(0x7f0000000080)=[r0, r1], 0x2, 0x0, 0x1, {0x0, r4}}, 0xfffffffd)
r5 = syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r6 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r9}}, 0x0)
r10 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r11 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r5, &(0x7f0000000100)=[{&(0x7f0000000180)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r10, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r10, 0xc028660f, &(0x7f0000000040)={0x0, r11, 0x2})
r12 = fspick(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
syz_io_uring_submit(r7, r3, &(0x7f00000000c0)=@IORING_OP_EPOLL_CTL=@del={0x1d, 0x5, 0x0, r11, 0x0, r12, 0x2, 0x0, 0x0, {0x0, r4}}, 0x80000001)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2447.024202]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2447.024876]  inet6_sendmsg+0x105/0x140
[ 2447.025277]  ? inet6_compat_ioctl+0x320/0x320
[ 2447.025712]  __sock_sendmsg+0xf2/0x190
[ 2447.026108]  ____sys_sendmsg+0x334/0x870
[ 2447.026509]  ? sock_write_iter+0x3d0/0x3d0
[ 2447.026934]  ? do_recvmmsg+0x6d0/0x6d0
[ 2447.027336]  ? __lock_acquire+0x1657/0x5b00
[ 2447.027780]  ___sys_sendmsg+0xf3/0x170
[ 2447.028169]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2447.028632]  ? __lockdep_reset_lock+0x180/0x180
[ 2447.029094]  ? trace_hardirqs_on+0x5b/0x180
[ 2447.029539]  ? lock_acquire+0x197/0x470
[ 2447.029936]  ? find_held_lock+0x2c/0x110
[ 2447.030352]  ? __might_fault+0xd3/0x180
[ 2447.030748]  ? lock_downgrade+0x6d0/0x6d0
[ 2447.031164]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2447.031730]  __sys_sendmmsg+0x195/0x470
[ 2447.032136]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2447.032567]  ? lock_downgrade+0x6d0/0x6d0
[ 2447.032999]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2447.033490]  ? wait_for_completion_io+0x270/0x270
[ 2447.033976]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2447.034445]  ? vfs_write+0x354/0xa70
[ 2447.034818]  ? fput_many+0x2f/0x1a0
[ 2447.035186]  ? ksys_write+0x1a9/0x260
[ 2447.035581]  ? __ia32_sys_read+0xb0/0xb0
[ 2447.035994]  __x64_sys_sendmmsg+0x99/0x100
[ 2447.036422]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2447.036938]  do_syscall_64+0x33/0x40
[ 2447.037313]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2447.037828] RIP: 0033:0x7fcaf2e26b19
[ 2447.038204] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2447.040033] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2447.040790] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2447.041497] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2447.042204] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2447.042910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2447.043626] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
20:19:13 executing program 0:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040))
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fallocate(r1, 0x0, 0x0, 0x8000)
ioctl$KDFONTOP_COPY(r1, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x1a, 0x0, 0x0})
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:19:13 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 80)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:19:13 executing program 7:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r4 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r3, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000040)={0x0, r4, 0x2})
dup3(r3, r0, 0x80000)
r5 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
r6 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
read$eventfd(r6, 0x0, 0x0)
r7 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
read$eventfd(r7, 0x0, 0x0)
signalfd4(r7, &(0x7f0000000080)={[0x9]}, 0x8, 0x0)
ioctl$KDFONTOP_GET(r6, 0x4b72, &(0x7f0000000040)={0x1, 0x1, 0xc, 0x8, 0x184, &(0x7f0000000340)})
read$eventfd(r5, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r5, 0x3, 0x0}, 0xfffffffc)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x4, 0x0, 0xec, 0x0, 0x100000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x28001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:19:13 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x2fa}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_setup(0x1ff, &(0x7f00000000c0)={0x0, 0x4c28, 0x4, 0x3, 0x1a7, 0x0, r0})
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:19:13 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x60ff, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:19:13 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x500)

20:19:13 executing program 1:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
ioctl$SG_GET_NUM_WAITING(r0, 0x227d, &(0x7f0000000040))
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0xffffffffffffff05, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x200000a, 0x11, r1, 0x10000000)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, r4, &(0x7f00000000c0)=@IORING_OP_TIMEOUT={0xb, 0x2, 0x0, 0x0, 0x2, &(0x7f0000000080), 0x1, 0x1, 0x1, {0x0, r5}}, 0x6)
syz_open_dev$tty20(0xc, 0x4, 0x0)
r6 = mmap$IORING_OFF_SQES(&(0x7f0000ff6000/0xa000)=nil, 0xa000, 0x1, 0x20010, r1, 0x10000000)
r7 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r8=>0x0, &(0x7f0000000140)=<r9=>0x0)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r10}}, 0x0)
syz_io_uring_submit(r2, r6, &(0x7f0000000100)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd_index=0x8, 0xfffffffffffffffe, 0x0, 0x80000000, 0x0, 0x1, {0x0, r10}}, 0x10001)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:19:13 executing program 3:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x7, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
read$eventfd(r3, 0x0, 0x0)
io_uring_enter(r3, 0x63f9, 0x973f, 0x3, &(0x7f0000000040)={[0x138]}, 0x8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2460.746814] kauditd_printk_skb: 78 callbacks suppressed
[ 2460.746843] audit: type=1326 audit(1709497153.849:7387): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14642 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2460.752738] FAULT_INJECTION: forcing a failure.
[ 2460.752738] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2460.754295] CPU: 0 PID: 14653 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2460.754993] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2460.755841] Call Trace:
[ 2460.756112]  dump_stack+0x107/0x167
[ 2460.756487]  should_fail.cold+0x5/0xa
[ 2460.756879]  _copy_from_user+0x2e/0x1b0
[ 2460.757296]  __copy_msghdr_from_user+0x91/0x4b0
[ 2460.757771]  ? __ia32_sys_shutdown+0x80/0x80
[ 2460.758400]  ? perf_trace_lock+0xac/0x490
[ 2460.758829]  sendmsg_copy_msghdr+0xa1/0x160
[ 2460.759287]  ? do_recvmmsg+0x6d0/0x6d0
[ 2460.759711]  ? ___sys_sendmsg+0x8b/0x170
[ 2460.760121]  ___sys_sendmsg+0xc6/0x170
[ 2460.760524]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2460.760986]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2460.761002]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2460.761013]  ? trace_hardirqs_on+0x5b/0x180
[ 2460.761027]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2460.761039]  ? finish_task_switch+0x126/0x5d0
[ 2460.761049]  ? finish_task_switch+0xef/0x5d0
[ 2460.761060]  ? __switch_to+0x572/0xf70
[ 2460.761071]  ? __switch_to_asm+0x3a/0x60
[ 2460.761080]  ? __switch_to_asm+0x34/0x60
[ 2460.761096]  ? __schedule+0x82c/0x1ea0
[ 2460.761129] audit: type=1326 audit(1709497153.861:7388): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14642 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2460.761142]  ? io_schedule_timeout+0x140/0x140
[ 2460.761168]  __sys_sendmmsg+0x195/0x470
[ 2460.761185]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2460.761197]  ? lock_downgrade+0x6d0/0x6d0
[ 2460.761224]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2460.761240]  ? wait_for_completion_io+0x270/0x270
20:19:13 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 81)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

[ 2460.761255]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2460.761268]  ? vfs_write+0x354/0xa70
[ 2460.761280]  ? fput_many+0x2f/0x1a0
[ 2460.761293]  ? ksys_write+0x1a9/0x260
[ 2460.761306]  ? __ia32_sys_read+0xb0/0xb0
[ 2460.761324]  __x64_sys_sendmmsg+0x99/0x100
[ 2460.761336]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2460.761350]  do_syscall_64+0x33/0x40
[ 2460.761361]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2460.761370] RIP: 0033:0x7fcaf2e26b19
[ 2460.761383] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2460.761391] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2460.761404] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2460.761434] audit: type=1326 audit(1709497153.862:7389): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14642 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2460.761443] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2460.761451] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2460.761458] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2460.761465] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
[ 2460.761582] audit: type=1326 audit(1709497153.862:7390): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14642 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2460.784231] audit: type=1326 audit(1709497153.886:7391): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14642 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2460.789294] audit: type=1326 audit(1709497153.891:7392): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14642 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f0851210ad7 code=0x7ffc0000
[ 2460.796849] audit: type=1326 audit(1709497153.898:7393): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14642 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
20:19:14 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x6400, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

[ 2460.806979] audit: type=1326 audit(1709497153.909:7394): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14642 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2460.816742] audit: type=1326 audit(1709497153.918:7395): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14642 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2460.821896] audit: type=1326 audit(1709497153.924:7396): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14642 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2460.947582] FAULT_INJECTION: forcing a failure.
[ 2460.947582] name failslab, interval 1, probability 0, space 0, times 0
[ 2460.947599] CPU: 0 PID: 14673 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2460.947606] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2460.947610] Call Trace:
[ 2460.947629]  dump_stack+0x107/0x167
[ 2460.947644]  should_fail.cold+0x5/0xa
[ 2460.947660]  ? __alloc_skb+0x6d/0x5b0
[ 2460.947676]  should_failslab+0x5/0x20
[ 2460.947689]  kmem_cache_alloc_node+0x55/0x330
[ 2460.947705]  __alloc_skb+0x6d/0x5b0
[ 2460.947722]  alloc_skb_with_frags+0x92/0x570
[ 2460.947745]  sock_alloc_send_pskb+0x7af/0x930
[ 2460.947770]  ? sk_alloc+0x350/0x350
[ 2460.947792]  ? perf_trace_lock+0xac/0x490
[ 2460.947806]  ? lock_chain_count+0x20/0x20
[ 2460.947827]  __ip6_append_data.isra.0+0x1c12/0x3a70
[ 2460.947849]  ? ip6_mtu+0x1bb/0x3d0
[ 2460.947862]  ? lock_downgrade+0x6d0/0x6d0
[ 2460.947874]  ? ip_frag_init+0x350/0x350
[ 2460.947895]  ? ip6_finish_output2+0x1fe0/0x1fe0
[ 2460.947908]  ? ip6_mtu+0x1e9/0x3d0
[ 2460.947921]  ? ip6_setup_cork+0xfb7/0x1740
[ 2460.947937]  ip6_make_skb+0x2de/0x4e0
[ 2460.947947]  ? ip_frag_init+0x350/0x350
[ 2460.947963]  ? ip_frag_init+0x350/0x350
[ 2460.947979]  ? ip6_push_pending_frames+0xf0/0xf0
[ 2460.947995]  ? ip6_dst_hoplimit+0x199/0x440
[ 2460.948007]  ? lock_downgrade+0x6d0/0x6d0
[ 2460.948031]  udpv6_sendmsg+0x20d0/0x2af0
[ 2460.948046]  ? ip_frag_init+0x350/0x350
[ 2460.948066]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2460.948087]  ? __lockdep_reset_lock+0x180/0x180
[ 2460.948099]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2460.948116]  ? lock_acquire+0x197/0x470
[ 2460.948126]  ? find_held_lock+0x2c/0x110
[ 2460.948151]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2460.948164]  ? sock_has_perm+0x1ea/0x280
[ 2460.948193]  ? __import_iovec+0x458/0x590
[ 2460.948205]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2460.948220]  inet6_sendmsg+0x105/0x140
[ 2460.948233]  ? inet6_compat_ioctl+0x320/0x320
[ 2460.948243]  __sock_sendmsg+0xf2/0x190
[ 2460.948256]  ____sys_sendmsg+0x334/0x870
[ 2460.948270]  ? sock_write_iter+0x3d0/0x3d0
[ 2460.948280]  ? do_recvmmsg+0x6d0/0x6d0
[ 2460.948294]  ? __lock_acquire+0x1657/0x5b00
[ 2460.948316]  ___sys_sendmsg+0xf3/0x170
[ 2460.948330]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2460.948344]  ? __lockdep_reset_lock+0x180/0x180
[ 2460.948362]  ? lock_acquire+0x197/0x470
[ 2460.948372]  ? find_held_lock+0x2c/0x110
[ 2460.948388]  ? __might_fault+0xd3/0x180
[ 2460.948400]  ? lock_downgrade+0x6d0/0x6d0
[ 2460.948414]  ? io_schedule_timeout+0x140/0x140
[ 2460.948437]  __sys_sendmmsg+0x195/0x470
[ 2460.948453]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2460.948465]  ? lock_downgrade+0x6d0/0x6d0
[ 2460.948489]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2460.948505]  ? wait_for_completion_io+0x270/0x270
[ 2460.948519]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2460.948531]  ? vfs_write+0x354/0xa70
[ 2460.948543]  ? fput_many+0x2f/0x1a0
[ 2460.948556]  ? ksys_write+0x1a9/0x260
[ 2460.948568]  ? __ia32_sys_read+0xb0/0xb0
[ 2460.948586]  __x64_sys_sendmmsg+0x99/0x100
[ 2460.948597]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2460.948611]  do_syscall_64+0x33/0x40
[ 2460.948621]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2460.948630] RIP: 0033:0x7fcaf2e26b19
[ 2460.948643] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2460.948649] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2460.948663] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2460.948670] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2460.948677] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2460.948684] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2460.948691] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
20:19:27 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 82)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:19:27 executing program 1:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r0, 0x0, &(0x7f0000000240)}, 0x3)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:19:27 executing program 3:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r3 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r6}}, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0xa, 0x0, r6)

20:19:27 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x6800, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:19:27 executing program 7:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x80000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x8800, 0x0)
ioctl$GIO_SCRNMAP(r3, 0x4b40, &(0x7f0000000340)=""/222)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:19:27 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xcc0)

20:19:27 executing program 0:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x9, 0x1f, 0x0, 0x0})
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fallocate(r2, 0x0, 0x0, 0x8000)
splice(r2, &(0x7f0000000040)=0x9, r1, &(0x7f0000000080)=0x7, 0x46, 0x2)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x4, 0x94a02)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000000500)={0x53, 0xffffffffffffffff, 0x8f, 0x2, @scatter={0x1, 0x0, &(0x7f0000000340)=[{&(0x7f0000000240)=""/81, 0x51}]}, &(0x7f0000000380)="028321e41d7fa6932436e871ee866ce0be8e1094e7d38dbeca039cc55d0c1b8a751a98cf5d42ffc14e4974839b6fdd05f307d871a848b12e6802e834eedb0aaaf753dae6275c6d225ea7e6c7c74d88bb9af2fbfc67b17b1e9d6e4ebd7dc12c8e6f41f0ae88f5055f6f0301b2357fc7875299861a48eab837307f1a8e52c352e9cb73aa3284ce36e2b57966fab87b24", &(0x7f0000000440)=""/91, 0x97, 0x0, 0xffffffffffffffff, &(0x7f00000004c0)})
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x185842, 0x123)
ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000880)=0xe)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000000800)={0x53, 0xfffffffffffffffc, 0x70, 0x9, @buffer={0x0, 0xa7, &(0x7f0000000580)=""/167}, &(0x7f0000000640)="fe12679759385634842b0e7d49bb9afd07f507be7f2dbb051ac80e507a5215d0ec4fce52a153e605f0f45232e7178ac982449acbfb974b22af51fbe016b2acbe2843d50466775fadb0475cb1ea8e89acdcdad53f5c53fabbdeef8b01a511542b85814d6cfc224536015d38c1011f329a", &(0x7f00000006c0)=""/234, 0x6, 0x17, 0x2, &(0x7f00000007c0)})
r5 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000100)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd=r0, 0x0, &(0x7f0000000180)="1cade3799ed065713e53664236c79209866760946ddc6b1d352797a3ba780da6860fd88e4cff9b934ca342773d0f138018a0a68827518c8a991ed5f65e1fc3a7380e5f75a50ade", 0x47}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:19:27 executing program 2:
r0 = syz_genetlink_get_family_id$devlink(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000240)={&(0x7f00000004c0)=ANY=[@ANYBLOB="8000003519010035f2369487d4aa6f00715c4ade84a683675a5f2491b1b7fd3535c6babb76169f2f92dd1391c4ca57eeff17c6dde9188682532e4e699a719c16e6391bb700868a44e209f5dcdb20e0a417f6", @ANYRES16=r0, @ANYBLOB="000428bd7000fbdbdf25130000000e0001006e657464657673696d0000000f0002006e657464657673696d300000080003000100000008000b00800000000600110004000000080001007063690011000200303030303a30303a31302e3000000000080003000300000008000b00520a00000600110008000000"], 0x80}}, 0x8044)
sendmsg$DEVLINK_CMD_TRAP_SET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1010000}, 0xc, &(0x7f0000000080)={&(0x7f0000000340)={0x154, r0, 0x800, 0x70bd2c, 0x25dfdbfe, {}, [{@pci={{0x8}, {0x11}}, {0x1c}, {0x5}}, {@pci={{0x8}, {0x11}}, {0x1c}, {0x5, 0x83, 0x1}}, {@pci={{0x8}, {0x11}}, {0x1c}, {0x5}}, {@pci={{0x8}, {0x11}}, {0x1c}, {0x5}}, {@pci={{0x8}, {0x11}}, {0x1c}, {0x5}}]}, 0x154}, 0x1, 0x0, 0x0, 0x4c890}, 0xe0)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$TIOCSLCKTRMIOS(r1, 0x5457, &(0x7f0000000100))
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2474.537307] kauditd_printk_skb: 53 callbacks suppressed
[ 2474.537321] audit: type=1326 audit(1709497167.639:7450): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14694 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2474.544150] audit: type=1326 audit(1709497167.644:7451): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14694 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2474.553609] FAULT_INJECTION: forcing a failure.
[ 2474.553609] name failslab, interval 1, probability 0, space 0, times 0
[ 2474.554979] CPU: 1 PID: 14701 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2474.555719] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2474.556796] Call Trace:
[ 2474.557198]  dump_stack+0x107/0x167
[ 2474.557632]  should_fail.cold+0x5/0xa
[ 2474.558135]  ? lock_release+0x680/0x680
[ 2474.558689]  ? skb_clone+0x14f/0x3d0
[ 2474.559161]  should_failslab+0x5/0x20
[ 2474.559576]  kmem_cache_alloc+0x5b/0x310
[ 2474.560074]  skb_clone+0x14f/0x3d0
[ 2474.560503]  dev_queue_xmit_nit+0x3a7/0xb00
[ 2474.561094]  dev_hard_start_xmit+0xab/0x6f0
[ 2474.561545]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2474.562212]  __dev_queue_xmit+0x17ec/0x2710
[ 2474.562766]  ? find_held_lock+0x2c/0x110
[ 2474.563280]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2474.563766]  ? mark_held_locks+0x9e/0xe0
[ 2474.564182]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2474.564743]  ip6_finish_output2+0x17b4/0x1fe0
[ 2474.565224]  __ip6_finish_output.part.0+0x4f7/0xbc0
[ 2474.565735]  ip6_output+0x3aa/0x7e0
[ 2474.566263]  ip6_local_out+0xb4/0x1a0
[ 2474.566749]  ip6_send_skb+0xb7/0x350
[ 2474.567150]  ip6_push_pending_frames+0xbd/0xf0
[ 2474.567628]  icmpv6_push_pending_frames+0x29c/0x470
[ 2474.568187]  icmp6_send+0x16ad/0x1ff0
[ 2474.568606]  ? icmpv6_push_pending_frames+0x470/0x470
[ 2474.569159]  ? find_held_lock+0x2c/0x110
[ 2474.569624]  ? ipv6_proxy_select_ident+0x250/0x250
[ 2474.570144]  ip6_pkt_drop+0x3ae/0x7c0
[ 2474.570558]  ip6_local_out+0xb4/0x1a0
[ 2474.570957]  ip6_send_skb+0xb7/0x350
[ 2474.571360]  udp_v6_send_skb+0x7aa/0x15b0
[ 2474.571827]  udpv6_sendmsg+0x2113/0x2af0
[ 2474.572269]  ? ip_frag_init+0x350/0x350
[ 2474.572299]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2474.573472]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2474.573998]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2474.574561]  ? __lockdep_reset_lock+0x180/0x180
[ 2474.575045]  ? lock_acquire+0x197/0x470
[ 2474.575454]  ? find_held_lock+0x2c/0x110
[ 2474.575885]  ? mark_lock+0xf5/0x2df0
[ 2474.576262]  ? sock_has_perm+0x1ea/0x280
[ 2474.576705]  ? __import_iovec+0x458/0x590
[ 2474.577132]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2474.577662]  inet6_sendmsg+0x105/0x140
[ 2474.578060]  ? inet6_compat_ioctl+0x320/0x320
[ 2474.578542]  __sock_sendmsg+0xf2/0x190
[ 2474.578946]  ____sys_sendmsg+0x334/0x870
[ 2474.579369]  ? sock_write_iter+0x3d0/0x3d0
[ 2474.579380]  ? do_recvmmsg+0x6d0/0x6d0
[ 2474.579403]  ? __lock_acquire+0x1657/0x5b00
[ 2474.580938]  ___sys_sendmsg+0xf3/0x170
[ 2474.580954]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2474.580976]  ? __lockdep_reset_lock+0x180/0x180
[ 2474.582528]  ? lock_acquire+0x197/0x470
[ 2474.582931]  ? find_held_lock+0x2c/0x110
[ 2474.583369]  ? __might_fault+0xd3/0x180
[ 2474.583798]  ? lock_downgrade+0x6d0/0x6d0
[ 2474.584235]  ? lock_is_held_type+0xd2/0x110
[ 2474.584685]  __sys_sendmmsg+0x195/0x470
[ 2474.585098]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2474.585541]  ? lock_downgrade+0x6d0/0x6d0
[ 2474.585991]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2474.586489]  ? wait_for_completion_io+0x270/0x270
[ 2474.586988]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2474.587462]  ? vfs_write+0x354/0xa70
[ 2474.587853]  ? fput_many+0x2f/0x1a0
[ 2474.588230]  ? ksys_write+0x1a9/0x260
[ 2474.588621]  ? __ia32_sys_read+0xb0/0xb0
[ 2474.589044]  __x64_sys_sendmmsg+0x99/0x100
[ 2474.589476]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2474.589998]  do_syscall_64+0x33/0x40
[ 2474.590378]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2474.590898] RIP: 0033:0x7fcaf2e26b19
[ 2474.591278] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2474.593119] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2474.593879] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2474.594596] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2474.595310] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2474.596030] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2474.596754] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
[ 2474.601006] audit: type=1326 audit(1709497167.654:7452): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14694 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2474.616338] audit: type=1326 audit(1709497167.709:7453): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14694 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2474.618970] audit: type=1326 audit(1709497167.709:7454): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14694 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f0851210ad7 code=0x7ffc0000
[ 2474.621374] audit: type=1326 audit(1709497167.709:7455): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14694 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2474.653970] audit: type=1326 audit(1709497167.713:7456): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14694 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2474.668861] audit: type=1326 audit(1709497167.713:7457): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14694 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2474.671262] audit: type=1326 audit(1709497167.713:7458): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14694 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2474.673634] audit: type=1326 audit(1709497167.730:7459): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14694 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
20:19:27 executing program 1:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$TCSETSW2(r0, 0x402c542c, &(0x7f0000000040)={0x0, 0x3, 0x401, 0x875, 0xb3, "c0e12995805e039287a861620ac850c647e2a8", 0x3, 0x3ff})
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:19:27 executing program 3:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x4)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:19:27 executing program 7:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$KDSIGACCEPT(r0, 0x4b4e, 0x10)

20:19:27 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
read$eventfd(r0, 0x0, 0x0)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140))
r3 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r6}}, 0x0)
r7 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r8=>0x0, &(0x7f0000000140)=<r9=>0x0)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r10}}, 0x0)
syz_io_uring_submit(r2, r5, &(0x7f0000000040)=@IORING_OP_WRITE={0x17, 0x5, 0x0, @fd_index=0x6, 0xfffffffffffffffc, 0x0, 0x32, 0x0, 0x0, {0x0, r10}}, 0x0)
r11 = syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(r11, 0xf504, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:19:27 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x6c00, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:19:28 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2000)

20:19:28 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 83)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:19:28 executing program 0:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$VT_WAITACTIVE(r0, 0x5607)
syz_open_dev$sg(0x0, 0x80, 0x200)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x185842, 0x123)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
ioctl$KDGKBMETA(r1, 0x4b62, &(0x7f0000000100))
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = syz_io_uring_setup(0x3eb6, &(0x7f00000002c0)={0x0, 0x1000, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000080)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$KDGKBENT(r0, 0x4b46, &(0x7f0000000040)={0x3, 0x0, 0x5})

20:19:28 executing program 3:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x60ff, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:19:28 executing program 1:
r0 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
r1 = fspick(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x0)
dup2(r1, 0xffffffffffffffff)
io_uring_enter(0xffffffffffffffff, 0x1cc4, 0x54b9, 0x3, &(0x7f0000000080)={[0x1199]}, 0x8)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x0, {0x0, r0}}, 0x3aa4c629)
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:19:28 executing program 7:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000180)=0x5)
r1 = syz_io_uring_setup(0xc95, &(0x7f00000002c0)={0x0, 0x201, 0x0, 0x1, 0x1ae}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000000c0)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x185842, 0x123)
ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
sendmsg$TIPC_NL_NET_SET(r4, &(0x7f0000000280)={&(0x7f00000001c0), 0xc, &(0x7f0000000240)={&(0x7f0000000340)={0x1130, 0x0, 0x4, 0x70bd2b, 0x25dfdbfd, {}, [@TIPC_NLA_MON={0x4}, @TIPC_NLA_NODE={0x1048, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x3e, 0x4, {'gcm(aes)\x00', 0x16, "d6bfd13e1d832cf9fc06939520e00794afbd35c00442"}}, @TIPC_NLA_NODE_ID={0x1004, 0x3, "85367fb6338eb5bb3066e5521a35f11144f41db61e4c7137f9684a97ada1edac07385c355ae7643b570c9e6d5ab8477aeade9a28a940eebed789542ff973f029c641dd8ed63e64bcc9d8f1d4c911606fbbb07cb81e1b0b4a3d2bf8664925658489d40237b978583308847db3c793fb54ee28ee9a479f98ab9ef3ed015a8168235a7dc892666af87164050685849d53c2fc489146aff98b82d17b19b68b4198a1c423fcb139dd42e9bb19c869098943dff963f21ad3cc8158ca15eda169b2791efd450bf629b92318c807a1cbb460cbe28d93cb9b2d4bc66752169c78dab5c4bb9a06570145771ff51c2db409667fc7d32183675a52b139f261549ec36846afc12dab139804eea29290f2a82bff689c9da1e1e1598b58a258d30dc989d44aa24b135b905f3b8647e051dae23b757d9a46ed3913f5cf03a2b2bfe6869927079625ac158f4fe55888d69b8849591edc35bcc9a6b80afa20079d04dba7c55742cca3633d0af570ceab8f8c3585ad942d156da98ea6ba0d6ac95ef717cc334533ba7759f2a8a8227c03ed2becd02dc97fb604279da2a873e1e1b8f4892be00b4a6e9aeeb90d8ee85f1ecfe822e4e31671d3a42998c0d5c2885740b01415dc0b3484006f386d4f59fc33ff5ce61c795c3b59d8a70e715d32a84083c2e1c212ecb9db3ba1679515585c2ecc475221618bb77f946a6eb6f650bb93c0c05ef601f1e293a191ff9d8c28c7b342215189e0436282953c54e0283d9cbca9ce52850faa5ed069f13068c19b3606be8a096dc1abf97252240db904373ee7ad9ea6f1b54f981178dc2c52e9b4a041c036ebdf829fbb9db706b4a93e0d1a188c1806c2ed0c3398baf2485dec98b0db3703e92dc1fa4954109781f42842e105a5f7d7cd334f82da1ca506c300a272a6206b958526eb8cada555f41b52e8113bda76801cc9a1baa97c45052b78e6d89eab91e65ef4f26cba2a4b6a722ba9f4aa5cfae1892e087bf55c792bcf7a4e1bbc60c42ec7dc70068973285dd2b5eff1a8d1f34ae877fbc45fb35570a0d8c82a19a588c86747b0407bd78432ae440ee3df00476109ada3245944b86720efd392a54eda89c8008a34c28d0484197059a9207e570ff3f293bc817fdb484b0ae161b485b0701e3a6f75405dfcbdcc960c619d58d52682487670b50c587b0eff7c573403db53b05835166c32fc4387a59bee93a315d4af48c94f7cca621a4cae2cb0aca97fc131c256a8d03a9bd4a2e8453b09ae44cd73010c9d94686b28e12fae89c2577fd91242b0e9c9c855b9fc920344246607f12fad2e82b25abae44300ab71e7d762c0d93aa6d6767223fe0f2698ed75a28638abb637bf0f1e685560e2f955833791808e1d5c1ee89feb1fe6dde5177ab47791610d102b7de265d105f531f2dfd4bec478b1f7b1c98651f81814baa9e30e2fb3a973911eda699191c097a42db3c7222c441f1e77c982dc793ce3782bd25562ef66d3340e3531c572d3736d8da97d6474884f2eec95298e4ca67eb222e4776773820af34ab0e1c592d324f23b2ee5abf6880d00f605207b0f725eba0f17f562d154a13bc8b7fd329ad0af6c4f30b4f49eb5f2aa4be4b91f42428a4ae8597bfb04d0dc202711c16b03953d1f4bf993b8b28f1ffb7eefb975252d196e963761fd718f61dbc162a5f4a8a3b03345055b52e673cf69cc39b80e6423511ac4fe00dd24aee66e3e9169bb80eba8d67424798cb4faa5ff8bd0a79f5c7ea2c4fffa7a0e5eb3dda0363a8ea5af1f884f8c38e54afdb84c9abed0d3d78024ee076ccc5654db8e1a6ca12e0e8c7d70ffec595575f48da79bdf4b4925d403bc6a8b4e8aada8ac5b4d9b13d442aeacf38bfe358b97842accd6dabd825e8f9827c265165f9dc74cec83148d9fea992e256ea9cbc76c40ceba324a6f22341374d6e108d23b7647b4a32c325a3abd879bfe46f1605df27f2bd2dfd6fd55bc814c0a29598cce88c3e79148af2ccabf016b4d24ebff6e0aeb1a3e405160850e7f379aa29fbda4cfba3afb058fb08b48348324a970a39a12b4adc9c47847f45fe97b4d3e9fc7e81a30012e3d1ee6969cd35b124f01c76d7dc10fe6048e3e792c3d5e6930e4df22694600b6064394f33bcf818c2c2c87567a5420a164c769fe9047a14223cd74f23fd679abe7cf4c188ab81b81d060ef432f172e1634f1e313520d9ca409ed61fcdbad9f43de5aee69b17b35e6b5bf0e851b2e37c9b76b83b2bf629489d8a279e90329e537dc0257a0e72f958e58b545ea1e613ffee435dd14f1e2b242e0188dd9f620ea424b5125d9b3c5d40b7a0fbb995ea38bd4c2a3fbdd1636c47e7771c4b6c0e1e5fe06ee0b2f1b2e55bf77b6020932fd4c37bf344455580ca7e9ff46cf77d57e6e25328a02414aa0525c8cddcea34fc64248fbfc95d10657a7e2dfb88898fde4094f048c304526f9b92ab98ed07bdcb8e5f4d988039fb5df15e55d385b43688192eb072c9f00e430d39c897cde73db1cd61fb185324d6861fc9afbc363e853ebe4827c26290ef238ea527668d2cf44264a4814b3090527eedb6c9c945eef2154c6148472824ccfd2f8457a7d12da8990a745426a2a96090df9d8aab4ba89937ae1146aeda512586f821dd965db5e3301e232d19ad22b7868548495c5819c3ff9ef596b8564eca06e53b12f396d02cd84c88621979a4badb7823e97c89969420afed86fd5773e8bc22a4f7dacfd5b3aebaebcd8c4706abeb45518258d159fd07feacf4b4dd42fee87321693ca0e3cb8a438a170a1ad3755bf7634645e1944ea04696e7a56365258a256edd43f167a1728b7e82501e2ecc77203e283465c583ec44a2da40553c3a1202c3ad05ca6662e83c0d23d67b1ae7f1cca763b4621ad2d1517dbaf62107a82ec85a60b9e5d769d01b4a8fac41a89f76e8629f13d51ecff46548867fa4aa5d882012a6e6301dbb1303bcba2c2ecae8a2d3c29295aa07b218946ae88d65d66658a9a2604320a34deb41c45dcd3ec365af9b1a5ea4e571b35adadc9011eb35de393ea24e48409b1b46d0f234b4e99b6f93d125c9e903649b06cc7a7e110014cc7e39d38fea64eb59779d4b544f38837a0204c03f2f69601841f238abe306558995442aecd6b783301107ece052862c512a1ca132e20a4055da3e684f3957a61fd29cbf1431ff877e775d92c1276334d891c21cd5f98f5d75cfd26bed73131fe1b1c327b9986508f568afb0a62e85aaccf490a2b81a0d47be49da8f25d3fa9fc4ed17857530aea7173705d13d8443317d229cf645f94375a5ba650b8342b094182b19940b8c1b82da5e53b2d106b9a0085ee675e62c9a66a5d431c42f742c3d0df5dcac5a507ce7b98f7a9f733ba24c6c8622595ea681a5e1fc236986b05e2df6e454b270ebc1d9b4180f6c17d0a23da4bbe0086b842742a057a829396cd9b6989f2828dd9b06abfd957b20a110ca60b59c0bb48edb82fe130798e3ea3e905e0a6223d2668cd55c9036751f425915cddc1eed8d7734f08b82df16ae9536a1503336552f94d9b2372892529081c8ee128187f6862badd893b81e54e480189b4bf0fb36b9e7a5df32fc20abaff82479cf0b271355809af26200f405a475736174933025f9df68fdd8c1f1c3f18930b76febbc506ddb66d4fd475dddfd8690e978bb92816a3a4750e4e82128f76ba1718d1b486941d86151af7f2ef13df33632e3b21b12838bb092fd5ed1d1659a9a8f043eda9d3060cc7b4fb90b0d358594435a6b34d08313447deb75fd36a315c868fda4df46e3d645fa91de296085dbcc8b0fc5d4de96eeaba1d255a40452456827c2696c61babe8792c8b481f063ae06f730c96f4e7bf7af8ed0e954cbe6a118f2060d957c72874bfe88a77b0305313d9ee3f70ab13bc5c7c00bc253c14b538ed200e4046c2f18983e4d3df51cd0a181ddaa80bb5b76608089320b5559b923c89c054df5cb75d95105e784fe5957830e89f3644f41f02c382e227318d0e6070bafb29eafe158dbe9b953a2f06a132ae0d6c732886b649fdaee4364a4f09f14e9d5b20a8daf6753b9a4d6b4ca9d066a8eb1533ede6022da3d6a47082eef975c78d0ffe842bddaad98f841473950f739852a43f1466002710f638276ceec3ab9c8c5b07cf82b268c56ba23a5eb08c9f5c66c7118be63427ff1d8d4e021dc419c857c835eac5ab4c3891247a6976823c6719535b84608cc1b2b6f4c583f11739f504363b6fbb8ad12795560cd1cce42a70f36e8ea5257fd5e5925b290b6d72ae5e36b439fe7032cbfed0a60536a8cfab83d456aa01c2d49ba2f442be2b915bdf17bf283468c6fea41f38e9c39944933e7c426966771d821f2beada62dfa1dabb0a8cc561241ccc9252cc3a0f199b7762ca85bd2f8f3df86229e20d1f60590ebdc08f3585f290e9702786ea661c99980a7a025c6bd4147970d22fca0f7506a953ad44dbc7a4233f0bdcc9f7b3b0dc3551acdfd74300e4c9d43ab61ca430b2aea37e0e505f041a43b7955fcbad044bc62db934181430e62557ddd4b9254ced2747b774377c981f04bb3c19147f3d16fdf77cf792e9e613fe6655686711977fcf2ce4585c41055866988866b28575564a707d2aabe98978edbe19064db6e03cfd41b1ffcebc831463e3358eb03ebf13cb2f770e321287e7df1c861cf601467ccd262efffaed701d6dbc15cf808bde31cb3c4f8accbe285085789d0d477f0f58aea5cd9ca243be3e46f7df1375511210f5ed95f8cc360c37d8280f5288604c2d51af50eb94fe76512f82e60eb5ec702e6427da9a37413aaaf7f278baa69fbbb72cd4943b573cc78b720e8031a819f40b7fd93b4d7a20bcc326038ebff12841bf3da60ba809c1421671886fcff14babd1e55cb1eb8279e6ba644065799615fd0e3d14ca1455c1ef265c61f12a3f06ce1d53cf33cca825629a4da792e089976d378bc5858cf51715c4bdd7f5da7cdaa7a7f3687e899771a70680778fc08e1e733901e7fdd9327a6b3be0b229bb40ab676ddc5aa8791159a3b83b6201c2dcb35c842c93863f431dd7323417adaa966078c8b93440825b7e4efdde1f720a95037df56bc04185c53b7ab221ad0ef419184bf4831f993c2b47693d142b8a3a3d80be85bf53244932cba73e03d7f9b658bf081cd9d483a69695c04aedd27628cce17ecc0d7be703cea007394f172a627e40e44ff6a817fea2ce594aab9df95a9387bbcec7896601ae9f3c885678cfc8cf0ac4b821082bc9d898ff3a789b6a7def52a5b98fa5ebe7707409cf2a8cc650dfb3ae9518b817268029d568962f90bb3ab50c787001140f944c48a2a62a7189943a74a38837a45cd0f5fbdf98f88e117eac8d554a7277cfe89c8ceabd15d65a6e926a3a66bb1b16ed62609192be86e3e18d988eb493cedff5a979a774777b16421ac9597ba98b19292a30d599897f14bc2edf48f49d8d9cc361d6b596678625900a5ac765e9ebec6e4eb467703ab35baafa544936341f67f8af5bcc214ab93a79fd9489b43662565bb9b3865b89f3efb79e3bd54207d47e9307b22e0702a1f7b4aa1349095c05b3c2f7f18cb2ec2472e28e9892f5c345b942610d9f428ab16eaca698b0bc5c813338bbd615b165cb57281c38166871f4bfc74eea2ebc5fa9206a608009e169402328ab1f01c1a3476df09b6adb69adf36e6247b54777176038d42ec08c51ac4e8f2f50106fa534ea63b2d6f9b14993dfae1e130b6d6708c7805d2a7e72b1fc5df948ce56f12a238e6d706ca0a74e31d070d7dc89bcf283e9c6e9b0aaec5ee86077055843"}]}, @TIPC_NLA_BEARER={0x78, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0x13, 0x1, @l2={'eth', 0x3a, 'veth1_vlan\x00'}}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}}, {0x14, 0x2, @in={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}}}}, @TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xf}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6a}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xd45f}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x68}]}, @TIPC_NLA_NET={0x58, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x5a}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x6}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x2}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x1}, @TIPC_NLA_NET_ID={0x8}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x1ff}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x8}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x6}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x2ddd}]}]}, 0x1130}, 0x1, 0x0, 0x0, 0x20000080}, 0x20000000)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2, 0x80010, r4, 0x0)
ioctl$BTRFS_IOC_SPACE_INFO(r0, 0xc0109414, &(0x7f0000001e00)={0xef2, 0x0, ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']})
r6 = syz_io_uring_complete(r2)
ioctl$TCSETSW2(r6, 0x402c542c, &(0x7f0000000040)={0x9, 0x4, 0xfff, 0x5, 0x6, "f186fce020511c3c1ac7f72903c6816eabd079", 0x3, 0xa7})
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
r7 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r8=>0x0, &(0x7f0000000140)=<r9=>0x0)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r10}}, 0x0)
syz_io_uring_submit(r5, r3, &(0x7f0000000080)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd_index, 0x3, 0x0, 0x6000, 0x0, 0x0, {0x0, r10}}, 0xfffc0000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:19:28 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x6}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x20400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:19:28 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2ec4)

[ 2475.276890] FAULT_INJECTION: forcing a failure.
[ 2475.276890] name failslab, interval 1, probability 0, space 0, times 0
[ 2475.279507] CPU: 0 PID: 14765 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2475.280778] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2475.282447] Call Trace:
[ 2475.282997]  dump_stack+0x107/0x167
[ 2475.283760]  should_fail.cold+0x5/0xa
[ 2475.284547]  should_failslab+0x5/0x20
[ 2475.285319]  __kmalloc_node_track_caller+0x74/0x3b0
[ 2475.286318]  ? alloc_skb_with_frags+0x92/0x570
[ 2475.287247]  __alloc_skb+0xb1/0x5b0
[ 2475.288008]  alloc_skb_with_frags+0x92/0x570
[ 2475.288918]  sock_alloc_send_pskb+0x7af/0x930
[ 2475.289830]  ? sk_alloc+0x350/0x350
[ 2475.290460]  ? perf_trace_lock+0xac/0x490
[ 2475.291156]  ? lock_chain_count+0x20/0x20
[ 2475.291904]  __ip6_append_data.isra.0+0x1c12/0x3a70
[ 2475.292758]  ? ip6_mtu+0x1bb/0x3d0
[ 2475.293359]  ? lock_downgrade+0x6d0/0x6d0
[ 2475.294049]  ? ip_frag_init+0x350/0x350
[ 2475.294716]  ? ip6_finish_output2+0x1fe0/0x1fe0
[ 2475.295494]  ? ip6_mtu+0x1e9/0x3d0
[ 2475.296107]  ? ip6_setup_cork+0xfb7/0x1740
[ 2475.296804]  ip6_make_skb+0x2de/0x4e0
[ 2475.297447]  ? ip_frag_init+0x350/0x350
[ 2475.298115]  ? ip_frag_init+0x350/0x350
[ 2475.298766]  ? ip6_push_pending_frames+0xf0/0xf0
[ 2475.299563]  ? ip6_dst_hoplimit+0x199/0x440
[ 2475.300279]  ? lock_downgrade+0x6d0/0x6d0
[ 2475.301006]  udpv6_sendmsg+0x20d0/0x2af0
[ 2475.301690]  ? ip_frag_init+0x350/0x350
[ 2475.302367]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2475.303231]  ? __lockdep_reset_lock+0x180/0x180
[ 2475.304027]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2475.304827]  ? lock_acquire+0x197/0x470
[ 2475.305495]  ? find_held_lock+0x2c/0x110
[ 2475.306188]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2475.307080]  ? sock_has_perm+0x1ea/0x280
[ 2475.307785]  ? __import_iovec+0x458/0x590
[ 2475.308481]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2475.309355]  inet6_sendmsg+0x105/0x140
[ 2475.310011]  ? inet6_compat_ioctl+0x320/0x320
[ 2475.310737]  __sock_sendmsg+0xf2/0x190
[ 2475.311391]  ____sys_sendmsg+0x334/0x870
[ 2475.312088]  ? sock_write_iter+0x3d0/0x3d0
[ 2475.312776]  ? do_recvmmsg+0x6d0/0x6d0
[ 2475.313440]  ? __lock_acquire+0x1657/0x5b00
[ 2475.314180]  ___sys_sendmsg+0xf3/0x170
[ 2475.314817]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2475.315581]  ? __lockdep_reset_lock+0x180/0x180
[ 2475.316379]  ? lock_acquire+0x197/0x470
[ 2475.317053]  ? find_held_lock+0x2c/0x110
[ 2475.317725]  ? __might_fault+0xd3/0x180
[ 2475.318382]  ? lock_downgrade+0x6d0/0x6d0
[ 2475.319084]  ? io_schedule_timeout+0x140/0x140
[ 2475.319848]  __sys_sendmmsg+0x195/0x470
[ 2475.320527]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2475.321244]  ? lock_downgrade+0x6d0/0x6d0
[ 2475.321939]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2475.322723]  ? wait_for_completion_io+0x270/0x270
[ 2475.323517]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2475.324308]  ? vfs_write+0x354/0xa70
[ 2475.324905]  ? fput_many+0x2f/0x1a0
[ 2475.325537]  ? ksys_write+0x1a9/0x260
[ 2475.326166]  ? __ia32_sys_read+0xb0/0xb0
[ 2475.326837]  __x64_sys_sendmmsg+0x99/0x100
[ 2475.327530]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2475.328407]  do_syscall_64+0x33/0x40
[ 2475.329046]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2475.329881] RIP: 0033:0x7fcaf2e26b19
[ 2475.330500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2475.333485] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2475.334730] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2475.335897] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2475.337063] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2475.338216] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2475.339378] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
20:19:28 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x7005, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:19:28 executing program 3:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ad, 0x0, 0x1, 0x0, 0x0)

