LOW_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}}}, @NFTA_SET_EXPR={0xc, 0x11, 0x0, 0x1, @dup={{0x8}, @void}}]}, 0x78}, 0x1, 0x0, 0x0, 0x20000001}, 0x800)
pipe(&(0x7f0000001880)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r3, 0x89f3, &(0x7f0000000340)={'tunl0\x00', &(0x7f00000002c0)={'erspan0\x00', 0x0, 0x80, 0x7800, 0x9, 0x480d6117, {{0x15, 0x4, 0x2, 0x2f, 0x54, 0x64, 0x0, 0x7, 0x29, 0x0, @multicast1, @private=0xa010102, {[@timestamp={0x44, 0x1c, 0xf5, 0x0, 0x0, [0xfffffffd, 0x4, 0x61e, 0x1f, 0x800, 0x9]}, @lsrr={0x83, 0x7, 0xcf, [@broadcast]}, @end, @cipso={0x86, 0x15, 0x0, [{0x1, 0xf, "6913402b5bf4274da1f5c43a56"}]}, @noop, @end, @ra={0x94, 0x4, 0x1}]}}}}})

14:59:02 executing program 1:
r0 = syz_io_uring_setup(0x36bd, &(0x7f0000000200)={0x0, 0x0, 0x2, 0x7ffffd, 0x61}, &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007df000/0x4000)=nil, &(0x7f0000000000), &(0x7f0000000040))
mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x3000008, 0x30, r0, 0x10000000)
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x2000005, 0x13, r0, 0x10000000)
r1 = epoll_create1(0x0)
syz_read_part_table(0x6, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="7d9c58fc2b81b78fc920ed4ded32419ec5b7df7600f80d36cf21e0605d786058b74b0105d32b010878222e33db6c4f108f988ce93c00dcabe7905fb09108ac207df8b794", 0x44, 0x1}])
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080)={0x40000000})

14:59:02 executing program 0:
r0 = epoll_create(0x8)
epoll_wait(r0, &(0x7f0000000000), 0x0, 0x1)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
prctl$PR_GET_SECUREBITS(0x1b)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})
epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, 0xffffffffffffffff)

14:59:02 executing program 2:
syz_io_uring_setup(0x479e, &(0x7f0000000040)={0x0, 0x2000000, 0x0, 0x0, 0x10001}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00009c2000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000001100))
syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:02 executing program 5:
pipe(&(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = io_uring_setup(0x1006f2e, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0})
pipe(&(0x7f0000000140)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
syz_io_uring_setup(0x1ac9, &(0x7f0000000340)={0x0, 0x5669, 0x4, 0x1, 0x1b6}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000003c0), &(0x7f0000000400))
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000180)={0x1000, 0x6, 0x0, 'queue1\x00', 0x9})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x10000000)
pipe(&(0x7f0000005500)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmsg$IPSET_CMD_PROTOCOL(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="2400000001060e0200000000000000000000000614000000000000000500010007000000"], 0x24}, 0x1, 0x0, 0x0, 0x15}, 0x40080)
sendmsg$NFQNL_MSG_VERDICT_BATCH(r3, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000500)={&(0x7f0000000580)=ANY=[@ANYBLOB="500000100303030000000000000000000220000008000340fffff8cf080003400000aa4d0c000200fffffffc000000090c000200fffffffb000000000c000200fffffffeff000340000000083a10bbdee469899ddc12"], 0x50}, 0x1, 0x0, 0x0, 0x40046000}, 0x4000000)
ioctl$PTP_PIN_GETFUNC(r4, 0xc0603d06, 0x0)
io_uring_setup(0x6727, &(0x7f0000000000)={0x0, 0x9ed2, 0x20, 0x0, 0x164, 0x0, r4})

[ 1478.356350][ T7328] FAULT_INJECTION: forcing a failure.
[ 1478.356350][ T7328] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1478.369451][ T7328] CPU: 1 PID: 7328 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1478.378124][ T7328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1478.388182][ T7328] Call Trace:
[ 1478.391449][ T7328]  dump_stack_lvl+0xb7/0x103
[ 1478.396066][ T7328]  dump_stack+0x11/0x1a
[ 1478.400226][ T7328]  should_fail+0x23c/0x250
14:59:02 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
r1 = accept(0xffffffffffffffff, &(0x7f0000000000)=@x25={0x9, @remote}, &(0x7f0000000100)=0x80)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_STOP_AP(r1, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x28, 0x0, 0x100, 0x70bd25, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x1, 0x7}}}}, ["", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x8000}, 0x40)

[ 1478.404656][ T7328]  should_fail_usercopy+0x16/0x20
[ 1478.409749][ T7328]  copy_page_from_iter+0x1fe/0x530
[ 1478.414860][ T7328]  process_vm_rw_single_vec+0x294/0x460
[ 1478.420840][ T7328]  process_vm_rw+0x347/0x4e0
[ 1478.425426][ T7328]  ? fsnotify_perm+0x59/0x2e0
[ 1478.430155][ T7328]  ? __fsnotify_parent+0x32f/0x430
[ 1478.435265][ T7328]  ? get_pid_task+0x8b/0xc0
[ 1478.439789][ T7328]  ? vfs_write+0x50c/0x770
[ 1478.444248][ T7328]  ? __fget_light+0x21b/0x260
[ 1478.448921][ T7328]  ? __cond_resched+0x11/0x40
14:59:03 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
io_uring_setup(0x56df, &(0x7f0000000100)={0x0, 0x244c, 0x4, 0x2, 0x24f, 0x0, r1})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(0xffffffffffffffff, 0xc02c5341, &(0x7f0000000000))
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000180), 0x90000, 0x0)

[ 1478.453652][ T7328]  ? fput+0x2d/0x130
[ 1478.457603][ T7328]  __x64_sys_process_vm_writev+0x76/0x90
[ 1478.463226][ T7328]  do_syscall_64+0x3d/0x90
[ 1478.467660][ T7328]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1478.473552][ T7328] RIP: 0033:0x4665e9
[ 1478.477525][ T7328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1478.497133][ T7328] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:03 executing program 5:
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r0, 0xc0505350, &(0x7f0000000200)={{0x1, 0x3}, {0x4, 0xa6}, 0x1f, 0x4, 0x1})
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0x40a85323, &(0x7f0000000140)={{0x5, 0x5}, 'port1\x00', 0x2a, 0x1e0825, 0x8000, 0xfffffc01, 0x3, 0x4, 0x20, 0x0, 0x1, 0x5})
request_key(&(0x7f0000000000)='syzkaller\x00', &(0x7f0000000040)={'syz', 0x3}, &(0x7f0000000100)='\xaa}}\x00', 0xffffffffffffffff)
r1 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x10000000)

14:59:03 executing program 2:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100))
syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
r0 = getpid()
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r1, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x30, 0x3, 0x8, 0x201, 0x0, 0x0, {0x7, 0x0, 0xa}, [@CTA_TIMEOUT_DATA={0x1c, 0x4, 0x0, 0x1, @fccp=[@CTA_TIMEOUT_DCCP_REQUEST={0x8, 0x1, 0x1, 0x0, 0x8}, @CTA_TIMEOUT_DCCP_RESPOND={0x8, 0x2, 0x1, 0x0, 0x40}, @CTA_TIMEOUT_DCCP_REQUEST={0x8, 0x1, 0x1, 0x0, 0x2}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000}, 0x40)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
syz_io_uring_setup(0x2d2a, &(0x7f0000000040)={0x0, 0x925e, 0x2, 0x3, 0xd0, 0x0, r2}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000e35000/0x3000)=nil, 0xfffffffffffffffc, &(0x7f00000000c0))

[ 1478.505786][ T7328] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1478.513755][ T7328] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005985
[ 1478.521719][ T7328] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1478.529687][ T7328] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1478.537653][ T7328] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:03 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x388, 0x0)

14:59:03 executing program 3 (fault-call:3 fault-nth:26):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:03 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})

14:59:03 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)
r2 = syz_io_uring_setup(0x2311, &(0x7f0000000040), &(0x7f00007db000/0x4000)=nil, &(0x7f00007dd000/0x1000)=nil, &(0x7f0000000480), &(0x7f00000002c0))
r3 = mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x0, 0x13, r2, 0x10000000)
syz_io_uring_setup(0x220, &(0x7f0000000380)={0x0, 0xbde4, 0x20, 0x2, 0xee}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00007dc000/0x1000)=nil, &(0x7f0000000400), &(0x7f0000000440))
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000100))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r5, 0xc0603d06, 0x0)
sendmsg$IPSET_CMD_SAVE(r5, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000300)={&(0x7f0000000180)={0x68, 0x8, 0x6, 0x201, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x68}}, 0x4000000)
syz_io_uring_submit(r4, r3, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
syz_io_uring_submit(r1, r3, &(0x7f0000000080)=@IORING_OP_OPENAT={0x12, 0x5, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)='./file0\x00', 0xa4, 0x84440, 0x23456}, 0x8)

14:59:03 executing program 5:
r0 = io_uring_setup(0x54e6, &(0x7f0000000100)={0x0, 0x3744, 0x20, 0x4, 0x4})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
r1 = io_uring_setup(0x652, &(0x7f0000000000)={0x0, 0xbfd7, 0x22, 0x0, 0x100, 0x0, r0})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x6, 0x30, r1, 0x10000000)

14:59:03 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f00000000c0), 0x8000, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000100)={0x40002000})
openat$cgroup_procs(r1, &(0x7f0000000000)='cgroup.threads\x00', 0x2, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r3, &(0x7f0000000080)={0x1})
pipe(&(0x7f0000000140)={<r4=>0xffffffffffffffff})
ioctl$SCSI_IOCTL_GET_BUS_NUMBER(r4, 0x5386, &(0x7f0000000180))

14:59:03 executing program 5:
times(&(0x7f0000000000))
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x42b9, 0x2, 0x2, 0x2aa})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

14:59:03 executing program 1:
r0 = syz_io_uring_setup(0x20002350, &(0x7f0000000200), &(0x7f0000ffe000/0x1000)=nil, &(0x7f00007dd000/0x4000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
mmap$IORING_OFF_SQES(&(0x7f00007dd000/0x1000)=nil, 0x1000, 0x4, 0x1c030, r2, 0x10000000)
openat$cgroup_procs(r1, &(0x7f0000000040)='tasks\x00', 0x2, 0x0)
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)

[ 1478.796325][ T7388] FAULT_INJECTION: forcing a failure.
[ 1478.796325][ T7388] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1478.809518][ T7388] CPU: 0 PID: 7388 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1478.818249][ T7388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1478.828293][ T7388] Call Trace:
[ 1478.831562][ T7388]  dump_stack_lvl+0xb7/0x103
[ 1478.836149][ T7388]  dump_stack+0x11/0x1a
[ 1478.840338][ T7388]  should_fail+0x23c/0x250
14:59:03 executing program 2:
syz_io_uring_setup(0x39ac, &(0x7f0000000080)={0x0, 0x2, 0x4, 0x8003}, &(0x7f0000b8d000/0x3000)=nil, &(0x7f0000b8f000/0x2000)=nil, &(0x7f0000000340), &(0x7f0000000040)=<r0=>0x0)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT_REMOVE, 0xb6f1b91)
syz_io_uring_submit(r1, r0, &(0x7f00000002c0)=@IORING_OP_FSYNC={0x3, 0x5, 0x0, @fd_index=0x8, 0x0, 0x0, 0x0, 0x1, 0x1}, 0x5)
r2 = getpid()
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
sendmsg$nl_netfilter(r3, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000140)=ANY=[@ANYBLOB="dc0000000b0601012dbd7000fcdbdf2507000003c6008780266056f6ad0d651d75b0eac817a56ad9a2035ae735a62ecd9963dd497b59c4ed5f438ccc0193d00852eefa6d4809b0c8cfbf62f8bde14d06e7eec7e8d6514b61bb84fbff211a7b50e621d51cdd50612c17bb4442059d49259cf3bd8bad46d24bcdbab3422b7f92bdfe70c3ae6e1b355c9c8af2aaab06ae45afcc0d25ea021824600ed56648ec174970e0c4fe83d0b300effc65e3d2bf747ddedb775088b310e9d20793497ff916a37c2b9b5bc7e112c0ca7008001e009900000008007a00", @ANYRES32=r2, @ANYBLOB='\x00 '], 0xdc}, 0x1, 0x0, 0x0, 0x40000}, 0x4)
process_vm_writev(r2, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)
epoll_create1(0x80000)
r4 = getpid()
sched_setscheduler(r4, 0x5, &(0x7f0000000380)=0x8)

14:59:03 executing program 0:
sendmsg$BATADV_CMD_GET_HARDIF(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x60, 0x0, 0x400, 0x70bd2b, 0x25dfdbfe, {}, [@BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x2}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0xfffffeff}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @multicast}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x9}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000804}, 0x4000)
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_dev$sg(&(0x7f0000000000), 0xfff, 0x10000)
ioctl$SG_GET_PACK_ID(r2, 0x227c, &(0x7f0000000080))
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})

[ 1478.844756][ T7388]  should_fail_usercopy+0x16/0x20
[ 1478.849849][ T7388]  copy_page_from_iter+0x1fe/0x530
[ 1478.854956][ T7388]  process_vm_rw_single_vec+0x294/0x460
[ 1478.860493][ T7388]  process_vm_rw+0x347/0x4e0
[ 1478.865104][ T7388]  ? fsnotify_perm+0x59/0x2e0
[ 1478.869779][ T7388]  ? __fsnotify_parent+0x32f/0x430
[ 1478.874889][ T7388]  ? get_pid_task+0x8b/0xc0
[ 1478.879388][ T7388]  ? vfs_write+0x50c/0x770
[ 1478.883816][ T7388]  ? __fget_light+0x21b/0x260
[ 1478.888482][ T7388]  ? __cond_resched+0x11/0x40
[ 1478.893169][ T7388]  ? fput+0x2d/0x130
14:59:03 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x389, 0x0)

[ 1478.897055][ T7388]  __x64_sys_process_vm_writev+0x76/0x90
[ 1478.902774][ T7388]  do_syscall_64+0x3d/0x90
[ 1478.907185][ T7388]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1478.913079][ T7388] RIP: 0033:0x4665e9
[ 1478.916962][ T7388] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1478.936651][ T7388] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:03 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000000)={0x4000000a})
epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r1)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})

14:59:03 executing program 5:
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
sendmsg$NFT_MSG_GETSET(r0, &(0x7f0000000580)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000540)={&(0x7f0000000200)={0x304, 0xa, 0xa, 0x5, 0x0, 0x0, {0xa, 0x0, 0x8}, [@NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x13}, @NFTA_SET_POLICY={0x8}, @NFTA_SET_DESC={0x2d8, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_DESC_CONCAT={0x54, 0x2, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6}]}, {0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1ff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x37d}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x101}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6c}]}]}, @NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0xe1}, @NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x3ff}, @NFTA_SET_DESC_CONCAT={0x5c, 0x2, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfa}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x100}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3ff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}]}]}, @NFTA_SET_DESC_CONCAT={0xa0, 0x2, 0x0, 0x1, [{0x54, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x100}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfff000}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xa488}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6bca}]}, {0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x12f}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x180000}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x674}]}]}, @NFTA_SET_DESC_CONCAT={0x5c, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xff}]}, {0x4c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfffffffb}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5683}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x81}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xffff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x40}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}]}]}, @NFTA_SET_DESC_CONCAT={0x110, 0x2, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1000}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x28}]}, {0x4c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x101}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x20d}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8001}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfffffff7}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6459}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5a}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x10001}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8001}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1ff}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7f}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2b}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7fff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}]}]}]}, @NFTA_SET_KEY_TYPE={0x8, 0x4, 0x1, 0x0, 0x79}]}, 0x304}}, 0x404c000)
r1 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x10000000)
r2 = io_uring_setup(0x3a89, &(0x7f0000000000)={0x0, 0x9afb, 0x10, 0x1, 0xe4, 0x0, r1})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r4, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r4, &(0x7f0000000180)={0xb0000000})
io_uring_setup(0x1275, &(0x7f0000000100)={0x0, 0x52ab, 0x4, 0x1, 0x64, 0x0, r2})

[ 1478.945064][ T7388] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1478.953056][ T7388] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005988
[ 1478.961053][ T7388] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1478.969022][ T7388] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1478.976983][ T7388] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:03 executing program 3 (fault-call:3 fault-nth:27):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:03 executing program 1:
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000040))
syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
r1 = syz_io_uring_setup(0x50b, &(0x7f0000000080)={0x0, 0x9d41, 0x8, 0x0, 0x2b5}, &(0x7f00007dc000/0x4000)=nil, &(0x7f00007de000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x0, 0x4000010, r1, 0x10000000)

14:59:03 executing program 5:
r0 = io_uring_setup(0x80f, &(0x7f0000000080)={0x0, 0x0, 0x8, 0x4})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

14:59:03 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DISCONNECT(r0, &(0x7f0000000740)={&(0x7f0000000600), 0xc, &(0x7f0000000700)={&(0x7f0000000680)={0x28, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @val={0xc}}}}, 0x28}}, 0x0)
sendmsg$NL80211_CMD_UPDATE_OWE_INFO(0xffffffffffffffff, &(0x7f0000003940)={&(0x7f0000003840)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000003900)={&(0x7f0000003880)={0x7c, r1, 0x208, 0x70bd28, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_IE={0x42, 0x2a, [@channel_switch={0x25, 0x3, {0x0, 0x70, 0x5}}, @mesh_chsw={0x76, 0x6, {0x4, 0x8, 0x1a, 0x6}}, @rann={0x7e, 0x15, {{0x0, 0x1}, 0x6, 0x0, @device_a, 0x9, 0x1f}}, @rann={0x7e, 0x15, {{0x0, 0x8}, 0x20, 0x7, @broadcast, 0x1c14, 0xfffffffc}}, @challenge={0x10, 0x1, 0x91}]}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x41}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x32}]}, 0x7c}, 0x1, 0x0, 0x0, 0x2000000}, 0x4000855)
r2 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000040)={0x90002008})
r4 = socket(0x22, 0x5, 0x1)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r4, 0x6, 0x23, &(0x7f0000000000)={&(0x7f0000ffd000/0x3000)=nil, 0x3000}, &(0x7f0000000080)=0x10)
sendmsg$NFT_MSG_GETSETELEM(r4, &(0x7f0000003800)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000037c0)={&(0x7f0000000100)={0x36a0, 0xd, 0xa, 0x3, 0x0, 0x0, {0x3, 0x0, 0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x365c, 0x3, 0x0, 0x1, [{0x22f4, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x11c0, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x1004, 0x1, "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"}, @NFTA_DATA_VERDICT={0x2c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VALUE={0xa6, 0x1, "6671ef2d9b48aab254e8a474aa9777ca55e0bfc9705c8c313d7f14738eb417408fe35e12f202f2d35024f2f6653f82c119d1fbb60c105f7f93d269da430012dd21537e3f997cd3965223afd7b02720475c9b9af88a2899b9b534f548cebf034abb6070a4ebcdfb796f369bfa1a98eecccfa6721437ac6248ea97558bda60bacb7ae0fdcc51c6e4b3cafd3fc786343fc431ea96acba86f6cf55d519d9ea30f023aa10"}, @NFTA_DATA_VALUE={0x1d, 0x1, "9e12930f995e675e4227a57926c1b8165482061824f7ed9751"}, @NFTA_DATA_VALUE={0xc2, 0x1, "43892353df8d6c445e086dc98a93455831b4cbab63fd24f91a0db6f01c331deb434db73f137fe1969b2cc439352a77ae5c762a5463b6fb5e2e1194bce3747917180b06b503b92329ee9d982ec3e121bf0cbdc4d67abe11f624e760fbdb97f85255c5291ea3006b966fefbc75ff3d025e85c3a1843b98b1a536c5b55294e037165f86d99a6f8b95dfc997df70858fbe09c74fcf31f6ff3064105950a8b9d85bf9841a378195984203f0fcb4dbba54f736d954e0472e9067b42a32c45ec6ce"}]}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x5}, @NFTA_SET_ELEM_KEY={0x1124, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x1004, 0x1, "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"}, @NFTA_DATA_VALUE={0x84, 0x1, "d97dd755dd7410c9deae971fb2a0595bcf384be7bc5eab9d756fa6fa360bde8238334ccaf1319c975020d403b205b6c02023c99b748be1e3bdd403e7f7241e49818b887188a05334444a04b775b98519e96adb5e3263ce1c15265b521dc9c63556bdbd62cd8573931e5dc9186a3ced7b3176c050ba1d76ef80ebbf94ddee6ff1"}, @NFTA_DATA_VALUE={0x22, 0x1, "24161106e516ef425e3c487f13921b6b4c9fbe2cc478a8cc844ac6ec64ff"}, @NFTA_DATA_VALUE={0x74, 0x1, "b67039622d6b401107018a9b4427c2b8d62bb786619172de6e3cae8b6fcb3d75b81459ce4108a24e7e6db3a3395f444ebd9b1e7d63280a8e6a67abad0fb24e94424de5402f8f9d31cf2f53f5a11a98f241031edc27c78c0c21bcf5895c32381f5539659d8c3f52bb17ee23091ba6ec57"}]}]}, {0x1360, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY_END={0x1290, 0xa, 0x0, 0x1, [@NFTA_DATA_VALUE={0xb9, 0x1, "cf8ab449cf762bd0e9b53653499dc20b8cf4d3c2da72ad254b96eac09e0ab886d58c01cdaeec64e7cd1f850f71a95fe32dcb866306e5d5cce466766d685b17f1636121fc6347cd9f59ffe5b0399076cd0580340f10fc94df71a01b2c2e2b3b5ec93dc227ae9f74b94cb95e9f3fe45a96de04c36f720dd15a34e9e99b54810afd832008f69c996f9131efca4019adfad6ede47227d9e70080b21e0ee7d985d12e7c5224460b08d183ec8f6e40305fc4f53f37b6c05e"}, @NFTA_DATA_VERDICT={0x34, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFTA_DATA_VERDICT={0x14, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}]}, @NFTA_DATA_VALUE={0x4f, 0x1, "fb5023cc9290643c854772c20c28b0ba42680e8ae883900322affb84dd431bb75342e55182e27c48d14c8e07af2feeba2ec6e2bf23fcf9203b880e7b4d7e26bc62b40e18cc23d51906d186"}, @NFTA_DATA_VALUE={0x1004, 0x1, "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"}, @NFTA_DATA_VALUE={0xf3, 0x1, "02523af93f3e275e0015bc8c67aaa997aa76f4e87935bd8601ffcf5c309aaa54fc8eebf7f62032a961c0660828ff407ab62b7a2e14937376400741b15ba4b13fe1617d242188a07b076d20a1286cf76dfa622ebd05f178b8bdd40d5e4b74150eb99542467e5243c9424952b3704bcc9920cbe4e7b168b10374f1e788b7efdfb6da30d99b818b467baf2a25fbc4160793bdc7b051985c5d674096754f7d56897f3ca82f73e2f9b85850984fa2ba57692eb3c9c16824e538efa4a533152988bca00ae667d23b54c0babb8c61a347ff5ff09362ad167b14d0204d1e39418eaf9c03012b9a26e777ded8f3276d1e06d171"}, @NFTA_DATA_VERDICT={0x24, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}, @NFTA_DATA_VALUE={0x4}, @NFTA_DATA_VERDICT={0x10, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VALUE={0x8, 0x1, "10605751"}]}, @NFTA_SET_ELEM_FLAGS={0x8}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x9}, @NFTA_SET_ELEM_USERDATA={0xae, 0x6, 0x1, 0x0, "478d6b5c792839cacd74bd561fe0ab5b69df822feb20e723fee789b19bd67d9f7082c2a460b7b1a03131e39896c732e2587ba11d102c7eac66d1cbef22d761cdd3ec75a4169b5a009da53463bc8262a441166e60ce8d76bb8aeba61b08b8751966d4dc7a1d5a9ceeb561276a16c4bd1ac65b650edb4ed0731c1ccf35116e352afbfd0751825cb4edcc47f68dc9baa7c942786626ecbf8f9c3f299c11fb9ae7fb494f39e092a3a7621036"}, @NFTA_SET_ELEM_FLAGS={0x8}]}, {0x4}]}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}]}, 0x36a0}, 0x1, 0x0, 0x0, 0x20000080}, 0x20000004)

14:59:03 executing program 2:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100))
syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
r0 = getpid()
sched_getscheduler(r0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:03 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000040), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)

14:59:03 executing program 5:
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x10000000)
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x10}, 0x14)
setsockopt$inet6_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000040)='bbr\x00', 0x4)

14:59:03 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x38a, 0x0)

14:59:03 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)
syz_io_uring_setup(0x21f6, &(0x7f0000000040)={0x0, 0x7b7f, 0x8, 0x3, 0x329, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00007df000/0x4000)=nil, &(0x7f00000000c0), &(0x7f0000000100))
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="000129bd7000fd72ab2504000000080031000600000087dea9dfc962a68f89110a6fbb810ca16dfc8858e177bfcd1f02ad05186d5ffee2ef640bcacf73cf7c44"], 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x800)

14:59:03 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
ioctl$PTP_PEROUT_REQUEST(r2, 0x40383d03, &(0x7f0000000000)={{0x5, 0x8}, {0x0, 0x40}, 0x6})
socket$inet6_udplite(0xa, 0x2, 0x88)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})

14:59:03 executing program 5:
r0 = io_uring_setup(0x406f2e, &(0x7f0000000000)={0x0, 0x69e8, 0x10, 0x0, 0x1e7})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

14:59:03 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x6d})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
ioctl$SG_GET_SCSI_ID(r1, 0x2276, &(0x7f0000000000))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

[ 1479.315756][ T7458] FAULT_INJECTION: forcing a failure.
[ 1479.315756][ T7458] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1479.328872][ T7458] CPU: 0 PID: 7458 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1479.337636][ T7458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1479.347683][ T7458] Call Trace:
[ 1479.350953][ T7458]  dump_stack_lvl+0xb7/0x103
[ 1479.355535][ T7458]  dump_stack+0x11/0x1a
[ 1479.359857][ T7458]  should_fail+0x23c/0x250
[ 1479.364307][ T7458]  should_fail_usercopy+0x16/0x20
[ 1479.369335][ T7458]  copy_page_from_iter+0x1fe/0x530
[ 1479.374471][ T7458]  process_vm_rw_single_vec+0x294/0x460
[ 1479.380023][ T7458]  process_vm_rw+0x347/0x4e0
[ 1479.384609][ T7458]  ? fsnotify_perm+0x59/0x2e0
[ 1479.389327][ T7458]  ? __fsnotify_parent+0x32f/0x430
[ 1479.394430][ T7458]  ? get_pid_task+0x8b/0xc0
[ 1479.398949][ T7458]  ? vfs_write+0x50c/0x770
[ 1479.403361][ T7458]  ? __fget_light+0x21b/0x260
[ 1479.408078][ T7458]  ? __cond_resched+0x11/0x40
[ 1479.412751][ T7458]  ? fput+0x2d/0x130
[ 1479.416727][ T7458]  __x64_sys_process_vm_writev+0x76/0x90
[ 1479.422366][ T7458]  do_syscall_64+0x3d/0x90
[ 1479.426785][ T7458]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1479.432671][ T7458] RIP: 0033:0x4665e9
[ 1479.436584][ T7458] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1479.456186][ T7458] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:04 executing program 3 (fault-call:3 fault-nth:28):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:04 executing program 0:
r0 = epoll_create(0x14)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
process_vm_readv(0x0, &(0x7f0000000280)=[{&(0x7f0000000080)=""/230, 0xe6}, {&(0x7f0000000000)=""/38, 0x26}, {&(0x7f0000000180)=""/56, 0x38}, {&(0x7f00000001c0)=""/46, 0x2e}, {&(0x7f0000000200)=""/109, 0x6d}], 0x5, &(0x7f00000006c0)=[{&(0x7f0000000300)=""/170, 0xaa}, {&(0x7f00000003c0)=""/109, 0x6d}, {&(0x7f0000000440)=""/184, 0xb8}, {&(0x7f0000000500)=""/162, 0xa2}, {&(0x7f00000005c0)=""/144, 0x90}, {&(0x7f0000000680)=""/42, 0x2a}], 0x6, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
epoll_pwait(r2, &(0x7f0000000740)=[{}, {}, {}], 0x3, 0x8, &(0x7f0000000780)={[0x3]}, 0x8)

14:59:04 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x38b, 0x0)

14:59:04 executing program 2:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100))
r0 = syz_open_dev$sg(&(0x7f00000000c0), 0x3ff, 0x101000)
ioctl$SG_NEXT_CMD_LEN(r0, 0x2283, &(0x7f0000000180)=0x6c)
syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
r1 = getpid()
r2 = getpid()
rt_sigqueueinfo(r2, 0x32, &(0x7f0000000040)={0x16, 0x20000, 0xfffffffc})
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:04 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)
prctl$PR_GET_PDEATHSIG(0x2, &(0x7f0000000040))
io_uring_setup(0x43ff, &(0x7f0000000080)={0x0, 0x257, 0x20, 0x2, 0x35d, 0x0, r0})

14:59:04 executing program 5:
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x13, 0xffffffffffffffff, 0x10000000)
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000180), 0xc080, 0x0)
io_uring_setup(0x434b, &(0x7f00000001c0)={0x0, 0x68c4, 0x0, 0x1, 0x8e, 0x0, r2})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x8, 0x100010, r0, 0x10000000)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), r2)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00', <r4=>0x0})
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000100)={&(0x7f0000000240)={0x24, r3, 0x200, 0x70bd29, 0x25dfdbff, {}, [@BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x7}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r4}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000484}, 0x10)

[ 1479.464594][ T7458] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1479.472556][ T7458] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 000000000000598b
[ 1479.480517][ T7458] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1479.488478][ T7458] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1479.496443][ T7458] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:04 executing program 1:
sendmsg$NFQNL_MSG_VERDICT_BATCH(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="740012ff0203010200000000000000000000100a08000340000008000c00020b2000ffff75f2c5e50c000200ffff51608682612a1afdc12e0dfffb000005200c00020000000000000000080c000200ff59a3598b767ac831000200fffffffe000001e8080003b6ac311a1cbeca087e40020003ff0c00026afffffffb080000020800034000000000"], 0x74}, 0x1, 0x0, 0x0, 0x40891}, 0x24000811)
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ffb000/0x2000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000280))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x8, 0x13, r0, 0x10000000)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/syz1\x00', 0x200002, 0x0)
openat$cgroup_netprio_ifpriomap(r1, &(0x7f0000000080), 0x2, 0x0)
ioctl$PTP_SYS_OFFSET(0xffffffffffffffff, 0x43403d05, &(0x7f0000000440)={0x12})

14:59:04 executing program 2:
syz_io_uring_setup(0x479b, &(0x7f0000001080)={0x0, 0x0, 0x2, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000c14000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000001100))
syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000040)=[{0x0}, {&(0x7f0000001380)=""/161, 0xa1}, {&(0x7f0000000080)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x1005}], 0x1, 0x0)

14:59:04 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f00007fd000/0x800000)=nil, 0x800000, 0x100000e, 0x1010, r0, 0x10000000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r2, &(0x7f0000000000)={0x1})

[ 1479.631030][ T7496] FAULT_INJECTION: forcing a failure.
[ 1479.631030][ T7496] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1479.644475][ T7496] CPU: 0 PID: 7496 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1479.653174][ T7496] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1479.663220][ T7496] Call Trace:
[ 1479.666496][ T7496]  dump_stack_lvl+0xb7/0x103
[ 1479.671084][ T7496]  dump_stack+0x11/0x1a
[ 1479.675227][ T7496]  should_fail+0x23c/0x250
14:59:04 executing program 2:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
syz_io_uring_setup(0x400069c7, &(0x7f0000000100)={0x0, 0x74d4, 0x4, 0x1fd, 0x0, 0x0, r0}, &(0x7f00004d4000/0x4000)=nil, &(0x7f000064f000/0x1000)=nil, 0x0, 0x0)
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:04 executing program 0:
epoll_create(0x8)
epoll_create(0x10001)
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
r4 = epoll_create1(0x80000)
ioctl$PTP_PIN_SETFUNC2(r0, 0x40603d10, &(0x7f0000000100)={'\x00', 0xdb90, 0x1, 0x6})
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000040)={0x80000005})
epoll_ctl$EPOLL_CTL_MOD(r3, 0x3, r0, &(0x7f0000000080)={0x10000000})
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f00000000c0)={'batadv_slave_0\x00'})

[ 1479.679643][ T7496]  should_fail_usercopy+0x16/0x20
[ 1479.684751][ T7496]  copy_page_from_iter+0x1fe/0x530
[ 1479.689983][ T7496]  process_vm_rw_single_vec+0x294/0x460
[ 1479.695533][ T7496]  process_vm_rw+0x347/0x4e0
[ 1479.700122][ T7496]  ? fsnotify_perm+0x59/0x2e0
[ 1479.704830][ T7496]  ? __fsnotify_parent+0x32f/0x430
[ 1479.709998][ T7496]  ? get_pid_task+0x8b/0xc0
[ 1479.714496][ T7496]  ? vfs_write+0x50c/0x770
[ 1479.718989][ T7496]  ? __fget_light+0x21b/0x260
[ 1479.723663][ T7496]  ? __cond_resched+0x11/0x40
14:59:04 executing program 1:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
syz_io_uring_setup(0xe51, &(0x7f0000000080)={0x0, 0x55b0, 0x8, 0x0, 0x0, 0x0, r0}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000009, 0x10, r1, 0x10000000)

[ 1479.728336][ T7496]  ? fput+0x2d/0x130
[ 1479.732226][ T7496]  __x64_sys_process_vm_writev+0x76/0x90
[ 1479.737860][ T7496]  do_syscall_64+0x3d/0x90
[ 1479.742359][ T7496]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1479.748258][ T7496] RIP: 0033:0x4665e9
[ 1479.752141][ T7496] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1479.771741][ T7496] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1479.780142][ T7496] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1479.788112][ T7496] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 000000000000598e
[ 1479.796115][ T7496] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1479.804159][ T7496] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1479.812128][ T7496] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:04 executing program 3 (fault-call:3 fault-nth:29):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:04 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0xb4, 0x2, 0x7, 0x802, 0x0, 0x0, {0x1}, [@NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x2}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x401}, @NFACCT_FILTER={0x1c, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x8000}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x2}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x101}]}, @NFACCT_FILTER={0x34, 0x7, 0x0, 0x1, [@NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x1}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0xac4f8b4}, @NFACCT_FILTER_VALUE={0x8}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x5}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x8}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x3ff}]}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x7fffffff}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0xbc0}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x2}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x23}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x9}]}, 0xb4}, 0x1, 0x0, 0x0, 0x801}, 0x200080c1)
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)

14:59:04 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x38c, 0x0)

14:59:04 executing program 5:
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x1, &(0x7f0000000040)={0x5, &(0x7f0000000000)=[{0x7f, 0xa7, 0x1c, 0x4}, {0x7, 0x20, 0x7f, 0xfffffeff}, {0x4, 0x4, 0x66, 0x9}, {0x0, 0x81, 0x2, 0x8}, {0xced, 0x8, 0x5, 0x6}]})
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
socket$nl_netfilter(0x10, 0x3, 0xc)

14:59:04 executing program 2:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100))
syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
sendmsg$NFNL_MSG_COMPAT_GET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, 0x0, 0xb, 0x301, 0x0, 0x0, {0xa, 0x0, 0xa}, [@NFTA_COMPAT_TYPE={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_COMPAT_TYPE={0x8}]}, 0x24}}, 0x40)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0xa1}, {&(0x7f00000014c0)=""/70, 0x46}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x1005}], 0x1, 0x0)

14:59:04 executing program 0:
r0 = epoll_create(0x8)
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r0, &(0x7f0000000080)={0x80000008})
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
ioctl$PTP_PIN_SETFUNC2(r2, 0x40603d10, &(0x7f00000000c0)={'\x00', 0xf5, 0x3, 0x8001})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})

14:59:04 executing program 1:
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x10000000})
r2 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r2, 0x10000000)

14:59:04 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x451c, 0x20})
rt_sigaction(0x23, &(0x7f0000000100)={&(0x7f0000000000)="4531a8f1cc0000c4c265df426465f3dde7660f3acfbb61bcd8b260673e4681716d000000002e99c421ade2ee8f49e0926140f00fb3b20000000045d818", 0x40000001, &(0x7f0000000040)="c4622d46a0d5e40000c422fd22fcf20f1eefdad464f30fae31c4637d1d3b0c0f0ffe0dc4c26da70ec4e2f92927c4a101efae09000000", {[0xac45]}}, &(0x7f0000000200)={&(0x7f0000000140)="66470f38140c6966450f381dd33e36f0815100000000008f4920028fe4000000c443f179f7084579d4c481c173f400c421a9f87e00c4626db8b100000100c482791cb32f56f7d2", 0x0, &(0x7f00000001c0)="c4215610c3c461c611f2c4413b10c766400f38dcdaf30f2c98ec71366af344e10240d9fb0f381c310f0f04d2b466f3ad"}, 0x8, &(0x7f0000000240))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

14:59:04 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
ioctl$PTP_EXTTS_REQUEST2(r2, 0x40103d0b, &(0x7f0000000080)={0x0, 0xb})
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})

14:59:04 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)
r2 = syz_io_uring_setup(0x2311, &(0x7f0000000040), &(0x7f00007db000/0x4000)=nil, &(0x7f00007dd000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
r3 = mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x0, 0x13, r2, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000100))
r5 = mmap$IORING_OFF_SQES(&(0x7f00007da000/0x4000)=nil, 0x4000, 0x1000009, 0x110, r2, 0x10000000)
syz_io_uring_submit(r4, r5, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1)
syz_io_uring_submit(r1, r3, &(0x7f0000000080)=@IORING_OP_OPENAT={0x12, 0x7, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000040)='./file0\x00', 0x218, 0x410082, 0x12345}, 0x1000)

14:59:04 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan1\x00'})
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r1, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000300)={0xa4, 0x0, 0x8, 0x101, 0x0, 0x0, {0x0, 0x0, 0x4}, [@CTA_TIMEOUT_DATA={0x0, 0x4, 0x0, 0x1, @tcp=[@CTA_TIMEOUT_TCP_TIME_WAIT={0x0, 0x7, 0x1, 0x0, 0x1}, @CTA_TIMEOUT_TCP_SYN_RECV={0x0, 0x2, 0x1, 0x0, 0x5}, @CTA_TIMEOUT_TCP_FIN_WAIT={0x0, 0x4, 0x1, 0x0, 0x1ff}, @CTA_TIMEOUT_TCP_RETRANS={0x0, 0xa, 0x1, 0x0, 0x2}, @CTA_TIMEOUT_TCP_LAST_ACK={0x0, 0x6, 0x1, 0x0, 0xb0bf}]}, @CTA_TIMEOUT_NAME={0x5c, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_DATA={0x0, 0x4, 0x0, 0x1, @udp=[@CTA_TIMEOUT_UDP_UNREPLIED={0x0, 0x1, 0x1, 0x0, 0x8}, @CTA_TIMEOUT_UDP_REPLIED={0x0, 0x2, 0x1, 0x0, 0x7}, @CTA_TIMEOUT_UDP_REPLIED={0x0, 0x2, 0x1, 0x0, 0x6}, @CTA_TIMEOUT_UDP_UNREPLIED={0x0, 0x1, 0x1, 0x0, 0x10001}, @CTA_TIMEOUT_UDP_REPLIED={0x0, 0x2, 0x1, 0x0, 0x3d}, @CTA_TIMEOUT_UDP_REPLIED={0x0, 0x2, 0x1, 0x0, 0x3bf}, @CTA_TIMEOUT_UDP_REPLIED={0x0, 0x2, 0x1, 0x0, 0x2}, @CTA_TIMEOUT_UDP_REPLIED={0x0, 0x2, 0x1, 0x0, 0x2}, @CTA_TIMEOUT_UDP_REPLIED={0x0, 0x2, 0x1, 0x0, 0x3}, @CTA_TIMEOUT_UDP_UNREPLIED={0x0, 0x1, 0x1, 0x0, 0xffffffff}]}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x809b}, @CTA_TIMEOUT_DATA={0x34, 0x4, 0x0, 0x1, @icmp=[@CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x1}, @CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x100}, @CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0xfffffff9}, @CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x7fffffff}, @CTA_TIMEOUT_ICMP_TIMEOUT={0x8}, @CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x8}]}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x88a8}, @CTA_TIMEOUT_DATA={0x1c, 0x4, 0x0, 0x1, @sctp=[@CTA_TIMEOUT_SCTP_SHUTDOWN_ACK_SENT={0x8, 0x7, 0x1, 0x0, 0x3}, @CTA_TIMEOUT_SCTP_SHUTDOWN_SENT={0x8, 0x5, 0x1, 0x0, 0x8}, @CTA_TIMEOUT_SCTP_SHUTDOWN_ACK_SENT={0x8, 0x7, 0x1, 0x0, 0xfff}]}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x60ec}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0xf9}]}, 0xa4}, 0x1, 0x0, 0x0, 0x4000040}, 0x4)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

14:59:04 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500))
pipe(&(0x7f0000000040))
r1 = socket(0x28, 0x1, 0x30000000)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)={0x80000000})