20:19:41 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x7007, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:19:41 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 84)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:19:41 executing program 3:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x281, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:19:41 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
munlock(&(0x7f0000ffb000/0x3000)=nil, 0x3000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:19:41 executing program 1:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f00000001c0)={0x2, {0x2, 0x2, 0x8, 0x9, 0xfffa, 0xf}})
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
r5 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x10)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000080))
perf_event_open(&(0x7f0000001d80)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x42404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
r9 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r10=>0x0, &(0x7f0000000140)=<r11=>0x0)
r12 = io_uring_register$IORING_REGISTER_PERSONALITY(r9, 0x9, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x6, 0x6, 0x2b, 0x9, 0x0, 0x7fffffff, 0x40400, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x2, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x255f, 0x4, @perf_config_ext={0x1, 0x100}, 0x10, 0x8, 0x485, 0x6, 0x8, 0xd3, 0x1, 0x0, 0x8, 0x0, 0x400}, 0x0, 0x8, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r10, r11, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r12}}, 0x0)
fsetxattr$trusted_overlay_origin(r1, &(0x7f0000000100), &(0x7f0000000180), 0x2, 0x3)
syz_io_uring_submit(r7, r8, &(0x7f0000000080)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x1, 0x0, 0xfffffe01, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r12}}, 0x0)
r13 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, r8, &(0x7f00000000c0)=@IORING_OP_POLL_REMOVE={0x7, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r13}}, 0xfffffffe)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:19:41 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(0xffffffffffffffff, 0x227b, &(0x7f00000000c0)=0x1)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/custom1\x00', 0x802, 0x0)
ioctl$EXT4_IOC_SWAP_BOOT(r3, 0x6611)
io_uring_enter(0xffffffffffffffff, 0x3a5a, 0xa3db, 0x1, &(0x7f0000000080)={[0x3]}, 0x8)

20:19:41 executing program 7:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = epoll_create(0x8)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r4, &(0x7f0000000100)={0x30000000})
epoll_ctl$EPOLL_CTL_MOD(r3, 0x3, r4, &(0x7f00000001c0))
r5 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r8}}, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r10 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r9, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r9, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r9, 0xc028660f, &(0x7f0000000040)={0x0, r10, 0x2})
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd_index=0xa, 0x2, {0x0, r4}, 0x6, 0xb, 0x0, {0x0, r8, r9}}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:19:41 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x3f00)

[ 2488.898731] kauditd_printk_skb: 102 callbacks suppressed
[ 2488.898747] audit: type=1326 audit(1709497182.001:7562): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14799 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2488.906731] audit: type=1326 audit(1709497182.008:7563): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14799 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2488.914717] audit: type=1326 audit(1709497182.008:7564): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14799 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2488.946824] FAULT_INJECTION: forcing a failure.
[ 2488.946824] name failslab, interval 1, probability 0, space 0, times 0
[ 2488.948797] CPU: 1 PID: 14811 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2488.949638] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2488.950636] Call Trace:
[ 2488.950961]  dump_stack+0x107/0x167
[ 2488.951406]  should_fail.cold+0x5/0xa
[ 2488.951883]  should_failslab+0x5/0x20
[ 2488.952349]  __kmalloc_node_track_caller+0x74/0x3b0
[ 2488.952952]  ? alloc_skb_with_frags+0x92/0x570
[ 2488.953516]  __alloc_skb+0xb1/0x5b0
[ 2488.953964]  alloc_skb_with_frags+0x92/0x570
[ 2488.954509]  sock_alloc_send_pskb+0x7af/0x930
[ 2488.955063]  ? sk_alloc+0x350/0x350
[ 2488.955518]  ? perf_trace_lock+0xac/0x490
[ 2488.955536]  ? lock_chain_count+0x20/0x20
[ 2488.955561]  __ip6_append_data.isra.0+0x1c12/0x3a70
[ 2488.955587]  ? ip6_mtu+0x1bb/0x3d0
[ 2488.955601]  ? lock_downgrade+0x6d0/0x6d0
[ 2488.955615]  ? ip_frag_init+0x350/0x350
[ 2488.955641]  ? ip6_finish_output2+0x1fe0/0x1fe0
[ 2488.955667]  ? ip6_mtu+0x1e9/0x3d0
[ 2488.955684]  ? ip6_setup_cork+0xfb7/0x1740
[ 2488.960378]  ip6_make_skb+0x2de/0x4e0
[ 2488.960392]  ? ip_frag_init+0x350/0x350
[ 2488.960411]  ? ip_frag_init+0x350/0x350
[ 2488.960429]  ? ip6_push_pending_frames+0xf0/0xf0
[ 2488.960450]  ? ip6_dst_hoplimit+0x199/0x440
[ 2488.960465]  ? lock_downgrade+0x6d0/0x6d0
[ 2488.960493]  udpv6_sendmsg+0x20d0/0x2af0
[ 2488.960512]  ? ip_frag_init+0x350/0x350
[ 2488.960535]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2488.960560]  ? __lockdep_reset_lock+0x180/0x180
[ 2488.960576]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2488.960595]  ? lock_acquire+0x197/0x470
[ 2488.960608]  ? find_held_lock+0x2c/0x110
[ 2488.960634]  ? sock_has_perm+0x1ea/0x280
[ 2488.960669]  ? __import_iovec+0x458/0x590
[ 2488.960684]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2488.960703]  inet6_sendmsg+0x105/0x140
[ 2488.960718]  ? inet6_compat_ioctl+0x320/0x320
[ 2488.960731]  __sock_sendmsg+0xf2/0x190
[ 2488.960747]  ____sys_sendmsg+0x334/0x870
[ 2488.960763]  ? sock_write_iter+0x3d0/0x3d0
[ 2488.960776]  ? do_recvmmsg+0x6d0/0x6d0
[ 2488.960793]  ? __lock_acquire+0x1657/0x5b00
[ 2488.960819]  ___sys_sendmsg+0xf3/0x170
[ 2488.960836]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2488.960854]  ? __lockdep_reset_lock+0x180/0x180
[ 2488.960868]  ? trace_hardirqs_on+0x5b/0x180
[ 2488.960897]  ? lock_acquire+0x197/0x470
[ 2488.960916]  ? find_held_lock+0x2c/0x110
[ 2488.960945]  ? __might_fault+0xd3/0x180
[ 2488.960964]  ? lock_downgrade+0x6d0/0x6d0
[ 2488.960982]  ? io_schedule_timeout+0x140/0x140
[ 2488.961009]  __sys_sendmmsg+0x195/0x470
[ 2488.961029]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2488.961044]  ? lock_downgrade+0x6d0/0x6d0
[ 2488.961073]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2488.961092]  ? wait_for_completion_io+0x270/0x270
[ 2488.961109]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2488.961124]  ? vfs_write+0x354/0xa70
20:19:42 executing program 3:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7e9d, &(0x7f0000000080)={0x0, 0x3d65, 0x1, 0x1, 0x23}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000100)=<r4=>0x0, &(0x7f0000000180))
r5 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r8}}, 0x0)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r7, &(0x7f0000000240)=@IORING_OP_LINK_TIMEOUT={0xf, 0x2, 0x0, 0x0, 0x0, &(0x7f00000001c0), 0x1, 0x1, 0x1, {0x0, r9}}, 0x80000000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0xf9)

[ 2488.961138]  ? fput_many+0x2f/0x1a0
[ 2488.961154]  ? ksys_write+0x1a9/0x260
[ 2488.961169]  ? __ia32_sys_read+0xb0/0xb0
[ 2488.961190]  __x64_sys_sendmmsg+0x99/0x100
[ 2488.961204]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2488.961220]  do_syscall_64+0x33/0x40
[ 2488.961234]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
20:19:42 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 85)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

[ 2488.961244] RIP: 0033:0x7fcaf2e26b19
[ 2488.961260] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
20:19:42 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x71c9, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

[ 2488.961269] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
20:19:42 executing program 7:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0xae1, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_CONNECT={0x10, 0x5, 0x0, r3, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x1, {0x0, r4}}, 0xfffffc6b)
fallocate(r3, 0x0, 0x0, 0x8000)
openat(r3, &(0x7f0000000040)='./file0\x00', 0x10100, 0x10)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2488.961285] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2488.961294] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2488.961303] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2488.961313] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2488.961322] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
[ 2488.974404] audit: type=1326 audit(1709497182.013:7565): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14799 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2488.974493] audit: type=1326 audit(1709497182.014:7566): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14799 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2488.974567] audit: type=1326 audit(1709497182.026:7567): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14799 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f0851210ad7 code=0x7ffc0000
[ 2488.974666] audit: type=1326 audit(1709497182.026:7568): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14799 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2488.974753] audit: type=1326 audit(1709497182.029:7569): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14802 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c0b681b19 code=0x7ffc0000
[ 2488.974831] audit: type=1326 audit(1709497182.029:7570): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14802 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c0b681b19 code=0x7ffc0000
[ 2488.974906] audit: type=1326 audit(1709497182.031:7571): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14802 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f3c0b681b19 code=0x7ffc0000
[ 2489.270881] FAULT_INJECTION: forcing a failure.
[ 2489.270881] name failslab, interval 1, probability 0, space 0, times 0
[ 2489.272501] CPU: 1 PID: 14844 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2489.273341] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2489.274333] Call Trace:
[ 2489.274657]  dump_stack+0x107/0x167
[ 2489.275104]  should_fail.cold+0x5/0xa
[ 2489.275577]  ? __alloc_skb+0x6d/0x5b0
[ 2489.276183]  should_failslab+0x5/0x20
[ 2489.276798]  kmem_cache_alloc_node+0x55/0x330
[ 2489.277528]  ? __lockdep_reset_lock+0x180/0x180
[ 2489.278193]  ? fib6_table_lookup+0x68f/0xb60
[ 2489.278853]  __alloc_skb+0x6d/0x5b0
[ 2489.279366]  alloc_skb_with_frags+0x92/0x570
[ 2489.280015]  ? mark_lock+0xf5/0x2df0
[ 2489.280566]  sock_alloc_send_pskb+0x7af/0x930
[ 2489.281221]  ? sk_alloc+0x350/0x350
[ 2489.281770]  ? find_held_lock+0x2c/0x110
[ 2489.282439]  ? perf_trace_lock+0xac/0x490
[ 2489.283022]  __ip6_append_data.isra.0+0x1c12/0x3a70
[ 2489.283810]  ? ip6_mtu+0x1bb/0x3d0
[ 2489.284403]  ? lock_downgrade+0x6d0/0x6d0
[ 2489.284934]  ? rawv6_exit+0x20/0x20
[ 2489.285515]  ? ip6_finish_output2+0x1fe0/0x1fe0
[ 2489.286230]  ? ip6_mtu+0x1e9/0x3d0
[ 2489.286680]  ? ip6_setup_cork+0xfb7/0x1740
[ 2489.287320]  ip6_append_data+0x1e7/0x330
[ 2489.287965]  ? rawv6_exit+0x20/0x20
[ 2489.288441]  ? rawv6_exit+0x20/0x20
[ 2489.289005]  icmp6_send+0x1257/0x1ff0
[ 2489.289637]  ? icmpv6_push_pending_frames+0x470/0x470
[ 2489.290284]  ? find_held_lock+0x2c/0x110
[ 2489.290936]  ? ipv6_proxy_select_ident+0x250/0x250
[ 2489.291696]  ip6_pkt_drop+0x3ae/0x7c0
[ 2489.292180]  ip6_local_out+0xb4/0x1a0
[ 2489.292767]  ip6_send_skb+0xb7/0x350
[ 2489.293385]  udp_v6_send_skb+0x7aa/0x15b0
[ 2489.293958]  udpv6_sendmsg+0x2113/0x2af0
[ 2489.294423]  ? ip_frag_init+0x350/0x350
[ 2489.294935]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2489.295589]  ? __lockdep_reset_lock+0x180/0x180
[ 2489.296350]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2489.296922]  ? lock_acquire+0x197/0x470
[ 2489.297389]  ? find_held_lock+0x2c/0x110
[ 2489.297865]  ? sock_has_perm+0x1ea/0x280
[ 2489.298369]  ? __import_iovec+0x458/0x590
[ 2489.298841]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2489.299444]  inet6_sendmsg+0x105/0x140
[ 2489.299924]  ? inet6_compat_ioctl+0x320/0x320
[ 2489.300667]  __sock_sendmsg+0xf2/0x190
[ 2489.301165]  ____sys_sendmsg+0x334/0x870
[ 2489.301631]  ? sock_write_iter+0x3d0/0x3d0
[ 2489.302124]  ? do_recvmmsg+0x6d0/0x6d0
[ 2489.302570]  ? __lock_acquire+0x1657/0x5b00
[ 2489.303088]  ___sys_sendmsg+0xf3/0x170
[ 2489.303533]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2489.304085]  ? __lockdep_reset_lock+0x180/0x180
[ 2489.304620]  ? lock_acquire+0x197/0x470
[ 2489.305100]  ? find_held_lock+0x2c/0x110
20:19:42 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x4351, &(0x7f0000000040)={0x0, 0x68a8, 0x1, 0x0, 0x391, 0x0, r0}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000100), &(0x7f0000000180)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r3, &(0x7f0000001a00)=@IORING_OP_SENDMSG={0x9, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000019c0)={&(0x7f0000000240)=@ll={0x11, 0xf5, 0x0, 0x1, 0x2, 0x6, @broadcast}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000340)="828b287ec1854331257fba4489d680bba59221ffa166acc1a229f613704be79ec9fe2478b26fe5f49d49d004aea3c69376c234973543cae6b3a8fc8023bd9b749e1edba7112615bbb888d82981637d74deedd1bfb794e1abb6cb3be037eb509236f008564665096c2b9d492f95ef77a7c943eb76a153521ae36bd079e3b25eb17db3f2f1a60f94febadb1cdfabb1534dd7092c3237895856d64b6f40e706849ec14834895b985844debac0f31aedf7bff68160e6f0173889a9dd70afbc1d811af83ca4dcdcbeeba7a609d6dd659a070604a2", 0xd2}], 0x1, &(0x7f0000000440)=[{0x48, 0x112, 0x0, "9aa3cbc5e2fe5357e08f4eadab255a3249ef163ca17589f59337cb15f75847029abe113ff87af9a2e3feee2df9c0b629c3"}, {0xf0, 0x10c, 0x8000, "947289ec95d1c749aeff489bae6f17d8822d44418b1237a16ae2cc98abd836a3912cb3293cac0791c7a43c4f71ed74835d31b0675a15b1ae512a50ac206024c7eba95befb21bebcc38a02805fb8a78442aa55ce2d9ed1163aadc7f0bddb44ff86a6d1f41e1268d727c0e1e9c2e63dbe3bf0727b69006435e33fff404f815a4c86fcac0d2b8c678fa4c37134cbdb6d222cfd757342250ed3f6e036482d4f412c3ce4ea15768d25b7fb26c48fe9c4c89dae42fccbabec33f7e49b9a145b3cdf4a0b0ac0009d1bbfa4a3573faab428ad52246ca534533dcf77d1cc92795ad91"}, {0xf8, 0x88, 0x800, "4c9809abff23e8db9c4e015f67deec928412fa2a73cd2632372a11fe35218158ac70fd046b0ee564b151534f5fdf399505213809b390fd6b6902dc77d19c0580e1ba6a13b2a388eb2cc2cf9cde6476374bb9f955c9930aee0432f382937233955c752bdaa4ad9e6b650182d31b8d32e462cb2ef29de990114325e0fe65c4d38fd11c54aeb9fd9b3001960315bdc3b646f5d2442ae4fea05b7bc5d46cad548449bbad8cd03f252ced3e9ebf8a85308f2ee3ca18f8960a0d20698d242aa633a5786f90201e24a7b345f56a9b5449fdd305872c696dc66c8c42e1496db0b5e68dddb85c20"}, {0x100, 0x29, 0x0, "32d38dc9d0f6b1cabc29ca68148e67665216740e05506e84184a9ed0b10deb5fca9a996cf576795bbb4169f5948aa53b439dd8392a1cd107d9672e383bcc71edf7b1a9f0c2d1eeeb1eb716fe551d18315e3391759570e6b5d9eb2fb5591819184625fb1418867f0b0beb8a85ebd40e94595d191a49a7274f8a4933b29049c1d841b0517794bcf7b839202757fbd24a1cc98d7a80103b45cb1f16d453cf38189fd0a69f287cf58b514b294f5a3e430ba68567f29666bfb8ae423051c2d5da861afe7fd5f5db0db1972acf87ddf1baab56bdd1b833de54903dc1af6a02437b358e501024834d456f168f14d386d7"}, {0x88, 0x105, 0xa48, "b4f9714fb00fe9e582e1b072c4981c6a11d5b39e8cf83969e6da8787c9d49a9480fe8b647ba7d4567bf7e2fa62325266ecf53884696b1137e297094200543feb0d24b458ca2484fd3e1decf81072b785673809f6c6bb236bab55324da61131e80a5c313114964e275a2723276d435ceaa6bc40d2"}, {0xb8, 0x1, 0x4, "f3e787d9874a3bed81ebe22b15731bf576bc815dc48f7ee25a9a5cc2759928069d9dd179ab4a322a565e929cb91aefd6c88a80d630460ab4a551875a9290a72ed937561129da226f1dbdb2ac90bc894cb8303584b5586ef94d93db4b20b5b25f369634895fc4d53889a2338461d0f27acdd3f290e241e0f962e0e141d7fbfe6cb2bf16698aec4feb7d0c01c4e5e17444f1e1ef79ceddfc059432a12f6e80b1eac40a"}, {0xe8, 0x109, 0x9fa4, "e1bafd0d22b50baf4c4cc50b17011e0ae5985c56908dce663e17be0f0177086de182cd5792640db0b262b59a3ebca6b0c3bb7f404b07e4f88fb1357c4ce317633bfc511feb999767acc3355f7791ac858efaba58ca2b31bd351296670a961f41e45ddc1b642d867f8a59240d47e67af45ca4f4bc2a367c7693048a1f93648446bdb49b2697c47c905de8d3280c9fcfc8c1f83fd9ef495e51d9a065a0e0119bb31963bd41e6376f7bcd36d7fc53b80c1396ece3c6cd7731afaa9f0b6f07186eeb7f5eee2f5ca9e19ec5032244bfa79b1290a227"}, {0x1010, 0x10b, 0x6, "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"}], 0x1568}, 0x0, 0x4000000, 0x1, {0x0, r4}}, 0x20)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2489.305571]  ? __might_fault+0xd3/0x180
[ 2489.306229]  ? lock_downgrade+0x6d0/0x6d0
[ 2489.306758]  ? io_schedule_timeout+0x140/0x140
[ 2489.307333]  __sys_sendmmsg+0x195/0x470
[ 2489.307792]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2489.308322]  ? lock_downgrade+0x6d0/0x6d0
[ 2489.308831]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2489.308851]  ? wait_for_completion_io+0x270/0x270
[ 2489.308872]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2489.308893]  ? vfs_write+0x354/0xa70
[ 2489.308915]  ? fput_many+0x2f/0x1a0
[ 2489.308939]  ? ksys_write+0x1a9/0x260
[ 2489.308962]  ? __ia32_sys_read+0xb0/0xb0
[ 2489.308986]  __x64_sys_sendmmsg+0x99/0x100
[ 2489.309001]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2489.309018]  do_syscall_64+0x33/0x40
[ 2489.309032]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2489.309056] RIP: 0033:0x7fcaf2e26b19
[ 2489.315432] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2489.315442] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2489.315459] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2489.315469] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2489.315478] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2489.315486] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2489.315496] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
20:19:55 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 86)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:19:55 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x71ca, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:19:55 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x4000)

20:19:55 executing program 3:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x20000000)

20:19:55 executing program 1:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
read$eventfd(r0, 0x0, 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000100)=0x9)
syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fallocate(r1, 0x0, 0x0, 0x8000)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000180)={0x0, 0x7, 0x50, 0xe1, @buffer={0x0, 0x1000, &(0x7f0000000340)=""/4096}, &(0x7f0000000040)="dcab60b15b03d8f577cd1c862d600fcbc7b62aae705d5f974feaa994910f5d2e1a216fd811bfb22df4f9c3e7372c97d317a6db111e20899ad867c0ce3ac23d211c9bb5381ce62adfa07cb13bb6285597", &(0x7f0000001340)=""/130, 0x4, 0x10010, 0x0, &(0x7f00000000c0)})
r2 = syz_mount_image$nfs(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0xfffffffffffffffb, 0x8, &(0x7f0000001980)=[{&(0x7f0000001400)="955d452ee30ac2a2bb969c2a355010654523618f73911e08b7f09ff5a3a32a3217624fcfe1b6f3ffde8c399b522d8e461f64e345a59a1297bce2f425090f7217dcc72c769d7b9e3796e1c7d68a7a1e8cab0fdb72fb0931c71afc0da5c032448a75d106677bf4fbeec0be6e584ace136c06a27a9a501bb8c3078b", 0x7a, 0x5}, {&(0x7f0000001480)="20a51e03fe593c458cd5a5b9a3807dffcdeea56f50bbe7b52d97d7441de90281bf2555e3a836fa9150408acce3870b2ad2faebcab9b069595b06250c8968c32ea560530e03bf9d1442f2d3f8a2ef836986aa9c311c62270e9225b415479bac4a85e00f5e12c46c84207e9d9dc52694425ad59bf516968454e90ec404a4f4931874dbdd97bf93af0d0de1cd7ae5bdac70af6dc0d5789db10f19cf9e37b6c579c5812187a5f6314ac8428fb883a21840fece4c57c72d12a7241a472f0fea9ec5c5c9d86672d00b297b6efeebc363df1f60cf30e1429205038afc9b98b78e", 0xdd, 0x7}, {&(0x7f0000001580)="e876a81d8008b0c6af10ab2a8641ec67dd4d40f3ece300f12d188787546be6f11de2698088671b66b63e27322d6d8dccb62bd6bbd40e1e221439a4769d5416f2b8f05bb9a2839a0529287b9751e569183e94533c3d3c3b6a575321a1f75cb175dae55594e55849b8799a27c701a280a2a769009a9010027b1934b0ac191d0ce8dfa1ad3f6679578f77585b8302f9a54336e744", 0x93}, {&(0x7f0000001640)="489aa2a5f7a9df362c8a59cb4e0c900a092207dd611de9ce1031afae99a413d9de1abe17ca8dc8b8172c397afa7a76575514c56438c460121a697c1f81c48ace3c7e7aef2106997a6ec611f8a595a8ed18529f8cce0ff99fb5c05dba20dd757da5fe14ec0535c0992627d1e8c8f306f863667936b1f02e98bc75ab54f0e1280d795623a25adc2ccd2c88362d807437ec6b9a108004b59e4c75ae712bd9cd1aee5ea30a086aedc2b782ab999941a1e4b3510f4f2023800a57c64743cd4ab49d4d9eb8605e132d5412ab9587097dc459c31c92adcd2e9dec", 0xd7, 0x5}, {&(0x7f0000001740)="77476d1fa57efce4ae8c7035c9a6fb97347e9bbf8d5ca3c756dbd63ebe757879d91aa858dc4e7a3179949562957ea72351d6d134655c5660033a3d5296e233123a356a5d300b9cfe312bc0e329529d1c0d99837b4bdb79f29b5bdecc428115a7c5fc386472d728a4488090b80741451506e4a4d7739185a65a828932cbb6ed39ae1cc9f6e95f1f7d1c", 0x89, 0x9}, {&(0x7f0000001800)="4e25ea66d38c89b745da68c55e88ae41b9871aeb0b7068fcb9702775f94d6c31dff65ad11d51b5020146145b9720cc453a01c5d10de18c2d310d4b6071d40af92de91f40e59d0d6e77be531a63275a16a3bbb9f6a23896cb9d8b5f770ef2def6de248e8a1f3eab542041f6ab87b421054cae2f0383cbb0981d7548d1afd69c0abba4b5faeb5ba9d29f839b8e57dee0a00dd2d3b2b1454cff80f85e7143e89df4102bff12701be2ce6db6d0d0ccecd1c8c4493383aa3f42abf5e893870a0f7c5bd93bd7eaffd7759c99c13cc35e", 0xcd, 0x20}, {&(0x7f0000001900)="7c273102d5365bb9d9702ac7f5dda8a9bf6cf920492bd71f684aec4f7f467d6b3b64dd870ce2fe19c27e43", 0x2b, 0x2f2}, {&(0x7f0000001940)="3031d4e68ba72c40a97d9e19526f5d06a23f590225990e9bdf4f4434c80fd3daa4957a11f6ff1c75d5c13e574e7d6f0d25543db674335254", 0x38, 0x48}], 0x940025, &(0x7f0000001a40)=ANY=[@ANYBLOB="002cbf742c002c00402c002c00"])
openat(r2, &(0x7f0000001a80)='./file0\x00', 0x424000, 0x120)
r3 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:19:55 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fallocate(r3, 0x0, 0x0, 0x8000)
io_uring_enter(r3, 0x4150, 0x59b1, 0x2, &(0x7f0000000400)={[0x8000]}, 0x8)
r4 = syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_bp={0x0}, 0x5400, 0x0, 0x8001, 0x0, 0x8004, 0x400000, 0x1, 0x0, 0x5, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x4, 0x10010, r4, 0x0)
r6 = openat$zero(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
ioctl$TIOCGICOUNT(r6, 0x545d, 0x0)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_setup(0x5bba, &(0x7f0000000240)={0x0, 0x6210, 0x10, 0x1, 0x20113}, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000340)=<r8=>0x0)
syz_io_uring_submit(r5, r8, &(0x7f0000000380)=@IORING_OP_ASYNC_CANCEL={0xe, 0x4, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x1}, 0x0)
ioctl$sock_SIOCSIFVLAN_DEL_VLAN_CMD(r3, 0x8983, &(0x7f0000000440)={0x1, 'wg1\x00', {}, 0x1})
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x4, 0x0, 0x4, 0x0, &(0x7f0000000040)="b473eabeae37242059a9e8798a6f2ffe85c1e1dab4f536c55b451c6ddcd611f39f9b697f582e28bf43ac22c20263b1b44462b3ad65c4959eec7c5367fd52513fed363111eaee72a90032a0463f6ea0659e497f750abbdc96c562665dc83628931b7734294c2bb23578c691d1e58feba1fc02c149065b6bc161f82eb9f0674c423558dbd9a8025d383216ff005dea3f74b7149206bc49116244eee5188be41c98b6a0b5bd9785784e", 0x7, 0x0, 0x0, {0x2, r7}}, 0x6)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$SG_GET_LOW_DMA(0xffffffffffffffff, 0x227a, &(0x7f0000000180))

20:19:55 executing program 7:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
open_by_handle_at(r0, &(0x7f0000000040)=@FILEID_BTRFS_WITH_PARENT={0x28, 0x4e, {0x3, 0x8, 0x1, 0x80000001, 0x8, 0x1}}, 0xa7c1bc6f2cdacb94)

20:19:55 executing program 0:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$PIO_SCRNMAP(r0, 0x4b41, &(0x7f0000000340)="ef5a254e534104092e4988f9b51ea3a5bd2bf5681c6f3e8b1a99d1c49ec4baecdba42de4ee53b6ec4f7fd87c911b19db58a0eb78ce8b4ae5c416748a5060305452968b028f33cccb3a6bc72e3062c6c9b6c2cb2e7c4ade1816808ebcd9d19e099600bd15fbe967a15ecaf324958baf80fc38a9d9f1191acd5d9428ba1c28abecdba4fb7cdd2b583a83609b4d2449b89155251801d07b066c293404056cbcfbc2a0ac478aa2b35c2c551899")
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x59af, 0x0, 0x0, 0x0, 0x0)

[ 2502.874444] kauditd_printk_skb: 95 callbacks suppressed
[ 2502.874460] audit: type=1326 audit(1709497195.976:7667): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14857 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2502.885704] audit: type=1326 audit(1709497195.977:7668): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14857 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2502.891718] audit: type=1326 audit(1709497195.978:7669): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14857 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2502.896734] audit: type=1326 audit(1709497195.978:7670): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14857 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2502.917483] audit: type=1326 audit(1709497195.978:7671): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14857 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f0851210ad7 code=0x7ffc0000
[ 2502.924940] FAULT_INJECTION: forcing a failure.
[ 2502.924940] name failslab, interval 1, probability 0, space 0, times 0
[ 2502.927167] CPU: 1 PID: 14866 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2502.928396] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2502.929750] Call Trace:
[ 2502.930306]  dump_stack+0x107/0x167
[ 2502.930863] audit: type=1326 audit(1709497195.981:7672): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14857 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2502.931028]  should_fail.cold+0x5/0xa
[ 2502.934275]  ? create_object.isra.0+0x3a/0xa20
[ 2502.935081]  should_failslab+0x5/0x20
[ 2502.935744]  kmem_cache_alloc+0x5b/0x310
[ 2502.936468]  ? mark_lock+0xf5/0x2df0
[ 2502.937128]  create_object.isra.0+0x3a/0xa20
[ 2502.937888]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2502.938777]  kmem_cache_alloc_node+0x169/0x330
[ 2502.939575]  ? __lockdep_reset_lock+0x180/0x180
[ 2502.940430]  __alloc_skb+0x6d/0x5b0
[ 2502.941070]  alloc_skb_with_frags+0x92/0x570
[ 2502.941781]  ? mark_lock+0xf5/0x2df0
[ 2502.942469]  sock_alloc_send_pskb+0x7af/0x930
[ 2502.943289]  ? sk_alloc+0x350/0x350
[ 2502.943909]  ? find_held_lock+0x2c/0x110
[ 2502.944603]  ? perf_trace_lock+0xac/0x490
[ 2502.945351]  __ip6_append_data.isra.0+0x1c12/0x3a70
[ 2502.946256]  ? ip6_mtu+0x1bb/0x3d0
[ 2502.946862]  ? lock_downgrade+0x6d0/0x6d0
[ 2502.947569]  ? rawv6_exit+0x20/0x20
[ 2502.948216]  ? ip6_finish_output2+0x1fe0/0x1fe0
[ 2502.949029]  ? ip6_mtu+0x1e9/0x3d0
[ 2502.949658]  ? ip6_setup_cork+0xfb7/0x1740
[ 2502.949735] audit: type=1326 audit(1709497195.982:7673): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14857 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2502.950380]  ip6_append_data+0x1e7/0x330
[ 2502.950406]  ? rawv6_exit+0x20/0x20
[ 2502.954303]  ? rawv6_exit+0x20/0x20
[ 2502.954337]  icmp6_send+0x1257/0x1ff0
[ 2502.954382]  ? icmpv6_push_pending_frames+0x470/0x470
[ 2502.954402]  ? find_held_lock+0x2c/0x110
[ 2502.954467]  ? ipv6_proxy_select_ident+0x250/0x250
[ 2502.958316]  ip6_pkt_drop+0x3ae/0x7c0
[ 2502.959072]  ip6_local_out+0xb4/0x1a0
[ 2502.959848]  ip6_send_skb+0xb7/0x350
[ 2502.960590]  udp_v6_send_skb+0x7aa/0x15b0
[ 2502.961407]  udpv6_sendmsg+0x2113/0x2af0
[ 2502.962109]  ? ip_frag_init+0x350/0x350
[ 2502.962737]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2502.963530]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2502.964528]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2502.965376]  ? __lockdep_reset_lock+0x180/0x180
[ 2502.966117]  ? lock_acquire+0x1b9/0x470
[ 2502.966818]  ? find_held_lock+0x2c/0x110
[ 2502.967586]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2502.968400]  ? asm_sysvec_call_function_single+0x12/0x20
[ 2502.969241]  ? sock_has_perm+0x1ea/0x280
[ 2502.969891]  ? __import_iovec+0x458/0x590
[ 2502.970547]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2502.971356]  inet6_sendmsg+0x105/0x140
[ 2502.971961]  ? inet6_compat_ioctl+0x320/0x320
[ 2502.972657]  __sock_sendmsg+0xf2/0x190
[ 2502.973274]  ____sys_sendmsg+0x334/0x870
[ 2502.973891]  ? sock_write_iter+0x3d0/0x3d0
[ 2502.974553]  ? do_recvmmsg+0x6d0/0x6d0
[ 2502.975185]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2502.976005]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2502.976832]  ? trace_hardirqs_on+0x5b/0x180
[ 2502.977554]  ___sys_sendmsg+0xf3/0x170
[ 2502.978182]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2502.978887]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2502.979583]  ? _raw_spin_unlock_irq+0x27/0x30
[ 2502.980325]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2502.981014]  ? finish_task_switch+0x126/0x5d0
[ 2502.981679]  ? finish_task_switch+0xef/0x5d0
[ 2502.982361]  ? __switch_to+0x572/0xf70
[ 2502.982959]  ? __switch_to_asm+0x3a/0x60
[ 2502.983582]  ? __switch_to_asm+0x34/0x60
[ 2502.984245]  ? __schedule+0x82c/0x1ea0
[ 2502.984857]  ? io_schedule_timeout+0x140/0x140
[ 2502.985588]  __sys_sendmmsg+0x195/0x470
[ 2502.986207]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2502.986858]  ? lock_downgrade+0x6d0/0x6d0
[ 2502.987515]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2502.988283]  ? wait_for_completion_io+0x270/0x270
[ 2502.989043]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2502.989744]  ? vfs_write+0x354/0xa70
[ 2502.990430]  ? fput_many+0x2f/0x1a0
[ 2502.991168]  ? ksys_write+0x1a9/0x260
[ 2502.991741]  ? __ia32_sys_read+0xb0/0xb0
[ 2502.992447]  __x64_sys_sendmmsg+0x99/0x100
[ 2502.993114]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2502.993885]  do_syscall_64+0x33/0x40
[ 2502.994460]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2502.995304] RIP: 0033:0x7fcaf2e26b19
[ 2502.995868] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2502.998898] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2503.000186] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2503.001353] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2503.002522] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2503.003694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2503.004874] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
[ 2503.017802] audit: type=1326 audit(1709497195.982:7674): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14857 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2503.027349] audit: type=1326 audit(1709497195.983:7675): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14857 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2503.027469] audit: type=1326 audit(1709497195.984:7676): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14857 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
20:19:56 executing program 7:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$int_out(r0, 0x2, &(0x7f0000000040))

20:19:56 executing program 2:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
sendfile(r0, r1, &(0x7f0000000180)=0x3, 0x55f)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1, 0x2})
sendmsg$BATADV_CMD_GET_GATEWAYS(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x2c, 0x0, 0x10, 0x70bd29, 0x25dfdbff, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40011}, 0x4001)
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x6000, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:19:56 executing program 3:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x71c9, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:19:56 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x6703)

20:19:56 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x71cb, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:19:56 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_open_dev$mouse(&(0x7f0000000040), 0x0, 0x3)
ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000080)={0x2, {0x2, 0x1, 0x4, 0x8, 0x3}})
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:19:56 executing program 1:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fallocate(r0, 0x0, 0x0, 0x8000)
r1 = openat(r0, &(0x7f0000000000)='./file1\x00', 0x4802c3, 0x82)
r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r1, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r2, 0x2})
ioctl$KDFONTOP_SET_DEF(r1, 0x4b72, &(0x7f0000000040)={0x2, 0x0, 0x1, 0x1e, 0xdb, &(0x7f0000000340)="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"})
r3 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x5, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x1, 0x0, 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r9}}, 0x0)
syz_io_uring_submit(r4, r8, &(0x7f0000000080)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x8}, 0x1)
io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:19:56 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xc00c)

20:19:56 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 87)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:19:56 executing program 7:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = epoll_create(0x8)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r4, &(0x7f0000000100)={0x30000000})
epoll_ctl$EPOLL_CTL_MOD(r3, 0x3, r4, &(0x7f00000001c0))
accept4(r4, &(0x7f0000000040)=@generic, &(0x7f00000000c0)=0x80, 0x800)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000000, 0x2010, r0, 0x8000000)
r6 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000180), 0x240082, 0x0)
r7 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r8=>0x0, &(0x7f0000000140)=<r9=>0x0)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r10}}, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000240)=@IORING_OP_SPLICE={0x1e, 0x1, 0x0, @fd_index=0x9, 0x7, {0x0, r6}, 0x7fff, 0x1, 0x1, {0x0, r10, r4}}, 0xe1)
io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0)

[ 2503.632711] FAULT_INJECTION: forcing a failure.
[ 2503.632711] name failslab, interval 1, probability 0, space 0, times 0
[ 2503.634583] CPU: 1 PID: 14936 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2503.635655] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2503.637024] Call Trace:
[ 2503.637466]  dump_stack+0x107/0x167
[ 2503.638085]  should_fail.cold+0x5/0xa
[ 2503.638720]  should_failslab+0x5/0x20
[ 2503.639348]  __kmalloc_node_track_caller+0x74/0x3b0
[ 2503.640180]  ? alloc_skb_with_frags+0x92/0x570
[ 2503.640943]  ? __lockdep_reset_lock+0x180/0x180
[ 2503.641713]  __alloc_skb+0xb1/0x5b0
[ 2503.642324]  alloc_skb_with_frags+0x92/0x570
[ 2503.643042]  ? mark_lock+0xf5/0x2df0
[ 2503.643666]  sock_alloc_send_pskb+0x7af/0x930
[ 2503.644428]  ? sk_alloc+0x350/0x350
[ 2503.645024]  ? find_held_lock+0x2c/0x110
[ 2503.645710]  ? perf_trace_lock+0xac/0x490
[ 2503.646423]  __ip6_append_data.isra.0+0x1c12/0x3a70
[ 2503.647252]  ? ip6_mtu+0x1bb/0x3d0
[ 2503.647833]  ? lock_downgrade+0x6d0/0x6d0
[ 2503.648522]  ? rawv6_exit+0x20/0x20
[ 2503.649135]  ? ip6_finish_output2+0x1fe0/0x1fe0
[ 2503.649893]  ? ip6_mtu+0x1e9/0x3d0
[ 2503.650477]  ? ip6_setup_cork+0xfb7/0x1740
[ 2503.651199]  ip6_append_data+0x1e7/0x330
[ 2503.651867]  ? rawv6_exit+0x20/0x20
[ 2503.652480]  ? rawv6_exit+0x20/0x20
[ 2503.653088]  icmp6_send+0x1257/0x1ff0
[ 2503.653738]  ? icmpv6_push_pending_frames+0x470/0x470
[ 2503.654583]  ? find_held_lock+0x2c/0x110
[ 2503.655301]  ? ipv6_proxy_select_ident+0x250/0x250
[ 2503.656168]  ip6_pkt_drop+0x3ae/0x7c0
[ 2503.656800]  ip6_local_out+0xb4/0x1a0
[ 2503.657435]  ip6_send_skb+0xb7/0x350
[ 2503.658052]  udp_v6_send_skb+0x7aa/0x15b0
[ 2503.658750]  udpv6_sendmsg+0x2113/0x2af0
[ 2503.659418]  ? ip_frag_init+0x350/0x350
[ 2503.660096]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2503.660939]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2503.661794]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2503.662684]  ? __lockdep_reset_lock+0x180/0x180
[ 2503.663454]  ? lock_acquire+0x197/0x470
[ 2503.664115]  ? find_held_lock+0x2c/0x110
[ 2503.664789]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2503.665667]  ? sock_has_perm+0x1ea/0x280
[ 2503.666359]  ? __import_iovec+0x458/0x590
[ 2503.667031]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2503.667891]  inet6_sendmsg+0x105/0x140
[ 2503.668501]  ? inet6_compat_ioctl+0x320/0x320
[ 2503.669232]  __sock_sendmsg+0xf2/0x190
[ 2503.669838]  ____sys_sendmsg+0x334/0x870
[ 2503.670503]  ? sock_write_iter+0x3d0/0x3d0
[ 2503.671193]  ? do_recvmmsg+0x6d0/0x6d0
[ 2503.671833]  ? __lock_acquire+0x1657/0x5b00
[ 2503.672590]  ___sys_sendmsg+0xf3/0x170
[ 2503.673231]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2503.673981]  ? __lockdep_reset_lock+0x180/0x180
[ 2503.674746]  ? lock_acquire+0x197/0x470
[ 2503.675393]  ? find_held_lock+0x2c/0x110
[ 2503.676075]  ? __might_fault+0xd3/0x180
[ 2503.676725]  ? lock_downgrade+0x6d0/0x6d0
[ 2503.677414]  ? io_schedule_timeout+0x140/0x140
[ 2503.678181]  __sys_sendmmsg+0x195/0x470
[ 2503.678834]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2503.679551]  ? lock_downgrade+0x6d0/0x6d0
[ 2503.680274]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2503.681061]  ? wait_for_completion_io+0x270/0x270
[ 2503.681847]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2503.682551]  ? vfs_write+0x354/0xa70
[ 2503.683164]  ? fput_many+0x2f/0x1a0
[ 2503.683760]  ? ksys_write+0x1a9/0x260
[ 2503.684348]  ? __ia32_sys_read+0xb0/0xb0
[ 2503.685017]  __x64_sys_sendmmsg+0x99/0x100
[ 2503.685650]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2503.686522]  do_syscall_64+0x33/0x40
[ 2503.687144]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2503.687977] RIP: 0033:0x7fcaf2e26b19
[ 2503.688603] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2503.691582] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2503.692829] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2503.693989] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2503.695146] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2503.696310] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2503.697467] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
20:20:09 executing program 3:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x3, 0x4000, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r4 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r3, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000040)={0x0, r4, 0x2})
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x40082406, &(0x7f0000000040)='#:\x00')

20:20:09 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 88)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:20:09 executing program 7:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0xd, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:20:09 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r3 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
read$eventfd(r3, 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@empty, @in=@empty}}, {{@in6=@private1}, 0x0, @in6=@private1}}, &(0x7f0000000040)=0xe8)

20:20:09 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x4240, &(0x7f0000000040)={0x0, 0xb2c2, 0x10, 0x2, 0x116, 0x0, r0}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000000c0)=<r3=>0x0, &(0x7f0000000100))
r4 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x0)
syz_io_uring_submit(r3, r6, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x2, 0x0, 0xffffffffffffff9c, &(0x7f0000000180)={0x28b4c0, 0x80, 0x2c}, &(0x7f00000001c0)='./file0\x00', 0x18, 0x0, 0x23456}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x1, 0x0, 0x62, 0x8c8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0x6, 0x1}, 0xa02, 0x0, 0x8001, 0x0, 0x2, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x7)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:20:09 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x71cc, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:20:09 executing program 1:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fallocate(r1, 0x0, 0x0, 0x8000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000180)={0x19, 0x0, 0x1, "007c683f33ceda0d0ff2973153a3b8762764c3ab6c4678f60c"})
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='net/kcm\x00')
ioctl$SCSI_IOCTL_BENCHMARK_COMMAND(r2, 0x3)
r3 = syz_io_uring_setup(0x3d06, &(0x7f00000002c0)={0x0, 0x4a59, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000000c0)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
dup(0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x48)
ioctl$SG_SET_TIMEOUT(r0, 0x2201, &(0x7f0000000080)=0xffffffe0)
io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:20:09 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xc42e)