[ 1480.072759][ T7561] FAULT_INJECTION: forcing a failure.
[ 1480.072759][ T7561] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1480.085919][ T7561] CPU: 0 PID: 7561 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1480.094595][ T7561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1480.104817][ T7561] Call Trace:
[ 1480.108091][ T7561]  dump_stack_lvl+0xb7/0x103
[ 1480.112678][ T7561]  dump_stack+0x11/0x1a
[ 1480.116833][ T7561]  should_fail+0x23c/0x250
[ 1480.121328][ T7561]  should_fail_usercopy+0x16/0x20
[ 1480.126446][ T7561]  copy_page_from_iter+0x1fe/0x530
[ 1480.131555][ T7561]  process_vm_rw_single_vec+0x294/0x460
[ 1480.137109][ T7561]  process_vm_rw+0x347/0x4e0
[ 1480.141706][ T7561]  ? fsnotify_perm+0x59/0x2e0
[ 1480.146379][ T7561]  ? __fsnotify_parent+0x32f/0x430
[ 1480.151494][ T7561]  ? get_pid_task+0x8b/0xc0
[ 1480.156053][ T7561]  ? vfs_write+0x50c/0x770
[ 1480.160468][ T7561]  ? __fget_light+0x21b/0x260
[ 1480.165143][ T7561]  ? __cond_resched+0x11/0x40
[ 1480.169851][ T7561]  ? fput+0x2d/0x130
[ 1480.173785][ T7561]  __x64_sys_process_vm_writev+0x76/0x90
[ 1480.179414][ T7561]  do_syscall_64+0x3d/0x90
[ 1480.183873][ T7561]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1480.189789][ T7561] RIP: 0033:0x4665e9
[ 1480.193673][ T7561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1480.213382][ T7561] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1480.221798][ T7561] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1480.229821][ T7561] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005991
[ 1480.237785][ T7561] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1480.245755][ T7561] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1480.253740][ T7561] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:04 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)
pipe(&(0x7f0000005500)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = syz_io_uring_setup(0x2311, &(0x7f0000000040), &(0x7f00007db000/0x4000)=nil, &(0x7f00007dd000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
r5 = mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x0, 0x13, r4, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r6=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r6, r5, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
syz_io_uring_submit(r1, r5, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f0000000140)=@phonet={0x23, 0x3f, 0x7, 0x80}, 0x0, 0x0, 0x1}, 0x2)
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
sendmsg$IPSET_CMD_GET_BYINDEX(r3, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0xf, 0x6, 0x5, 0x0, 0x0, {0x7}, [@IPSET_ATTR_INDEX={0x6, 0xb, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000800}, 0x40024)

14:59:04 executing program 2:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
syz_io_uring_setup(0x44d, &(0x7f0000001080)={0x0, 0x12b5, 0x10, 0x0, 0x3de, 0x0, r1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000b4b000/0x1000)=nil, 0x1000, 0x0, 0x40010, r2, 0x10000000)
syz_io_uring_setup(0x69c7, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x60}, &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
r3 = getpid()
process_vm_writev(r3, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)
ioctl$PTP_SYS_OFFSET_PRECISE(r0, 0xc0403d08, &(0x7f0000000040))

14:59:04 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})
epoll_create1(0x0)

14:59:04 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x38d, 0x0)

14:59:04 executing program 3 (fault-call:3 fault-nth:30):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:04 executing program 5:
modify_ldt$write2(0x11, &(0x7f0000000000)={0x3, 0x100000, 0x4000, 0x0, 0x0, 0x1}, 0x10)
modify_ldt$write2(0x11, &(0x7f0000000040)={0x2, 0x100000, 0xffffffffffffffff, 0x0, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1}, 0x10)
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

14:59:04 executing program 1:
r0 = syz_io_uring_setup(0x7b16, &(0x7f0000000140)={0x0, 0x0, 0x10}, &(0x7f00007de000/0x2000)=nil, &(0x7f00007dd000/0x4000)=nil, &(0x7f0000000000), &(0x7f00000001c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x501000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DISCONNECT(r2, &(0x7f0000000740)={&(0x7f0000000600), 0xc, &(0x7f0000000700)={&(0x7f0000000680)={0x28, r3, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @val={0xc}}}}, 0x28}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_UPDATE_OWE_INFO(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000400)={&(0x7f0000000780)=ANY=[@ANYBLOB="6c010000", @ANYRES16=r3, @ANYBLOB="009fa806d500006daadab0f1ebd33971969aa16984145525b4430659dd8c01721f7d120daae078452ec4f2cc3a14c46370ff4a2f3ca05ccd3017553699254fae8995eb17a1d95a5743db773bcd9e9816b5d797a50e974fb4329ee55be6c2739b90e57d275bd2ccc28bf0a533de2022894cbd55b644b20e21943c12c7f1210a0faa62", @ANYRES32=r4, @ANYBLOB="0c009900000000002f0000000a000600080211000001000028012a00000601010101010137124008218aea3de25bfc6cbbd6be39f4466843795f496e35475d789e31120e64978967e5378e6045ba8c8d5035116f2500c171ef996b5f530a85680c8a1736ea46d371042a76492e211e0acbd8d286e1308335012366ff2135791670543458f1af85d5e20aeceb02782d5b5b560c0b530914ac40d7f59d450207ea0bd62cda22f00106c87ef3af0b1b0228fc5b7d15b1e78d9cd8927de7a1c633a232502d6554902b75586449d84e43e6b22f2792a8300cf4ce0412067df45b32fb2b9370d594c027d5c219b69d021cfa1b1ffed9fb4413fe96944a1210b9cb9c1626a4a7be09bb42a2051e02077b500ff6a181be032347d54b760fe486d669358459508c099e1a33fd0051e648ca0438d219b3ca9b34b0bd4704060407ff07adb406004800300000000600480033000000"], 0x16c}, 0x1, 0x0, 0x0, 0x800}, 0x8000)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x402c5342, &(0x7f00000000c0)={0x8, 0x5, 0x7ff, {0x10000, 0x800}, 0x400, 0x10000})

14:59:04 executing program 5:
r0 = io_uring_setup(0x3a04, &(0x7f0000000080)={0x0, 0x0, 0x0, 0xfffffffe, 0x159})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

14:59:05 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})

14:59:05 executing program 2:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
ioctl$SCSI_IOCTL_GET_BUS_NUMBER(r0, 0x5386, &(0x7f0000000040))
syz_io_uring_setup(0x69c9, &(0x7f0000000100)={0x0, 0x0, 0x8}, &(0x7f0000b42000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:05 executing program 0:
epoll_create(0x8)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040))

[ 1480.483367][ T7617] FAULT_INJECTION: forcing a failure.
[ 1480.483367][ T7617] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1480.496522][ T7617] CPU: 0 PID: 7617 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1480.505199][ T7617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1480.515268][ T7617] Call Trace:
[ 1480.518575][ T7617]  dump_stack_lvl+0xb7/0x103
[ 1480.523157][ T7617]  dump_stack+0x11/0x1a
[ 1480.527299][ T7617]  should_fail+0x23c/0x250
[ 1480.531813][ T7617]  should_fail_usercopy+0x16/0x20
[ 1480.536826][ T7617]  copy_page_from_iter+0x1fe/0x530
[ 1480.541926][ T7617]  process_vm_rw_single_vec+0x294/0x460
[ 1480.547625][ T7617]  process_vm_rw+0x347/0x4e0
[ 1480.552207][ T7617]  ? fsnotify_perm+0x59/0x2e0
[ 1480.556869][ T7617]  ? __fsnotify_parent+0x32f/0x430
[ 1480.561981][ T7617]  ? get_pid_task+0x8b/0xc0
[ 1480.566467][ T7617]  ? vfs_write+0x50c/0x770
[ 1480.570881][ T7617]  ? __fget_light+0x21b/0x260
[ 1480.575541][ T7617]  ? __cond_resched+0x11/0x40
[ 1480.580206][ T7617]  ? fput+0x2d/0x130
[ 1480.584086][ T7617]  __x64_sys_process_vm_writev+0x76/0x90
[ 1480.589711][ T7617]  do_syscall_64+0x3d/0x90
[ 1480.594128][ T7617]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1480.600108][ T7617] RIP: 0033:0x4665e9
[ 1480.604000][ T7617] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1480.625680][ T7617] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:05 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x200000, 0x0)
openat$cgroup_procs(r2, &(0x7f0000000080)='cgroup.threads\x00', 0x2, 0x0)
sched_getscheduler(0xffffffffffffffff)

[ 1480.634080][ T7617] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1480.642054][ T7617] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005994
[ 1480.650131][ T7617] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1480.658086][ T7617] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1480.666046][ T7617] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:05 executing program 3 (fault-call:3 fault-nth:31):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:05 executing program 1:
r0 = syz_io_uring_setup(0x3815, &(0x7f0000000200)={0x0, 0x0, 0x2}, &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)

14:59:05 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000000)={0x0, 0x10000})
ioctl$SG_GET_TIMEOUT(0xffffffffffffffff, 0x2202, 0x0)
epoll_create1(0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

14:59:05 executing program 2:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100))
r0 = syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x2, 0x8010, r0, 0x10000000)

14:59:05 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff})
r2 = socket(0x6, 0xa, 0x7fff)
syz_genetlink_get_family_id$batadv(&(0x7f0000000100), r2)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$MON_IOCQ_RING_SIZE(r3, 0x9205)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r0, &(0x7f0000000040)={0x4})
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r1, 0x40505330, &(0x7f0000000080)={{0x6, 0x5}, {0x81, 0x2}, 0x3, 0x1, 0x1f})

14:59:05 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x38e, 0x0)

14:59:05 executing program 2:
r0 = syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100))
r1 = syz_io_uring_setup(0x2f58, &(0x7f0000000200)={0x0, 0xdcdf, 0x0, 0x0, 0x20f, 0x0, r0}, &(0x7f00009b6000/0x3000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
syz_io_uring_setup(0x56df, &(0x7f0000000340)={0x0, 0xdb85, 0x0, 0x2, 0x378, 0x0, r1}, &(0x7f0000687000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f00000003c0), &(0x7f0000000400))
syz_io_uring_setup(0x69c7, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0xfffffff8}, &(0x7f0000f2a000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
r2 = getpid()
socket$nl_netfilter(0x10, 0x3, 0xc)
process_vm_writev(r2, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)
sendmsg$NL80211_CMD_UPDATE_OWE_INFO(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40004000}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)={0x44, 0x0, 0x200, 0x70bd25, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x840}, 0x0)

14:59:05 executing program 5:
r0 = syz_io_uring_setup(0x6b0d, &(0x7f0000000180)={0x0, 0xecae, 0x0, 0x3, 0x200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000240))
r1 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x0, 0x1, 0x0, 0x0, 0x0, r0})
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x3c, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x4}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0xf3}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x9}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x20001)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x10000000)

14:59:05 executing program 0:
r0 = epoll_create(0x8)
epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_pwait(r2, &(0x7f0000000080)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x8, 0xffff8000, &(0x7f0000000100)={[0xffff]}, 0x8)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})

14:59:05 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)
syz_io_uring_setup(0x7a5, &(0x7f0000000040)={0x0, 0xeba6, 0x8, 0x2, 0x2d8, 0x0, r0}, &(0x7f00007de000/0x2000)=nil, &(0x7f00007df000/0x3000)=nil, &(0x7f00000000c0)=<r1=>0x0, &(0x7f0000000100))
r2 = syz_io_uring_setup(0x2311, &(0x7f0000000040), &(0x7f00007db000/0x4000)=nil, &(0x7f00007dd000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
r3 = mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x0, 0x13, r2, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r4, r3, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r5, 0xc0603d06, 0x0)
syz_io_uring_submit(r1, r3, &(0x7f0000000140)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x3, 0x0, @fd=r5, 0x8, 0x0, 0x7, 0x1, 0x1}, 0xf82)

[ 1480.902453][ T7664] FAULT_INJECTION: forcing a failure.
[ 1480.902453][ T7664] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1480.915568][ T7664] CPU: 0 PID: 7664 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1480.924284][ T7664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1480.934338][ T7664] Call Trace:
[ 1480.937859][ T7664]  dump_stack_lvl+0xb7/0x103
[ 1480.942492][ T7664]  dump_stack+0x11/0x1a
[ 1480.946646][ T7664]  should_fail+0x23c/0x250
14:59:05 executing program 0:
epoll_create(0x8)
epoll_create(0x5)
pipe(&(0x7f0000005500))

[ 1480.951173][ T7664]  should_fail_usercopy+0x16/0x20
[ 1480.956213][ T7664]  copy_page_from_iter+0x1fe/0x530
[ 1480.961341][ T7664]  process_vm_rw_single_vec+0x294/0x460
[ 1480.966925][ T7664]  process_vm_rw+0x347/0x4e0
[ 1480.971580][ T7664]  ? fsnotify_perm+0x59/0x2e0
[ 1480.976452][ T7664]  ? __fsnotify_parent+0x32f/0x430
[ 1480.981570][ T7664]  ? get_pid_task+0x8b/0xc0
[ 1480.986338][ T7664]  ? vfs_write+0x50c/0x770
[ 1480.990749][ T7664]  ? __fget_light+0x21b/0x260
[ 1480.995434][ T7664]  ? __cond_resched+0x11/0x40
14:59:05 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
setsockopt$inet6_tcp_TLS_TX(r2, 0x6, 0x1, &(0x7f0000000000)=@gcm_256={{0x303}, "cc86995562ad82a0", "9f264416c5ef5ddf06acb8cb3052e74ea7362dd37efd113a810260c7ec04d3bf", "020ca81c", "0fe4173aca7b7b6f"}, 0x38)

[ 1481.000118][ T7664]  ? fput+0x2d/0x130
[ 1481.004016][ T7664]  __x64_sys_process_vm_writev+0x76/0x90
[ 1481.009706][ T7664]  do_syscall_64+0x3d/0x90
[ 1481.014125][ T7664]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1481.020024][ T7664] RIP: 0033:0x4665e9
[ 1481.023915][ T7664] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1481.043518][ T7664] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1481.051949][ T7664] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1481.059921][ T7664] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005997
[ 1481.068005][ T7664] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1481.076062][ T7664] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1481.084054][ T7664] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:05 executing program 3 (fault-call:3 fault-nth:32):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:05 executing program 2:
r0 = syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000001100))
syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
io_uring_setup(0x2997, &(0x7f0000000380)={0x0, 0xee18, 0x1, 0xfe45, 0x1b4, 0x0, r0})
r2 = getpid()
process_vm_writev(r2, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)
r3 = syz_io_uring_setup(0x2311, &(0x7f0000000040), &(0x7f00007db000/0x4000)=nil, &(0x7f00007dd000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
r4 = mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x0, 0x13, r3, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080)={0x0, 0x0, 0x20}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r5, r4, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
syz_io_uring_submit(r1, r4, &(0x7f0000000040)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd_index=0x9, 0xa1, 0x0, 0xc04c, 0x2, 0x1}, 0x8)
syz_io_uring_setup(0x1307, &(0x7f0000000180)={0x0, 0x4abd, 0x8, 0x3, 0x20d}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f00008bd000/0x1000)=nil, &(0x7f0000000240), &(0x7f0000000340))

14:59:05 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000000000)={<r1=>0xffffffffffffffff})
sendmsg$IPSET_CMD_HEADER(r1, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x6c, 0xc, 0x6, 0x101, 0x0, 0x0, {0xa, 0x0, 0x7}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4000000}, 0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000040)={0x90002008})

14:59:05 executing program 1:
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, 0xffffffffffffffff, 0x10000000)
syz_io_uring_setup(0x28e0, &(0x7f0000000000)={0x0, 0x6930, 0x0, 0x2, 0xb576}, &(0x7f00007df000/0x3000)=nil, &(0x7f00007df000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000000c0))

14:59:05 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
futex(&(0x7f00000000c0)=0x2, 0x4, 0x0, &(0x7f0000000140), &(0x7f00000001c0), 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

14:59:05 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x38f, 0x0)

14:59:05 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$nl_netfilter(r1, &(0x7f0000002280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000002240)={&(0x7f0000000080)={0x219c, 0x3, 0x1, 0x101, 0x70bd25, 0x25dfdbfb, {0x1, 0x0, 0x5}, [@typed={0x8, 0x21, 0x0, 0x0, @uid}, @typed={0x8, 0x4b, 0x0, 0x0, @uid=0xee00}, @nested={0x1119, 0x14, 0x0, 0x1, [@generic="3ab5912a55a9cbbc8125bfb92e5b190fd53b8a6812d8a707bab63d127eea7013eff067839c2f28e1a89f5219ea939c1f6bfb0d0006a75fd188d387b3314e47a68c9a37e81c644aa10aa03493e0", @typed={0xc8, 0x7, 0x0, 0x0, @binary="cde08b19f5b01169b1a082d48dadef70fadcdf8059c7e671a088df3eb33cd8e64c959225d78b27ed4cb22b1580cc1629998440f9155cdb14f140eddd870bb90bb20f20cdefc72832c3c5daa69d6d9ae6da4e5d907c60b6b35b1790809da9352142b5df20ed2b50478a2dea513cbeea1928bce261ba25fc1a51346c6fd6ce8bef4ba8a7b931a3027f71c82ec137a172c64418f57caf5f0e1a46f3d65999d3226b8cb279157d017ac9cecf848c7838b4c14640861fcd995c3b035cbc100311e2db96fdc433"}, @generic="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"]}, @generic="8b8cc08d6befc8c1e89a18bbe6a4693439b6ec105d9c095ca3d638780fdee6f04f", @nested={0x1028, 0x1f, 0x0, 0x1, [@generic="04d2f9f09abee4a89f3b829a1ccd9e90b42f1f41f573032d7ec2758bbf29e5a5", @typed={0x1004, 0x80, 0x0, 0x0, @binary="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"}]}, @typed={0x8, 0x7e, 0x0, 0x0, @pid=0xffffffffffffffff}, @nested={0x8, 0x59, 0x0, 0x1, [@typed={0x4, 0x52}]}]}, 0x219c}, 0x1, 0x0, 0x0, 0x8890}, 0x40)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000040)={0x90002008})

14:59:05 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)
mmap$IORING_OFF_SQES(&(0x7f00007df000/0x2000)=nil, 0x2000, 0x1000000, 0x10, r0, 0x10000000)
sendmsg$IPSET_CMD_PROTOCOL(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x44)

14:59:05 executing program 5:
r0 = io_uring_setup(0x21e1, &(0x7f0000000080)={0x0, 0x80eb, 0x2, 0x80000001, 0xffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
syz_io_uring_setup(0x3481, &(0x7f0000000000)={0x0, 0x6c5e, 0x1, 0x0, 0x70, 0x0, r1}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000000100), &(0x7f0000000140))

[ 1481.305946][ T7713] FAULT_INJECTION: forcing a failure.
[ 1481.305946][ T7713] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1481.319114][ T7713] CPU: 0 PID: 7713 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1481.327794][ T7713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1481.337848][ T7713] Call Trace:
[ 1481.341119][ T7713]  dump_stack_lvl+0xb7/0x103
[ 1481.345718][ T7713]  dump_stack+0x11/0x1a
[ 1481.349872][ T7713]  should_fail+0x23c/0x250
14:59:05 executing program 2:
r0 = syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100))
syz_io_uring_setup(0x30a2, &(0x7f0000000040)={0x0, 0xdb05, 0x20, 0x0, 0x355, 0x0, r0}, &(0x7f0000af8000/0x3000)=nil, &(0x7f000088d000/0x3000)=nil, &(0x7f0000000140), &(0x7f0000000180))
syz_io_uring_setup(0x69c7, &(0x7f00000000c0)={0x0, 0xf30e}, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000ef3000/0x2000)=nil, 0x0, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
syz_io_uring_setup(0x3aec, &(0x7f00000001c0)={0x0, 0x730b, 0x1, 0x0, 0x33e, 0x0, r0}, &(0x7f0000e9a000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000240), &(0x7f00000002c0))
r2 = getpid()
process_vm_writev(r2, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

[ 1481.354297][ T7713]  should_fail_usercopy+0x16/0x20
[ 1481.359323][ T7713]  copy_page_from_iter+0x1fe/0x530
[ 1481.364436][ T7713]  process_vm_rw_single_vec+0x294/0x460
[ 1481.370084][ T7713]  process_vm_rw+0x347/0x4e0
[ 1481.374677][ T7713]  ? fsnotify_perm+0x59/0x2e0
[ 1481.379415][ T7713]  ? __fsnotify_parent+0x32f/0x430
[ 1481.384527][ T7713]  ? get_pid_task+0x8b/0xc0
[ 1481.389051][ T7713]  ? vfs_write+0x50c/0x770
[ 1481.393467][ T7713]  ? __fget_light+0x21b/0x260
[ 1481.398138][ T7713]  ? __cond_resched+0x11/0x40
14:59:05 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0x40a85323, &(0x7f0000000040)={{0x0, 0x81}, 'port1\x00', 0x8, 0x140800, 0x6, 0x10000, 0x3, 0x4, 0x6, 0x0, 0x6, 0x80})
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000100), 0x280403, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000140)={0x9, 0x1000, 0x0, 'queue1\x00', 0x3})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_GET(r2, &(0x7f0000000440)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x28, 0x1, 0x8, 0x201, 0x0, 0x0, {0x3}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x1}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x40}, 0x20008801)
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r2, 0xc08c5336, &(0x7f0000000300)={0x3, 0x80000000, 0x1, 'queue0\x00', 0x7})

14:59:05 executing program 5:
ioctl$SG_GET_PACK_ID(0xffffffffffffffff, 0x227c, &(0x7f0000000000))
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

[ 1481.402823][ T7713]  ? fput+0x2d/0x130
[ 1481.406772][ T7713]  __x64_sys_process_vm_writev+0x76/0x90
[ 1481.412459][ T7713]  do_syscall_64+0x3d/0x90
[ 1481.416880][ T7713]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1481.422780][ T7713] RIP: 0033:0x4665e9
[ 1481.426664][ T7713] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1481.446274][ T7713] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1481.454696][ T7713] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1481.462670][ T7713] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 000000000000599a
[ 1481.470642][ T7713] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1481.478627][ T7713] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1481.486598][ T7713] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:06 executing program 3 (fault-call:3 fault-nth:33):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:06 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
r1 = syz_io_uring_setup(0x6f54, &(0x7f00000001c0)={0x0, 0x8b3d, 0x0, 0x2, 0x3c, 0x0, r0}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000280))
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(0xffffffffffffffff, 0x4040534e, &(0x7f0000000340)={0x8, @tick=0x200, 0x3, {0x75, 0x80}, 0x8, 0x2, 0x13})
io_uring_setup(0x6ea3, &(0x7f00000002c0)={0x0, 0x2237, 0x20, 0x0, 0x47, 0x0, r1})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(r2, 0xc0a85322, &(0x7f0000000380))
pipe(&(0x7f0000000480)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r3, 0xc02c5341, &(0x7f00000004c0))
socket$nl_route(0x10, 0x3, 0x0)
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
syz_io_uring_setup(0x7533, &(0x7f0000000100)={0x0, 0x7653, 0x0, 0x1, 0x345, 0x0, r4}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000180))

14:59:06 executing program 0:
r0 = epoll_create(0x8)
mmap$IORING_OFF_SQES(&(0x7f0000ff1000/0xf000)=nil, 0xf000, 0x2, 0x10, 0xffffffffffffffff, 0x10000000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_create(0x8)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x200002, 0x0)
openat$cgroup_procs(r2, &(0x7f0000000100)='cgroup.threads\x00', 0x2, 0x0)
ioctl$PTP_PIN_GETFUNC2(r1, 0xc0603d0f, &(0x7f0000000080)={'\x00', 0xfffffffe, 0x3, 0xfffd})

14:59:06 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
accept(r1, &(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}}}, &(0x7f00000000c0)=0x80)

14:59:06 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x390, 0x0)

14:59:06 executing program 2:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000)=<r0=>0x0, &(0x7f0000001100)=<r1=>0x0)
syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
r2 = getpid()
process_vm_writev(r2, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r3, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT_REMOVE, 0xb6f1b91)
r4 = syz_io_uring_setup(0x2311, &(0x7f0000000040)={0x0, 0x4, 0x0, 0x0, 0x2000000}, &(0x7f00007db000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
io_uring_setup(0x52b2, &(0x7f0000000340)={0x0, 0x4f70, 0x2, 0x0, 0x27f})
r5 = mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x0, 0x13, r4, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r6=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r6, r5, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
syz_io_uring_submit(r0, r5, &(0x7f00000001c0)=@IORING_OP_TIMEOUT={0xb, 0x4, 0x0, 0x0, 0x4, &(0x7f0000000180)={0x0, 0x989680}}, 0x1)
syz_io_uring_submit(r3, r1, &(0x7f0000000080)=@IORING_OP_TIMEOUT={0xb, 0x3, 0x0, 0x0, 0x5, &(0x7f0000000040), 0x1, 0x1, 0x1}, 0x2d98)

14:59:06 executing program 1:
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, 0xffffffffffffffff, 0x10000000)
syz_io_uring_setup(0x10ac, &(0x7f0000000040)={0x0, 0x7117, 0x1, 0x3, 0x20d}, &(0x7f00007dd000/0x3000)=nil, &(0x7f00007dc000/0x4000)=nil, &(0x7f00000000c0), &(0x7f0000000100))
openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)

14:59:06 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1000004, 0x10, r2, 0x10000000)

14:59:06 executing program 1:
r0 = syz_io_uring_setup(0x2355, &(0x7f0000000200)={0x0, 0x6630, 0x20, 0x0, 0xffffffff}, &(0x7f0000ff9000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000100))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x0, 0x4010, r0, 0x10000000)
r1 = openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0)
write$cgroup_netprio_ifpriomap(r1, &(0x7f0000000280)=ANY=[@ANYBLOB="7674f7c5e573ba7d8b9b0019cc439a26955886288a2fdf84f7a21a146fe1f899e7ecf2fd269de611c220c310e50de6da00"], 0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
sendmsg$NFT_MSG_GETGEN(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, 0x10, 0xa, 0x101, 0x0, 0x0, {0x3, 0x0, 0x3}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8004}, 0x4004080)
syz_io_uring_setup(0xd72, &(0x7f0000000140)={0x0, 0x75ff, 0x2, 0x0, 0x2f, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000000c0), &(0x7f00000001c0))

14:59:06 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
r1 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc)
add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$link(0x8, 0x0, r1)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

14:59:06 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
epoll_pwait(r2, &(0x7f0000000000)=[{}, {}, {}, {}, {}], 0x5, 0x43, &(0x7f0000000080)={[0xc000000000000000]}, 0x8)

14:59:06 executing program 5:
r0 = io_uring_setup(0x4490, &(0x7f0000000000))
mmap$IORING_OFF_SQES(&(0x7f0000ff1000/0xf000)=nil, 0xf000, 0x0, 0x12, r0, 0x10000000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket(0x11, 0x4, 0x80)
sendmsg$NFQNL_MSG_VERDICT_BATCH(r2, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x34, 0x3, 0x3, 0x101, 0x0, 0x0, {0x2, 0x0, 0x9}, [@NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x80000001}, @NFQA_VERDICT_HDR={0xc, 0x2, {0x0, 0x40}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0x9}}]}, 0x34}, 0x1, 0x0, 0x0, 0x4008800}, 0x22040834)
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
add_key$fscrypt_v1(&(0x7f0000000200), &(0x7f0000000240)={'fscrypt:', @auto=[0x34, 0x30, 0x34, 0x66, 0x30, 0x31, 0x65, 0x62, 0x5d, 0x33, 0x36, 0x63, 0x61, 0x64, 0x35, 0x62]}, &(0x7f0000000280)={0x0, "a683112f7471b65d2748a646e14f475b3988af9c3e8d25e07430ea64f91872b7c593c13acead3aedbb2a18bc33f6bebb961c45163cf4c8a3b91715fffbf2dcc8", 0x31}, 0x48, 0xfffffffffffffff9)
mmap$IORING_OFF_SQES(&(0x7f0000ff7000/0x2000)=nil, 0x2000, 0x2000003, 0x11, r1, 0x10000000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000300)={'wlan1\x00'})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
ioctl$MON_IOCX_MFETCH(r3, 0xc0109207, &(0x7f00000000c0)={&(0x7f0000000080)=[0x0, 0x0], 0x2, 0xfff})

[ 1481.731053][ T7772] FAULT_INJECTION: forcing a failure.
[ 1481.731053][ T7772] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1481.744135][ T7772] CPU: 0 PID: 7772 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1481.752808][ T7772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1481.762960][ T7772] Call Trace:
[ 1481.766237][ T7772]  dump_stack_lvl+0xb7/0x103
[ 1481.770870][ T7772]  dump_stack+0x11/0x1a
[ 1481.775020][ T7772]  should_fail+0x23c/0x250
[ 1481.779452][ T7772]  should_fail_usercopy+0x16/0x20
[ 1481.784478][ T7772]  copy_page_from_iter+0x1fe/0x530
[ 1481.789661][ T7772]  process_vm_rw_single_vec+0x294/0x460
[ 1481.795209][ T7772]  process_vm_rw+0x347/0x4e0
[ 1481.799799][ T7772]  ? fsnotify_perm+0x59/0x2e0
[ 1481.804477][ T7772]  ? __fsnotify_parent+0x32f/0x430
[ 1481.809601][ T7772]  ? get_pid_task+0x8b/0xc0
[ 1481.814092][ T7772]  ? vfs_write+0x50c/0x770
[ 1481.818535][ T7772]  ? __fget_light+0x21b/0x260
[ 1481.823353][ T7772]  ? __cond_resched+0x11/0x40
[ 1481.828082][ T7772]  ? fput+0x2d/0x130
[ 1481.831970][ T7772]  __x64_sys_process_vm_writev+0x76/0x90
[ 1481.837594][ T7772]  do_syscall_64+0x3d/0x90
[ 1481.842012][ T7772]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1481.847898][ T7772] RIP: 0033:0x4665e9
[ 1481.851783][ T7772] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1481.871401][ T7772] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1481.879799][ T7772] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1481.887755][ T7772] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 000000000000599d
[ 1481.895712][ T7772] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1481.903672][ T7772] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1481.911631][ T7772] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:06 executing program 3 (fault-call:3 fault-nth:34):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:06 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)={0xd8, 0x0, 0x8, 0x0, 0x0, 0x0, {0x2, 0x0, 0x2}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x6}, @CTA_TIMEOUT_DATA={0x34, 0x4, 0x0, 0x1, @tcp=[@CTA_TIMEOUT_TCP_UNACK={0x8, 0xb, 0x1, 0x0, 0x58c0}, @CTA_TIMEOUT_TCP_CLOSE_WAIT={0x8, 0x5, 0x1, 0x0, 0x5}, @CTA_TIMEOUT_TCP_RETRANS={0x8, 0xa, 0x1, 0x0, 0x100}, @CTA_TIMEOUT_TCP_ESTABLISHED={0x8, 0x3, 0x1, 0x0, 0x100}, @CTA_TIMEOUT_TCP_RETRANS={0x8, 0xa, 0x1, 0x0, 0xfffffffe}, @CTA_TIMEOUT_TCP_FIN_WAIT={0x8, 0x4, 0x1, 0x0, 0x1ff}]}, @CTA_TIMEOUT_DATA={0x3c, 0x4, 0x0, 0x1, @fccp=[@CTA_TIMEOUT_DCCP_PARTOPEN={0x8, 0x3, 0x1, 0x0, 0x5}, @CTA_TIMEOUT_DCCP_TIMEWAIT={0x8, 0x7, 0x1, 0x0, 0x80}, @CTA_TIMEOUT_DCCP_PARTOPEN={0x8, 0x3, 0x1, 0x0, 0x3f}, @CTA_TIMEOUT_DCCP_RESPOND={0x8, 0x2, 0x1, 0x0, 0xbc7c}, @CTA_TIMEOUT_DCCP_PARTOPEN={0x8, 0x3, 0x1, 0x0, 0x10001}, @CTA_TIMEOUT_DCCP_RESPOND={0x8, 0x2, 0x1, 0x0, 0x9}, @CTA_TIMEOUT_DCCP_TIMEWAIT={0x8, 0x7, 0x1, 0x0, 0xf016}]}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x8914}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_DATA={0x2c, 0x4, 0x0, 0x1, @tcp=[@CTA_TIMEOUT_TCP_UNACK={0x8, 0xb, 0x1, 0x0, 0x80000000}, @CTA_TIMEOUT_TCP_SYN_RECV={0x8, 0x2, 0x1, 0x0, 0x8000}, @CTA_TIMEOUT_TCP_SYN_SENT2={0x8, 0x9, 0x1, 0x0, 0x4}, @CTA_TIMEOUT_TCP_SYN_SENT={0x8, 0x1, 0x1, 0x0, 0x9}, @CTA_TIMEOUT_TCP_RETRANS={0x8, 0xa, 0x1, 0x0, 0x5}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x24000085}, 0x4000811)
r1 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000040)={0x90002008})

14:59:06 executing program 1:
r0 = syz_io_uring_setup(0x727c, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)

14:59:06 executing program 2:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100))
r0 = syz_io_uring_setup(0x5d30, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)
io_uring_setup(0x4ae5, &(0x7f0000000040)={0x0, 0xc2c9, 0x20, 0x0, 0x3b6, 0x0, r0})
socket$inet_udp(0x2, 0x2, 0x0)

14:59:06 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x391, 0x0)

14:59:06 executing program 5:
semget$private(0x0, 0x0, 0x181)
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x4210, 0x10})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

14:59:06 executing program 0:
r0 = epoll_create(0x100)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_create(0x800)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})
epoll_pwait(0xffffffffffffffff, &(0x7f0000000080)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], 0x9, 0x1, &(0x7f0000000100)={[0xffffffff]}, 0x8)

14:59:06 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0x40a85323, &(0x7f0000000040)={{0xfe}, 'port1\x00', 0xef, 0x20000, 0x800, 0x2, 0x1, 0x2, 0x0, 0x0, 0x6, 0x9})

14:59:06 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0xfffffffe})
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000100)={0x9, 0x7, 0x1, 'queue1\x00', 0x86})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

14:59:06 executing program 2:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000001100))
r0 = syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)
r2 = getpid()
r3 = getpid()
sched_setattr(r3, &(0x7f0000000300)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
kcmp$KCMP_EPOLL_TFD(r2, r3, 0x7, r0, &(0x7f0000000040)={0xffffffffffffffff, r4, 0x100})

[ 1482.151429][ T7836] FAULT_INJECTION: forcing a failure.
[ 1482.151429][ T7836] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1482.164534][ T7836] CPU: 0 PID: 7836 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1482.173216][ T7836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1482.183388][ T7836] Call Trace:
[ 1482.186657][ T7836]  dump_stack_lvl+0xb7/0x103
[ 1482.191247][ T7836]  dump_stack+0x11/0x1a
[ 1482.195415][ T7836]  should_fail+0x23c/0x250
[ 1482.199844][ T7836]  should_fail_usercopy+0x16/0x20
[ 1482.204863][ T7836]  copy_page_from_iter+0x1fe/0x530
[ 1482.209990][ T7836]  process_vm_rw_single_vec+0x294/0x460
[ 1482.215585][ T7836]  process_vm_rw+0x347/0x4e0
[ 1482.220165][ T7836]  ? fsnotify_perm+0x59/0x2e0
[ 1482.224852][ T7836]  ? __fsnotify_parent+0x32f/0x430
[ 1482.229966][ T7836]  ? get_pid_task+0x8b/0xc0
[ 1482.234457][ T7836]  ? vfs_write+0x50c/0x770
[ 1482.238864][ T7836]  ? __fget_light+0x21b/0x260
[ 1482.243532][ T7836]  ? __cond_resched+0x11/0x40
[ 1482.248213][ T7836]  ? fput+0x2d/0x130
[ 1482.252167][ T7836]  __x64_sys_process_vm_writev+0x76/0x90
[ 1482.257787][ T7836]  do_syscall_64+0x3d/0x90
[ 1482.262356][ T7836]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1482.268248][ T7836] RIP: 0033:0x4665e9
[ 1482.272129][ T7836] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1482.291900][ T7836] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:06 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f00000001c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000140)={&(0x7f0000000200)={0x68, 0x2, 0x6, 0x101, 0x0, 0x0, {0xf, 0x0, 0x7}, [@IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_PORT_TO={0x6, 0x5, 0x1, 0x0, 0x4e24}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x89}, @IPSET_ATTR_PORT_TO={0x6, 0x5, 0x1, 0x0, 0x4e21}]}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xc}]}, 0x68}, 0x1, 0x0, 0x0, 0x24000000}, 0x4000085)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})

14:59:06 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x8})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

[ 1482.300302][ T7836] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1482.308283][ T7836] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059a0
[ 1482.316243][ T7836] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1482.324202][ T7836] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1482.332160][ T7836] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:07 executing program 3 (fault-call:3 fault-nth:35):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:07 executing program 1:
r0 = syz_io_uring_setup(0x3669, &(0x7f0000000200)={0x0, 0xfffffffe, 0x0, 0x0, 0x3}, &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0x10, r0, 0x10000000)
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)

14:59:07 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000040)={0x90002008})
ioctl$SG_GET_LOW_DMA(r1, 0x227a, &(0x7f0000000000))
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x402c5342, &(0x7f0000000080)={0xfffffff7, 0xd78, 0x6, {0x100, 0x7}, 0x100, 0x7})
r3 = syz_open_dev$usbmon(&(0x7f0000000380), 0x4, 0x8000)
ioctl$MON_IOCQ_URB_LEN(r3, 0x9201)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r1, 0xc0505350, &(0x7f0000000100)={{0x3f, 0x8}, {0x0, 0x4}, 0x5, 0x2, 0x5})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r4, 0xc0603d06, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r5, 0xc0603d06, 0x0)
sendmsg$NL80211_CMD_DISCONNECT(r5, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x1, 0x70bd27, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x6}]}, 0x24}, 0x1, 0x0, 0x0, 0x20004804}, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r6, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_MOD(r4, 0x3, r6, &(0x7f0000000240))
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r2, 0xc0a85320, &(0x7f0000000180)={{0x9}, 'port0\x00', 0xc, 0x100004, 0x3, 0xffff, 0x78, 0x9, 0x7fff, 0x0, 0x5dc5809edae2fab3, 0x9b})

14:59:07 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x392, 0x0)

14:59:07 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
r1 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000040), 0x48000, 0x0)
ioctl$PTP_PEROUT_REQUEST(r1, 0x40383d03, &(0x7f0000000100)={{0xb42, 0x7}, {0x7, 0x2}, 0x4, 0x1})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(0xffffffffffffffff, 0x4040534e, &(0x7f0000000000)={0x1, @time={0x7fffffff}, 0x80, {0x80, 0x12}, 0x7c, 0x1, 0x3})

14:59:07 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500))
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0xa0083, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f0000000080)={&(0x7f0000ffb000/0x4000)=nil, 0x4000}, &(0x7f00000000c0)=0x10)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000040)={0xb0002011})

14:59:07 executing program 1:
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000280)={'syztnl0\x00', &(0x7f0000000300)={'syztnl0\x00', <r0=>0x0, 0x40, 0x8, 0xfffffff9, 0xffffffc9, {{0x10, 0x4, 0x2, 0x1e, 0x40, 0x66, 0x0, 0x9, 0x4, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @remote, {[@ssrr={0x89, 0x7, 0x7f, [@multicast1]}, @noop, @generic={0x44, 0x5, "18e9e6"}, @timestamp={0x44, 0x10, 0x4b, 0x0, 0x9, [0x2, 0x80000000, 0x0]}, @end, @lsrr={0x83, 0x7, 0xba, [@local]}, @ra={0x94, 0x4, 0x1}]}}}}})
sendmsg$BATADV_CMD_GET_HARDIF(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x4c, 0x0, 0x200, 0x70bd25, 0x25dfdbff, {}, [@BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x80}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r0}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x4}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000000}, 0x24040010)
r1 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
pipe(&(0x7f0000000140)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$NL80211_CMD_UPDATE_OWE_INFO(r2, &(0x7f00000004c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000480)={&(0x7f00000001c0)={0x28, 0x0, 0x100, 0x70bd2d, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x56}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
openat$cgroup_netprio_ifpriomap(r3, &(0x7f0000000040), 0x2, 0x0)
mmap$IORING_OFF_SQES(&(0x7f00007dd000/0x1000)=nil, 0x1000, 0x2000009, 0x10, r1, 0x10000000)
io_uring_setup(0x6329, &(0x7f0000000080)={0x0, 0x90a4, 0x0, 0x0, 0x3b3, 0x0, r1})
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000600)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000005c0)={&(0x7f0000000540)={0x70, 0x2, 0x6, 0x301, 0x0, 0x0, {0x0, 0x0, 0x7}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_TYPENAME={0x10, 0x3, 'hash:ip,mac\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x2}, @IPSET_ATTR_REVISION={0x5}]}, 0x70}, 0x1, 0x0, 0x0, 0x4080}, 0x4004000)

14:59:07 executing program 5:
ioctl$PTP_SYS_OFFSET(0xffffffffffffffff, 0x43403d05, &(0x7f0000000100)={0xe})
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
openat$cgroup_netprio_ifpriomap(r1, &(0x7f0000000000), 0x2, 0x0)

14:59:07 executing program 2:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100))
syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$IPCTNL_MSG_CT_GET_STATS(r1, &(0x7f00000001c0)={&(0x7f0000000080), 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0x14, 0x5, 0x1, 0x201, 0x0, 0x0, {0x2, 0x0, 0x6}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x80)

[ 1482.611534][ T7885] FAULT_INJECTION: forcing a failure.
[ 1482.611534][ T7885] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1482.624608][ T7885] CPU: 1 PID: 7885 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1482.633332][ T7885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1482.643441][ T7885] Call Trace:
[ 1482.646774][ T7885]  dump_stack_lvl+0xb7/0x103
[ 1482.651363][ T7885]  dump_stack+0x11/0x1a
[ 1482.655521][ T7885]  should_fail+0x23c/0x250
[ 1482.659976][ T7885]  should_fail_usercopy+0x16/0x20
[ 1482.665010][ T7885]  copy_page_from_iter+0x1fe/0x530
[ 1482.670129][ T7885]  process_vm_rw_single_vec+0x294/0x460
[ 1482.675680][ T7885]  process_vm_rw+0x347/0x4e0
[ 1482.680288][ T7885]  ? fsnotify_perm+0x59/0x2e0
[ 1482.684976][ T7885]  ? __fsnotify_parent+0x32f/0x430
[ 1482.690145][ T7885]  ? get_pid_task+0x8b/0xc0
[ 1482.694684][ T7885]  ? vfs_write+0x50c/0x770
[ 1482.699189][ T7885]  ? __fget_light+0x21b/0x260
[ 1482.703867][ T7885]  ? __cond_resched+0x11/0x40
[ 1482.708625][ T7885]  ? fput+0x2d/0x130
[ 1482.712953][ T7885]  __x64_sys_process_vm_writev+0x76/0x90
[ 1482.718582][ T7885]  do_syscall_64+0x3d/0x90
[ 1482.723006][ T7885]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1482.728908][ T7885] RIP: 0033:0x4665e9
[ 1482.732826][ T7885] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1482.752564][ T7885] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:07 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x393, 0x0)