[ 2516.446345] kauditd_printk_skb: 89 callbacks suppressed
[ 2516.446356] audit: type=1326 audit(1709497209.548:7766): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14950 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe68e5db19 code=0x7ffc0000
[ 2516.449020] audit: type=1326 audit(1709497209.549:7767): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14950 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe68e5db19 code=0x7ffc0000
[ 2516.450954] audit: type=1326 audit(1709497209.551:7768): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14950 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fbe68e5db19 code=0x7ffc0000
[ 2516.452729] audit: type=1326 audit(1709497209.551:7769): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14950 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe68e5db19 code=0x7ffc0000
[ 2516.461913] FAULT_INJECTION: forcing a failure.
[ 2516.461913] name failslab, interval 1, probability 0, space 0, times 0
[ 2516.462899] CPU: 1 PID: 14957 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2516.462906] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2516.462910] Call Trace:
[ 2516.462927]  dump_stack+0x107/0x167
[ 2516.462939]  should_fail.cold+0x5/0xa
[ 2516.462954]  ? create_object.isra.0+0x3a/0xa20
[ 2516.462968]  should_failslab+0x5/0x20
[ 2516.462979]  kmem_cache_alloc+0x5b/0x310
[ 2516.462993]  create_object.isra.0+0x3a/0xa20
[ 2516.463003]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2516.463017]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 2516.463028]  ? alloc_skb_with_frags+0x92/0x570
[ 2516.463039]  ? __lockdep_reset_lock+0x180/0x180
[ 2516.463052]  __alloc_skb+0xb1/0x5b0
[ 2516.463066]  alloc_skb_with_frags+0x92/0x570
[ 2516.463078]  ? mark_lock+0xf5/0x2df0
[ 2516.463095]  sock_alloc_send_pskb+0x7af/0x930
[ 2516.463117]  ? sk_alloc+0x350/0x350
[ 2516.463127]  ? find_held_lock+0x2c/0x110
[ 2516.463138]  ? perf_trace_lock+0xac/0x490
[ 2516.463160]  __ip6_append_data.isra.0+0x1c12/0x3a70
[ 2516.463180]  ? ip6_mtu+0x1bb/0x3d0
[ 2516.463190]  ? lock_downgrade+0x6d0/0x6d0
[ 2516.463199]  ? rawv6_exit+0x20/0x20
[ 2516.463219]  ? ip6_finish_output2+0x1fe0/0x1fe0
[ 2516.463230]  ? ip6_mtu+0x1e9/0x3d0
[ 2516.463241]  ? ip6_setup_cork+0xfb7/0x1740
[ 2516.463255]  ip6_append_data+0x1e7/0x330
[ 2516.463264]  ? rawv6_exit+0x20/0x20
[ 2516.463276]  ? rawv6_exit+0x20/0x20
[ 2516.463291]  icmp6_send+0x1257/0x1ff0
[ 2516.463314]  ? icmpv6_push_pending_frames+0x470/0x470
[ 2516.463324]  ? find_held_lock+0x2c/0x110
[ 2516.463359]  ? ipv6_proxy_select_ident+0x250/0x250
[ 2516.463381]  ip6_pkt_drop+0x3ae/0x7c0
[ 2516.475515]  ip6_local_out+0xb4/0x1a0
[ 2516.475823]  ip6_send_skb+0xb7/0x350
[ 2516.476129]  udp_v6_send_skb+0x7aa/0x15b0
[ 2516.476479]  udpv6_sendmsg+0x2113/0x2af0
[ 2516.476807]  ? ip_frag_init+0x350/0x350
[ 2516.477136]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2516.477559]  ? __lockdep_reset_lock+0x180/0x180
[ 2516.477928]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2516.478320]  ? lock_acquire+0x197/0x470
[ 2516.478636]  ? find_held_lock+0x2c/0x110
[ 2516.478972]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2516.479388]  ? sock_has_perm+0x1ea/0x280
[ 2516.479735]  ? __import_iovec+0x458/0x590
[ 2516.480067]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2516.480492]  inet6_sendmsg+0x105/0x140
[ 2516.480806]  ? inet6_compat_ioctl+0x320/0x320
[ 2516.481170]  __sock_sendmsg+0xf2/0x190
[ 2516.481481]  ____sys_sendmsg+0x334/0x870
[ 2516.481807]  ? sock_write_iter+0x3d0/0x3d0
[ 2516.482145]  ? do_recvmmsg+0x6d0/0x6d0
[ 2516.482456]  ? __lock_acquire+0x1657/0x5b00
[ 2516.482814]  ___sys_sendmsg+0xf3/0x170
[ 2516.483143]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2516.483540]  ? __lockdep_reset_lock+0x180/0x180
[ 2516.483913]  ? trace_hardirqs_on+0x5b/0x180
[ 2516.484281]  ? lock_acquire+0x197/0x470
[ 2516.484599]  ? find_held_lock+0x2c/0x110
[ 2516.484928]  ? __might_fault+0xd3/0x180
[ 2516.485253]  ? lock_downgrade+0x6d0/0x6d0
[ 2516.485589]  ? io_schedule_timeout+0x140/0x140
[ 2516.485968]  __sys_sendmmsg+0x195/0x470
[ 2516.486297]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2516.486644]  ? lock_downgrade+0x6d0/0x6d0
[ 2516.486996]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2516.487385]  ? wait_for_completion_io+0x270/0x270
[ 2516.487775]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2516.488163]  ? vfs_write+0x354/0xa70
[ 2516.488459]  ? fput_many+0x2f/0x1a0
[ 2516.488770]  ? ksys_write+0x1a9/0x260
[ 2516.489078]  ? __ia32_sys_read+0xb0/0xb0
[ 2516.489412]  __x64_sys_sendmmsg+0x99/0x100
[ 2516.489753]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2516.490169]  do_syscall_64+0x33/0x40
[ 2516.490469]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2516.490876] RIP: 0033:0x7fcaf2e26b19
[ 2516.491178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2516.492653] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2516.493260] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2516.493822] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2516.494388] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2516.494951] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2516.495518] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
[ 2516.522934] audit: type=1326 audit(1709497209.551:7770): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14950 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe68e5db19 code=0x7ffc0000
[ 2516.531002] audit: type=1326 audit(1709497209.562:7771): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14950 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fbe68e5db19 code=0x7ffc0000
[ 2516.543644] audit: type=1326 audit(1709497209.564:7772): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14950 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7fbe68e5dad7 code=0x7ffc0000
[ 2516.549634] audit: type=1326 audit(1709497209.566:7773): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14950 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7fbe68e10ab7 code=0x7ffc0000
[ 2516.605185] audit: type=1326 audit(1709497209.566:7774): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14950 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7fbe68e10ab7 code=0x7ffc0000
[ 2516.623327] audit: type=1326 audit(1709497209.617:7775): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=14950 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7fbe68e10ab7 code=0x7ffc0000
20:20:09 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x48d4, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r3 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
r6 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x12, r3, 0x8000000)
syz_io_uring_submit(r6, r2, &(0x7f00000000c0)=@IORING_OP_WRITE={0x17, 0x1, 0x6000, @fd_index=0x3, 0x1f, &(0x7f0000000340)="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", 0x1000, 0x13, 0x1}, 0xd285)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000040)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd_index=0x9, 0xb33, 0x0, 0x8, 0x5, 0x1, {0x0, r7}}, 0x1)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:20:09 executing program 0:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
r4 = dup(r0)
ioctl$KDGKBMETA(r4, 0x4b62, &(0x7f0000000040))
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:20:09 executing program 3:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
ioctl$VT_DISALLOCATE(r0, 0x5608)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000180)=0x20)
msgctl$MSG_STAT(0x0, 0xb, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
read$eventfd(r4, 0x0, 0x0)
ioctl$BLKROGET(0xffffffffffffffff, 0x125e, &(0x7f0000000240))
ioctl$TIOCMBIC(r4, 0x5417, &(0x7f00000001c0)=0x9)
io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x0, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000040), 0x10440, 0x0)
write$binfmt_script(r0, &(0x7f0000000440)={'#! ', './file0', [{0x20, '/'}, {0x20, '\'--'}, {0x20, 'o):(]%\xc2'}], 0xa, "620b34ac2f778662fbbee155b86d781192181e56b7195fe6c79301e4eac9b63fc6a9e375468a3479dd4d95aad26b189a63481b5025309f249543ad0c3adbfb556d1dbef0e1466c096e0fb2d0e53f49b161e9e8526cb1b2b23230623f26a124da"}, 0x79)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
setresuid(0xffffffffffffffff, r6, 0x0)
r7 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmsg$nl_generic(r5, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000000c0)={&(0x7f0000000340)={0xc4, 0x1a, 0x0, 0x70bd2d, 0x25dfdbfd, {0xf}, [@typed={0x8, 0x6, 0x0, 0x0, @uid=r6}, @generic="15027272a0f4c909986585ea5a2571014edd4b6141e836620506fd6b2d109bbed4ef6c628f0dc1e16464adffef58d2aa8d2a7a5e37dfbfbeb57f3d0b8f1321f981d302b31a9a580bf9ec25a98eb53777a10c03f034fbe0f9849955d5f553146d3e7e6f521cb934d717dbde1dc0c857866807d89c2206af4b6e856851bd6d0bef8c5c7549c7d731390129c02d8f", @nested={0x18, 0x6f, 0x0, 0x1, [@typed={0x8, 0x75, 0x0, 0x0, @fd=r7}, @typed={0xc, 0x26, 0x0, 0x0, @u64=0x8}, @generic]}]}, 0xc4}}, 0x0)
ioctl$TCFLSH(r1, 0x540b, 0x1)

20:20:09 executing program 1:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1, 0x2})
ioctl$KDGKBMODE(r0, 0x4b44, &(0x7f0000000040))
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:20:09 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xff00)

20:20:09 executing program 7:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x7002000000000000, 0x0, 0x0)

20:20:09 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x71cd, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:20:09 executing program 0:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_GET_LOW_DMA(r1, 0x227a, &(0x7f0000000040))
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000080)={0x2, {0x2, 0x8, 0x4, 0x1f, 0x5, 0x3}})
r2 = syz_io_uring_setup(0x14c7, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:20:10 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 89)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:20:10 executing program 3:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
ioctl$VT_DISALLOCATE(r0, 0x5608)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000180)=0x20)
msgctl$MSG_STAT(0x0, 0xb, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
read$eventfd(r4, 0x0, 0x0)
ioctl$BLKROGET(0xffffffffffffffff, 0x125e, &(0x7f0000000240))
ioctl$TIOCMBIC(r4, 0x5417, &(0x7f00000001c0)=0x9)
io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x0, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000040), 0x10440, 0x0)
write$binfmt_script(r0, &(0x7f0000000440)={'#! ', './file0', [{0x20, '/'}, {0x20, '\'--'}, {0x20, 'o):(]%\xc2'}], 0xa, "620b34ac2f778662fbbee155b86d781192181e56b7195fe6c79301e4eac9b63fc6a9e375468a3479dd4d95aad26b189a63481b5025309f249543ad0c3adbfb556d1dbef0e1466c096e0fb2d0e53f49b161e9e8526cb1b2b23230623f26a124da"}, 0x79)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
setresuid(0xffffffffffffffff, r6, 0x0)
r7 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmsg$nl_generic(r5, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000000c0)={&(0x7f0000000340)={0xc4, 0x1a, 0x0, 0x70bd2d, 0x25dfdbfd, {0xf}, [@typed={0x8, 0x6, 0x0, 0x0, @uid=r6}, @generic="15027272a0f4c909986585ea5a2571014edd4b6141e836620506fd6b2d109bbed4ef6c628f0dc1e16464adffef58d2aa8d2a7a5e37dfbfbeb57f3d0b8f1321f981d302b31a9a580bf9ec25a98eb53777a10c03f034fbe0f9849955d5f553146d3e7e6f521cb934d717dbde1dc0c857866807d89c2206af4b6e856851bd6d0bef8c5c7549c7d731390129c02d8f", @nested={0x18, 0x6f, 0x0, 0x1, [@typed={0x8, 0x75, 0x0, 0x0, @fd=r7}, @typed={0xc, 0x26, 0x0, 0x0, @u64=0x8}, @generic]}]}, 0xc4}}, 0x0)
ioctl$TCFLSH(r1, 0x540b, 0x1)

20:20:10 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:20:10 executing program 7:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
ioctl$VT_DISALLOCATE(r0, 0x5608)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000180)=0x20)
msgctl$MSG_STAT(0x0, 0xb, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
read$eventfd(r4, 0x0, 0x0)
ioctl$BLKROGET(0xffffffffffffffff, 0x125e, &(0x7f0000000240))
ioctl$TIOCMBIC(r4, 0x5417, &(0x7f00000001c0)=0x9)
io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x0, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000040), 0x10440, 0x0)
write$binfmt_script(r0, &(0x7f0000000440)={'#! ', './file0', [{0x20, '/'}, {0x20, '\'--'}, {0x20, 'o):(]%\xc2'}], 0xa, "620b34ac2f778662fbbee155b86d781192181e56b7195fe6c79301e4eac9b63fc6a9e375468a3479dd4d95aad26b189a63481b5025309f249543ad0c3adbfb556d1dbef0e1466c096e0fb2d0e53f49b161e9e8526cb1b2b23230623f26a124da"}, 0x79)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
setresuid(0xffffffffffffffff, r6, 0x0)
r7 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmsg$nl_generic(r5, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000000c0)={&(0x7f0000000340)={0xc4, 0x1a, 0x0, 0x70bd2d, 0x25dfdbfd, {0xf}, [@typed={0x8, 0x6, 0x0, 0x0, @uid=r6}, @generic="15027272a0f4c909986585ea5a2571014edd4b6141e836620506fd6b2d109bbed4ef6c628f0dc1e16464adffef58d2aa8d2a7a5e37dfbfbeb57f3d0b8f1321f981d302b31a9a580bf9ec25a98eb53777a10c03f034fbe0f9849955d5f553146d3e7e6f521cb934d717dbde1dc0c857866807d89c2206af4b6e856851bd6d0bef8c5c7549c7d731390129c02d8f", @nested={0x18, 0x6f, 0x0, 0x1, [@typed={0x8, 0x75, 0x0, 0x0, @fd=r7}, @typed={0xc, 0x26, 0x0, 0x0, @u64=0x8}, @generic]}]}, 0xc4}}, 0x0)
ioctl$TCFLSH(r1, 0x540b, 0x1)

[ 2517.096033] FAULT_INJECTION: forcing a failure.
[ 2517.096033] name failslab, interval 1, probability 0, space 0, times 0
[ 2517.096050] CPU: 1 PID: 15020 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2517.096058] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2517.096062] Call Trace:
[ 2517.096086]  dump_stack+0x107/0x167
[ 2517.096101]  should_fail.cold+0x5/0xa
[ 2517.096115]  ? lock_release+0x680/0x680
[ 2517.096129]  ? skb_clone+0x14f/0x3d0
[ 2517.096145]  should_failslab+0x5/0x20
[ 2517.096171]  kmem_cache_alloc+0x5b/0x310
[ 2517.096190]  skb_clone+0x14f/0x3d0
[ 2517.096209]  dev_queue_xmit_nit+0x3a7/0xb00
[ 2517.096232]  dev_hard_start_xmit+0xab/0x6f0
[ 2517.096246]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2517.096265]  __dev_queue_xmit+0x17ec/0x2710
[ 2517.096284]  ? find_held_lock+0x2c/0x110
[ 2517.096297]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2517.096320]  ? mark_held_locks+0x9e/0xe0
[ 2517.096338]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2517.096355]  ip6_finish_output2+0x17b4/0x1fe0
[ 2517.096376]  __ip6_finish_output.part.0+0x4f7/0xbc0
[ 2517.096392]  ip6_output+0x3aa/0x7e0
[ 2517.096411]  ip6_local_out+0xb4/0x1a0
[ 2517.096424]  ip6_send_skb+0xb7/0x350
[ 2517.096439]  ip6_push_pending_frames+0xbd/0xf0
[ 2517.096452]  icmpv6_push_pending_frames+0x29c/0x470
[ 2517.096469]  icmp6_send+0x16ad/0x1ff0
[ 2517.096493]  ? icmpv6_push_pending_frames+0x470/0x470
[ 2517.096503]  ? find_held_lock+0x2c/0x110
[ 2517.096544]  ? ipv6_proxy_select_ident+0x250/0x250
[ 2517.096563]  ip6_pkt_drop+0x3ae/0x7c0
[ 2517.096577]  ip6_local_out+0xb4/0x1a0
[ 2517.096591]  ip6_send_skb+0xb7/0x350
[ 2517.096605]  udp_v6_send_skb+0x7aa/0x15b0
[ 2517.096623]  udpv6_sendmsg+0x2113/0x2af0
[ 2517.096635]  ? ip_frag_init+0x350/0x350
[ 2517.096652]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2517.096672]  ? __lockdep_reset_lock+0x180/0x180
[ 2517.096682]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2517.096696]  ? lock_acquire+0x197/0x470
[ 2517.096706]  ? find_held_lock+0x2c/0x110
[ 2517.096725]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2517.096736]  ? sock_has_perm+0x1ea/0x280
[ 2517.096763]  ? __import_iovec+0x458/0x590
[ 2517.096774]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2517.096787]  inet6_sendmsg+0x105/0x140
[ 2517.096797]  ? inet6_compat_ioctl+0x320/0x320
[ 2517.096807]  __sock_sendmsg+0xf2/0x190
[ 2517.096818]  ____sys_sendmsg+0x334/0x870
[ 2517.096830]  ? sock_write_iter+0x3d0/0x3d0
[ 2517.096839]  ? do_recvmmsg+0x6d0/0x6d0
[ 2517.096851]  ? __lock_acquire+0x1657/0x5b00
[ 2517.096871]  ___sys_sendmsg+0xf3/0x170
[ 2517.096883]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2517.096896]  ? __lockdep_reset_lock+0x180/0x180
[ 2517.096912]  ? lock_acquire+0x197/0x470
[ 2517.096922]  ? find_held_lock+0x2c/0x110
[ 2517.096936]  ? __might_fault+0xd3/0x180
[ 2517.096946]  ? lock_downgrade+0x6d0/0x6d0
[ 2517.096959]  ? io_schedule_timeout+0x140/0x140
[ 2517.096970]  ? __sanitizer_cov_trace_pc+0x4/0x60
[ 2517.096990]  __sys_sendmmsg+0x195/0x470
[ 2517.097004]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2517.097031]  ? setup_APIC_eilvt+0x2f0/0x2f0
[ 2517.097041]  ? clockevents_program_event+0x131/0x360
[ 2517.097055]  ? tick_program_event+0xa8/0x140
[ 2517.097066]  ? hrtimer_interrupt+0x771/0x9b0
[ 2517.097089]  __x64_sys_sendmmsg+0x99/0x100
[ 2517.097099]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2517.097111]  do_syscall_64+0x33/0x40
[ 2517.097120]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2517.097127] RIP: 0033:0x7fcaf2e26b19
[ 2517.097140] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2517.097145] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2517.097157] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2517.097163] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2517.097169] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2517.097175] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2517.097182] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
20:20:23 executing program 3:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
read$eventfd(r5, 0x0, 0x0)
copy_file_range(r4, &(0x7f0000000040)=0x7, r5, &(0x7f0000000080)=0x9, 0x8001, 0x0)
r6 = epoll_create(0x8)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r7, &(0x7f0000000100)={0x30000000})
epoll_ctl$EPOLL_CTL_MOD(r6, 0x3, r7, &(0x7f00000001c0))
ioctl$EXT4_IOC_GROUP_ADD(r7, 0x40286608, &(0x7f00000000c0)={0x0, 0x5, 0x6, 0x10001, 0x5, 0x8000})
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
fcntl$dupfd(r0, 0x406, r8)

20:20:23 executing program 2:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000480)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
r4 = syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
syz_io_uring_setup(0x2da1, &(0x7f0000000080)={0x0, 0x9d5a, 0x1, 0x0, 0x38e, 0x0, r1}, &(0x7f0000fee000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100)=<r5=>0x0, &(0x7f0000000180))
r6 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
ioctl$TIOCMGET(r0, 0x5415, &(0x7f0000000280))
syz_io_uring_submit(r7, r8, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r9}}, 0x0)
r10 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fallocate(r10, 0x0, 0x0, 0x8000)
syz_io_uring_submit(r5, r8, &(0x7f0000000240)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x0, 0x0, r10, &(0x7f00000001c0)={0x80000000}, r4, 0x1, 0x0, 0x1}, 0x7fffffff)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000340)=ANY=[@ANYBLOB="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", @ANYRES32=<r11=>r1, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00-\x00\x00\x00\x00\x00\x00\x00\x00'])
mmap$IORING_OFF_CQ_RING(&(0x7f0000fef000/0x11000)=nil, 0x11000, 0x9, 0x80010, r11, 0x8000000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:20:23 executing program 7:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000005c0)=@IORING_OP_RECVMSG={0xa, 0x4, 0x0, r0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=@nfc_llcp, 0x80, &(0x7f0000000240)=[{&(0x7f0000000340)=""/134, 0x86}, {&(0x7f00000000c0)=""/120, 0x78}, {&(0x7f0000000180)=""/68, 0x44}, {&(0x7f0000000400)=""/216, 0xd8}], 0x4, &(0x7f0000000500)=""/144, 0x90}, 0x0, 0x20, 0x1, {0x2}}, 0x1000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:20:23 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x800000)

20:20:23 executing program 1:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>r0, {0x4}}, './file0\x00'})
ioctl$SG_SET_FORCE_PACK_ID(r1, 0x227b, &(0x7f0000000080))
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:20:23 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x71ce, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:20:23 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 90)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:20:23 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x5, 0x0, @fd_index=0x5, 0x0, 0x0, 0x8, 0x0, 0x1, {0x0, r3}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2530.681990] kauditd_printk_skb: 93 callbacks suppressed
[ 2530.682002] audit: type=1326 audit(1709497223.784:7869): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15046 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2530.685862] audit: type=1326 audit(1709497223.788:7870): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15046 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2530.685912] audit: type=1326 audit(1709497223.788:7871): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15046 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2530.688564] audit: type=1326 audit(1709497223.791:7872): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15046 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2530.689159] audit: type=1326 audit(1709497223.791:7873): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15046 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f0851210ad7 code=0x7ffc0000
[ 2530.693281] FAULT_INJECTION: forcing a failure.
[ 2530.693281] name failslab, interval 1, probability 0, space 0, times 0
[ 2530.693297] CPU: 1 PID: 15054 Comm: syz-executor.6 Not tainted 5.10.211 #1
20:20:23 executing program 7:
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x800002, 0x0)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = epoll_create(0x8)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000100)={0x30000000})
epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r2, &(0x7f00000001c0))
r3 = perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0x1, 0x1f, 0x2, 0x4, 0x0, 0x5, 0x21008, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, @perf_config_ext={0x2ab, 0xa7f0000000000000}, 0x20, 0xd4a, 0x200, 0x7, 0xfffffffffffffff9, 0x7, 0x895, 0x0, 0x5, 0x0, 0x5}, 0x0, 0xb, 0xffffffffffffffff, 0x2)
dup3(r2, r3, 0x0)
r4 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0xbe)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2530.693304] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
20:20:23 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x71cf, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

[ 2530.693309] Call Trace:
[ 2530.693327]  dump_stack+0x107/0x167
[ 2530.693340]  should_fail.cold+0x5/0xa
[ 2530.693355]  ? create_object.isra.0+0x3a/0xa20
[ 2530.693369]  should_failslab+0x5/0x20
[ 2530.693380]  kmem_cache_alloc+0x5b/0x310
[ 2530.693393]  ? lock_acquire+0x197/0x470
[ 2530.693406]  create_object.isra.0+0x3a/0xa20
[ 2530.693417]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2530.693431]  kmem_cache_alloc+0x159/0x310
[ 2530.693449]  skb_clone+0x14f/0x3d0
[ 2530.693464]  dev_queue_xmit_nit+0x3a7/0xb00
[ 2530.693484]  dev_hard_start_xmit+0xab/0x6f0
[ 2530.693495]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2530.693510]  __dev_queue_xmit+0x17ec/0x2710
[ 2530.693525]  ? find_held_lock+0x2c/0x110
[ 2530.693536]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2530.693555]  ? mark_held_locks+0x9e/0xe0
[ 2530.693570]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2530.693590]  ip6_finish_output2+0x17b4/0x1fe0
[ 2530.693610]  __ip6_finish_output.part.0+0x4f7/0xbc0
[ 2530.693625]  ip6_output+0x3aa/0x7e0
[ 2530.693642]  ip6_local_out+0xb4/0x1a0
[ 2530.693655]  ip6_send_skb+0xb7/0x350
[ 2530.693667] audit: type=1326 audit(1709497223.796:7874): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15046 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2530.693677]  ip6_push_pending_frames+0xbd/0xf0
[ 2530.693690]  icmpv6_push_pending_frames+0x29c/0x470
[ 2530.693707]  icmp6_send+0x16ad/0x1ff0
[ 2530.693729]  ? icmpv6_push_pending_frames+0x470/0x470
[ 2530.693739]  ? find_held_lock+0x2c/0x110
[ 2530.693772]  ? ipv6_proxy_select_ident+0x250/0x250
[ 2530.693790]  ip6_pkt_drop+0x3ae/0x7c0
[ 2530.693805]  ip6_local_out+0xb4/0x1a0
[ 2530.693818]  ip6_send_skb+0xb7/0x350
[ 2530.693832]  udp_v6_send_skb+0x7aa/0x15b0
[ 2530.693851]  udpv6_sendmsg+0x2113/0x2af0
[ 2530.693863]  ? ip_frag_init+0x350/0x350
[ 2530.693881]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2530.693901]  ? __lockdep_reset_lock+0x180/0x180
[ 2530.693917]  ? lock_acquire+0x197/0x470
[ 2530.693926]  ? find_held_lock+0x2c/0x110
[ 2530.693947]  ? sock_has_perm+0x1ea/0x280
[ 2530.693974]  ? __import_iovec+0x458/0x590
[ 2530.693985]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2530.693999]  inet6_sendmsg+0x105/0x140
[ 2530.694009]  ? inet6_compat_ioctl+0x320/0x320
[ 2530.694019]  __sock_sendmsg+0xf2/0x190
[ 2530.694030] audit: type=1326 audit(1709497223.796:7875): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15046 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2530.694039]  ____sys_sendmsg+0x334/0x870
[ 2530.694052]  ? sock_write_iter+0x3d0/0x3d0
[ 2530.694062]  ? do_recvmmsg+0x6d0/0x6d0
[ 2530.694078]  ? __lock_acquire+0x1657/0x5b00
[ 2530.694098]  ___sys_sendmsg+0xf3/0x170
[ 2530.694111]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2530.694124]  ? __lockdep_reset_lock+0x180/0x180
[ 2530.694134]  ? lock_downgrade+0x6d0/0x6d0
[ 2530.694149]  ? lock_acquire+0x197/0x470
[ 2530.694158]  ? find_held_lock+0x2c/0x110
[ 2530.694172]  ? __might_fault+0xd3/0x180
[ 2530.694182]  ? lock_downgrade+0x6d0/0x6d0
[ 2530.694206]  __sys_sendmmsg+0x195/0x470
[ 2530.694221]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2530.694231]  ? lock_downgrade+0x6d0/0x6d0
[ 2530.694255]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2530.694268]  ? wait_for_completion_io+0x270/0x270
[ 2530.694282]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2530.694291]  ? vfs_write+0x354/0xa70
[ 2530.694302]  ? fput_many+0x2f/0x1a0
[ 2530.694313]  ? ksys_write+0x1a9/0x260
[ 2530.694324]  ? __ia32_sys_read+0xb0/0xb0
[ 2530.694340]  __x64_sys_sendmmsg+0x99/0x100
[ 2530.694350]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2530.694361]  do_syscall_64+0x33/0x40
[ 2530.694371]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2530.694379] RIP: 0033:0x7fcaf2e26b19
[ 2530.694390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2530.694396] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2530.694408] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2530.694415] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2530.694421] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2530.694427] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2530.694433] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
20:20:24 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x7400, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

[ 2530.694756] audit: type=1326 audit(1709497223.797:7876): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15046 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2530.697454] audit: type=1326 audit(1709497223.800:7877): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15046 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2530.698562] audit: type=1326 audit(1709497223.801:7878): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15046 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
20:20:24 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 91)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:20:24 executing program 3:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x2)

20:20:24 executing program 2:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000100)=0x2)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
r4 = syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x77c6, 0xbb91, 0x1, &(0x7f0000000040)={[0x1]}, 0x8)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x2000001, 0x8010, r4, 0x0)
chmod(&(0x7f00000000c0)='./file0\x00', 0xc5)
syz_io_uring_submit(r2, r3, &(0x7f0000000080)=@IORING_OP_NOP={0x0, 0x6}, 0x10000)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2531.069432] FAULT_INJECTION: forcing a failure.
[ 2531.069432] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2531.070507] CPU: 1 PID: 15094 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2531.070515] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2531.070528] Call Trace:
[ 2531.072067]  dump_stack+0x107/0x167
[ 2531.072079]  should_fail.cold+0x5/0xa
[ 2531.072096]  _copy_from_user+0x2e/0x1b0
[ 2531.072111]  __copy_msghdr_from_user+0x91/0x4b0
[ 2531.072123]  ? __ia32_sys_shutdown+0x80/0x80
[ 2531.072136]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2531.072155]  ? inet6_sendmsg+0xbd/0x140
[ 2531.074845]  ? inet6_compat_ioctl+0x320/0x320
[ 2531.074855]  ? __sock_sendmsg+0x55/0x190
[ 2531.074870]  sendmsg_copy_msghdr+0xa1/0x160
[ 2531.074880]  ? do_recvmmsg+0x6d0/0x6d0
[ 2531.074894]  ? __lock_acquire+0x1657/0x5b00
[ 2531.074915]  ___sys_sendmsg+0xc6/0x170
[ 2531.076937]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2531.077317]  ? __lockdep_reset_lock+0x180/0x180
[ 2531.077746]  ? trace_hardirqs_on+0x5b/0x180
[ 2531.078108]  ? lock_acquire+0x197/0x470
[ 2531.078427]  ? find_held_lock+0x2c/0x110
[ 2531.078764]  ? __might_fault+0xd3/0x180
[ 2531.079090]  ? lock_downgrade+0x6d0/0x6d0
[ 2531.079431]  ? io_schedule_timeout+0x140/0x140
[ 2531.079814]  __sys_sendmmsg+0x195/0x470
[ 2531.080149]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2531.080515]  ? lock_downgrade+0x6d0/0x6d0
[ 2531.080870]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2531.081269]  ? wait_for_completion_io+0x270/0x270
[ 2531.081669]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2531.082056]  ? vfs_write+0x354/0xa70
[ 2531.082362]  ? fput_many+0x2f/0x1a0
[ 2531.082660]  ? ksys_write+0x1a9/0x260
[ 2531.082976]  ? __ia32_sys_read+0xb0/0xb0
[ 2531.083311]  __x64_sys_sendmmsg+0x99/0x100
[ 2531.083665]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2531.084092]  do_syscall_64+0x33/0x40
[ 2531.084409]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2531.084825] RIP: 0033:0x7fcaf2e26b19
[ 2531.085133] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2531.086605] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2531.087231] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2531.087835] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2531.088465] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2531.089056] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2531.089647] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
20:20:37 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x185842, 0x123)
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
r4 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
r8 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r9=>0x0, &(0x7f0000000140)=<r10=>0x0)
r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r11}}, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f00000000c0)=@IORING_OP_TEE={0x21, 0x1, 0x0, @fd_index=0x4, 0x0, 0x0, 0x7, 0x2, 0x1, {0x0, r11}}, 0x6)
io_uring_enter(r4, 0x1d4e, 0x37d2, 0x1, &(0x7f0000001600)={[0x7fff]}, 0x8)
syz_io_uring_submit(r5, r6, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x1, 0x0, @fd_index, 0x80000001, &(0x7f0000001580)=[{&(0x7f0000000240)="88779e685e45f13c90239647a64a0b87faf5fbfc7410d173b39d6a93d705b7bd52f584bc00f34e6cb40336c55cebe413f0590209ecc5832c8d4b2d7cde29c23dedde89c47cf426eea4aa85843460cd4c2c63dd3fcf27ee68f2b26e", 0x5b}, {&(0x7f0000000340)="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", 0x1000}, {&(0x7f0000001340)="ae1c7216571fed0f175fcb2e18c66f5684d3b7f08dd67f9917a56209f689cd82628ae65bf31c1f8c0c577ae155aa41e2c82b59a3ec37606e8723e06bb2879069472445164a6848723d", 0x49}, {&(0x7f00000001c0)="9f09b6b470f6571f", 0x8}, {&(0x7f00000013c0)="2a7d9b8d26d0a950305e047df3aafcc2867bab9f226ad4cdd4e9f7eab25d60e6f6ba1f2e50109386a752d931ced28844c81a8c4bf0fb0acb73e4f62307417aa001911a75249cb31c4f83e1b92e80cdfa8c368bae5fb3d2d9798d7747b0acd86aff51f6d87b22e99d6e5bc49668c893e7ec24510c10030e34b49868dc4cac2572140477e99c3a003c88142add000ffb42fc02ec1414edaa4ed83b877520ad52a3de0869945e2c886267bcbe46e86cacbc61a8e954", 0xb4}, {&(0x7f0000001480)="a8d346714ced455313bbe34b7e5dc0e2eedc25ae3fcaac4b3e57f69285ebbd28587da89a7af5ea6e1ff62a4f42de41515e32a37c5267683a9412bf131b430a6ca48fb3386b32fafd473e60821de399d5077a7e325f7436477d3c63a4a854dbb0eb0d6e4e8f64d567ac7ee4ab19ba592138706c8c3fd3162c424c7bcba0158bb8f28657166e0dc02bdb92d351946ada469a9a8782b8f7b249faacbe6a988dd5ac9431da183e24de995635c796a5a5812ac65bbf030d823d756843039f2f19cb3ad1ad17a19c5efef04950ffaaf1b6d24ed4fa1ebbdeebeb9cc7ac17c7209c2a07aff9479038d4886379709afd6088eba0189e6db9acc7086ea5", 0xf9}], 0x6, 0x8, 0x0, {0x0, r7}}, 0x1)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x4, 0xf4c2, 0x66})

20:20:37 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
r3 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000040)={0x0, r3, 0x2})
pidfd_getfd(r3, r0, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001380)='/proc/vmallocinfo\x00', 0x0, 0x0)
ioctl$SG_GET_LOW_DMA(r4, 0x227a, &(0x7f00000013c0))
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, &(0x7f0000000040)={0x7fff, 0x1ff, 0xffff, 0x7, 0x2, 0x1})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0)
ioctl$SG_IO(r5, 0x2285, &(0x7f0000000240)={0x53, 0xffffffffffffffff, 0x40, 0x2, @buffer={0x0, 0x1000, &(0x7f0000000340)=""/4096}, &(0x7f0000000100)="64997ab0a85a840d6db3c7130a3c5aad83405ce0d3ddb30dc145dfc37a4ae74b672ee7ad7915f13aa90a3137a43ed0207655adc7b83dc72f56f7072a2dc107c8", &(0x7f0000000180)=""/34, 0x1, 0x20, 0x0, &(0x7f00000001c0)})
io_uring_enter(r0, 0x58ab, 0x5405, 0x1, 0x0, 0x37)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000001340)={{0x1, 0x1, 0x18, <r6=>0xffffffffffffffff}, './file0\x00'})
ioctl$SCSI_IOCTL_SEND_COMMAND(r6, 0x1, &(0x7f00000014c0)=ANY=[@ANYBLOB="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"])

20:20:37 executing program 1:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r4 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r3, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000040)={0x0, r4, 0x2})
ioctl$BTRFS_IOC_QUOTA_CTL(r3, 0xc0109428, &(0x7f0000000040)={0x1})
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:20:37 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x7a00, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:20:37 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 92)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:20:37 executing program 7:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x10}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
ioctl$TCSETSW2(r0, 0x402c542c, &(0x7f0000000040)={0x32, 0x400, 0x2, 0x1, 0x7, "5d4f554a9045e9f85ba1562113a562ddf760f9", 0x1, 0x5})
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x402, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:20:37 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x5c, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x0, &(0x7f0000000140), 0x8000) (fail_nth: 1)

20:20:37 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2000000)

[ 2544.434440] kauditd_printk_skb: 77 callbacks suppressed
[ 2544.434462] audit: type=1326 audit(1709497237.536:7956): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15107 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2544.450317] FAULT_INJECTION: forcing a failure.
[ 2544.450317] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2544.451352] CPU: 1 PID: 15119 Comm: syz-executor.3 Not tainted 5.10.211 #1
[ 2544.451922] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2544.452594] Call Trace:
[ 2544.452814]  dump_stack+0x107/0x167
[ 2544.453118]  should_fail.cold+0x5/0xa
[ 2544.453445]  _copy_from_user+0x2e/0x1b0
[ 2544.453781]  get_nodes+0x1bb/0x270
[ 2544.454074]  __x64_sys_set_mempolicy+0x13b/0x1e0
[ 2544.454470]  ? do_migrate_pages+0x60/0x60
[ 2544.454809]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2544.455261]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2544.455703]  do_syscall_64+0x33/0x40
[ 2544.456011]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2544.456426] RIP: 0033:0x7f3c0b681b19
[ 2544.456737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2544.458212] RSP: 002b:00007f3c08bf7188 EFLAGS: 00000246 ORIG_RAX: 00000000000000ee
[ 2544.458844] RAX: ffffffffffffffda RBX: 00007f3c0b794f60 RCX: 00007f3c0b681b19
[ 2544.459431] RDX: 0000000000008000 RSI: 0000000020000140 RDI: 0000000000000000
[ 2544.460005] RBP: 00007f3c08bf71d0 R08: 0000000000000000 R09: 0000000000000000
[ 2544.460536] audit: type=1326 audit(1709497237.552:7957): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15107 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2544.460583] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2544.460602] R13: 00007ffe871fc4cf R14: 00007f3c08bf7300 R15: 0000000000022000
[ 2544.496184] audit: type=1326 audit(1709497237.553:7958): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15107 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2544.498728] audit: type=1326 audit(1709497237.553:7959): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15107 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2544.502446] audit: type=1326 audit(1709497237.577:7960): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15107 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2544.506937] audit: type=1326 audit(1709497237.578:7961): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15107 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f0851210ad7 code=0x7ffc0000
[ 2544.509692] audit: type=1326 audit(1709497237.578:7962): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15107 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2544.513622] audit: type=1326 audit(1709497237.600:7963): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15107 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2544.516672] audit: type=1326 audit(1709497237.600:7964): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15107 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2544.518842] audit: type=1326 audit(1709497237.617:7965): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15107 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2544.559162] sd 0:0:0:0: [sg0] tag#0 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[ 2544.560357] sd 0:0:0:0: [sg0] tag#0 CDB: opcode=0x64 (reserved)
[ 2544.561051] sd 0:0:0:0: [sg0] tag#0 CDB[00]: 64 99 7a b0 a8 5a 84 0d 6d b3 c7 13 0a 3c 5a ad
[ 2544.562084] sd 0:0:0:0: [sg0] tag#0 CDB[10]: 83 40 5c e0 d3 dd b3 0d c1 45 df c3 7a 4a e7 4b
[ 2544.563047] sd 0:0:0:0: [sg0] tag#0 CDB[20]: 67 2e e7 ad 79 15 f1 3a a9 0a 31 37 a4 3e d0 20
[ 2544.564032] sd 0:0:0:0: [sg0] tag#0 CDB[30]: 76 55 ad c7 b8 3d c7 2f 56 f7 07 2a 2d c1 07 c8
[ 2544.584581] FAULT_INJECTION: forcing a failure.
[ 2544.584581] name failslab, interval 1, probability 0, space 0, times 0
[ 2544.585595] CPU: 1 PID: 15117 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2544.586155] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2544.586816] Call Trace:
[ 2544.587037]  dump_stack+0x107/0x167
[ 2544.587362]  should_fail.cold+0x5/0xa
[ 2544.587672]  ? __alloc_skb+0x6d/0x5b0
[ 2544.587988]  should_failslab+0x5/0x20
[ 2544.588332]  kmem_cache_alloc_node+0x55/0x330
[ 2544.588709]  __alloc_skb+0x6d/0x5b0
[ 2544.589025]  alloc_skb_with_frags+0x92/0x570
[ 2544.589420]  sock_alloc_send_pskb+0x7af/0x930
[ 2544.589787]  ? sk_alloc+0x350/0x350
[ 2544.590107]  __ip6_append_data.isra.0+0x1c12/0x3a70
[ 2544.590518]  ? ip6_mtu+0x1bb/0x3d0
[ 2544.590836]  ? lock_downgrade+0x6d0/0x6d0
[ 2544.591187]  ? ip_frag_init+0x350/0x350
[ 2544.591529]  ? ip6_finish_output2+0x1fe0/0x1fe0
[ 2544.591903]  ? ip6_mtu+0x1e9/0x3d0
[ 2544.592198]  ? ip6_setup_cork+0xfb7/0x1740
[ 2544.592555]  ip6_make_skb+0x2de/0x4e0
[ 2544.592874]  ? ip_frag_init+0x350/0x350
[ 2544.593201]  ? ip_frag_init+0x350/0x350
[ 2544.593527]  ? ip6_push_pending_frames+0xf0/0xf0
[ 2544.593918]  ? ip6_dst_hoplimit+0x199/0x440
[ 2544.594271]  ? lock_downgrade+0x6d0/0x6d0
[ 2544.594627]  ? ip6_sk_dst_lookup_flow+0x57b/0x740
[ 2544.595031]  udpv6_sendmsg+0x20d0/0x2af0
[ 2544.595386]  ? ip_frag_init+0x350/0x350
[ 2544.595716]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2544.596145]  ? __lockdep_reset_lock+0x180/0x180
[ 2544.596538]  ? lock_acquire+0x197/0x470
[ 2544.596860]  ? find_held_lock+0x2c/0x110
[ 2544.597211]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2544.597665]  ? inet_send_prepare+0x1f/0x540
[ 2544.598024]  ? __sanitizer_cov_trace_pc+0x30/0x60
[ 2544.598462]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2544.598875]  inet6_sendmsg+0x105/0x140
[ 2544.599206]  ? inet6_compat_ioctl+0x320/0x320
[ 2544.599605]  __sock_sendmsg+0xf2/0x190
[ 2544.599921]  ____sys_sendmsg+0x334/0x870
[ 2544.600255]  ? sock_write_iter+0x3d0/0x3d0
[ 2544.600606]  ? do_recvmmsg+0x6d0/0x6d0
[ 2544.600934]  ? find_held_lock+0x2c/0x110
[ 2544.601282]  ___sys_sendmsg+0xf3/0x170
[ 2544.601597]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2544.601978]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2544.602410]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2544.602768]  ? trace_hardirqs_on+0x5b/0x180
[ 2544.603125]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2544.603486]  ? finish_task_switch+0x126/0x5d0
[ 2544.603871]  ? finish_task_switch+0xef/0x5d0
[ 2544.604446]  ? __switch_to+0x572/0xf70
[ 2544.604775]  ? __switch_to_asm+0x3a/0x60
[ 2544.605222]  ? __switch_to_asm+0x34/0x60
[ 2544.605685]  ? __schedule+0x82c/0x1ea0
[ 2544.606013]  ? io_schedule_timeout+0x140/0x140
[ 2544.606485]  __sys_sendmmsg+0x195/0x470
[ 2544.606814]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2544.607163]  ? lock_downgrade+0x6d0/0x6d0
[ 2544.607539]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2544.607924]  ? wait_for_completion_io+0x270/0x270
[ 2544.608347]  ? rcu_read_lock_any_held+0x75/0xa0
20:20:37 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x5000000)

[ 2544.608765]  ? vfs_write+0x354/0xa70
[ 2544.608777]  ? fput_many+0x2f/0x1a0
[ 2544.608787]  ? ksys_write+0x1a9/0x260
[ 2544.608798]  ? __ia32_sys_read+0xb0/0xb0
[ 2544.608814]  __x64_sys_sendmmsg+0x99/0x100
[ 2544.608825]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2544.608836]  do_syscall_64+0x33/0x40
[ 2544.608846]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2544.608854] RIP: 0033:0x7fcaf2e26b19
[ 2544.608867] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2544.608873] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2544.608885] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2544.608891] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2544.608897] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2544.608903] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2544.608909] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
20:20:50 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x5c, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x0, &(0x7f0000000140), 0x8000) (fail_nth: 2)

20:20:50 executing program 1:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fallocate(r3, 0x0, 0x0, 0x8000)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000040)=0xfc)

20:20:50 executing program 7:
pread64(0xffffffffffffffff, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
listen(0xffffffffffffffff, 0x3)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x185842, 0x123)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
r2 = epoll_create(0x8)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000100)={0x30000000})
epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r3, &(0x7f00000001c0))
ioctl$AUTOFS_DEV_IOCTL_VERSION(r1, 0xc0189371, &(0x7f0000000080)={{0x1, 0x1, 0x18, r3}, './file1\x00'})
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r5 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r4, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000000040)={0x0, r5, 0x2})
shutdown(r5, 0x1)

20:20:50 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_CONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="050000000000000000000200000008000300", @ANYRES32=r5, @ANYBLOB='\b\x00?'], 0x24}}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3)
sendmsg$NL80211_CMD_LEAVE_MESH(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x81}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x20, r6, 0x100, 0x70bd26, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x1, 0x79}}}}, ["", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x4008011}, 0x20000881)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:20:50 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x8000000)

20:20:50 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x7e00, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:20:50 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fallocate(r3, 0x0, 0x0, 0x8000)
io_uring_enter(r3, 0x13c7, 0x51d1, 0x3, &(0x7f0000000040)={[0x800]}, 0x8)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:20:50 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 93)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