14:59:07 executing program 0:
r0 = epoll_create(0x8)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r0, &(0x7f0000000200))
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
read$ptp(r3, &(0x7f0000000440)=""/213, 0xd5)
r4 = syz_open_dev$sg(&(0x7f0000000080), 0x1, 0x101140)
ioctl$SCSI_IOCTL_BENCHMARK_COMMAND(r4, 0x3)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000040)={0x90002008})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r5, 0xc0603d06, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r5)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = accept(r6, &(0x7f0000000240)=@pptp={0x18, 0x2, {0x0, @broadcast}}, &(0x7f00000002c0)=0x80)
ioctl$PTP_PIN_GETFUNC(0xffffffffffffffff, 0xc0603d06, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000540), 0xffffffffffffffff)
sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r7, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x40800108}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x80, 0x2, 0x7, 0x101, 0x0, 0x0, {0x69b90c7741f877ee, 0x0, 0x5}, [@NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0xfffffffffffffffb}, @NFACCT_FILTER={0x34, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x5}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x1}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x9}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x2}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x6}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x9}]}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x6}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x4829}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x2}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x3}]}, 0x80}, 0x1, 0x0, 0x0, 0x80}, 0x20000094)
ioctl$PTP_PIN_GETFUNC(r6, 0xc0603d06, 0x0)
r8 = syz_genetlink_get_family_id$batadv(&(0x7f0000000100), r1)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r6, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x34, r8, 0x20, 0x70bd2b, 0x25dfdbfe, {}, [@BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x2000}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x80}]}, 0x34}, 0x1, 0x0, 0x0, 0x4850}, 0x800)

14:59:07 executing program 1:
sendmsg$NL80211_CMD_REGISTER_BEACONS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x24, 0x0, 0x100, 0x70bd2b, 0x25dfdbfe, {{}, {@val={0x8, 0x1, 0x31}, @val={0x8}, @void}}, ["", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4004000)
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x23, &(0x7f0000000040)={&(0x7f0000ff8000/0x4000)=nil, 0x4000}, &(0x7f0000000080)=0x10)
sendmsg$NFT_MSG_GETGEN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x14, 0x10, 0xa, 0x201, 0x0, 0x0, {0x0, 0x0, 0x5}}, 0x14}, 0x1, 0x0, 0x0, 0x24004840}, 0x20000000)

[ 1482.761043][ T7885] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1482.769015][ T7885] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059a3
[ 1482.777048][ T7885] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1482.785040][ T7885] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1482.793010][ T7885] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:07 executing program 3 (fault-call:3 fault-nth:36):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:07 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
r1 = syz_io_uring_setup(0x656f, &(0x7f0000000000)={0x0, 0x3b82, 0x2, 0x2, 0x101, 0x0, r0}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_setup(0x43f5, &(0x7f0000000180)={0x0, 0x3e63, 0x4, 0x2, 0x3dd, 0x0, r1})
sendmsg$OSF_MSG_REMOVE(0xffffffffffffffff, &(0x7f0000000840)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000800)={&(0x7f0000000340)={0x4bc, 0x1, 0x5, 0x101, 0x0, 0x0, {0xc, 0x0, 0x8}, [{{0x254, 0x1, {{0x714e5456d38fcb24, 0xcb9e}, 0xf5, 0x2, 0x3f, 0xfff, 0x1, 'syz0\x00', "f9b856965fe78ead5c8499c9372c4e3ce682870192b2a0855543096c519f12ca", "37266d50e9429cfcf9521e30207593525db9883ed6ead34cc6e4db5cabc13225", [{0x7, 0x0, {0x2, 0x1}}, {0x7f4f, 0x19, {0x0, 0x2}}, {0x401, 0x3f, {0x1, 0x9}}, {0x0, 0x3, {0x3, 0x7}}, {0x8, 0x7, {0x2, 0x63}}, {0x9, 0x1, {0x1, 0x20}}, {0x78c6, 0x7, {0x0, 0x8dad}}, {0x7, 0x716, {0x0, 0x101}}, {0x283, 0x5, {0x1, 0x10001}}, {0x800, 0x2, {0x0, 0x401}}, {0xffff, 0x1, {0x3, 0x8f4}}, {0x7ee5, 0x5, {0x0, 0xe8}}, {0x4, 0x80, {0x2, 0x2}}, {0x6, 0x4, {0x1, 0x7}}, {0x7, 0x1, {0x3, 0xfff}}, {0x1, 0x2, {0x0, 0xe2}}, {0x9a44, 0x5, {0x0, 0x7}}, {0x2, 0xa5, {0x1, 0x80000001}}, {0x1c0, 0x1, {0x1, 0x6}}, {0x8, 0x9, {0x1, 0x5}}, {0xff01, 0xfc01, {0x3, 0x4}}, {0x0, 0xfff, {0x2, 0x101}}, {0x2, 0xf12e, {0x0, 0x3f}}, {0x2f8, 0x800, {0x1, 0x80000000}}, {0x2, 0x1, {0x0, 0x1}}, {0x1000, 0xf58, {0x0, 0x5}}, {0x0, 0x6, {0x0, 0xb0}}, {0x5, 0x7, {0x1, 0x5}}, {0x3, 0x8, {0x0, 0x200}}, {0x5, 0x1, {0x3, 0xfffff738}}, {0x4, 0x13b2, {0x0, 0x26c}}, {0xffff, 0x2, {0x1, 0x5}}, {0x74, 0x40, {0x3, 0x4}}, {0x7fff, 0x9, {0x3, 0x24c8d411}}, {0x6, 0x3ff, {0x2, 0x80000001}}, {0x7, 0xbd, {0x2, 0x2}}, {0x81, 0x1f, {0x1, 0xfffffff9}}, {0xe0, 0x3, {0x1, 0xffff}}, {0x1, 0x8, {0x3, 0x2}}, {0xf801, 0x1f, {0x0, 0x6e169c69}}]}}}, {{0x254, 0x1, {{0x3, 0xcbca}, 0x60, 0x5, 0xa791, 0x7f, 0x11, 'syz0\x00', "07da5bdd93b214aafb209964a4ce8d0d2856fe94b74ba615ccadc5909f3c6058", "c39a58c4149dc8d38895d8aa5e0af6d22018b6a4d08ab1aee64cbff432e460ad", [{0x7ff, 0x4, {0x1, 0x4}}, {0x7fff, 0xfff, {0x1, 0x9}}, {0x1, 0x7ff, {0x0, 0x400}}, {0x0, 0x8, {0x2, 0x1000}}, {0xff, 0x1, {0x0, 0x8001}}, {0x1, 0x101, {0x1, 0xe3a}}, {0xe9, 0x100, {0x1, 0x401}}, {0x1f, 0x4520, {0x1, 0x1}}, {0x1, 0x9, {0x2, 0x1}}, {0x40, 0x5, {0x1, 0x816}}, {0x2, 0x4, {0x3, 0x3ff}}, {0x1f, 0x100, {0x1, 0x1}}, {0x9, 0x2, {0x3, 0x7}}, {0x100, 0xbde2, {0x2, 0x2}}, {0x8000, 0x1000, {0x0, 0xfffffffa}}, {0x9, 0x0, {0x3, 0x807}}, {0x4, 0x7, {0x1}}, {0x3f, 0x3, {0x2}}, {0x8, 0x5, {0x2, 0x103}}, {0x3, 0x1, {0x1, 0xb6}}, {0x5, 0x4, {0x2}}, {0xc58a, 0x3ff, {0x5da6a791a6137d85, 0x8}}, {0x7fff, 0x1, {0x0, 0x10001}}, {0x8, 0xb269, {0x3, 0x4b10}}, {0x3509, 0x2, {0x3, 0x4}}, {0xd7, 0x400, {0x1, 0x28}}, {0x2, 0x9, {0x0, 0x1}}, {0x9, 0x3f, {0x1, 0x3ff}}, {0x6, 0x101, {0x1, 0xe6}}, {0x9, 0x7ff, {0x0, 0xffffffff}}, {0x2, 0x163, {0x0, 0x3}}, {0x200, 0xce8, {0x3, 0x8}}, {0x80, 0x9, {0x3, 0x4}}, {0x7ee, 0x6, {0x1, 0x200}}, {0x5, 0xfff, {0x1, 0x3144}}, {0x2, 0x6, {0x3, 0x10000}}, {0x8, 0x1000, {0x2, 0x6}}, {0x3f, 0x5, {0x1, 0x6}}, {0x1f, 0x2, {0x3}}, {0xcb, 0xb8, {0x0, 0x1000}}]}}}]}, 0x4bc}, 0x1, 0x0, 0x0, 0x80}, 0x40)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
socket$inet_udplite(0x2, 0x2, 0x88)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_EXTTS_REQUEST(r2, 0x40103d02, &(0x7f0000000900)={0x6})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
syz_io_uring_setup(0x22cc, &(0x7f0000000200)={0x0, 0x25b5, 0x20, 0x3, 0x1d9, 0x0, r2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000880), 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f00000008c0))

14:59:07 executing program 2:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100))
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:07 executing program 0:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x640042)
ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(r0, 0xc0a85322, &(0x7f0000000140))
pipe(&(0x7f0000000280)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f00000002c0)={0x101, 0x38000000, 0x0, 0x7, 0x1f, 0x100})
r2 = getpid()
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DISCONNECT(r3, &(0x7f0000000740)={&(0x7f0000000600), 0xc, &(0x7f0000000700)={&(0x7f0000000680)={0x28, r4, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @val={0xc}}}}, 0x28}}, 0x0)
ptrace$cont(0x1f, r2, 0x4, 0x1)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="00032bbd7000fedbdf253000000008000300", @ANYRES32=r5, @ANYBLOB="0c009900030000007c0000000600360005000000060036000a000000"], 0x38}, 0x1, 0x0, 0x0, 0x20008040}, 0x40050)
sched_setattr(r2, &(0x7f0000000300)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
tgkill(r2, 0x0, 0xd)
r6 = epoll_create(0x8)
select(0x40, &(0x7f0000000340), &(0x7f0000000380)={0x1}, &(0x7f00000003c0)={0x4}, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r7, &(0x7f0000000040)={0x90002008})

14:59:07 executing program 1:
r0 = syz_open_dev$sg(&(0x7f0000000540), 0x18e, 0x94440)
ioctl$SG_SET_RESERVED_SIZE(r0, 0x2275, &(0x7f0000000600)=0xffff)
r1 = syz_io_uring_setup(0x76d5, &(0x7f0000000580)={0x0, 0xffffffff, 0x20, 0x1, 0x338}, &(0x7f00007e4000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000380), &(0x7f00000002c0))
r2 = syz_io_uring_setup(0x3fa7, &(0x7f0000000300)={0x0, 0x7b7f, 0x4, 0x2, 0x3b7, 0x0, r1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f00000001c0)=<r3=>0x0)
r4 = io_uring_setup(0x4520, &(0x7f0000000440)={0x0, 0x337a, 0x2, 0x3, 0x108, 0x0, r1})
io_uring_setup(0x413b, &(0x7f00000004c0)={0x0, 0x91d1, 0x1, 0x3, 0x3b9, 0x0, r4})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r5, 0xc0603d06, 0x0)
ioctl$SG_GET_LOW_DMA(r5, 0x227a, &(0x7f0000000200))
r6 = openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000280), 0x2, 0x0)
write$cgroup_netprio_ifpriomap(r6, &(0x7f0000000640)=ANY=[@ANYBLOB="04005ebf37d7e1e0e4e688efc080dd6df81103efeac3449c3ca57cdabdb11c9d0d0448f106fdeb743186e4f71b3ef2a2eeda319697b74c586d2a9ddc4dc71df61103d9b42dafd3f1b3f49346ab1286390b724966f29bdc6688ec8793089d2aff53663d19187d2ffbbe33cb9fa2"], 0xa)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r7=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r7, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT_REMOVE, 0xb6f1b91)
syz_io_uring_submit(r7, r3, &(0x7f0000000400)=@IORING_OP_READ=@pass_buffer={0x16, 0x2, 0x2000, @fd=r2, 0x2, &(0x7f00000003c0)=""/46, 0x2e, 0x2}, 0x4)
mmap$IORING_OFF_SQES(&(0x7f00007e2000/0x3000)=nil, 0x3000, 0x800005, 0x80010, r2, 0x10000000)
r8 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x9040000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, r8, 0x8, 0x70bd2b, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x0)

14:59:07 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x394, 0x0)

14:59:07 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000040)={0x90002008})
sendmsg$NFT_MSG_GETSET(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0xa, 0xa, 0x3, 0x0, 0x0, {0xa, 0x0, 0x7}, [@NFTA_SET_ID={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x20004000)

14:59:07 executing program 1:
r0 = getpid()
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
sendmsg$nl_netfilter(r1, &(0x7f0000003280)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000800)={&(0x7f0000003140)={0x118, 0x12, 0x5, 0x801, 0x70bd26, 0x25dfdbfc, {0x5, 0x0, 0x8}, [@typed={0x8, 0x40, 0x0, 0x0, @ipv4=@private=0xa010100}, @generic="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"]}, 0x118}}, 0x20068095)
sched_setattr(r0, &(0x7f0000000300)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
process_vm_readv(r0, &(0x7f0000003080)=[{&(0x7f0000000100)=""/237, 0xed}, {&(0x7f0000000300)=""/177, 0xb1}, {&(0x7f00000003c0)=""/160, 0xa0}, {&(0x7f0000000480)=""/112, 0xf9e7587e606376f2}, {&(0x7f0000000500)=""/89, 0x59}, {&(0x7f0000000580)=""/174, 0xae}, {&(0x7f0000000640)=""/254, 0xfe}, {&(0x7f0000000740)=""/105, 0x69}, {&(0x7f0000000b00)=""/4096, 0x1000}, {&(0x7f0000002dc0)=""/143, 0x8f}, {&(0x7f0000002e80)=""/217, 0xd9}, {&(0x7f0000002f80)=""/239, 0xef}], 0xc, &(0x7f0000001cc0)=[{&(0x7f0000000840)=""/141, 0x8d}, {&(0x7f0000000900)=""/170, 0xaa}, {&(0x7f00000009c0)=""/184, 0xb8}, {&(0x7f0000000a80)=""/69, 0x45}, {&(0x7f0000000280)=""/18, 0x12}, {&(0x7f0000001d80)=""/4104, 0x1008}, {&(0x7f0000001b00)=""/108, 0x6c}, {&(0x7f0000001b80)=""/32, 0x20}, {&(0x7f0000001bc0)=""/83, 0x53}, {&(0x7f0000001c40)=""/85, 0xfffffffffffffdea}], 0xa, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(0xffffffffffffffff, 0xc0a85320, &(0x7f0000000040)={{0xff, 0x9}, 'port1\x00', 0x0, 0x4, 0x7, 0x9, 0x533, 0x9, 0x28d, 0x0, 0x1, 0x17})
r2 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r2, 0x10000000)

[ 1483.048371][ T7941] FAULT_INJECTION: forcing a failure.
[ 1483.048371][ T7941] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1483.061538][ T7941] CPU: 1 PID: 7941 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1483.070213][ T7941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1483.080361][ T7941] Call Trace:
[ 1483.083639][ T7941]  dump_stack_lvl+0xb7/0x103
[ 1483.088232][ T7941]  dump_stack+0x11/0x1a
[ 1483.092381][ T7941]  should_fail+0x23c/0x250
14:59:07 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
ioctl$PTP_PIN_GETFUNC2(r1, 0xc0603d0f, &(0x7f0000000040)={'\x00', 0x1, 0x3, 0x1fe})
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)

[ 1483.096805][ T7941]  should_fail_usercopy+0x16/0x20
[ 1483.101833][ T7941]  copy_page_from_iter+0x1fe/0x530
[ 1483.106957][ T7941]  process_vm_rw_single_vec+0x294/0x460
[ 1483.112680][ T7941]  process_vm_rw+0x347/0x4e0
[ 1483.117352][ T7941]  ? fsnotify_perm+0x59/0x2e0
[ 1483.122132][ T7941]  ? __fsnotify_parent+0x32f/0x430
[ 1483.127244][ T7941]  ? get_pid_task+0x8b/0xc0
[ 1483.131775][ T7941]  ? vfs_write+0x50c/0x770
[ 1483.136197][ T7941]  ? __fget_light+0x21b/0x260
[ 1483.140868][ T7941]  ? __cond_resched+0x11/0x40
[ 1483.145546][ T7941]  ? fput+0x2d/0x130
[ 1483.149446][ T7941]  __x64_sys_process_vm_writev+0x76/0x90
[ 1483.155084][ T7941]  do_syscall_64+0x3d/0x90
[ 1483.159505][ T7941]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1483.165443][ T7941] RIP: 0033:0x4665e9
[ 1483.169337][ T7941] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1483.178562][ T7953] loop1: detected capacity change from 0 to 264192
14:59:07 executing program 1:
syz_read_part_table(0xffffffffffffffff, 0x6, &(0x7f0000001400)=[{&(0x7f0000000040)="b7f82ceb10fbe2e72504ab94aabcf07260ec4a71c37088e3266d40fbc25017dcecc55642e8a71f28b08f4bbcfd6688f5ca5d7fba7923eae776edf37bd82d93e01d04562cb5b04bf5a0e08c94636269c17720fcf828452279f818ec6a47dc47f045b3da898a247100eb7292be34ed8aa46f55f0419c2f0ee7f5ba1cc1a0f97edeb5ddf0249fb205606b84a2052e61f8882129041120ef5c3538edeaad40a71a10e6c515822085ccea28ec9767acdbace9896230d52aa3f5069e9ff2", 0xbb}, {&(0x7f0000000100)="17e0b2a6c3c72cb89cfd17798456831af71de57be7b92eec866371b7d3e104cbef7fd5742151c4498ddaf9128da5166abe59246cf81c4517dd010a86b49d1a9d1904009db9", 0x45, 0xd6}, {&(0x7f0000000300)="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", 0x1000}, {&(0x7f0000001300)="d105cfe961a5d806a649ea61457de1889975a9e399219ce7c9e888d56cce7128e695f1bc3ad1be65cc8e737dc11564d01f94110d40a398764f406cf15040b9cc97b9a633eb48d82f0d4c630b765bc462470284bbda3fed843c9b904b76d06d0c69ffd212aa1455ee09e58cd2b0c83563da5b712e22fb110149260bd959537b0649a02433da0d6be1e6222819133a68351dcde06a0db1eadc98528fe9b5acbf6e47e39290a7d6ba2560ef112b188f5d35030566b29bfe4b0e33e4de103f1a01e0971b3835e2e4c48e6b371d809b387814944ea7f06e32d5b68deb6f", 0xdb, 0x7}, {&(0x7f0000000180)="1dd407a73d38db92cb96457aa325a8e32f60efbf0ac846c42270644d8243a5a4eba389bb1bdfe8967f6ce99cef606a9350", 0x31, 0x9}, {&(0x7f00000001c0)="87163b50a000f938aae758a28fde9212153d58f7c099cd7d2a3747a6940c2a69f3dc950eb3d5a92f60b8e138656f27", 0x2f, 0x8001}])
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)

14:59:07 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x395, 0x0)

14:59:07 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
io_uring_setup(0xcf5, &(0x7f0000000000)={0x0, 0x98aa, 0x8, 0x0, 0x32b})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x3000001, 0x10, r0, 0x10000000)

[ 1483.189056][ T7941] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1483.189078][ T7941] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1483.189090][ T7941] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059a6
[ 1483.219865][ T7941] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1483.227876][ T7941] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1483.235853][ T7941] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:07 executing program 3 (fault-call:3 fault-nth:37):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:07 executing program 2:
syz_io_uring_setup(0x479b, &(0x7f0000001080)={0x0, 0x0, 0x0, 0xfeb, 0x29e}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f000086b000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000000000))
syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
r0 = getpid()
rt_sigqueueinfo(r0, 0x12, &(0x7f0000000040)={0xc, 0x547, 0x8000})
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:07 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff})
sendmsg$NFT_MSG_GETSETELEM(r2, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x20, 0xd, 0xa, 0x300, 0x0, 0x0, {0x2, 0x0, 0x5}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x4050}, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})

14:59:07 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x0, 0x20})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, r0)

14:59:07 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x396, 0x0)

[ 1483.319197][ T7953] loop1: detected capacity change from 0 to 264192
14:59:07 executing program 1:
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, 0xffffffffffffffff, 0x10000000)

14:59:07 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0xe9a5})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

14:59:08 executing program 5:
r0 = syz_genetlink_get_family_id$batadv(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r0, 0x400, 0x70bd26, 0x25dfdbff}, 0x14}}, 0xc010)
r1 = io_uring_setup(0x400073a5, &(0x7f0000000080)={0x0, 0x3c7a, 0x8, 0x2, 0x1d})
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000200)={'wlan0\x00'})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x10000000)
r3 = syz_open_dev$sg(&(0x7f0000000180), 0x6, 0xa000)
ioctl$SCSI_IOCTL_GET_BUS_NUMBER(r3, 0x5386, &(0x7f00000001c0))
mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000000, 0x100010, r1, 0x10000000)
syz_io_uring_setup(0x9f6, &(0x7f0000000000)={0x0, 0x3bda, 0x1, 0x1, 0x252, 0x0, r1}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000140))

14:59:08 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$MON_IOCX_MFETCH(r1, 0xc0109207, &(0x7f0000000080)={&(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0], 0x4, 0x8000})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})
epoll_create(0x81)

14:59:08 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000180)={0x0, 0xaab0, 0x4, 0x10000}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f00000000c0)=<r1=>0x0, &(0x7f0000000000))
r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2000004, 0x810, r0, 0x10000000)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_ASYNC_CANCEL={0xe, 0x4}, 0x8)
pipe(&(0x7f0000005500)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r4, 0xc0603d06, 0x0)
mmap$IORING_OFF_SQES(&(0x7f00007df000/0x1000)=nil, 0x1000, 0x200000a, 0x50, r4, 0x10000000)
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)
ioctl$SG_GET_SCSI_ID(r3, 0x2276, &(0x7f0000000040))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0xb000)=nil, 0xb000, 0x100000d, 0x4010, r4, 0x10000000)

14:59:08 executing program 2:
r0 = syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100))
mmap$IORING_OFF_SQES(&(0x7f0000f46000/0x4000)=nil, 0x4000, 0x3000000, 0x10, r0, 0x10000000)
syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

[ 1483.501716][ T7993] FAULT_INJECTION: forcing a failure.
[ 1483.501716][ T7993] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1483.514797][ T7993] CPU: 0 PID: 7993 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1483.523468][ T7993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1483.533523][ T7993] Call Trace:
[ 1483.536804][ T7993]  dump_stack_lvl+0xb7/0x103
[ 1483.541453][ T7993]  dump_stack+0x11/0x1a
[ 1483.545713][ T7993]  should_fail+0x23c/0x250
14:59:08 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000040)={0x0, 0xdf7a, 0x8, 0x0, 0xaf}, &(0x7f0000ff9000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000000), &(0x7f00000000c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)

[ 1483.550214][ T7993]  should_fail_usercopy+0x16/0x20
[ 1483.555247][ T7993]  copy_page_from_iter+0x1fe/0x530
[ 1483.560379][ T7993]  process_vm_rw_single_vec+0x294/0x460
[ 1483.565931][ T7993]  process_vm_rw+0x347/0x4e0
[ 1483.570581][ T7993]  ? fsnotify_perm+0x59/0x2e0
[ 1483.575334][ T7993]  ? __fsnotify_parent+0x32f/0x430
[ 1483.580443][ T7993]  ? get_pid_task+0x8b/0xc0
[ 1483.585013][ T7993]  ? vfs_write+0x50c/0x770
[ 1483.589436][ T7993]  ? __fget_light+0x21b/0x260
[ 1483.594124][ T7993]  ? __cond_resched+0x11/0x40
[ 1483.598805][ T7993]  ? fput+0x2d/0x130
[ 1483.602730][ T7993]  __x64_sys_process_vm_writev+0x76/0x90
[ 1483.608486][ T7993]  do_syscall_64+0x3d/0x90
[ 1483.612938][ T7993]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1483.618864][ T7993] RIP: 0033:0x4665e9
[ 1483.622749][ T7993] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1483.642360][ T7993] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1483.650781][ T7993] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1483.658750][ T7993] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059a9
[ 1483.666913][ T7993] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1483.674966][ T7993] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1483.683007][ T7993] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:08 executing program 3 (fault-call:3 fault-nth:38):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:08 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)
sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="4c0000001300010426bd7000fedbdf25080000090c000a8008003900640101012b008080365e03fd82d852f07c7b765c0278e064670cf930c1be24eff6ac440d728a25268bce8e2e6fd249a70de650ee97fa27307a1b9cf753da9fa369f9aa05c00d193e2fbaf0ed4fa65e11638d3e28200ef1a15f45063dc00fd8eeeac748ee8d"], 0x4c}}, 0x8000)
r1 = syz_io_uring_setup(0x29cb, &(0x7f0000000340)={0x0, 0xb572, 0x1, 0x1, 0x196, 0x0, r0}, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000000000/0x3000)=nil, &(0x7f00000003c0), &(0x7f0000000400))
syz_io_uring_setup(0x47c, &(0x7f0000000440)={0x0, 0xc9fd, 0x2, 0x3, 0x18f, 0x0, r1}, &(0x7f00007dd000/0x1000)=nil, &(0x7f00007e0000/0x4000)=nil, &(0x7f00000004c0), &(0x7f0000000500))
syz_io_uring_setup(0x438e, &(0x7f0000000180)={0x0, 0xa8, 0x8, 0x2, 0x168, 0x0, r0}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f00007df000/0x2000)=nil, &(0x7f0000000280), &(0x7f0000000300))

14:59:08 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})
r2 = socket(0x9, 0x4, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
syz_io_uring_setup(0x1478, &(0x7f0000000080)={0x0, 0xa59b, 0x8, 0x3, 0x164, 0x0, r3}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))
setsockopt$inet6_tcp_TLS_TX(r2, 0x6, 0x1, &(0x7f0000000000)=@ccm_128={{0x304}, "7334bb23b614cf6e", "0bd6ecdf8bfb17d0e4e413defd2db248", 'qm4\b', "d14953d1e0b39987"}, 0x28)

14:59:08 executing program 2:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
ioctl$SCSI_IOCTL_DOORLOCK(r0, 0x5380)
syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:08 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x0, 0x0, 0xfffffffe, 0x1})
io_uring_setup(0x19a9, &(0x7f0000000000)={0x0, 0x7398, 0x2, 0x3, 0x345, 0x0, r0})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
r1 = io_uring_setup(0x2bf4, &(0x7f0000000100)={0x0, 0xa496, 0x20, 0x1, 0x283, 0x0, r0})
sendmsg$NL80211_CMD_REGISTER_BEACONS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2044804}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x28, 0x0, 0x2, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x66}, @void, @val={0xc, 0x99, {0x9, 0x78}}}}, ["", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x80)
syz_io_uring_setup(0x3a1d, &(0x7f0000000180)={0x0, 0x549, 0x8, 0x0, 0x44, 0x0, r1}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000240))
prctl$PR_SET_SPECULATION_CTRL(0x35, 0x0)

14:59:08 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x397, 0x0)

14:59:08 executing program 0:
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_UPDATE_OWE_INFO(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000200)={0x9c, r1, 0x300, 0x70bd2b, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0xe26, 0xb}}}}, [@NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x1}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x54}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x5d}, @NL80211_ATTR_IE={0x4d, 0x2a, [@rann={0x7e, 0x15, {{0x1, 0x3}, 0x7f, 0x81, @broadcast, 0x3, 0xffffff80, 0xff}}, @sec_chan_ofs={0x3e, 0x1, 0x1}, @peer_mgmt={0x75, 0x16, {0x1, 0x8, @val=0x2, @void, @val="8594bb76647977f1f1a1c7f4c3e2d282"}}, @rann={0x7e, 0x15, {{0x1, 0x8}, 0x9, 0x3c, @broadcast, 0x10001, 0x101, 0x9}}]}]}, 0x9c}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
r2 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.cpu/syz0\x00', 0x200002, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000040)={0x90002008})

14:59:08 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f00000002c0))
r2 = mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_WRITE_FIXED={0x5, 0x4, 0x2004, @fd=r3, 0x4, 0x303, 0x400, 0x4, 0x1, {0x3}}, 0x3f)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r4, 0xc0603d06, 0x0)
ioctl$SCSI_IOCTL_GET_IDLUN(r4, 0x5382, &(0x7f0000000080))

14:59:08 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
r3 = socket(0x23, 0x4, 0x20)
sendmsg$NFQNL_MSG_VERDICT_BATCH(r3, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x20, 0x3, 0x3, 0x101, 0x0, 0x0, {0x5, 0x0, 0x7}, [@NFQA_VERDICT_HDR={0xc, 0x2, {0xffffffffffffffff, 0x1ff}}]}, 0x20}, 0x1, 0x0, 0x0, 0xc811}, 0x4040001)
ioctl$PTP_EXTTS_REQUEST2(r2, 0x40103d0b, &(0x7f0000000000)={0x9, 0x2})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
setsockopt$inet6_tcp_buf(r1, 0x6, 0xd, &(0x7f0000000000), 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

[ 1483.911298][ T8059] FAULT_INJECTION: forcing a failure.
[ 1483.911298][ T8059] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1483.924374][ T8059] CPU: 0 PID: 8059 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1483.933135][ T8059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1483.943223][ T8059] Call Trace:
[ 1483.946506][ T8059]  dump_stack_lvl+0xb7/0x103
[ 1483.951102][ T8059]  dump_stack+0x11/0x1a
[ 1483.955342][ T8059]  should_fail+0x23c/0x250
14:59:08 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x3bd})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

14:59:08 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})
sendmsg$NL80211_CMD_SET_WDS_PEER(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x94, 0x0, 0x400, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0xc29, 0x78}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @random="42e33d1164bc"}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @random="25e96e14f684"}, @NL80211_ATTR_MAC={0xa, 0x6, @random="35e1440ef8c8"}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @random="cf7774cffbd5"}, @NL80211_ATTR_MAC={0xa, 0x6, @random="91c41fb69469"}]}, 0x94}, 0x1, 0x0, 0x0, 0xc081}, 0x4040000)

[ 1483.959823][ T8059]  should_fail_usercopy+0x16/0x20
[ 1483.964860][ T8059]  copy_page_from_iter+0x1fe/0x530
[ 1483.971989][ T8059]  process_vm_rw_single_vec+0x294/0x460
[ 1483.978013][ T8059]  process_vm_rw+0x347/0x4e0
[ 1483.982608][ T8059]  ? fsnotify_perm+0x59/0x2e0
[ 1483.987391][ T8059]  ? __fsnotify_parent+0x32f/0x430
[ 1483.992503][ T8059]  ? get_pid_task+0x8b/0xc0
[ 1483.997020][ T8059]  ? vfs_write+0x50c/0x770
[ 1484.001445][ T8059]  ? __fget_light+0x21b/0x260
[ 1484.006209][ T8059]  ? __cond_resched+0x11/0x40
14:59:08 executing program 2:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100))
syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000ff1000/0xe000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

[ 1484.010905][ T8059]  ? fput+0x2d/0x130
[ 1484.014898][ T8059]  __x64_sys_process_vm_writev+0x76/0x90
[ 1484.020534][ T8059]  do_syscall_64+0x3d/0x90
[ 1484.024946][ T8059]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1484.030848][ T8059] RIP: 0033:0x4665e9
[ 1484.034734][ T8059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1484.054334][ T8059] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1484.062894][ T8059] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1484.070871][ T8059] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059ac
[ 1484.078843][ T8059] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1484.086813][ T8059] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1484.094784][ T8059] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:08 executing program 3 (fault-call:3 fault-nth:39):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:08 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
r1 = syz_io_uring_setup(0x711e, &(0x7f0000000000)={0x0, 0x11af, 0x0, 0x3, 0x361}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000140))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
sendmsg$NFT_MSG_GETTABLE(r2, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000500)={&(0x7f0000000680)=ANY=[@ANYBLOB="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"], 0x60}, 0x1, 0x0, 0x0, 0x1}, 0x4000)
io_uring_setup(0x2edf, &(0x7f0000000180)={0x0, 0x1e6c, 0x8, 0x1, 0x1f, 0x0, r1})
r3 = io_uring_setup(0x2dea, &(0x7f0000000200)={0x0, 0x8001, 0x2, 0x3, 0x2dc})
syz_io_uring_setup(0x222b, &(0x7f0000000580)={0x0, 0x67c5, 0x20, 0x0, 0x28d}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000600), &(0x7f0000000640))
syz_io_uring_setup(0x356e, &(0x7f0000000280)={0x0, 0x19e3, 0x4, 0x1, 0x7d, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000300)=<r4=>0x0, &(0x7f0000000340))
r5 = mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2000000, 0x80010, r0, 0x10000000)
r6 = socket$nl_route(0x10, 0x3, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000400)=@IORING_OP_CONNECT={0x10, 0x1, 0x0, r6, 0x80, &(0x7f0000000380)=@sco, 0x0, 0x0, 0x1}, 0x433c)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x8, 0x13, r3, 0x10000000)

14:59:08 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
mmap$IORING_OFF_SQES(&(0x7f00007df000/0x3000)=nil, 0x3000, 0x1000002, 0x1010, r1, 0x10000000)

14:59:08 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})

14:59:08 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x398, 0x0)

14:59:08 executing program 2:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100))
syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
sendmsg$NFT_MSG_GETGEN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x10, 0xa, 0x301, 0x0, 0x0, {0x5, 0x0, 0x9}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x95}, 0xc45)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:08 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})
pipe(&(0x7f00000000c0)={<r2=>0xffffffffffffffff})
ioctl$PTP_PEROUT_REQUEST2(r2, 0x40383d0c, &(0x7f0000000080)={{0x6, 0x7}, {0x1, 0xe403}, 0x4c75, 0x1})

14:59:08 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x8, 0x13, r0, 0x10000000)

14:59:08 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)
syz_io_uring_setup(0x3aff, &(0x7f0000000040)={0x0, 0x22d0, 0x2, 0x2, 0x50}, &(0x7f00007de000/0x3000)=nil, &(0x7f00007e0000/0x4000)=nil, &(0x7f00000000c0), &(0x7f0000000100))

14:59:08 executing program 0:
r0 = epoll_create(0x8)
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r0, &(0x7f0000000000)={0x40000010})
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000040)={0x90002008})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_UPDATE_OWE_INFO(r1, &(0x7f00000005c0)={&(0x7f0000000080), 0xc, &(0x7f0000000580)={&(0x7f0000000100)={0x410, r3, 0x10, 0x70bd25, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x2, 0x72}}}}, [@NL80211_ATTR_IE={0x197, 0x2a, [@dsss={0x3, 0x1, 0xb8}, @channel_switch={0x25, 0x3, {0x1, 0x6c, 0x5}}, @fast_bss_trans={0x37, 0xe3, {0x4, 0x4, "3bf5ec029b0f45afa4333ed3ad2d4d3a", "f135913ee86cfa43edf6b96fe693fe48382c1ae7246c12b4d39f2284a8014ec0", "37501e1450401d3a9a1d731a25edcd58116f2c2d19032f18278785a5705058d7", [{0x3, 0x1e, "56342aee8b07120a0992c11cee40155055d348c38677213a3f22546f614a"}, {0x1, 0x23, "1ae6537d98737c2113b18e37effbdccde539a0719def7d67941ed48f0967ff798ced70"}, {0x4, 0x20, "6c0fd40578ff5cf5333ff13ba98b8c37dafff96b98374bb9251bd28ce9c68ba7"}, {0x4, 0x28, "405eb45087d1ea281edd46d0a508577c027d7edfd766dffeb59573b00bb3e7247d5de438f30c57d1"}]}}, @supported_rates={0x1, 0x5, [{0x1b}, {0x5, 0x1}, {0xc}, {0x1, 0x1}, {0x18, 0x1}]}, @mesh_id={0x72, 0x6}, @cf={0x4, 0x6, {0x3, 0x1, 0x7ff, 0x4}}, @channel_switch={0x25, 0x3, {0x0, 0x80, 0xa}}, @perr={0x84, 0x88, {0x3, 0x8, [@ext={{}, @device_a, 0x8, @device_a, 0x22}, @ext={{}, @device_b, 0x400, @device_b, 0x38}, @ext={{}, @device_b, 0x20, @device_b, 0x29}, @not_ext={{}, @device_b, 0x9, "", 0x1f}, @ext={{}, @device_a, 0x1f, @device_b, 0x2e}, @not_ext={{}, @device_a, 0x800, "", 0x17}, @not_ext={{}, @broadcast, 0x1}, @ext={{}, @broadcast, 0x7, @device_a, 0xf}]}}]}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_IE={0x89, 0x2a, [@mesh_id={0x72, 0x6}, @fast_bss_trans={0x37, 0x7b, {0xb1, 0x2, "bc3f04b3610def7de26694503601fe02", "e3b6bde1c418bb14690be53f45bb11d3cbdd1cae9df5a1d96e5db490d964db37", "a49abfd5d2777b7a6cba94e93418e8993838ff1e8d1b15be096b09ea800bcab4", [{0x4, 0x2, "cd62"}, {0x3, 0x23, "559dbfd02e95971bc2c4dfd375d495a09085ef7e54bdbf74e38b49499bd5c533136e4e"}]}}]}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x54}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_IE={0xc, 0x2a, [@ssid={0x0, 0x6, @default_ibss_ssid}]}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x48}, @NL80211_ATTR_IE={0x183, 0x2a, [@preq={0x82, 0x72, @not_ext={{0x1, 0x1, 0x1}, 0x40, 0x9, 0x1b6, @broadcast, 0x1ff, "", 0x3, 0x6, 0x8, [{{0x1, 0x0, 0x1}, @device_b, 0x9}, {{0x0, 0x0, 0x1}, @device_b, 0x100}, {{0x0, 0x0, 0x1}, @device_b, 0x19}, {{0x1, 0x0, 0x1}, @device_b}, {{0x1, 0x0, 0x1}, @device_a, 0x6}, {{0x1}, @device_b, 0x2}, {{0x1}, @broadcast, 0x74}, {{}, @broadcast, 0x8666}]}}, @mesh_config={0x71, 0x7, {0x0, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0x1, 0x49}}, @mesh_id={0x72, 0x6}, @random_vendor={0xdd, 0xf8, "c4286a3c5212f00c41e69fc3404517fb333b883ffda9ebccec1371fb447d692ce04a28c0b75e9e31a8e41a4eab70c3c54d3030332fc0f067ca0ff78cd3e49636cf4f1b7a7a48cbb25a852009d02737ee4f01df46f24705ab7890284f0411da3162f43f002387770582611c06202682c8f1aeccddfa7a9b1a0ce2b22e2ff022329506243148341d75103f70a43c14dbe6a87e96571b2fe9c32cedffc55c396a8a9dea263c3463ef1abab6f242253c75d06e0837dfca5507a42d4f7eb5b6cb82cedbc6b12a32ec567fed7996e7962b6a71cdb0117c7b2a5537c8643e41387b20942a0196431a72ce7e078f89891583242749f79dd92ca98037"}]}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x32}]}, 0x410}, 0x1, 0x0, 0x0, 0x2000c0cc}, 0x800)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r4, 0xc0603d06, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r5, 0xc0603d06, 0x0)
accept(r5, &(0x7f0000000640)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @broadcast}}, &(0x7f0000000540)=0x80)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000600))

14:59:08 executing program 5:
ptrace$peeksig(0x4209, 0xffffffffffffffff, &(0x7f0000000000)={0xc9, 0x0, 0x4}, &(0x7f0000000100)=[{}, {}, {}, {}])
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

14:59:08 executing program 0:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
sendmsg$NL80211_CMD_STOP_AP(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x0, 0xd03, 0x70bd2b, 0x25dfdbfc, {{}, {@void, @void}}, ["", "", ""]}, 0x14}}, 0x20008000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
ioctl$PTP_PIN_SETFUNC(r2, 0x40603d07, &(0x7f00000002c0)={'\x00', 0x0, 0x3})
r3 = epoll_create(0x8)
pipe(&(0x7f0000000280)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r4, 0xc0603d06, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_REGISTER_BEACONS(r4, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="040026bd7000fcdbdf2555000000080001006600000008000300", @ANYRES32=r5, @ANYBLOB="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"], 0x24}, 0x1, 0x0, 0x0, 0x44000}, 0x80)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r6, 0xc0603d06, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r7, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_MOD(r6, 0x3, r7, &(0x7f00000001c0)={0x11})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r8, &(0x7f0000000040)={0x90002008})

[ 1484.370985][ T8120] FAULT_INJECTION: forcing a failure.
[ 1484.370985][ T8120] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1484.384063][ T8120] CPU: 0 PID: 8120 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1484.392748][ T8120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1484.402800][ T8120] Call Trace:
[ 1484.406082][ T8120]  dump_stack_lvl+0xb7/0x103
[ 1484.410675][ T8120]  dump_stack+0x11/0x1a
[ 1484.414826][ T8120]  should_fail+0x23c/0x250
[ 1484.419263][ T8120]  should_fail_usercopy+0x16/0x20
[ 1484.424291][ T8120]  copy_page_from_iter+0x1fe/0x530
[ 1484.429408][ T8120]  process_vm_rw_single_vec+0x294/0x460
[ 1484.434983][ T8120]  process_vm_rw+0x347/0x4e0
[ 1484.439576][ T8120]  ? fsnotify_perm+0x59/0x2e0
[ 1484.444326][ T8120]  ? __fsnotify_parent+0x32f/0x430
[ 1484.449438][ T8120]  ? get_pid_task+0x8b/0xc0
[ 1484.454013][ T8120]  ? vfs_write+0x50c/0x770
[ 1484.458436][ T8120]  ? __fget_light+0x21b/0x260
[ 1484.463188][ T8120]  ? __cond_resched+0x11/0x40
[ 1484.467876][ T8120]  ? fput+0x2d/0x130
[ 1484.471768][ T8120]  __x64_sys_process_vm_writev+0x76/0x90
[ 1484.477484][ T8120]  do_syscall_64+0x3d/0x90
[ 1484.481902][ T8120]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1484.487869][ T8120] RIP: 0033:0x4665e9
[ 1484.491757][ T8120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1484.511456][ T8120] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:09 executing program 3 (fault-call:3 fault-nth:40):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:09 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x2})
syz_io_uring_setup(0x5366, &(0x7f0000000000)={0x0, 0x4cd7, 0x1, 0x1, 0x344, 0x0, r0}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(0xffffffffffffffff, 0xc0a85320, &(0x7f0000000180)={{0x4, 0x5f}, 'port0\x00', 0x80, 0x11400, 0x2, 0x177, 0x7c, 0x6, 0x3, 0x0, 0x1, 0x5})
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000240), 0x10000)

14:59:09 executing program 0:
keyctl$KEYCTL_MOVE(0x1e, 0x0, 0xfffffffffffffffe, 0xfffffffffffffffc, 0x0)
add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
r0 = request_key(&(0x7f0000000000)='blacklist\x00', &(0x7f0000000080)={'syz', 0x3}, &(0x7f00000000c0)='^[^f{\'\x00', 0xfffffffffffffffa)
keyctl$negate(0xd, 0x0, 0x5, r0)
r1 = epoll_create(0x200)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000040)={0x90002008})

14:59:09 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
process_vm_writev(0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)=""/10, 0xa}, {&(0x7f0000000080)=""/51, 0x33}], 0x2, &(0x7f0000000280)=[{&(0x7f0000000100)=""/34, 0x22}, {&(0x7f0000000140)=""/144, 0x90}, {&(0x7f0000000300)=""/88, 0x58}, {&(0x7f0000000380)=""/198, 0xc6}], 0x4, 0x0)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
get_thread_area(&(0x7f0000000500)={0x20, 0x20000800, 0xffffffffffffffff, 0x0, 0x2, 0x0, 0x1, 0x1})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, &(0x7f0000000480)={'\x00', 0x7ff, 0x1, 0x8})
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)
ioctl$PTP_SYS_OFFSET_EXTENDED(r1, 0xc4c03d09, &(0x7f0000000540)={0x10})

14:59:09 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x399, 0x0)

14:59:09 executing program 2:
r0 = syz_io_uring_setup(0x479b, &(0x7f0000001080)={0x0, 0x0, 0x20}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000080), &(0x7f0000001100))
syz_io_uring_setup(0x69c9, &(0x7f0000000100)={0x0, 0x0, 0x10}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
ioctl$PTP_ENABLE_PPS(0xffffffffffffffff, 0x40043d04, 0x1)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040)={0x2010})
r2 = getpid()
process_vm_writev(r2, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

[ 1484.519959][ T8120] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1484.527935][ T8120] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059af
[ 1484.535911][ T8120] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1484.543955][ T8120] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1484.551932][ T8120] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:09 executing program 0:
write$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000000)={'bond_slave_0', 0x32, 0x31}, 0xf)
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})

14:59:09 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000100)={0x0, 0xb581, 0x0, 0x1, 0x230}, &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007dd000/0x2000)=nil, &(0x7f00000000c0), &(0x7f00000002c0))
r1 = getpid()
sched_setattr(r1, &(0x7f0000000300)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
ioprio_set$pid(0x1, r1, 0x2004)
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)

14:59:09 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
r1 = socket(0x1a, 0x2, 0x10001)
getpeername(r1, &(0x7f00000002c0)=@pppol2tpin6={0x18, 0x1, {0x0, <r2=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @ipv4}}}, &(0x7f0000000340)=0x80)
sendmsg$BATADV_CMD_GET_DAT_CACHE(r2, &(0x7f0000000440)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x2c, 0x0, 0x800, 0x70bd28, 0x25dfdbff, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x6}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x1}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DISCONNECT(r1, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, r3, 0x100, 0x70bd27, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0xf}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20804}, 0x20000041)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(0xffffffffffffffff, 0xc0a85352, &(0x7f0000000100)={{0x3f}, 'port0\x00', 0x40, 0x860, 0x0, 0x0, 0x81, 0x3, 0x100, 0x0, 0x4})
openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000280), 0x1, 0x0)

14:59:09 executing program 0:
epoll_create(0x8)
pipe(&(0x7f0000005500))

14:59:09 executing program 1:
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f00000000c0))
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)
ioctl$PTP_PIN_SETFUNC(0xffffffffffffffff, 0x40603d07, &(0x7f0000000040)={'\x00', 0x6fed, 0x1, 0xffffffff})

14:59:09 executing program 1:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x300, 0x0)
r1 = syz_io_uring_setup(0x3811, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x1, 0x13, r1, 0x10000000)
r2 = io_uring_setup(0x46fd, &(0x7f0000000080)={0x0, 0x4ea7, 0x30, 0x0, 0x301, 0x0, r1})
io_uring_setup(0x653e, &(0x7f0000000100)={0x0, 0xa084, 0x4, 0x1, 0x10c, 0x0, r2})

[ 1484.734071][ T8173] FAULT_INJECTION: forcing a failure.
[ 1484.734071][ T8173] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1484.747162][ T8173] CPU: 0 PID: 8173 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1484.755869][ T8173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1484.765920][ T8173] Call Trace:
[ 1484.769197][ T8173]  dump_stack_lvl+0xb7/0x103
[ 1484.773813][ T8173]  dump_stack+0x11/0x1a
[ 1484.778051][ T8173]  should_fail+0x23c/0x250
[ 1484.782489][ T8173]  should_fail_usercopy+0x16/0x20
[ 1484.787656][ T8173]  copy_page_from_iter+0x1fe/0x530
[ 1484.792829][ T8173]  process_vm_rw_single_vec+0x294/0x460
[ 1484.798377][ T8173]  process_vm_rw+0x347/0x4e0
[ 1484.802969][ T8173]  ? fsnotify_perm+0x59/0x2e0
[ 1484.807650][ T8173]  ? __fsnotify_parent+0x32f/0x430
[ 1484.812799][ T8173]  ? get_pid_task+0x8b/0xc0
[ 1484.817399][ T8173]  ? vfs_write+0x50c/0x770
[ 1484.821812][ T8173]  ? __fget_light+0x21b/0x260
[ 1484.826524][ T8173]  ? __cond_resched+0x11/0x40
[ 1484.831257][ T8173]  ? fput+0x2d/0x130
[ 1484.835193][ T8173]  __x64_sys_process_vm_writev+0x76/0x90
[ 1484.840834][ T8173]  do_syscall_64+0x3d/0x90
[ 1484.845253][ T8173]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1484.851206][ T8173] RIP: 0033:0x4665e9
[ 1484.855092][ T8173] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1484.874722][ T8173] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1484.883136][ T8173] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1484.891206][ T8173] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059b2
[ 1484.899175][ T8173] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1484.907143][ T8173] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1484.915110][ T8173] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:09 executing program 3 (fault-call:3 fault-nth:41):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:09 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DISCONNECT(r3, &(0x7f0000000740)={&(0x7f0000000600), 0xc, &(0x7f0000000700)={&(0x7f0000000680)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="cedba9480000000000003000000008000300", @ANYRES32=0x0, @ANYBLOB="0c0099000000000000000000"], 0x28}}, 0x0)
r5 = getpid()
sendmsg$nl_netfilter(r1, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000280)={&(0x7f0000000780)={0x440, 0x2, 0x6, 0x301, 0x70bd27, 0x25dfdbfd, {0x0, 0x0, 0xa}, [@nested={0x90, 0x85, 0x0, 0x1, [@typed={0x8, 0x3d, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x1, 0x0}}, @generic, @typed={0x65, 0x19, 0x0, 0x0, @binary="92509cc37143c165103e0b02125d585ef58a0eafea896150fff3e1555081287a5fdb2abbbbc13aa06b5c019c5e739c5b3013a4589d36c43ba746a97cc36e7d6f324462f599499b53a3d8daff95282871d8d6927adc9597c074cbacb714d75ffe56"}, @typed={0x14, 0x7a, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, @typed={0x8, 0x1a, 0x0, 0x0, @fd=r3}]}, @generic="093da2e9eb8279352c1a48d969f9ae9de9009f79010d301d1db480b9af428bca186bb659c82ef0bc53502de84cadd585d49ea9e15eb64b1ca8f7f69713f924215401b527c0a0dbe28411bde16966f7956ee6b980338ec38f20a940eaadf856a91db58a7561332b939a679619f994538076c1710337ce004755c8b56ab7e61aa7e5fb4c6423b8be1f5cb7a0850f1a13835d06cb8e3bbdec4d07495cb40a97485c075e", @nested={0xee, 0x48, 0x0, 0x1, [@typed={0x8, 0xc, 0x0, 0x0, @fd=r2}, @generic="e78d208c3b06647bffce2d791b5c22e2437de42fb31f2440dfca3bcd7faddcc7e4202f587d9ea7bc536bdf4ec1afdcad612b1e3055c6025dcd3793bc6e30225dac6ea384e7b09aac924df95ce173caf61ec59cce13b89db15a9cad7e7293e00f04a4360234943ef7ff042d93cff8bc912ca7483f6637b2bec75dab9a711724c9811ee128d899472e4c316de6de7edc6042cd824b0c83277e3d7b17a1b88c300d28bfa62090b78b3d55279905ab1608c0f81d585d052c2165870fdcffb4876b559969f5def586c1ee413b72e5907422da3f6a", @typed={0x6, 0x69, 0x0, 0x0, @str='&\x00'}, @typed={0x8, 0x56, 0x0, 0x0, @pid=r5}]}, @typed={0x8, 0x4d, 0x0, 0x0, @u32=0x4b93}, @nested={0x16a, 0x19, 0x0, 0x1, [@generic="8aaeb8b7db6b5b15c498cd66572d7e006a9a85fd07201839c8807ea2f4d9cfba61ac081612fd572356ddef8caec4f947bfc2d1dc58c1d3fb37ab04ccad5889713e0d2a8ff3a1e896a2d6da732e110f2674a1ff1e53bbb1f75f9ebd63d06bd72b7cb1d4cd2a79345e38b134d3f549b2d69a7558f6f63b663c658df0af303bdcf414e277e7107720e69de5b66ece85b854998555819a67291a0ec738a82dc1d4a8f2d5e0494737e1212cae77208cf6e974b6b4f829ad890d3ff4424b539441a369e638d385deb59677dbf592477b8e71918b37597acf51f4aa3e2bc07eb8b8266788e99001279cced949c0d41f6ad186", @typed={0x8, 0x76, 0x0, 0x0, @pid=0xffffffffffffffff}, @generic="073355e260702a4ec336a4ba58a62a34c8d1eeefb91b8f270923437b854ac74e90944f7c2098b759664efe6aa97e9aef5a0ded3f0d79daa44ac1ac3a3a24c83ba6478e94bb88573840d212d388406c8646eb15842c1386058d925352eef1b06e7fcc308296178ef63b0178282b975c"]}, @generic="8956e2899af8a67f0d2d31c626199913ab0912d75fcbe86f420e3e595bda6d3fac39b3ca266c3613f04604c8147b772dbf45ca6d3c6cb8d4ac2068af4104c90ec974eedd583fb4b0d2624f6a41d2538e5dd56a24ecdc70f09b531eb203bb15d9455e409fcba30cae0da2d81207005e1c69e44c513543f57b8e22ee3c17305dc6f7a11dda4c8c370de9709b80de2ef100a563b87aaf06"]}, 0x440}, 0x1, 0x0, 0x0, 0x40d0}, 0x4)
sendmsg$NL80211_CMD_STOP_AP(r2, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4, @ANYBLOB="000000008000dadbe5c27818a746a35942d5bd4062105b66c0672d91d52590b2335d13e939eb3bc3d3a86e32f84fd60dbb9c01ee3d89376c36a9b094ebb4c116050d0fda4a97c680060e99a6843b219a7f43b4468da5de3b0926f79bff3ec68b22ceb138779e47c441884278861c3b077ec609e0bd6470d986107e5a9cf2104402258978abc83c4d7a5213b70d74e4c6935d57087814e292494fa013c69bf9a05d7cbb5f2c29cd1b3825709236992ae76167bb3563ba9230c6e1e6791215497905628fdd890c6f84cee33b20788196e40a0a5a6d89cb77f4fb49427ef63a91e23089"], 0x20}, 0x1, 0x0, 0x0, 0x48000}, 0xc880)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r6, 0xc0603d06, 0x0)
ioctl$PTP_SYS_OFFSET_PRECISE(r6, 0xc0403d08, &(0x7f0000000300))
sched_setscheduler(0x0, 0x0, &(0x7f0000000340)=0x1)

14:59:09 executing program 0:
keyctl$link(0x8, 0x0, 0x0)
request_key(0x0, 0x0, &(0x7f0000000380)='%@}\x00', 0x0)
add_key$keyring(&(0x7f0000000500), 0x0, 0x0, 0x0, 0x0)
add_key$keyring(0x0, &(0x7f0000000280)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffff9)
keyctl$link(0x8, 0x0, 0x0)
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$link(0x8, 0x0, 0x0)
request_key(0x0, 0x0, 0x0, 0xfffffffffffffffd)
add_key$keyring(&(0x7f0000000100), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0x0)
request_key(0x0, &(0x7f0000000480)={'syz', 0x1}, 0x0, 0x0)
keyctl$negate(0xd, 0x0, 0x6, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x4, &(0x7f0000000400)={0x1, &(0x7f00000003c0)=[{0x6, 0x3f, 0x6, 0x101}]})
ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000140))
r0 = add_key$keyring(&(0x7f00000000c0), 0x0, 0x0, 0x0, 0xfffffffffffffffb)
keyctl$negate(0xd, 0x0, 0x0, r0)
epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r1, &(0x7f0000000040)={0x90002008})
clock_gettime(0x0, &(0x7f0000000000))
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_TIMEOUT={0xb, 0x2, 0x0, 0x0, 0x2, &(0x7f0000000080), 0x1, 0x0, 0x1}, 0xc8af)

14:59:09 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x39a, 0x0)

14:59:09 executing program 1:
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
r1 = getpid()
write$cgroup_pid(r0, &(0x7f0000000080)=r1, 0x12)
r2 = syz_io_uring_setup(0x2353, &(0x7f0000000200)={0x0, 0x0, 0x1, 0x0, 0x1c9}, &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000040))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r2, 0x10000000)

14:59:09 executing program 2:
syz_io_uring_setup(0x479b, &(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x2fd}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f00000001c0), &(0x7f0000001100))
syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)
syz_io_uring_setup(0x257e, &(0x7f0000000040)={0x0, 0x4333, 0x4, 0x2, 0x317}, &(0x7f0000c11000/0x1000)=nil, &(0x7f0000e88000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000180))

[ 1485.017315][   T25] audit: type=1326 audit(1628607549.572:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=system_u:system_r:kernel_t:s0 pid=8197 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x4665e9 code=0x0
14:59:09 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x0, 0x13, r0, 0x10000000)

14:59:09 executing program 2:
r0 = syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100)=<r1=>0x0)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r2, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT_REMOVE, 0xb6f1b91)
r3 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000009, 0x1010, r0, 0x10000000)
syz_io_uring_submit(r2, r3, &(0x7f0000000380)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x4, 0x0, 0x0, 0x0, 0x12345}, 0x8)
r4 = syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
r5 = getpid()
process_vm_writev(r5, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)
r6 = syz_io_uring_setup(0x28c0, &(0x7f0000000040)={0x0, 0x7bf3, 0x20, 0x0, 0x324, 0x0, r4}, &(0x7f0000ae0000/0x2000)=nil, &(0x7f0000e47000/0x1000)=nil, &(0x7f00000000c0)=<r7=>0x0, &(0x7f0000000180))
syz_io_uring_submit(r7, r1, &(0x7f0000000200)=@IORING_OP_OPENAT={0x12, 0x3, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000001c0)='./file0\x00', 0x41, 0x6100}, 0x2c20db9)
syz_io_uring_setup(0x7fed, &(0x7f0000000240)={0x0, 0xb6c5, 0x8, 0x0, 0x5c, 0x0, r6}, &(0x7f0000952000/0x2000)=nil, &(0x7f000078f000/0x3000)=nil, &(0x7f00000002c0), &(0x7f0000000340))

14:59:09 executing program 5:
r0 = io_uring_setup(0x6f2d, &(0x7f0000000080)={0x0, 0x7084, 0x0, 0xffffdffe, 0x147})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sysinfo(&(0x7f0000000000)=""/33)
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r2, 0xc0a85320, &(0x7f0000000100)={{0x0, 0x40}, 'port0\x00', 0xc5, 0x3, 0x7fff, 0x10000, 0xa2, 0x7, 0x8001, 0x0, 0x0, 0x7})
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x3)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x2)
r3 = socket(0x10, 0x800, 0x8)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000280), r1)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, r4, 0x2, 0x70bd26, 0x25dfdbff, {}, [@BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x8040)

14:59:09 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r1, 0xc0a85352, &(0x7f0000000080)={{0x7f, 0x2}, 'port0\x00', 0xc2, 0x181c02, 0x80, 0x0, 0x6, 0xff, 0x8a, 0x0, 0x4, 0x6})

[ 1485.155187][ T8220] FAULT_INJECTION: forcing a failure.
[ 1485.155187][ T8220] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1485.168369][ T8220] CPU: 0 PID: 8220 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1485.177048][ T8220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1485.187208][ T8220] Call Trace:
[ 1485.190521][ T8220]  dump_stack_lvl+0xb7/0x103
[ 1485.195120][ T8220]  dump_stack+0x11/0x1a
[ 1485.199375][ T8220]  should_fail+0x23c/0x250
[ 1485.203802][ T8220]  should_fail_usercopy+0x16/0x20
[ 1485.208896][ T8220]  copy_page_from_iter+0x1fe/0x530
[ 1485.214086][ T8220]  process_vm_rw_single_vec+0x294/0x460
[ 1485.219622][ T8220]  process_vm_rw+0x347/0x4e0
[ 1485.224200][ T8220]  ? fsnotify_perm+0x59/0x2e0
[ 1485.228899][ T8220]  ? __fsnotify_parent+0x32f/0x430
[ 1485.234002][ T8220]  ? get_pid_task+0x8b/0xc0
[ 1485.238490][ T8220]  ? vfs_write+0x50c/0x770
[ 1485.242895][ T8220]  ? __fget_light+0x21b/0x260
[ 1485.247557][ T8220]  ? __cond_resched+0x11/0x40
[ 1485.252222][ T8220]  ? fput+0x2d/0x130
[ 1485.256103][ T8220]  __x64_sys_process_vm_writev+0x76/0x90
[ 1485.261721][ T8220]  do_syscall_64+0x3d/0x90
[ 1485.266151][ T8220]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1485.272033][ T8220] RIP: 0033:0x4665e9
[ 1485.275914][ T8220] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1485.295604][ T8220] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:09 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
ioctl$MON_IOCX_MFETCH(0xffffffffffffffff, 0xc0109207, &(0x7f0000000040)={&(0x7f0000000000)=[0x0, 0x0], 0x2, 0x3})

14:59:09 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200)={0x0, 0x0, 0x10, 0x2}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000040))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)

[ 1485.304013][ T8220] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1485.312062][ T8220] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059b5
[ 1485.320042][ T8220] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1485.328006][ T8220] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1485.336144][ T8220] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:09 executing program 3 (fault-call:3 fault-nth:42):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:10 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
sendmsg$nl_netfilter(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x78, 0xd, 0x3, 0x101, 0x70bd2a, 0x25dfdbfd, {0x1, 0x0, 0x1}, [@generic="3660b31d9ac3c276f339bff8e2abb319b9e309dcecd27346fb33dd5112832ea40263e498d6996a653342bf13be0283be5dd161c0f58f0c73cc71f39c15669f6e3e0f9766aae0370f523528da00454d76969294cf87f79dde8604b2352dffdfe30f9b284f"]}, 0x78}, 0x1, 0x0, 0x0, 0x20000080}, 0x4044000)
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)

[ 1485.554824][ T8259] FAULT_INJECTION: forcing a failure.
[ 1485.554824][ T8259] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1485.567934][ T8259] CPU: 1 PID: 8259 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1485.576622][ T8259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1485.586661][ T8259] Call Trace:
[ 1485.589965][ T8259]  dump_stack_lvl+0xb7/0x103
[ 1485.594709][ T8259]  dump_stack+0x11/0x1a
[ 1485.598853][ T8259]  should_fail+0x23c/0x250
[ 1485.603253][ T8259]  should_fail_usercopy+0x16/0x20
[ 1485.608319][ T8259]  copy_page_from_iter+0x1fe/0x530
[ 1485.613420][ T8259]  process_vm_rw_single_vec+0x294/0x460
[ 1485.619221][ T8259]  process_vm_rw+0x347/0x4e0
[ 1485.623791][ T8259]  ? fsnotify_perm+0x59/0x2e0
[ 1485.628448][ T8259]  ? __fsnotify_parent+0x32f/0x430
[ 1485.633603][ T8259]  ? get_pid_task+0x8b/0xc0
[ 1485.638089][ T8259]  ? vfs_write+0x50c/0x770
[ 1485.642538][ T8259]  ? __fget_light+0x21b/0x260
[ 1485.647215][ T8259]  ? __cond_resched+0x11/0x40
[ 1485.651873][ T8259]  ? fput+0x2d/0x130
[ 1485.655745][ T8259]  __x64_sys_process_vm_writev+0x76/0x90
[ 1485.661354][ T8259]  do_syscall_64+0x3d/0x90
[ 1485.665846][ T8259]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1485.671740][ T8259] RIP: 0033:0x4665e9
[ 1485.675612][ T8259] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1485.695256][ T8259] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1485.703663][ T8259] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1485.711611][ T8259] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059b8
[ 1485.719564][ T8259] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1485.727530][ T8259] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1485.735483][ T8259] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:10 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})
ioctl$SG_GET_LOW_DMA(0xffffffffffffffff, 0x227a, &(0x7f0000000000))

14:59:10 executing program 5:
epoll_wait(0xffffffffffffffff, &(0x7f0000000540)=[{}, {}, {}, {}, {}, {}], 0x6, 0x9)
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
r1 = syz_io_uring_setup(0x2311, &(0x7f0000000040), &(0x7f00007db000/0x4000)=nil, &(0x7f00007dd000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
r2 = mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x0, 0x13, r1, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r3, r2, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000500)=@IORING_OP_STATX={0x15, 0xcc736e8398c4ea81, 0x0, 0xffffffffffffff9c, &(0x7f00000003c0), &(0x7f00000004c0)='./file0\x00', 0x200, 0x32cc6a9a0b595025, 0x1}, 0x2)
sendmsg$OSF_MSG_ADD(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000040)={&(0x7f0000000100)={0x268, 0x0, 0x5, 0x3, 0x0, 0x0, {0x1, 0x0, 0x3}, [{{0x254, 0x1, {{0x0, 0x8}, 0x8, 0xb7, 0x5a, 0xff, 0x1b, 'syz1\x00', "b8263047316cd8ba58813b7e620ce5c3d8820a56773c61ca6fc0e69fc6c4744d", "043ee02bc9ad262cfbd29a84251d4cab895e2d4e56c172837a0ebebe2b5ce15a", [{0xa4ce, 0xd78, {0x0, 0x5}}, {0x3, 0xf6bc, {0x0, 0x8ac1}}, {0x0, 0x3, {0x2, 0x1}}, {0x2, 0x7ff, {0x0, 0x8}}, {0x200, 0x3, {0x2, 0x5}}, {0x100, 0x3a5, {0x1, 0x8}}, {0x5774, 0x9, {0x1, 0x1}}, {0x7, 0x0, {0x2, 0xc823}}, {0x7fff, 0x1, {0x2, 0x6}}, {0x3, 0x1, {0x3, 0x8}}, {0x401, 0x5, {0x1, 0x4}}, {0x6, 0x5, {0x3}}, {0x9, 0x0, {0x2, 0x1fae}}, {0xf03, 0x93d6, {0x3, 0x2}}, {0x7, 0x1ff, {0x3, 0x5}}, {0x8001, 0x6, {0x3, 0x81}}, {0x8, 0x8, {0x2, 0x3}}, {0x9, 0x6, {0x0, 0x7fff}}, {0x42e7, 0xfffd, {0x0, 0x2}}, {0x8, 0x40, {0x1, 0x9}}, {0x150e, 0x9, {0x1, 0x1}}, {0x3, 0x351, {0x3, 0x5}}, {0xf9d, 0x1, {0x3, 0x7}}, {0x7, 0x6, {0x3, 0x1000}}, {0x6, 0x9, {0x1, 0x1}}, {0x6, 0x9, {0x3, 0x10000}}, {0x3, 0x7, {0x3, 0x6}}, {0x3, 0x7fff, {0x0, 0xff}}, {0x5177, 0x7f, {0x2, 0x9}}, {0x1000, 0x7dd7, {0x3, 0x1f00}}, {0x8001, 0x81, {0x3, 0x3f}}, {0x1, 0x8, {0x3}}, {0x92f, 0x7f, {0x3, 0x8}}, {0xbe, 0x9, {0x2}}, {0xc1c4, 0xa, {0x0, 0x4}}, {0x751, 0x80, {0x3, 0x2}}, {0x20, 0x0, {0x0, 0xfffff801}}, {0x7, 0x101, {0x2, 0x4}}, {0x9, 0x0, {0x3, 0x7}}, {0x2, 0x3ff, {0x1}}]}}}]}, 0x268}, 0x1, 0x0, 0x0, 0x4800}, 0x0)

14:59:10 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x39b, 0x0)

14:59:10 executing program 1:
sendmsg$IPSET_CMD_GET_BYNAME(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x40, 0xe, 0x6, 0x801, 0x0, 0x0, {0x2, 0x0, 0x9}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x40}}, 0x814)
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000080)={0x0, 0x5fd7}, &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000040))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)

14:59:10 executing program 2:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100))
syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
r0 = epoll_create(0x10000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x2})
getpid()

14:59:10 executing program 3 (fault-call:3 fault-nth:43):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:10 executing program 0:
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x38, 0x0, 0x8, 0x101, 0x0, 0x0, {0x3, 0x0, 0x9}, [@CTA_TIMEOUT_DATA={0x24, 0x4, 0x0, 0x1, @icmpv6=[@CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0xfffffffb}, @CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x4}, @CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x6}, @CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x20}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x40400c0}, 0x80)
r1 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000200), 0x100, 0x0)
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(r3, &(0x7f0000000300)={&(0x7f0000000240), 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x14, 0x4, 0x1, 0xa00, 0x0, 0x0, {0x5, 0x0, 0x5}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x20000000)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000040)={0x90002008})

[ 1485.837177][   T25] audit: type=1326 audit(1628607550.392:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=system_u:system_r:kernel_t:s0 pid=8197 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x4665e9 code=0x0
14:59:10 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
io_uring_setup(0x696e, &(0x7f0000000040)={0x0, 0xc, 0x4, 0x1000001, 0x1e7})
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)

14:59:10 executing program 2:
r0 = syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000f28000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000001100))
ioprio_set$pid(0x3, 0xffffffffffffffff, 0x4007)
syz_io_uring_setup(0x69ca, &(0x7f0000000100)={0x0, 0x4744, 0x20}, &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
prctl$PR_CAP_AMBIENT(0x2f, 0x1, 0x1)
r1 = getpid()
r2 = getpid()
sched_setattr(r2, &(0x7f0000000300)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
sched_rr_get_interval(r2, &(0x7f0000000040))
mmap$IORING_OFF_SQES(&(0x7f00004f8000/0x2000)=nil, 0x2000, 0x1000000, 0x50, r0, 0x10000000)
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:10 executing program 5:
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000000), &(0x7f0000000040)=0x14)
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

14:59:10 executing program 0:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x40040, 0x0)
ioctl$PTP_CLOCK_GETCAPS(r0, 0x80503d01, &(0x7f0000000080))
epoll_create(0xb)
sendmsg$IPSET_CMD_GET_BYINDEX(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000000f060100070000002024a5e80d9e65cff2d03ef53cbb60a0a109469d2c545ddaf4d7b574789bc2dd92ab1c99fb86c183ca4a0269a5edca1a9ee4eb43a5c533f88a55cd4cb659c38c9328d406a2a156867a5f23842608c65700866ddbb9cb379e054864084cd6051c31ba6957febfe129582995d29b662c775d33fca82b897447fbf9fe6ed1cf799f6c"], 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x100)
pipe(&(0x7f0000005500))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
r3 = epoll_create(0x10001)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000100)={0x1000200a})

[ 1485.973999][ T8292] FAULT_INJECTION: forcing a failure.
[ 1485.973999][ T8292] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1485.987072][ T8292] CPU: 1 PID: 8292 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1485.995798][ T8292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1486.005854][ T8292] Call Trace:
[ 1486.009129][ T8292]  dump_stack_lvl+0xb7/0x103
[ 1486.013722][ T8292]  dump_stack+0x11/0x1a
[ 1486.017880][ T8292]  should_fail+0x23c/0x250
[ 1486.022312][ T8292]  should_fail_usercopy+0x16/0x20
[ 1486.027350][ T8292]  copy_page_from_iter+0x1fe/0x530
[ 1486.032463][ T8292]  process_vm_rw_single_vec+0x294/0x460
[ 1486.038004][ T8292]  process_vm_rw+0x347/0x4e0
[ 1486.042595][ T8292]  ? fsnotify_perm+0x59/0x2e0
[ 1486.047291][ T8292]  ? __fsnotify_parent+0x32f/0x430
[ 1486.052413][ T8292]  ? get_pid_task+0x8b/0xc0
[ 1486.056968][ T8292]  ? vfs_write+0x50c/0x770
[ 1486.061385][ T8292]  ? __fget_light+0x21b/0x260
[ 1486.066064][ T8292]  ? __cond_resched+0x11/0x40
[ 1486.070786][ T8292]  ? fput+0x2d/0x130
[ 1486.074780][ T8292]  __x64_sys_process_vm_writev+0x76/0x90
[ 1486.080409][ T8292]  do_syscall_64+0x3d/0x90
[ 1486.084822][ T8292]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1486.090785][ T8292] RIP: 0033:0x4665e9
[ 1486.094669][ T8292] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1486.114272][ T8292] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:10 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
io_uring_setup(0x6bf, &(0x7f0000000040)={0x0, 0x1581, 0x2, 0x1, 0x21, 0x0, r0})
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)

14:59:10 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x39c, 0x0)

14:59:10 executing program 5:
r0 = io_uring_setup(0x10006f2e, &(0x7f0000000080)={0x0, 0x5, 0x0, 0x0, 0x10000000})
r1 = syz_io_uring_setup(0x3b64, &(0x7f0000000000)={0x0, 0x1d07, 0x1b, 0x3, 0xa5, 0x0, r0}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x20000)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r2, 0x40505330, &(0x7f00000001c0)={{0x0, 0x7f}, {0x0, 0x20}, 0x4, 0x1, 0x4})
mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x100000a, 0x12, r1, 0x10000000)

[ 1486.122681][ T8292] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1486.130654][ T8292] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059bb
[ 1486.138618][ T8292] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1486.146591][ T8292] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1486.154574][ T8292] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:10 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r4, 0xc0603d06, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r5=>0x0})
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r4, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x30, 0x3, 0x8, 0x101, 0x0, 0x0, {0x2, 0x0, 0xa}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x2f}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x829a}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0x100}, 0x24000049)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(r3, 0x89f4, &(0x7f0000000100)={'syztnl2\x00', &(0x7f0000000080)={'ip6tnl0\x00', r5, 0x29, 0xe9, 0x0, 0x9, 0x4, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @rand_addr=' \x01\x00', 0x8000, 0x27, 0xe5, 0x1}})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r6, 0xc0603d06, 0x0)
sendmsg$BATADV_CMD_GET_HARDIF(r6, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x2c, 0x0, 0x20, 0x70bd2b, 0x25dfdbfd, {}, [@BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x8}, @BATADV_ATTR_ISOLATION_MASK={0x8}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20}, 0x8000)
r7 = socket$nl_route(0x10, 0x3, 0x0)
write$cgroup_netprio_ifpriomap(r1, &(0x7f0000000240)={'vlan0', 0x32, 0x37}, 0x8)
epoll_ctl$EPOLL_CTL_DEL(r4, 0x2, r7)
sendmsg$NL80211_CMD_REGISTER_BEACONS(r1, &(0x7f0000000440)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x30, 0x0, 0x100, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8, 0x1, 0xa}, @val={0x8}, @val={0xc, 0x99, {0x1, 0x18}}}}, ["", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x10}, 0x800)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000040)={0x90002008})

14:59:10 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20200}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="5c00f9ff", @ANYRES16=r1, @ANYBLOB="000429bd7000fddbdf250400000005002e0000000000050038000100000008003a0000000000050029000000000008002b000200000005002d000000000008000300", @ANYRES32=0x0, @ANYBLOB="080039000100000008000b0000010000"], 0x5c}, 0x1, 0x0, 0x0, 0xd5}, 0x40000)
syz_io_uring_setup(0x7d41, &(0x7f0000000300)={0x0, 0x7d24, 0x4, 0x7, 0x145}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000280))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)

14:59:10 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x2100, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

14:59:10 executing program 3 (fault-call:3 fault-nth:44):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:10 executing program 2:
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff})
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r0, 0xc0305302, &(0x7f0000000080)={0x2b3b, 0x7, 0x0, 0x10000, 0x8, 0x80000001})
syz_io_uring_setup(0x479b, &(0x7f0000001080)={0x0, 0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000bbc000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000001100))
syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r4, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_MOD(r3, 0x3, r4, &(0x7f0000000180)={0x1})
ioctl$SCSI_IOCTL_GET_IDLUN(r2, 0x5382, &(0x7f00000000c0))

14:59:10 executing program 0:
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000200), r0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x82010000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x38, r1, 0x4, 0x70bd2b, 0x25dfdbfc, {}, [@BATADV_ATTR_VLANID={0x6, 0x28, 0x2}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @random="b6e3a1fa213b"}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}]}, 0x38}, 0x1, 0x0, 0x0, 0x4008000}, 0x80)
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000140)={'wlan1\x00'})
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x4080)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000080)={0x10000, 0x3, 0x0, 'queue1\x00', 0x51fa})
r3 = epoll_create(0xe)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
epoll_create(0x10001)
syz_genetlink_get_family_id$batadv(&(0x7f0000000180), r4)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r5, &(0x7f0000000040)={0x90002008})

14:59:10 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x228080, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1000000, 0x10, r1, 0x10000000)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

14:59:10 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="340000000008010200000000000000000c00000a0900010073797a3000000000ff00010073797a31000000000600024080f30000"], 0x34}, 0x1, 0x0, 0x0, 0x40000}, 0x20064040)

[ 1486.442018][ T8359] FAULT_INJECTION: forcing a failure.
[ 1486.442018][ T8359] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1486.455312][ T8359] CPU: 1 PID: 8359 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1486.463984][ T8359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1486.474035][ T8359] Call Trace:
[ 1486.477397][ T8359]  dump_stack_lvl+0xb7/0x103
[ 1486.481982][ T8359]  dump_stack+0x11/0x1a
[ 1486.486164][ T8359]  should_fail+0x23c/0x250
[ 1486.490594][ T8359]  should_fail_usercopy+0x16/0x20
[ 1486.495620][ T8359]  copy_page_from_iter+0x1fe/0x530
[ 1486.500801][ T8359]  process_vm_rw_single_vec+0x294/0x460
[ 1486.506340][ T8359]  process_vm_rw+0x347/0x4e0
[ 1486.510928][ T8359]  ? fsnotify_perm+0x59/0x2e0
[ 1486.515627][ T8359]  ? __fsnotify_parent+0x32f/0x430
[ 1486.520732][ T8359]  ? get_pid_task+0x8b/0xc0
[ 1486.525224][ T8359]  ? vfs_write+0x50c/0x770
[ 1486.529634][ T8359]  ? __fget_light+0x21b/0x260
[ 1486.534304][ T8359]  ? __cond_resched+0x11/0x40
[ 1486.538987][ T8359]  ? fput+0x2d/0x130
[ 1486.542928][ T8359]  __x64_sys_process_vm_writev+0x76/0x90
[ 1486.548694][ T8359]  do_syscall_64+0x3d/0x90
[ 1486.553112][ T8359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1486.558999][ T8359] RIP: 0033:0x4665e9
[ 1486.562899][ T8359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1486.582496][ T8359] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:11 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x39d, 0x0)

14:59:11 executing program 2:
r0 = io_uring_setup(0x10006f2e, &(0x7f0000000080)={0x0, 0x5, 0x0, 0x0, 0x10000000})
r1 = syz_io_uring_setup(0x3b64, &(0x7f0000000000)={0x0, 0x1d07, 0x1b, 0x3, 0xa5, 0x0, r0}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x20000)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r2, 0x40505330, &(0x7f00000001c0)={{0x0, 0x7f}, {0x0, 0x20}, 0x4, 0x1, 0x4})
mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x100000a, 0x12, r1, 0x10000000)

14:59:11 executing program 2:
r0 = io_uring_setup(0x10006f2e, &(0x7f0000000080)={0x0, 0x5, 0x0, 0x0, 0x10000000})
r1 = syz_io_uring_setup(0x3b64, &(0x7f0000000000)={0x0, 0x1d07, 0x1b, 0x3, 0xa5, 0x0, r0}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x20000)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r2, 0x40505330, &(0x7f00000001c0)={{0x0, 0x7f}, {0x0, 0x20}, 0x4, 0x1, 0x4})
mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x100000a, 0x12, r1, 0x10000000)

14:59:11 executing program 2:
r0 = io_uring_setup(0x10006f2e, &(0x7f0000000080)={0x0, 0x5, 0x0, 0x0, 0x10000000})
r1 = syz_io_uring_setup(0x3b64, &(0x7f0000000000)={0x0, 0x1d07, 0x1b, 0x3, 0xa5, 0x0, r0}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x20000)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r2, 0x40505330, &(0x7f00000001c0)={{0x0, 0x7f}, {0x0, 0x20}, 0x4, 0x1, 0x4})
mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x100000a, 0x12, r1, 0x10000000)

14:59:11 executing program 0:
r0 = epoll_create(0x8)
epoll_create1(0x0)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
read$ptp(r1, &(0x7f0000000140)=""/153, 0x99)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000040)={0x90002008})
ioctl$PTP_PIN_SETFUNC(r2, 0x40603d07, &(0x7f0000000080)={'\x00', 0x2, 0x2, 0xff})

14:59:11 executing program 2:
r0 = io_uring_setup(0x10006f2e, &(0x7f0000000080)={0x0, 0x5, 0x0, 0x0, 0x10000000})
syz_io_uring_setup(0x3b64, &(0x7f0000000000)={0x0, 0x1d07, 0x1b, 0x3, 0xa5, 0x0, r0}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x20000)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r1, 0x40505330, &(0x7f00000001c0)={{0x0, 0x7f}, {0x0, 0x20}, 0x4, 0x1, 0x4})

14:59:11 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000000)={0x0, 0x84c, 0x8, 0x0, 0x4})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
syz_io_uring_setup(0x34fb, &(0x7f0000000080)={0x0, 0xef3f, 0x20, 0x2, 0x169, 0x0, r1}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000140))

[ 1486.590913][ T8359] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1486.598880][ T8359] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059be
[ 1486.606870][ T8359] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1486.614836][ T8359] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1486.622799][ T8359] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:11 executing program 3 (fault-call:3 fault-nth:45):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:11 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x0, 0x2010, r0, 0x10000000)

14:59:11 executing program 2:
r0 = io_uring_setup(0x10006f2e, &(0x7f0000000080)={0x0, 0x5, 0x0, 0x0, 0x10000000})
syz_io_uring_setup(0x3b64, &(0x7f0000000000)={0x0, 0x1d07, 0x1b, 0x3, 0xa5, 0x0, r0}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000100), &(0x7f0000000140))
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f00000001c0)={{0x0, 0x7f}, {0x0, 0x20}, 0x4, 0x1, 0x4})

14:59:11 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x39e, 0x0)

14:59:11 executing program 5:
r0 = io_uring_setup(0x6f30, &(0x7f0000000080)={0x0, 0x63, 0x10, 0x3, 0x8})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

14:59:11 executing program 2:
r0 = io_uring_setup(0x10006f2e, &(0x7f0000000080)={0x0, 0x5, 0x0, 0x0, 0x10000000})
syz_io_uring_setup(0x3b64, &(0x7f0000000000)={0x0, 0x1d07, 0x1b, 0x3, 0xa5, 0x0, r0}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000100), &(0x7f0000000140))
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f00000001c0)={{0x0, 0x7f}, {0x0, 0x20}, 0x4, 0x1, 0x4})

14:59:11 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
syz_io_uring_setup(0x42a6, &(0x7f0000000140)={0x0, 0xa713, 0x0, 0x1, 0x74}, &(0x7f00007dc000/0x2000)=nil, &(0x7f00007df000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000280))
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x4, 0x1, 0x101, 0x0, 0x0, {0x7, 0x0, 0x8}, ["", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000010}, 0x840)
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)

14:59:11 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000000))

14:59:11 executing program 2:
r0 = io_uring_setup(0x10006f2e, &(0x7f0000000080)={0x0, 0x5, 0x0, 0x0, 0x10000000})
syz_io_uring_setup(0x3b64, &(0x7f0000000000)={0x0, 0x1d07, 0x1b, 0x3, 0xa5, 0x0, r0}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000100), &(0x7f0000000140))
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f00000001c0)={{0x0, 0x7f}, {0x0, 0x20}, 0x4, 0x1, 0x4})

[ 1486.876811][ T8417] FAULT_INJECTION: forcing a failure.
[ 1486.876811][ T8417] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1486.889917][ T8417] CPU: 0 PID: 8417 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1486.898592][ T8417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1486.908666][ T8417] Call Trace:
[ 1486.911937][ T8417]  dump_stack_lvl+0xb7/0x103
[ 1486.916518][ T8417]  dump_stack+0x11/0x1a
[ 1486.920653][ T8417]  should_fail+0x23c/0x250
[ 1486.925141][ T8417]  should_fail_usercopy+0x16/0x20
[ 1486.930149][ T8417]  copy_page_from_iter+0x1fe/0x530
[ 1486.935266][ T8417]  process_vm_rw_single_vec+0x294/0x460
[ 1486.940801][ T8417]  process_vm_rw+0x347/0x4e0
[ 1486.945374][ T8417]  ? fsnotify_perm+0x59/0x2e0
[ 1486.950106][ T8417]  ? __fsnotify_parent+0x32f/0x430
[ 1486.955198][ T8417]  ? get_pid_task+0x8b/0xc0
[ 1486.959682][ T8417]  ? vfs_write+0x50c/0x770
[ 1486.964159][ T8417]  ? __fget_light+0x21b/0x260
[ 1486.968848][ T8417]  ? __cond_resched+0x11/0x40
[ 1486.973558][ T8417]  ? fput+0x2d/0x130
[ 1486.977462][ T8417]  __x64_sys_process_vm_writev+0x76/0x90
[ 1486.983148][ T8417]  do_syscall_64+0x3d/0x90
[ 1486.987610][ T8417]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1486.993520][ T8417] RIP: 0033:0x4665e9
[ 1486.997393][ T8417] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1487.016996][ T8417] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1487.025390][ T8417] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1487.033340][ T8417] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059c1
[ 1487.041291][ T8417] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1487.049272][ T8417] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1487.057223][ T8417] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:12 executing program 0:
r0 = epoll_create(0x100)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})