[ 2557.880787] FAULT_INJECTION: forcing a failure.
[ 2557.880787] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2557.882699] CPU: 1 PID: 15161 Comm: syz-executor.3 Not tainted 5.10.211 #1
[ 2557.883814] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2557.885144] Call Trace:
[ 2557.885575]  dump_stack+0x107/0x167
[ 2557.886169]  should_fail.cold+0x5/0xa
[ 2557.886791]  _copy_to_user+0x2e/0x180
[ 2557.887418]  simple_read_from_buffer+0xcc/0x160
[ 2557.888173]  proc_fail_nth_read+0x198/0x230
[ 2557.888894]  ? proc_sessionid_read+0x230/0x230
[ 2557.889631]  ? security_file_permission+0x24e/0x570
[ 2557.890431]  ? perf_trace_initcall_start+0x101/0x380
[ 2557.891256]  ? proc_sessionid_read+0x230/0x230
[ 2557.891991]  vfs_read+0x228/0x580
[ 2557.892561]  ksys_read+0x12d/0x260
[ 2557.893145]  ? vfs_write+0xa70/0xa70
[ 2557.893753]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2557.894596]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2557.895434]  do_syscall_64+0x33/0x40
[ 2557.896030]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2557.896861] RIP: 0033:0x7f3c0b63469c
[ 2557.897458] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 2557.900379] RSP: 002b:00007f3c08bf7170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2557.901614] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f3c0b63469c
[ 2557.902750] RDX: 000000000000000f RSI: 00007f3c08bf71e0 RDI: 0000000000000004
[ 2557.903890] RBP: 00007f3c08bf71d0 R08: 0000000000000000 R09: 0000000000000000
[ 2557.905033] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2557.906170] R13: 00007ffe871fc4cf R14: 00007f3c08bf7300 R15: 0000000000022000
[ 2557.916555] kauditd_printk_skb: 32 callbacks suppressed
[ 2557.916574] audit: type=1326 audit(1709497251.019:7998): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15158 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2557.941470] FAULT_INJECTION: forcing a failure.
[ 2557.941470] name failslab, interval 1, probability 0, space 0, times 0
[ 2557.943448] CPU: 1 PID: 15162 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2557.944733] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2557.946113] Call Trace:
[ 2557.946140]  dump_stack+0x107/0x167
[ 2557.946163]  should_fail.cold+0x5/0xa
[ 2557.946187]  ? create_object.isra.0+0x3a/0xa20
[ 2557.946211]  should_failslab+0x5/0x20
[ 2557.946230]  kmem_cache_alloc+0x5b/0x310
[ 2557.946258]  create_object.isra.0+0x3a/0xa20
[ 2557.946278]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2557.946306]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 2557.946326]  ? alloc_skb_with_frags+0x92/0x570
[ 2557.946354]  __alloc_skb+0xb1/0x5b0
[ 2557.946382]  alloc_skb_with_frags+0x92/0x570
[ 2557.946405]  ? mark_lock+0xf5/0x2df0
[ 2557.946437]  sock_alloc_send_pskb+0x7af/0x930
[ 2557.946478]  ? sk_alloc+0x350/0x350
[ 2557.946499]  ? find_held_lock+0x2c/0x110
[ 2557.946521]  ? perf_trace_lock+0xac/0x490
[ 2557.946561]  __ip6_append_data.isra.0+0x1c12/0x3a70
[ 2557.946599]  ? ip6_mtu+0x1bb/0x3d0
[ 2557.946619]  ? lock_downgrade+0x6d0/0x6d0
[ 2557.946637]  ? rawv6_exit+0x20/0x20
[ 2557.946677]  ? ip6_finish_output2+0x1fe0/0x1fe0
[ 2557.946698]  ? ip6_mtu+0x1e9/0x3d0
[ 2557.946723]  ? ip6_setup_cork+0xfb7/0x1740
[ 2557.946750]  ip6_append_data+0x1e7/0x330
[ 2557.946767]  ? rawv6_exit+0x20/0x20
[ 2557.946792]  ? rawv6_exit+0x20/0x20
[ 2557.946822]  icmp6_send+0x1257/0x1ff0
[ 2557.946868]  ? icmpv6_push_pending_frames+0x470/0x470
[ 2557.946887]  ? find_held_lock+0x2c/0x110
[ 2557.946952]  ? ipv6_proxy_select_ident+0x250/0x250
[ 2557.946986]  ip6_pkt_drop+0x3ae/0x7c0
[ 2557.947014]  ip6_local_out+0xb4/0x1a0
[ 2557.947039]  ip6_send_skb+0xb7/0x350
[ 2557.947065]  udp_v6_send_skb+0x7aa/0x15b0
[ 2557.947100]  udpv6_sendmsg+0x2113/0x2af0
[ 2557.947123]  ? ip_frag_init+0x350/0x350
[ 2557.947166]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2557.947196]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2557.947225]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2557.947270]  ? __lockdep_reset_lock+0x180/0x180
[ 2557.947296]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2557.947331]  ? lock_acquire+0x197/0x470
[ 2557.947355]  ? find_held_lock+0x2c/0x110
[ 2557.947398]  ? sock_has_perm+0x1ea/0x280
[ 2557.947448]  ? __import_iovec+0x458/0x590
[ 2557.947469]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2557.947494]  inet6_sendmsg+0x105/0x140
[ 2557.947515]  ? inet6_compat_ioctl+0x320/0x320
[ 2557.947533]  __sock_sendmsg+0xf2/0x190
[ 2557.947558]  ____sys_sendmsg+0x334/0x870
[ 2557.947582]  ? sock_write_iter+0x3d0/0x3d0
[ 2557.947600]  ? do_recvmmsg+0x6d0/0x6d0
[ 2557.947624]  ? __lock_acquire+0x1657/0x5b00
[ 2557.947661]  ___sys_sendmsg+0xf3/0x170
[ 2557.947684]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2557.947709]  ? __lockdep_reset_lock+0x180/0x180
[ 2557.985725]  ? trace_hardirqs_on+0x5b/0x180
[ 2557.986529]  ? lock_acquire+0x197/0x470
[ 2557.987165]  ? find_held_lock+0x2c/0x110
[ 2557.987905]  ? __might_fault+0xd3/0x180
[ 2557.988695]  ? lock_downgrade+0x6d0/0x6d0
[ 2557.989387]  __sys_sendmmsg+0x195/0x470
[ 2557.990034]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2557.990723]  ? lock_downgrade+0x6d0/0x6d0
[ 2557.991411]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2557.992188]  ? wait_for_completion_io+0x270/0x270
[ 2557.992968]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2557.993731]  ? vfs_write+0x354/0xa70
[ 2557.994393]  ? fput_many+0x2f/0x1a0
[ 2557.995135]  ? ksys_write+0x1a9/0x260
[ 2557.995746]  ? __ia32_sys_read+0xb0/0xb0
[ 2557.996406]  __x64_sys_sendmmsg+0x99/0x100
[ 2557.997089]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2557.997911]  do_syscall_64+0x33/0x40
[ 2557.998505]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2557.999318] RIP: 0033:0x7fcaf2e26b19
[ 2557.999916] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2558.002816] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2558.004019] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2558.005190] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2558.006313] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2558.007435] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2558.008562] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
20:20:51 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x5c, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x0, &(0x7f0000000140), 0x8000)

[ 2558.023740] audit: type=1326 audit(1709497251.040:7999): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15158 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2558.036572] audit: type=1326 audit(1709497251.040:8000): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15158 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2558.055548] audit: type=1326 audit(1709497251.118:8001): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15158 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2558.070113] audit: type=1326 audit(1709497251.118:8002): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15158 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f0851210ad7 code=0x7ffc0000
20:20:51 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="9f04cd16b2f4dc73a49328916b685feda945324d89ba3f463ba563448011c0dc5812329889db0e227836e51c45f6ec015fbd01f3500dfad421c8e886845a3733e8a55a070905146b5f281503e88332ecc048ac05ecf5a03c9c383617688df59a34d3900b3b256396c4933b47e26dbd72037a94f1e4570ef5bdfe373007dc8144d88f283c8bda20169eb4a949fd223f8f0667d34cedf493172a6e7ecaaf228a305fd20ff746c97f39ecfb12ad0b65ee3fafd0b762c1fa38abf1c118e0e27882f0a0", @ANYBLOB="7cbde43f36c3a73702000000203d431d707a6b67aec2293d6fe9094aa2d235e1edce3892104e69bec56856172300d60000000000000000000000001600542572c25507ec089e6ae2339aee06491cb363968960824f0d17fb7073044e8461b7fb2d7af842d43b26af4f3555e0e197e216d5c45c80914bf05133f5591ae22be810ca8ff416cd953f2174f12ec1e5a5efa6d5844fbdcab582df57c25d0f000000000000"], 0x98a)
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
ioctl$FS_IOC_GETFSMAP(r2, 0xc0c0583b, &(0x7f0000000080)={0x0, 0xfdfdffff, 0x0, 0x0, '\x00', [{}, {0x800, 0x0, 0x400000000000000, 0x0, 0x0, 0x4}]})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100000001)
splice(r1, &(0x7f0000001140)=0x100000000, 0xffffffffffffffff, &(0x7f0000001180)=0x8, 0x1, 0x4)
r3 = signalfd(0xffffffffffffffff, &(0x7f0000000140), 0x8)
write(r3, &(0x7f0000000180)="dd8975d9d2eb389518e6d5ece8f722e079e9ec8f10122e84986aee763238801c24194552756d", 0x26)
fsconfig$FSCONFIG_SET_PATH(r0, 0x3, &(0x7f00000010c0)='-*{^]%:\x00', &(0x7f0000001100)='./file1\x00', r3)
r4 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x161001, 0x0)
getdents64(r4, &(0x7f0000001400)=""/53, 0x35)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0x8400, 0x8)
sendfile(r2, r3, &(0x7f0000000200)=0xe0000000000000, 0x80000001)
fcntl$getown(0xffffffffffffffff, 0x9)
r5 = openat(r4, &(0x7f00000011c0)='./file0\x00', 0x2a040, 0x2)
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f00000001c0)={0x3, 0x101, 0x101, 0xffff, 0x5})
r6 = dup2(0xffffffffffffffff, r4)
ioctl$AUTOFS_IOC_EXPIRE(r6, 0x810c9365, &(0x7f00000002c0)={{0x1, 0x20}, 0x100, './file0\x00'})
dup(0xffffffffffffffff)

20:20:51 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x20000000)

[ 2558.109195] audit: type=1326 audit(1709497251.119:8003): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15158 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2558.120558] audit: type=1326 audit(1709497251.119:8004): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15158 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2558.125985] audit: type=1326 audit(1709497251.119:8005): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15158 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2558.134483] audit: type=1326 audit(1709497251.119:8006): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15158 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2558.169662] audit: type=1326 audit(1709497251.120:8007): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15158 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
20:20:51 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x8004, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:20:51 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x5c, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x4, &(0x7f0000000140), 0x8000)

[ 2558.281277] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 2558.282122] CPU: 0 PID: 15194 Comm: syz-executor.7 Not tainted 5.10.211 #1
[ 2558.282672] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2558.283331] Call Trace:
[ 2558.283548]  dump_stack+0x107/0x167
[ 2558.283851]  sysfs_warn_dup.cold+0x1c/0x29
[ 2558.284193]  sysfs_do_create_link_sd+0x122/0x140
[ 2558.284576]  sysfs_create_link+0x5f/0xc0
[ 2558.284929]  device_add+0x703/0x1c50
[ 2558.285237]  ? devlink_add_symlinks+0x970/0x970
[ 2558.285615]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 2558.286045]  wiphy_register+0x1da6/0x2850
[ 2558.286386]  ? wiphy_unregister+0xb90/0xb90
[ 2558.286746]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 2558.287180]  ieee80211_register_hw+0x23c5/0x38b0
[ 2558.287575]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 2558.287958]  ? net_generic+0xdb/0x2b0
[ 2558.288269]  ? lockdep_init_map_type+0x2c7/0x780
[ 2558.288668]  ? memset+0x20/0x50
[ 2558.288945]  ? __hrtimer_init+0x12c/0x270
[ 2558.289286]  mac80211_hwsim_new_radio+0x1ce0/0x4250
[ 2558.289700]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2558.290075]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2558.290442]  ? memcpy+0x39/0x60
[ 2558.290713]  hwsim_new_radio_nl+0x991/0x1080
[ 2558.291072]  ? mac80211_hwsim_new_radio+0x4250/0x4250
[ 2558.291498]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2558.292024]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2558.292550]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2558.292959]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2558.293491]  ? cap_capable+0x1cd/0x230
[ 2558.293819]  ? ns_capable+0xe2/0x110
[ 2558.294125]  genl_rcv_msg+0x33c/0x5a0
[ 2558.294432]  ? genl_get_cmd+0x480/0x480
[ 2558.294749]  ? mac80211_hwsim_new_radio+0x4250/0x4250
[ 2558.295173]  ? lock_release+0x680/0x680
[ 2558.295492]  ? __lockdep_reset_lock+0x180/0x180
[ 2558.295867]  netlink_rcv_skb+0x14b/0x430
[ 2558.296196]  ? genl_get_cmd+0x480/0x480
[ 2558.296517]  ? netlink_ack+0xab0/0xab0
[ 2558.296853]  ? netlink_deliver_tap+0x1c4/0xcd0
[ 2558.297218]  ? is_vmalloc_addr+0x7b/0xb0
[ 2558.297546]  genl_rcv+0x24/0x40
[ 2558.297811]  netlink_unicast+0x549/0x7f0
[ 2558.298143]  ? netlink_attachskb+0x870/0x870
[ 2558.298502]  netlink_sendmsg+0x90f/0xdf0
[ 2558.298829]  ? netlink_unicast+0x7f0/0x7f0
[ 2558.299187]  ? netlink_unicast+0x7f0/0x7f0
[ 2558.299522]  __sock_sendmsg+0x154/0x190
[ 2558.299844]  ____sys_sendmsg+0x70d/0x870
[ 2558.300175]  ? sock_write_iter+0x3d0/0x3d0
[ 2558.300518]  ? do_recvmmsg+0x6d0/0x6d0
[ 2558.300853]  ? perf_trace_lock+0xac/0x490
[ 2558.301191]  ? __lockdep_reset_lock+0x180/0x180
[ 2558.301572]  ___sys_sendmsg+0xf3/0x170
[ 2558.301886]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2558.302257]  ? lock_downgrade+0x6d0/0x6d0
[ 2558.302600]  ? perf_trace_lock+0xac/0x490
[ 2558.302937]  ? __fget_files+0x296/0x4c0
[ 2558.303269]  ? __fget_light+0xea/0x290
[ 2558.303590]  __sys_sendmsg+0xe5/0x1b0
[ 2558.303895]  ? __sys_sendmsg_sock+0x40/0x40
[ 2558.304240]  ? kfree+0x1ab/0x340
[ 2558.304508]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2558.304960]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2558.305379]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2558.305793]  ? trace_hardirqs_on+0x5b/0x180
[ 2558.306157]  do_syscall_64+0x33/0x40
[ 2558.306456]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2558.306861] RIP: 0033:0x7fbe68e5db19
[ 2558.307166] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2558.308604] RSP: 002b:00007fbe66391188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
20:20:51 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x8, 0x10010, r0, 0x0)
r4 = syz_io_uring_setup(0x6933, &(0x7f0000000040)={0x0, 0xacb3, 0x0, 0x2, 0x69}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000000c0)=<r5=>0x0, &(0x7f0000000100)=<r6=>0x0)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, r6, &(0x7f0000000180)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, {0x1, r7}}, 0xfffffffa)
r8 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, r4, 0x10000000)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, r8, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0xa, 0x0, 0x0, 0x0, {0x2104}, 0x1, {0x0, r9}}, 0xc35)
r10 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r11=>0x0, &(0x7f0000000140)=<r12=>0x0)
r13 = io_uring_register$IORING_REGISTER_PERSONALITY(r10, 0x9, 0x0, 0x0)
syz_io_uring_submit(r11, r12, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r13}}, 0x0)
r14 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x3000004, 0x30, r0, 0x10000000)
syz_io_uring_submit(r11, r14, &(0x7f0000000340)=@IORING_OP_OPENAT2={0x1c, 0x3, 0x0, 0xffffffffffffffff, &(0x7f0000000240)={0x381002, 0x40, 0x8}, &(0x7f0000000280)='./file0\x00', 0x18, 0x0, 0x23456}, 0xffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_CLOSE, 0x0)
syz_io_uring_submit(0x0, r14, &(0x7f0000000380)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x1, {0x0, r7}}, 0x1)

[ 2558.309235] RAX: ffffffffffffffda RBX: 00007fbe68f710e0 RCX: 00007fbe68e5db19
[ 2558.309978] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2558.310548] RBP: 00007fbe68eb7f6d R08: 0000000000000000 R09: 0000000000000000
[ 2558.311133] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2558.311695] R13: 00007ffe4ff51d6f R14: 00007fbe66391300 R15: 0000000000022000
20:20:51 executing program 0:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000140)=ANY=[@ANYBLOB="0100000880000000000000001e7a733a2317a517d8b610dbf85fdaa88ed5c6652a8bf823e72bea1a64e575190cd9aecd710c9af7464f28a11298739be351ebd2856d7f4a7ab93e31de2fee272dcdd9a00a66b8cd334f851ce5b96880be160df922fdf5457e2a598cc7c7deb51ca46a2a2ebc0d85a54dcb9686d81649680fca0a2705162d38", @ANYRES32=<r1=>r0, @ANYBLOB='?\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
ioctl$SG_GET_NUM_WAITING(r1, 0x227d, &(0x7f0000000100))
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x185842, 0x123)
ioctl$FS_IOC_RESVSP(r5, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
r6 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fallocate(r6, 0x0, 0x0, 0x8000)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r5, 0xc0189372, &(0x7f0000000080)={{0x1, 0x1, 0x18, r6, {0xffffffff}}, './file0\x00'})
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:20:51 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 94)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:20:51 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x3f000000)

20:20:51 executing program 7:
pread64(0xffffffffffffffff, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
listen(0xffffffffffffffff, 0x3)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x185842, 0x123)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
r2 = epoll_create(0x8)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000100)={0x30000000})
epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r3, &(0x7f00000001c0))
ioctl$AUTOFS_DEV_IOCTL_VERSION(r1, 0xc0189371, &(0x7f0000000080)={{0x1, 0x1, 0x18, r3}, './file1\x00'})
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r5 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r4, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000000040)={0x0, r5, 0x2})
shutdown(r5, 0x1)

20:20:51 executing program 1:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000240), 0x4)
mbind(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, &(0x7f0000000040), 0x7, 0x1)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10031, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2000000000000000}, 0x11010, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
madvise(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1)
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/dev_mcast\x00')
readv(r0, &(0x7f0000000280)=[{&(0x7f00000004c0)=""/4089, 0xff9}], 0x1)
prctl$PR_SET_MM(0x23, 0x2, &(0x7f0000ffc000/0x4000)=nil)
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f00000001c0), &(0x7f0000000200), 0x2, 0x0)
truncate(&(0x7f00000000c0)='./file0\x00', 0x8)
fallocate(0xffffffffffffffff, 0x20, 0x0, 0x8000)

[ 2558.515886] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 2558.516681] CPU: 0 PID: 15212 Comm: syz-executor.7 Not tainted 5.10.211 #1
[ 2558.517242] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2558.517901] Call Trace:
[ 2558.518122]  dump_stack+0x107/0x167
[ 2558.518421]  sysfs_warn_dup.cold+0x1c/0x29
[ 2558.518766]  sysfs_do_create_link_sd+0x122/0x140
[ 2558.519150]  sysfs_create_link+0x5f/0xc0
[ 2558.519481]  device_add+0x703/0x1c50
[ 2558.519784]  ? devlink_add_symlinks+0x970/0x970
[ 2558.520162]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 2558.520583]  wiphy_register+0x1da6/0x2850
[ 2558.520945]  ? wiphy_unregister+0xb90/0xb90
[ 2558.521307]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 2558.521736]  ieee80211_register_hw+0x23c5/0x38b0
[ 2558.522131]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 2558.522523]  ? net_generic+0xdb/0x2b0
[ 2558.522835]  ? lockdep_init_map_type+0x2c7/0x780
[ 2558.523241]  ? memset+0x20/0x50
20:20:51 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x5c, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0xf0, &(0x7f0000000140), 0x8000)

[ 2558.523513]  ? __hrtimer_init+0x12c/0x270
[ 2558.523959]  mac80211_hwsim_new_radio+0x1ce0/0x4250
[ 2558.524394]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2558.524800]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2558.525172]  ? memcpy+0x39/0x60
[ 2558.525443]  hwsim_new_radio_nl+0x991/0x1080
[ 2558.525799]  ? mac80211_hwsim_new_radio+0x4250/0x4250
[ 2558.526227]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2558.526751]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2558.527432]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2558.527822]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2558.528345]  ? cap_capable+0x1cd/0x230
[ 2558.528697]  ? ns_capable+0xe2/0x110
[ 2558.529000]  genl_rcv_msg+0x33c/0x5a0
[ 2558.529310]  ? genl_get_cmd+0x480/0x480
[ 2558.529635]  ? mac80211_hwsim_new_radio+0x4250/0x4250
[ 2558.530048]  ? lock_release+0x680/0x680
[ 2558.530369]  ? __lockdep_reset_lock+0x180/0x180
[ 2558.530743]  netlink_rcv_skb+0x14b/0x430
[ 2558.531065]  ? genl_get_cmd+0x480/0x480
[ 2558.531385]  ? netlink_ack+0xab0/0xab0
[ 2558.531702]  ? netlink_deliver_tap+0x1c4/0xcd0
[ 2558.532069]  ? is_vmalloc_addr+0x7b/0xb0
[ 2558.532397]  genl_rcv+0x24/0x40
[ 2558.532679]  netlink_unicast+0x549/0x7f0
[ 2558.533013]  ? netlink_attachskb+0x870/0x870
[ 2558.533380]  netlink_sendmsg+0x90f/0xdf0
[ 2558.533712]  ? netlink_unicast+0x7f0/0x7f0
[ 2558.534058]  ? netlink_unicast+0x7f0/0x7f0
[ 2558.534398]  __sock_sendmsg+0x154/0x190
[ 2558.534716]  ____sys_sendmsg+0x70d/0x870
[ 2558.535042]  ? sock_write_iter+0x3d0/0x3d0
[ 2558.535380]  ? do_recvmmsg+0x6d0/0x6d0
[ 2558.535692]  ? perf_trace_lock+0xac/0x490
[ 2558.536027]  ? __lockdep_reset_lock+0x180/0x180
[ 2558.536400]  ? perf_trace_lock+0xac/0x490
[ 2558.536760]  ___sys_sendmsg+0xf3/0x170
[ 2558.537074]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2558.537442]  ? lock_downgrade+0x6d0/0x6d0
[ 2558.537783]  ? finish_task_switch+0x126/0x5d0
[ 2558.538144]  ? lock_downgrade+0x6d0/0x6d0
[ 2558.538479]  ? __fget_files+0x296/0x4c0
[ 2558.538804]  ? __fget_light+0xea/0x290
[ 2558.539126]  __sys_sendmsg+0xe5/0x1b0
[ 2558.539430]  ? __sys_sendmsg_sock+0x40/0x40
[ 2558.539776]  ? io_schedule_timeout+0x140/0x140
[ 2558.540160]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2558.540573]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2558.540999]  ? trace_hardirqs_on+0x5b/0x180
[ 2558.541353]  do_syscall_64+0x33/0x40
[ 2558.541649]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2558.542054] RIP: 0033:0x7fbe68e5db19
[ 2558.542362] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2558.543810] RSP: 002b:00007fbe663d3188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2558.544417] RAX: ffffffffffffffda RBX: 00007fbe68f70f60 RCX: 00007fbe68e5db19
[ 2558.544999] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 2558.545571] RBP: 00007fbe68eb7f6d R08: 0000000000000000 R09: 0000000000000000
[ 2558.546141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2558.546708] R13: 00007ffe4ff51d6f R14: 00007fbe663d3300 R15: 0000000000022000
[ 2558.575501] FAULT_INJECTION: forcing a failure.
[ 2558.575501] name failslab, interval 1, probability 0, space 0, times 0
[ 2558.576490] CPU: 0 PID: 15215 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2558.577067] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2558.577724] Call Trace:
[ 2558.577947]  dump_stack+0x107/0x167
[ 2558.578246]  should_fail.cold+0x5/0xa
[ 2558.578559]  should_failslab+0x5/0x20
[ 2558.578864]  __kmalloc_node_track_caller+0x74/0x3b0
[ 2558.579271]  ? alloc_skb_with_frags+0x92/0x570
[ 2558.579650]  __alloc_skb+0xb1/0x5b0
[ 2558.579945]  alloc_skb_with_frags+0x92/0x570
[ 2558.580317]  sock_alloc_send_pskb+0x7af/0x930
[ 2558.580704]  ? sk_alloc+0x350/0x350
[ 2558.581003]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2558.581453]  ? __ip6_append_data.isra.0+0x54c/0x3a70
[ 2558.581863]  __ip6_append_data.isra.0+0x1c12/0x3a70
[ 2558.582275]  ? ip6_mtu+0x1bb/0x3d0
[ 2558.582571]  ? lock_downgrade+0x6d0/0x6d0
[ 2558.582903]  ? ip_frag_init+0x350/0x350
[ 2558.583240]  ? ip6_finish_output2+0x1fe0/0x1fe0
[ 2558.583618]  ? ip6_mtu+0x1e9/0x3d0
[ 2558.583905]  ? ip6_setup_cork+0xfb7/0x1740
[ 2558.584258]  ip6_make_skb+0x2de/0x4e0
[ 2558.584564]  ? ip_frag_init+0x350/0x350
[ 2558.584907]  ? ip_frag_init+0x350/0x350
[ 2558.585233]  ? ip6_push_pending_frames+0xf0/0xf0
[ 2558.585607]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2558.586037]  ? trace_hardirqs_on+0x5b/0x180
[ 2558.586386]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2558.586824]  ? ip6_dst_hoplimit+0x1c7/0x440
[ 2558.587177]  udpv6_sendmsg+0x20d0/0x2af0
[ 2558.587505]  ? ip_frag_init+0x350/0x350
[ 2558.587828]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2558.588252]  ? __lockdep_reset_lock+0x180/0x180
[ 2558.588631]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2558.589046]  ? lock_acquire+0x197/0x470
[ 2558.589369]  ? find_held_lock+0x2c/0x110
[ 2558.589707]  ? sock_has_perm+0x1ea/0x280
[ 2558.590050]  ? __import_iovec+0x458/0x590
[ 2558.590388]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2558.590804]  inet6_sendmsg+0x105/0x140
[ 2558.591119]  ? inet6_compat_ioctl+0x320/0x320
[ 2558.591480]  __sock_sendmsg+0xf2/0x190
[ 2558.591794]  ____sys_sendmsg+0x334/0x870
[ 2558.592123]  ? trace_hardirqs_on+0x5b/0x180
[ 2558.592468]  ? sock_write_iter+0x3d0/0x3d0
[ 2558.592825]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2558.593279]  ___sys_sendmsg+0xf3/0x170
[ 2558.593593]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2558.593962]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2558.594385]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2558.594747]  ? trace_hardirqs_on+0x5b/0x180
[ 2558.595097]  ? finish_task_switch+0x1a4/0x5d0
[ 2558.595459]  ? __switch_to+0x572/0xf70
[ 2558.595778]  ? __switch_to_asm+0x3a/0x60
[ 2558.596109]  ? __switch_to_asm+0x34/0x60
[ 2558.596443]  ? __schedule+0x82c/0x1ea0
[ 2558.596780]  ? io_schedule_timeout+0x140/0x140
[ 2558.597164]  __sys_sendmmsg+0x195/0x470
[ 2558.597488]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2558.597838]  ? lock_downgrade+0x6d0/0x6d0
[ 2558.598184]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2558.598575]  ? wait_for_completion_io+0x270/0x270
[ 2558.598964]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2558.599344]  ? vfs_write+0x354/0xa70
[ 2558.599645]  ? fput_many+0x2f/0x1a0
[ 2558.599936]  ? ksys_write+0x1a9/0x260
[ 2558.600247]  ? __ia32_sys_read+0xb0/0xb0
[ 2558.600578]  __x64_sys_sendmmsg+0x99/0x100
[ 2558.600939]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2558.601359]  do_syscall_64+0x33/0x40
[ 2558.601666]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2558.602079] RIP: 0033:0x7fcaf2e26b19
[ 2558.602378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2558.603851] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2558.604462] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2558.605052] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2558.605623] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2558.606198] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2558.606770] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
[ 2558.675970] cgroup: fork rejected by pids controller in /syz0
20:20:51 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x8102, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:20:51 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x5c, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0xf000, &(0x7f0000000140), 0x8000)

20:20:51 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x40000000)

20:20:51 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4c, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:20:51 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 95)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

[ 2559.027009] FAULT_INJECTION: forcing a failure.
[ 2559.027009] name failslab, interval 1, probability 0, space 0, times 0
[ 2559.028261] CPU: 0 PID: 15353 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2559.028830] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2559.029501] Call Trace:
[ 2559.029720]  dump_stack+0x107/0x167
[ 2559.030019]  should_fail.cold+0x5/0xa
[ 2559.030330]  ? create_object.isra.0+0x3a/0xa20
[ 2559.030700]  should_failslab+0x5/0x20
[ 2559.031010]  kmem_cache_alloc+0x5b/0x310
[ 2559.031342]  create_object.isra.0+0x3a/0xa20
[ 2559.031693]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2559.032110]  __kmalloc_node_track_caller+0x1a6/0x3b0
[ 2559.032517]  ? alloc_skb_with_frags+0x92/0x570
[ 2559.032898]  __alloc_skb+0xb1/0x5b0
[ 2559.033200]  alloc_skb_with_frags+0x92/0x570
[ 2559.033564]  sock_alloc_send_pskb+0x7af/0x930
[ 2559.033932]  ? sk_alloc+0x350/0x350
[ 2559.034234]  ? perf_trace_lock+0xac/0x490
[ 2559.034570]  ? lock_chain_count+0x20/0x20
[ 2559.034909]  __ip6_append_data.isra.0+0x1c12/0x3a70
[ 2559.035325]  ? ip6_mtu+0x1bb/0x3d0
[ 2559.035617]  ? lock_downgrade+0x6d0/0x6d0
[ 2559.035951]  ? ip_frag_init+0x350/0x350
[ 2559.036305]  ? ip6_finish_output2+0x1fe0/0x1fe0
[ 2559.036688]  ? ip6_mtu+0x1e9/0x3d0
[ 2559.036985]  ? ip6_setup_cork+0xfb7/0x1740
[ 2559.037329]  ip6_make_skb+0x2de/0x4e0
[ 2559.037631]  ? ip_frag_init+0x350/0x350
[ 2559.037958]  ? ip_frag_init+0x350/0x350
[ 2559.038297]  ? ip6_push_pending_frames+0xf0/0xf0
[ 2559.038689]  ? ip6_dst_hoplimit+0x199/0x440
[ 2559.039035]  ? lock_downgrade+0x6d0/0x6d0
[ 2559.039385]  udpv6_sendmsg+0x20d0/0x2af0
[ 2559.039714]  ? ip_frag_init+0x350/0x350
[ 2559.040041]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2559.040477]  ? __lockdep_reset_lock+0x180/0x180
[ 2559.040866]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2559.041255]  ? lock_acquire+0x197/0x470
[ 2559.041581]  ? find_held_lock+0x2c/0x110
[ 2559.041916]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2559.042339]  ? sock_has_perm+0x1ea/0x280
[ 2559.042679]  ? __import_iovec+0x458/0x590
[ 2559.043171]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2559.043706]  inet6_sendmsg+0x105/0x140
[ 2559.044021]  ? inet6_compat_ioctl+0x320/0x320
[ 2559.044380]  __sock_sendmsg+0xf2/0x190
[ 2559.044717]  ____sys_sendmsg+0x334/0x870
[ 2559.045038]  ? sock_write_iter+0x3d0/0x3d0
[ 2559.045373]  ? do_recvmmsg+0x6d0/0x6d0
[ 2559.045683]  ? __lock_acquire+0x1657/0x5b00
[ 2559.046036]  ___sys_sendmsg+0xf3/0x170
[ 2559.046343]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2559.046704]  ? __lockdep_reset_lock+0x180/0x180
[ 2559.047073]  ? trace_hardirqs_on+0x5b/0x180
[ 2559.047420]  ? lock_acquire+0x197/0x470
[ 2559.047731]  ? find_held_lock+0x2c/0x110
[ 2559.048056]  ? __might_fault+0xd3/0x180
[ 2559.048369]  ? lock_downgrade+0x6d0/0x6d0
[ 2559.048716]  ? io_schedule_timeout+0x140/0x140
[ 2559.049087]  __sys_sendmmsg+0x195/0x470
[ 2559.049413]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2559.049756]  ? lock_downgrade+0x6d0/0x6d0
[ 2559.050098]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2559.050486]  ? wait_for_completion_io+0x270/0x270
[ 2559.050875]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2559.051243]  ? vfs_write+0x354/0xa70
[ 2559.051545]  ? fput_many+0x2f/0x1a0
[ 2559.051840]  ? ksys_write+0x1a9/0x260
[ 2559.052144]  ? __ia32_sys_read+0xb0/0xb0
[ 2559.052468]  __x64_sys_sendmmsg+0x99/0x100
[ 2559.052813]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2559.053225]  do_syscall_64+0x33/0x40
[ 2559.053520]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2559.053921] RIP: 0033:0x7fcaf2e26b19
[ 2559.054221] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2559.055666] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2559.056264] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2559.056829] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2559.057405] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2559.057962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2559.058522] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
20:21:08 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 96)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:21:08 executing program 2:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x100000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
ioctl$TCGETS(r0, 0x5401, &(0x7f0000000040))
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:21:08 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f0000000040)={0x3, 0x0, 0x0, 0x5, 0x40, 0x0})
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1, 0x2})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5, 0x6}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, r1, 0x0)
io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:21:08 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0xc971, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:21:08 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x5c, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0xf0ffff, &(0x7f0000000140), 0x8000)

20:21:08 executing program 1:
r0 = dup(0xffffffffffffffff)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r1, 0xc0189374, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>0xffffffffffffffff, {0x3}}, './file0\x00'})
statx(r2, &(0x7f00000000c0)='./file0\x00', 0x800, 0x7ff, &(0x7f0000000300))
io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000200)=ANY=[@ANYBLOB="010000000164b100cd830000a8de2233c6c10880bcdce0277a1be302faf636b3d7583c4eedea0281994c8cda83277b10d09e1ff744cd263755b1fcb0f5d3c7a5f8129cd0471e071e753020ca3b0ced7798bde3597bd0562eef1f0c27c8612aaa86ba793ac27661721c3a4898031d434f5c8bb7447d010000007e07f95913b35e854281347acf2790bbd1475386670ab79205bfc91287156b1f23e44bf9968447104c76f8e30a2137062693560c5aee458d5357ada088f65fa70aafca49c15fd5145e253d0c902ac4a9f7d680438c17a0d44715451acfa1b0ed1db9c6f2aaac4fcbf785", @ANYRES32, @ANYRES64])
r3 = perf_event_open(&(0x7f0000001d80)={0x7, 0x80, 0x0, 0x0, 0x0, 0xd7, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000003d80)=[{{&(0x7f0000000140)=@can={0x1d, <r4=>0x0}, 0x80, &(0x7f0000001740)=[{&(0x7f0000000400)=""/123, 0x7b}, {&(0x7f0000000480)=""/4096, 0x1000}, {&(0x7f0000001480)=""/96, 0x60}, {&(0x7f0000001500)=""/192, 0xc0}, {&(0x7f00000015c0)}, {&(0x7f0000001600)=""/238, 0xee}, {&(0x7f0000001700)=""/9, 0x9}], 0x7, &(0x7f00000017c0)=""/3, 0x3}, 0x9}, {{&(0x7f0000001800)=@nfc_llcp, 0x80, &(0x7f0000001d00)=[{&(0x7f0000001880)=""/191, 0xbf}, {&(0x7f0000001940)=""/77, 0x4d}, {&(0x7f00000019c0)=""/167, 0xa7}, {&(0x7f0000001a80)=""/113, 0x71}, {&(0x7f0000001b00)=""/138, 0x8a}, {&(0x7f0000001bc0)=""/96, 0x60}, {&(0x7f0000001c40)=""/90, 0x5a}, {&(0x7f0000001cc0)=""/57, 0x39}], 0x8, &(0x7f0000001e00)=""/122, 0x7a}, 0x2}, {{&(0x7f0000001e80)=@pptp={0x18, 0x2, {0x0, @local}}, 0x80, &(0x7f0000001f80)=[{&(0x7f0000001f00)=""/110, 0x6e}], 0x1, &(0x7f0000001fc0)=""/96, 0x60}, 0x1}, {{0x0, 0x0, &(0x7f0000002640)=[{&(0x7f0000002040)=""/244, 0xf4}, {&(0x7f0000002140)=""/100, 0x64}, {&(0x7f00000021c0)=""/224, 0xe0}, {&(0x7f00000022c0)=""/254, 0xfe}, {&(0x7f00000023c0)=""/231, 0xe7}, {&(0x7f00000024c0)=""/72, 0x48}, {&(0x7f0000002540)=""/95, 0x5f}, {&(0x7f00000025c0)=""/12, 0xc}, {&(0x7f0000002600)=""/61, 0x3d}], 0x9}, 0x3}, {{0x0, 0x0, &(0x7f00000027c0)=[{&(0x7f0000002700)=""/138, 0x8a}], 0x1, &(0x7f0000002800)=""/120, 0x78}, 0x3ff}, {{0x0, 0x0, &(0x7f00000028c0)=[{&(0x7f0000002880)}], 0x1, &(0x7f0000002900)=""/128, 0x80}, 0x7ff}, {{&(0x7f0000002980)=@hci, 0x80, &(0x7f0000003c80)=[{&(0x7f0000002a00)=""/163, 0xa3}, {&(0x7f0000002ac0)=""/138, 0x8a}, {&(0x7f0000002b80)=""/79, 0x4f}, {&(0x7f0000002c00)=""/4096, 0x1000}, {&(0x7f0000003c00)=""/55, 0x37}, {&(0x7f0000003c40)=""/29, 0x1d}], 0x6, &(0x7f0000003d00)=""/117, 0x75}, 0x7fff}], 0x7, 0x13002, &(0x7f0000003f40))
r5 = socket$packet(0x11, 0x2, 0x300)
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r7=>0x0})
bind$packet(r5, &(0x7f0000000100)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @local}, 0x14)
sendmsg$ETHTOOL_MSG_STRSET_GET(r1, &(0x7f0000004040)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000004000)={&(0x7f0000003f80)={0x54, 0x0, 0x300, 0x70bd28, 0x25dfdbff, {}, [@ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}, @ETHTOOL_A_STRSET_HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_macvtap\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_team\x00'}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x400c001}, 0x48000)
openat(r0, &(0x7f0000000040)='./file0\x00', 0x400000, 0x1)
r8 = gettid()
tkill(r8, 0x7)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x3}, 0x0, 0x3, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r9 = creat(&(0x7f00000001c0)='./file0\x00', 0x0)
dup2(r9, r3)

20:21:08 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffffffeffffffff, 0xffffffffffffffff, 0x0)
r0 = inotify_init1(0x0)
inotify_add_watch(r0, &(0x7f0000000040)='.\x00', 0x2000003)
r1 = syz_io_uring_setup(0x3ac4, &(0x7f00000002c0)={0x0, 0xa04a, 0x0, 0x2, 0x97}, &(0x7f0000ff6000/0xa000)=nil, &(0x7f0000ff6000/0xa000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f00000001c0)=<r3=>0x0)
r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd_index=0x4, 0x2, 0x0, 0x8000, 0x3, 0x1}, 0x0)
inotify_rm_watch(0xffffffffffffffff, 0x0)
inotify_add_watch(0xffffffffffffffff, 0x0, 0x280)
close(r4)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x8, 0x4010, r4, 0x0)
syz_io_uring_submit(r5, r3, &(0x7f00000000c0)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x3, 0x0, 0x0, 0x0, 0x12345}, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x2})
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x200, 0x45, 0xffff, 0x1000, 0x5})
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
syz_io_uring_submit(r6, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, 0x0)
inotify_add_watch(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x40)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:21:08 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x67030000)

[ 2575.944728] kauditd_printk_skb: 69 callbacks suppressed
[ 2575.944739] audit: type=1326 audit(1709497269.047:8077): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15367 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2575.948929] audit: type=1326 audit(1709497269.050:8078): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15367 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2575.950947] audit: type=1326 audit(1709497269.051:8079): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15367 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2575.954343] audit: type=1326 audit(1709497269.051:8080): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15367 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2575.958462] audit: type=1326 audit(1709497269.056:8081): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15367 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2575.959921] FAULT_INJECTION: forcing a failure.
[ 2575.959921] name failslab, interval 1, probability 0, space 0, times 0
[ 2575.961884] CPU: 0 PID: 15374 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2575.962754] audit: type=1326 audit(1709497269.056:8082): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15367 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f0851210ad7 code=0x7ffc0000
[ 2575.962815] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2575.965516] Call Trace:
[ 2575.965851]  dump_stack+0x107/0x167
[ 2575.965891] audit: type=1326 audit(1709497269.056:8084): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15367 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2575.966296]  should_fail.cold+0x5/0xa
[ 2575.966317]  ? create_object.isra.0+0x3a/0xa20
[ 2575.968156] audit: type=1400 audit(1709497269.056:8083): avc:  denied  { watch_reads } for  pid=15369 comm="syz-executor.7" path="/syzkaller-testdir615405752/syzkaller.rpdjuh/356" dev="sda" ino=15989 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=dir permissive=1
[ 2575.968426]  should_failslab+0x5/0x20
[ 2575.968831] audit: type=1326 audit(1709497269.060:8085): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15367 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2575.971878]  kmem_cache_alloc+0x5b/0x310
[ 2575.971896]  ? __is_insn_slot_addr+0x14c/0x290
[ 2575.971915]  create_object.isra.0+0x3a/0xa20
[ 2575.972336] audit: type=1326 audit(1709497269.064:8086): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15367 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2575.974720]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2575.974742]  kmem_cache_alloc_node+0x169/0x330
[ 2575.974764]  __alloc_skb+0x6d/0x5b0
[ 2575.980384]  alloc_skb_with_frags+0x92/0x570
[ 2575.980945]  sock_alloc_send_pskb+0x7af/0x930
[ 2575.981503]  ? sk_alloc+0x350/0x350
[ 2575.981947]  ? perf_trace_lock+0xac/0x490
[ 2575.982471]  ? lock_chain_count+0x20/0x20
[ 2575.982985]  __ip6_append_data.isra.0+0x1c12/0x3a70
[ 2575.983599]  ? ip6_mtu+0x1bb/0x3d0
[ 2575.984028]  ? lock_downgrade+0x6d0/0x6d0
[ 2575.984535]  ? ip_frag_init+0x350/0x350
[ 2575.985056]  ? ip6_finish_output2+0x1fe0/0x1fe0
[ 2575.985622]  ? ip6_mtu+0x1e9/0x3d0
[ 2575.986053]  ? ip6_setup_cork+0xfb7/0x1740
[ 2575.986580]  ip6_make_skb+0x2de/0x4e0
[ 2575.987053]  ? ip_frag_init+0x350/0x350
[ 2575.987544]  ? ip_frag_init+0x350/0x350
[ 2575.988042]  ? ip6_push_pending_frames+0xf0/0xf0
[ 2575.988626]  ? ip6_dst_hoplimit+0x199/0x440
[ 2575.989183]  ? lock_downgrade+0x6d0/0x6d0
[ 2575.989718]  udpv6_sendmsg+0x20d0/0x2af0
[ 2575.990218]  ? ip_frag_init+0x350/0x350
[ 2575.990716]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2575.991367]  ? __lockdep_reset_lock+0x180/0x180
[ 2575.991936]  ? lock_acquire+0x197/0x470
[ 2575.992419]  ? find_held_lock+0x2c/0x110
[ 2575.992940]  ? sock_has_perm+0x1ea/0x280
[ 2575.993453]  ? __import_iovec+0x458/0x590
[ 2575.993954]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2575.994588]  inet6_sendmsg+0x105/0x140
[ 2575.995060]  ? inet6_compat_ioctl+0x320/0x320
[ 2575.995603]  __sock_sendmsg+0xf2/0x190
[ 2575.996081]  ____sys_sendmsg+0x334/0x870
[ 2575.996579]  ? sock_write_iter+0x3d0/0x3d0
[ 2575.997131]  ? do_recvmmsg+0x6d0/0x6d0
[ 2575.997614]  ? __lock_acquire+0x1657/0x5b00
[ 2575.998155]  ___sys_sendmsg+0xf3/0x170
[ 2575.998634]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2575.999206]  ? __lockdep_reset_lock+0x180/0x180
[ 2575.999773]  ? lock_downgrade+0x6d0/0x6d0
[ 2576.000303]  ? lock_acquire+0x197/0x470
[ 2576.000791]  ? find_held_lock+0x2c/0x110
[ 2576.001340]  ? __might_fault+0xd3/0x180
[ 2576.001830]  ? lock_downgrade+0x6d0/0x6d0
[ 2576.002373]  __sys_sendmmsg+0x195/0x470
[ 2576.002878]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2576.003413]  ? lock_downgrade+0x6d0/0x6d0
[ 2576.003939]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2576.004535]  ? wait_for_completion_io+0x270/0x270
[ 2576.005147]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2576.005716]  ? vfs_write+0x354/0xa70
[ 2576.006167]  ? fput_many+0x2f/0x1a0
[ 2576.006610]  ? ksys_write+0x1a9/0x260
[ 2576.007078]  ? __ia32_sys_read+0xb0/0xb0
[ 2576.007579]  __x64_sys_sendmmsg+0x99/0x100
[ 2576.008094]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2576.008716]  do_syscall_64+0x33/0x40
[ 2576.009188]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2576.009806] RIP: 0033:0x7fcaf2e26b19
[ 2576.010259] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2576.012526] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2576.013488] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2576.014358] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2576.015223] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2576.016087] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2576.016967] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
20:21:09 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r3 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r6}}, 0x0)
syz_io_uring_setup(0xb79, &(0x7f0000000040)={0x0, 0x92bf, 0x1, 0x0, 0x35d, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f00000000c0), &(0x7f0000000100)=<r7=>0x0)
r8 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r9=>0x0, &(0x7f0000000140)=<r10=>0x0)
r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r11}}, 0x0)
r12 = accept4$inet(0xffffffffffffffff, &(0x7f0000000180), &(0x7f00000001c0)=0x10, 0x0)
syz_io_uring_submit(r4, r7, &(0x7f0000000240)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index=0x2, 0x0, 0x0, 0x3a5a, 0xa, 0x1, {0x0, r11, r12}}, 0x1)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:21:09 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000400)={0x2c, 0x26, 0x101, 0x0, 0x0, {}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @typed={0xc, 0x0, 0x0, 0x0, @u64}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0xa0}, 0x0)
mq_open(&(0x7f0000000280)='\x00\x00\x00\xe7\xbc\x03\x98\xdfFV^+\xd10\xc3\xdc\xb7P\x91\xc7[\xb2\xec\x9aM\xea\xae\x98\xdd\xe7\x16\xe4\x1a\xc36fD\x96*\xeemBI[\xec\x90?\xff\xd6\xd7\xbao\xbc\xea\xd0\xd6\xb4fG\"\xd9\x92\x15\xb3\xe1\x81\x95\xe9~\x05[r\x85\xc8)=q\x82.{#2\xe5/\xa5\xe66\x18\x89\xe1\x1d\xa82O,\x11\x8cD\xc3\xe9\xed;\x83\xbe\xf6\'\x180\xa8\xf4\x00\xd87\v\xf6\xfc:\xf2x7l>\xe1h\x92\xb7\x9c\f\xde\xe4Us\x9a+v\xb4\xa2\x8e\xf2y6|\x1e\xe4q\xd9z\x1e\x9a\x86\x03$keK\xc9x\x9cm\xca\xd06\xa2\xa2z\x9c\xa5\xdb8\xb0\xa5\b5\xf7\'~\xed]}\xf9\xe37\x1bZ;<\x8a\xe6\xa6\xd4W:\f\xe1\xe6*\xf2\n\xcb0\xe9\b\xc8y\xec\x02\xba_+\x9bT\xbd<A\x9dx\xf84D[\f\xf8\'\x80\x88\v\xe2\x8e\x9d\x0e\nt\xd4\x18N\xfc\xa0\xfb\xdbv\x1dG\x9d\x8e\x8fzF\xe5\xb9P{\xba\xa0g[]N\xdd\xe4g\xbf\x97C\xed\xd6?\a\x16$Nw\xba\xfc\xbdBY\xef\xbe\x14/', 0x80, 0x48, &(0x7f0000000000)={0x10000, 0x7, 0x4ef, 0x6})