14:59:12 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200)={0x0, 0xd42b, 0x2, 0x0, 0x4}, &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007dc000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)
geteuid()

14:59:12 executing program 2:
io_uring_setup(0x10006f2e, &(0x7f0000000080)={0x0, 0x5, 0x0, 0x0, 0x10000000})
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x20000)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f00000001c0)={{0x0, 0x7f}, {0x0, 0x20}, 0x4, 0x1, 0x4})

14:59:12 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x5})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

14:59:12 executing program 3 (fault-call:3 fault-nth:46):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:12 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x39f, 0x0)

14:59:12 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500))
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
r2 = epoll_create(0x1)
kcmp$KCMP_EPOLL_TFD(0x0, 0xffffffffffffffff, 0x7, r0, &(0x7f0000000000)={r2, 0xffffffffffffffff, 0x64889e33})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})

14:59:12 executing program 2:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x20000)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f00000001c0)={{0x0, 0x7f}, {0x0, 0x20}, 0x4, 0x1, 0x4})

14:59:12 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3})
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
write$tcp_congestion(r1, &(0x7f0000000140)='nv\x00', 0x3)
ioctl$PTP_SYS_OFFSET_PRECISE(r2, 0xc0403d08, &(0x7f0000000100))
ioctl$PTP_CLOCK_GETCAPS(r2, 0x80503d01, &(0x7f0000000000))
prctl$PR_GET_KEEPCAPS(0x7)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
ioctl$PTP_SYS_OFFSET_EXTENDED(r1, 0xc4c03d09, &(0x7f0000000200)={0x16})
r3 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000180), 0x440001, 0x0)
ioctl$PTP_SYS_OFFSET(r2, 0x43403d05, &(0x7f00000006c0)={0x13})
ioctl$PTP_EXTTS_REQUEST(r3, 0x40103d02, &(0x7f00000001c0)={0x400, 0x8})

14:59:12 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200)={0x0, 0x0, 0x1, 0xfffffffe}, &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)

14:59:12 executing program 0:
r0 = getpid()
r1 = getpid()
sched_setattr(r1, &(0x7f0000000300)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
r2 = syz_open_dev$usbmon(&(0x7f0000000200), 0x100000001, 0x0)
r3 = epoll_create1(0x80000)
kcmp$KCMP_EPOLL_TFD(r0, r1, 0x7, r2, &(0x7f0000000240)={r3, 0xffffffffffffffff, 0x129a0})
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SG_NEXT_CMD_LEN(r4, 0x2283, &(0x7f00000001c0)=0xf)
r5 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r6, 0xc0603d06, 0x0)
ioctl$PTP_PIN_SETFUNC2(r6, 0x40603d10, &(0x7f0000000080)={'\x00', 0xbd32, 0x2, 0xfffffffb})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r7, &(0x7f0000000040)={0x90002008})
getrusage(0x1, &(0x7f0000000100))

[ 1487.619192][ T8453] FAULT_INJECTION: forcing a failure.
[ 1487.619192][ T8453] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1487.632308][ T8453] CPU: 1 PID: 8453 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1487.640995][ T8453] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1487.651075][ T8453] Call Trace:
[ 1487.654347][ T8453]  dump_stack_lvl+0xb7/0x103
[ 1487.659042][ T8453]  dump_stack+0x11/0x1a
[ 1487.663213][ T8453]  should_fail+0x23c/0x250
14:59:12 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500))
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000040))
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000000))

[ 1487.667750][ T8453]  should_fail_usercopy+0x16/0x20
[ 1487.672775][ T8453]  copy_page_from_iter+0x1fe/0x530
[ 1487.677943][ T8453]  process_vm_rw_single_vec+0x294/0x460
[ 1487.683504][ T8453]  process_vm_rw+0x347/0x4e0
[ 1487.688094][ T8453]  ? fsnotify_perm+0x59/0x2e0
[ 1487.692779][ T8453]  ? __fsnotify_parent+0x32f/0x430
[ 1487.697887][ T8453]  ? get_pid_task+0x8b/0xc0
[ 1487.702388][ T8453]  ? vfs_write+0x50c/0x770
[ 1487.706808][ T8453]  ? __fget_light+0x21b/0x260
[ 1487.711478][ T8453]  ? __cond_resched+0x11/0x40
14:59:12 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$SCSI_IOCTL_GET_IDLUN(r1, 0x5382, &(0x7f0000000000))
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})
r2 = syz_io_uring_setup(0x2311, &(0x7f0000000040), &(0x7f00007db000/0x4000)=nil, &(0x7f00007dd000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
r3 = mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x0, 0x13, r2, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r4, r3, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
pipe(&(0x7f0000005500)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000001c0), 0x1, 0x0)
ioctl$PTP_PIN_GETFUNC(r6, 0xc0603d06, 0x0)
syz_io_uring_submit(0x0, r3, &(0x7f00000000c0)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x3, 0x0, r6, 0x0, &(0x7f0000000080)="f14159d378d982d8bdceee09f55ed671b88111b271a155cb2e9bb13c9ca4e1554cd162b30488e21bf3cc1b02ee820dc2ef5bebcadc", 0x35, 0x100}, 0x6)
ioctl$MON_IOCX_MFETCH(r5, 0xc0109207, &(0x7f0000000180)={&(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x5, 0x80})

14:59:12 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3a0, 0x0)

14:59:12 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
syz_read_part_table(0x20, 0x5, &(0x7f0000000380)=[{&(0x7f0000000080)="aeab333d4c4ee1c69e9d38df1e53aea65d5fa2a8a81b494de8566be6fb241702af4876b8c31b02db1c08061f76442e4b87e2f8ed5c46267a816a5a3b265391e588f629cfe4a809187674a3b47b1d903fae416b55dd82655aebd8a950782fe9908609617d8cd693adfb5cf80f1d29d5954c85a639bb4401bb3ec7063314c6b567aed9cea8402edcb0aa669f00421acb5bdbd89617193e955ade", 0x99}, {&(0x7f0000000000)="57d54cda43d1b31338d137", 0xb, 0x8}, {&(0x7f0000000140)="232f95796347e0f2d0795678627038e01e6746a690970bad760c529557c93a4a765aea34bbcad927f63555ecc710e28865851a2c533f749bf0564e9a8cd078e6d6d6c5fa1ae3bc6e0c46ea74d9e2f16ee97a2f600a40560c43c002507e9fb571aa8c8344d3558e32849b1f59cd228c78cac9f96a974834822eae4dbac7ba2cb6ee32f990643cc36f6a1c1aaffb4852fd549551292fe3d2ed400218fd6dde5c03b0f3272c7cc2e6fb4957866e2313f701c5", 0xb1, 0x5}, {&(0x7f0000000200)="66fbd5f88ddbcd408330c58234fe92deb903b947fa3f88e3196e4c4e9281bd1fd82aa952f648f8c13346f62b4f0ef1ea89dbd998fccc763ec16cee87c1a5d3b75a10b88c7f609893320ed0367d311af29bd9985b79da08e839d199a7ef13d9a7d4662c6ede59dfc55c05e2290adce68829f6396050485676666dda1f25fc24aca0cfb72eaa96feeb7ec45c8ce4d450260d91ac1ac82781b5837ab7", 0x9b, 0x6}, {&(0x7f00000002c0)="290668a6fef35c6c87f250662c20e83b15a474ca027687c0ed1dcbffacffe3d23fc0b8a34ccdceab13c5493be8eec1d018dea08c8826705339c0eb646b73cff7f39792e9332e0789fb087e03d5a982f52891971c898f40fc4108f21b5f1edb67ab351480739aaa6eef637d69aff881621fedfa3c2444f8474cc85e500699fd2f48e793812181d075b473c913eb185bff7e3b377e3f", 0x95, 0x1}])
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})

[ 1487.716206][ T8453]  ? fput+0x2d/0x130
[ 1487.720172][ T8453]  __x64_sys_process_vm_writev+0x76/0x90
[ 1487.725853][ T8453]  do_syscall_64+0x3d/0x90
[ 1487.730259][ T8453]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1487.736210][ T8453] RIP: 0033:0x4665e9
[ 1487.740090][ T8453] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1487.759690][ T8453] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:12 executing program 2:
r0 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x20000)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f00000001c0)={{0x0, 0x7f}, {0x0, 0x20}, 0x4, 0x1, 0x4})

[ 1487.768128][ T8453] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1487.776097][ T8453] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059c4
[ 1487.784152][ T8453] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1487.792113][ T8453] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1487.800079][ T8453] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:12 executing program 3 (fault-call:3 fault-nth:47):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:12 executing program 1:
r0 = syz_io_uring_setup(0x2343, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/syz0\x00', 0x200002, 0x0)
r2 = syz_open_dev$sg(&(0x7f00000000c0), 0x5, 0x10080)
ioctl$SG_GET_LOW_DMA(r2, 0x227a, &(0x7f0000000100))
openat$cgroup_netprio_ifpriomap(r1, &(0x7f0000000080), 0x2, 0x0)

14:59:12 executing program 5:
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0x40a85323, &(0x7f00000001c0)={{0xff, 0x2}, 'port1\x00', 0xfd, 0x0, 0x5, 0x1, 0x8, 0x9, 0x0, 0x0, 0x2, 0x3})
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$IPSET_CMD_GET_BYINDEX(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x3c, 0xf, 0x6, 0x201, 0x0, 0x0, {0x7, 0x0, 0x6}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_INDEX={0x6, 0xb, 0x3}, @IPSET_ATTR_INDEX={0x6}]}, 0x3c}}, 0x400c805)
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
modify_ldt$read_default(0x2, &(0x7f0000000280)=""/84, 0x54)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = io_uring_setup(0x2649, &(0x7f0000000080)={0x0, 0x2000370, 0x4, 0x800000, 0x76, 0x0, r3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r4, 0x10000000)

14:59:12 executing program 2:
r0 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x20000)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f00000001c0)={{0x0, 0x7f}, {0x0, 0x20}, 0x4, 0x1, 0x4})

14:59:12 executing program 2:
r0 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x20000)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f00000001c0)={{0x0, 0x7f}, {0x0, 0x20}, 0x4, 0x1, 0x4})

14:59:12 executing program 0:
r0 = epoll_create(0xffffdffd)
r1 = openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000080), 0x2, 0x0)
add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd)
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f00000000c0)={0x40000000})
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000040)={0x90002008})

14:59:12 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x0, 0x8, 0x1, 0x4b})
pipe(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x8c00, 0x0)
r4 = getpid()
r5 = syz_open_dev$sg(&(0x7f0000000100), 0x8, 0x4000)
kcmp$KCMP_EPOLL_TFD(r4, 0x0, 0x7, r0, &(0x7f0000000140)={r2, r5, 0x4524e49c})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r6, 0xc0603d06, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r7, 0xc0603d06, 0x0)
ioctl$PTP_ENABLE_PPS(r7, 0x40043d04, 0x1)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
read$ptp(r1, &(0x7f0000000180)=""/32, 0x20)
ioctl$PTP_PIN_GETFUNC(r8, 0xc0603d06, 0x0)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r3, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x50, 0x3, 0x1, 0x101, 0x0, 0x0, {0x0, 0x0, 0x2}, [@CTA_MARK={0x8, 0x8, 0x1, 0x0, 0xffff8000}, @CTA_SEQ_ADJ_REPLY={0x24, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x2}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x1}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x6}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0xfff}]}, @CTA_HELP={0x10, 0x5, 0x0, 0x1, {0xb, 0x1, 'amanda\x00'}}]}, 0x50}, 0x1, 0x0, 0x0, 0x4004001}, 0x40c0804)
epoll_ctl$EPOLL_CTL_DEL(r6, 0x2, r8)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r3)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

14:59:12 executing program 1:
r0 = syz_io_uring_setup(0x2002357, &(0x7f0000000200)={0x0, 0x7fbe}, &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f00000002c0)=<r2=>0x0)
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)
syz_open_dev$sg(&(0x7f0000000040), 0x3, 0x20200)
r3 = socket$nl_route(0x10, 0x3, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r4, 0xc0603d06, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r5 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000000c0), 0x141540, 0x0)
ioctl$PTP_PEROUT_REQUEST2(r5, 0x40383d0c, &(0x7f0000000100)={{0x0, 0xffffffff}, {0x1, 0x100}, 0x6f9c})
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_SPLICE={0x1e, 0x4, 0x0, @fd_index=0x4, 0x1, {0x0, r3}, 0x1f, 0x0, 0x0, {0x0, 0x0, r4}}, 0x4)

14:59:12 executing program 2:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f00000001c0)={{0x0, 0x7f}, {0x0, 0x20}, 0x4, 0x1, 0x4})

14:59:12 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3a1, 0x0)

[ 1488.007699][ T8507] FAULT_INJECTION: forcing a failure.
[ 1488.007699][ T8507] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1488.020915][ T8507] CPU: 1 PID: 8507 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1488.029644][ T8507] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1488.039696][ T8507] Call Trace:
[ 1488.042968][ T8507]  dump_stack_lvl+0xb7/0x103
[ 1488.047624][ T8507]  dump_stack+0x11/0x1a
[ 1488.051772][ T8507]  should_fail+0x23c/0x250
[ 1488.056193][ T8507]  should_fail_usercopy+0x16/0x20
[ 1488.061219][ T8507]  copy_page_from_iter+0x1fe/0x530
[ 1488.066333][ T8507]  process_vm_rw_single_vec+0x294/0x460
[ 1488.071967][ T8507]  process_vm_rw+0x347/0x4e0
[ 1488.076555][ T8507]  ? fsnotify_perm+0x59/0x2e0
[ 1488.081224][ T8507]  ? __fsnotify_parent+0x32f/0x430
[ 1488.086374][ T8507]  ? get_pid_task+0x8b/0xc0
[ 1488.090895][ T8507]  ? vfs_write+0x50c/0x770
[ 1488.095330][ T8507]  ? __fget_light+0x21b/0x260
[ 1488.100094][ T8507]  ? __cond_resched+0x11/0x40
14:59:12 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3a2, 0x0)

14:59:12 executing program 0:
r0 = epoll_create(0x6)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000040)={0x90002008})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), r1)
sendmsg$NL80211_CMD_SET_NOACK_MAP(r3, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000240)={&(0x7f00000002c0)={0x30, 0x0, 0x20, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3ff, 0x18}}}}, [@NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x7}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xd9}]}, 0x30}}, 0x5)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r3, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="200026bd7000ffdbdf250800000005002e0001000000050038000100000008003c007c00000005002f0000000000080039e336000000"], 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x4000090)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000180))

[ 1488.104905][ T8507]  ? fput+0x2d/0x130
[ 1488.108868][ T8507]  __x64_sys_process_vm_writev+0x76/0x90
[ 1488.114526][ T8507]  do_syscall_64+0x3d/0x90
[ 1488.118940][ T8507]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1488.124909][ T8507] RIP: 0033:0x4665e9
[ 1488.128801][ T8507] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1488.148407][ T8507] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1488.156860][ T8507] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1488.164894][ T8507] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059c7
[ 1488.172878][ T8507] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1488.180839][ T8507] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1488.188839][ T8507] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:12 executing program 3 (fault-call:3 fault-nth:48):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:12 executing program 2:
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f00000001c0)={{0x0, 0x7f}, {0x0, 0x20}, 0x4, 0x1, 0x4})

14:59:12 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200)={0x0, 0x4, 0x20}, &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000040))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)

14:59:12 executing program 0:
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
ioctl$SCSI_IOCTL_BENCHMARK_COMMAND(r0, 0x3)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000040)={0x90002008})

14:59:12 executing program 2:
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f00000001c0)={{0x0, 0x7f}, {0x0, 0x20}, 0x4, 0x1, 0x4})

14:59:12 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x90002008})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
r3 = syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x102)
r4 = getpid()
sched_setattr(r4, &(0x7f0000000300)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
sendmsg$nl_netfilter(r2, &(0x7f00000007c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000780)={&(0x7f00000000c0)={0x6a0, 0x11, 0x8, 0x201, 0x70bd28, 0x25dfdbfd, {0x2, 0x0, 0x1}, [@nested={0x2fb, 0x69, 0x0, 0x1, [@generic="cab3974f33fb3638359fd4f52518052e517a71", @generic="64bdce76e98d2a5a1181ab7d228be0841897459c426dab47d396ad7743b181b1c4ed818382c11630eb5a966e74cc07c36cfa27913329a356893c98dbf871947d325f2e7b7d8eab62703d8d09b2054271356c1a3cb5923f0884fa33", @typed={0x6, 0x60, 0x0, 0x0, @str='}\x00'}, @generic="0a913517d92e52f148ccf4d14f7aabeb02c75529b6830f1a2d0712093d098414ab4d376f69ccaf9050dcbc2e484c8188ff77b2ad242d62", @generic="cd509db70b5039e9cf44598b973b5874b651958de6f2f8bb24e2796fb68b34ad2eb919b89ab6754ad4fefb595d10dd0983b455a49d8cb6de988730baf98c45603e0d6886adf7cd69f4b6d8cb6ec4c05b8c9cb8865fe3f31cf8f6fd602f707fc53287cedb42961e6183eb66c88d8d70fdbf9eed2e5e0b340f037a5b2e3dc303bbd682733d572bad8a0d44bfe810f9be1ecf0c06376aea051a2af9bcec283d9d6016f27284e5c989b7f4e5e64f57", @generic="4b29f231299946928738c5ee1ab3b456bd715dd4bd48aea377f49bf9b60dabc0f27e3a335dd88264b2c14e557bf32f287d7db3b71a76f30f898b8a1190acea8dc886e64690946ab7b3b292b6213b39bfc786b5061849580daa4531867b3c71c71acd06b8b35510d66ff5fb5d21f443d03973ea232c14b3232885835f8e821c056138e0d645262e41cbb4e6ff107fc5c2c0387a0c7a55", @typed={0x8, 0x8e, 0x0, 0x0, @ipv4=@multicast1}, @generic="6545193fb347bc45b9ea0bd4dd86a8ac8f57dc00a27bcddc785f43ac99b572dc6f48febd66566c278f8482bb79b1cce8ed8d271e06085577bf198333f35cf06f0bdfcebcb6d92daabb0d89d1675b3932a1233abaffeee2052d6befda877484e04986582edd7210a9681b72146eb5d3b541318b2fcaa57036ed4a62ce0122de8681352f26f9b6b129a167412e674b42f7cad3a9f6e5eaf2ac052fc70375ee48354cd6218b071a367301ea78967a8c28b8c50085", @generic="d2bea6356ca422db6bbec318ef98fd6ef97d33698dc12b3b26f0bde646ed49234d4e69c038a288ee950f2fdc084dde089279bc892e0e9e4165eaf17366b035809690605c", @typed={0x8, 0x81, 0x0, 0x0, @u32=0x9}]}, @typed={0x8, 0x38, 0x0, 0x0, @u32=0x1ff}, @typed={0x14, 0x60, 0x0, 0x0, @ipv6=@local}, @generic="2951ba1dfdb9bfb37c05980737101e4e589fcb25ae4ec001e2bc2057909b790ae83c74d485958247f26a1699258aedbb1d26be1b31b7601e5384f39e76a963b71bfeaa0a4395a6009e1966db10029c13", @nested={0xc5, 0x95, 0x0, 0x1, [@generic="21e4423e790a340c4373e5e2c6abe8c0364d349eb52cfce5fea3b3d1122f4a6546ba75fad412be04ca07715671d03b9835a189abb5c2fe5888bdba575f8572fdf2dd02f799b36d668fe433f6240628f35c0cfb5e99ff722298083b9e9f407d923db55640080c023f6694d8ef993f634952b4f5e5d2f955a8261842eca2d1c91f2307a60f9d45ee87775c83c082d18870cb697cf9819329c3be0b59f560d33c6d6715468d98824ec872", @typed={0xe, 0x62, 0x0, 0x0, @str='%^]-*(]%,\x00'}, @typed={0x8, 0x36, 0x0, 0x0, @ipv4=@loopback}]}, @nested={0x184, 0x90, 0x0, 0x1, [@generic="2c1c402664fd68709901cd8f229c2155c2ce85016d116f3b0fe070a24dbddc144133ae84e902c9f94d128c82b871929ea96ed1564f379f", @typed={0x8, 0x54, 0x0, 0x0, @pid=0xffffffffffffffff}, @typed={0x8, 0x76, 0x0, 0x0, @fd=r1}, @typed={0x8, 0x34, 0x0, 0x0, @u32=0x18}, @generic="3d5664d21c197ef22d4ba5704595b3a49e7555e224ca6dae0f639b29dbe0cd401d9d97fada9c8f5d14aa480635c446e312ce605ddd1f74ca7c3db53b1632f6a5a2e93e7a70b0072fa644ca937410f003dc9cc75f571651", @typed={0x8, 0x2c, 0x0, 0x0, @u32=0xd2}, @generic="ba62c4adb21371d1941a0475c6e5b64d57043c027d19be44b44cc6ac4a64307ed254e119cd3e95f0c238d0dfdd4cbd40c566887c4591e082fb222f4d7dd32829d33273102624cc93bfbdfc11c32cc2a44e788e4b1bebf9be885e7b9505f69951971c8b648bf7156b69565db0e95b3339b0ea31e616dac8a35ac84e7a201a40c7beaf40693c4b472890124b455fc9f6f1b90d3379ebb1272d10726b61900787a4b857620d6a5249d0bfcc50055d950bb6ff0bae79b13359ac2b3cc420df9e345f7d69", @typed={0x8, 0x17, 0x0, 0x0, @uid=0xee01}, @typed={0x8, 0x53, 0x0, 0x0, @fd=r3}]}, @nested={0x14, 0x33, 0x0, 0x1, [@typed={0x8, 0x7e, 0x0, 0x0, @u32=0x7}, @typed={0x8, 0x43, 0x0, 0x0, @pid=r4}]}, @generic="9aa13f0a9faf4f286caec81a922b1582de3189364a2a10f8a119cc2003af7e8cf66080310ad63b3a31b47064c65df901f9a4c5d8b2e301c71c58c4b71bac1072207e0859e5ebbe3037a05c75dea93f7e310ffc201b3159dad1c3459db989235056c22bb8666ee0487ba159c2301a1d913bba0d13f56a5ce7233ff8e32127eba4e7210b8d58c24a982125266dad3abc51b94fae6107bae82e793a93b4a96a4e28bc08d87e991ba5a8a90404ddd4794276e667f395c599c6f8f7b7a694cdf689037c"]}, 0x6a0}, 0x1, 0x0, 0x0, 0x800}, 0x90)

[ 1488.379545][ T8557] FAULT_INJECTION: forcing a failure.
[ 1488.379545][ T8557] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1488.392668][ T8557] CPU: 1 PID: 8557 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1488.401388][ T8557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1488.411442][ T8557] Call Trace:
[ 1488.414715][ T8557]  dump_stack_lvl+0xb7/0x103
[ 1488.419300][ T8557]  dump_stack+0x11/0x1a
[ 1488.423530][ T8557]  should_fail+0x23c/0x250
[ 1488.427969][ T8557]  should_fail_usercopy+0x16/0x20
[ 1488.432996][ T8557]  copy_page_from_iter+0x1fe/0x530
[ 1488.438122][ T8557]  process_vm_rw_single_vec+0x294/0x460
[ 1488.443725][ T8557]  process_vm_rw+0x347/0x4e0
[ 1488.448329][ T8557]  ? fsnotify_perm+0x59/0x2e0
[ 1488.453088][ T8557]  ? __fsnotify_parent+0x32f/0x430
[ 1488.458176][ T8557]  ? get_pid_task+0x8b/0xc0
[ 1488.462655][ T8557]  ? vfs_write+0x50c/0x770
[ 1488.467061][ T8557]  ? __fget_light+0x21b/0x260
[ 1488.471735][ T8557]  ? __cond_resched+0x11/0x40
[ 1488.476396][ T8557]  ? fput+0x2d/0x130
[ 1488.480271][ T8557]  __x64_sys_process_vm_writev+0x76/0x90
[ 1488.485884][ T8557]  do_syscall_64+0x3d/0x90
[ 1488.490278][ T8557]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1488.496150][ T8557] RIP: 0033:0x4665e9
[ 1488.500025][ T8557] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1488.519606][ T8557] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1488.527995][ T8557] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1488.535946][ T8557] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059ca
[ 1488.543932][ T8557] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1488.552091][ T8557] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1488.560041][ T8557] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:13 executing program 5:
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, 0xffffffffffffffff, &(0x7f0000000000)={0x40000004})
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x0, 0x0, 0xfffffffc})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
prctl$PR_SET_FPEMU(0xa, 0x0)

14:59:13 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000040)={0x0, 0x0, 0x1}, &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)

14:59:13 executing program 2:
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f00000001c0)={{0x0, 0x7f}, {0x0, 0x20}, 0x4, 0x1, 0x4})

14:59:13 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3a3, 0x0)

14:59:13 executing program 0:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500))
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000040)={0xd0002008})

14:59:13 executing program 3 (fault-call:3 fault-nth:49):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:13 executing program 0:
r0 = epoll_create(0x8)
epoll_create1(0x0)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
read$ptp(r1, &(0x7f0000000140)=""/153, 0x99)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000040)={0x90002008})
ioctl$PTP_PIN_SETFUNC(r2, 0x40603d07, &(0x7f0000000080)={'\x00', 0x2, 0x2, 0xff})

14:59:13 executing program 2:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, 0x0)

14:59:13 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)
prctl$PR_SET_FPEMU(0xa, 0x1)

14:59:13 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x4010, r0, 0x10000000)

[ 1488.978086][ T8594] FAULT_INJECTION: forcing a failure.
[ 1488.978086][ T8594] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1488.991264][ T8594] CPU: 0 PID: 8594 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1488.999940][ T8594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1489.010423][ T8594] Call Trace:
[ 1489.013723][ T8594]  dump_stack_lvl+0xb7/0x103
[ 1489.018373][ T8594]  dump_stack+0x11/0x1a
[ 1489.022520][ T8594]  should_fail+0x23c/0x250
[ 1489.026926][ T8594]  should_fail_usercopy+0x16/0x20
[ 1489.032048][ T8594]  copy_page_from_iter+0x1fe/0x530
[ 1489.037203][ T8594]  process_vm_rw_single_vec+0x294/0x460
[ 1489.042737][ T8594]  process_vm_rw+0x347/0x4e0
[ 1489.047316][ T8594]  ? fsnotify_perm+0x59/0x2e0
[ 1489.051985][ T8594]  ? __fsnotify_parent+0x32f/0x430
[ 1489.057152][ T8594]  ? get_pid_task+0x8b/0xc0
[ 1489.061663][ T8594]  ? vfs_write+0x50c/0x770
[ 1489.066130][ T8594]  ? __fget_light+0x21b/0x260
[ 1489.070787][ T8594]  ? __cond_resched+0x11/0x40
[ 1489.075495][ T8594]  ? fput+0x2d/0x130
[ 1489.079387][ T8594]  __x64_sys_process_vm_writev+0x76/0x90
[ 1489.085006][ T8594]  do_syscall_64+0x3d/0x90
[ 1489.089413][ T8594]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1489.095295][ T8594] RIP: 0033:0x4665e9
[ 1489.099168][ T8594] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1489.118758][ T8594] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:13 executing program 2:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, 0x0)

14:59:13 executing program 5:
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x9, 0x30, r0, 0x10000000)
pipe(&(0x7f0000000040))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f0000000080)={0xa0, @time={0x0, 0x87}, 0x7f, {0x9, 0x5}, 0x81, 0x1, 0x4})

14:59:13 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200)={0x0, 0xca76, 0x0, 0x0, 0x9c}, &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x4000)=nil, &(0x7f0000000000), &(0x7f0000000300))
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT_REMOVE, 0xb6f1b91)
syz_io_uring_submit(r1, 0x0, &(0x7f00000000c0)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x3, 0x0, @fd=r0, 0xce1e, 0x0, 0x7, 0x5}, 0x7fff)
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(r2, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, 0x4, 0x1, 0x101, 0x0, 0x0, {0xc, 0x0, 0x4d5b}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x40)
io_uring_setup(0x5e19, &(0x7f0000000040)={0x0, 0x489d, 0x20, 0x2, 0xf0, 0x0, r0})

[ 1489.127155][ T8594] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1489.135121][ T8594] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059cd
[ 1489.143074][ T8594] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1489.151025][ T8594] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1489.158977][ T8594] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:13 executing program 2:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, 0x0)

14:59:13 executing program 1:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)
socket$inet6_udplite(0xa, 0x2, 0x88)

14:59:13 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3a4, 0x0)

14:59:13 executing program 5:
ioctl$PTP_PIN_SETFUNC(0xffffffffffffffff, 0x40603d07, &(0x7f0000000000)={'\x00', 0x3, 0x0, 0x9})
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x149})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

14:59:13 executing program 2:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f00000001c0)={{}, {0x0, 0x20}, 0x4, 0x1, 0x4})

14:59:14 executing program 0:
r0 = epoll_create(0x8)
epoll_create1(0x0)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
read$ptp(r1, &(0x7f0000000140)=""/153, 0x99)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000040)={0x90002008})
ioctl$PTP_PIN_SETFUNC(r2, 0x40603d07, &(0x7f0000000080)={'\x00', 0x2, 0x2, 0xff})

14:59:14 executing program 3 (fault-call:3 fault-nth:50):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:14 executing program 1:
r0 = io_uring_setup(0x6f2d, &(0x7f0000000080)={0x0, 0x7084, 0x0, 0xffffdffe, 0x147})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sysinfo(&(0x7f0000000000)=""/33)
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r2, 0xc0a85320, &(0x7f0000000100)={{0x0, 0x40}, 'port0\x00', 0xc5, 0x3, 0x7fff, 0x10000, 0xa2, 0x7, 0x8001, 0x0, 0x0, 0x7})
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x3)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x2)
r3 = socket(0x10, 0x800, 0x8)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000280), r1)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, r4, 0x2, 0x70bd26, 0x25dfdbff, {}, [@BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x8040)

14:59:14 executing program 2:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f00000001c0)={{}, {0x0, 0x20}, 0x4, 0x1, 0x4})

14:59:14 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
ioctl$SG_SET_TIMEOUT(0xffffffffffffffff, 0x2201, &(0x7f0000000000)=0x4)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

14:59:14 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3a5, 0x0)

14:59:14 executing program 1:
r0 = io_uring_setup(0x6f2d, &(0x7f0000000080)={0x0, 0x7084, 0x0, 0xffffdffe, 0x147})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sysinfo(&(0x7f0000000000)=""/33)
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r2, 0xc0a85320, &(0x7f0000000100)={{0x0, 0x40}, 'port0\x00', 0xc5, 0x3, 0x7fff, 0x10000, 0xa2, 0x7, 0x8001, 0x0, 0x0, 0x7})
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x3)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x2)
r3 = socket(0x10, 0x800, 0x8)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000280), r1)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, r4, 0x2, 0x70bd26, 0x25dfdbff, {}, [@BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x8040)

14:59:14 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
r1 = socket(0xb, 0x6, 0x6)
syz_genetlink_get_family_id$batadv(&(0x7f0000000000), r1)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$MON_IOCX_MFETCH(r2, 0xc0109207, &(0x7f0000000140)={&(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0], 0x4, 0x5})

14:59:14 executing program 2:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f00000001c0)={{}, {0x0, 0x20}, 0x4, 0x1, 0x4})

14:59:14 executing program 1:
r0 = io_uring_setup(0x6f2d, &(0x7f0000000080)={0x0, 0x7084, 0x0, 0xffffdffe, 0x147})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sysinfo(&(0x7f0000000000)=""/33)
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r2, 0xc0a85320, &(0x7f0000000100)={{0x0, 0x40}, 'port0\x00', 0xc5, 0x3, 0x7fff, 0x10000, 0xa2, 0x7, 0x8001, 0x0, 0x0, 0x7})
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x3)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x2)
r3 = socket(0x10, 0x800, 0x8)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000280), r1)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, r4, 0x2, 0x70bd26, 0x25dfdbff, {}, [@BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x8040)

14:59:14 executing program 2:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f00000001c0)={{0x0, 0x7f}, {}, 0x4, 0x1, 0x4})

[ 1489.887416][ T8671] FAULT_INJECTION: forcing a failure.
[ 1489.887416][ T8671] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1489.900511][ T8671] CPU: 1 PID: 8671 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1489.909192][ T8671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1489.919258][ T8671] Call Trace:
[ 1489.922530][ T8671]  dump_stack_lvl+0xb7/0x103
[ 1489.927114][ T8671]  dump_stack+0x11/0x1a
[ 1489.931266][ T8671]  should_fail+0x23c/0x250
14:59:14 executing program 1:
r0 = io_uring_setup(0x6f2d, &(0x7f0000000080)={0x0, 0x7084, 0x0, 0xffffdffe, 0x147})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sysinfo(&(0x7f0000000000)=""/33)
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r2, 0xc0a85320, &(0x7f0000000100)={{0x0, 0x40}, 'port0\x00', 0xc5, 0x3, 0x7fff, 0x10000, 0xa2, 0x7, 0x8001, 0x0, 0x0, 0x7})
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x3)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x2)
socket(0x10, 0x800, 0x8)
syz_genetlink_get_family_id$batadv(&(0x7f0000000280), r1)

[ 1489.935681][ T8671]  should_fail_usercopy+0x16/0x20
[ 1489.940724][ T8671]  copy_page_from_iter+0x1fe/0x530
[ 1489.945840][ T8671]  process_vm_rw_single_vec+0x294/0x460
[ 1489.951379][ T8671]  process_vm_rw+0x347/0x4e0
[ 1489.955961][ T8671]  ? fsnotify_perm+0x59/0x2e0
[ 1489.960637][ T8671]  ? __fsnotify_parent+0x32f/0x430
[ 1489.965747][ T8671]  ? get_pid_task+0x8b/0xc0
[ 1489.970339][ T8671]  ? vfs_write+0x50c/0x770
[ 1489.974752][ T8671]  ? __fget_light+0x21b/0x260
[ 1489.979432][ T8671]  ? __cond_resched+0x11/0x40
[ 1489.984106][ T8671]  ? fput+0x2d/0x130
[ 1489.987997][ T8671]  __x64_sys_process_vm_writev+0x76/0x90
[ 1489.993627][ T8671]  do_syscall_64+0x3d/0x90
[ 1489.998040][ T8671]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1490.003952][ T8671] RIP: 0033:0x4665e9
[ 1490.008021][ T8671] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1490.027629][ T8671] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1490.036050][ T8671] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1490.044031][ T8671] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059d0
[ 1490.052034][ T8671] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1490.059993][ T8671] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1490.067955][ T8671] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:15 executing program 0:
r0 = epoll_create(0x8)
epoll_create1(0x0)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
read$ptp(r1, &(0x7f0000000140)=""/153, 0x99)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000040)={0x90002008})
ioctl$PTP_PIN_SETFUNC(r2, 0x40603d07, &(0x7f0000000080)={'\x00', 0x2, 0x2, 0xff})

14:59:15 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3a6, 0x0)

14:59:15 executing program 2:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f00000001c0)={{0x0, 0x7f}, {}, 0x4, 0x1, 0x4})

14:59:15 executing program 1:
r0 = io_uring_setup(0x6f2d, &(0x7f0000000080)={0x0, 0x7084, 0x0, 0xffffdffe, 0x147})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sysinfo(&(0x7f0000000000)=""/33)
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r1, 0xc0a85320, &(0x7f0000000100)={{0x0, 0x40}, 'port0\x00', 0xc5, 0x3, 0x7fff, 0x10000, 0xa2, 0x7, 0x8001, 0x0, 0x0, 0x7})
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x3)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x2)
socket(0x10, 0x800, 0x8)

14:59:15 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
socket(0x2c, 0x3, 0x9)

14:59:15 executing program 3 (fault-call:3 fault-nth:51):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:15 executing program 2:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f00000001c0)={{0x0, 0x7f}, {}, 0x0, 0x1, 0x4})

14:59:15 executing program 1:
r0 = io_uring_setup(0x6f2d, &(0x7f0000000080)={0x0, 0x7084, 0x0, 0xffffdffe, 0x147})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sysinfo(&(0x7f0000000000)=""/33)
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r1, 0xc0a85320, &(0x7f0000000100)={{0x0, 0x40}, 'port0\x00', 0xc5, 0x3, 0x7fff, 0x10000, 0xa2, 0x7, 0x8001, 0x0, 0x0, 0x7})
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x3)
socket(0x10, 0x800, 0x8)

14:59:15 executing program 5:
r0 = io_uring_setup(0x6aef, &(0x7f0000000080)={0x0, 0x0, 0x4})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x10002, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000100))
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
ioctl$MON_IOCQ_URB_LEN(r1, 0x9201)

[ 1490.778161][ T8722] FAULT_INJECTION: forcing a failure.
[ 1490.778161][ T8722] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1490.791334][ T8722] CPU: 1 PID: 8722 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1490.800007][ T8722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1490.810048][ T8722] Call Trace:
[ 1490.813324][ T8722]  dump_stack_lvl+0xb7/0x103
[ 1490.817900][ T8722]  dump_stack+0x11/0x1a
[ 1490.822039][ T8722]  should_fail+0x23c/0x250
[ 1490.826530][ T8722]  should_fail_usercopy+0x16/0x20
[ 1490.831601][ T8722]  copy_page_from_iter+0x1fe/0x530
[ 1490.836738][ T8722]  process_vm_rw_single_vec+0x294/0x460
[ 1490.842271][ T8722]  process_vm_rw+0x347/0x4e0
[ 1490.846845][ T8722]  ? fsnotify_perm+0x59/0x2e0
[ 1490.851605][ T8722]  ? __fsnotify_parent+0x32f/0x430
[ 1490.856700][ T8722]  ? get_pid_task+0x8b/0xc0
[ 1490.861192][ T8722]  ? vfs_write+0x50c/0x770
[ 1490.865649][ T8722]  ? __fget_light+0x21b/0x260
[ 1490.870322][ T8722]  ? __cond_resched+0x11/0x40
[ 1490.875056][ T8722]  ? fput+0x2d/0x130
[ 1490.878937][ T8722]  __x64_sys_process_vm_writev+0x76/0x90
[ 1490.884559][ T8722]  do_syscall_64+0x3d/0x90
[ 1490.888973][ T8722]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1490.894897][ T8722] RIP: 0033:0x4665e9
[ 1490.898775][ T8722] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1490.918435][ T8722] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:15 executing program 2:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f00000001c0)={{0x0, 0x7f}, {}, 0x0, 0x0, 0x4})

[ 1490.926834][ T8722] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1490.934788][ T8722] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059d3
[ 1490.942744][ T8722] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1490.950710][ T8722] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1490.958667][ T8722] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:15 executing program 1:
r0 = io_uring_setup(0x6f2d, &(0x7f0000000080)={0x0, 0x7084, 0x0, 0xffffdffe, 0x147})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sysinfo(&(0x7f0000000000)=""/33)
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r1, 0xc0a85320, &(0x7f0000000100)={{0x0, 0x40}, 'port0\x00', 0xc5, 0x3, 0x7fff, 0x10000, 0xa2, 0x7, 0x8001, 0x0, 0x0, 0x7})
socket(0x10, 0x800, 0x8)

14:59:15 executing program 2:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f00000001c0)={{0x0, 0x7f}})

14:59:16 executing program 0:
r0 = epoll_create(0x8)
epoll_create1(0x0)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
read$ptp(r1, &(0x7f0000000140)=""/153, 0x99)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000040)={0x90002008})

14:59:16 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x4, 0x0, 0x0, 0xfffffffd})
ioperm(0xfffffffffffffff7, 0x3, 0x1)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

14:59:16 executing program 2:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100))
syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$IPCTNL_MSG_CT_GET_STATS(r1, &(0x7f00000001c0)={&(0x7f0000000080), 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0x14, 0x5, 0x1, 0x201, 0x0, 0x0, {0x2, 0x0, 0x6}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x80)

14:59:16 executing program 3 (fault-call:3 fault-nth:52):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:16 executing program 1:
r0 = io_uring_setup(0x6f2d, &(0x7f0000000080)={0x0, 0x7084, 0x0, 0xffffdffe, 0x147})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sysinfo(&(0x7f0000000000)=""/33)
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
socket(0x10, 0x800, 0x8)

14:59:16 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3a7, 0x0)

14:59:16 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0xa2080, 0x0)
io_uring_setup(0x7563, &(0x7f0000000100)={0x0, 0xe472, 0x1, 0x2, 0x342, 0x0, r1})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

14:59:16 executing program 1:
r0 = io_uring_setup(0x6f2d, &(0x7f0000000080)={0x0, 0x7084, 0x0, 0xffffdffe, 0x147})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
pipe(&(0x7f0000005500))
sysinfo(&(0x7f0000000000)=""/33)
socket(0x10, 0x800, 0x8)

14:59:16 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x0, 0x0, 0xfffffffd})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

14:59:16 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500))
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0xa0083, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f0000000080)={&(0x7f0000ffb000/0x4000)=nil, 0x4000}, &(0x7f00000000c0)=0x10)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000040)={0xb0002011})

[ 1491.663162][ T8778] FAULT_INJECTION: forcing a failure.
[ 1491.663162][ T8778] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1491.676414][ T8778] CPU: 0 PID: 8778 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1491.685093][ T8778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1491.695140][ T8778] Call Trace:
[ 1491.698411][ T8778]  dump_stack_lvl+0xb7/0x103
[ 1491.702996][ T8778]  dump_stack+0x11/0x1a
[ 1491.707149][ T8778]  should_fail+0x23c/0x250
[ 1491.711569][ T8778]  should_fail_usercopy+0x16/0x20
[ 1491.716592][ T8778]  copy_page_from_iter+0x1fe/0x530
[ 1491.721713][ T8778]  process_vm_rw_single_vec+0x294/0x460
[ 1491.727321][ T8778]  process_vm_rw+0x347/0x4e0
[ 1491.731978][ T8778]  ? fsnotify_perm+0x59/0x2e0
[ 1491.736708][ T8778]  ? __fsnotify_parent+0x32f/0x430
[ 1491.741815][ T8778]  ? get_pid_task+0x8b/0xc0
[ 1491.746310][ T8778]  ? vfs_write+0x50c/0x770
[ 1491.750720][ T8778]  ? __fget_light+0x21b/0x260
[ 1491.755411][ T8778]  ? __cond_resched+0x11/0x40
14:59:16 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500))
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0xa0083, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f0000000080)={&(0x7f0000ffb000/0x4000)=nil, 0x4000}, &(0x7f00000000c0)=0x10)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000040)={0xb0002011})