20:21:09 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:21:09 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xc00c0000)

20:21:09 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0xca71, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

[ 2576.244992] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'.
20:21:22 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r0, 0xc018937d, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>r0, {0x5}}, './file1\x00'})
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000080)={0x0, 0x4, 0x2, 0x80000000})
mmap$IORING_OFF_SQ_RING(&(0x7f0000003000/0x3000)=nil, 0x3000, 0xd, 0x12, r0, 0x0)
truncate(&(0x7f0000001040)='./file1\x00', 0x4)
r2 = getpid()
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000000)=@v1={0x0, @aes128, 0x9, @desc2})
process_vm_readv(r2, &(0x7f0000000240)=[{&(0x7f0000000140)=""/193, 0xc1}], 0x1, &(0x7f0000000380)=[{&(0x7f0000003300)=""/4096, 0xd00}], 0x1, 0x0)

20:21:22 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 97)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:21:22 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x5c, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x4000000, &(0x7f0000000140), 0x8000)

20:21:22 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000040)='./file0\x00', 0x104)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:21:22 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_io_uring_setup(0x3157, &(0x7f0000000140)={0x0, 0xffffffff, 0x0, 0x2, 0x2bb}, &(0x7f0000ff0000/0x10000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080)=<r2=>0x0, &(0x7f00000000c0)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0}, 0x0)
r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8006, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x80000000}, 0x0, 0x40000000, 0xffffd, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_elf64(r4, &(0x7f0000000240)={{0x7f, 0x45, 0x4c, 0x46, 0x3, 0x6, 0x40, 0x22, 0x7, 0x2, 0x3e, 0x7, 0x43, 0x40, 0x306, 0x7, 0x1, 0x38, 0x1, 0x1, 0x0, 0xf800}, [{0x6474e551, 0x0, 0xff, 0x1, 0xb25, 0x4, 0x100000, 0xfffffffffffffff8}, {0x1, 0x9, 0x101, 0x9, 0xff, 0x8000, 0x13edce8c, 0x100000000}], "908cbfa951e7fb01b99c3f843a403b5284a7c9c9bb3bfde0ddf4b3eab6e6f8d4b5bf745e606ae0ce1c2552f62bc054a44a58a3c34abd8ac61d6294df2f992b3ec548f95b646cbed8eff865126bb7358613805b382adb812707b5f37c96ea579f26bc1be75363fe49a09db9a4c8fdf20e2ae27f254fe868c5996c462528d62842b01c54e82c967a95be3e87cfbdee3ed25bab20900ad78e33b6cd3e8755b1eddeeadb96b5a7b50d0d36ad70ef4cf60604d3c74b4011a7f02385bc0e4f861c424a1aab48e2997052f806c9888c4499300dcbc38284d31aa03dc5606722e61d2f4c4608a78d559cc7bab31a7737414025f202179357fc67acf8b2", ['\x00', '\x00', '\x00', '\x00', '\x00']}, 0x6a9)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000200)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r5=>0xffffffffffffffff, @ANYBLOB="000000002e2f66690400300073800289e0d81b561d6cf4f68163bc6179d861ac5036af2de48ed45c3cfbff0a10440b10"])
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
ioctl$FITHAW(r1, 0xc0045878)
syz_io_uring_submit(r6, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x1, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r5, 0xc028660f, &(0x7f00000001c0)={0x0, r1, 0x36, 0x3ff, 0x8, 0x5})
recvmsg(r0, &(0x7f0000000b40)={&(0x7f0000000900)=@pppol2tpin6, 0x80, &(0x7f0000000a00)=[{&(0x7f0000000040)=""/47, 0x2f}, {&(0x7f0000000980)=""/104, 0x68}], 0x2, &(0x7f0000000a40)=""/226, 0xe2}, 0x2002)

20:21:22 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0xcb71, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:21:22 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r4 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r3, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000040)={0x0, r4, 0x2})
ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(r4, 0xf504, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x431c, &(0x7f0000000040)={0x0, 0x7660, 0x10, 0x3, 0x182}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000180)=<r5=>0x0)
r6 = syz_open_dev$vcsn(&(0x7f00000001c0), 0x9, 0x430800)
syz_io_uring_submit(r1, r5, &(0x7f0000000280)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, r6, 0x0, &(0x7f0000000240)='./file0\x00', 0x0, 0x2, 0x12345}, 0x6)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:21:22 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xc42e0000)

[ 2589.463620] kauditd_printk_skb: 74 callbacks suppressed
[ 2589.463648] audit: type=1326 audit(1709497282.565:8161): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15428 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2589.490721] audit: type=1326 audit(1709497282.591:8162): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15428 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2589.519437] FAULT_INJECTION: forcing a failure.
[ 2589.519437] name failslab, interval 1, probability 0, space 0, times 0
[ 2589.521575] CPU: 1 PID: 15435 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2589.522689] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2589.524008] Call Trace:
[ 2589.524457]  dump_stack+0x107/0x167
[ 2589.525070]  should_fail.cold+0x5/0xa
[ 2589.525707]  ? create_object.isra.0+0x3a/0xa20
[ 2589.526456]  should_failslab+0x5/0x20
[ 2589.526600] audit: type=1326 audit(1709497282.603:8163): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15428 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2589.527036]  kmem_cache_alloc+0x5b/0x310
[ 2589.530806]  ? mark_lock+0xf5/0x2df0
[ 2589.531434]  create_object.isra.0+0x3a/0xa20
[ 2589.532152]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2589.532985]  kmem_cache_alloc_node+0x169/0x330
[ 2589.533737]  ? __lockdep_reset_lock+0x180/0x180
[ 2589.534516]  __alloc_skb+0x6d/0x5b0
[ 2589.535120]  alloc_skb_with_frags+0x92/0x570
[ 2589.535850]  ? mark_lock+0xf5/0x2df0
[ 2589.536487]  sock_alloc_send_pskb+0x7af/0x930
[ 2589.537256]  ? sk_alloc+0x350/0x350
[ 2589.537860]  ? find_held_lock+0x2c/0x110
[ 2589.538533]  ? perf_trace_lock+0xac/0x490
[ 2589.539238]  __ip6_append_data.isra.0+0x1c12/0x3a70
[ 2589.540077]  ? ip6_mtu+0x1bb/0x3d0
[ 2589.540663]  ? lock_downgrade+0x6d0/0x6d0
[ 2589.541350]  ? rawv6_exit+0x20/0x20
[ 2589.541964]  ? ip6_finish_output2+0x1fe0/0x1fe0
[ 2589.542738]  ? ip6_mtu+0x1e9/0x3d0
[ 2589.543338]  ? ip6_setup_cork+0xfb7/0x1740
[ 2589.544035]  ip6_append_data+0x1e7/0x330
[ 2589.544691]  ? rawv6_exit+0x20/0x20
[ 2589.545290]  ? rawv6_exit+0x20/0x20
[ 2589.545877]  icmp6_send+0x1257/0x1ff0
[ 2589.546536]  ? icmpv6_push_pending_frames+0x470/0x470
[ 2589.547349]  ? find_held_lock+0x2c/0x110
[ 2589.548077]  ? ipv6_proxy_select_ident+0x250/0x250
[ 2589.548888]  ip6_pkt_drop+0x3ae/0x7c0
[ 2589.549522]  ip6_local_out+0xb4/0x1a0
[ 2589.550144]  ip6_send_skb+0xb7/0x350
[ 2589.550775]  udp_v6_send_skb+0x7aa/0x15b0
[ 2589.551466]  udpv6_sendmsg+0x2113/0x2af0
[ 2589.552142]  ? ip_frag_init+0x350/0x350
[ 2589.552806]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2589.552970] audit: type=1326 audit(1709497282.603:8164): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15428 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2589.553605]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2589.553634]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2589.558356]  ? __lockdep_reset_lock+0x180/0x180
[ 2589.559091]  ? lock_acquire+0x1b9/0x470
[ 2589.559727]  ? find_held_lock+0x2c/0x110
[ 2589.560383]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2589.561279]  ? sock_has_perm+0x1ea/0x280
[ 2589.561988]  ? __import_iovec+0x458/0x590
[ 2589.562644]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2589.563474]  inet6_sendmsg+0x105/0x140
[ 2589.564113]  ? inet6_compat_ioctl+0x320/0x320
[ 2589.564837]  __sock_sendmsg+0xf2/0x190
[ 2589.565493]  ____sys_sendmsg+0x334/0x870
[ 2589.566150]  ? sock_write_iter+0x3d0/0x3d0
[ 2589.566836]  ? do_recvmmsg+0x6d0/0x6d0
[ 2589.567480]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2589.568337]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2589.569211]  ? trace_hardirqs_on+0x5b/0x180
[ 2589.569926]  ___sys_sendmsg+0xf3/0x170
[ 2589.570579]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2589.571319]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2589.572050]  ? _raw_spin_unlock_irq+0x27/0x30
[ 2589.572787]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2589.573527]  ? finish_task_switch+0x126/0x5d0
[ 2589.574255]  ? finish_task_switch+0xef/0x5d0
[ 2589.574959]  ? __switch_to+0x572/0xf70
[ 2589.575599]  ? __switch_to_asm+0x3a/0x60
[ 2589.576241]  ? __switch_to_asm+0x34/0x60
[ 2589.576916]  ? __schedule+0x82c/0x1ea0
[ 2589.577580]  ? io_schedule_timeout+0x140/0x140
[ 2589.578363]  __sys_sendmmsg+0x195/0x470
[ 2589.579013]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2589.579709]  ? lock_downgrade+0x6d0/0x6d0
[ 2589.580361] audit: type=1326 audit(1709497282.613:8165): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15428 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2589.580483] audit: type=1326 audit(1709497282.613:8166): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15428 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f0851210ad7 code=0x7ffc0000
[ 2589.583485]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2589.583519]  ? wait_for_completion_io+0x270/0x270
[ 2589.588048]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2589.588776]  ? vfs_write+0x354/0xa70
[ 2589.589386]  ? fput_many+0x2f/0x1a0
[ 2589.589970]  ? ksys_write+0x1a9/0x260
[ 2589.590597]  ? __ia32_sys_read+0xb0/0xb0
[ 2589.591254]  __x64_sys_sendmmsg+0x99/0x100
[ 2589.591941]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2589.592757]  do_syscall_64+0x33/0x40
[ 2589.593376]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2589.594184] RIP: 0033:0x7fcaf2e26b19
[ 2589.594782] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2589.597712] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2589.598916] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2589.600039] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2589.601173] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2589.602300] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2589.603420] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
20:21:22 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x5c, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0xfffff000, &(0x7f0000000140), 0x8000)

20:21:22 executing program 7:
preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
pread64(0xffffffffffffffff, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x185842, 0x123)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
ioctl$CDROM_CHANGER_NSLOTS(r1, 0x5328)
open_tree(r0, &(0x7f00000000c0)='./file1\x00', 0x1100)
listen(r0, 0x20044009)
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0xa0000000}, 0xc, &(0x7f0000000140)={0x0, 0x6c}, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r2 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0)
r4 = pidfd_getfd(r2, r3, 0x0)
fsync(r4)

[ 2589.626560] audit: type=1326 audit(1709497282.614:8167): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15428 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2589.635708] audit: type=1326 audit(1709497282.614:8168): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15428 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2589.651698] audit: type=1326 audit(1709497282.624:8169): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15428 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2589.660751] audit: type=1326 audit(1709497282.624:8170): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15428 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
20:21:22 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x84d4e, &(0x7f0000000040)={0x0, 0x0, 0x1, 0x7ff}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:21:22 executing program 0:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_GET_KEEP_ORPHAN(0xffffffffffffffff, 0x2288, &(0x7f0000000040))
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r1=>r0, {0xfffffff8}}, './file0\x00'})
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000180)={0x3a, 0x0, 0xffffff4c, "bd92f4f2bc2a5f45a7ec7a43545df0568b40eed99f6d4ca44631d887b48c7165440fa959420c3b6c8861b9e4d9b4268817079d7c22efd1654933"})
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2589.907456] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 2589.909028] CPU: 1 PID: 15458 Comm: syz-executor.7 Not tainted 5.10.211 #1
[ 2589.910024] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2589.911293] Call Trace:
[ 2589.911683]  dump_stack+0x107/0x167
[ 2589.912219]  sysfs_warn_dup.cold+0x1c/0x29
[ 2589.912832]  sysfs_do_create_link_sd+0x122/0x140
[ 2589.913525]  sysfs_create_link+0x5f/0xc0
[ 2589.914114]  device_add+0x703/0x1c50
[ 2589.914663]  ? devlink_add_symlinks+0x970/0x970
[ 2589.915336]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 2589.916102]  wiphy_register+0x1da6/0x2850
[ 2589.916707]  ? wiphy_unregister+0xb90/0xb90
[ 2589.917355]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 2589.918131]  ieee80211_register_hw+0x23c5/0x38b0
[ 2589.918827]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 2589.919516]  ? net_generic+0xdb/0x2b0
[ 2589.920072]  ? lockdep_init_map_type+0x2c7/0x780
[ 2589.920755]  ? memset+0x20/0x50
[ 2589.921240]  ? __hrtimer_init+0x12c/0x270
[ 2589.921840]  mac80211_hwsim_new_radio+0x1ce0/0x4250
[ 2589.922575]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2589.923243]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2589.923906]  ? memcpy+0x39/0x60
[ 2589.924389]  hwsim_new_radio_nl+0x991/0x1080
[ 2589.925034]  ? mac80211_hwsim_new_radio+0x4250/0x4250
[ 2589.925794]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2589.926742]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2589.927678]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2589.928374]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2589.929328]  ? cap_capable+0x1cd/0x230
[ 2589.929911]  ? ns_capable+0xe2/0x110
[ 2589.930452]  genl_rcv_msg+0x33c/0x5a0
[ 2589.931004]  ? genl_get_cmd+0x480/0x480
[ 2589.931574]  ? mac80211_hwsim_new_radio+0x4250/0x4250
[ 2589.932318]  ? lock_release+0x680/0x680
[ 2589.932920]  ? __lockdep_reset_lock+0x180/0x180
[ 2589.933598]  netlink_rcv_skb+0x14b/0x430
[ 2589.934183]  ? genl_get_cmd+0x480/0x480
[ 2589.934756]  ? netlink_ack+0xab0/0xab0
[ 2589.935326]  ? netlink_deliver_tap+0x1c4/0xcd0
[ 2589.935976]  ? is_vmalloc_addr+0x7b/0xb0
[ 2589.936559]  genl_rcv+0x24/0x40
[ 2589.937036]  netlink_unicast+0x549/0x7f0
[ 2589.937626]  ? netlink_attachskb+0x870/0x870
[ 2589.938268]  netlink_sendmsg+0x90f/0xdf0
[ 2589.938860]  ? netlink_unicast+0x7f0/0x7f0
[ 2589.939480]  ? netlink_unicast+0x7f0/0x7f0
[ 2589.940085]  __sock_sendmsg+0x154/0x190
[ 2589.940656]  ____sys_sendmsg+0x70d/0x870
[ 2589.941253]  ? sock_write_iter+0x3d0/0x3d0
[ 2589.941844]  ? do_recvmmsg+0x6d0/0x6d0
[ 2589.942397]  ? perf_trace_lock+0xac/0x490
[ 2589.943001]  ? __lockdep_reset_lock+0x180/0x180
[ 2589.943677]  ___sys_sendmsg+0xf3/0x170
[ 2589.944239]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2589.944896]  ? lock_downgrade+0x6d0/0x6d0
[ 2589.945490]  ? find_held_lock+0x2c/0x110
[ 2589.946086]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2589.946834]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2589.947605]  ? trace_hardirqs_on+0x5b/0x180
[ 2589.948221]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2589.949016]  ? sockfd_lookup_light+0x69/0x180
[ 2589.949656]  ? sockfd_lookup_light+0x73/0x180
[ 2589.950301]  ? __sanitizer_cov_trace_pc+0x4/0x60
[ 2589.951063]  __sys_sendmsg+0xe5/0x1b0
[ 2589.951653]  ? __sys_sendmsg_sock+0x40/0x40
[ 2589.952303]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2589.953082]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2589.953817]  ? trace_hardirqs_on+0x5b/0x180
[ 2589.954439]  do_syscall_64+0x33/0x40
[ 2589.954972]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2589.955707] RIP: 0033:0x7fbe68e5db19
[ 2589.956242] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2589.958868] RSP: 002b:00007fbe663d3188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2589.959960] RAX: ffffffffffffffda RBX: 00007fbe68f70f60 RCX: 00007fbe68e5db19
[ 2589.960975] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006
[ 2589.961999] RBP: 00007fbe68eb7f6d R08: 0000000000000000 R09: 0000000000000000
[ 2589.963014] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2589.964034] R13: 00007ffe4ff51d6f R14: 00007fbe663d3300 R15: 0000000000022000
20:21:36 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x5c, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0xf0ffffffffffff, &(0x7f0000000140), 0x8000)

20:21:36 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xe4ffffff)

20:21:36 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4c57, &(0x7f00000002c0)={0x0, 0xb369, 0x10, 0xffffffff, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x101a00, 0x0)
syz_open_pts(r3, 0xc0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:21:36 executing program 7:
preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
pread64(0xffffffffffffffff, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x185842, 0x123)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
ioctl$CDROM_CHANGER_NSLOTS(r1, 0x5328)
open_tree(r0, &(0x7f00000000c0)='./file1\x00', 0x1100)
listen(r0, 0x20044009)
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0xa0000000}, 0xc, &(0x7f0000000140)={0x0, 0x6c}, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r2 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0)
r4 = pidfd_getfd(r2, r3, 0x0)
fsync(r4)

20:21:36 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
r3 = syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
io_uring_enter(r3, 0x4941, 0x820b, 0x2, &(0x7f0000000040)={[0x8fa3]}, 0x8)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:21:36 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_io_uring_setup(0x3157, &(0x7f0000000140)={0x0, 0xffffffff, 0x0, 0x2, 0x2bb}, &(0x7f0000ff0000/0x10000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080)=<r2=>0x0, &(0x7f00000000c0)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0}, 0x0)
r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8006, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x80000000}, 0x0, 0x40000000, 0xffffd, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_elf64(r4, &(0x7f0000000240)={{0x7f, 0x45, 0x4c, 0x46, 0x3, 0x6, 0x40, 0x22, 0x7, 0x2, 0x3e, 0x7, 0x43, 0x40, 0x306, 0x7, 0x1, 0x38, 0x1, 0x1, 0x0, 0xf800}, [{0x6474e551, 0x0, 0xff, 0x1, 0xb25, 0x4, 0x100000, 0xfffffffffffffff8}, {0x1, 0x9, 0x101, 0x9, 0xff, 0x8000, 0x13edce8c, 0x100000000}], "908cbfa951e7fb01b99c3f843a403b5284a7c9c9bb3bfde0ddf4b3eab6e6f8d4b5bf745e606ae0ce1c2552f62bc054a44a58a3c34abd8ac61d6294df2f992b3ec548f95b646cbed8eff865126bb7358613805b382adb812707b5f37c96ea579f26bc1be75363fe49a09db9a4c8fdf20e2ae27f254fe868c5996c462528d62842b01c54e82c967a95be3e87cfbdee3ed25bab20900ad78e33b6cd3e8755b1eddeeadb96b5a7b50d0d36ad70ef4cf60604d3c74b4011a7f02385bc0e4f861c424a1aab48e2997052f806c9888c4499300dcbc38284d31aa03dc5606722e61d2f4c4608a78d559cc7bab31a7737414025f202179357fc67acf8b2", ['\x00', '\x00', '\x00', '\x00', '\x00']}, 0x6a9)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000200)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r5=>0xffffffffffffffff, @ANYBLOB="000000002e2f66690400300073800289e0d81b561d6cf4f68163bc6179d861ac5036af2de48ed45c3cfbff0a10440b10"])
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
ioctl$FITHAW(r1, 0xc0045878)
syz_io_uring_submit(r6, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x1, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r5, 0xc028660f, &(0x7f00000001c0)={0x0, r1, 0x36, 0x3ff, 0x8, 0x5})
recvmsg(r0, &(0x7f0000000b40)={&(0x7f0000000900)=@pppol2tpin6, 0x80, &(0x7f0000000a00)=[{&(0x7f0000000040)=""/47, 0x2f}, {&(0x7f0000000980)=""/104, 0x68}], 0x2, &(0x7f0000000a40)=""/226, 0xe2}, 0x2002)

20:21:36 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 98)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:21:36 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0xcc71, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

[ 2603.746646] kauditd_printk_skb: 33 callbacks suppressed
[ 2603.746662] audit: type=1326 audit(1709497296.849:8204): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15482 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
20:21:36 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x5c, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x400000000000000, &(0x7f0000000140), 0x8000)

[ 2603.757549] audit: type=1326 audit(1709497296.860:8205): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15482 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2603.763882] audit: type=1326 audit(1709497296.864:8206): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15482 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2603.768865] FAULT_INJECTION: forcing a failure.
[ 2603.768865] name failslab, interval 1, probability 0, space 0, times 0
[ 2603.770350] CPU: 1 PID: 15489 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2603.771197] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2603.772321] Call Trace:
[ 2603.772655]  dump_stack+0x107/0x167
[ 2603.773215]  should_fail.cold+0x5/0xa
[ 2603.773655]  ? create_object.isra.0+0x3a/0xa20
[ 2603.774279]  should_failslab+0x5/0x20
[ 2603.774829]  kmem_cache_alloc+0x5b/0x310
[ 2603.775401]  ? mark_lock+0xf5/0x2df0
[ 2603.775792]  create_object.isra.0+0x3a/0xa20
[ 2603.776447]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2603.777193]  kmem_cache_alloc_node+0x169/0x330
[ 2603.777700]  ? __lockdep_reset_lock+0x180/0x180
[ 2603.778314]  __alloc_skb+0x6d/0x5b0
[ 2603.778831]  alloc_skb_with_frags+0x92/0x570
[ 2603.779467]  ? mark_lock+0xf5/0x2df0
[ 2603.779972]  sock_alloc_send_pskb+0x7af/0x930
[ 2603.780437]  ? sk_alloc+0x350/0x350
[ 2603.780955]  ? find_held_lock+0x2c/0x110
[ 2603.781388]  ? perf_trace_lock+0xac/0x490
[ 2603.781897]  __ip6_append_data.isra.0+0x1c12/0x3a70
[ 2603.782552]  ? ip6_mtu+0x1bb/0x3d0
[ 2603.782916]  ? lock_downgrade+0x6d0/0x6d0
[ 2603.783458]  ? rawv6_exit+0x20/0x20
[ 2603.784028]  ? ip6_finish_output2+0x1fe0/0x1fe0
[ 2603.784553]  ? ip6_mtu+0x1e9/0x3d0
[ 2603.784930]  ? ip6_setup_cork+0xfb7/0x1740
[ 2603.785509]  ip6_append_data+0x1e7/0x330
[ 2603.786050]  ? rawv6_exit+0x20/0x20
[ 2603.786518]  ? rawv6_exit+0x20/0x20
[ 2603.787032]  icmp6_send+0x1257/0x1ff0
[ 2603.787445]  ? icmpv6_push_pending_frames+0x470/0x470
[ 2603.787955]  ? find_held_lock+0x2c/0x110
[ 2603.788400]  ? ipv6_proxy_select_ident+0x250/0x250
[ 2603.788895]  ip6_pkt_drop+0x3ae/0x7c0
[ 2603.789307]  ip6_local_out+0xb4/0x1a0
[ 2603.789705]  ip6_send_skb+0xb7/0x350
[ 2603.790105]  udp_v6_send_skb+0x7aa/0x15b0
[ 2603.790541]  udpv6_sendmsg+0x2113/0x2af0
[ 2603.790966]  ? ip_frag_init+0x350/0x350
[ 2603.791393]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2603.791928]  ? __lockdep_reset_lock+0x180/0x180
[ 2603.792406]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2603.792906]  ? lock_acquire+0x197/0x470
[ 2603.793337]  ? find_held_lock+0x2c/0x110
[ 2603.793767]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2603.794327]  ? sock_has_perm+0x1ea/0x280
[ 2603.794773]  ? __import_iovec+0x458/0x590
[ 2603.795200]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2603.795728]  inet6_sendmsg+0x105/0x140
[ 2603.796132]  ? inet6_compat_ioctl+0x320/0x320
[ 2603.796588]  __sock_sendmsg+0xf2/0x190
[ 2603.796991]  ____sys_sendmsg+0x334/0x870
[ 2603.797418]  ? sock_write_iter+0x3d0/0x3d0
[ 2603.797848]  ? do_recvmmsg+0x6d0/0x6d0
[ 2603.798247]  ? __lock_acquire+0x1657/0x5b00
[ 2603.798703]  ___sys_sendmsg+0xf3/0x170
[ 2603.799109]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2603.799579]  ? __lockdep_reset_lock+0x180/0x180
[ 2603.800060]  ? lock_acquire+0x197/0x470
[ 2603.800466]  ? find_held_lock+0x2c/0x110
[ 2603.800895]  ? __might_fault+0xd3/0x180
[ 2603.801313]  ? lock_downgrade+0x6d0/0x6d0
[ 2603.801740]  ? io_schedule_timeout+0x140/0x140
[ 2603.802231]  __sys_sendmmsg+0x195/0x470
[ 2603.802642]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2603.803074]  ? lock_downgrade+0x6d0/0x6d0
[ 2603.803520]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2603.804008]  ? wait_for_completion_io+0x270/0x270
[ 2603.804505]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2603.804977]  ? vfs_write+0x354/0xa70
[ 2603.805370]  ? fput_many+0x2f/0x1a0
[ 2603.805745]  ? ksys_write+0x1a9/0x260
[ 2603.806142]  ? __ia32_sys_read+0xb0/0xb0
[ 2603.806560]  __x64_sys_sendmmsg+0x99/0x100
[ 2603.806989]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2603.807506]  do_syscall_64+0x33/0x40
[ 2603.807885]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2603.808401] RIP: 0033:0x7fcaf2e26b19
[ 2603.808787] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2603.810615] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2603.811391] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2603.812108] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2603.812816] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2603.813541] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2603.814256] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
[ 2603.829330] audit: type=1326 audit(1709497296.865:8207): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15482 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2603.831983] audit: type=1326 audit(1709497296.865:8208): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15482 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f0851210ad7 code=0x7ffc0000
[ 2603.843218] sysfs: cannot create duplicate filename '/class/ieee80211/€˜
§°ÇÛ ”uòQÇC	!'
[ 2603.843907] CPU: 1 PID: 15486 Comm: syz-executor.7 Not tainted 5.10.211 #1
[ 2603.844480] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2603.845218] Call Trace:
[ 2603.845521]  dump_stack+0x107/0x167
[ 2603.845923]  sysfs_warn_dup.cold+0x1c/0x29
[ 2603.846420]  sysfs_do_create_link_sd+0x122/0x140
[ 2603.846825]  sysfs_create_link+0x5f/0xc0
[ 2603.847176]  device_add+0x703/0x1c50
[ 2603.847489]  ? devlink_add_symlinks+0x970/0x970
[ 2603.847938]  ? ieee80211_set_bitrate_flags+0x202/0x620
[ 2603.848447]  wiphy_register+0x1da6/0x2850
[ 2603.848799]  ? wiphy_unregister+0xb90/0xb90
[ 2603.849188]  ? ieee80211_init_rate_ctrl_alg+0x121/0x500
[ 2603.849638]  ieee80211_register_hw+0x23c5/0x38b0
[ 2603.850047]  ? ieee80211_ifa6_changed+0x4d0/0x4d0
[ 2603.850549]  ? net_generic+0xdb/0x2b0
[ 2603.850985]  ? lockdep_init_map_type+0x2c7/0x780
[ 2603.851521]  ? memset+0x20/0x50
[ 2603.851801]  ? __hrtimer_init+0x12c/0x270
[ 2603.852215]  mac80211_hwsim_new_radio+0x1ce0/0x4250
[ 2603.852793]  ? hwsim_send_nullfunc_ps+0x80/0x80
[ 2603.853294]  ? hwsim_new_radio_nl+0x967/0x1080
[ 2603.853706]  ? memcpy+0x39/0x60
[ 2603.854076]  hwsim_new_radio_nl+0x991/0x1080
[ 2603.854634]  ? mac80211_hwsim_new_radio+0x4250/0x4250
[ 2603.855144]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280
[ 2603.855831]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280
[ 2603.856568]  genl_family_rcv_msg_doit+0x22d/0x330
[ 2603.857004]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2603.857789]  ? cap_capable+0x1cd/0x230
[ 2603.858201]  ? ns_capable+0xe2/0x110
[ 2603.858507]  genl_rcv_msg+0x33c/0x5a0
[ 2603.858834]  ? genl_get_cmd+0x480/0x480
[ 2603.859177]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2603.859656]  ? mac80211_hwsim_new_radio+0x4250/0x4250
[ 2603.860228]  ? netlink_rcv_skb+0xa7/0x430
[ 2603.860725]  ? netlink_rcv_skb+0x251/0x430
[ 2603.861040]  netlink_rcv_skb+0x14b/0x430
[ 2603.861506]  ? genl_get_cmd+0x480/0x480
[ 2603.861920]  ? netlink_ack+0xab0/0xab0
[ 2603.862394]  ? netlink_deliver_tap+0x1c4/0xcd0
[ 2603.862746]  ? is_vmalloc_addr+0x7b/0xb0
[ 2603.863171]  genl_rcv+0x24/0x40
[ 2603.863529]  netlink_unicast+0x549/0x7f0
[ 2603.863979]  ? netlink_attachskb+0x870/0x870
[ 2603.864339]  netlink_sendmsg+0x90f/0xdf0
[ 2603.864759]  ? netlink_unicast+0x7f0/0x7f0
[ 2603.865201]  ? netlink_unicast+0x7f0/0x7f0
[ 2603.865668]  __sock_sendmsg+0x154/0x190
[ 2603.865977]  ____sys_sendmsg+0x70d/0x870
[ 2603.866326]  ? sock_write_iter+0x3d0/0x3d0
[ 2603.866718]  ? do_recvmmsg+0x6d0/0x6d0
[ 2603.867194]  ? perf_trace_lock+0xac/0x490
[ 2603.867563]  ? __lockdep_reset_lock+0x180/0x180
[ 2603.867948]  ___sys_sendmsg+0xf3/0x170
[ 2603.868251]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2603.868706]  ? lock_downgrade+0x6d0/0x6d0
[ 2603.869134]  ? find_held_lock+0x2c/0x110
[ 2603.869591]  ? clockevents_program_event+0x14b/0x360
[ 2603.869992]  ? __fget_files+0x296/0x4c0
[ 2603.870314]  ? __fget_light+0xea/0x290
[ 2603.870623]  __sys_sendmsg+0xe5/0x1b0
[ 2603.870928]  ? __sys_sendmsg_sock+0x40/0x40
[ 2603.871274]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2603.871695]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2603.872093]  ? trace_hardirqs_on+0x5b/0x180
[ 2603.872430]  do_syscall_64+0x33/0x40
[ 2603.872720]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2603.873126] RIP: 0033:0x7fbe68e5db19
[ 2603.873422] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2603.874859] RSP: 002b:00007fbe663d3188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2603.875446] RAX: ffffffffffffffda RBX: 00007fbe68f70f60 RCX: 00007fbe68e5db19
[ 2603.875994] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006
[ 2603.876560] RBP: 00007fbe68eb7f6d R08: 0000000000000000 R09: 0000000000000000
[ 2603.877108] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2603.877670] R13: 00007ffe4ff51d6f R14: 00007fbe663d3300 R15: 0000000000022000
[ 2603.889798] audit: type=1326 audit(1709497296.865:8209): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15482 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
20:21:37 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ff8000/0x8000)=nil, 0x8000, 0x8, 0x100010, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r0, 0x0, &(0x7f0000000280)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x6007, @fd_index=0x7, 0x7ffd, 0xfff, 0xfffff800, 0x8, 0x0, {0x2}}, 0x0)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
r4 = syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x7a, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000000)=0x2)
writev(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x2})
fcntl$setflags(0xffffffffffffffff, 0x2, 0x0)
io_setup(0x3e3, &(0x7f0000000580)=<r6=>0x0)
io_submit(r6, 0x1, &(0x7f0000000540)=[&(0x7f0000000080)={0x4004800, 0x500, 0x0, 0x0, 0x0, r5, 0x0}])
r7 = openat$incfs(0xffffffffffffffff, &(0x7f0000000080)='.pending_reads\x00', 0x0, 0x84)
io_submit(r6, 0x2, &(0x7f0000000240)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x7, 0x435f, r7, &(0x7f00000000c0)="2566caa18e89a87c38e3455d345af72703ffde0e9ca699cc6ef1b700edb5a254ba8b520b181197965ed33a9023d137e56c9b73700ae5a5938e700145556615f2b28f6b68f5e7f55a9b2b54a3f4c5b82d135cd019976b225b3b028f1d4b2e74ebe230c95419f8fddef4438b3bde46952f2f6c5e8745a2f3c5c08f804cad", 0x7d, 0x5, 0x0, 0x1}, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x5, 0x4, r4, &(0x7f0000000440)="ce25a8f9331e4ca212c50e6bf7624d37816ae3feaac60cef1049c96636a51a21e13b6132c78d0b4ca06f56e4b2434ecab318d5493c8bff6625d8dc333c7ddf723b0e3e47f337841802114231299bc162de90c9929f499f1bdeff047b6f4a3b1f1db6e3c9f14cc434575495e301277c4de3fb86aba4e3444d1c0e353d8fcf1a5aa6345c18f398786f4f0b0578f02c444d1fdfb43a10c1d6b86a899e68c7bee40000000000400000002000004d1ef241d87969a71b5988f4c5cdaa51ae1690ab9522fe3930c289b83641f7c01ed30aae70e0456c80ba772a91fb077f64a9c876e1f9ba00"/249, 0xf9, 0x8, 0x0, 0x1}])
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)

20:21:37 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x5c, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0xfffffffffffff000, &(0x7f0000000140), 0x8000)

20:21:37 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0xc46f}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r6}}, 0x0)
r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x40000)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r5, &(0x7f0000000180)=@IORING_OP_FALLOCATE={0x11, 0x2, 0x0, @fd=r7, 0x0, 0x0, 0x4, 0x0, 0x0, {0x0, r8}}, 0x1)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
r9 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x2a8080, 0x0)
ioctl$TIOCSTI(r9, 0x5412, &(0x7f0000000080)=0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x2, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x6, 0xffff}, 0x0, 0x2, 0xfffff000, 0x5, 0x0, 0x40, 0x1000}, 0x0, 0xfffffbffffffffff, 0xffffffffffffffff, 0x0)
r10 = dup3(r0, r0, 0x80000)
ioctl$SG_GET_RESERVED_SIZE(r10, 0x2272, &(0x7f00000001c0))
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r11 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2800001, 0x10, r0, 0x0)
syz_io_uring_submit(r11, 0x0, &(0x7f0000000240)=@IORING_OP_FALLOCATE={0x11, 0x2, 0x0, @fd_index=0x7, 0x54e, 0x0, 0x9, 0x0, 0x1}, 0x9)

[ 2603.936000] audit: type=1326 audit(1709497296.929:8210): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15482 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2603.941263] audit: type=1326 audit(1709497296.929:8211): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15482 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2603.962994] audit: type=1326 audit(1709497296.929:8212): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15482 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2603.964963] audit: type=1326 audit(1709497296.930:8213): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15482 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
20:21:37 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xff000000)

[ 2603.994368] serio: Serial port tty25
20:21:37 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0xcd71, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:21:37 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0x0, 0x5}, 0x0, 0x4000, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="177f97b28df9c604d70513be1c265d9e4f414e6eb8cb5c785fc2142b071cd78f679ced6fde70e42ed7ee9f02fd46ba3728fdf9a6a43dbab5dc7a6ce2ee35074f16b7cffdc900da5cad75994153a9256371dd99421322df942f5966227507984b0811312aa1c77d4296fda181f1ced94df90d000000"], 0x30}}, 0x0)
syz_80211_join_ibss(&(0x7f0000000040)='wlan1\x00', 0x0, 0x0, 0x0)
syz_80211_inject_frame(&(0x7f00000000c0), &(0x7f0000000440)=ANY=[@ANYRESOCT], 0x2f)
fork()
fork()
syz_80211_inject_frame(&(0x7f00000002c0)=@device_b, &(0x7f0000000380)=ANY=[], 0xa)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
r0 = fork()
ptrace(0x10, r0)
fork()
ptrace$cont(0x9, r0, 0x7fffffff, 0x4)

20:21:37 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x5c, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x0, &(0x7f0000000140)=0x4, 0x8000)

20:21:37 executing program 1:
r0 = open(&(0x7f0000000000)='./file1\x00', 0x600000, 0x1b2)
r1 = perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x4, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x7f, 0x20}, 0x0, 0x0, 0xfffffffd, 0x6, 0x4, 0x0, 0x5, 0x0, 0x1, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, r0, 0x8)
lseek(r1, 0x0, 0x1)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000140)=0x1, 0x4)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback={0x0, 0x7}}, 0x1c)
fallocate(r1, 0x3, 0x52, 0x6)
setsockopt$inet6_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000080), 0x4)
r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000002c0), 0x5f42, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x12, r3, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = socket$inet(0xa, 0x3, 0xff)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'sit0\x00', <r6=>0x0})
ioctl$sock_inet6_SIOCADDRT(r4, 0x890b, &(0x7f0000000140)={@private0, @loopback, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400032, r6})
r7 = openat$cgroup_ro(r3, &(0x7f00000000c0)='io.stat\x00', 0x0, 0x0)
recvfrom$inet6(r7, &(0x7f00000001c0)=""/71, 0x47, 0x40000042, &(0x7f0000000100)={0xa, 0x4e20, 0x74a6, @private2={0xfc, 0x2, '\x00', 0x1}, 0x40}, 0x1c)
connect$inet(0xffffffffffffffff, &(0x7f0000000240)={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0)
r8 = syz_open_dev$vcsa(&(0x7f0000000840), 0x401, 0x28180)
ioctl$F2FS_IOC_GARBAGE_COLLECT(r8, 0x4004f506, &(0x7f0000000880)=0x1)

[ 2604.173892] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2604.266269] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
20:21:50 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xffffffe4)

20:21:50 executing program 0:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r1 = syz_open_dev$vcsa(&(0x7f0000000040), 0x7, 0x400800)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r1, 0xc018937a, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {0x200}}, './file0\x00'})
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:21:50 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x5c, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x0, &(0x7f0000000140)=0xf0, 0x8000)

20:21:50 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 99)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:21:50 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0xce71, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:21:50 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0)
read(r0, &(0x7f0000019340)=""/102400, 0x19000)
r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_setup(0xd58, &(0x7f0000000bc0)={0x0, 0x0, 0x0, 0x0, 0xfffffffe})
r2 = syz_io_uring_setup(0x21, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000140), &(0x7f0000002a40))
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r4 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r3, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000040)={0x0, r4, 0x2})
ioctl$int_out(r3, 0x5460, &(0x7f00000000c0))
io_uring_enter(r2, 0x76d3, 0x0, 0x0, 0x0, 0x0)
write(r1, &(0x7f0000000240)="01", 0x1)
io_uring_enter(0xffffffffffffffff, 0x76d3, 0x0, 0x0, 0x0, 0x0)
sync_file_range(0xffffffffffffffff, 0xe438, 0x7, 0x3)
clone3(&(0x7f0000000000)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
execveat(0xffffffffffffffff, &(0x7f0000019300)='./file1\x00', 0x0, &(0x7f000001a440), 0x0)

20:21:50 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0x0, 0x5}, 0x0, 0x4000, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="177f97b28df9c604d70513be1c265d9e4f414e6eb8cb5c785fc2142b071cd78f679ced6fde70e42ed7ee9f02fd46ba3728fdf9a6a43dbab5dc7a6ce2ee35074f16b7cffdc900da5cad75994153a9256371dd99421322df942f5966227507984b0811312aa1c77d4296fda181f1ced94df90d000000"], 0x30}}, 0x0)
syz_80211_join_ibss(&(0x7f0000000040)='wlan1\x00', 0x0, 0x0, 0x0)
syz_80211_inject_frame(&(0x7f00000000c0), &(0x7f0000000440)=ANY=[@ANYRESOCT], 0x2f)
fork()
fork()
syz_80211_inject_frame(&(0x7f00000002c0)=@device_b, &(0x7f0000000380)=ANY=[], 0xa)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
r0 = fork()
ptrace(0x10, r0)
fork()
ptrace$cont(0x9, r0, 0x7fffffff, 0x4)

20:21:50 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7600000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x0)
r8 = syz_io_uring_setup(0x4a76, &(0x7f0000000180)={0x0, 0xecc4, 0x20, 0x0, 0x277, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000040), &(0x7f0000000100)=<r9=>0x0)
r10 = syz_io_uring_setup(0x384b, &(0x7f00000002c0)={0x0, 0x556a, 0x0, 0x0, 0x0, 0x0, r8}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r11=>0x0, &(0x7f0000000140)=<r12=>0x0)
r13 = io_uring_register$IORING_REGISTER_PERSONALITY(r10, 0x9, 0x0, 0x0)
r14 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000340)='net/vlan/config\x00')
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1000006, 0x40010, r14, 0x0)
r15 = syz_open_dev$sg(&(0x7f0000000280), 0x582, 0x8001)
ioctl$SG_GET_TIMEOUT(r15, 0x2202, 0x0)
syz_io_uring_submit(r11, r12, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r13}}, 0x0)
syz_io_uring_submit(r5, r9, &(0x7f0000000240)=@IORING_OP_MADVISE={0x19, 0x5, 0x0, 0x0, 0x0, &(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xa, 0x0, {0x0, r13}}, 0x1)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r14, 0xc018937e, &(0x7f00000003c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r15, @ANYBLOB="d786634716653000"])

[ 2617.682717] kauditd_printk_skb: 76 callbacks suppressed
[ 2617.682729] audit: type=1326 audit(1709497310.785:8290): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15557 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2617.686020] audit: type=1326 audit(1709497310.785:8291): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15557 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2617.691687] audit: type=1326 audit(1709497310.786:8292): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15557 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2617.696399] audit: type=1326 audit(1709497310.786:8293): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15557 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2617.712168] audit: type=1326 audit(1709497310.786:8294): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15557 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f0851210ad7 code=0x7ffc0000
[ 2617.713727] FAULT_INJECTION: forcing a failure.
[ 2617.713727] name failslab, interval 1, probability 0, space 0, times 0
[ 2617.715277] CPU: 1 PID: 15568 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2617.715287] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2617.715293] Call Trace:
[ 2617.715313]  dump_stack+0x107/0x167
[ 2617.715330]  should_fail.cold+0x5/0xa
[ 2617.715354]  should_failslab+0x5/0x20
[ 2617.715371]  __kmalloc_node_track_caller+0x74/0x3b0
[ 2617.715385]  ? alloc_skb_with_frags+0x92/0x570
[ 2617.715400]  ? __lockdep_reset_lock+0x180/0x180
[ 2617.715420]  __alloc_skb+0xb1/0x5b0
[ 2617.715440]  alloc_skb_with_frags+0x92/0x570
[ 2617.715456]  ? mark_lock+0xf5/0x2df0
[ 2617.715480]  sock_alloc_send_pskb+0x7af/0x930
[ 2617.715512]  ? sk_alloc+0x350/0x350
[ 2617.715527]  ? find_held_lock+0x2c/0x110
[ 2617.715543]  ? perf_trace_lock+0xac/0x490
[ 2617.715574]  __ip6_append_data.isra.0+0x1c12/0x3a70
[ 2617.715605]  ? ip6_mtu+0x1bb/0x3d0
[ 2617.715620]  ? lock_downgrade+0x6d0/0x6d0
20:21:50 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x5c, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x0, &(0x7f0000000140)=0xf000, 0x8000)

[ 2617.715633]  ? rawv6_exit+0x20/0x20
[ 2617.715662]  ? ip6_finish_output2+0x1fe0/0x1fe0
[ 2617.715678]  ? ip6_mtu+0x1e9/0x3d0
[ 2617.715694]  ? ip6_setup_cork+0xfb7/0x1740
[ 2617.715716]  ip6_append_data+0x1e7/0x330
[ 2617.715728]  ? rawv6_exit+0x20/0x20
[ 2617.715746]  ? rawv6_exit+0x20/0x20
[ 2617.715767]  icmp6_send+0x1257/0x1ff0
[ 2617.715803]  ? icmpv6_push_pending_frames+0x470/0x470
[ 2617.715817]  ? find_held_lock+0x2c/0x110
[ 2617.715869]  ? ipv6_proxy_select_ident+0x250/0x250
[ 2617.715896]  ip6_pkt_drop+0x3ae/0x7c0
[ 2617.715917]  ip6_local_out+0xb4/0x1a0
[ 2617.715937]  ip6_send_skb+0xb7/0x350
[ 2617.715957]  udp_v6_send_skb+0x7aa/0x15b0
[ 2617.715985]  udpv6_sendmsg+0x2113/0x2af0
[ 2617.716003]  ? ip_frag_init+0x350/0x350
[ 2617.716029]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2617.716063]  ? __lockdep_reset_lock+0x180/0x180
[ 2617.716078]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2617.716098]  ? lock_acquire+0x197/0x470
[ 2617.716112]  ? find_held_lock+0x2c/0x110
[ 2617.716140]  ? sock_has_perm+0x1ea/0x280
[ 2617.716173]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2617.716185]  ? trace_hardirqs_on+0x5b/0x180
[ 2617.716201]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2617.716219]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2617.716239]  inet6_sendmsg+0x105/0x140
[ 2617.716256]  ? inet6_compat_ioctl+0x320/0x320
[ 2617.716271]  __sock_sendmsg+0xf2/0x190
[ 2617.716291]  ____sys_sendmsg+0x334/0x870
[ 2617.716311]  ? sock_write_iter+0x3d0/0x3d0
[ 2617.716327]  ? do_recvmmsg+0x6d0/0x6d0
[ 2617.716347]  ? find_held_lock+0x2c/0x110
[ 2617.716376]  ___sys_sendmsg+0xf3/0x170
[ 2617.716397]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2617.716419]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2617.716437]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2617.716451]  ? trace_hardirqs_on+0x5b/0x180
[ 2617.716469]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 2617.716484]  ? finish_task_switch+0x126/0x5d0
[ 2617.716499]  ? finish_task_switch+0xef/0x5d0
[ 2617.716515]  ? __switch_to+0x572/0xf70
[ 2617.716530]  ? __switch_to_asm+0x3a/0x60
[ 2617.716545]  ? __switch_to_asm+0x34/0x60
[ 2617.716565]  ? __schedule+0x82c/0x1ea0
[ 2617.716591]  ? io_schedule_timeout+0x140/0x140
[ 2617.716621]  __sys_sendmmsg+0x195/0x470
[ 2617.716644]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2617.716660]  ? lock_downgrade+0x6d0/0x6d0
[ 2617.716696]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2617.716717]  ? wait_for_completion_io+0x270/0x270
[ 2617.716739]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2617.716757]  ? vfs_write+0x354/0xa70
[ 2617.716776]  ? fput_many+0x2f/0x1a0
[ 2617.716793]  ? ksys_write+0x1a9/0x260
[ 2617.716809]  ? __ia32_sys_read+0xb0/0xb0
[ 2617.716835]  __x64_sys_sendmmsg+0x99/0x100
[ 2617.716852]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2617.716870]  do_syscall_64+0x33/0x40
[ 2617.716885]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2617.716899] RIP: 0033:0x7fcaf2e26b19
[ 2617.716917] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2617.716929] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2617.716952] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2617.716966] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2617.716979] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2617.716992] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2617.717004] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
[ 2617.718554] audit: type=1326 audit(1709497310.786:8295): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15557 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2617.718621] audit: type=1326 audit(1709497310.786:8296): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15557 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2617.718683] audit: type=1326 audit(1709497310.786:8297): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15557 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2617.718740] audit: type=1326 audit(1709497310.786:8298): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15557 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2617.718799] audit: type=1326 audit(1709497310.788:8299): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15557 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2617.785948] process 'syz-executor.1' launched '/dev/fd/-1/./file1' with NULL argv: empty string added
20:21:50 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, &(0x7f0000000040)={@loopback, @broadcast, 0x1, 0x5, [@initdev={0xac, 0x1e, 0x1, 0x0}, @dev={0xac, 0x14, 0x14, 0x19}, @broadcast, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote]}, 0x24)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:21:51 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x7ffffffff000)

20:21:51 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0xcf71, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:21:51 executing program 0:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000080)={0x2, {0x2, 0x7b, 0x2000, 0xc25, 0x1, 0xd}})
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
ioctl$SG_GET_PACK_ID(r1, 0x227c, &(0x7f0000000040))
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:21:51 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0)
read(r0, &(0x7f0000019340)=""/102400, 0x19000)
r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_setup(0xd58, &(0x7f0000000bc0)={0x0, 0x0, 0x0, 0x0, 0xfffffffe})
r2 = syz_io_uring_setup(0x21, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000140), &(0x7f0000002a40))
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r4 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r3, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000040)={0x0, r4, 0x2})
ioctl$int_out(r3, 0x5460, &(0x7f00000000c0))
io_uring_enter(r2, 0x76d3, 0x0, 0x0, 0x0, 0x0)
write(r1, &(0x7f0000000240)="01", 0x1)
io_uring_enter(0xffffffffffffffff, 0x76d3, 0x0, 0x0, 0x0, 0x0)
sync_file_range(0xffffffffffffffff, 0xe438, 0x7, 0x3)
clone3(&(0x7f0000000000)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
execveat(0xffffffffffffffff, &(0x7f0000019300)='./file1\x00', 0x0, &(0x7f000001a440), 0x0)

20:21:51 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x5c, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x0, &(0x7f0000000140)=0xf0ffff, 0x8000)

20:21:51 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0xeffd, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:22:04 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0x0, 0x5}, 0x0, 0x4000, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="177f97b28df9c604d70513be1c265d9e4f414e6eb8cb5c785fc2142b071cd78f679ced6fde70e42ed7ee9f02fd46ba3728fdf9a6a43dbab5dc7a6ce2ee35074f16b7cffdc900da5cad75994153a9256371dd99421322df942f5966227507984b0811312aa1c77d4296fda181f1ced94df90d000000"], 0x30}}, 0x0)
syz_80211_join_ibss(&(0x7f0000000040)='wlan1\x00', 0x0, 0x0, 0x0)
syz_80211_inject_frame(&(0x7f00000000c0), &(0x7f0000000440)=ANY=[@ANYRESOCT], 0x2f)
fork()
fork()
syz_80211_inject_frame(&(0x7f00000002c0)=@device_b, &(0x7f0000000380)=ANY=[], 0xa)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
r0 = fork()
ptrace(0x10, r0)
fork()
ptrace$cont(0x9, r0, 0x7fffffff, 0x4)

20:22:04 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x80000000000000)

20:22:04 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0xf000, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:22:04 executing program 0:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
ioctl$PIO_CMAP(r0, 0x4b71, &(0x7f0000000040)={0x1f, 0x8001, 0x400, 0x1, 0x2, 0x19})
ioctl$BTRFS_IOC_QUOTA_RESCAN(r1, 0x4040942c, &(0x7f0000000080)={0x0, 0x3f, [0x1, 0x8, 0x0, 0xce0b, 0x9, 0x1000000000]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x7}, 0xa000, 0x2, 0x8001, 0x0, 0x3, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:22:04 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) (fail_nth: 100)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:22:04 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x5c, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x0, &(0x7f0000000140)=0x4000000, 0x8000)

20:22:04 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x4, 0x0, 0x80000, 0x337}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000580)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r3 = gettid()
process_vm_readv(r3, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7a}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xffffffbc}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3}, r3, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x100, 0x100000000}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x100}, r3, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x8, 0x4010, r0, 0x10000000)
r5 = signalfd4(0xffffffffffffffff, &(0x7f0000000540), 0x8, 0x0)
read$eventfd(r5, 0x0, 0x0)
r6 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000100)={0x30000000})
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, 0xffffffffffffffff, &(0x7f00000001c0))
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000500)={0x0, 0x4, 0x3, 0x3})
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r9}}, 0x0)
syz_io_uring_submit(r1, r4, &(0x7f00000004c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r5, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=@x25, 0x80, &(0x7f0000000240)=[{&(0x7f00000000c0)=""/69, 0x45}, {&(0x7f0000000180)=""/127, 0x7f}, {&(0x7f0000000340)=""/241, 0xf1}], 0x3, &(0x7f0000000440)=""/106, 0x6a}, 0x0, 0x40000041, 0x1, {0x0, r9}}, 0x3)

20:22:04 executing program 1:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0xcf71, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

[ 2631.550272] kauditd_printk_skb: 69 callbacks suppressed
[ 2631.550284] audit: type=1326 audit(1709497324.653:8369): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15629 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f835794eb19 code=0x7ffc0000
[ 2631.556802] audit: type=1326 audit(1709497324.659:8370): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15629 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f835794eb19 code=0x7ffc0000
[ 2631.561075] audit: type=1326 audit(1709497324.663:8371): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15629 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f835794eb19 code=0x7ffc0000
[ 2631.593211] audit: type=1326 audit(1709497324.675:8372): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15634 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2631.598257] audit: type=1326 audit(1709497324.676:8373): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15634 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2631.600764] FAULT_INJECTION: forcing a failure.
[ 2631.600764] name failslab, interval 1, probability 0, space 0, times 0
[ 2631.601821] CPU: 0 PID: 15637 Comm: syz-executor.6 Not tainted 5.10.211 #1
[ 2631.602429] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2631.603093] Call Trace:
[ 2631.603318]  dump_stack+0x107/0x167
[ 2631.603590] audit: type=1326 audit(1709497324.676:8374): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15634 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2631.603616]  should_fail.cold+0x5/0xa
[ 2631.605966]  ? lock_release+0x680/0x680
[ 2631.606294]  ? skb_clone+0x14f/0x3d0
[ 2631.606605]  should_failslab+0x5/0x20
[ 2631.606918]  kmem_cache_alloc+0x5b/0x310
[ 2631.607260]  skb_clone+0x14f/0x3d0
[ 2631.607553]  dev_queue_xmit_nit+0x3a7/0xb00
[ 2631.607913]  dev_hard_start_xmit+0xab/0x6f0
[ 2631.608266]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2631.608697]  __dev_queue_xmit+0x17ec/0x2710
[ 2631.609062]  ? find_held_lock+0x2c/0x110
[ 2631.609397]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 2631.609786]  ? mark_held_locks+0x9e/0xe0
[ 2631.610118]  ? lockdep_hardirqs_on_prepare+0x129/0x3e0
[ 2631.610547]  ip6_finish_output2+0x17b4/0x1fe0
[ 2631.610919]  __ip6_finish_output.part.0+0x4f7/0xbc0
[ 2631.611338]  ip6_output+0x3aa/0x7e0
[ 2631.611522] audit: type=1326 audit(1709497324.677:8375): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15634 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2631.611653]  ip6_local_out+0xb4/0x1a0
[ 2631.613984]  ip6_send_skb+0xb7/0x350
[ 2631.614303]  ip6_push_pending_frames+0xbd/0xf0
[ 2631.614686]  icmpv6_push_pending_frames+0x29c/0x470
[ 2631.615087] audit: type=1326 audit(1709497324.677:8376): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15634 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f0851210ad7 code=0x7ffc0000
[ 2631.615186] audit: type=1326 audit(1709497324.678:8377): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15634 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2631.616762]  icmp6_send+0x16ad/0x1ff0
[ 2631.616788]  ? icmpv6_push_pending_frames+0x470/0x470
[ 2631.616804]  ? find_held_lock+0x2c/0x110
[ 2631.619868]  ? ipv6_proxy_select_ident+0x250/0x250
[ 2631.620279]  ip6_pkt_drop+0x3ae/0x7c0
[ 2631.620603]  ip6_local_out+0xb4/0x1a0
[ 2631.620915]  ip6_send_skb+0xb7/0x350
[ 2631.621223] audit: type=1326 audit(1709497324.678:8378): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15634 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2631.621242]  udp_v6_send_skb+0x7aa/0x15b0
[ 2631.623585]  udpv6_sendmsg+0x2113/0x2af0
[ 2631.623932]  ? ip_frag_init+0x350/0x350
[ 2631.624257]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2631.624685]  ? __lockdep_reset_lock+0x180/0x180
[ 2631.625079]  ? hrtimer_start_range_ns+0x336/0xae0
[ 2631.625470]  ? lock_acquire+0x197/0x470
[ 2631.625799]  ? find_held_lock+0x2c/0x110
[ 2631.626148]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2631.626634]  ? sock_has_perm+0x1ea/0x280
[ 2631.626987]  ? __import_iovec+0x458/0x590
[ 2631.627335]  ? udp_v6_push_pending_frames+0x360/0x360
[ 2631.627749]  inet6_sendmsg+0x105/0x140
[ 2631.628083]  ? inet6_compat_ioctl+0x320/0x320
[ 2631.628440]  __sock_sendmsg+0xf2/0x190
[ 2631.628759]  ____sys_sendmsg+0x334/0x870
[ 2631.629105]  ? sock_write_iter+0x3d0/0x3d0
[ 2631.629453]  ? do_recvmmsg+0x6d0/0x6d0
[ 2631.629772]  ? __lock_acquire+0x1657/0x5b00
[ 2631.630168]  ___sys_sendmsg+0xf3/0x170
[ 2631.630484]  ? sendmsg_copy_msghdr+0x160/0x160
[ 2631.630870]  ? __lockdep_reset_lock+0x180/0x180
[ 2631.631278]  ? trace_hardirqs_on+0x5b/0x180
[ 2631.631641]  ? lock_acquire+0x197/0x470
[ 2631.631975]  ? find_held_lock+0x2c/0x110
[ 2631.632338]  ? __might_fault+0xd3/0x180
[ 2631.632668]  ? lock_downgrade+0x6d0/0x6d0
[ 2631.633036]  __sys_sendmmsg+0x195/0x470
[ 2631.633378]  ? __ia32_sys_sendmsg+0xb0/0xb0
[ 2631.633749]  ? lock_downgrade+0x6d0/0x6d0
[ 2631.634125]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2631.634538]  ? wait_for_completion_io+0x270/0x270
[ 2631.634947]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2631.635332]  ? vfs_write+0x354/0xa70
[ 2631.635643]  ? fput_many+0x2f/0x1a0
[ 2631.635953]  ? ksys_write+0x1a9/0x260
[ 2631.636266]  ? __ia32_sys_read+0xb0/0xb0
[ 2631.636611]  __x64_sys_sendmmsg+0x99/0x100
[ 2631.636960]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2631.637388]  do_syscall_64+0x33/0x40
[ 2631.637707]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2631.638148] RIP: 0033:0x7fcaf2e26b19
[ 2631.638453] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2631.640001] RSP: 002b:00007fcaf039c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2631.640626] RAX: ffffffffffffffda RBX: 00007fcaf2f39f60 RCX: 00007fcaf2e26b19
[ 2631.641216] RDX: 0400000000000095 RSI: 0000000020004d00 RDI: 0000000000000005
[ 2631.641800] RBP: 00007fcaf039c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2631.642393] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003
[ 2631.642991] R13: 00007ffc6d95584f R14: 00007fcaf039c300 R15: 0000000000022000
20:22:04 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x5c, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x0, &(0x7f0000000140)=0xfffff000, 0x8000)

20:22:04 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4, 0x130}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r6}}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000100)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffff9c, &(0x7f0000000000)={0x191000, 0x88, 0x2}, &(0x7f0000000180)='./file0\x00', 0x18, 0x0, 0x23456}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:22:04 executing program 1:
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
read$eventfd(r0, 0x0, 0x0)
ioctl$BLKROSET(r0, 0x125d, &(0x7f0000000040)=0x8001)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000480))
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x4, &(0x7f0000000740), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
pipe2(&(0x7f00000000c0), 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
fallocate(r4, 0x10, 0x3f, 0x5)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000a80)=ANY=[@ANYBLOB="078eba9d0100000018000000", @ANYRES32=r4])
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x80, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c71, 0x0, @perf_config_ext, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:22:04 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xf0ffffff7f0000)

20:22:04 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0xfdef, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:22:05 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x5c, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x0, &(0x7f0000000140)=0xf0ffffffffffff, 0x8000)

20:22:05 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x5c, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x0, &(0x7f0000000140)=0x400000000000000, 0x8000)

20:22:19 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x1, 0x20000})
ioctl$SCSI_IOCTL_STOP_UNIT(r0, 0x6)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0xba1c, 0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x2007, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x10, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}, 0x75, 0x2, 0x8001, 0x4, 0x0, 0x3, 0x1}, 0x0, 0xfffffffffffffffc, 0xffffffffffffffff, 0x8)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r5 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r4, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000000040)={0x0, r5, 0x2})
fsmount(r4, 0x1, 0x84)

20:22:19 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0xff01, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:22:19 executing program 1:
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/tty/drivers\x00', 0x0, 0x0)
fcntl$setsig(0xffffffffffffffff, 0xa, 0x15)
lseek(r0, 0x9e46, 0x0)

20:22:19 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:22:19 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x5c, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x0, &(0x7f0000000140)=0xfffffffffffff000, 0x8000)

20:22:19 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x200000000000000)

20:22:19 executing program 7:
r0 = getpgrp(0xffffffffffffffff)
perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x5, 0x2, 0xd6, 0x7f, 0x0, 0xb35, 0x40420, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000240)}, 0x2500, 0x6, 0x4, 0x9, 0x6, 0x7, 0x0, 0x0, 0x1, 0x0, 0x86b2}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x160, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200), 0x240943, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCETHTOOL(r1, 0x8931, &(0x7f00000001c0)={'wlan1\x00', 0x0})
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r1, 0x89fb, &(0x7f0000000000)={'syztnl0\x00', &(0x7f00000000c0)={'syztnl1\x00', 0x0, 0x2f, 0x45, 0xd4, 0x5, 0x0, @empty, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x10}}, 0x8, 0x40, 0x20, 0x6}})

20:22:19 executing program 2:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$TCSETA(r0, 0x5406, &(0x7f0000000040)={0xffff, 0x0, 0x800, 0x1ff, 0x4, "eb5df1a57a14798d"})
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2646.384526] kauditd_printk_skb: 72 callbacks suppressed
[ 2646.384542] audit: type=1326 audit(1709497339.487:8451): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15693 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2646.388695] audit: type=1326 audit(1709497339.491:8452): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15693 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2646.395840] audit: type=1326 audit(1709497339.496:8453): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15693 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2646.399110] audit: type=1326 audit(1709497339.501:8454): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15693 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2646.401887] audit: type=1326 audit(1709497339.501:8455): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15693 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2646.404431] audit: type=1326 audit(1709497339.504:8456): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15693 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f0851210ad7 code=0x7ffc0000
[ 2646.409174] audit: type=1326 audit(1709497339.504:8457): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15693 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2646.414338] audit: type=1326 audit(1709497339.504:8458): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15693 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2646.416856] audit: type=1326 audit(1709497339.507:8459): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15693 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2646.420577] audit: type=1326 audit(1709497339.507:8460): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15693 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
20:22:19 executing program 1:
setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0xa, &(0x7f0000000000)=0xfffffffd, 0x4)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f00000004c0)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @empty}, 0x1c, 0x0}}], 0x1, 0x0)

20:22:19 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x5c, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x0, &(0x7f0000000140), 0x2)

20:22:19 executing program 2:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000040)={0x20000000})
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:22:19 executing program 0:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r2, &(0x7f0000000100)={0x30000000})
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r2, &(0x7f00000001c0))
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r2, 0xc0096616, &(0x7f0000000240)={0x4, [0x0, 0x0, 0x0, 0x0]})
ioctl$KDDELIO(r0, 0x4b35, 0x100000000)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000100)='blkio.bfq.io_service_time\x00', 0x0, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = ioctl$TIOCGPTPEER(r0, 0x5441, 0x0)
ioctl$TIOCSISO7816(r0, 0xc0285443, &(0x7f0000000040)={0x400, 0xffffffff, 0x30000000, 0x7, 0x2})
syz_io_uring_setup(0x4d52, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0x3, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000080)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240), 0x0, 0x0, 0x1}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup2(r3, r0)
r6 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
write$binfmt_script(r1, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], 0xb2)
fallocate(r6, 0x0, 0x0, 0x8000)
io_uring_enter(r6, 0x6c51, 0x46c3, 0x0, 0x0, 0xfffffffffffffd89)

20:22:19 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0xff7f, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:22:19 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x500000000000000)

20:22:19 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x5c, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x0, &(0x7f0000000140), 0x8004)

20:22:19 executing program 1:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat$full(0xffffffffffffff9c, 0x0, 0x0, 0x0)
close(r3)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000ac0)='/proc/bus/input/devices\x00', 0x0, 0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0xfffffffffffffff7, 0x0, 0x0, 0x6, 0x1}, 0xfff)
r5 = epoll_create1(0x0)
r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x300, r6, &(0x7f0000000000)={0x90000008})
ioctl$FS_IOC_FSSETXATTR(r6, 0x401c5820, &(0x7f00000000c0)={0xc36, 0x7, 0x2, 0x3, 0x40000000})
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x185842, 0x123)
ioctl$FS_IOC_RESVSP(r7, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r7, 0xc018937d, &(0x7f0000000040)={{0x1, 0x1, 0x18, r5, {0x65}}, '\x00'})
ioctl$BTRFS_IOC_QUOTA_RESCAN(0xffffffffffffffff, 0x4040942c, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r8, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:22:19 executing program 7:
r0 = getpgrp(0xffffffffffffffff)
perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x5, 0x2, 0xd6, 0x7f, 0x0, 0xb35, 0x40420, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000240)}, 0x2500, 0x6, 0x4, 0x9, 0x6, 0x7, 0x0, 0x0, 0x1, 0x0, 0x86b2}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x160, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200), 0x240943, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCETHTOOL(r1, 0x8931, &(0x7f00000001c0)={'wlan1\x00', 0x0})
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r1, 0x89fb, &(0x7f0000000000)={'syztnl0\x00', &(0x7f00000000c0)={'syztnl1\x00', 0x0, 0x2f, 0x45, 0xd4, 0x5, 0x0, @empty, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x10}}, 0x8, 0x40, 0x20, 0x6}})

20:22:19 executing program 2:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
writev(r0, &(0x7f00000018c0)=[{&(0x7f0000000040)="049f13b8b9134846a0c6c38e0edd5db9f271489a776da95bf3bd5c0a5203ac6cb68483f4433a7b4769fe6da8d65237fea385ebdeb32545dfc5aa68ec3a1e3a806676001d3e4c11a59da2cef5178f36d7f6774bbb174afacdba720c62", 0x5c}, {&(0x7f0000000340)="7c296d43a547628c2ee4a0c1b8058c310df758caa58c4620dc3f687479c33f75f10abb42f8f06697fef5b85b84166ae65f59ab076969ad64e4cedff084030f03f2aeab61446c1efe2434b6203d853f2f692995b5df69784d438372c9e926ca01f24d6987158926aec48dcd3f34c431cdb412c1f68abb2eb9b643826b9bf046e8098e69e552b030b492c2b6f18fe66c6af2d8c4522a895e63d6d7ff675ae91b39e2538c8ed56840511d8f57f9d2184543d60c5aa0fef23086f29864a231b61b7335f5d945b17c69e70d530ab0f4de683295b1b559e0500f5d8983afe5b7e41cb5987f8594fbc874c1", 0xe8}, {&(0x7f0000000440)="6d0a363b73b14570f67ff001b8be69762977436fd9a99c713700a2f97dd104bf9348d704d9b563f00f384cd076cb502cfbd3f0509713f1f39210feae0a89d8d86b4abf6c8523c7c4b567817577a8761a89cbdc522b64bccd65b20e4a5b915da87d392982f9dbc1f62175880ace0e8201ddbe3b9c34c444db767101a0cf5c3ae996161541e9b33185ae40f86522d680cac5c12b8cc28a3eab6edfe9133d8debcddb691a2636811365114134dfda9926694fae8ea5faf24f4fa35fe21501dd502f76ec51e8f85a2ce22bc51acb915e4f5c5cd58ea88331e49575b0814f7314e114ff8e", 0xe2}, {&(0x7f0000000540)="ee4a6f6618009449791cef4ec4674fe9b7aa59a01b77f589e471b27d388765d074d04b43c01fd58028ac36d60fc9f89777505929af92384758852d043854a028cb1ae40bae6d4c55718e60c9e64b83708f3ae6e55372c818dfc9bed4d125284f3b99ddd14636438dd03340c5a569f9eceb9ac8e1f3b3931b154a450fa15a122922db07887cfc081815046a0b807312ff2249049b69d71438b3af44b9e34b6ca92c1c0f8103b8227d0fc5ae635a558a33f46e737e9ea79063178fdb4edc2b11ec1c", 0xc1}, {&(0x7f0000000640)="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", 0x1000}, {&(0x7f00000000c0)="55bba382ce6a5704a2140c97afea786fc9b1833821dea8e2a223548ea07add3d99f2810986ca496ae34f971efd59b7983fb8ec627c1e7f8fd8d2d1f75c9a93221349c2ac6d8a0108770e96568322", 0x4e}, {&(0x7f0000001640)="f80324b9701ba0555d47e780a8d018dae7c1fff17f51a113cecbed19259d4357133c726ab24620e4cab53fc357d83d14dee0863b61a32ec522f46ec68ba4e0d6e5b2667709b00ed0765c4f158d5b98013878e21763c94678eca12adcd83950799a3e016234daf158abaae7195556d908f076d5e45331eeb3767ff9ece23563f6f12b0d49412832f437bae006a0b4e2e06226d591afadc83ea36b4bfc2d23959e1cc17e3b5f1c6e567fced88f460604ff66e689b3888c9c2eee01dd2303709e2a41", 0xc1}, {&(0x7f0000001740)="3d40f48b398f51679bdc040f0734919094f33d4d6e8ff79be92c73bb3320460ad4d3984d2f8fd59079ec887c62ad50d13db3f248aca98bd9371419a14e02107b78f14f79d4f40a1eb5b59cc6f39e67a790f3d11f529267927be9357955b18d075257fbc4e593b0e0b882185884ea169eeb1494a68ccfaaa36db82d0503b065f52b5ba4f21b43dd3ea01f875bba43fe51dd", 0x91}, {&(0x7f0000001800)="78e877aeccc8b73ec8c8a6cfb86eb6b7ef656fc12e9728c442bc721efb0fe97a4bc4c5464fd5acacc1b9d4554575519754bbc2697e402b3973a8d7f51cc2e1295a653e973d7f118ea5c1967af0bb5b0a4571be1c72fccc9dd01e58e0663765ca798bbbf0261de2df03e67fd8ea1e4708fc604e204615ff546618c67ffe8451bf38184d07a82ad1916ccabb7cb835912b49dc6fe6259aeb3a0f4ae1d5e43d104c790cad4a2990356865dbd3d0ac537e252cc481fab98569d544d1d17ad37d9464", 0xc0}], 0x9)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:22:19 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:22:34 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x2, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:22:34 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x20, 0x1, 0x2, 0x2}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000080)=0x10000000)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x185842, 0x123)
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x4000006})
r4 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000040)='hugetlb.2MB.limit_in_bytes\x00', 0x2, 0x0)
pidfd_getfd(r3, r4, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:22:34 executing program 7:
r0 = getpgrp(0xffffffffffffffff)
perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x5, 0x2, 0xd6, 0x7f, 0x0, 0xb35, 0x40420, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000240)}, 0x2500, 0x6, 0x4, 0x9, 0x6, 0x7, 0x0, 0x0, 0x1, 0x0, 0x86b2}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x160, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200), 0x240943, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCETHTOOL(r1, 0x8931, &(0x7f00000001c0)={'wlan1\x00', 0x0})
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r1, 0x89fb, &(0x7f0000000000)={'syztnl0\x00', &(0x7f00000000c0)={'syztnl1\x00', 0x0, 0x2f, 0x45, 0xd4, 0x5, 0x0, @empty, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x10}}, 0x8, 0x40, 0x20, 0x6}})

20:22:34 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x80000, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:22:34 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x5c, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x0, &(0x7f0000000140), 0xff01)

20:22:34 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x800000000000000)

20:22:34 executing program 1:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0xff7f, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:22:34 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r3 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x400800, 0x4, 0xa}, 0x18)
execveat(r3, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)=[&(0x7f0000000100)='\x00'], &(0x7f0000000380)=[&(0x7f00000001c0)='\x00', &(0x7f0000000240)='\x00', &(0x7f0000000280)='\x00', &(0x7f0000000340)='\x00'], 0x1000)

[ 2661.273380] kauditd_printk_skb: 42 callbacks suppressed
[ 2661.273396] audit: type=1326 audit(1709497354.376:8503): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15827 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2661.281523] audit: type=1326 audit(1709497354.379:8504): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15827 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2661.300841] audit: type=1326 audit(1709497354.382:8505): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15827 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2661.308570] audit: type=1326 audit(1709497354.383:8506): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15827 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2661.335544] audit: type=1326 audit(1709497354.384:8507): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15827 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2661.358377] audit: type=1326 audit(1709497354.389:8508): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15827 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f0851210ad7 code=0x7ffc0000
[ 2661.362300] audit: type=1326 audit(1709497354.390:8509): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15827 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
20:22:34 executing program 3:
r0 = syz_open_dev$vcsu(&(0x7f00000000c0), 0x8, 0x101002)
r1 = getpgrp(0xffffffffffffffff)
r2 = gettid()
clone3(&(0x7f0000000440)={0x42840000, &(0x7f0000000200), &(0x7f0000000240)=<r3=>0x0, &(0x7f0000000280), {0x36}, &(0x7f00000002c0)=""/101, 0x65, &(0x7f0000000340)=""/183, &(0x7f0000000400)=[0x0, r1, r2, r2, r2, 0x0], 0x6, {r0}}, 0x58)
sched_getaffinity(r3, 0x8, &(0x7f00000004c0))
process_vm_readv(r2, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7a}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xffffffbc}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3}, r2, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pidfd_open(r2, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000, 0x0, @perf_bp={&(0x7f0000000100), 0x6}, 0x6080, 0x0, 0x0, 0x0, 0x0, 0x100000}, r1, 0x0, r0, 0x0)
set_mempolicy(0x0, &(0x7f0000000140), 0x8000)
set_mempolicy(0x0, &(0x7f0000000000)=0x8, 0x5)

[ 2661.392614] audit: type=1326 audit(1709497354.393:8510): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15827 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2661.407796] audit: type=1326 audit(1709497354.403:8511): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15833 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f835794eb19 code=0x7ffc0000
20:22:34 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r3 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0)
r4 = socket$inet_icmp(0x2, 0x2, 0x1)
fsconfig$FSCONFIG_SET_FD(r3, 0x5, &(0x7f0000000080)=')/\xd6#,,\x00', 0x0, r4)

[ 2661.463975] audit: type=1326 audit(1709497354.403:8512): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15833 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f835794eb19 code=0x7ffc0000
20:22:34 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1800000, 0x10, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
syz_io_uring_submit(r0, r3, &(0x7f00000000c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x3, 0x0, 0x8000, 0x3, &(0x7f0000000080)="f3d470b7d13c79f43d3a3b68dcf3fa4ab81f5068d14b2ca6f305999d1e58fa386cc54cf0", 0x7, 0x0, 0x1}, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r5 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
r8 = syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r9=>r8, {0x7ff}}, './file0\x00'})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10040, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, r9, 0x8)
io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:22:34 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x100000, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:22:34 executing program 1:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000040), 0x1ed982, 0x0)
r2 = perf_event_open(&(0x7f00000001c0)={0x3, 0x80, 0xab, 0x20, 0x2, 0x20, 0x0, 0x7fffffff, 0x44000, 0x8, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x7, 0x0, @perf_config_ext={0x609b, 0x2}, 0x4, 0x407, 0x6, 0x6, 0xbc, 0xd, 0x68, 0x0, 0x6, 0x0, 0x1}, 0x0, 0x9, r0, 0xc)
ioctl$DVD_AUTH(r1, 0x5390, &(0x7f0000000000)=@lsa={0x0, 0x3})
mmap$IORING_OFF_SQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1000004, 0x11, r1, 0x0)
r3 = syz_open_dev$loop(&(0x7f0000000080), 0x4, 0x48042)
ioctl$LOOP_SET_FD(r3, 0x4c00, r1)
fcntl$dupfd(r2, 0x406, r0)
ioctl$LOOP_SET_BLOCK_SIZE(r3, 0x4c09, 0x8)
r4 = clone3(&(0x7f0000000140)={0x11060900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r5 = gettid()
kcmp(0x0, r5, 0x6, 0xffffffffffffffff, 0xffffffffffffffff)
tgkill(r4, r5, 0x18)
openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:22:34 executing program 7:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r1, 0x40605346, &(0x7f0000000240)={0x0, 0x0, {0x0, 0x0, 0xffffffff}})
r2 = syz_open_dev$vcsu(&(0x7f00000000c0), 0x400, 0x8000)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r2, 0xc0189378, &(0x7f0000000040)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32, @ANYRES32=<r3=>r2, @ANYBLOB='\x00\x00\x00\x00./fmle1\x00'])
setsockopt$inet_tcp_buf(r3, 0x6, 0x1c, &(0x7f0000000140)="e7b0d2d3abb09bab0fb5b26fa570795b1ed00149b75171cd7f6f7ce9d561", 0x1d)
sendto$inet(r0, 0x0, 0x0, 0x20000854, 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x2000, 0x0)
copy_file_range(r5, 0x0, r4, 0x0, 0x10001, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x2})
setsockopt$inet_tcp_buf(0xffffffffffffffff, 0x6, 0x21, &(0x7f00000003c0)="52f5cd85e8b5f1a2eb803c01032c468b921e73f8ff18386dd91ab591adf24f71661e798ba763c8b86e2a0c26d8c4f60b07db067e92b3f38f204126740d2ee0963f3b7812d36325b736979962ca80257ed2085691367d98dc9282d0cd5c945e1e10f23ca7e6207b41e233ef6ef5e684cc632fb90432e2c86fb77154a35e885595d570b307aa40653b1b24ef2d614ebd928b91b32ec61307279429e9dc036f607c7ebbc272d8304a3319827e8c2ef2a88ba6bb72a17fd447495c7c372779d113cd3f31af722352a2cc87d34cef8b204f8ab869df752ff8c0877acef40ac8b99e203300f41c0a2c3e94", 0xe8)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x0, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}, 0x0, 0x31d, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendfile(r4, r6, 0x0, 0x20d315)
syz_open_dev$loop(&(0x7f0000000340), 0x0, 0x800)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000380)={{0x1, 0x1, 0x18, r4, {0x2}}, './file1\x00'})

20:22:34 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x2000000000000000)

20:22:34 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
setresuid(0xffffffffffffffff, r3, 0x0)
setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000340)={{{@in6=@local, @in6=@local, 0x4e24, 0x6, 0x4e20, 0xfff, 0xa, 0x0, 0xf0, 0x2f, 0x0, r3}, {0x3, 0x3f, 0x8001, 0x5, 0x45, 0x100000001, 0x800, 0x4}, {0x5, 0xfffffffffffffeff, 0x80000000, 0x3}, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x3}, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x4d2, 0x32}, 0x2, @in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x3500, 0x3, 0x0, 0xe1, 0x7fff, 0x0, 0xffffffc0}}, 0xe8)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:22:48 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x200000, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:22:48 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0xa}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0), 0x680142, 0x0)
fcntl$setlease(r0, 0x400, 0x0)
set_mempolicy(0x0, &(0x7f0000000140), 0x8000)

20:22:48 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x185842, 0x123)
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
r4 = syz_io_uring_setup(0x6ebd, &(0x7f0000000040)={0x0, 0x9830, 0x4, 0x0, 0x55, 0x0, r3}, &(0x7f0000ff7000/0x9000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000000c0), &(0x7f0000000100))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1000000, 0x30, r4, 0x8000000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x882, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x90, 0x0, 0x8001, 0x0, 0x523, 0x400000, 0x7f, 0x0, 0xfffffffe, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:22:48 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x3f00000000000000)

20:22:48 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x185842, 0x123)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
fcntl$setpipe(r0, 0x407, 0x1ff)
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x7})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETQUEUE(r1, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r2 = socket$inet(0x2, 0xa, 0x0)
ioctl$TUNSETLINK(r1, 0x400454cd, 0x0)
ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f00000001c0)={0x0, "1169feeb427ab0e2253af9114f0f7422"})
ioctl$sock_inet_SIOCGIFNETMASK(r2, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})

20:22:48 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x3, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:22:48 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r4 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r0, 0x8008f513, &(0x7f0000000080))
writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r3, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000040)={0x0, r4, 0x2})
writev(r3, &(0x7f0000000040)=[{&(0x7f0000000340)="1bce99beb6ffb9dfefa4c8e04650c8351137b5789627b6d7a5f8781f79a6a670ad840d88a72df0e9cbf2676af761b90ba7830e99e740461b282f10d18f67a4bb5ea04d77fec93bc06b4b14301b28e666dcc28ebb79bb5095dfbbfea6a02070120913edfb0e8a73cb2fd0bd6743842d721610dc524a402f297303190bd2e43cf1baf2927f5ce064cc8dfdf18795fca1362c54587e20597d76cb0045192c07eebb7a4a728dfabf3ff37f59a7b02a7a0722", 0xb0}], 0x1)

20:22:48 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0xa0)
syz_mount_image$vfat(0x0, 0x0, 0x9, 0x0, 0x0, 0x8c, &(0x7f0000000180)=ANY=[@ANYBLOB='euid<', @ANYRESDEC=0xee01, @ANYBLOB="2c736d61636b6673666c6f6f723d002c66736d616769633d3078303030303000003030303030303030322c6d6561737572652c7365636c61625c6c2c0036d393ef1a369db2d6ca42b0272e39a9ebc9bb0ab55f269ad0e0b7302ce090b30956854cadfd53604ac8ea568dcc477342d7644edcfbf6f683ac408e4ecc950113bb8b9d4febb776f2e82a0118e152ab4b0f5399f160"])
openat$vcsu(0xffffffffffffff9c, &(0x7f0000000400), 0x602, 0x0)
execveat(r0, &(0x7f0000000080)='./file1\x00', &(0x7f0000000300)=[&(0x7f00000000c0)='\x00', &(0x7f0000000240)='\x00', &(0x7f0000000280)='}\x00', &(0x7f00000002c0)='\x00'], &(0x7f00000003c0)=[&(0x7f0000000340)=')-(---,.\x00', &(0x7f0000000380)='%,{\x00'], 0x400)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/block/sr0', 0x200000, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r2, 0x0, 0x100000001)

[ 2675.747118] kauditd_printk_skb: 94 callbacks suppressed
[ 2675.747134] audit: type=1326 audit(1709497368.842:8607): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15908 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2675.750109] audit: type=1326 audit(1709497368.850:8608): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15908 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2675.750194] audit: type=1326 audit(1709497368.850:8609): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15908 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2675.754454] audit: type=1326 audit(1709497368.857:8610): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15908 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2675.754766] audit: type=1326 audit(1709497368.857:8611): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15908 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f0851210ad7 code=0x7ffc0000
[ 2675.757496] audit: type=1326 audit(1709497368.857:8612): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15908 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2675.757691] audit: type=1326 audit(1709497368.860:8613): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15908 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2675.757878] audit: type=1326 audit(1709497368.860:8614): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15908 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2675.758005] audit: type=1326 audit(1709497368.860:8615): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15908 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2675.763639] audit: type=1326 audit(1709497368.860:8616): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15908 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
20:22:48 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x18080, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x0, &(0x7f0000000140), 0x8000)
perf_event_open(&(0x7f0000000180)={0x4, 0x80, 0x3, 0x0, 0x80, 0x8f, 0x0, 0x0, 0x8000, 0xb, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0xffff, 0x4, @perf_bp={&(0x7f0000000100), 0xf}, 0x10000, 0x4, 0x0, 0xc, 0x1, 0x1000, 0xfffc, 0x0, 0x8, 0x0, 0x2}, 0x0, 0x10, r0, 0x4)
set_mempolicy(0x2, &(0x7f0000000240)=0x2, 0x4)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
read$eventfd(r1, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r1, 0xc0189378, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32, @ANYRES32, @ANYBLOB="7f0eceb1b7c375cc395ccadbbf2e6ad9c998edfc079b930f8fadba2dc80cf4157bb88a52492d90a7d750864589784943145eb45e71b210f6198b13940c9920279acabb8a18ab2d5ffc0b60d0559eb1dc5ec751a304680a421890ed9a11388b7762e3b08653ccb0b716ec2d388105a238e0e4a2591d9cf4fcfbde4f3e069a937e3758277aaaac8b4cc0bb71669af715dfe1baa70ec990979247c621ef15e1f8a930c03520ccbfe178f221f3755449bf70f0f8349cc077a74392c4486b32c708"])
set_mempolicy(0x3, &(0x7f00000000c0)=0x4, 0x3)

20:22:48 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x4000000000000000)

20:22:49 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0xf0ff1f, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:22:49 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x185842, 0x123)
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_STATX={0x15, 0x4, 0x0, r3, &(0x7f0000000340), &(0x7f0000000040)='./file0\x00', 0x1, 0x0, 0x1}, 0x200)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:22:49 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r6}}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x10003, 0x0, 0x0, 0x0, 0x10, 0x0, {0x0, r6}}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:23:02 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x6703000000000000)

20:23:02 executing program 3:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x0, &(0x7f0000000140), 0x8000)
set_mempolicy(0x8000, &(0x7f0000000000)=0x1000000000000, 0x2)

20:23:02 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x4, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:23:02 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000002800)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000500)=ANY=[], 0x20}, 0x1, 0x0, 0x0, 0x48805}, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000180)=0x14)
r5 = socket$packet(0x11, 0x2, 0x300)
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r7=>0x0})
bind$packet(r5, &(0x7f0000000100)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @local}, 0x14)
r8 = socket$packet(0x11, 0x2, 0x300)
r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r10=>0x0})
bind$packet(r8, &(0x7f0000000100)={0x11, 0x0, r10, 0x1, 0x0, 0x6, @local}, 0x14)
sendmsg$ETHTOOL_MSG_TSINFO_GET(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000001c0)={&(0x7f0000000340)={0x194, 0x0, 0x100, 0x70bd28, 0x25dfdbff, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x7c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'xfrm0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6tnl0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'hsr0\x00'}]}, @HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'sit0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netpci0\x00'}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}]}, 0x194}, 0x1, 0x0, 0x0, 0x8000}, 0x4004000)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x5, 0x0, @fd=r3, 0x5, 0x0, 0x0, 0x3}, 0x81)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:23:02 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$SCSI_IOCTL_DOORUNLOCK(0xffffffffffffffff, 0x5381)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000340)="af46d1c6bd642af0aaa3c148303139b43a6a771e4b8f941be4aa2b608e9a4e9b4fac5f58f46a596518ea3cdb9bb5d4c77527665ad521d10f70fa7951f87f5da00100b32e23bb8337ea752dde5fe6a513926e0efda039b9b9a3c7ffa8c3b09bd5f04a79c65f702ee2ba63e943e202d46b5e2a4f90e384e72b148232e7b15065b23b8213c3946aa15987f9b281b28db79713b51123d813e475782252a8aab292c67ea0aa524c409881fcee7a7516e66e7bbe21aac8d7804f45244b6fc8", 0xbc}], 0x1)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1, 0x2})
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fallocate(r2, 0x0, 0x0, 0x8000)
pipe(&(0x7f0000000100)={<r3=>0xffffffffffffffff})
syz_genetlink_get_family_id$batadv(&(0x7f0000000180), r2)
ioctl$SG_GET_SG_TABLESIZE(r3, 0x227f, &(0x7f0000000040))
r4 = syz_io_uring_setup(0x4d4a, &(0x7f00000002c0)={0x0, 0xac3b, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000080)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0xef6, 0x0, &(0x7f0000ff2000/0xe000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:23:02 executing program 1:
syz_emit_ethernet(0x58, &(0x7f0000000080)={@multicast, @broadcast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "96153f", 0x22, 0x3a, 0xff, @dev, @mcast2, {[], @ndisc_na={0x88, 0x0, 0x0, 0x0, '\x00', @private0, [{0x0, 0x1, "39e4cf3e25d33bee"}]}}}}}}, 0x0)
write$tun(0xffffffffffffffff, &(0x7f0000000380)={@void, @val={0x1, 0x80, 0x7, 0xd55, 0xfffd, 0x1}, @llc={@snap={0xab, 0x0, "7ca4", "de0ac7", 0x10, "2555d3b61fc9c3725a7f72d7ce93148e13a83b6dea2094cf977ed81a9ead7e75f44820bf03b0eb5c0215c45011543987cd7be96e8830136c33b14fb865ab2d20ca8eed70b9d14c12d30a3eadcdc95481c6482164a6b7130679fbbd3ec3c76d3147bbae60bc2074d96e36d2b23f4e1a95f6a591bf1d05200272e872762195539c17fb3192240c62fae448cdf589f18ba66a66a8e8cbe4ad9584ecde1aca61c81649d9f02a49adfbb279e8f88e7f771f538180a1f67ca9f71654"}}}, 0xcc)
write$tun(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], 0xa8)
r0 = perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0x7f, 0x1f, 0x0, 0x3f, 0x0, 0x9, 0x12004, 0x5, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0xd4, 0x0, @perf_bp={&(0x7f0000000040), 0xd}, 0x1, 0x401, 0x4, 0x6, 0x2, 0x2, 0x3, 0x0, 0x1, 0x0, 0x1}, 0x0, 0x7, 0xffffffffffffffff, 0x9)
splice(0xffffffffffffffff, &(0x7f0000000000)=0x8, r0, &(0x7f0000000180)=0x6, 0x7f, 0xb)