[ 1491.760092][ T8778]  ? fput+0x2d/0x130
[ 1491.764022][ T8778]  __x64_sys_process_vm_writev+0x76/0x90
[ 1491.769663][ T8778]  do_syscall_64+0x3d/0x90
[ 1491.774098][ T8778]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1491.780078][ T8778] RIP: 0033:0x4665e9
[ 1491.783956][ T8778] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1491.803566][ T8778] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:16 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500))
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0xa0083, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f0000000080)={&(0x7f0000ffb000/0x4000)=nil, 0x4000}, &(0x7f00000000c0)=0x10)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000040)={0xb0002011})

[ 1491.812021][ T8778] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1491.819995][ T8778] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059d6
[ 1491.827960][ T8778] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1491.835924][ T8778] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1491.843892][ T8778] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:17 executing program 0:
epoll_create(0x8)
epoll_create1(0x0)
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
read$ptp(r0, &(0x7f0000000140)=""/153, 0x99)

14:59:17 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3a8, 0x0)

14:59:17 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500))
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0xa0083, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f0000000080)={&(0x7f0000ffb000/0x4000)=nil, 0x4000}, &(0x7f00000000c0)=0x10)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000040)={0xb0002011})

14:59:17 executing program 1:
r0 = io_uring_setup(0x6f2d, &(0x7f0000000080)={0x0, 0x7084, 0x0, 0xffffdffe, 0x147})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
pipe(&(0x7f0000005500))
socket(0x10, 0x800, 0x8)

14:59:17 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0xfffffffe})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
sendmsg$NFT_MSG_GETRULE(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x308}, 0x1, 0x0, 0x0, 0x4000}, 0x1)
r1 = socket(0x29, 0x5, 0x0)
sendmsg$IPCTNL_MSG_EXP_GET(r1, &(0x7f0000000680)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000640)={&(0x7f00000004c0)={0x168, 0x1, 0x2, 0x201, 0x0, 0x0, {0x1}, [@CTA_EXPECT_TUPLE={0x8c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private2}, {0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @dev={0xfe, 0x80, '\x00', 0x10}}, {0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @rand_addr=0x64010100}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @private=0xa010100}, {0x8, 0x2, @rand_addr=0x64010101}}}]}, @CTA_EXPECT_TUPLE={0x4c, 0x2, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @local}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}]}, @CTA_EXPECT_FN={0xa, 0xb, 'Q.931\x00'}, @CTA_EXPECT_MASK={0x60, 0x3, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, {0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @loopback}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}]}, @CTA_EXPECT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x1}, @CTA_EXPECT_FLAGS={0x8}]}, 0x168}, 0x1, 0x0, 0x0, 0x4004}, 0x44800)

14:59:17 executing program 3 (fault-call:3 fault-nth:53):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:17 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500))
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0xa0083, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f0000000080)={&(0x7f0000ffb000/0x4000)=nil, 0x4000}, &(0x7f00000000c0)=0x10)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000040)={0xb0002011})

14:59:17 executing program 5:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
r2 = epoll_create(0x7ff)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000080)={0x4})
socket$inet_udp(0x2, 0x2, 0x0)
syz_io_uring_setup(0x68a0, &(0x7f0000000000)={0x0, 0x172d, 0x0, 0x2, 0x8003b5, 0x0, r1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x10000000)

14:59:17 executing program 1:
r0 = io_uring_setup(0x6f2d, &(0x7f0000000080)={0x0, 0x7084, 0x0, 0xffffdffe, 0x147})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
socket(0x10, 0x800, 0x8)

[ 1492.549980][ T8828] FAULT_INJECTION: forcing a failure.
[ 1492.549980][ T8828] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1492.563163][ T8828] CPU: 1 PID: 8828 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1492.571842][ T8828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1492.581895][ T8828] Call Trace:
[ 1492.585164][ T8828]  dump_stack_lvl+0xb7/0x103
[ 1492.589787][ T8828]  dump_stack+0x11/0x1a
[ 1492.593933][ T8828]  should_fail+0x23c/0x250
[ 1492.598363][ T8828]  should_fail_usercopy+0x16/0x20
[ 1492.603393][ T8828]  copy_page_from_iter+0x1fe/0x530
[ 1492.608516][ T8828]  process_vm_rw_single_vec+0x294/0x460
[ 1492.614065][ T8828]  process_vm_rw+0x347/0x4e0
[ 1492.618652][ T8828]  ? fsnotify_perm+0x59/0x2e0
[ 1492.623322][ T8828]  ? __fsnotify_parent+0x32f/0x430
[ 1492.628429][ T8828]  ? get_pid_task+0x8b/0xc0
[ 1492.632926][ T8828]  ? vfs_write+0x50c/0x770
[ 1492.637337][ T8828]  ? __fget_light+0x21b/0x260
[ 1492.642007][ T8828]  ? __cond_resched+0x11/0x40
[ 1492.646695][ T8828]  ? fput+0x2d/0x130
[ 1492.650583][ T8828]  __x64_sys_process_vm_writev+0x76/0x90
[ 1492.656357][ T8828]  do_syscall_64+0x3d/0x90
[ 1492.660822][ T8828]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1492.666741][ T8828] RIP: 0033:0x4665e9
[ 1492.670625][ T8828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1492.690273][ T8828] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:17 executing program 1:
io_uring_setup(0x6f2d, &(0x7f0000000080)={0x0, 0x7084, 0x0, 0xffffdffe, 0x147})
socket(0x10, 0x800, 0x8)

14:59:17 executing program 1:
socket(0x10, 0x800, 0x8)

14:59:17 executing program 1:
socket(0x0, 0x800, 0x8)

[ 1492.698676][ T8828] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1492.706723][ T8828] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059d9
[ 1492.714690][ T8828] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1492.722705][ T8828] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1492.730702][ T8828] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:17 executing program 0:
epoll_create(0x8)
epoll_create1(0x0)
read$ptp(0xffffffffffffffff, &(0x7f0000000140)=""/153, 0x99)

14:59:17 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3a9, 0x0)

14:59:17 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500))
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0xa0083, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f0000000080)={&(0x7f0000ffb000/0x4000)=nil, 0x4000}, &(0x7f00000000c0)=0x10)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000040)={0xb0002011})

14:59:17 executing program 1:
socket(0x0, 0x800, 0x8)

14:59:17 executing program 5:
keyctl$restrict_keyring(0x1d, 0x0, 0x0, &(0x7f0000000000)='\x00')
io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0xfffffffd, 0x20, 0x3})
r0 = add_key$fscrypt_v1(&(0x7f00000001c0), &(0x7f0000000200)={'fscrypt:', @desc4}, &(0x7f0000000240)={0x0, "3e81b52c21e3a384ca7f9e09b8aa8dd4bcd885864124dd9af5c4be339b11d885d07ec6e1337fc0bdefc5adbec27aadf1c6bfcccef2d2342b3c90d0808b567534", 0x12}, 0x48, 0xfffffffffffffff8)
add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000100)={'fscrypt:', @desc1}, &(0x7f0000000140)={0x0, "aa9eec191dff41104f3ede88f01e3680acf36a53f5697865598ec15bb0b37a6fe4641e611094e22ca157a3d0ca3cd4aa3b9335b0103902042ee26c25dec2fb60", 0x1e}, 0x48, r0)

14:59:17 executing program 3 (fault-call:3 fault-nth:54):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:17 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500))
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0xa0083, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f0000000080)={&(0x7f0000ffb000/0x4000)=nil, 0x4000}, &(0x7f00000000c0)=0x10)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000040)={0xb0002011})

14:59:17 executing program 1:
socket(0x0, 0x800, 0x8)

14:59:17 executing program 0:
epoll_create(0x8)
epoll_create1(0x0)
read$ptp(0xffffffffffffffff, &(0x7f0000000140)=""/153, 0x99)

14:59:18 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500))
openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0xa0083, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0xb0002011})

14:59:18 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
semctl$GETALL(0xffffffffffffffff, 0x0, 0xd, &(0x7f0000000100)=""/151)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
r1 = syz_io_uring_setup(0x4c1a, &(0x7f0000000000)={0x0, 0xa577, 0x2, 0x3, 0x2ed}, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000001c0), &(0x7f0000000200))
syz_io_uring_setup(0x4ee1, &(0x7f0000000240)={0x0, 0xf784, 0x2, 0x3, 0x24c, 0x0, r1}, &(0x7f0000ff4000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000002c0), &(0x7f0000000300))

14:59:18 executing program 0:
epoll_create(0x8)
epoll_create1(0x0)
read$ptp(0xffffffffffffffff, &(0x7f0000000140)=""/153, 0x99)

14:59:18 executing program 1:
socket(0x10, 0x0, 0x8)

[ 1493.506386][ T8895] FAULT_INJECTION: forcing a failure.
[ 1493.506386][ T8895] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1493.519539][ T8895] CPU: 0 PID: 8895 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1493.528312][ T8895] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1493.538361][ T8895] Call Trace:
[ 1493.541634][ T8895]  dump_stack_lvl+0xb7/0x103
[ 1493.546305][ T8895]  dump_stack+0x11/0x1a
[ 1493.550452][ T8895]  should_fail+0x23c/0x250
[ 1493.554879][ T8895]  should_fail_usercopy+0x16/0x20
[ 1493.559903][ T8895]  copy_page_from_iter+0x1fe/0x530
[ 1493.565025][ T8895]  process_vm_rw_single_vec+0x294/0x460
[ 1493.570722][ T8895]  process_vm_rw+0x347/0x4e0
[ 1493.575333][ T8895]  ? fsnotify_perm+0x59/0x2e0
[ 1493.580011][ T8895]  ? __fsnotify_parent+0x32f/0x430
[ 1493.585114][ T8895]  ? get_pid_task+0x8b/0xc0
[ 1493.589673][ T8895]  ? vfs_write+0x50c/0x770
[ 1493.594160][ T8895]  ? __fget_light+0x21b/0x260
[ 1493.598832][ T8895]  ? __cond_resched+0x11/0x40
[ 1493.603521][ T8895]  ? fput+0x2d/0x130
[ 1493.607418][ T8895]  __x64_sys_process_vm_writev+0x76/0x90
[ 1493.613115][ T8895]  do_syscall_64+0x3d/0x90
[ 1493.617550][ T8895]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1493.623468][ T8895] RIP: 0033:0x4665e9
[ 1493.627368][ T8895] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1493.646977][ T8895] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:18 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3aa, 0x0)

14:59:18 executing program 0:
epoll_create(0x8)
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
read$ptp(r0, &(0x7f0000000140)=""/153, 0x99)

14:59:18 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0xb0002011})

14:59:18 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000000))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000040)={'wlan1\x00'})

[ 1493.655379][ T8895] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1493.663343][ T8895] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059dc
[ 1493.671328][ T8895] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1493.679291][ T8895] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1493.687295][ T8895] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:18 executing program 3 (fault-call:3 fault-nth:55):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:18 executing program 1:
socket(0x10, 0x0, 0x0)

14:59:18 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0xb0002011})

14:59:18 executing program 5:
ioctl$MON_IOCG_STATS(0xffffffffffffffff, 0x80089203, &(0x7f0000000000))
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

14:59:18 executing program 2:
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000040)={0xb0002011})

14:59:18 executing program 5:
io_uring_setup(0x6f2e, &(0x7f0000000080))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

14:59:18 executing program 1:
socket(0x10, 0x0, 0x0)

14:59:18 executing program 2:
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000040)={0xb0002011})

[ 1493.921082][ T8957] FAULT_INJECTION: forcing a failure.
[ 1493.921082][ T8957] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1493.934180][ T8957] CPU: 1 PID: 8957 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1493.942993][ T8957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1493.953046][ T8957] Call Trace:
[ 1493.956317][ T8957]  dump_stack_lvl+0xb7/0x103
[ 1493.960909][ T8957]  dump_stack+0x11/0x1a
[ 1493.965054][ T8957]  should_fail+0x23c/0x250
14:59:18 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3ab, 0x0)

[ 1493.969475][ T8957]  should_fail_usercopy+0x16/0x20
[ 1493.974499][ T8957]  copy_page_from_iter+0x1fe/0x530
[ 1493.979617][ T8957]  process_vm_rw_single_vec+0x294/0x460
[ 1493.985166][ T8957]  process_vm_rw+0x347/0x4e0
[ 1493.989753][ T8957]  ? fsnotify_perm+0x59/0x2e0
[ 1493.994425][ T8957]  ? __fsnotify_parent+0x32f/0x430
[ 1493.999536][ T8957]  ? get_pid_task+0x8b/0xc0
[ 1494.004033][ T8957]  ? vfs_write+0x50c/0x770
[ 1494.008439][ T8957]  ? __fget_light+0x21b/0x260
[ 1494.013107][ T8957]  ? __cond_resched+0x11/0x40
[ 1494.017782][ T8957]  ? fput+0x2d/0x130
[ 1494.021670][ T8957]  __x64_sys_process_vm_writev+0x76/0x90
[ 1494.027301][ T8957]  do_syscall_64+0x3d/0x90
[ 1494.031716][ T8957]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1494.037621][ T8957] RIP: 0033:0x4665e9
[ 1494.041499][ T8957] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1494.061170][ T8957] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1494.069573][ T8957] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1494.077605][ T8957] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059df
[ 1494.085624][ T8957] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1494.093593][ T8957] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1494.101554][ T8957] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:19 executing program 0:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
read$ptp(r0, &(0x7f0000000140)=""/153, 0x99)

14:59:19 executing program 5:
io_uring_setup(0x6f2e, &(0x7f0000000080))
ioctl$PTP_PIN_SETFUNC2(0xffffffffffffffff, 0x40603d10, &(0x7f0000000000)={'\x00', 0x2f8c, 0x0, 0x4})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x200000e, 0x12, r0, 0x10000000)

14:59:19 executing program 1:
socket(0x10, 0x0, 0x0)

14:59:19 executing program 2:
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000040)={0xb0002011})

14:59:19 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3ac, 0x0)

14:59:19 executing program 3 (fault-call:3 fault-nth:56):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:19 executing program 1:
r0 = io_uring_setup(0x6f2d, &(0x7f0000000080)={0x0, 0x7084, 0x0, 0xffffdffe, 0x147})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
pipe(&(0x7f0000005500))
sysinfo(&(0x7f0000000000)=""/33)
socket(0x10, 0x800, 0x8)

14:59:19 executing program 5:
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r0, 0x80045301, &(0x7f0000000000))
r1 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x10000000)

14:59:19 executing program 2:
r0 = epoll_create(0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0xb0002011})

14:59:19 executing program 1:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100))
syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
r0 = getpid()
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r1, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x30, 0x3, 0x8, 0x201, 0x0, 0x0, {0x7, 0x0, 0xa}, [@CTA_TIMEOUT_DATA={0x1c, 0x4, 0x0, 0x1, @fccp=[@CTA_TIMEOUT_DCCP_REQUEST={0x8, 0x1, 0x1, 0x0, 0x8}, @CTA_TIMEOUT_DCCP_RESPOND={0x8, 0x2, 0x1, 0x0, 0x40}, @CTA_TIMEOUT_DCCP_REQUEST={0x8, 0x1, 0x1, 0x0, 0x2}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000}, 0x40)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
syz_io_uring_setup(0x2d2a, &(0x7f0000000040)={0x0, 0x925e, 0x2, 0x3, 0xd0, 0x0, r2}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000e35000/0x3000)=nil, 0xfffffffffffffffc, &(0x7f00000000c0))

[ 1494.693049][ T8998] FAULT_INJECTION: forcing a failure.
[ 1494.693049][ T8998] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1494.706219][ T8998] CPU: 1 PID: 8998 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1494.714894][ T8998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1494.724945][ T8998] Call Trace:
[ 1494.728226][ T8998]  dump_stack_lvl+0xb7/0x103
[ 1494.732840][ T8998]  dump_stack+0x11/0x1a
[ 1494.736999][ T8998]  should_fail+0x23c/0x250
14:59:19 executing program 2:
r0 = epoll_create(0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0xb0002011})

[ 1494.741490][ T8998]  should_fail_usercopy+0x16/0x20
[ 1494.746516][ T8998]  copy_page_from_iter+0x1fe/0x530
[ 1494.751635][ T8998]  process_vm_rw_single_vec+0x294/0x460
[ 1494.757180][ T8998]  process_vm_rw+0x347/0x4e0
[ 1494.761777][ T8998]  ? fsnotify_perm+0x59/0x2e0
[ 1494.766452][ T8998]  ? __fsnotify_parent+0x32f/0x430
[ 1494.771556][ T8998]  ? get_pid_task+0x8b/0xc0
[ 1494.776099][ T8998]  ? vfs_write+0x50c/0x770
[ 1494.780517][ T8998]  ? __fget_light+0x21b/0x260
[ 1494.785214][ T8998]  ? __cond_resched+0x11/0x40
[ 1494.789893][ T8998]  ? fput+0x2d/0x130
14:59:19 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
r1 = socket(0x28, 0x1, 0x9)
io_uring_setup(0x1db3, &(0x7f0000000ac0)={0x0, 0xc85e, 0x2, 0x2, 0x132, 0x0, r0})
pipe(&(0x7f0000000b40)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
io_uring_setup(0x182b, &(0x7f0000000b80)={0x0, 0x8f5c, 0x2, 0x1, 0x378, 0x0, r2})
sendmsg$OSF_MSG_REMOVE(r1, &(0x7f0000000a80)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000040)={&(0x7f0000000100)={0x964, 0x1, 0x5, 0x201, 0x0, 0x0, {0x2, 0x0, 0x7}, [{{0x254, 0x1, {{0x1}, 0x1, 0x1, 0x3, 0x29e8, 0x1, 'syz1\x00', "3280288c82f9840486d331c89af311f5d90220c17e611b4eb0d02ddce8aadc76", "48b9b7366dafba87b4a2c9ea1aa61582a8acdd94823ce4b80ec7dc65755e5d23", [{0x855, 0x8, {0xff906983277a6db6, 0xffff}}, {0x7f, 0x6, {0x2, 0x400}}, {0xfff, 0x101, {0x3, 0xffffffff}}, {0x4, 0xff, {0x2, 0x1}}, {0x7ff, 0x7fff}, {0x3ff, 0xff80, {0x0, 0x5}}, {0x7, 0xff, {0x3, 0x1}}, {0x4, 0x6, {0x3, 0xfba5}}, {0x3ff, 0xbe, {0x2, 0x8}}, {0x6, 0x5, {0x2, 0x5}}, {0x5, 0x7, {0x3, 0x9}}, {0xd416, 0x5, {0x2, 0x5a1d}}, {0x4, 0x6, {0x2, 0x5}}, {0x100, 0xe0, {0x2, 0x1}}, {0x7, 0x59, {0x2, 0x8001}}, {0x5, 0x9, {0x0, 0xfffffff9}}, {0x1f, 0x2, {0x2, 0x1}}, {0x3ff, 0x7fff, {0x0, 0x8}}, {0x200, 0x1, {0x0, 0x7}}, {0x1, 0x1, {0x1, 0x1f}}, {0x4, 0x40, {0x2, 0x80000000}}, {0x2, 0x1f, {0x2, 0x200}}, {0x40, 0x7fff, {0x3, 0xce5}}, {0x0, 0xf9a9, {0x0, 0x68732589}}, {0x8000, 0x62, {0x3, 0x3}}, {0x7454, 0x6, {0x1, 0x4}}, {0x4, 0x1, {0x0, 0x20}}, {0xfff, 0x40, {0x0, 0x1f}}, {0x40, 0x9, {0x2, 0x44e}}, {0x5, 0x8, {0x2, 0x1f}}, {0x0, 0x7f, {0x0, 0x2}}, {0x7, 0xde8b, {0x1, 0x10000}}, {0x2, 0x6, {0x3}}, {0x6, 0x4b7a, {0x1, 0x4ea1b7d3}}, {0x8, 0x3, {0x0, 0x40}}, {0x4, 0x668, {0x1, 0x6}}, {0x3, 0x1, {0x0, 0x9}}, {0xdc74, 0x1f, {0x2, 0x9}}, {0x400, 0x9, {0x1, 0x1}}, {0xc107, 0x2, {0x1}}]}}}, {{0x254, 0x1, {{0x3, 0xffffffb6}, 0x10, 0x6, 0xcd, 0x1f, 0x11, 'syz0\x00', "f8ea2ca665a35c5ae44111ab37615bbc3633db2e71cbaf7c95d83af475622364", "5fcdfce00adec01034d7d82396563763d439fd4136a3bccc2c38d39d6478d61d", [{0x1ff, 0x1, {0x2, 0x3f}}, {0x400, 0x0, {0x2, 0x1}}, {0x3f, 0x8, {0x1, 0x5}}, {0x6, 0x9, {0x2, 0x7}}, {0x7ff, 0x5, {0x1, 0x402b}}, {0x9, 0x1, {0x3, 0xfffffff9}}, {0x0, 0x8, {0x1, 0xfffffff7}}, {0x7f, 0x593b, {0x2, 0x5}}, {0x6, 0xe0, {0x1, 0x1}}, {0x4, 0x800, {0x1}}, {0x9, 0x7, {0x3, 0xb35b}}, {0x4006, 0x0, {0x0, 0x8000}}, {0x1, 0xa5, {0x2, 0x20}}, {0x101, 0x4, {0x1, 0xe44}}, {0x6, 0x2, {0x1, 0x101}}, {0x3, 0xffba}, {0xfff9, 0x9, {0x1, 0x98}}, {0x0, 0x100, {0x0, 0x2}}, {0x1, 0xa296, {0x0, 0xd9c2}}, {0x6, 0x2, {0x3, 0x80000000}}, {0x3f, 0x8c6d, {0x1, 0x80000000}}, {0x7, 0xe80, {0x0, 0x5}}, {0x0, 0x3, {0x2, 0x12}}, {0xc194, 0x1f, {0x1, 0x200}}, {0x9, 0x850, {0x2, 0x8}}, {0xaa91, 0x8760, {0x0, 0x3}}, {0x74a, 0x1, {0x0, 0x5}}, {0x101, 0x1}, {0x3, 0x3, {0x3, 0xffff}}, {0x3, 0xffff, {0x0, 0x4}}, {0x800, 0x8, {0x0, 0x2}}, {0x4, 0x2, {0x2}}, {0x0, 0x67a7, {0x1, 0xffff}}, {0x1f, 0x1000, {0x0, 0x5}}, {0x1, 0x81, {0x2, 0x8da}}, {0x0, 0x36, {0x1, 0xee9}}, {0x4, 0x1, {0x3, 0x8}}, {0x9, 0x2, {0x3, 0x80000001}}, {0x5, 0x1, {0x3, 0x7fff}}, {0x8, 0xff, {0x3, 0x5}}]}}}, {{0x254, 0x1, {{0x2, 0xecc}, 0xc5, 0x7, 0x0, 0x80, 0x4, 'syz0\x00', "828f8734f2e533aecb34d0bfad1c70f0864686b81b0146d148f44d3f75985c74", "17811d874a298842abba00b9fa8a3c40fc0b8e987dc6a845427ff1bb88adb34f", [{0xfffc, 0x21f, {0x2, 0xf0a}}, {0x20, 0xe1d, {0x3, 0x2}}, {0x2, 0x2, {0x0, 0x3}}, {0x833a, 0xbd5, {0x3, 0x7566}}, {0x7, 0x0, {0x1, 0x2}}, {0x9, 0xffff, {0x1, 0x200}}, {0x80, 0xff80, {0x1, 0x7}}, {0x0, 0xff, {0x3b1100b5fc91bf8e, 0x5}}, {0x1, 0xfc01, {0x3, 0xebc0045}}, {0x5, 0x1f, {0x1}}, {0x8000, 0x0, {0x3, 0x10000}}, {0x40, 0x83, {0x0, 0x34fb}}, {0x0, 0x8001, {0x2, 0x7}}, {0xf001, 0x38c, {0x1, 0xfffffff9}}, {0x2, 0x99a, {0x1, 0x401}}, {0x6, 0x7, {0x1, 0x2}}, {0x3ff, 0x0, {0x3, 0xc581}}, {0x3ff, 0x993a, {0x0, 0x5}}, {0x8, 0x5, {0x2, 0x6}}, {0x6, 0xec7, {0x3}}, {0x4b06, 0xa45, {0x0, 0x21}}, {0x0, 0x1, {0x1, 0x1000}}, {0x2, 0xc5, {0x1, 0x6}}, {0x20, 0x9, {0x3, 0xff}}, {0x800, 0x0, {0x1, 0xffff8001}}, {0x4, 0x6, {0x2, 0x2}}, {0xff, 0x0, {0x2, 0x9}}, {0x5, 0x0, {0x0, 0x9}}, {0x1000, 0xea9d}, {0x251e, 0x3, {0x2, 0x8}}, {0x7, 0x6, {0x1, 0xffff8001}}, {0x20ec, 0x8, {0x0, 0xc08}}, {0x401, 0x2, {0x0, 0x4}}, {0x6, 0x9, {0x1, 0x5}}, {0x9b51, 0x7, {0x2, 0x1}}, {0xaf, 0x5, {0x3, 0x8}}, {0x1, 0x9, {0x2, 0x8}}, {0x3ff, 0xfff9, {0x0, 0x1}}, {0x2, 0x4, {0x1, 0x7fffffff}}, {0x9, 0x41, {0x1, 0x5}}]}}}, {{0x254, 0x1, {{}, 0x6, 0x40, 0x1, 0x7c7, 0x7, 'syz0\x00', "06cdfae73bb84b15eed7578fbee812e321eb60aa347697b3885d28cc7758714c", "e189d279ed870aab56fc70d85925ca3b133df18a34472f2855fea7c9bcf35947", [{0x8, 0xfffa, {0x7, 0x5ba}}, {0x6, 0x3, {0x3, 0x3}}, {0x93e0, 0x4741, {0x0, 0x8}}, {0x4d92, 0x95, {0x3, 0x4}}, {0x3c88, 0x3, {0x1, 0x4}}, {0x401, 0x1, {0x0, 0x80000001}}, {0x8, 0x200, {0x2, 0x80e}}, {0x9, 0x2, {0x1, 0x7fffffff}}, {0x8, 0x9, {0x1, 0xffffffff}}, {0xff7f, 0x8, {0x1, 0x3}}, {0x4, 0x8, {0x0, 0x7}}, {0x1, 0x46db, {0x0, 0xbdf0}}, {0x16, 0x4, {0x2, 0x2}}, {0x7, 0xc63d, {0x3, 0x4}}, {0x800, 0x5151, {0x1, 0x7}}, {0x6, 0x8001, {0x0, 0x3}}, {0x0, 0x6, {0x3}}, {0x0, 0x9, {0x0, 0x2}}, {0x8001, 0x2, {0x2, 0x1}}, {0x800, 0x0, {0x0, 0x4}}, {0x4, 0x1000, {0x3}}, {0x1f, 0x1, {0x2, 0x3d}}, {0x7, 0x671, {0x0, 0x4}}, {0x401, 0x2, {0x2, 0x7ff}}, {0x4, 0x2, {0x3}}, {0x8001, 0x6, {0x1}}, {0x4, 0x4, {0x2, 0x5}}, {0x3ff, 0x5a, {0x1, 0x53b}}, {0x800, 0x63f, {0x2, 0x6}}, {0x8, 0x3, {0x1, 0x2}}, {0x6, 0x4, {0x1, 0x5}}, {0x1, 0x100, {0x3, 0x8}}, {0x6, 0x3, {0x2, 0x913}}, {0x364, 0x8, {0x3, 0xd7}}, {0x1, 0xdc, {0x3, 0x2e}}, {0x7, 0x5, {0x1, 0x6582}}, {0x3, 0xda0e, {0x1, 0x8}}, {0x8000, 0x0, {0x3, 0xff}}, {0xa4b, 0x3, {0x2, 0x5}}, {0x81}]}}}]}, 0x964}, 0x1, 0x0, 0x0, 0x8000}, 0x24044084)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

[ 1494.793786][ T8998]  __x64_sys_process_vm_writev+0x76/0x90
[ 1494.799455][ T8998]  do_syscall_64+0x3d/0x90
[ 1494.803866][ T8998]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1494.809756][ T8998] RIP: 0033:0x4665e9
[ 1494.813637][ T8998] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1494.833238][ T8998] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1494.841722][ T8998] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1494.849762][ T8998] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059e2
[ 1494.857808][ T8998] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1494.865834][ T8998] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1494.873800][ T8998] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:20 executing program 0:
pipe(0x0)
read$ptp(0xffffffffffffffff, &(0x7f0000000140)=""/153, 0x99)

14:59:20 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3ad, 0x0)

14:59:20 executing program 1:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100))
syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
r0 = getpid()
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r1, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x30, 0x3, 0x8, 0x201, 0x0, 0x0, {0x7, 0x0, 0xa}, [@CTA_TIMEOUT_DATA={0x1c, 0x4, 0x0, 0x1, @fccp=[@CTA_TIMEOUT_DCCP_REQUEST={0x8, 0x1, 0x1, 0x0, 0x8}, @CTA_TIMEOUT_DCCP_RESPOND={0x8, 0x2, 0x1, 0x0, 0x40}, @CTA_TIMEOUT_DCCP_REQUEST={0x8, 0x1, 0x1, 0x0, 0x2}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000}, 0x40)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
syz_io_uring_setup(0x2d2a, &(0x7f0000000040)={0x0, 0x925e, 0x2, 0x3, 0xd0, 0x0, r2}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000e35000/0x3000)=nil, 0xfffffffffffffffc, &(0x7f00000000c0))

14:59:20 executing program 2:
r0 = epoll_create(0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0xb0002011})

14:59:20 executing program 3 (fault-call:3 fault-nth:57):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:20 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
sendmsg$IPSET_CMD_HEADER(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000000c060500000000000000000005000008b1ba86245d46f83c0fcb7de06406a8f19cf0fb103049d311d6e71b2fa3919a2d1df49e03c966bc2f56898daff15c45f7e305110a1baab8595203b84cd405a322d70770d1b53a416fe87eb367ca7b116b9ef3ffb1d9201fe87018e29932feddd79a5e6663fca79ba26e1b757280852a0912aab9988230f1a889caf20727fdc675472fbbfe6366b97513d2a55575a94dfa655cb01aa0da836a13ee"], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x85c)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

14:59:20 executing program 0:
pipe(0x0)
read$ptp(0xffffffffffffffff, &(0x7f0000000140)=""/153, 0x99)

14:59:20 executing program 5:
clock_gettime(0x0, &(0x7f0000000140)={<r0=>0x0, <r1=>0x0})
select(0x40, &(0x7f0000000000)={0x100, 0x0, 0x37, 0x5e609be8, 0x5, 0x6, 0x5, 0x6}, &(0x7f0000000040)={0x2, 0x3, 0x1f, 0x9, 0x2, 0x5, 0x3, 0x4}, &(0x7f0000000100)={0x8000, 0x1, 0x4, 0x6, 0x0, 0x3, 0x2, 0x20}, &(0x7f0000000180)={r0, r1/1000+60000})
r2 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x10000000)

14:59:20 executing program 2:
r0 = epoll_create(0x8)
pipe(0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000040)={0xb0002011})

14:59:20 executing program 0:
pipe(0x0)
read$ptp(0xffffffffffffffff, &(0x7f0000000140)=""/153, 0x99)

[ 1495.587523][ T9055] FAULT_INJECTION: forcing a failure.
[ 1495.587523][ T9055] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1495.600606][ T9055] CPU: 1 PID: 9055 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1495.609286][ T9055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1495.619338][ T9055] Call Trace:
[ 1495.622623][ T9055]  dump_stack_lvl+0xb7/0x103
[ 1495.627214][ T9055]  dump_stack+0x11/0x1a
[ 1495.631359][ T9055]  should_fail+0x23c/0x250
[ 1495.635832][ T9055]  should_fail_usercopy+0x16/0x20
[ 1495.640861][ T9055]  copy_page_from_iter+0x1fe/0x530
[ 1495.646026][ T9055]  process_vm_rw_single_vec+0x294/0x460
[ 1495.651573][ T9055]  process_vm_rw+0x347/0x4e0
[ 1495.656160][ T9055]  ? fsnotify_perm+0x59/0x2e0
[ 1495.660840][ T9055]  ? __fsnotify_parent+0x32f/0x430
[ 1495.665982][ T9055]  ? get_pid_task+0x8b/0xc0
[ 1495.670482][ T9055]  ? vfs_write+0x50c/0x770
[ 1495.674890][ T9055]  ? __fget_light+0x21b/0x260
[ 1495.679557][ T9055]  ? __cond_resched+0x11/0x40
[ 1495.684234][ T9055]  ? fput+0x2d/0x130
14:59:20 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3ae, 0x0)

14:59:20 executing program 1:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100))
syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
r0 = getpid()
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r1, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x30, 0x3, 0x8, 0x201, 0x0, 0x0, {0x7, 0x0, 0xa}, [@CTA_TIMEOUT_DATA={0x1c, 0x4, 0x0, 0x1, @fccp=[@CTA_TIMEOUT_DCCP_REQUEST={0x8, 0x1, 0x1, 0x0, 0x8}, @CTA_TIMEOUT_DCCP_RESPOND={0x8, 0x2, 0x1, 0x0, 0x40}, @CTA_TIMEOUT_DCCP_REQUEST={0x8, 0x1, 0x1, 0x0, 0x2}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000}, 0x40)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
syz_io_uring_setup(0x2d2a, &(0x7f0000000040)={0x0, 0x925e, 0x2, 0x3, 0xd0, 0x0, r2}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000e35000/0x3000)=nil, 0xfffffffffffffffc, &(0x7f00000000c0))

14:59:20 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
syz_io_uring_setup(0x5273, &(0x7f0000000000)={0x0, 0x49a8, 0x10, 0x2, 0x97, 0x0, r1}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

14:59:20 executing program 0:
pipe(&(0x7f0000005500))
read$ptp(0xffffffffffffffff, &(0x7f0000000140)=""/153, 0x99)

[ 1495.688123][ T9055]  __x64_sys_process_vm_writev+0x76/0x90
[ 1495.693792][ T9055]  do_syscall_64+0x3d/0x90
[ 1495.698259][ T9055]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1495.704205][ T9055] RIP: 0033:0x4665e9
[ 1495.708146][ T9055] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1495.727750][ T9055] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:20 executing program 0:
pipe(&(0x7f0000005500))
read$ptp(0xffffffffffffffff, &(0x7f0000000140)=""/153, 0x99)

14:59:20 executing program 2:
r0 = epoll_create(0x8)
pipe(0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000040)={0xb0002011})

[ 1495.736165][ T9055] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1495.744134][ T9055] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059e5
[ 1495.752105][ T9055] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1495.760078][ T9055] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1495.768065][ T9055] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:20 executing program 3 (fault-call:3 fault-nth:58):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:20 executing program 0:
pipe(&(0x7f0000005500))
read$ptp(0xffffffffffffffff, &(0x7f0000000140)=""/153, 0x99)

14:59:20 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0xfd})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

14:59:20 executing program 1:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100))
syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
r0 = getpid()
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r1, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x30, 0x3, 0x8, 0x201, 0x0, 0x0, {0x7, 0x0, 0xa}, [@CTA_TIMEOUT_DATA={0x1c, 0x4, 0x0, 0x1, @fccp=[@CTA_TIMEOUT_DCCP_REQUEST={0x8, 0x1, 0x1, 0x0, 0x8}, @CTA_TIMEOUT_DCCP_RESPOND={0x8, 0x2, 0x1, 0x0, 0x40}, @CTA_TIMEOUT_DCCP_REQUEST={0x8, 0x1, 0x1, 0x0, 0x2}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000}, 0x40)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
syz_io_uring_setup(0x2d2a, &(0x7f0000000040)={0x0, 0x925e, 0x2, 0x3, 0xd0, 0x0, r2}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000e35000/0x3000)=nil, 0xfffffffffffffffc, &(0x7f00000000c0))

14:59:20 executing program 2:
r0 = epoll_create(0x8)
pipe(0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000040)={0xb0002011})

14:59:20 executing program 0:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
read$ptp(r0, 0x0, 0x0)

14:59:20 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3af, 0x0)

14:59:20 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
io_uring_setup(0x550c, &(0x7f0000000000)={0x0, 0xbb04, 0x5, 0x0, 0x261, 0x0, r0})

14:59:20 executing program 2:
epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000040)={0xb0002011})

14:59:20 executing program 0:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
read$ptp(r0, 0x0, 0x0)

14:59:20 executing program 1:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100))
syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
r0 = getpid()
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r1, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x30, 0x3, 0x8, 0x201, 0x0, 0x0, {0x7, 0x0, 0xa}, [@CTA_TIMEOUT_DATA={0x1c, 0x4, 0x0, 0x1, @fccp=[@CTA_TIMEOUT_DCCP_REQUEST={0x8, 0x1, 0x1, 0x0, 0x8}, @CTA_TIMEOUT_DCCP_RESPOND={0x8, 0x2, 0x1, 0x0, 0x40}, @CTA_TIMEOUT_DCCP_REQUEST={0x8, 0x1, 0x1, 0x0, 0x2}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000}, 0x40)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)
syz_io_uring_setup(0x2d2a, &(0x7f0000000040)={0x0, 0x925e, 0x2, 0x3, 0xd0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000e35000/0x3000)=nil, 0xfffffffffffffffc, &(0x7f00000000c0))

[ 1496.073785][ T9117] FAULT_INJECTION: forcing a failure.
[ 1496.073785][ T9117] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1496.086910][ T9117] CPU: 0 PID: 9117 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1496.095604][ T9117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1496.105657][ T9117] Call Trace:
[ 1496.108932][ T9117]  dump_stack_lvl+0xb7/0x103
[ 1496.113515][ T9117]  dump_stack+0x11/0x1a
[ 1496.117693][ T9117]  should_fail+0x23c/0x250
[ 1496.122106][ T9117]  should_fail_usercopy+0x16/0x20
[ 1496.127130][ T9117]  copy_page_from_iter+0x1fe/0x530
[ 1496.132236][ T9117]  process_vm_rw_single_vec+0x294/0x460
[ 1496.138166][ T9117]  process_vm_rw+0x347/0x4e0
[ 1496.142755][ T9117]  ? fsnotify_perm+0x59/0x2e0
[ 1496.147485][ T9117]  ? __fsnotify_parent+0x32f/0x430
[ 1496.152583][ T9117]  ? get_pid_task+0x8b/0xc0
[ 1496.157085][ T9117]  ? vfs_write+0x50c/0x770
[ 1496.161485][ T9117]  ? __fget_light+0x21b/0x260
[ 1496.166145][ T9117]  ? __cond_resched+0x11/0x40
[ 1496.170809][ T9117]  ? fput+0x2d/0x130
[ 1496.174784][ T9117]  __x64_sys_process_vm_writev+0x76/0x90
[ 1496.180401][ T9117]  do_syscall_64+0x3d/0x90
[ 1496.184802][ T9117]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1496.190759][ T9117] RIP: 0033:0x4665e9
[ 1496.194633][ T9117] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1496.214220][ T9117] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:20 executing program 0:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
read$ptp(r0, 0x0, 0x0)

[ 1496.222627][ T9117] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1496.230587][ T9117] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059e8
[ 1496.238575][ T9117] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1496.246537][ T9117] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1496.254507][ T9117] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:20 executing program 3 (fault-call:3 fault-nth:59):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:20 executing program 5:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000180), 0x509d00, 0x0)
io_uring_setup(0x5506, &(0x7f00000001c0)={0x0, 0x62e2, 0x1, 0x0, 0x3a, 0x0, r0})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
r2 = io_uring_setup(0x27b, &(0x7f0000000080)={0x0, 0xfffffffe, 0x2, 0x200, 0x1, 0x0, r1})
io_uring_setup(0x5e57, &(0x7f0000000240)={0x0, 0xd9dd, 0x2, 0x2, 0x349, 0x0, r1})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
ioctl$SG_GET_TIMEOUT(r3, 0x2202, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x200000b, 0x11, r2, 0x10000000)
sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x14, 0x5, 0x1, 0x301, 0x0, 0x0, {0xc, 0x0, 0x9}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4c010}, 0x14)

14:59:20 executing program 2:
epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000040)={0xb0002011})

14:59:20 executing program 0:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
read$ptp(r0, 0x0, 0x0)

14:59:20 executing program 1:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100))
syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
getpid()
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x30, 0x3, 0x8, 0x201, 0x0, 0x0, {0x7, 0x0, 0xa}, [@CTA_TIMEOUT_DATA={0x1c, 0x4, 0x0, 0x1, @fccp=[@CTA_TIMEOUT_DCCP_REQUEST={0x8, 0x1, 0x1, 0x0, 0x8}, @CTA_TIMEOUT_DCCP_RESPOND={0x8, 0x2, 0x1, 0x0, 0x40}, @CTA_TIMEOUT_DCCP_REQUEST={0x8, 0x1, 0x1, 0x0, 0x2}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000}, 0x40)
syz_io_uring_setup(0x2d2a, &(0x7f0000000040)={0x0, 0x925e, 0x2, 0x3, 0xd0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000e35000/0x3000)=nil, 0xfffffffffffffffc, &(0x7f00000000c0))

14:59:20 executing program 1:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100))
syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
getpid()
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
syz_io_uring_setup(0x2d2a, &(0x7f0000000040)={0x0, 0x925e, 0x2, 0x3, 0xd0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000e35000/0x3000)=nil, 0xfffffffffffffffc, &(0x7f00000000c0))

14:59:21 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3b0, 0x0)

14:59:21 executing program 2:
epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000040)={0xb0002011})

14:59:21 executing program 0:
read$ptp(0xffffffffffffffff, 0x0, 0x0)

14:59:21 executing program 5:
io_uring_setup(0x6f2e, &(0x7f0000000080))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000008, 0x12, r0, 0x10000000)

[ 1496.497083][ T9162] FAULT_INJECTION: forcing a failure.
[ 1496.497083][ T9162] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1496.510201][ T9162] CPU: 0 PID: 9162 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1496.518871][ T9162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1496.528917][ T9162] Call Trace:
[ 1496.532189][ T9162]  dump_stack_lvl+0xb7/0x103
[ 1496.536778][ T9162]  dump_stack+0x11/0x1a
[ 1496.540961][ T9162]  should_fail+0x23c/0x250
[ 1496.545382][ T9162]  should_fail_usercopy+0x16/0x20
[ 1496.550432][ T9162]  copy_page_from_iter+0x1fe/0x530
[ 1496.555547][ T9162]  process_vm_rw_single_vec+0x294/0x460
[ 1496.561135][ T9162]  process_vm_rw+0x347/0x4e0
[ 1496.565719][ T9162]  ? fsnotify_perm+0x59/0x2e0
[ 1496.570385][ T9162]  ? __fsnotify_parent+0x32f/0x430
[ 1496.575491][ T9162]  ? get_pid_task+0x8b/0xc0
[ 1496.579990][ T9162]  ? vfs_write+0x50c/0x770
[ 1496.584406][ T9162]  ? __fget_light+0x21b/0x260
[ 1496.589093][ T9162]  ? __cond_resched+0x11/0x40
[ 1496.593795][ T9162]  ? fput+0x2d/0x130
[ 1496.597693][ T9162]  __x64_sys_process_vm_writev+0x76/0x90
[ 1496.603320][ T9162]  do_syscall_64+0x3d/0x90
[ 1496.607734][ T9162]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1496.613669][ T9162] RIP: 0033:0x4665e9
[ 1496.617549][ T9162] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1496.637149][ T9162] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:21 executing program 1:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100))
syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
getpid()
pipe(&(0x7f0000005500))
syz_io_uring_setup(0x2d2a, &(0x7f0000000040)={0x0, 0x925e, 0x2, 0x3, 0xd0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000e35000/0x3000)=nil, 0xfffffffffffffffc, &(0x7f00000000c0))

14:59:21 executing program 0:
read$ptp(0xffffffffffffffff, 0x0, 0x0)

[ 1496.645646][ T9162] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1496.653631][ T9162] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059eb
[ 1496.661597][ T9162] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1496.669564][ T9162] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1496.677528][ T9162] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:21 executing program 3 (fault-call:3 fault-nth:60):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:21 executing program 0:
read$ptp(0xffffffffffffffff, 0x0, 0x0)

14:59:21 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3b1, 0x0)

14:59:21 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500))
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000040)={0xb0002011})

14:59:21 executing program 5:
r0 = io_uring_setup(0x20c3, &(0x7f0000000080)={0x0, 0xad44, 0x1})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r1, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x64, 0x0, 0x8, 0x801, 0x0, 0x0, {0x7, 0x0, 0x1}, [@CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_DATA={0x3c, 0x4, 0x0, 0x1, @gre=[@CTA_TIMEOUT_GRE_REPLIED={0x8, 0x2, 0x1, 0x0, 0x3}, @CTA_TIMEOUT_GRE_REPLIED={0x8, 0x2, 0x1, 0x0, 0x8}, @CTA_TIMEOUT_GRE_REPLIED={0x8, 0x2, 0x1, 0x0, 0x8001}, @CTA_TIMEOUT_GRE_REPLIED={0x8, 0x2, 0x1, 0x0, 0x2}, @CTA_TIMEOUT_GRE_UNREPLIED={0x8, 0x1, 0x1, 0x0, 0x1}, @CTA_TIMEOUT_GRE_REPLIED={0x8, 0x2, 0x1, 0x0, 0x6}, @CTA_TIMEOUT_GRE_REPLIED={0x8, 0x2, 0x1, 0x0, 0x6}]}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x1b}]}, 0x64}, 0x1, 0x0, 0x0, 0x880}, 0x0)
r2 = getpid()
r3 = getpid()
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r4, 0xc0603d06, 0x0)
kcmp$KCMP_EPOLL_TFD(r2, r3, 0x7, r0, &(0x7f0000000000)={0xffffffffffffffff, r4, 0x3})

14:59:21 executing program 1:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100))
syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
getpid()
syz_io_uring_setup(0x2d2a, &(0x7f0000000040)={0x0, 0x925e, 0x2, 0x3, 0xd0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000e35000/0x3000)=nil, 0xfffffffffffffffc, &(0x7f00000000c0))

14:59:21 executing program 0:
pipe(0x0)
read$ptp(0xffffffffffffffff, 0x0, 0x0)

14:59:21 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500))
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000040)={0xb0002011})

14:59:21 executing program 5:
futex(&(0x7f0000000000)=0x1, 0x81, 0x2, &(0x7f0000000040), &(0x7f0000000100)=0x1, 0x2)
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x4, 0x10, 0x0, 0x291})
clock_gettime(0x4, &(0x7f0000000340))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))
syz_io_uring_setup(0x1a53, &(0x7f0000000240)={0x0, 0xb187, 0x4, 0x2, 0x229}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000002c0), &(0x7f0000000300))
epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, r0)

14:59:21 executing program 0:
pipe(0x0)
read$ptp(0xffffffffffffffff, 0x0, 0x0)

14:59:21 executing program 1:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100))
syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
syz_io_uring_setup(0x2d2a, &(0x7f0000000040)={0x0, 0x925e, 0x2, 0x3, 0xd0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000e35000/0x3000)=nil, 0xfffffffffffffffc, &(0x7f00000000c0))

14:59:21 executing program 0:
pipe(0x0)
read$ptp(0xffffffffffffffff, 0x0, 0x0)

[ 1496.906755][ T9230] FAULT_INJECTION: forcing a failure.
[ 1496.906755][ T9230] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1496.919997][ T9230] CPU: 0 PID: 9230 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1496.928675][ T9230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1496.938732][ T9230] Call Trace:
[ 1496.942017][ T9230]  dump_stack_lvl+0xb7/0x103
[ 1496.946609][ T9230]  dump_stack+0x11/0x1a
[ 1496.950761][ T9230]  should_fail+0x23c/0x250
[ 1496.955255][ T9230]  should_fail_usercopy+0x16/0x20
[ 1496.960308][ T9230]  copy_page_from_iter+0x1fe/0x530
[ 1496.965509][ T9230]  process_vm_rw_single_vec+0x294/0x460
[ 1496.971094][ T9230]  process_vm_rw+0x347/0x4e0
[ 1496.975683][ T9230]  ? fsnotify_perm+0x59/0x2e0
[ 1496.980384][ T9230]  ? __fsnotify_parent+0x32f/0x430
[ 1496.985534][ T9230]  ? get_pid_task+0x8b/0xc0
[ 1496.990045][ T9230]  ? vfs_write+0x50c/0x770
[ 1496.994456][ T9230]  ? __fget_light+0x21b/0x260
[ 1496.999123][ T9230]  ? __cond_resched+0x11/0x40
[ 1497.003797][ T9230]  ? fput+0x2d/0x130
[ 1497.007692][ T9230]  __x64_sys_process_vm_writev+0x76/0x90
[ 1497.013322][ T9230]  do_syscall_64+0x3d/0x90
[ 1497.017737][ T9230]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1497.023628][ T9230] RIP: 0033:0x4665e9
[ 1497.027509][ T9230] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1497.047112][ T9230] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:21 executing program 3 (fault-call:3 fault-nth:61):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:21 executing program 1:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100))
syz_io_uring_setup(0x2d2a, &(0x7f0000000040)={0x0, 0x925e, 0x2, 0x3, 0xd0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000e35000/0x3000)=nil, 0xfffffffffffffffc, &(0x7f00000000c0))

14:59:21 executing program 0:
pipe(&(0x7f0000005500))
read$ptp(0xffffffffffffffff, 0x0, 0x0)

14:59:21 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500))
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000040)={0xb0002011})

14:59:21 executing program 5:
futex(&(0x7f0000000000)=0x1, 0x81, 0x2, &(0x7f0000000040), &(0x7f0000000100)=0x1, 0x2)
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x4, 0x10, 0x0, 0x291})
clock_gettime(0x4, &(0x7f0000000340))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))
syz_io_uring_setup(0x1a53, &(0x7f0000000240)={0x0, 0xb187, 0x4, 0x2, 0x229}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000002c0), &(0x7f0000000300))
epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, r0)

14:59:21 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3b2, 0x0)

[ 1497.055550][ T9230] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1497.063510][ T9230] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059ee
[ 1497.071490][ T9230] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1497.079453][ T9230] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1497.087422][ T9230] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:21 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, 0x0)

14:59:21 executing program 1:
syz_io_uring_setup(0x2d2a, &(0x7f0000000040)={0x0, 0x925e, 0x2, 0x3, 0xd0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000e35000/0x3000)=nil, 0xfffffffffffffffc, &(0x7f00000000c0))

14:59:21 executing program 0:
pipe(&(0x7f0000005500))
read$ptp(0xffffffffffffffff, 0x0, 0x0)

14:59:21 executing program 5:
futex(&(0x7f0000000000)=0x1, 0x81, 0x2, &(0x7f0000000040), &(0x7f0000000100)=0x1, 0x2)
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x4, 0x10, 0x0, 0x291})
clock_gettime(0x4, &(0x7f0000000340))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))
syz_io_uring_setup(0x1a53, &(0x7f0000000240)={0x0, 0xb187, 0x4, 0x2, 0x229}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000002c0), &(0x7f0000000300))
epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, r0)

[ 1497.252830][ T9270] FAULT_INJECTION: forcing a failure.
[ 1497.252830][ T9270] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1497.269063][ T9270] CPU: 0 PID: 9270 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1497.277742][ T9270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1497.287830][ T9270] Call Trace:
[ 1497.291097][ T9270]  dump_stack_lvl+0xb7/0x103
[ 1497.295678][ T9270]  dump_stack+0x11/0x1a
14:59:21 executing program 1:
syz_io_uring_setup(0x0, &(0x7f0000000040)={0x0, 0x925e, 0x2, 0x3, 0xd0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000e35000/0x3000)=nil, 0xfffffffffffffffc, &(0x7f00000000c0))

14:59:21 executing program 0:
pipe(&(0x7f0000005500))
read$ptp(0xffffffffffffffff, 0x0, 0x0)

[ 1497.299828][ T9270]  should_fail+0x23c/0x250
[ 1497.304242][ T9270]  should_fail_usercopy+0x16/0x20
[ 1497.309271][ T9270]  copy_page_from_iter+0x1fe/0x530
[ 1497.314402][ T9270]  process_vm_rw_single_vec+0x294/0x460
[ 1497.319944][ T9270]  process_vm_rw+0x347/0x4e0
[ 1497.324608][ T9270]  ? fsnotify_perm+0x59/0x2e0
[ 1497.329288][ T9270]  ? __fsnotify_parent+0x32f/0x430
[ 1497.334409][ T9270]  ? get_pid_task+0x8b/0xc0
[ 1497.338906][ T9270]  ? vfs_write+0x50c/0x770
[ 1497.343321][ T9270]  ? __fget_light+0x21b/0x260
[ 1497.347991][ T9270]  ? __cond_resched+0x11/0x40
[ 1497.352682][ T9270]  ? fput+0x2d/0x130
[ 1497.356576][ T9270]  __x64_sys_process_vm_writev+0x76/0x90
[ 1497.362198][ T9270]  do_syscall_64+0x3d/0x90
[ 1497.366617][ T9270]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1497.372514][ T9270] RIP: 0033:0x4665e9
[ 1497.376392][ T9270] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1497.395991][ T9270] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1497.404400][ T9270] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1497.412362][ T9270] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059f1
[ 1497.420319][ T9270] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1497.428290][ T9270] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1497.436264][ T9270] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:22 executing program 3 (fault-call:3 fault-nth:62):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:22 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, 0x0)

14:59:22 executing program 1:
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000e35000/0x3000)=nil, 0xfffffffffffffffc, &(0x7f00000000c0))

14:59:22 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:22 executing program 5:
futex(&(0x7f0000000000)=0x1, 0x81, 0x2, &(0x7f0000000040), &(0x7f0000000100)=0x1, 0x2)
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x4, 0x10, 0x0, 0x291})
clock_gettime(0x4, &(0x7f0000000340))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))
syz_io_uring_setup(0x1a53, &(0x7f0000000240)={0x0, 0xb187, 0x4, 0x2, 0x229}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000002c0), &(0x7f0000000300))

14:59:22 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3b3, 0x0)

14:59:22 executing program 1:
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000e35000/0x3000)=nil, 0xfffffffffffffffc, &(0x7f00000000c0))

14:59:22 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, 0x0)

14:59:22 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:22 executing program 5:
futex(&(0x7f0000000000)=0x1, 0x81, 0x2, &(0x7f0000000040), &(0x7f0000000100)=0x1, 0x2)
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x4, 0x10, 0x0, 0x291})
clock_gettime(0x4, &(0x7f0000000340))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:22 executing program 1:
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000e35000/0x3000)=nil, 0xfffffffffffffffc, &(0x7f00000000c0))

[ 1497.612267][ T9320] FAULT_INJECTION: forcing a failure.
[ 1497.612267][ T9320] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1497.625353][ T9320] CPU: 1 PID: 9320 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1497.634023][ T9320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1497.644067][ T9320] Call Trace:
[ 1497.647346][ T9320]  dump_stack_lvl+0xb7/0x103
[ 1497.651933][ T9320]  dump_stack+0x11/0x1a
[ 1497.656117][ T9320]  should_fail+0x23c/0x250
[ 1497.660544][ T9320]  should_fail_usercopy+0x16/0x20
[ 1497.665609][ T9320]  copy_page_from_iter+0x1fe/0x530
[ 1497.670730][ T9320]  process_vm_rw_single_vec+0x294/0x460
[ 1497.676271][ T9320]  process_vm_rw+0x347/0x4e0
[ 1497.680869][ T9320]  ? fsnotify_perm+0x59/0x2e0
[ 1497.685550][ T9320]  ? __fsnotify_parent+0x32f/0x430
[ 1497.690723][ T9320]  ? get_pid_task+0x8b/0xc0
[ 1497.695215][ T9320]  ? vfs_write+0x50c/0x770
[ 1497.699621][ T9320]  ? __fget_light+0x21b/0x260
[ 1497.704317][ T9320]  ? __cond_resched+0x11/0x40
[ 1497.709089][ T9320]  ? fput+0x2d/0x130
[ 1497.712981][ T9320]  __x64_sys_process_vm_writev+0x76/0x90
[ 1497.718606][ T9320]  do_syscall_64+0x3d/0x90
[ 1497.723104][ T9320]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1497.728991][ T9320] RIP: 0033:0x4665e9
[ 1497.732928][ T9320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1497.752541][ T9320] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:22 executing program 5:
futex(&(0x7f0000000000)=0x1, 0x81, 0x2, &(0x7f0000000040), &(0x7f0000000100)=0x1, 0x2)
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x4, 0x10, 0x0, 0x291})
clock_gettime(0x4, &(0x7f0000000340))
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:22 executing program 3 (fault-call:3 fault-nth:63):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:22 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040))

14:59:22 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:22 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3b4, 0x0)

14:59:22 executing program 5:
futex(&(0x7f0000000000)=0x1, 0x81, 0x2, &(0x7f0000000040), &(0x7f0000000100)=0x1, 0x2)
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x4, 0x10, 0x0, 0x291})
clock_gettime(0x4, &(0x7f0000000340))
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:22 executing program 1:
syz_io_uring_setup(0x0, &(0x7f0000000040)={0x0, 0x0, 0x2, 0x3, 0xd0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000e35000/0x3000)=nil, 0xfffffffffffffffc, &(0x7f00000000c0))

[ 1497.760944][ T9320] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1497.768900][ T9320] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059f4
[ 1497.777019][ T9320] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1497.784986][ T9320] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1497.792956][ T9320] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:22 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040))

14:59:22 executing program 5:
futex(&(0x7f0000000000)=0x1, 0x81, 0x2, &(0x7f0000000040), &(0x7f0000000100)=0x1, 0x2)
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x4, 0x10, 0x0, 0x291})
clock_gettime(0x4, &(0x7f0000000340))
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:22 executing program 1:
syz_io_uring_setup(0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x3, 0xd0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000e35000/0x3000)=nil, 0xfffffffffffffffc, &(0x7f00000000c0))

14:59:22 executing program 0:
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x10004000)

[ 1497.936671][ T9359] FAULT_INJECTION: forcing a failure.
[ 1497.936671][ T9359] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1497.949784][ T9359] CPU: 1 PID: 9359 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1497.958458][ T9359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1497.968538][ T9359] Call Trace:
[ 1497.971805][ T9359]  dump_stack_lvl+0xb7/0x103
[ 1497.976394][ T9359]  dump_stack+0x11/0x1a
[ 1497.980548][ T9359]  should_fail+0x23c/0x250
[ 1497.984961][ T9359]  should_fail_usercopy+0x16/0x20
[ 1497.989976][ T9359]  copy_page_from_iter+0x1fe/0x530
[ 1497.995146][ T9359]  process_vm_rw_single_vec+0x294/0x460
[ 1498.000688][ T9359]  process_vm_rw+0x347/0x4e0
[ 1498.005272][ T9359]  ? fsnotify_perm+0x59/0x2e0
[ 1498.009978][ T9359]  ? __fsnotify_parent+0x32f/0x430
[ 1498.015099][ T9359]  ? get_pid_task+0x8b/0xc0
[ 1498.019617][ T9359]  ? vfs_write+0x50c/0x770
[ 1498.024026][ T9359]  ? __fget_light+0x21b/0x260
[ 1498.028688][ T9359]  ? __cond_resched+0x11/0x40
[ 1498.033351][ T9359]  ? fput+0x2d/0x130
[ 1498.037277][ T9359]  __x64_sys_process_vm_writev+0x76/0x90
[ 1498.042896][ T9359]  do_syscall_64+0x3d/0x90
[ 1498.047297][ T9359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1498.053175][ T9359] RIP: 0033:0x4665e9
[ 1498.057050][ T9359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1498.076649][ T9359] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:22 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040))

14:59:22 executing program 2:
futex(&(0x7f0000000000)=0x1, 0x81, 0x2, &(0x7f0000000040), &(0x7f0000000100)=0x1, 0x2)
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x4, 0x10, 0x0, 0x291})
clock_gettime(0x4, &(0x7f0000000340))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

[ 1498.085212][ T9359] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1498.093166][ T9359] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059f7
[ 1498.101158][ T9359] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1498.109180][ T9359] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1498.117133][ T9359] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:22 executing program 3 (fault-call:3 fault-nth:64):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:22 executing program 5:
futex(&(0x7f0000000000)=0x1, 0x81, 0x2, &(0x7f0000000040), &(0x7f0000000100)=0x1, 0x2)
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x4, 0x10, 0x0, 0x291})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:22 executing program 1:
syz_io_uring_setup(0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0xd0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000e35000/0x3000)=nil, 0xfffffffffffffffc, &(0x7f00000000c0))

14:59:22 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3b5, 0x0)

14:59:22 executing program 2:
r0 = syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x2, 0x2010, r1, 0x10000000)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x40000, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f0000000080)={&(0x7f0000ff9000/0x2000)=nil, 0x2000}, &(0x7f00000000c0)=0x10)
r3 = mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x1d7d1000, 0x0, 0x13, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r4, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT_REMOVE, 0xb6f1b91)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r5, 0xc0603d06, 0x0)
syz_io_uring_submit(r4, r3, &(0x7f0000000140)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x5, 0x0, r5, &(0x7f0000000100)={0x20002000}, r1, 0x1, 0x0, 0x1}, 0xe8)

14:59:22 executing program 0:
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x10004000)

14:59:22 executing program 1:
syz_io_uring_setup(0x0, &(0x7f0000000040), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000e35000/0x3000)=nil, 0xfffffffffffffffc, &(0x7f00000000c0))

14:59:22 executing program 5:
futex(&(0x7f0000000000)=0x1, 0x81, 0x2, &(0x7f0000000040), &(0x7f0000000100)=0x1, 0x2)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

[ 1498.280173][ T9387] FAULT_INJECTION: forcing a failure.
[ 1498.280173][ T9387] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1498.293339][ T9387] CPU: 0 PID: 9387 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1498.302072][ T9387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1498.312200][ T9387] Call Trace:
[ 1498.315473][ T9387]  dump_stack_lvl+0xb7/0x103
[ 1498.320064][ T9387]  dump_stack+0x11/0x1a
[ 1498.324215][ T9387]  should_fail+0x23c/0x250
[ 1498.328622][ T9387]  should_fail_usercopy+0x16/0x20
[ 1498.333632][ T9387]  copy_page_from_iter+0x1fe/0x530
[ 1498.338732][ T9387]  process_vm_rw_single_vec+0x294/0x460
[ 1498.344286][ T9387]  process_vm_rw+0x347/0x4e0
[ 1498.348882][ T9387]  ? fsnotify_perm+0x59/0x2e0
[ 1498.353541][ T9387]  ? __fsnotify_parent+0x32f/0x430
[ 1498.358684][ T9387]  ? get_pid_task+0x8b/0xc0
[ 1498.363171][ T9387]  ? vfs_write+0x50c/0x770
[ 1498.367603][ T9387]  ? __fget_light+0x21b/0x260
[ 1498.372261][ T9387]  ? __cond_resched+0x11/0x40
[ 1498.376926][ T9387]  ? fput+0x2d/0x130
[ 1498.380808][ T9387]  __x64_sys_process_vm_writev+0x76/0x90
[ 1498.386423][ T9387]  do_syscall_64+0x3d/0x90
[ 1498.390824][ T9387]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1498.396703][ T9387] RIP: 0033:0x4665e9
[ 1498.400651][ T9387] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1498.420244][ T9387] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:23 executing program 1:
syz_io_uring_setup(0x0, &(0x7f0000000040), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000e35000/0x3000)=nil, 0xfffffffffffffffc, 0x0)

14:59:23 executing program 0:
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x10004000)

[ 1498.428646][ T9387] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1498.436600][ T9387] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059fa
[ 1498.444552][ T9387] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1498.452509][ T9387] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1498.460462][ T9387] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:23 executing program 2:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000000), &(0x7f0000001100)=<r0=>0x0)
syz_io_uring_setup(0x69c7, &(0x7f0000000100), &(0x7f0000efb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT_REMOVE, 0xb6f1b91)
syz_io_uring_submit(r1, r0, &(0x7f00000000c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x2, 0x0, 0x81, 0x3, &(0x7f0000000040)="107576dd9ac84be26450ce27fdc04e96ed5e85be7e6d2b6fd80325bdd511281916f063e1cae1509f43f9b35d75e5bf3753ecf262429c9740606151c80152e8bf5a5bba8a7c139414c3718f7230dc83e4a0e5c45f45e3c9e09fab1b977b73d16643c61361554262127e00368bcf1091a4a062c01b0f500f", 0x7, 0x0, 0x0, {0x2}}, 0x10001)
r2 = getpid()
process_vm_writev(r2, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:23 executing program 5:
futex(&(0x7f0000000000)=0x1, 0x81, 0x2, &(0x7f0000000040), &(0x7f0000000100)=0x1, 0x2)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:23 executing program 3 (fault-call:3 fault-nth:65):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:23 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

14:59:23 executing program 1:
syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)

[ 1498.701933][ T9429] FAULT_INJECTION: forcing a failure.
[ 1498.701933][ T9429] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1498.715005][ T9429] CPU: 1 PID: 9429 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1498.723674][ T9429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1498.733728][ T9429] Call Trace:
[ 1498.736994][ T9429]  dump_stack_lvl+0xb7/0x103
[ 1498.741621][ T9429]  dump_stack+0x11/0x1a
[ 1498.745829][ T9429]  should_fail+0x23c/0x250
[ 1498.750264][ T9429]  should_fail_usercopy+0x16/0x20
[ 1498.755335][ T9429]  copy_page_from_iter+0x1fe/0x530
[ 1498.760444][ T9429]  process_vm_rw_single_vec+0x294/0x460
[ 1498.766004][ T9429]  process_vm_rw+0x347/0x4e0
[ 1498.770587][ T9429]  ? fsnotify_perm+0x59/0x2e0
[ 1498.775261][ T9429]  ? __fsnotify_parent+0x32f/0x430
[ 1498.780390][ T9429]  ? vfs_write+0x50c/0x770
[ 1498.784798][ T9429]  ? __fget_light+0x21b/0x260
[ 1498.789474][ T9429]  ? __cond_resched+0x11/0x40
[ 1498.794168][ T9429]  ? fput+0x2d/0x130
[ 1498.798073][ T9429]  __x64_sys_process_vm_writev+0x76/0x90
[ 1498.803703][ T9429]  do_syscall_64+0x3d/0x90
[ 1498.808121][ T9429]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1498.814056][ T9429] RIP: 0033:0x4665e9
[ 1498.817939][ T9429] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1498.837593][ T9429] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:23 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3b6, 0x0)

14:59:23 executing program 0:
r0 = io_uring_setup(0x0, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:23 executing program 5:
futex(&(0x7f0000000000)=0x1, 0x81, 0x2, &(0x7f0000000040), &(0x7f0000000100)=0x1, 0x2)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:23 executing program 1:
syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)

14:59:23 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

14:59:23 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x4, 0x10, 0x0, 0x291})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:23 executing program 5:
r0 = io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x4, 0x10, 0x0, 0x291})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:23 executing program 5:
r0 = io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x4, 0x10, 0x0, 0x291})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:23 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

[ 1498.846021][ T9429] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1498.853986][ T9429] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 00000000000059fd
[ 1498.861950][ T9429] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1498.869916][ T9429] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1498.878008][ T9429] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:23 executing program 3 (fault-call:3 fault-nth:66):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:23 executing program 0:
r0 = io_uring_setup(0x0, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:23 executing program 1:
syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)

14:59:23 executing program 5:
r0 = io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x4, 0x10, 0x0, 0x291})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:23 executing program 2:
r0 = epoll_create(0x8)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, 0xffffffffffffffff, &(0x7f0000000040)={0x90002008})

14:59:23 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3b7, 0x0)

14:59:23 executing program 0:
r0 = io_uring_setup(0x0, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:23 executing program 2:
r0 = epoll_create(0x8)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, 0xffffffffffffffff, &(0x7f0000000040)={0x90002008})

14:59:23 executing program 5:
r0 = io_uring_setup(0x6f2e, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:23 executing program 1:
syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)

14:59:23 executing program 0:
r0 = io_uring_setup(0x6f2e, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:23 executing program 5:
r0 = io_uring_setup(0x6f2e, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

[ 1499.097977][ T9488] FAULT_INJECTION: forcing a failure.
[ 1499.097977][ T9488] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1499.111273][ T9488] CPU: 0 PID: 9488 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1499.119949][ T9488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1499.129996][ T9488] Call Trace:
[ 1499.133268][ T9488]  dump_stack_lvl+0xb7/0x103
[ 1499.137856][ T9488]  dump_stack+0x11/0x1a
[ 1499.142013][ T9488]  should_fail+0x23c/0x250
[ 1499.146435][ T9488]  should_fail_usercopy+0x16/0x20
[ 1499.151536][ T9488]  copy_page_from_iter+0x1fe/0x530
[ 1499.156650][ T9488]  process_vm_rw_single_vec+0x294/0x460
[ 1499.162195][ T9488]  process_vm_rw+0x347/0x4e0
[ 1499.166852][ T9488]  ? fsnotify_perm+0x59/0x2e0
[ 1499.171605][ T9488]  ? __fsnotify_parent+0x32f/0x430
[ 1499.176787][ T9488]  ? vfs_write+0x50c/0x770
[ 1499.181201][ T9488]  ? __fget_light+0x21b/0x260
[ 1499.185868][ T9488]  ? __cond_resched+0x11/0x40
[ 1499.190549][ T9488]  ? fput+0x2d/0x130
[ 1499.194447][ T9488]  __x64_sys_process_vm_writev+0x76/0x90
[ 1499.200074][ T9488]  do_syscall_64+0x3d/0x90
[ 1499.204486][ T9488]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1499.210381][ T9488] RIP: 0033:0x4665e9
[ 1499.214269][ T9488] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1499.233970][ T9488] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:23 executing program 3 (fault-call:3 fault-nth:67):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:23 executing program 1:
syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, 0xffffffffffffffff, 0x10000000)

14:59:23 executing program 2:
r0 = epoll_create(0x8)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, 0xffffffffffffffff, &(0x7f0000000040)={0x90002008})

14:59:23 executing program 0:
r0 = io_uring_setup(0x6f2e, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:23 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3b8, 0x0)

14:59:23 executing program 5:
r0 = io_uring_setup(0x6f2e, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

[ 1499.242377][ T9488] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1499.250341][ T9488] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a00
[ 1499.258301][ T9488] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1499.266268][ T9488] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1499.274355][ T9488] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:23 executing program 1:
syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, 0xffffffffffffffff, 0x10000000)

14:59:23 executing program 2:
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x300, r0, &(0x7f0000000040)={0x90002008})

14:59:23 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x0, 0x10, 0x0, 0x291})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:23 executing program 0:
r0 = io_uring_setup(0x6f2e, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:23 executing program 2:
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x300, r0, &(0x7f0000000040)={0x90002008})

14:59:24 executing program 1:
syz_io_uring_setup(0x2353, &(0x7f0000000200), &(0x7f0000ff9000/0x1000)=nil, &(0x7f00007de000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, 0xffffffffffffffff, 0x10000000)

[ 1499.405184][ T9525] FAULT_INJECTION: forcing a failure.
[ 1499.405184][ T9525] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1499.418254][ T9525] CPU: 0 PID: 9525 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1499.426954][ T9525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1499.437005][ T9525] Call Trace:
[ 1499.440288][ T9525]  dump_stack_lvl+0xb7/0x103
[ 1499.444877][ T9525]  dump_stack+0x11/0x1a
[ 1499.449024][ T9525]  should_fail+0x23c/0x250
[ 1499.453437][ T9525]  should_fail_usercopy+0x16/0x20
[ 1499.458461][ T9525]  copy_page_from_iter+0x1fe/0x530
[ 1499.463572][ T9525]  process_vm_rw_single_vec+0x294/0x460
[ 1499.469109][ T9525]  process_vm_rw+0x347/0x4e0
[ 1499.473706][ T9525]  ? fsnotify_perm+0x59/0x2e0
[ 1499.478543][ T9525]  ? __fsnotify_parent+0x32f/0x430
[ 1499.483746][ T9525]  ? get_pid_task+0x8b/0xc0
[ 1499.488246][ T9525]  ? vfs_write+0x50c/0x770
[ 1499.492658][ T9525]  ? __fget_light+0x21b/0x260
[ 1499.497329][ T9525]  ? __cond_resched+0x11/0x40
[ 1499.502001][ T9525]  ? fput+0x2d/0x130
[ 1499.505891][ T9525]  __x64_sys_process_vm_writev+0x76/0x90
[ 1499.511524][ T9525]  do_syscall_64+0x3d/0x90
[ 1499.516020][ T9525]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1499.521914][ T9525] RIP: 0033:0x4665e9
[ 1499.525796][ T9525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1499.545395][ T9525] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1499.553800][ T9525] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1499.561764][ T9525] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a03
[ 1499.569745][ T9525] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1499.577804][ T9525] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1499.585840][ T9525] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:24 executing program 3 (fault-call:3 fault-nth:68):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:24 executing program 2:
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x300, r0, &(0x7f0000000040)={0x90002008})

14:59:24 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3b9, 0x0)

14:59:24 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, r0, 0x10004000)

14:59:24 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)

14:59:24 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x291})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:24 executing program 2:
r0 = epoll_create(0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

14:59:24 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:24 executing program 1:
pipe(0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, 0xffffffffffffffff, 0x10000000)

14:59:24 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, r0, 0x10004000)

14:59:24 executing program 2:
r0 = epoll_create(0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

14:59:24 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

[ 1499.765282][ T9576] FAULT_INJECTION: forcing a failure.
[ 1499.765282][ T9576] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1499.778432][ T9576] CPU: 1 PID: 9576 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1499.787103][ T9576] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1499.797181][ T9576] Call Trace:
[ 1499.800456][ T9576]  dump_stack_lvl+0xb7/0x103
[ 1499.805035][ T9576]  dump_stack+0x11/0x1a
[ 1499.809183][ T9576]  should_fail+0x23c/0x250
[ 1499.813599][ T9576]  should_fail_usercopy+0x16/0x20
[ 1499.818638][ T9576]  copy_page_from_iter+0x1fe/0x530
[ 1499.823807][ T9576]  process_vm_rw_single_vec+0x294/0x460
[ 1499.829371][ T9576]  process_vm_rw+0x347/0x4e0
[ 1499.833967][ T9576]  ? fsnotify_perm+0x59/0x2e0
[ 1499.838703][ T9576]  ? __fsnotify_parent+0x32f/0x430
[ 1499.843795][ T9576]  ? get_pid_task+0x8b/0xc0
[ 1499.848279][ T9576]  ? vfs_write+0x50c/0x770
[ 1499.852691][ T9576]  ? __fget_light+0x21b/0x260
[ 1499.857367][ T9576]  ? __cond_resched+0x11/0x40
[ 1499.862026][ T9576]  ? fput+0x2d/0x130
[ 1499.865899][ T9576]  __x64_sys_process_vm_writev+0x76/0x90
[ 1499.871512][ T9576]  do_syscall_64+0x3d/0x90
[ 1499.875981][ T9576]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1499.881892][ T9576] RIP: 0033:0x4665e9
[ 1499.885763][ T9576] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1499.905783][ T9576] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1499.914183][ T9576] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1499.922151][ T9576] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a06
[ 1499.930163][ T9576] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1499.938146][ T9576] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1499.946097][ T9576] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:24 executing program 3 (fault-call:3 fault-nth:69):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:24 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, r0, 0x10004000)

14:59:24 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3ba, 0x0)

14:59:24 executing program 1:
pipe(0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, 0xffffffffffffffff, 0x10000000)

14:59:24 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:24 executing program 2:
r0 = epoll_create(0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

14:59:24 executing program 0:
io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x10004000)

14:59:24 executing program 1:
pipe(0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, 0xffffffffffffffff, 0x10000000)

14:59:24 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x0, 0x11, r0, 0x10000000)

[ 1500.096823][ T9605] FAULT_INJECTION: forcing a failure.
[ 1500.096823][ T9605] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1500.109942][ T9605] CPU: 1 PID: 9605 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1500.118617][ T9605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1500.128665][ T9605] Call Trace:
[ 1500.131993][ T9605]  dump_stack_lvl+0xb7/0x103
[ 1500.136582][ T9605]  dump_stack+0x11/0x1a
[ 1500.140731][ T9605]  should_fail+0x23c/0x250
14:59:24 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x0, 0x11, r0, 0x10000000)

[ 1500.145182][ T9605]  should_fail_usercopy+0x16/0x20
[ 1500.150262][ T9605]  copy_page_from_iter+0x1fe/0x530
[ 1500.155367][ T9605]  process_vm_rw_single_vec+0x294/0x460
[ 1500.160906][ T9605]  process_vm_rw+0x347/0x4e0
[ 1500.165487][ T9605]  ? fsnotify_perm+0x59/0x2e0
[ 1500.170155][ T9605]  ? __fsnotify_parent+0x32f/0x430
[ 1500.175260][ T9605]  ? get_pid_task+0x8b/0xc0
[ 1500.179838][ T9605]  ? vfs_write+0x50c/0x770
[ 1500.184506][ T9605]  ? __fget_light+0x21b/0x260
[ 1500.189171][ T9605]  ? __cond_resched+0x11/0x40
14:59:24 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x0, 0x11, r0, 0x10000000)

[ 1500.193846][ T9605]  ? fput+0x2d/0x130
[ 1500.197731][ T9605]  __x64_sys_process_vm_writev+0x76/0x90
[ 1500.203368][ T9605]  do_syscall_64+0x3d/0x90
[ 1500.207794][ T9605]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1500.213718][ T9605] RIP: 0033:0x4665e9
[ 1500.217654][ T9605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1500.237251][ T9605] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:24 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x10, r0, 0x10000000)

[ 1500.245666][ T9605] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1500.253638][ T9605] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a09
[ 1500.261603][ T9605] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1500.269570][ T9605] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1500.277593][ T9605] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:24 executing program 3 (fault-call:3 fault-nth:70):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:24 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x10, r0, 0x10000000)

14:59:24 executing program 2:
r0 = epoll_create(0x8)
pipe(0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, 0xffffffffffffffff, &(0x7f0000000040)={0x90002008})

14:59:24 executing program 0:
io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x10004000)

14:59:24 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3bb, 0x0)

14:59:24 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:24 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x10, r0, 0x10000000)

14:59:25 executing program 0:
io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x10004000)

14:59:25 executing program 1:
pipe(&(0x7f0000005500))
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, 0xffffffffffffffff, 0x10000000)

14:59:25 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:25 executing program 2:
r0 = epoll_create(0x8)
pipe(0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, 0xffffffffffffffff, &(0x7f0000000040)={0x90002008})

[ 1500.484944][ T9654] FAULT_INJECTION: forcing a failure.
[ 1500.484944][ T9654] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1500.498087][ T9654] CPU: 0 PID: 9654 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1500.506816][ T9654] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1500.516886][ T9654] Call Trace:
[ 1500.520155][ T9654]  dump_stack_lvl+0xb7/0x103
[ 1500.524746][ T9654]  dump_stack+0x11/0x1a
[ 1500.528906][ T9654]  should_fail+0x23c/0x250
[ 1500.533386][ T9654]  should_fail_usercopy+0x16/0x20
[ 1500.538451][ T9654]  copy_page_from_iter+0x1fe/0x530
[ 1500.543559][ T9654]  process_vm_rw_single_vec+0x294/0x460
[ 1500.549103][ T9654]  process_vm_rw+0x347/0x4e0
[ 1500.553763][ T9654]  ? fsnotify_perm+0x59/0x2e0
[ 1500.558502][ T9654]  ? __fsnotify_parent+0x32f/0x430
[ 1500.563608][ T9654]  ? get_pid_task+0x8b/0xc0
[ 1500.568100][ T9654]  ? vfs_write+0x50c/0x770
[ 1500.572517][ T9654]  ? __fget_light+0x21b/0x260
[ 1500.577219][ T9654]  ? __cond_resched+0x11/0x40
[ 1500.581904][ T9654]  ? fput+0x2d/0x130
[ 1500.585892][ T9654]  __x64_sys_process_vm_writev+0x76/0x90
[ 1500.591533][ T9654]  do_syscall_64+0x3d/0x90
[ 1500.596002][ T9654]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1500.601938][ T9654] RIP: 0033:0x4665e9
[ 1500.605832][ T9654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1500.625535][ T9654] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:25 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

[ 1500.633973][ T9654] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1500.641943][ T9654] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a0c
[ 1500.649912][ T9654] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1500.657876][ T9654] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1500.665838][ T9654] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:25 executing program 3 (fault-call:3 fault-nth:71):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:25 executing program 2:
r0 = epoll_create(0x8)
pipe(0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, 0xffffffffffffffff, &(0x7f0000000040)={0x90002008})

14:59:25 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3bc, 0x0)

14:59:25 executing program 0 (fault-call:1 fault-nth:0):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:25 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:25 executing program 1:
pipe(&(0x7f0000005500))
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, 0xffffffffffffffff, 0x10000000)

[ 1500.747327][ T9691] FAULT_INJECTION: forcing a failure.
[ 1500.747327][ T9691] name failslab, interval 1, probability 0, space 0, times 0
[ 1500.759965][ T9691] CPU: 1 PID: 9691 Comm: syz-executor.0 Not tainted 5.14.0-rc5-syzkaller #0
[ 1500.768721][ T9691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1500.778836][ T9691] Call Trace:
[ 1500.782175][ T9691]  dump_stack_lvl+0xb7/0x103
[ 1500.786806][ T9691]  dump_stack+0x11/0x1a
[ 1500.790983][ T9691]  should_fail+0x23c/0x250
[ 1500.795403][ T9691]  ? vm_area_dup+0x44/0x120
[ 1500.799894][ T9691]  __should_failslab+0x81/0x90
[ 1500.804650][ T9691]  should_failslab+0x5/0x20
[ 1500.809140][ T9691]  kmem_cache_alloc+0x46/0x2e0
[ 1500.809711][ T9696] FAULT_INJECTION: forcing a failure.
[ 1500.809711][ T9696] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1500.813947][ T9691]  vm_area_dup+0x44/0x120
[ 1500.831261][ T9691]  ? mntput_no_expire+0x64/0x730
[ 1500.836277][ T9691]  ? get_page_from_freelist+0x54e/0x820
[ 1500.841810][ T9691]  __split_vma+0x82/0x320
[ 1500.846133][ T9691]  ? vmacache_find+0x2d2/0x320
[ 1500.850880][ T9691]  __do_munmap+0x27c/0x1330
[ 1500.855430][ T9691]  ? __mod_memcg_lruvec_state+0xa7/0x190
[ 1500.861048][ T9691]  mmap_region+0x5aa/0x1400
[ 1500.865535][ T9691]  do_mmap+0x73f/0xc40
[ 1500.869663][ T9691]  vm_mmap_pgoff+0xf9/0x1d0
[ 1500.874149][ T9691]  ksys_mmap_pgoff+0x2a8/0x380
[ 1500.879075][ T9691]  do_syscall_64+0x3d/0x90
[ 1500.883481][ T9691]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1500.889376][ T9691] RIP: 0033:0x4665e9
[ 1500.893251][ T9691] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1500.912901][ T9691] RSP: 002b:00007f16ff55c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1500.921373][ T9691] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9
[ 1500.929367][ T9691] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000
[ 1500.937328][ T9691] RBP: 00007f16ff55c1d0 R08: 0000000000000003 R09: 0000000010004000
14:59:25 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x0, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:25 executing program 1:
pipe(&(0x7f0000005500))
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, 0xffffffffffffffff, 0x10000000)