20:23:02 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0xf0ffff, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:23:02 executing program 7:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r4 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r0, 0x8008f513, &(0x7f0000000080))
writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r3, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000040)={0x0, r4, 0x2})
writev(r3, &(0x7f0000000040)=[{&(0x7f0000000340)="1bce99beb6ffb9dfefa4c8e04650c8351137b5789627b6d7a5f8781f79a6a670ad840d88a72df0e9cbf2676af761b90ba7830e99e740461b282f10d18f67a4bb5ea04d77fec93bc06b4b14301b28e666dcc28ebb79bb5095dfbbfea6a02070120913edfb0e8a73cb2fd0bd6743842d721610dc524a402f297303190bd2e43cf1baf2927f5ce064cc8dfdf18795fca1362c54587e20597d76cb0045192c07eebb7a4a728dfabf3ff37f59a7b02a7a0722", 0xb0}], 0x1)

[ 2689.904776] kauditd_printk_skb: 57 callbacks suppressed
[ 2689.904793] audit: type=1326 audit(1709497383.007:8674): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16010 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2689.913196] audit: type=1326 audit(1709497383.007:8675): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16010 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2689.941764] audit: type=1326 audit(1709497383.008:8676): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16010 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2689.944128] audit: type=1326 audit(1709497383.009:8677): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16010 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2689.984162] audit: type=1326 audit(1709497383.009:8678): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16010 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f0851210ad7 code=0x7ffc0000
[ 2689.987778] audit: type=1326 audit(1709497383.017:8679): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16010 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2690.009344] audit: type=1326 audit(1709497383.018:8680): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16010 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
20:23:03 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
socket$netlink(0x10, 0x3, 0x12)
r3 = socket$nl_sock_diag(0x10, 0x3, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_FILES_UPDATE={0x14, 0x5, 0x0, 0x0, 0x20000000002, &(0x7f0000000000)=[r3], 0x1, 0x0, 0x1}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2690.017275] audit: type=1326 audit(1709497383.022:8681): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16010 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2690.024773] audit: type=1326 audit(1709497383.022:8682): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16010 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2690.033700] audit: type=1326 audit(1709497383.022:8683): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16010 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
20:23:03 executing program 1:
r0 = syz_mount_image$msdos(0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0), 0x400, 0x0)
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fallocate(r1, 0x0, 0x0, 0x8000)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r3 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0x0, r3, 0x2})
fcntl$getown(r3, 0x9)
execveat(r1, &(0x7f0000000140)='./file0\x00', &(0x7f0000000400), &(0x7f0000000600)=[&(0x7f0000000480)='{),\x00', &(0x7f00000004c0)=']::\xf1]&[[@@\\#\x00', &(0x7f0000000500)=',::Q.(\x00', &(0x7f0000000540)='\x00', &(0x7f0000000580)='\x00', &(0x7f00000005c0)='&-O1@v-+\xe1#\\#)\x00'], 0x0)
openat(r0, &(0x7f0000000000)='./file0\x00', 0x2c0000, 0xbe)
listxattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=""/131, 0x83)
r4 = openat$null(0xffffffffffffff9c, &(0x7f0000000240), 0x800, 0x0)
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x7, 0x2, 0x6, 0x0, 0x0, 0x80000000, 0x42102, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, @perf_bp={&(0x7f0000000180), 0x2}, 0x1000, 0x6, 0x2, 0x4, 0x0, 0x1f, 0x2ac, 0x0, 0xfffff801, 0x0, 0xd809}, 0x0, 0x6, r4, 0x2)

20:23:03 executing program 3:
perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6f, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_config_ext={0x0, 0x7}, 0x0, 0x0, 0x0, 0x1, 0x0, 0xfffffffc}, 0x0, 0xc, 0xffffffffffffffff, 0x1)
set_mempolicy(0x0, &(0x7f0000000140), 0x8000)
set_mempolicy(0x3, &(0x7f00000000c0)=0x2, 0xe28)
set_mempolicy(0x1, &(0x7f0000000100)=0x8, 0xc8)
set_mempolicy(0x8000, &(0x7f0000000000)=0x3, 0x4)

20:23:03 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0xfeffff, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:23:03 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xc00c000000000000)

20:23:03 executing program 7:
r0 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0xb, &(0x7f0000000000)=0xba, 0x4)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_EEE_SET(r0, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01020000000000000000180000000c00018008000300000000000500050000000000aef016cddfd99732f49f0c8a0e9aab117e22c890723aa7ff02c47ebb3dfa3aef02f31be5fe628e88f5bc8f5da9"], 0x28}}, 0x0)

20:23:03 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x0, 0x0)
ioctl$TCSETAF(r3, 0x5408, &(0x7f0000000100)={0x717d, 0x9, 0x7fff, 0x3, 0x8, "9064353668e2f5fe"})
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80100, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:23:03 executing program 3:
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000006340)=[{{&(0x7f00000000c0), 0x6e, &(0x7f00000030c0)=[{&(0x7f0000000180)=""/4096, 0x1000}, {&(0x7f0000001180)=""/85, 0x55}, {&(0x7f0000002a00)=""/63, 0x3f}, {&(0x7f0000001240)=""/5, 0x5}, {&(0x7f0000003040)=""/87, 0x57}], 0x5}}, {{&(0x7f00000012c0)=@abs, 0x6e, &(0x7f0000003200)=[{&(0x7f0000001340)=""/209, 0xd1}, {&(0x7f0000001440)=""/4096, 0x1000}, {&(0x7f0000002440)=""/174, 0xae}, {&(0x7f0000001280)=""/16, 0x10}, {&(0x7f0000002540)=""/184, 0xb8}, {&(0x7f0000002600)=""/224, 0xe0}, {&(0x7f0000003140)=""/139, 0x8b}, {&(0x7f0000002940)=""/134, 0x86}, {&(0x7f0000002840)=""/251, 0xfb}], 0x9, &(0x7f0000002700)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xb8}}, {{&(0x7f0000002a40)=@abs, 0x6e, &(0x7f0000002b80)=[{&(0x7f0000002ac0)=""/164, 0xa4}], 0x1, &(0x7f0000002bc0)=[@rights={{0x1c, 0x1, 0x1, [<r0=>0xffffffffffffffff, 0xffffffffffffffff, <r1=>0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x78}}, {{&(0x7f0000002c40)=@abs, 0x6e, &(0x7f0000002e80)=[{&(0x7f00000032c0)=""/235, 0xeb}, {&(0x7f0000002dc0)=""/177, 0xb1}], 0x2}}, {{&(0x7f0000002ec0)=@abs, 0x6e, &(0x7f0000006240)=[{&(0x7f0000002f40)=""/55, 0x37}, {&(0x7f0000002f80)=""/77, 0x4d}, {&(0x7f0000007700)=""/4111, 0x100f}, {&(0x7f0000006700)=""/4096, 0x1000}, {&(0x7f0000005000)=""/98, 0x62}, {&(0x7f0000005080)=""/114, 0x72}, {&(0x7f0000005100)=""/4096, 0x1000}, {&(0x7f0000006100)=""/223, 0xdf}, {&(0x7f0000002500)=""/54, 0x36}], 0x9, &(0x7f0000006300)=[@cred={{0x1c}}, @cred={{0x1c}}], 0x40}}], 0x5, 0x1, &(0x7f0000006480))
ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f00000064c0)={0x0, 0x0, 0x3, 0x0, '\x00', [{0x7, 0x80, 0x5, 0x9, 0x0, 0x4}, {0x4, 0x1, 0x1000, 0xf15, 0x0, 0x7fffffff}], ['\x00', '\x00', '\x00']})
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0x8}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x0, &(0x7f0000000140), 0x8000)
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x185842, 0x123)
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x1)
fallocate(r2, 0x0, 0x0, 0x8000)
set_mempolicy(0x4000, &(0x7f00000027c0)=0x1, 0x3ff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000001200))
close(r0)

20:23:03 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x4, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:23:03 executing program 1:
perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6f, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_config_ext={0x0, 0x7}, 0x0, 0x0, 0x0, 0x1, 0x0, 0xfffffffc}, 0x0, 0xc, 0xffffffffffffffff, 0x1)
set_mempolicy(0x0, &(0x7f0000000140), 0x8000)
set_mempolicy(0x3, &(0x7f00000000c0)=0x2, 0xe28)
set_mempolicy(0x1, &(0x7f0000000100)=0x8, 0xc8)
set_mempolicy(0x8000, &(0x7f0000000000)=0x3, 0x4)

[ 2690.377185] netlink: 'syz-executor.7': attribute type 5 has an invalid length.
20:23:19 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xc42e000000000000)

20:23:19 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x248e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000080)={@remote}, 0x14)
syz_io_uring_setup(0x457f, &(0x7f00000000c0)={0x0, 0x58c9, 0x2, 0x3, 0x8b}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000002c0)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
r3 = inotify_init1(0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100000001)
inotify_add_watch(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x80)
r4 = inotify_add_watch(r3, &(0x7f0000000040)='.\x00', 0x2000023)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_FALLOCATE={0x11, 0x59f5ee0a7c70a1ba, 0x0, @fd_index=0x3, 0x3, 0x0, 0x1}, 0xbd53)
r5 = creat(&(0x7f0000000040)='./file0\x00', 0x10)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r6)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0)
write$binfmt_script(r7, &(0x7f0000000300)=ANY=[@ANYBLOB="c886fdbb4df0a00b841b65b47a8000dc"], 0xb8)
close(r7)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x0, 0x0, 0x0)
inotify_rm_watch(r3, r4)
pwrite64(r5, &(0x7f0000000200)="1eecd93735c44fb403292adf1183b1b37359fc5d952f72f57313fc71da00043824a7a91b66e3c15e690475706eacaa2a11516f6bdae1719641e9ca9ac07109a1c771750aea11c86edd4a2fe38badde5b051700e793ededbbc3e9658668347430b90c87a15deeaa274587570734535ff56936598d90b1bb184947987611e123040b62e1b5021d19c2e5c200"/150, 0x96, 0x0)
dup3(r5, r3, 0x0)

20:23:19 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0xfffff0, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:23:19 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x5, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:23:19 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = fsmount(0xffffffffffffffff, 0x0, 0xf2)
ioctl$TCSETSW2(r0, 0x402c542c, &(0x7f0000000180)={0x3ff, 0x4, 0x7fff, 0x1f, 0x4, "90a6d3687b426cec426240f978893f9f84ea5e", 0x2, 0x1})
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='pagemap\x00')
ioctl$TCSETSW2(r1, 0x402c542c, &(0x7f0000000080)={0x0, 0x2, 0x7ff, 0x800, 0x8e, "306235a3a02cfb342fd43f7c8a35d0a2e37cc8", 0x100, 0x5})
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000000c0)={0x0, 0x80}, &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:23:19 executing program 0:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$PIO_UNISCRNMAP(r0, 0x4b6a, &(0x7f0000000340)="f2c4430c9a1c37f10020289bac4d08824376c27900ae94c97ff420e1849308f95b04f41f145aabf1e873e80ea3e32e8d463b560e788571ebc61150ee1d84a0e410ca1b59a1812b2d9d0e088c234770059b8decacde4498ce58cb71ea1f7d9a3a64068fadf8bd19dfac5ff3be25016209aa3affeda26df4a7c81cd33201937b93391b633dde91fad998f8893021918e7bfdbb3864013cb0b5e24156100be1b7a7d341351e0d7b86eafa89c7f1af9431ad1ad0fa3bb8bbadc8bfa01e2c0985583191fb99ff16041ffcb7737b4cd6cd26610c138fa227b1db56fe832789829e3c13a72d1742a6d0e09e8ac3230948f653c1c0ee08a3fb7a78e95d240ed1a8ed72a00a1a627fec849edaa920c8131ef2191be4ed73e00a74ac5e87f978262f7d1de9b509b75196ec5af365059d422f42066ff723470eb221175d6ba44bfb9ae4830d0635b6dd8e35e7bae242707f82f41f388bd24d164c0ae6f54e27bc16e35c67bd2483e1ef47dfd2a4287ff5f34971b60d646d7cee3a80fcde9f9724c488819ac2152ed108c49032cf24a0a476a2e7477c688e930af9ec1e2d3c0e78847f80c861b425c17e38ccd981c5e9cb28ee938b104008fa08a40cdbab328069acbbfd231fe1d1fa3c303d235e7adf68b015b7e71a724bfa1b80410f81b8c6c0af7e369b8f68d174c147b908faa8d6770a8f4ef419ebe1504a8ca1364b5867fc095914c45b3e7baa990831b0e0cb5223c3c20c5a804e68740b45b8ee6516162bffa1220642ff0027e015af7242ca23d23ec9034afc180a7e0a0899e0a216d8ff778e9b3c892bbb5e92d2ef630cecd37a285a63f5edcb18364e11a956150945eebde9c01d12fdcedfe73383fce61576c36964ebdfaa34e6fce19edba9519949617a86526b1112598c9148e671e45188a5c8a8b70ee0fe6c3c4a8e357bf9e0758fc2fb42cc574783e8358c251abb3c459a9bccf08563efa1d2a0c3d19b324c36d3eaa589ceef16cfb5f2c5bdec870a263e8fad1d06cd59e0bf9da924e5ec7b4e116944914a2035d588d8ac7b1aa77a42f6e1410cb2984aa03676fef76eea3bffe682ec46f5c75a21005dc6128b30d42059ab9e8bc1df2c38b76354b5fa7081ea7e2c491b3eeb7ce8678b1065b4a5d8926301cdc78413558fa34f92f00570c5f2ac55dc0617f1292f4c25dbe9376b6539e1486de25cfd78335f5a0c4ad8c130fba42216cd0300072d9823d2af830036d1580daf03db020070afe95bdfe284df8d9df3e781d494b4eb3792cef8ce0f57378c91bd8dc1633559673fb25f44dc889d833fad2bc51416b449ca8075f05d3b50f411b61b7b572a949a343f721a68e3f85b7df733aeaae7d19019809576c4b242291c5c5b96325d93bdf072c19b8b1e2feac71147e01cfb2be8832ddcf3098d1fc5b4518b0db2aec8e081c4caa857b6f2c67661096e67be0c1f6e43d77834d30727d416775636d05529a46aa1bebdb03ecc14a9c1aba2b02674e8a17813754fe99b94e43035b0367603e8cc1fe66d6c9841e1386857ece5ca50ea089aeaae463cfc3ba3d01f02d3797ad8c611348fd262433b5c323e9a7923cc678bbd2aa41353bf672f704e51687c39dddcc1149a1661d1f92fb545db032751c499cd21ada7b2cc67f6317eed9e33f6402caf9be4e757ae1b2cf916ed1e93ec392e166c31af02c6dea2a219902d4c035b74d68bf9a22a0dddd2d42d7825097ccdb83b582fdfa762c069d7dee290e3b32ff529e70f0e13bdb06fc76da88cea2406d6e4a5ed14c4f8937f2028de88387677b8a9d5d47e1ce2c1f61ee3543696fd6ca6de86e59c508d9267e76c5e0891ade240df0ac56aa7f2cd5de4676d058547ee615729c8e3efce7931af8f05836fc31e0c86648ec36153df262e516a86be4eaf63e7c760af627a82eeeb01a28d1b414fe1778526ad2cbfe98299987a24d3d741eb514209af2b0de2c71e116ad33186211c852dab8f928008826d5bca3ad00749429167ed2c7a629ec1b3c99b6aa677e3b49f3ee79f5408a86d0e23a71dea59d129631a011ec8a01cfe88f78f217deef98307d79c2c5425dcaca6a220bec570d50af7d7c1cbfb37bde1add62de9d4f3d7ad9bbf38bc7c9a49413e6c92cdc8768128c3383f469ba47a3d302ba302f329d7661ac12e8b9704a5be44353e93d203f7eca8071124722e98dc72750de9d0cb3ddfc04769def8ce85c51591542f98ab2d77b6a3bc0794c44f29f317c400c375bab0fde348f8ceb7dfc111cc8b306cf3f1fa008ff1ae8915a56b33e1ff336740127a0c3f7d5276d8db8c5c52bfaeac8a84275aab582ed401d560d9d068cf4d7842e3a90ff2477b3fb7a372c1c2904819279a30fa7d952a276439b81d91403db9d46929ffd3866e5b9b0718a0ae66bb90807e9f4d85239c90ac798d11f72198c320e35ef3ec636203fc4e3c2371b2ede47ab6aeabeaf0ebbc544cfaf70b9cf7a34c971f92ee229df467732689da553a998ca5cf4867ea88e3917bc02b0bc6c409a230c3a81f96f5b6d074541e4937ee2d58edd24b70315176a747d7d5638b962d77ce77a2a93b3250006c09eb9b17659d837938ef271140b8385da3f82237e2c8a0575fc5b2cfc4453317979ba3ae25c94c9e55ebf70cf0613600e9f054c3a7e3ac9bd0d40e0e904a0cc34e88179631d4e6f100f1dccee00840c2f9ba5a515b8fca63311f160021a15fb9c746d5ed173cda990d72f3e215f5706732774432546626adfebebedee80a4d938a23a4508eed1dbc3089ae3500f1498609ba2ecaa70a72f703c6fab2e2851245120735cbf9d9af722567a2187144cb1b60a6f7a2390f0000e35a3b7c71f43ec1a7c432dba441e6ddfe0dbe68853cb61a3cc2f381cc1e4d2be4b6e7bbf23151a09e6849f5209633064ac5c7e83711b4596be43fc625e7b160c46f78c5562d224deaf89328fc6c376fa5396da573ef32ae4336d4700b3d4b1f3970aca3ac89fa76c936c6eaae63f064909e0c4d743f8364423a9e97d8fc30675f84768e1195207b35288327c79fd055a2e2f9813d29267e385c72e7626eb3a7396acfd49c66ce56534de9f3fc89078007ed27aac470cb52d18c479963d2ecd87c556ac299f5b68233bda8b1264661263df06d48f48e7581748a570b90a16729fbaedc250edc7da6d8c869db542c31cca35cf5cfb3b8e5ec157ad783433bbc588117ae1e5728e73ddc23373fbb60a930fa61ef66a4d62ef7df39056f9578aa0fdcd1932cc32143cebbeb28af124d9ded7969d9834b9eabdeb19689e1b9407991f9372829ec3460f17ddc972dab9f9d5f0caf606481aa791d45f5958bcc48035701935b0b9ada6359371e8c0f0998e31a67a05b35873d04baa2d4fd8af45194b40cb035010345b3d8828b718cc431e902b2d0b5c804b8ddf85098b41a543f6d48f74c1e2cd13e962f6ad474d785e6e8eb97607b108dd4c4724e7684ccbb9ce06646b9bdecf0f78862ee743a6c63af7142c373625b24cff5a07288815095d2e132fa4bfefe920151c4098b2188e07693681bd87dbd2d4f9e7660321ac56a1f9062ecba5c16711271ac33eb68efc01dd5c9cb75f9c413c88f1ab420568ca6e10ea8efb93fd870f169b81b8389945db235db998b07941d0ca74c89e9b5d0b98445a1b3731bbc085ee4bde6e66182ba68b29ef89c4f996eb74fc097747fd03dab9f81b9472cd159c06b21e177d139ccb2260164c0fbe14750f59f1b2b9f582d57c3c7d04e5b4e67d9dea322ebca1d202757de79d4986d13b89f1ebcc15296747592ae712b960bf52705c7f0e3c1b0868cae138165f1911c04ecda663e447f14d005215c44042799874b8da815603330ac0070055307312b735bcb9c8c0b13699316d1c63a0273f0444a2bc8f6af49ef65278314f4cc3c27b8808a207b7383f7931ecdd2ebac1924fca5f2c34a26164e71a09850136420873c6542387a84ccc2adf5511f363793b9c94bc2d85dd27cd207084b995d013466e572de43728f1935c4dc318a76b016719bb38015f2c40afdeb50e8fda943cf74ed4afa37be6aa5be77c134b6a7baa7c256f52be4cfb33b31e7dc9ae2a8add0a787b84b5ae7e766b277c202d3f8edbf028b1fb08a44dab1a6cb443c30aad2a7ed12b78f39accc845d9ab95116a2fe85a173aa1cfb54effd3611d49e5ed19018b56f444abc866e8df889e3b0a6dd708b6b7f5d24f8f24d4e17f7eb6cc1b7798c659e42ed62a6a05584c4610d203b550b77de4bdd560d19cf455295c9a27b02072bcd3d9bc37c1004885cad1ecf32209e7abee8ea5e9553f869df7fb52d4efb39eee86ef4684817e1b22ed8e7520d005418109e54b773e7e87b33efb9c581915b62af69bd4b5aad674eb43a0396975b9435b7aa7c6a65fa6f90c92cf8090734de650f1114b32fb72f2a8d4e3ca25abfb4e2e69a7de6a0ae2ac293418da9af6bcd705270a94c3a5b591c3f8fcc5422811ec11140d3cfe47b4418e8535c8eda8d0accaad7a89a40159335eb6cf8b04c67db05d1cf9e759b2f86ed1038b1ed663c6c3cf03342907a242ca9d5938ee68aa3e9d8219026c28ebf3b401f8b4871a2beb7db611e784f974b7ba5dbbfbbbb1d05e165434165d82dc3c17cdca2dae1b9a868c416fd089fa9a48d45d70107f53887f82f31952d7e852d9690376f2e84c0c43ca266984f28a31568c96e00dbf9327695c13a761709c97b478db39fdd3a593f2bc873db3be1c287517b9204b6f4c8f582a0adda32b3faa39ccd75384ff762d3834db541caf8dde8f203ae96ffe3b52158db0a02d55ed94606a0ca269e50077b47f04729d3f86b6c70d7b8e460c3e1432596bb1449061eb62e61258a282a5657e70334ef84455efeb109f519ddd23ff0fea57f2aed9b5f4a127f86d46aa2f31bdbc950cc075cdf41edfeae44ee59a70dfec2311c181144b6551386707636935b4a71916ceb0da9f472b303225e405e62c142fb12a9bd2a49f146ea18ef668dc5f2f31dd37b11a5b1215b362db97ddf3e4adb6e32f95c8fa7da9f19765fd985503c67737b52b3ed13252074e7160cf44c30bbff8b904276f12c5fb4dbc29373bfdb330427d9bda91e000befc0c0199064b60a14513248fa92cda3115ca632f7cf2150dd499dafc3ff2bf87a94078217014d41369f9f604bd652d18263c44ddfef104149ff6a1e76baf83478b178ac505c93578f9ce047e053e8a3c772aae2553ca6d4007860a3b48604e29c2820c085ea8d9eaeb05ae940ce8e7a36ed22e5061e560db793dd1d538e74a0cdc377c561a7fdc163ceb2a80a0a03803f3cee9ec5747d5033db68526d9dd295a352c499b8b11d5cb2643bcf89ee0d5a065fb039cd682e6c1aa4ace9d2be7fddb3e3c83bcd69cac4c3bb4817412c9e3193e71a1fb94c7b3b0fb0c27481bc50b032a75cea7c6f295ef79a3ee073295345abbc59b9cbab2891da78db288ef197081e7096df9854251f75690006816a9bdcaecaa179c2f928cc071cf1dbec88d7a5a51851dfb9effe52e50bc723dc5a906268a918c84654a3b4d985c84375b39fc1d25e5df6c374b14ab860083499bd48acd456ecd2eb7c250732ca7da3cf31ce7ba77d6672d8d7dd53ae322c5b4750537a1aeb1f8394093742e079a837d232d13d1035d0d7065ff9610f8cf2b663592f3fc66b147e40a99845ea37c61d157be1bc65a0ffcfe1ea0b38657ce287089bfff81fcc7c1af09fb5514c36aa9acd3af70273e431f02acb0ead96073f0c34e53d06b11e85bc57a9321b90cb1828582e2a4d758141c12cb80eac5727c2062ad7")
r1 = syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$SG_GET_KEEP_ORPHAN(0xffffffffffffffff, 0x2288, &(0x7f0000000040))
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r3 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0x0, r3, 0x2})
r4 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2, 0x0, r3}, &(0x7f00000a0000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)
dup2(r0, r1)

20:23:19 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffff000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r1, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r2, 0x2})
r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fallocate(r3, 0x0, 0x0, 0x8000)
open(&(0x7f00000001c0)='./file0\x00', 0x140, 0x1)
ioctl$FAT_IOCTL_GET_VOLUME_ID(r0, 0x80047213, &(0x7f0000000180))
kcmp$KCMP_EPOLL_TFD(0x0, 0xffffffffffffffff, 0x7, r3, &(0x7f0000000100)={r1, r0, 0x40})
io_uring_enter(r1, 0x1256, 0x5fbd, 0x4, &(0x7f0000000000)={[0x3]}, 0x8)
set_mempolicy(0x0, &(0x7f0000000140), 0x8000)

20:23:19 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fstat(r0, &(0x7f0000000240))
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0xd1)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r4 = dup2(r3, r2)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x0, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000740)=ANY=[@ANYBLOB="96731a06aeb64a2243cc787d1f7f6e43fca38b1d1e75949676cfa2b70425fcb6967415bad71b3036a389f454b4db326395d01a2db38ecb1218ee0944"])
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sysvipc/sem\x00', 0x0, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat$random(0xffffffffffffff9c, &(0x7f0000000140), 0x4c6200, 0x0)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r6, r4, 0x0, 0x7ffffff9)
fcntl$getownex(r1, 0x10, &(0x7f0000000480))
recvmsg$unix(r5, &(0x7f0000000680)={&(0x7f0000000500), 0x6e, &(0x7f0000000600)=[{&(0x7f00000002c0)=""/71, 0x47}], 0x1, &(0x7f0000000080)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x40}, 0x40)

[ 2706.177427] kauditd_printk_skb: 76 callbacks suppressed
[ 2706.177442] audit: type=1326 audit(1709497399.279:8760): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16095 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2706.180979] audit: type=1326 audit(1709497399.280:8761): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16095 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2706.186495] audit: type=1326 audit(1709497399.283:8762): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16095 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2706.190863] audit: type=1326 audit(1709497399.283:8763): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16095 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2706.202516] audit: type=1326 audit(1709497399.289:8764): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16095 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2706.205863] audit: type=1326 audit(1709497399.299:8765): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16095 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f0851210ad7 code=0x7ffc0000
[ 2706.215564] audit: type=1326 audit(1709497399.302:8766): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16095 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2706.226805] ======================================================
[ 2706.226805] WARNING: the mand mount option is being deprecated and
[ 2706.226805]          will be removed in v5.15!
[ 2706.226805] ======================================================
[ 2706.231242] audit: type=1326 audit(1709497399.329:8767): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16095 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2706.235751] audit: type=1326 audit(1709497399.333:8768): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16095 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2706.251550] audit: type=1326 audit(1709497399.345:8769): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16095 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
20:23:19 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x5c, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0xfe, 0xde, 0x8, 0x10, 0x0, 0x5, 0x10003, 0x7, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0xefa, 0x0, @perf_config_ext={0x0, 0x7}, 0x18500, 0xffffffff, 0x80000001, 0x0, 0x1, 0x9, 0x9, 0x0, 0x3, 0x0, 0x5}, 0xffffffffffffffff, 0x9, r0, 0x9)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000000)={0x10000000})
set_mempolicy(0x0, &(0x7f0000000140), 0x8000)

20:23:19 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400003, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:23:19 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xe4ffffff00000000)

20:23:19 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x1000000, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:23:19 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x2, 0x0, 0x0, 0x0, 0x411, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x0, &(0x7f0000000140), 0x8000)
set_mempolicy(0x4000, &(0x7f0000000000)=0x2, 0x1c00)
set_mempolicy(0x3, &(0x7f00000000c0)=0x8, 0x7fffffff)

20:23:36 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x6, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:23:36 executing program 2:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
r4 = epoll_create(0x8)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r5, &(0x7f0000000100)={0x30000000})
epoll_ctl$EPOLL_CTL_MOD(r4, 0x3, r5, &(0x7f00000001c0))
kcmp$KCMP_EPOLL_TFD(0x0, 0xffffffffffffffff, 0x7, r0, &(0x7f0000000040)={r4, r1, 0xffff})
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:23:36 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x1010000, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:23:36 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000340)="2000000000010000ecffffffd440ed000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f46576a1844e283734855f000000000000000001000000000000000b000000000200002802", 0x66, 0x400}], 0x0, &(0x7f0000012900)=ANY=[])
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setresuid(0xffffffffffffffff, r0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
setresuid(0xffffffffffffffff, r1, 0x0)
r2 = geteuid()
mount$9p_unix(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x180100c, &(0x7f00000006c0)=ANY=[@ANYBLOB='trans=unix,cache=none,cache=none,cachetag=-)%,access=', @ANYRESDEC=r0, @ANYBLOB=',uid=', @ANYRESDEC=r1, @ANYBLOB=',fsmagic=0x0000000000000003,pcr=000000000009,uid>\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRESDEC=r2, @ANYBLOB=',smackfshat=ext4\x00,hash,dont_measure,smackfsfloor=ext4\x00,pcr=00000000000000000030,appraise,\x00'])

20:23:36 executing program 0:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x2, {0x2, 0x3, 0xdeb, 0x0, 0xbd1, 0x1}})
r1 = syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r6 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r5, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r5, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r5, 0xc028660f, &(0x7f0000000040)={0x0, r6, 0x2})
ioctl$BLKTRACESTART(r6, 0x1274, 0x0)
r7 = mmap$IORING_OFF_SQES(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x2, 0x8010, r5, 0x10000000)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, r7, &(0x7f0000000080)=@IORING_OP_WRITE={0x17, 0x1, 0x2007, @fd=r1, 0x3, &(0x7f0000000340)="292d9c98f846e879d616f44635ebb6a696733d53a4030c76fb6f454f06f6692f3f2cc38f7cd6d80101923b6b513da50cac2455b05f52755b40e1b39fc49b13111854ba546a3a6d5e6d61526d7b1de5778de4762d12f972b655b149973dba0b787dd958559abc498ad4a1419f48f111a75f04c05722703b8d52235a363f2f33707f97e4bcb0cfb141d3a71846cdff8b327a06b11cbd274a77e119fab0badb048941727f43ade9efe2cc7b53f85fdb66eb6c", 0xb1, 0x8, 0x1, {0x0, r8}}, 0x100)

20:23:36 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x248e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000080)={@remote}, 0x14)
syz_io_uring_setup(0x457f, &(0x7f00000000c0)={0x0, 0x58c9, 0x2, 0x3, 0x8b}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000002c0)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
r3 = inotify_init1(0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100000001)
inotify_add_watch(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x80)
r4 = inotify_add_watch(r3, &(0x7f0000000040)='.\x00', 0x2000023)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_FALLOCATE={0x11, 0x59f5ee0a7c70a1ba, 0x0, @fd_index=0x3, 0x3, 0x0, 0x1}, 0xbd53)
r5 = creat(&(0x7f0000000040)='./file0\x00', 0x10)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r6)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0)
write$binfmt_script(r7, &(0x7f0000000300)=ANY=[@ANYBLOB="c886fdbb4df0a00b841b65b47a8000dc"], 0xb8)
close(r7)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x0, 0x0, 0x0)
inotify_rm_watch(r3, r4)
pwrite64(r5, &(0x7f0000000200)="1eecd93735c44fb403292adf1183b1b37359fc5d952f72f57313fc71da00043824a7a91b66e3c15e690475706eacaa2a11516f6bdae1719641e9ca9ac07109a1c771750aea11c86edd4a2fe38badde5b051700e793ededbbc3e9658668347430b90c87a15deeaa274587570734535ff56936598d90b1bb184947987611e123040b62e1b5021d19c2e5c200"/150, 0x96, 0x0)
dup3(r5, r3, 0x0)

20:23:36 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xff00000000000000)

20:23:36 executing program 3:
ioctl$BLKTRACETEARDOWN(0xffffffffffffffff, 0x1276, 0x0)
r0 = gettid()
process_vm_readv(r0, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7c}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xb7}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000000080)=""/5, 0x5}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000040)={0xa000000b})
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x6f, 0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_bp={&(0x7f0000000000), 0xa}, 0x0, 0x0, 0x0, 0x8}, r0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x0, &(0x7f0000000140), 0x8000)

[ 2723.169071] kauditd_printk_skb: 43 callbacks suppressed
[ 2723.169087] audit: type=1326 audit(1709497416.271:8813): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16168 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2723.176953] audit: type=1326 audit(1709497416.276:8814): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16168 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2723.201399] audit: type=1326 audit(1709497416.276:8815): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16168 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2723.203783] audit: type=1326 audit(1709497416.277:8816): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16168 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2723.219476] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[ 2723.220502] EXT4-fs (loop1): Can't support bigalloc feature without extents feature
[ 2723.220502] 
[ 2723.233941] audit: type=1326 audit(1709497416.277:8817): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16168 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f0851210ad7 code=0x7ffc0000
[ 2723.252822] audit: type=1326 audit(1709497416.298:8818): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16168 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2723.265337] audit: type=1326 audit(1709497416.298:8819): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16168 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
20:23:36 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2723.268380] audit: type=1326 audit(1709497416.298:8820): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16168 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
20:23:36 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x0, &(0x7f0000000140), 0x8000)

[ 2723.333256] audit: type=1326 audit(1709497416.300:8821): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16168 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2723.378483] audit: type=1326 audit(1709497416.300:8822): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16168 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
20:23:36 executing program 7:
ioctl$BLKTRACETEARDOWN(0xffffffffffffffff, 0x1276, 0x0)
r0 = gettid()
process_vm_readv(r0, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7c}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xb7}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000000080)=""/5, 0x5}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000040)={0xa000000b})
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x6f, 0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_bp={&(0x7f0000000000), 0xa}, 0x0, 0x0, 0x0, 0x8}, r0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x0, &(0x7f0000000140), 0x8000)

20:23:36 executing program 1:
r0 = syz_io_uring_setup(0x24, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@pass_iovec={0x1, 0x6, 0x0, @fd=r0, 0x0, 0x0}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000100)=@IORING_OP_LINK_TIMEOUT, 0x1)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x76d3, 0x0, 0x0, 0x0, 0x0)

20:23:36 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0xffffffff00000000)

20:23:36 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x2000000, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:23:36 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x5c, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x0, &(0x7f0000000140), 0x8000)
set_mempolicy(0x4000, &(0x7f0000000000)=0x113, 0x7)

20:23:36 executing program 2:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f00000000c0)=0x80)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_TIMEOUT={0xb, 0x4, 0x0, 0x0, 0x7f, &(0x7f0000000080)={0x0, 0x3938700}, 0x1, 0x0, 0x1}, 0x0)
r4 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x0)
syz_io_uring_submit(r2, r6, &(0x7f0000000100)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x5, 0x0, 0xfff, 0x3, &(0x7f0000000340)="400f28b2db57f9256bf4065de2cc21d65e13424b7aa5aae9f67bf29e36286b6214ed5b46eb89aa668d2462819f87a0e221f3aafbc9323389bf46abd3b4eb8e54005e0c24048d6cf0287069636b0b2797afaf08ea4e5bdac748ac7a641e857ea5d8965c68e2ddd11d216688891a48aef0c9b3660e7e1284ee993f2434c7eeff3d25a306f257180f467bbc489f7cbd4cf729265a46e8a9458b098a1306df", 0x7fff, 0x0, 0x1, {0x3}}, 0x7)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0xffffffffffffffff, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$SG_GET_VERSION_NUM(0xffffffffffffffff, 0x2282, &(0x7f0000000040))
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$FIOCLEX(r0, 0x5451)

20:23:36 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x7, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:23:36 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
read$eventfd(r3, 0x0, 0x0)
write$binfmt_elf32(r3, &(0x7f0000001e00)={{0x7f, 0x45, 0x4c, 0x46, 0x8, 0x3, 0x4, 0x6, 0x88, 0x2, 0x3, 0x6638, 0x324, 0x38, 0x3df, 0x9, 0x5, 0x20, 0x1, 0x20, 0x2, 0x3f}, [{0x3, 0x2, 0x37c73491, 0xe4, 0x61, 0x7, 0x3, 0x1}, {0x70000000, 0x4, 0x5, 0x0, 0x7, 0x7, 0x401, 0x20}], "5562551fbb92f8e3ce1c8af5349db0bd4c183546b1711d619cc632175123c481acbe03f6743369a39ed73c0fcfcaf87829e0fb9c1dd9904820ddf8f46e84d7baba3939ce1613d2df46b873706b29119af630d496caedb5c919b5f75fa0bd24438a72e2879662f38b1af40d3e71f39ccec482b9dd672fded1169c9a8b8157c04d5e90a722ed4ff299c4d3a8cd46e5ad2f93f2f54d8a6ea4dcc1939c23177113a6a1348ea2effc1c9519bea80b368bf815f7811f873560653636249ef3be1b90463b75235cff95f29a80f7949346169a96974157fdc0afa62ee5c1f53496ccfba056086a145546226901e02262e51c1c35194a8dab7116a50dcd73ed0db4cdd15e2d65e0b666e08fc72cd6f0bfd4c179b0b458b16495c6ae5bc0a511223a1c538d3be5c475b2467f256593516464ad5f85915171cb0005bc06134beefb5cd0f0599a6e4e400dc1cfe74668c8cd00bafe2cb3d9349d9881344cd680852de15c70b4aef647f4252d899aab50b58715a8e931b1bd0e10ff89905744ef9b0582a86871aa31ecf025584992699224ccd9f08fa0c062877efdd24662288f02a9649c267bada0843eb4b2dd5471909a6657effe82ba71e18153b45f741e5be3bb037764d7745505c6368310ff0744bf2b1028250340579ca916e0bf8f5329923ad9d30c7a057b30228e95b8f0a488ba91df307260e84aad3471a526039f8e748f03e654f9977fc9664bb22230a4818e0a9f8094a7627b90ea9af0f3c48b5a10534c0d0d7d3a3877f453ff9de8002b06b2ab529099bf04bb67af5bbfb8f7eaedfec5415123746bfc8206a3adccadac0b8a18bf06d6e0d89e47583124303b0288482ee4e0548f08f8ef2f906402696175baca921abccde33df865428f2661de6706abd92a95efb5b48244682d2f2e81fe6bd07a219252a5cd09cab6a06a7061879251b0ab49daf9309e92d0b18c1b9c006ed276371dac81374e2c6a7bf60a69f03a237c3288f49df877e3473f79692b9954aea046285a2d326df61554269ca1cf4083d1758494e87989f8097a8463fbf7d92087029f6dfbc8bb903372798341acd103f2d6149477ed9d308e3a3fc1489aab1afcfb4b7bb606fec6b0e9595443744c262fc7d01d86d7907f8d8b74bc1fed5669e6a3a5be923537a4f92d83aaf55f9c7fa7f3e7a2291911aed1c4c0991a4dd21be2776a6d02176e99abb17a3f9ab9bf58e91e343bc08e0527e8f851062bc15d0aa89595ac406d8eb6deec25a77a83b0d71d1f55a19158ef3fe568f4bab242cbb40b5ebbe76181b487006f407b1c7c5b3cc1d3bc01a0e6dbcb9a9ee7d3382f884d4fdd5e230f97c91fc61c880da1cae2ca422be513f4765c7cb6052746bff005e30dade34602aef701749e836805311cfd1712f059461e58c53fa8beb9c16da831137135e61b67765c3e6ca31466a45c754703b040f13a7d6d6d88e4091ea803c00175918575f841519002589ba5039d237ed46fa0807d3d82d7b0f09d146e85754c330727b92fee703f1dde9e4e5ac72a7661a921efb4c4cd5ce9d20c64873fcdf107dc324f5d8ab6d4d5634e0da951b970db0ee937686221bbdc55fccda55940ed9180afccab29f51aad84ab177e0d6a1826cfce2435c08d53c6ed50ae2d2f0368b6de5a5df9074afe9d60dea7b1080d052ed326e4e3875834cc1ced86a7951a4297b494a0e73f0cf0cad9e95c805e6c2da36d661bfec65984c885e9835c9474e4fff8c850eddb9e0bdd6606aec59cdf0da29c98fa85f2602fa4cc04677002961eaa64962750e90f66aa181f4053be58dc5d4c2f17b9f9460ecb873f14d477d2ac64b032774066e8e964924dfa58cc80f28a6a2e7eecdc8890096b8434fab23e69a62e9dd3ed7352d6fd4d916c55f256ead0c7f0a04228f7eac380d995277a4f2d15cfa4e9aa45f73fd56d14b8368a31a3069b531fec8e18f11496ace8b8c44db4bb56c5f0362f130a153198701acb8907bdae06875c2bb6808f69a4996ee7f40ebde461035cd9babbd771e3b04bacd7f74f5807746ea7d90ebf377a2c7accea846f9cd63e527c3309af0cb7a746007e3877d37522a50f270541d104aab98a0602c350add4a9b5a546a970006d3333b2933aa089213f2cc007009718487979a83ec88afd1aaf0df2cf6f1fe981c3acc36adbab057c031b83ad4d7d504ec8a00e363a805bc6e0d9c06396d9290af69fb9fe9177a4a8d3bc1ded11ab513d003cd92dd6d16ddc76ee5127147270b550f8c9505a0074bb2cb3b3fa94b70efe148605c820b6e357179f66638dd7e67ef29dc152dd55c0df6718b37f23df8bbcbcf68ca6348b114c613d1e1b4aaf3caf86db4222245cd7422db806c3fab24507f68f17bc0fe4673675cd6ad35f2db8fe60985e55b8dfd316c82935a48de3d56aef189eded382a865fe257bae720d44247d333dc69359d33ea073380f5fabd95c0087ed10b826a0204c9a2ad589ede983b724a32dd19175e29536096c33fa1f2e9d379b697295fe8229892b5e67df3fca50877fd612ef6ee1a10742bfec5da69016ddef5a1f6f4becbb100c4e8636d9d1ad35ceb1a3a19b5a8d3a5d88e9805c859e6a84b9f65ac7918472c7fa53175917dae04a7cc96fcbf2ced61df6f319dae1b7e71674b4f028c4a43b195d13b4f861bd6d6362144fcd9d505ead32ebcdebbbf5c44a250310cd00464f01181270d9e4883ce91711630afe28eace2887cee33761c445e950c130c5b6808e04118b1e9af94d7ae7840085aa5e6cb72e5439c3df79b0c573245dc87e5cc0690b12a29b0bf521bca47a27a194f417168f451ef6fde8cae7f81d584a0a6db47e4d40f81cf428898faabebfadfd4c021bb93e2d86576bac3361113395d1bc4ff2e0dd16ab6adb742febc27a096c2a0298ea95e20bb9963b0bef72e82ec15dd411f1cba404ed909416662e9492f0fce3154e1f8be1935cb33791025075450f328007f9eaee90b951febe59807c07bd4579c8926c60d390821e1306c7897bffc1a68d16dc9a9d8e7a52f220b96d2be027e966db6303c002cba49de36f16ad7611c1440b14d7e25aafc2dc9da7b9a0bd633c13c363aeda216269bfe87e3f80ec7911e39af784342f2b159feac57d5d78697b23bb1f8a3321ff159a9d67579c49c5d045063bb7b57d3a03a3c9e53c30960f408dea9e5e570281c8f1308b7303d21333603e82ce7dd82bed0c55f49b77c2747878ff85ff13833f469e8f26f522cab6d67ae6f62ce7efc901ec40e5495dfaf2f480c3b3819b837952036d6ae00892a6b10af8da0788ecd3019e484626cf3496e3709da50104747ea4ce8dceb5de8b26b89f3b080e99b8ffe0092377330a7c199fb40118188bc754ba70535803a590e9a3e1a7d136b05a0f59300375a82a82418093eabc6db07a7dd571616ba6293ced766f9db435b0f6d17d473f7ec9a4e7d499abc4689a764cde68b93665383d12855e902a1d7a89ba6bde332eb4700d57097004fc74d93c1b46a0ca901289219991c78ed7b38147a184622aea6b04a8faf7f7bb13f2f6ad7ac76006b397e6837f972852fdc482e793eb99d9543a8a9ceda03bba2f22b930411d153dcd86b951f8517889041e20f960fd26ca9f14d0538f82e52bb3aad6a597b53d26490963a51d64fd06225fbf76bc401ecc2a0fffd420a836f629eed7f053d3cc1ef792509483b3e32469ba99298e0328638e3acb01e1a6dff7cdc15f7945ec60f23cb848f05a6ef97ccaac83f3fff73f7deb5dc52da829d339c4b28acdec66fecb18313606fe94334c37eeaafe4590e40306f45ca20c523b95fa7e4891642e627f98b4c3d9d768db9395b2f853c84a9dc239b36cf6828c4df0fd8af10b0bd97ee5fab82f70cefd9686e1971167b76d38c084fd3e6a4982f8a2f2db7483124522459a01197bb9bc3b03d0ead4515d3da3fdad6d37a3e6bbabecb5ac9ea449fcab815893ba7616ff84d5b2b456e85c57bdff024ae432bb737434a88e5241f87697c432f6b11a1860c7ec666b5f54df9a58070b8639f9b55ef1e7a480b6c1f885314f589e12d1e853097578f86cb01b40e02213920a1208fb2ce3aa68cd1d68d4a2b889835d95b8b821c6edf9a84f4346d8a0d8861643e24feebd304c47076d52faace7cb6557d35934cc14cb3b76a1ed0547123f006b9ce205d1f238f31e7cea5f71d2bbd2e7c9c5f1769e09180091453786f6ccbf40f3761cdcacad3ec0a782bbf11a3c58fddf266ef4c1343b4c1b640a825aa3e2b2b24f9181424e488ce48dde9a2b2a267a58bff29657278b6b548f8c61c364a5014f5367006c6a61212fc5f6da62e5aa4a28444cd50a3036590f2830da36c9a111808603814a8bf0722efc214d128c6c7ec382014ce82ad6f3c55aa08230369fac11101bdade5d18da1b40a00c9ef209b891deb0efab27684aad915f8589e23a0072230e39973228adce317eaea9cce3036481853002ca622d1b8f9f41cd5ad7ed179ee3d470c49e3f04806d21a93b2b34a7df55101cefc204488b1e25bce7a085ff09505ebbebbb8f4a6e0cfcda63d4841e80066e8b8c628222a54eeeab9dbdb48ea8bcbf38fe835dedf237743e3fbc1aaeecf3e78930a13db7e700a74ee06a0026b36032a74c0227b21a3022b390a9e147e59cc970ec4d8e1dc890e48e88cd33cd9355ec14a0b9ef9ab70f2516873e7c692ae7fdb364be296ccd882f8dcfdc2dd775354960fb3b41328e0e2a926639700f170ce5185cf3a8df67bca54b51f7b500bc25f3275daee939e8a03b8349b259694d14ecc5b3ae7517bf3d4d79d595f0743cca659b4acbb2475913b719445951fff6f9c0edee1a84058b3180f98efe9e76d8b62dbf540b5ba3b354d1387e74f04ddf8a493fd0187ed95c8779a8e235e19298c7fa91d3b1bb8a79da77c3ceb888d9097ec956279bd7cf2a911f8ee576dd7f4a63b0d759a9cb57c55dd7720933766caf6eaab8e04dc6a4c5930ffa54829f699caa2333d1380e8fb294e872b4373d5a5b7f74fde2c3a315b8614362b3fb45c44cb78f02630bc9797d3a63a0617097f9be0af3f62ca14b34d13d06f1d6c731f3860793aaf12566ac27bea36ce5ccbb54456af67d9c4756a63c1069cd7519ebc0a1984f3460e8d835be01e7d071cc4f75f2527c1bb3c90379c649639f284a01acd14e805726d4de3b0d99a0332420be34c012d496d1a3dbda77334a80ba56d9d70377434cde60498027d9430c650cc22178259f589648d1b644358508d82b860169b968a658aa34be7a69266bb19bc7bf42877322f91d5f4ce9ff645afecf2babe74216fb7fd56a084dd93bec71e8da5f047b667b3986c55bf6072a3149f64b144f83df6f5720524711e73d4b26892a7fbeadc712f6d5809aaed750cf133a3647aab93a5fb9710d1222b43ca636371ac6cbbb421b64e62e6fc76be5015d15fe3fb57e42f2798a8e3d6c467c45aef0761ee76d90c34c2fdc4eaccf0c83d6e6f36fb47711437fc3fa70d75fc4f9775760d15c6a083c81ef06a1c6a38f709ea599e3cadf671dd5a263ba88eb60ebdda5b42c93ce01e5154f40abc43d26701052f734690973cfd113d56ae9a2c6b0ba2b66f0e3e9909f3f8640b03ccd2495041b0c7f466c4dfc067f81b9567fb8ceba3194d315557f1c54cec1f3fcc8e3fc01a10f0389a823bdeeab65b860a018a8b34fcf21a4a72f051504daf53aced2c9eb105eb315323aba87952a78afc840a9a53a442b9e98c3af88d5faafcf8b8f1f80071bc346b93e9bc4b15ff974269a1f889b1340c6730f62fb904138a44143211c", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x1a78)
ioctl$SG_GET_TIMEOUT(0xffffffffffffffff, 0x2202, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000008, 0x11, 0xffffffffffffffff, 0x8000000)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:23:36 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x2}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xbff}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x2200c00, &(0x7f0000012900)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x40000, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x40005, 0x5}, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = inotify_init()
ioctl$FS_IOC_GETFSMAP(r4, 0xc0c0583b, &(0x7f0000000340)={0x0, 0x0, 0xa, 0x0, '\x00', [{0x5, 0xfffffff7, 0x0, 0x8, 0xff, 0x100000000}, {0xfff, 0x2, 0x37, 0x8001, 0x9, 0x8}], ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']})
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_FSYNC={0x3, 0x3, 0x0, @fd_index=0x6}, 0x0)
open(&(0x7f00000002c0)='./file0\x00', 0x2800, 0x80)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000140)=@IORING_OP_WRITE={0x17, 0x5, 0x2007, @fd_index=0x6, 0xe30, &(0x7f00000001c0)="f0fb06ad25e6a99d197a24e682ddb5ae989f8538a9f29e7211f3e7d99813ebb570ebfa7d8d42bb9aa5620b5722b598001a35021ada825435a0bb1ce1", 0x3c, 0x8}, 0x3)
write(r3, &(0x7f0000000240)="01", 0x1)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x2000001, 0x10, r1, 0x0)
syz_io_uring_complete(r5)
write$P9_RREADLINK(r0, &(0x7f0000000140)=ANY=[], 0x10)
openat(0xffffffffffffffff, &(0x7f0000000300)='./file0/file0\x00', 0x650483, 0x120)
sendfile(r0, r2, 0x0, 0x20d315)

20:23:36 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x5c, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0)
sendmsg$inet6(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000016c0)=[{&(0x7f0000000180)="b8ccb940ae658b589385290bc49e5dec058bb18c77d27152486ec24be99e91e596cdebbf61224861435334de3c02382805f738d43385a7aa21ddb51d6d8b780cfd21a81b759f71717d809ff1a95556cbb55c4807146dcb400bcca30e235ec831c9047fd8f612943ceef6893a5f2efb4ff0cb1ba2bb963ef5a5d59553f51997f2ab7d722a06f4b7c92fce99d49c9ca8b8b638e201043b4d5b14f6a24e7c82126afdf2bd863c2abd2b94dedd5b6c9cdae5ff6fb008ae3c", 0xb6}, {&(0x7f0000000240)="1b31423007cec21aa357287d5404bae06e73db2078802fcba971034408719e6ac796bc3210dbcaa4d8071224a16dca960b3b24177de75aa7fca71dfeb9868cb140d131cdc421a5be936ab3e229b693779a2e566d4b3e994f2d3404ac9f85eb40480f34a8d49bcc30178f8d9e18b91f9745fc677e706c25ac36eb2e78f33886912d979720688aa9352bb530cfe5edee239d081ff7bf2c5d33ef5b39db0c9f6e9e7a3f88ad91fa5b30e551682234ef88bfdac7", 0xb2}, {&(0x7f0000000300)="6d6c4259b19aa8fc96fc90c02f4bc4016bef6f8cabed6cf2089f717dabbacbf7113866051e7ba5e4730d24d5e2856500a48b1883594365c667cbe0e9ed1fed833911a68767e7c26c50e70483c6697c97382275573d279f50c964af22dd5295cf01efb3f4f2c77abc9521878e460c5cfeab45279daacdceb2083ab5dc4481f705e05871e3a057cf6d1f09197454192eb5994aad2868971e08a3aab57743710803110c85b149c94def5d86c74fdc4f46aeccefa2eccbda917038eaebdc7d24193ee2bfac33554071a542140e68c201dffa08aec320", 0xd4}, {&(0x7f0000000400)="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", 0x1000}, {&(0x7f0000001400)="315e669a576b27243bf94ad327417dcf3edfc5ed4515cd6e29ba156b2a49028abb3486c298f44526ecec68be0855a14d5baed55cb38f9695a30c522a550e8c2b2edf4621e310b21b31b5473a62ecdf258063a1ff31e195305e2d9cdc74155e9d0e8514e48c77f3b058c3c13f36d9bb144da7be4e45b25b8adbee0620dcd550e4e2228ec518dc", 0x86}, {&(0x7f00000014c0)="ee5a1f581e50d149ac38da353c520aa77f4aeb4852d09d25019b684b16de61c69b46144a44aac341cebecd9ae7c44ca263bad0f067c6a05d8ef6a47b3657c26fd28bf4f992640d81716201db13f8424ad7c4e7fe815be3731f2ff273af70c881d4e68f156770e06bfa4d400935695c771250504bc44ce608900529401dcd4743203003c7027760e8f89014952b2550f601838607706d399a5114786b3ceb5a43363455c13b0af273c33769bf3cbaa740eddf7a7c104fd1e187381e1cf7167dac15a91839f2dfb007c10cebb777b18f1d02e604c56f4b5b69922dcc4a20b798f6cbafcf503d91c66625feb57d05194c4feed5288ced", 0xf5}, {&(0x7f00000000c0)}, {&(0x7f00000015c0)="aca328a2559ffa5f9efc7e94ace1b143cc896e0caefff7ec2baf818aa3147283354394f9f182fc64c11ef46e9fdf474f72b8588c044fe9bb6b62ce3995061add70bab7e3a1c08af99db1", 0x4a}, {&(0x7f0000001640)="ba8e66b2068ba8f03784893aba2b227b89c17f3604e9faf3502e66b279be857afae95cd339aaebf31ea928129620e09159106e81483a3659f81e2026bad7918ac6e1ec46cf1c841d12105aafbec570fc5c113214de5580211df80231713a1685fd3313d2bfefd87087f5e96a04f6c98d16603ed7b187d7", 0x77}], 0x9, &(0x7f0000001780)=[@hopopts={{0x30, 0x29, 0x36, {0x0, 0x2, '\x00', [@padn={0x1, 0x1, [0x0]}, @hao={0xc9, 0x10, @private0={0xfc, 0x0, '\x00', 0x1}}]}}}, @hopopts={{0x1a8, 0x29, 0x36, {0x11, 0x31, '\x00', [@enc_lim={0x4, 0x1, 0x3}, @generic={0x46, 0x7f, "72e2178fe0520b36d91952c84cfbece897a9c32b0539b7acdd7e2e3a1658d6e92ed94339cbaea8c94f6d2a27ad73f20295537ea5a0c1f53a59d80bd501ee4513a464cb73f2268e5e717920bc02f3b3c4d3c66668b050c58f209426771be154545f8fcb4593d1a8e167cfee9699920580a6431ece80964a56dca88a8b74cfb3"}, @jumbo={0xc2, 0x4, 0x2}, @generic={0x4, 0x82, "17e38715623473b19a71863932f36cbd5a61ae5027ab554594dc9913c90f87ed5b341f816a5d229d918c57a90609ec13cc46e15f5eec450d209f57e604f7838c55ae36b4efa6c3438871ac57160a51dbe562c4da566973400efee99739a453cb54c4a334b1c3e6e4f8665f326968a1a6b662089f81f08f7c2f92ee0befdd7fb37cd9"}, @jumbo={0xc2, 0x4, 0x6}, @calipso={0x7, 0x40, {0x3, 0xe, 0x20, 0x2, [0x9, 0x6, 0x4, 0x2, 0xffff, 0x8, 0xffffffffffffffff]}}, @jumbo={0xc2, 0x4, 0xc1}, @enc_lim={0x4, 0x1, 0x81}, @padn={0x1, 0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @calipso={0x7, 0x20, {0x1, 0x6, 0x6, 0x5, [0x66a15d77, 0x8, 0x1]}}]}}}, @dstopts_2292={{0x40, 0x29, 0x4, {0x2b, 0x4, '\x00', [@padn={0x1, 0x2, [0x0, 0x0]}, @jumbo={0xc2, 0x4, 0x6}, @padn={0x1, 0x3, [0x0, 0x0, 0x0]}, @generic={0x2, 0x15, "2f894237993a5082011376a2fd95acf1b6c3ce65d5"}]}}}, @rthdr={{0x68, 0x29, 0x39, {0x87, 0xa, 0x2, 0x20, 0x0, [@dev={0xfe, 0x80, '\x00', 0xa}, @private1, @private1, @remote, @dev={0xfe, 0x80, '\x00', 0x44}]}}}, @dstopts_2292={{0x28, 0x29, 0x4, {0x32, 0x1, '\x00', [@ra={0x5, 0x2, 0xad}, @ra={0x5, 0x2, 0xaacc}, @enc_lim={0x4, 0x1, 0x8}, @enc_lim={0x4, 0x1, 0x7}]}}}, @dstopts_2292={{0xb8, 0x29, 0x4, {0x8, 0x13, '\x00', [@generic={0x20, 0x96, "cfe4fd51b0e70d204fbaca01d70f6379aa9da5e3590c70ccfc0beed25270712d595b3bb2554ca8b198aae12ea520580bb6482fc14a82f7f058bb5cea9ccae43499a8f1952b79b63f4208aea26d148df47655fcb675f4b078017757e30f108a120504e4ec6f4b036d4a4865284e918a78443c831c42fb1b74aa8afbf6347cd99ccbd552ec72bae70e8e622b04749ce69b64ae43a98f72"}, @enc_lim={0x4, 0x1, 0x20}]}}}], 0x360}, 0x800)
set_mempolicy(0x0, &(0x7f0000000140), 0x8000)

20:23:36 executing program 7:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r1, &(0x7f0000000140)={0x2, 0x4e21, @local}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000380)=ANY=[@ANYRES32=<r2=>r1, @ANYBLOB="00000000000000002e2f66696c653200f6b4371731cbf05440d1ed8ce5862d8576839f3ab27ecdae288750c957d70e33d59e95e09a"])
openat(r2, &(0x7f0000000280)='./file1\x00', 0x701f02, 0x2c)
getsockopt$sock_buf(r1, 0x1, 0x1c, 0x0, &(0x7f0000000180))
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f00000002c0)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
r3 = dup(0xffffffffffffffff)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400020820000400008000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f00000005c0)=ANY=[])
mkdirat(r3, &(0x7f0000000340)='./file0\x00', 0x0)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='pagemap\x00')
lseek(r4, 0x0, 0x0)
connect$inet(r4, &(0x7f00000001c0)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x2d}}, 0x10)
r5 = syz_mount_image$vfat(0x0, &(0x7f00000000c0)='./file0\x00', 0x4, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[])
ioctl$BTRFS_IOC_QUOTA_RESCAN(r5, 0x4040942c, &(0x7f0000000040)={0x0, 0x1f9, [0x0, 0xc8a2, 0x0, 0x8000, 0x101, 0x4]})
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x40001, 0x0)
socket$netlink(0x10, 0x3, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e22, @private=0xa010100}, 0x10)
connect$inet(0xffffffffffffffff, &(0x7f0000000240)={0x2, 0x4e22, @empty}, 0x10)

[ 2723.783342] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
[ 2723.808372] FAT-fs (loop7): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2723.898487] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
20:23:50 executing program 4:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x3, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$TIOCSSOFTCAR(0xffffffffffffffff, 0x541a, &(0x7f0000000040)=0x2)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000080)=ANY=[@ANYBLOB="0100000055172b118e2cf4b4", @ANYRES32=<r5=>r0, @ANYBLOB="02000000000000002e2f66696c653000"])
io_uring_enter(r5, 0x2544, 0x7ffb, 0x1, &(0x7f00000000c0)={[0x3]}, 0x8)
r6 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000080)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r9}}, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x4007, @fd_index=0x2, 0xe52, &(0x7f0000000100)=[{&(0x7f0000000600)="67fff7bbe66393967dfb028800777e4003f4fd1be90ee5986b50cf438979903db2b95678d6c514a3056f706b8ad4960d531eaa2f69a190a657d79709014c932d5ea3a60adb077aed1b2e411324c224000b00aa4f3ee52690ce0f2a51681656e1b7ed7eedc80f8eb535aa2f2516a0faea955f966b7285626ff052ec92340a5c50f98c8d1b5ffd486a91d72668a48e4b44dee81e3a787f478abf4c09b9a27e9d1ef121195f3376bab1d1ba780d4b6e02ed08ac48c1634360da7e1b74ee8ad7bc5847a3b45621836261289af7e9fe6480619fbe62a6e21462", 0xd7}], 0x1, 0x19, 0x0, {0x1, r9}}, 0x4)
ioctl$FS_IOC_GETFSMAP(r4, 0xc0c0583b, &(0x7f0000000340)={0x0, 0x0, 0x8, 0x0, '\x00', [{0x3, 0x5, 0x3f, 0x86, 0x8, 0x61d2}, {0x6, 0xffff, 0xa0d, 0x7ff, 0xb96, 0x9}], ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']})

20:23:50 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x3000000, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:23:50 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x8, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:23:50 executing program 1:
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x10800, 0x9, &(0x7f0000000200)=[{&(0x7f0000010000)="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"/1408, 0x580, 0x8000}, {&(0x7f0000010600)="ff43443030310100"/32, 0x20, 0x8800}, {&(0x7f0000010700)="01001700000001000000050018000000010046494c4530000000000000000000", 0x20, 0x9800}, {&(0x7f0000010800)="01000000001700010000050000000018000146494c4530000000000000000000", 0x20, 0xa800}, {&(0x7f0000010900)="2200170000000000001700080000000008007809140b2a3a080200000100000101002200170000000000001700080000000008007809140b2a3a080200000100000101012c00190000000000001964000000000000647809140b2a3a08000000010000010a46494c452e434f4c3b31002600180000000000001800080000000008007809140b2a3a08020000010000010546494c45302a001a0000000000001a0a0000000000000a7809140b2a3a08000000010000010846494c45312e3b31002a001b0000000000001b28230000000023287809140b2a3a08000000010000010846494c45322e3b31002a001b0000000000001b28230000000023287809140b2a3a08000000010000010846494c45332e3b3100"/288, 0x120, 0xb800}, {&(0x7f0000010b00)="2200180000000000001800080000000008007809140b2a3a080200000100000101002200170000000000001700080000000008007809140b2a3a080200000100000101012a0020000000000000201a0400000000041a7809140b2a3a08000000010000010846494c45302e3b3100"/128, 0x80, 0xc000}, {&(0x7f0000010c00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0xc800}, {&(0x7f0000010d00)='syzkallers\x00'/32, 0x20, 0xd000}, {&(0x7f0000010e00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x10000}], 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="00400d621d6e9c2285fb2b5a0216a3fd1216a631b2a4f2904e64d34516ce3dfac760df293aa821e2f8f617f476ccf11e2fef9fc9054ba0a791b3689609763857ddd4a98ae584e2148806223d4a16240daea58f38719a017e9f473a32759dd4181f8b52035ab71b67d29d8a32ec86db3c94ac39cd056d01bccbfe2943efc3f62239cf078b0c90b133a5ba3d6dcd54bdc51ffcf118c5691f0110c1853e0e027fb0ee59a17654241dc0c41f55b8eaa31c54cfd82c6c8290a8fcdc26eab0793c72fc743159286fd3deb6"])

20:23:50 executing program 0:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_io_uring_setup(0x14b3, &(0x7f00000002c0)={0x0, 0xf517, 0x0, 0x0, 0x2}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x1}, 0x0, 0x2, 0x8001, 0x8, 0x0, 0x400000, 0x1, 0x0, 0x0, 0x0, 0x2000000002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = getpgrp(0xffffffffffffffff)
ioctl$TIOCGICOUNT(r0, 0x545d, 0x0)
r5 = openat$full(0xffffffffffffff9c, &(0x7f0000000100), 0x60342, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x3, 0x59, 0x0, 0x81, 0x0, 0xfffffffffffff661, 0x84002, 0x4, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0xad7493bfdb8ce556, @perf_config_ext={0x100000000, 0x8}, 0x8000, 0xbf2, 0x80, 0x9, 0x8, 0x101, 0x3, 0x0, 0x3, 0x0, 0x7}, r4, 0x8, r5, 0xb)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:23:50 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
set_mempolicy(0x0, &(0x7f0000000140), 0x8000)

20:23:50 executing program 7:
openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000000)='cpu.weight.nice\x00', 0x2, 0x0)
move_pages(0x0, 0x2056, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000000), 0x0)
move_pages(0x0, 0x2, &(0x7f0000000040)=[&(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil], &(0x7f0000000080)=[0x8, 0x9, 0x33], &(0x7f00000000c0)=[0x0, 0x0, 0x0], 0x4)

20:23:50 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x227d, &(0x7f0000000040))
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x6, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r3 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
read$eventfd(r3, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_INTERFACE(r3, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0x50, 0x0, 0x0, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x0, 0x7c}}}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0xd}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}, @NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x1}, @NL80211_ATTR_MESH_ID={0xa}]}, 0x50}, 0x1, 0x0, 0x0, 0x4050}, 0x20004012)

[ 2737.713587] kauditd_printk_skb: 57 callbacks suppressed
[ 2737.713604] audit: type=1326 audit(1709497430.816:8880): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16371 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2737.718884] audit: type=1326 audit(1709497430.821:8881): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16371 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2737.723394] audit: type=1326 audit(1709497430.825:8882): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16371 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2737.725752] audit: type=1326 audit(1709497430.825:8883): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16371 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2737.734777] audit: type=1326 audit(1709497430.832:8884): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16371 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f0851210ad7 code=0x7ffc0000
[ 2737.751127] audit: type=1326 audit(1709497430.832:8885): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16371 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
20:23:50 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x5c, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x0, &(0x7f0000000140), 0x8000)
set_mempolicy(0x2, &(0x7f0000000000)=0xc44, 0x8)

[ 2737.780109] audit: type=1326 audit(1709497430.832:8886): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16371 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2737.783425] audit: type=1326 audit(1709497430.841:8887): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16371 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2737.787306] audit: type=1326 audit(1709497430.844:8888): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16371 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
20:23:50 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = perf_event_open$cgroup(&(0x7f0000000180)={0x1, 0x80, 0x1f, 0x40, 0x51, 0x9, 0x0, 0x5, 0x10000, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x101, 0x1, @perf_bp={&(0x7f0000000040), 0x4}, 0x20, 0x1, 0x9, 0x1, 0x3be, 0x9, 0x2, 0x0, 0x82, 0x0, 0x8}, 0xffffffffffffffff, 0xe, 0xffffffffffffffff, 0x9)
writev(r0, &(0x7f0000000340)=[{&(0x7f0000000080)="6751279540cc3ab0522ea4770355d5893754e72f2a53c903eceadbbcd931e59bbf82389fb0e18472396c099a", 0x2c}, {&(0x7f0000000100)="38b47a135d064245686b58d156baee0dd5824ffa31df9aad78fba004d049027ba9", 0x21}, {&(0x7f0000000240)="3ec1391c27c9a15ecafe79010bcdea2f9902446273fe44a6c3f9f03b455e23acfb73ebdd546e0fc7d8797b64e7e3e73f194d985ccb53eef3d9e21e64186e62f76f82a9f00a3cd1eb4eac1573589ddfa1eedbf4b23dfcb4c488ef553ebaefb3dc88d97045771902e0a7", 0x69}], 0x3)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2737.814579] audit: type=1326 audit(1709497430.847:8889): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16371 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
20:24:06 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x9, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:24:06 executing program 2:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
ioctl$SCSI_IOCTL_GET_PCI(r0, 0x5387, &(0x7f0000000040))
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f00000000c0)=ANY=[@ANYBLOB="00000000070000000000e600128086009cef046038aa139cc5a2ff9ffde85952b58f4694d68dafd15be04f1c6859908b80ea1b91b1fcaabf35f87a", @ANYRES32=<r4=>0xffffffffffffffff, @ANYBLOB='\x00\x00\x00\x00\x00\x00'])
fchmod(r0, 0x5)
r5 = epoll_create(0x8)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r6, &(0x7f0000000100)={0x30000000})
epoll_ctl$EPOLL_CTL_MOD(r5, 0x3, r6, &(0x7f00000001c0))
write$binfmt_aout(r6, &(0x7f0000000ec0)=ANY=[@ANYBLOB="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"], 0x45d)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0x10010, r4, 0x8000000)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
ioctl$SG_GET_COMMAND_Q(0xffffffffffffffff, 0x2270, &(0x7f0000000080))
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:24:06 executing program 0:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x80c40, 0x0)
syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r5 = fcntl$dupfd(r0, 0x406, r1)
ioctl$SG_IO(r5, 0x2285, &(0x7f0000000180)={0x0, 0xfffffffffffffffe, 0xb9, 0x1f, @scatter={0x1, 0x0, &(0x7f0000000080)=[{&(0x7f0000000340)=""/228, 0xe4}]}, &(0x7f0000000440)="93398a0a7b967883733fbe2e2afa076b921be1b5d74af7c8cce9f93de230e7ef92181e3d03eea54f7a3126fa65be99646243b3987c3134f01c9fc38d577508baa543ff1bdb0e135a17ecf24c33af5be7b1f0deeef9b1b1851e5f753e9cd484248c3258769a676b8969cd54475726b36d17a294b5c04fa8d94b5244f7ab4cd068a4859c01aaba5c8f9fc5adc3d58bfdc604f1a001b729594d72aa4d3e371dd51e0b82fca9b1d56547099092e3f84525283751e8727ecf5ee44f", &(0x7f0000000500)=""/4096, 0x2, 0x1, 0xffffffffffffffff, &(0x7f0000000100)})

20:24:06 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x4000000, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:24:06 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x2010, r0, 0x0)
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
bind$packet(r3, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0)
write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef)
fsetxattr$security_selinux(r0, 0x0, &(0x7f0000000140)='system_u:object_r:devtty_t:s0\x00', 0x1e, 0x0)
openat(0xffffffffffffffff, 0x0, 0x200, 0x175)
open(&(0x7f00000000c0)='./file0\x00', 0x800, 0x104)
io_uring_enter(0xffffffffffffffff, 0x5075, 0xed90, 0x0, &(0x7f0000000100)={[0x1]}, 0x8)
setsockopt$packet_int(r3, 0x107, 0xc, &(0x7f0000000080), 0x4)
syz_io_uring_complete(r1)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0x7}}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611)
socket$packet(0x11, 0x2, 0x300)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0xf6, 0x0, 0x1, 0x9, 0x6, @multicast}, 0x14)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'syz_tun\x00'})

20:24:06 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1, 0x2})
ioctl$TIOCL_UNBLANKSCREEN(r0, 0x541c, &(0x7f0000000040))
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:24:06 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x5c, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x0, &(0x7f0000000140)=0x6, 0x392)

20:24:06 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3167, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000002c0)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = dup2(r3, r3)
r5 = io_uring_setup(0x3, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x3, 0x31f, 0x0, r0})
syz_io_uring_submit(r1, r2, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
io_uring_enter(r0, 0x76d3, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x6}, 0x4202}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = fsmount(0xffffffffffffffff, 0x0, 0x8)
execveat(r6, &(0x7f0000000000)='./file0\x00', &(0x7f00000005c0)=[&(0x7f0000000400)='\x00', &(0x7f0000000440)='\x00', &(0x7f0000000480)='\x00', 0x0, &(0x7f0000000500)='\x00', &(0x7f0000000540)='\x00', &(0x7f0000000580)='\x00'], 0x0, 0x1000)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_READ_VERITY_METADATA(r5, 0xc0286687, &(0x7f00000000c0)={0x1, 0x1, 0x19, &(0x7f0000000080)=""/25})
dup2(r5, r4)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r7, 0x0)

[ 2753.721927] kauditd_printk_skb: 32 callbacks suppressed
[ 2753.721940] audit: type=1326 audit(1709497446.824:8922): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16422 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2753.725105] audit: type=1326 audit(1709497446.824:8923): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16422 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2753.727406] audit: type=1326 audit(1709497446.828:8924): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16422 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2753.736722] audit: type=1326 audit(1709497446.830:8925): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16422 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2753.750261] audit: type=1326 audit(1709497446.830:8926): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16422 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2753.761687] audit: type=1326 audit(1709497446.835:8927): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16422 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0851210b19 code=0x7ffc0000
[ 2753.772097] audit: type=1326 audit(1709497446.844:8928): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16422 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f0851210ad7 code=0x7ffc0000
[ 2753.801936] audit: type=1326 audit(1709497446.844:8929): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16422 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2753.805200] audit: type=1326 audit(1709497446.856:8930): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16422 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
[ 2753.816656] audit: type=1326 audit(1709497446.856:8931): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=16422 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f08511c3ab7 code=0x7ffc0000
20:24:06 executing program 0:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$VT_WAITACTIVE(r0, 0x5607)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:24:06 executing program 2:
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:24:06 executing program 3:
r0 = gettid()
process_vm_readv(r0, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7a}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xffffffbc}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0xa)
r2 = gettid()
process_vm_readv(r2, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7a}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xffffffbc}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3}, r2, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = dup3(r1, r1, 0x0)
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x5, 0x20, 0x9, 0xfd, 0x0, 0xfffffffffffffe7a, 0x90, 0x2, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1000, 0x1, @perf_bp={&(0x7f0000000000), 0x4}, 0x4840, 0x1000, 0x2, 0x3, 0x7fffffff, 0xa605, 0x843, 0x0, 0x5ef, 0x0, 0x3}, r2, 0xf, r3, 0x2)
set_mempolicy(0x0, &(0x7f0000000140), 0x8000)

20:24:06 executing program 7:
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r1, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r2, 0x2})
write$rfkill(r1, &(0x7f0000000040)={0x2, 0x5, 0x2}, 0x8)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$rfkill(r0, &(0x7f00000000c0)={0x0, 0x0, 0x3, 0x1}, 0x8)

20:24:07 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x2010, r0, 0x0)
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
bind$packet(r3, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0)
write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef)
fsetxattr$security_selinux(r0, 0x0, &(0x7f0000000140)='system_u:object_r:devtty_t:s0\x00', 0x1e, 0x0)
openat(0xffffffffffffffff, 0x0, 0x200, 0x175)
open(&(0x7f00000000c0)='./file0\x00', 0x800, 0x104)
io_uring_enter(0xffffffffffffffff, 0x5075, 0xed90, 0x0, &(0x7f0000000100)={[0x1]}, 0x8)
setsockopt$packet_int(r3, 0x107, 0xc, &(0x7f0000000080), 0x4)
syz_io_uring_complete(r1)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0x7}}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611)
socket$packet(0x11, 0x2, 0x300)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0xf6, 0x0, 0x1, 0x9, 0x6, @multicast}, 0x14)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'syz_tun\x00'})

20:24:07 executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 2754.041004] 
[ 2754.041203] ======================================================
[ 2754.041831] WARNING: possible circular locking dependency detected
[ 2754.042461] 5.10.211 #1 Not tainted
[ 2754.042831] ------------------------------------------------------
[ 2754.043507] syz-executor.7/16458 is trying to acquire lock:
[ 2754.044092] ffff8880183f0ae8 ((work_completion)(&hdev->tx_work)){+.+.}-{0:0}, at: __flush_work+0xdd/0xa90
[ 2754.045108] 
[ 2754.045108] but task is already holding lock:
[ 2754.045703] ffff8880183f0f40 (&hdev->req_lock){+.+.}-{3:3}, at: hci_dev_do_close+0xef/0x1240
[ 2754.046598] 
[ 2754.046598] which lock already depends on the new lock.
[ 2754.046598] 
[ 2754.047433] 
[ 2754.047433] the existing dependency chain (in reverse order) is:
[ 2754.048187] 
[ 2754.048187] -> #3 (&hdev->req_lock){+.+.}-{3:3}:
[ 2754.051384]        __mutex_lock+0x13d/0x10b0
[ 2754.051826]        hci_dev_do_close+0xef/0x1240
[ 2754.052289]        hci_rfkill_set_block+0x166/0x1a0
[ 2754.052787]        rfkill_set_block+0x1fd/0x540
[ 2754.053277]        rfkill_fop_write+0x253/0x4b0
[ 2754.053746]        vfs_write+0x29a/0xa70
[ 2754.054181]        ksys_write+0x1f6/0x260
[ 2754.054597]        do_syscall_64+0x33/0x40
[ 2754.055034]        entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2754.055621] 
[ 2754.055621] -> #2 (rfkill_global_mutex){+.+.}-{3:3}:
[ 2754.056320]        __mutex_lock+0x13d/0x10b0
[ 2754.056777]        rfkill_register+0x36/0xa10
[ 2754.057227]        hci_register_dev+0x42e/0xc00
[ 2754.057719]        __vhci_create_device+0x2c8/0x5c0
[ 2754.058250]        vhci_open_timeout+0x38/0x50
[ 2754.058704]        process_one_work+0x9a9/0x14b0
[ 2754.059240]        worker_thread+0x61d/0x1310
[ 2754.059689]        kthread+0x38f/0x470
[ 2754.060081]        ret_from_fork+0x22/0x30
[ 2754.060490] 
[ 2754.060490] -> #1 (&data->open_mutex){+.+.}-{3:3}:
[ 2754.061173]        __mutex_lock+0x13d/0x10b0
[ 2754.061620]        vhci_send_frame+0x63/0xa0
[ 2754.062070]        hci_send_frame+0x1b9/0x320
[ 2754.062535]        hci_tx_work+0x10af/0x1660
[ 2754.063013]        process_one_work+0x9a9/0x14b0
[ 2754.063538]        worker_thread+0x61d/0x1310
[ 2754.063981]        kthread+0x38f/0x470
[ 2754.064421]        ret_from_fork+0x22/0x30
[ 2754.064832] 
[ 2754.064832] -> #0 ((work_completion)(&hdev->tx_work)){+.+.}-{0:0}:
[ 2754.065649]        __lock_acquire+0x29e7/0x5b00
[ 2754.066156]        lock_acquire+0x197/0x470
[ 2754.066594]        __flush_work+0x105/0xa90
[ 2754.067070]        hci_dev_do_close+0x131/0x1240
[ 2754.067562]        hci_rfkill_set_block+0x166/0x1a0
[ 2754.068079]        rfkill_set_block+0x1fd/0x540
[ 2754.068583]        rfkill_fop_write+0x253/0x4b0
[ 2754.069060]        vfs_write+0x29a/0xa70
[ 2754.069514]        ksys_write+0x1f6/0x260
[ 2754.069925]        do_syscall_64+0x33/0x40
[ 2754.070377]        entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2754.070966] 
[ 2754.070966] other info that might help us debug this:
[ 2754.070966] 
[ 2754.071799] Chain exists of:
[ 2754.071799]   (work_completion)(&hdev->tx_work) --> rfkill_global_mutex --> &hdev->req_lock
[ 2754.071799] 
[ 2754.073197]  Possible unsafe locking scenario:
[ 2754.073197] 
[ 2754.073818]        CPU0                    CPU1
[ 2754.074300]        ----                    ----
[ 2754.074784]   lock(&hdev->req_lock);
[ 2754.075196]                                lock(rfkill_global_mutex);
[ 2754.075888]                                lock(&hdev->req_lock);
[ 2754.076559]   lock((work_completion)(&hdev->tx_work));
[ 2754.077114] 
[ 2754.077114]  *** DEADLOCK ***
[ 2754.077114] 
[ 2754.077743] 2 locks held by syz-executor.7/16458:
[ 2754.078249]  #0: ffffffff8561a828 (rfkill_global_mutex){+.+.}-{3:3}, at: rfkill_fop_write+0xff/0x4b0
[ 2754.079280]  #1: ffff8880183f0f40 (&hdev->req_lock){+.+.}-{3:3}, at: hci_dev_do_close+0xef/0x1240
[ 2754.080310] 
[ 2754.080310] stack backtrace:
[ 2754.080789] CPU: 0 PID: 16458 Comm: syz-executor.7 Not tainted 5.10.211 #1
[ 2754.081573] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2754.082477] Call Trace:
[ 2754.082760]  dump_stack+0x107/0x167
[ 2754.083158]  check_noncircular+0x263/0x2e0
[ 2754.083603]  ? register_lock_class+0xbb/0x17b0
[ 2754.084085]  ? print_circular_bug+0x470/0x470
[ 2754.084565]  ? stack_trace_consume_entry+0x160/0x160
[ 2754.085105]  ? alloc_chain_hlocks+0x342/0x5a0
[ 2754.085572]  __lock_acquire+0x29e7/0x5b00
[ 2754.086017]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2754.086569]  ? rwlock_bug.part.0+0x90/0x90
[ 2754.087027]  lock_acquire+0x197/0x470
[ 2754.087424]  ? __flush_work+0xdd/0xa90
[ 2754.087836]  ? lock_release+0x680/0x680
[ 2754.088238]  ? lock_release+0x680/0x680
[ 2754.088651]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2754.089209]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2754.089792]  ? trace_hardirqs_on+0x5b/0x180
[ 2754.090259]  __flush_work+0x105/0xa90
[ 2754.090672]  ? __flush_work+0xdd/0xa90
[ 2754.091103]  ? queue_delayed_work_on+0xe0/0xe0
[ 2754.091593]  ? hci_dev_do_close+0xef/0x1240
[ 2754.092062]  ? __cancel_work_timer+0x2a9/0x4c0
[ 2754.092511]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2754.093015]  ? mutex_lock_io_nested+0xf30/0xf30
[ 2754.093476]  hci_dev_do_close+0x131/0x1240
[ 2754.093886]  ? rfkill_set_block+0x18f/0x540
[ 2754.094304]  ? hci_dev_open+0x350/0x350
[ 2754.094689]  ? mark_held_locks+0x9e/0xe0
[ 2754.095094]  hci_rfkill_set_block+0x166/0x1a0
[ 2754.095524]  ? hci_power_off+0x20/0x20
[ 2754.095897]  rfkill_set_block+0x1fd/0x540
[ 2754.096302]  rfkill_fop_write+0x253/0x4b0
[ 2754.096702]  ? rfkill_sync_work+0xa0/0xa0
[ 2754.097111]  ? security_file_permission+0x24e/0x570
[ 2754.097590]  ? rfkill_sync_work+0xa0/0xa0
[ 2754.097996]  vfs_write+0x29a/0xa70
[ 2754.098350]  ksys_write+0x1f6/0x260
[ 2754.098704]  ? __ia32_sys_read+0xb0/0xb0
[ 2754.099104]  ? ksys_write+0x260/0x260
[ 2754.099475]  do_syscall_64+0x33/0x40
[ 2754.099838]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[ 2754.100331] RIP: 0033:0x7fbe68e5db19
[ 2754.100698] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2754.102435] RSP: 002b:00007fbe663d3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2754.103171] RAX: ffffffffffffffda RBX: 00007fbe68f70f60 RCX: 00007fbe68e5db19
[ 2754.103853] RDX: 0000000000000008 RSI: 00000000200000c0 RDI: 0000000000000004
[ 2754.104533] RBP: 00007fbe68eb7f6d R08: 0000000000000000 R09: 0000000000000000
[ 2754.105214] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2754.105895] R13: 00007ffe4ff51d6f R14: 00007fbe663d3300 R15: 0000000000022000
20:24:07 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x5000000, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])

20:24:07 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x5c, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$netlink(0x10, 0x3, 0x1)
set_mempolicy(0x0, &(0x7f0000000140), 0x8000)

20:24:07 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0xe, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff)
ioprio_get$pid(0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0)
dup2(r0, r1)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000)
r2 = creat(&(0x7f0000000480)='./file0\x00', 0xa0)
statx(r2, &(0x7f0000000340)='./file0\x00', 0x4000, 0x2, &(0x7f0000000240))
syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xca0b, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140))
r3 = getpgrp(0x0)
setpriority(0x1, r3, 0x0)

20:24:07 executing program 2:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r1 = syz_io_uring_setup(0x804d4b, &(0x7f0000000180)={0x0, 0x0, 0x8, 0x1, 0x237}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140))
syz_io_uring_submit(r2, 0x0, &(0x7f0000000000)=@IORING_OP_FILES_UPDATE={0x14, 0x1, 0x0, 0x0, 0x2, &(0x7f0000000240)=[0xffffffffffffffff, r1, r0, 0xffffffffffffffff, r0], 0x5, 0x0, 0x1}, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x5, 0xfffffffffffffece, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x22488, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x180, 0x0, @perf_bp={0x0}, 0x600, 0x0, 0x8001, 0x7, 0x0, 0x400000, 0x1, 0x0, 0x2}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000080)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x6, 0x4000, @fd_index=0x3, 0x4, 0x0, 0x0, 0x9, 0x1, {0x3, r6}}, 0x0)
r7 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x300000c, 0x10, 0xffffffffffffffff, 0x10000000)
syz_io_uring_submit(r4, r7, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x0, 0x0, 0x0, 0x0, 0x23456}, 0x2)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0xd02c2, 0x0)
ioctl$KDFONTOP_COPY(r0, 0x4b72, &(0x7f0000000100)={0x3, 0x0, 0xc, 0x8, 0x1c0, &(0x7f0000000340)})
r9 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x11)
writev(r8, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
setsockopt$inet6_tcp_int(r8, 0x6, 0x2, &(0x7f0000000140), 0x4)
ioctl$EXT4_IOC_MOVE_EXT(r8, 0xc028660f, &(0x7f0000000040)={0x0, r9, 0x2})
ioctl$TIOCSTI(r9, 0x5412, &(0x7f00000000c0)=0xb5)

20:24:07 executing program 0:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$sg(0x0, 0x80, 0x200)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
creat(&(0x7f0000000040)='./file0\x00', 0x110)

20:24:07 executing program 3:
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="2321202e2f66696c6530202b4023275b277c037d262c0a2169c4b9ee1eed7b4d039841d54c9058033600001400000090ef8689952206e4f8cb5c1ca887765c1b2f27b3a828ad7903a10ab07294db239194467d4eadebd9b70ad474f370508d0eebdad464b169ec70ddb24d3667de6f719f60fc81c3a291a47788e7763682a9b1edefbc9a2334"], 0x82)
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x5c, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x0, &(0x7f0000000140), 0x8000)
sendfile(r0, r0, 0x0, 0x6)
set_mempolicy(0x4000, &(0x7f0000000000)=0x1, 0xaf7)

20:24:07 executing program 1:
r0 = gettid()
process_vm_readv(r0, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7a}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xffffffbc}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0xa)
r2 = gettid()
process_vm_readv(r2, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7a}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xffffffbc}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3}, r2, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = dup3(r1, r1, 0x0)
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x5, 0x20, 0x9, 0xfd, 0x0, 0xfffffffffffffe7a, 0x90, 0x2, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1000, 0x1, @perf_bp={&(0x7f0000000000), 0x4}, 0x4840, 0x1000, 0x2, 0x3, 0x7fffffff, 0xa605, 0x843, 0x0, 0x5ef, 0x0, 0x3}, r2, 0xf, r3, 0x2)
set_mempolicy(0x0, &(0x7f0000000140), 0x8000)

20:24:07 executing program 5:
getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000180)={r0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x5700000, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="02000000030000", 0x7, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f61636c2c029daa63181f82bc876bf37da11aac"])


VM DIAGNOSIS:
20:24:07  Registers:
info registers vcpu 0
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff822d019c RDI=ffffffff879eb280 RBP=ffffffff879eb240 RSP=ffff88804a35f2a8
R8 =0000000000000001 R9 =0000000000000003 R10=000000000000000a R11=0000000000000001
R12=0000000000000020 R13=fffffbfff0f3d69d R14=fffffbfff0f3d652 R15=dffffc0000000000
RIP=ffffffff822d01f0 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007fbe663d3700 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000555555c4b098 CR3=000000001b3ac000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffffffffffffffff
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000
XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000001 RBX=ffffffff81301240 RCX=1ffff1100d9e1201 RDX=dffffc0000000000
RSI=ffff88806cf09fc8 RDI=ffff88806cf096a8 RBP=ffff88806cf09720 RSP=ffff88806cf09680
R8 =0000000000000001 R9 =0000000000000001 R10=0000000000032042 R11=1ffff1100d9e12c0
R12=ffff88806cf09750 R13=0000000000000000 R14=1ffff1100d9e12c0 R15=ffffffff85d3f100
RIP=ffffffff8110867f RFL=00000086 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007fcaf039c700 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000000000000000 CR3=000000004807e000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffffffffffffffff
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000
XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000