[ 1500.945282][ T9691] R10: 0000000000000012 R11: 0000000000000246 R12: 0000000000000001
[ 1500.953256][ T9691] R13: 00007ffc584a45af R14: 00007f16ff55c300 R15: 0000000000022000
[ 1500.961219][ T9696] CPU: 0 PID: 9696 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1500.969895][ T9696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1500.980030][ T9696] Call Trace:
[ 1500.983306][ T9696]  dump_stack_lvl+0xb7/0x103
[ 1500.987926][ T9696]  dump_stack+0x11/0x1a
[ 1500.992072][ T9696]  should_fail+0x23c/0x250
[ 1500.996533][ T9696]  should_fail_usercopy+0x16/0x20
[ 1501.001573][ T9696]  copy_page_from_iter+0x1fe/0x530
[ 1501.006677][ T9696]  process_vm_rw_single_vec+0x294/0x460
[ 1501.012215][ T9696]  process_vm_rw+0x347/0x4e0
[ 1501.016965][ T9696]  ? fsnotify_perm+0x59/0x2e0
[ 1501.021718][ T9696]  ? __fsnotify_parent+0x32f/0x430
[ 1501.026867][ T9696]  ? get_pid_task+0x8b/0xc0
[ 1501.031356][ T9696]  ? vfs_write+0x50c/0x770
[ 1501.035767][ T9696]  ? __fget_light+0x21b/0x260
[ 1501.040463][ T9696]  ? __cond_resched+0x11/0x40
[ 1501.045131][ T9696]  ? fput+0x2d/0x130
[ 1501.049093][ T9696]  __x64_sys_process_vm_writev+0x76/0x90
[ 1501.054712][ T9696]  do_syscall_64+0x3d/0x90
[ 1501.059155][ T9696]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1501.065086][ T9696] RIP: 0033:0x4665e9
[ 1501.068968][ T9696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1501.088595][ T9696] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:25 executing program 0 (fault-call:1 fault-nth:1):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

[ 1501.097061][ T9696] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1501.105018][ T9696] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a0f
[ 1501.112974][ T9696] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1501.121037][ T9696] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1501.128991][ T9696] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
[ 1501.171368][ T9709] FAULT_INJECTION: forcing a failure.
[ 1501.171368][ T9709] name failslab, interval 1, probability 0, space 0, times 0
[ 1501.184010][ T9709] CPU: 1 PID: 9709 Comm: syz-executor.0 Not tainted 5.14.0-rc5-syzkaller #0
[ 1501.192777][ T9709] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1501.202830][ T9709] Call Trace:
[ 1501.206115][ T9709]  dump_stack_lvl+0xb7/0x103
[ 1501.210757][ T9709]  dump_stack+0x11/0x1a
[ 1501.215021][ T9709]  should_fail+0x23c/0x250
[ 1501.219441][ T9709]  ? anon_vma_clone+0x8d/0x380
[ 1501.224204][ T9709]  __should_failslab+0x81/0x90
[ 1501.228958][ T9709]  should_failslab+0x5/0x20
[ 1501.233459][ T9709]  kmem_cache_alloc+0x46/0x2e0
[ 1501.238226][ T9709]  anon_vma_clone+0x8d/0x380
[ 1501.242828][ T9709]  __split_vma+0x134/0x320
[ 1501.247259][ T9709]  ? vmacache_find+0x2d2/0x320
[ 1501.252018][ T9709]  __do_munmap+0x27c/0x1330
[ 1501.256521][ T9709]  ? __mod_memcg_lruvec_state+0xa7/0x190
[ 1501.262293][ T9709]  mmap_region+0x5aa/0x1400
[ 1501.266866][ T9709]  do_mmap+0x73f/0xc40
[ 1501.270934][ T9709]  vm_mmap_pgoff+0xf9/0x1d0
[ 1501.275513][ T9709]  ksys_mmap_pgoff+0x2a8/0x380
[ 1501.280266][ T9709]  do_syscall_64+0x3d/0x90
[ 1501.284681][ T9709]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1501.290698][ T9709] RIP: 0033:0x4665e9
[ 1501.294602][ T9709] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1501.306179][ T9718] FAULT_INJECTION: forcing a failure.
[ 1501.306179][ T9718] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1501.314224][ T9709] RSP: 002b:00007f16ff55c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1501.314246][ T9709] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9
[ 1501.314259][ T9709] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000
[ 1501.351522][ T9709] RBP: 00007f16ff55c1d0 R08: 0000000000000003 R09: 0000000010004000
[ 1501.359520][ T9709] R10: 0000000000000012 R11: 0000000000000246 R12: 0000000000000001
14:59:25 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x0, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:25 executing program 1 (fault-call:1 fault-nth:0):
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)

14:59:25 executing program 2:
epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x300, r0, &(0x7f0000000040)={0x90002008})

14:59:25 executing program 3 (fault-call:3 fault-nth:72):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

[ 1501.367537][ T9709] R13: 00007ffc584a45af R14: 00007f16ff55c300 R15: 0000000000022000
[ 1501.376128][ T9718] CPU: 0 PID: 9718 Comm: syz-executor.1 Not tainted 5.14.0-rc5-syzkaller #0
[ 1501.384900][ T9718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1501.395011][ T9718] Call Trace:
[ 1501.398288][ T9718]  dump_stack_lvl+0xb7/0x103
[ 1501.402963][ T9718]  dump_stack+0x11/0x1a
[ 1501.407109][ T9718]  should_fail+0x23c/0x250
[ 1501.411517][ T9718]  should_fail_usercopy+0x16/0x20
[ 1501.416575][ T9718]  _copy_to_user+0x1c/0x90
[ 1501.420978][ T9718]  simple_read_from_buffer+0xab/0x120
[ 1501.426455][ T9718]  proc_fail_nth_read+0xf6/0x140
[ 1501.431403][ T9718]  ? rw_verify_area+0x136/0x250
[ 1501.436238][ T9718]  ? proc_fault_inject_write+0x200/0x200
[ 1501.441874][ T9718]  vfs_read+0x154/0x5d0
[ 1501.446132][ T9718]  ? __fget_light+0x21b/0x260
[ 1501.450811][ T9718]  ? __cond_resched+0x11/0x40
[ 1501.455509][ T9718]  ksys_read+0xce/0x180
[ 1501.459651][ T9718]  __x64_sys_read+0x3e/0x50
[ 1501.464139][ T9718]  do_syscall_64+0x3d/0x90
[ 1501.468579][ T9718]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1501.474516][ T9718] RIP: 0033:0x41936c
[ 1501.478399][ T9718] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 1501.497999][ T9718] RSP: 002b:00007fe1f2965170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1501.506515][ T9718] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 000000000041936c
[ 1501.514473][ T9718] RDX: 000000000000000f RSI: 00007fe1f29651e0 RDI: 0000000000000003
14:59:26 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x0, &(0x7f0000000140)={0x0, 0xc143, 0x1, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

[ 1501.522445][ T9718] RBP: 00007fe1f29651d0 R08: 0000000000000000 R09: 0000000010000000
[ 1501.530403][ T9718] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000001
[ 1501.538356][ T9718] R13: 00007ffe30117f3f R14: 00007fe1f2965300 R15: 0000000000022000
14:59:26 executing program 0 (fault-call:1 fault-nth:2):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:26 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3bd, 0x0)

14:59:26 executing program 2:
epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x300, r0, &(0x7f0000000040)={0x90002008})

14:59:26 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, 0x0, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

[ 1501.627324][ T9737] FAULT_INJECTION: forcing a failure.
[ 1501.627324][ T9737] name failslab, interval 1, probability 0, space 0, times 0
[ 1501.640108][ T9737] CPU: 1 PID: 9737 Comm: syz-executor.0 Not tainted 5.14.0-rc5-syzkaller #0
[ 1501.648789][ T9737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1501.658842][ T9737] Call Trace:
[ 1501.662113][ T9737]  dump_stack_lvl+0xb7/0x103
[ 1501.666709][ T9737]  dump_stack+0x11/0x1a
[ 1501.668562][ T9740] FAULT_INJECTION: forcing a failure.
[ 1501.668562][ T9740] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1501.670894][ T9737]  should_fail+0x23c/0x250
[ 1501.688322][ T9737]  ? vm_area_alloc+0x28/0xa0
[ 1501.692901][ T9737]  __should_failslab+0x81/0x90
[ 1501.697657][ T9737]  should_failslab+0x5/0x20
[ 1501.702144][ T9737]  kmem_cache_alloc+0x46/0x2e0
[ 1501.706902][ T9737]  vm_area_alloc+0x28/0xa0
[ 1501.711302][ T9737]  mmap_region+0x741/0x1400
[ 1501.715875][ T9737]  do_mmap+0x73f/0xc40
[ 1501.720017][ T9737]  vm_mmap_pgoff+0xf9/0x1d0
[ 1501.724508][ T9737]  ksys_mmap_pgoff+0x2a8/0x380
[ 1501.729282][ T9737]  do_syscall_64+0x3d/0x90
[ 1501.733690][ T9737]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1501.739572][ T9737] RIP: 0033:0x4665e9
[ 1501.743462][ T9737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1501.763107][ T9737] RSP: 002b:00007f16ff55c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
14:59:26 executing program 2:
epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x300, r0, &(0x7f0000000040)={0x90002008})

[ 1501.771525][ T9737] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9
[ 1501.779480][ T9737] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffc000
[ 1501.787435][ T9737] RBP: 00007f16ff55c1d0 R08: 0000000000000003 R09: 0000000010004000
[ 1501.795394][ T9737] R10: 0000000000000012 R11: 0000000000000246 R12: 0000000000000001
[ 1501.803366][ T9737] R13: 00007ffc584a45af R14: 00007f16ff55c300 R15: 0000000000022000
[ 1501.811336][ T9740] CPU: 0 PID: 9740 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
14:59:26 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, 0x0, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

[ 1501.820007][ T9740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1501.830135][ T9740] Call Trace:
[ 1501.833405][ T9740]  dump_stack_lvl+0xb7/0x103
[ 1501.837989][ T9740]  dump_stack+0x11/0x1a
[ 1501.842139][ T9740]  should_fail+0x23c/0x250
[ 1501.846558][ T9740]  should_fail_usercopy+0x16/0x20
[ 1501.851591][ T9740]  copy_page_from_iter+0x1fe/0x530
[ 1501.856760][ T9740]  process_vm_rw_single_vec+0x294/0x460
[ 1501.862362][ T9740]  process_vm_rw+0x347/0x4e0
[ 1501.866941][ T9740]  ? fsnotify_perm+0x59/0x2e0
[ 1501.871684][ T9740]  ? __fsnotify_parent+0x32f/0x430
14:59:26 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)

[ 1501.876796][ T9740]  ? get_pid_task+0x8b/0xc0
[ 1501.881347][ T9740]  ? vfs_write+0x50c/0x770
[ 1501.885766][ T9740]  ? __fget_light+0x21b/0x260
[ 1501.890435][ T9740]  ? __cond_resched+0x11/0x40
[ 1501.895113][ T9740]  ? fput+0x2d/0x130
[ 1501.899074][ T9740]  __x64_sys_process_vm_writev+0x76/0x90
[ 1501.904725][ T9740]  do_syscall_64+0x3d/0x90
[ 1501.909193][ T9740]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1501.915108][ T9740] RIP: 0033:0x4665e9
14:59:26 executing program 0 (fault-call:1 fault-nth:3):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

[ 1501.918996][ T9740] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1501.938686][ T9740] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1501.947092][ T9740] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1501.955062][ T9740] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a12
[ 1501.963035][ T9740] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1501.971001][ T9740] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
14:59:26 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x6000, 0x2000002, 0x11, r0, 0x10000000)

14:59:26 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3be, 0x0)

[ 1501.978965][ T9740] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
[ 1502.018035][ T9758] FAULT_INJECTION: forcing a failure.
[ 1502.018035][ T9758] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1502.031112][ T9758] CPU: 1 PID: 9758 Comm: syz-executor.0 Not tainted 5.14.0-rc5-syzkaller #0
[ 1502.039818][ T9758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1502.049875][ T9758] Call Trace:
[ 1502.053232][ T9758]  dump_stack_lvl+0xb7/0x103
[ 1502.057832][ T9758]  dump_stack+0x11/0x1a
[ 1502.061980][ T9758]  should_fail+0x23c/0x250
[ 1502.066459][ T9758]  should_fail_usercopy+0x16/0x20
[ 1502.071480][ T9758]  _copy_to_user+0x1c/0x90
[ 1502.075895][ T9758]  simple_read_from_buffer+0xab/0x120
[ 1502.081274][ T9758]  proc_fail_nth_read+0xf6/0x140
[ 1502.086214][ T9758]  ? rw_verify_area+0x136/0x250
[ 1502.091099][ T9758]  ? proc_fault_inject_write+0x200/0x200
[ 1502.096737][ T9758]  vfs_read+0x154/0x5d0
[ 1502.100887][ T9758]  ? up_write+0x25/0xc0
[ 1502.105150][ T9758]  ? __fget_light+0x21b/0x260
[ 1502.109830][ T9758]  ? __cond_resched+0x11/0x40
[ 1502.114503][ T9758]  ksys_read+0xce/0x180
[ 1502.118652][ T9758]  __x64_sys_read+0x3e/0x50
[ 1502.123153][ T9758]  do_syscall_64+0x3d/0x90
[ 1502.127559][ T9758]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1502.133472][ T9758] RIP: 0033:0x41936c
[ 1502.137373][ T9758] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 1502.156979][ T9758] RSP: 002b:00007f16ff55c170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1502.165388][ T9758] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 000000000041936c
14:59:26 executing program 3 (fault-call:3 fault-nth:73):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:26 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500))
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, 0xffffffffffffffff, &(0x7f0000000040)={0x90002008})

14:59:26 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3bf, 0x0)

14:59:26 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, 0x0, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:26 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x20ff0000, 0x2000002, 0x11, r0, 0x10000000)

14:59:26 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

[ 1502.173395][ T9758] RDX: 000000000000000f RSI: 00007f16ff55c1e0 RDI: 0000000000000004
[ 1502.181365][ T9758] RBP: 00007f16ff55c1d0 R08: 0000000000000000 R09: 0000000010004000
[ 1502.189336][ T9758] R10: 0000000000000012 R11: 0000000000000246 R12: 0000000000000001
[ 1502.197557][ T9758] R13: 00007ffc584a45af R14: 00007f16ff55c300 R15: 0000000000022000
14:59:26 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500))
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, 0xffffffffffffffff, &(0x7f0000000040)={0x90002008})

14:59:26 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0xffff8000, 0x2000002, 0x11, r0, 0x10000000)

14:59:26 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x1, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:26 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4002, 0x0, 0x12, r0, 0x10004000)

[ 1502.334979][ T9789] FAULT_INJECTION: forcing a failure.
[ 1502.334979][ T9789] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1502.348088][ T9789] CPU: 1 PID: 9789 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1502.356833][ T9789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1502.366944][ T9789] Call Trace:
[ 1502.370219][ T9789]  dump_stack_lvl+0xb7/0x103
[ 1502.374811][ T9789]  dump_stack+0x11/0x1a
[ 1502.378957][ T9789]  should_fail+0x23c/0x250
[ 1502.383373][ T9789]  should_fail_usercopy+0x16/0x20
[ 1502.388402][ T9789]  copy_page_from_iter+0x1fe/0x530
[ 1502.393539][ T9789]  process_vm_rw_single_vec+0x294/0x460
[ 1502.399148][ T9789]  process_vm_rw+0x347/0x4e0
[ 1502.403731][ T9789]  ? fsnotify_perm+0x59/0x2e0
[ 1502.408407][ T9789]  ? __fsnotify_parent+0x32f/0x430
[ 1502.413518][ T9789]  ? get_pid_task+0x8b/0xc0
[ 1502.418014][ T9789]  ? vfs_write+0x50c/0x770
[ 1502.422505][ T9789]  ? __fget_light+0x21b/0x260
[ 1502.427208][ T9789]  ? __cond_resched+0x11/0x40
[ 1502.431919][ T9789]  ? kcsan_setup_watchpoint+0x231/0x3e0
[ 1502.437469][ T9789]  __x64_sys_process_vm_writev+0x76/0x90
[ 1502.443229][ T9789]  do_syscall_64+0x3d/0x90
[ 1502.447666][ T9789]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1502.453565][ T9789] RIP: 0033:0x4665e9
[ 1502.457449][ T9789] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1502.477058][ T9789] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:26 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500))
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, 0xffffffffffffffff, &(0x7f0000000040)={0x90002008})

14:59:26 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4004, 0x0, 0x12, r0, 0x10004000)

[ 1502.485465][ T9789] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1502.493435][ T9789] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a15
[ 1502.501521][ T9789] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1502.509487][ T9789] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1502.517447][ T9789] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:27 executing program 3 (fault-call:3 fault-nth:74):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:27 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, 0x0)

14:59:27 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x1eb24000, 0x0, 0x12, r0, 0x10004000)

14:59:27 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0xffffc000, 0x2000002, 0x11, r0, 0x10000000)

14:59:27 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x1, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:27 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3c0, 0x0)

14:59:27 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x7fffdf003000, 0x0, 0x12, r0, 0x10004000)

14:59:27 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x7ffffffff000, 0x2000002, 0x11, r0, 0x10000000)

14:59:27 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, 0x0)

14:59:27 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:27 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0xffffffffffffffff, 0x2000002, 0x11, r0, 0x10000000)

14:59:27 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x7ffffffff000, 0x0, 0x12, r0, 0x10004000)

[ 1502.707460][ T9839] FAULT_INJECTION: forcing a failure.
[ 1502.707460][ T9839] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1502.720536][ T9839] CPU: 1 PID: 9839 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1502.729336][ T9839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1502.739382][ T9839] Call Trace:
[ 1502.742652][ T9839]  dump_stack_lvl+0xb7/0x103
[ 1502.747321][ T9839]  dump_stack+0x11/0x1a
[ 1502.751468][ T9839]  should_fail+0x23c/0x250
[ 1502.755881][ T9839]  should_fail_usercopy+0x16/0x20
[ 1502.760912][ T9839]  copy_page_from_iter+0x1fe/0x530
[ 1502.766028][ T9839]  process_vm_rw_single_vec+0x294/0x460
[ 1502.771570][ T9839]  process_vm_rw+0x347/0x4e0
[ 1502.776244][ T9839]  ? fsnotify_perm+0x59/0x2e0
[ 1502.780917][ T9839]  ? __fsnotify_parent+0x32f/0x430
[ 1502.786016][ T9839]  ? get_pid_task+0x8b/0xc0
[ 1502.790517][ T9839]  ? vfs_write+0x50c/0x770
[ 1502.794929][ T9839]  ? __fget_light+0x21b/0x260
[ 1502.799601][ T9839]  ? __cond_resched+0x11/0x40
[ 1502.804272][ T9839]  ? fput+0x2d/0x130
[ 1502.808161][ T9839]  __x64_sys_process_vm_writev+0x76/0x90
[ 1502.813783][ T9839]  do_syscall_64+0x3d/0x90
[ 1502.818256][ T9839]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1502.824153][ T9839] RIP: 0033:0x4665e9
[ 1502.828030][ T9839] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1502.847636][ T9839] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1502.856089][ T9839] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1502.864064][ T9839] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a18
[ 1502.872023][ T9839] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1502.879991][ T9839] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1502.887958][ T9839] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:27 executing program 3 (fault-call:3 fault-nth:75):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:27 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0xffffffffffffffff, 0x0, 0x12, r0, 0x10004000)

14:59:27 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3c1, 0x0)

14:59:27 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, 0x0)

14:59:27 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x1fc, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:27 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x10000000)

14:59:27 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x4000000, 0x11, r0, 0x10000000)

14:59:27 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040))

14:59:27 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:27 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x10004000)

14:59:27 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040))

14:59:27 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000100)={0x63, 0x7, 0x4, "766648eb279ffab14c015289d3dc9cc27c710c4417b78779635949a575be889dcef7cd2f3a476fb66df46eecc345226ab4470c3ff89f390c6eb4ae0d6bbe721df8e63976981e49cbf1e2d7ea089c18331fa9957d55e29a7fff66bc69a97f3e8c2f50f0"})

[ 1503.062083][ T9882] FAULT_INJECTION: forcing a failure.
[ 1503.062083][ T9882] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1503.075162][ T9882] CPU: 0 PID: 9882 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1503.083874][ T9882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1503.093929][ T9882] Call Trace:
[ 1503.097212][ T9882]  dump_stack_lvl+0xb7/0x103
[ 1503.101808][ T9882]  dump_stack+0x11/0x1a
[ 1503.106042][ T9882]  should_fail+0x23c/0x250
[ 1503.110462][ T9882]  should_fail_usercopy+0x16/0x20
[ 1503.115563][ T9882]  copy_page_from_iter+0x1fe/0x530
[ 1503.120745][ T9882]  process_vm_rw_single_vec+0x294/0x460
[ 1503.126294][ T9882]  process_vm_rw+0x347/0x4e0
[ 1503.130887][ T9882]  ? fsnotify_perm+0x59/0x2e0
[ 1503.135644][ T9882]  ? __fsnotify_parent+0x32f/0x430
[ 1503.140810][ T9882]  ? get_pid_task+0x8b/0xc0
[ 1503.145316][ T9882]  ? vfs_write+0x50c/0x770
[ 1503.149729][ T9882]  ? __fget_light+0x21b/0x260
[ 1503.154399][ T9882]  ? __cond_resched+0x11/0x40
[ 1503.159116][ T9882]  ? fput+0x2d/0x130
[ 1503.163082][ T9882]  __x64_sys_process_vm_writev+0x76/0x90
[ 1503.168716][ T9882]  do_syscall_64+0x3d/0x90
[ 1503.173129][ T9882]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1503.179091][ T9882] RIP: 0033:0x4665e9
[ 1503.182976][ T9882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1503.202605][ T9882] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1503.211014][ T9882] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1503.219002][ T9882] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a1b
[ 1503.227004][ T9882] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1503.235039][ T9882] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1503.243055][ T9882] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:27 executing program 3 (fault-call:3 fault-nth:76):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:27 executing program 1:
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$nl_netfilter(r0, &(0x7f0000000680)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000640)={&(0x7f0000000300)={0x210, 0xe, 0xd, 0x201, 0x70bd2a, 0x25dfdbfc, {0xa, 0x0, 0x8}, [@generic="e28658", @typed={0x8, 0x78, 0x0, 0x0, @ipv4=@private=0xa010102}, @generic="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", @generic="9bdea5d4687a8adfbae87616b2d2daa0495a1383f0f69c75c042cd933a5c85cc4aad3db10830caf2e3bc16aabff60b892569f40103aaa5c3edb0f4bccbc8080f70eac7e939e3f024fae9a5b96f2903d645034e227493a591787068e7e36692414b00566590509e70711cb9cbd39bd92abc4822c3db25e28e5376ba7194a2cff6c483b9f6c895001a64e266698fcd77701c3f7e980c2b53f071aa1887888b64310caac1beb9496ea920c8ca0af04328200b42cfc461e75f2727260b0fe936058de50ac24cb51d31682a45d7c6a5d02f8b865a058b9c440cacb747a46e338d18a86924fa40ab1da19c4475dd38448710c54d01853574"]}, 0x210}, 0x1, 0x0, 0x0, 0x50}, 0x4000000)
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
sendmsg$nl_netfilter(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="440000000f01010327bd7000fbdbdf250c000007640270adce7eb73bc181a5d80c007a00050000000000000010003d990c008e00000000000000000008001e00e0000001"], 0x44}, 0x1, 0x0, 0x0, 0x8000}, 0x44)
pipe(&(0x7f00000001c0)={<r1=>0xffffffffffffffff})
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r1, 0xc0a85352, &(0x7f0000000200)={{0xe3, 0x5}, 'port1\x00', 0x42e0a48ebfa8a756, 0x100402, 0x3, 0x10001, 0x3c64, 0x5, 0x3, 0x0, 0x4, 0x3f})
pipe(&(0x7f0000005500)={<r2=>0xffffffffffffffff})
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_TIMEOUT={0xb, 0x4, 0x0, 0x0, 0xa, &(0x7f0000000140)}, 0x2266)
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r2, 0x10000000)

14:59:27 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x12, r0, 0x10004000)

14:59:27 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:27 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040))

14:59:27 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3c2, 0x0)

14:59:27 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x706c3215f7067e58, r0, 0x10000000)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000100), r1)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000180)={'batadv0\x00', <r3=>0x0})
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x2c, r2, 0x400, 0x70bd26, 0x25dfdbfc, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x3}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x4}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x5)
accept(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @remote}}}, &(0x7f0000000080)=0x80)

14:59:27 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x60, 0x12, r0, 0x10004000)

14:59:27 executing program 2 (fault-call:2 fault-nth:0):
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

14:59:27 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, &(0x7f0000000200))

14:59:28 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
sendmsg$IPSET_CMD_SAVE(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x6c, 0x8, 0x6, 0x5, 0x0, 0x0, {0xa, 0x0, 0x7}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x6c}, 0x1, 0x0, 0x0, 0x84}, 0x10000081)

[ 1503.444416][ T9934] FAULT_INJECTION: forcing a failure.
[ 1503.444416][ T9934] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1503.457567][ T9934] CPU: 0 PID: 9934 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1503.466275][ T9934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1503.476364][ T9934] Call Trace:
[ 1503.479731][ T9934]  dump_stack_lvl+0xb7/0x103
[ 1503.484366][ T9934]  dump_stack+0x11/0x1a
[ 1503.488520][ T9934]  should_fail+0x23c/0x250
14:59:28 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, &(0x7f0000000200))

[ 1503.492939][ T9934]  should_fail_usercopy+0x16/0x20
[ 1503.497966][ T9934]  copy_page_from_iter+0x1fe/0x530
[ 1503.503105][ T9934]  process_vm_rw_single_vec+0x294/0x460
[ 1503.508682][ T9934]  process_vm_rw+0x347/0x4e0
[ 1503.513310][ T9934]  ? fsnotify_perm+0x59/0x2e0
[ 1503.518086][ T9934]  ? __fsnotify_parent+0x32f/0x430
[ 1503.523195][ T9934]  ? get_pid_task+0x8b/0xc0
[ 1503.527705][ T9934]  ? vfs_write+0x50c/0x770
[ 1503.532113][ T9934]  ? __fget_light+0x21b/0x260
[ 1503.536777][ T9934]  ? __cond_resched+0x11/0x40
[ 1503.541540][ T9934]  ? fput+0x2d/0x130
[ 1503.545459][ T9934]  __x64_sys_process_vm_writev+0x76/0x90
[ 1503.549972][ T9932] FAULT_INJECTION: forcing a failure.
[ 1503.549972][ T9932] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1503.551088][ T9934]  do_syscall_64+0x3d/0x90
[ 1503.568504][ T9934]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1503.574414][ T9934] RIP: 0033:0x4665e9
[ 1503.578294][ T9934] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1503.597900][ T9934] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1503.606296][ T9934] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1503.614251][ T9934] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a1e
[ 1503.622208][ T9934] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1503.630205][ T9934] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1503.638180][ T9934] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
[ 1503.646139][ T9932] CPU: 1 PID: 9932 Comm: syz-executor.2 Not tainted 5.14.0-rc5-syzkaller #0
[ 1503.654814][ T9932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1503.664914][ T9932] Call Trace:
[ 1503.668189][ T9932]  dump_stack_lvl+0xb7/0x103
[ 1503.672778][ T9932]  dump_stack+0x11/0x1a
[ 1503.676932][ T9932]  should_fail+0x23c/0x250
[ 1503.681402][ T9932]  should_fail_usercopy+0x16/0x20
[ 1503.686428][ T9932]  _copy_from_user+0x1c/0xd0
[ 1503.691011][ T9932]  __x64_sys_epoll_ctl+0x7b/0xe0
[ 1503.695949][ T9932]  do_syscall_64+0x3d/0x90
[ 1503.700479][ T9932]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1503.706456][ T9932] RIP: 0033:0x4665e9
[ 1503.710339][ T9932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1503.729947][ T9932] RSP: 002b:00007f0c19e5d188 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
14:59:28 executing program 3 (fault-call:3 fault-nth:77):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:28 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
pipe(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SG_SET_RESERVED_SIZE(r1, 0x2275, &(0x7f0000000040)=0x80000000)
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x40, 0x0)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r3, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, 0x0, 0x10, 0x70bd26, 0x25dfdbfe, {}, [@BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x400000c1}, 0x40000)
ioctl$SG_GET_TIMEOUT(r2, 0x2202, 0x0)
ioctl$PTP_PIN_GETFUNC(0xffffffffffffffff, 0xc0603d06, &(0x7f00000001c0)={'\x00', 0x7ff, 0x2, 0x1ff})

14:59:28 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x6000, 0x12, r0, 0x10004000)

14:59:28 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, &(0x7f0000000200))

14:59:28 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3c3, 0x0)

14:59:28 executing program 1:
pipe(&(0x7f0000005500))

[ 1503.738355][ T9932] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9
[ 1503.746322][ T9932] RDX: 0000000000000005 RSI: 0000000000000300 RDI: 0000000000000003
[ 1503.754308][ T9932] RBP: 00007f0c19e5d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1503.762275][ T9932] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000001
[ 1503.770336][ T9932] R13: 00007ffc5d9e873f R14: 00007f0c19e5d300 R15: 0000000000022000
14:59:28 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), 0x0)

14:59:28 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x1, 0x80010, r1, 0x10000000)

[ 1503.892338][ T9969] FAULT_INJECTION: forcing a failure.
[ 1503.892338][ T9969] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1503.905418][ T9969] CPU: 1 PID: 9969 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1503.914110][ T9969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1503.924162][ T9969] Call Trace:
[ 1503.927445][ T9969]  dump_stack_lvl+0xb7/0x103
[ 1503.932068][ T9969]  dump_stack+0x11/0x1a
[ 1503.936218][ T9969]  should_fail+0x23c/0x250
[ 1503.940632][ T9969]  should_fail_usercopy+0x16/0x20
[ 1503.945709][ T9969]  copy_page_from_iter+0x1fe/0x530
[ 1503.950823][ T9969]  process_vm_rw_single_vec+0x294/0x460
[ 1503.956363][ T9969]  process_vm_rw+0x347/0x4e0
[ 1503.961030][ T9969]  ? fsnotify_perm+0x59/0x2e0
[ 1503.965704][ T9969]  ? __fsnotify_parent+0x32f/0x430
[ 1503.970849][ T9969]  ? get_pid_task+0x8b/0xc0
[ 1503.975346][ T9969]  ? vfs_write+0x50c/0x770
[ 1503.979754][ T9969]  ? __fget_light+0x21b/0x260
[ 1503.984431][ T9969]  ? __cond_resched+0x11/0x40
[ 1503.989114][ T9969]  ? fput+0x2d/0x130
[ 1503.993013][ T9969]  __x64_sys_process_vm_writev+0x76/0x90
[ 1503.998644][ T9969]  do_syscall_64+0x3d/0x90
[ 1504.003122][ T9969]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1504.009039][ T9969] RIP: 0033:0x4665e9
[ 1504.012926][ T9969] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1504.032533][ T9969] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:28 executing program 2 (fault-call:2 fault-nth:1):
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

14:59:28 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x40b21e, 0x12, r0, 0x10004000)

14:59:28 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), 0x0)

14:59:28 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
sendmsg$OSF_MSG_REMOVE(r0, &(0x7f00000007c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000780)={&(0x7f0000000040)={0x710, 0x1, 0x5, 0x101, 0x0, 0x0, {0xc, 0x0, 0x2}, [{{0x254, 0x1, {{0x2, 0x7fffffff}, 0x7, 0x5, 0xfff7, 0x26, 0x19, 'syz0\x00', "f2b5b7ed5c29360ad53051463c1a2910b6385856a8b9e0d37ca9aec0136e626e", "a590baa284e74b0cb45fe72b78c962d1f74e4ccd370b8b5271b56d53cfe8c9c1", [{0x7, 0x2, {0x0, 0x6}}, {0xf62, 0x8, {0x2, 0x8}}, {0x3f, 0x9, {0x2, 0xd36}}, {0x7fff, 0x7, {0x1, 0x8000}}, {0x4, 0xd71d, {0x3, 0x1}}, {0x8ce4, 0x0, {0x2, 0xd6e}}, {0x100, 0x5, {0x3, 0x6}}, {0xd6a, 0x0, {0x1, 0x2}}, {0x1a9c, 0x3ff, {0x3, 0x3}}, {0x2, 0x1}, {0x2, 0x7, {0x2, 0x10001}}, {0x0, 0x8000, {0x2, 0xff}}, {0x3, 0x20, {0x0, 0x6}}, {0x6, 0xd6a5, {0x2, 0x8}}, {0x4f, 0x3f, {0x14e44e593377a76a, 0x8}}, {0xffff, 0x3f, {0x1, 0x4}}, {0x9, 0x40, {0x3}}, {0x56, 0x9, {0x1, 0x3}}, {0x1, 0x2, {0x0, 0x2}}, {0xce, 0x8000, {0x1, 0x81}}, {0x80, 0xb7d, {0x2, 0x6}}, {0x9, 0x7, {0x2, 0x8}}, {0x200, 0x8, {0x1, 0x4}}, {0x40, 0x80, {0x1, 0x1000}}, {0xbd7d, 0xfeff, {0x2, 0x8}}, {0x7ff, 0xe1, {0x2, 0x3}}, {0x1, 0x4, {0x3, 0x41}}, {0x0, 0x4, {0x0, 0x8}}, {0x7, 0xc95, {0x2, 0x7fff}}, {0x8000, 0x3, {0x2, 0xcd}}, {0xf9fb, 0x9, {0x2, 0xe326}}, {0x769, 0x1, {0x3, 0x4}}, {0x401, 0xfffd, {0x0, 0x1ff}}, {0x6, 0x1, {0x2, 0x9}}, {0x7, 0x3, {0x0, 0x48}}, {0xfff, 0x800, {0x1, 0x66}}, {0xffdc, 0xa91, {0x0, 0x7ff}}, {0x3ff, 0x1, {0x1, 0x10001}}, {0x6416, 0x4, {0x3, 0x7}}, {0x3, 0x80, {0x3, 0x16}}]}}}, {{0x254, 0x1, {{0x3, 0x200}, 0xf2, 0x8, 0x3ff, 0x7, 0xe, 'syz1\x00', "16d74029ab52f04b75aee1b7157affe9df8ff34e82c6eb8a58f34c275c487e95", "82cc1f2657c56d19009ab1ea8c32e683ea2ce625acb6b623d4273d3505c0c55e", [{0x0, 0x0, {0x2, 0x4}}, {0x7ff, 0x300, {0x0, 0xffffffff}}, {0x7ff, 0x1000, {0x0, 0x9}}, {0x1ff, 0x1c, {0x0, 0x400}}, {0x2, 0x490d, {0x2, 0x9}}, {0x6c, 0x4, {0x0, 0x7fff}}, {0x2, 0x400, {0x0, 0x1}}, {0xff00, 0x5, {0x1, 0x81}}, {0x7, 0x3516, {0x1, 0x4}}, {0x7ff, 0x9, {0x2, 0x7}}, {0x6, 0x2, {0x0, 0x81}}, {0x9bc, 0x8, {0x2, 0x5}}, {0x8, 0xfff7, {0x2, 0x1}}, {0x1, 0x147, {0x2, 0x7}}, {0x76, 0x3, {0x0, 0x5}}, {0x400, 0x1f, {0x1, 0x3}}, {0x8, 0x2, {0x0, 0x3}}, {0x100, 0x7cc3, {0x2, 0x3}}, {0x7, 0x1000, {0x3, 0x58b257}}, {0xfffd, 0x0, {0x2, 0x1000}}, {0x7fff, 0x9, {0x2, 0x1000000}}, {0x3, 0xa6, {0x0, 0xd4}}, {0x9, 0x20, {0xbe58a047d066d842, 0xfffffffd}}, {0x8, 0xfff, {0x1, 0x37}}, {0x6, 0x7, {0x3, 0x5}}, {0x200, 0x0, {0x0, 0x1000}}, {0x8, 0xbfbf, {0x0, 0x10001}}, {0x0, 0x6aa, {0x1, 0x7}}, {0x8, 0x6, {0x1, 0x8001}}, {0x3, 0x0, {0x1, 0xa0000}}, {0x65e, 0x8000, {0x1, 0x2}}, {0x4, 0xf3, {0x2, 0x401}}, {0x8, 0xd9, {0x0, 0x6}}, {0x5, 0x7fff, {0x3, 0x3}}, {0xf800, 0x40, {0x2, 0x7fff}}, {0xf9c, 0x6, {0x0, 0x838}}, {0x94ef, 0x3, {0x2, 0x7}}, {0xa90, 0x40, {0x0, 0x8}}, {0x200, 0x4, {0x3}}, {0x7, 0x0, {0x2, 0x4}}]}}}, {{0x254, 0x1, {{0x2, 0x9}, 0x13, 0xb6, 0xc2, 0xfffa, 0x19, 'syz0\x00', "a0d9cd813e9d192c6c1f5c7860585bcd2e1dec820cab1317936c1fb06dc84cdd", "4fe7f9d6ea970716b7dca1b1dc87f70b936d302ef9931b1b5b057ffa1e666203", [{0x200, 0x8, {0x0, 0x8001}}, {0x6, 0xacb, {0x2, 0x9}}, {0x6, 0x4, {0x3, 0x40}}, {0x8, 0x7, {0x3, 0x48}}, {0x2, 0x4, {0x2}}, {0x400, 0x3, {0x1, 0x630b0f55}}, {0x52d4, 0x40, {0x1, 0x2}}, {0xdb66, 0x9, {0x0, 0xff}}, {0x9d9, 0x1a7, {0x2, 0xd2}}, {0x0, 0x4c5, {0x3, 0x80000001}}, {0x1ff, 0x437, {0x0, 0x83b}}, {0x3ff, 0x1000, {0x3, 0x100}}, {0x10, 0x7fff, {0x3}}, {0x8000, 0x1, {0x2, 0xe7}}, {0x400, 0x6, {0x0, 0x100}}, {0x100, 0x4, {0x3, 0x200}}, {0x800, 0x3ff, {0x3, 0x6}}, {0x0, 0x40, {0x0, 0x6}}, {0x1ff, 0x8000}, {0x9, 0x4, {0x1, 0xa296}}, {0x2, 0x400, {0x3, 0x101}}, {0x5, 0x4, {0x0, 0x5}}, {0x70, 0x401, {0x0, 0x5}}, {0x6, 0x7ff, {0x3, 0x401}}, {0xffff, 0x8000, {0x2, 0x8000}}, {0x7fff, 0x1ff, {0x2, 0x40}}, {0x371, 0x4, {0x1, 0x2761}}, {0x3, 0x8001, {0x1, 0x5}}, {0x7, 0x81, {0x3, 0x7}}, {0x3ab3, 0xfc01, {0x0, 0x9}}, {0x2, 0x6, {0x3, 0x7ff}}, {0xf801, 0x1, {0x1, 0xffffffff}}, {0x5, 0x5, {0x3, 0x8001}}, {0x4, 0xe7, {0x0, 0xffff}}, {0xb76, 0x0, {0x0, 0x1}}, {0x7, 0x5, {0x2, 0x101}}, {0x0, 0x94, {0x0, 0x7}}, {0x1, 0x7, {0x3}}, {0x3, 0x8001, {0x1, 0x200}}, {0x4, 0x1f, {0x3, 0x7}}]}}}]}, 0x710}, 0x1, 0x0, 0x0, 0x8000}, 0x40080)

[ 1504.040975][ T9969] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1504.048939][ T9969] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a21
[ 1504.056943][ T9969] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1504.064910][ T9969] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1504.072922][ T9969] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
[ 1504.099635][ T9994] FAULT_INJECTION: forcing a failure.
[ 1504.099635][ T9994] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1504.112711][ T9994] CPU: 1 PID: 9994 Comm: syz-executor.2 Not tainted 5.14.0-rc5-syzkaller #0
[ 1504.121394][ T9994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1504.131468][ T9994] Call Trace:
[ 1504.134741][ T9994]  dump_stack_lvl+0xb7/0x103
[ 1504.139389][ T9994]  dump_stack+0x11/0x1a
[ 1504.143540][ T9994]  should_fail+0x23c/0x250
[ 1504.148027][ T9994]  should_fail_usercopy+0x16/0x20
[ 1504.153090][ T9994]  _copy_to_user+0x1c/0x90
[ 1504.157497][ T9994]  simple_read_from_buffer+0xab/0x120
[ 1504.162878][ T9994]  proc_fail_nth_read+0xf6/0x140
[ 1504.167830][ T9994]  ? rw_verify_area+0x136/0x250
[ 1504.172680][ T9994]  ? proc_fault_inject_write+0x200/0x200
[ 1504.178314][ T9994]  vfs_read+0x154/0x5d0
[ 1504.182553][ T9994]  ? __fget_light+0x21b/0x260
[ 1504.187221][ T9994]  ? __cond_resched+0x11/0x40
[ 1504.191910][ T9994]  ksys_read+0xce/0x180
[ 1504.196123][ T9994]  __x64_sys_read+0x3e/0x50
[ 1504.200645][ T9994]  do_syscall_64+0x3d/0x90
[ 1504.205055][ T9994]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1504.210951][ T9994] RIP: 0033:0x41936c
[ 1504.214841][ T9994] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 1504.234521][ T9994] RSP: 002b:00007f0c19e5d170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
14:59:28 executing program 3 (fault-call:3 fault-nth:78):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:28 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
prctl$PR_GET_SECUREBITS(0x1b)
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)

14:59:28 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3c4, 0x0)

14:59:28 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), 0x0)

14:59:28 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x600000, 0x12, r0, 0x10004000)

14:59:28 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x80ffff, 0x12, r0, 0x10004000)

[ 1504.243005][ T9994] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 000000000041936c
[ 1504.250970][ T9994] RDX: 000000000000000f RSI: 00007f0c19e5d1e0 RDI: 0000000000000006
[ 1504.257948][T10009] FAULT_INJECTION: forcing a failure.
[ 1504.257948][T10009] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1504.258931][ T9994] RBP: 00007f0c19e5d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1504.258946][ T9994] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000001
[ 1504.258957][ T9994] R13: 00007ffc5d9e873f R14: 00007f0c19e5d300 R15: 0000000000022000
[ 1504.295782][T10009] CPU: 0 PID: 10009 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1504.304543][T10009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1504.314599][T10009] Call Trace:
[ 1504.317881][T10009]  dump_stack_lvl+0xb7/0x103
[ 1504.322476][T10009]  dump_stack+0x11/0x1a
[ 1504.326744][T10009]  should_fail+0x23c/0x250
[ 1504.331168][T10009]  should_fail_usercopy+0x16/0x20
[ 1504.336272][T10009]  copy_page_from_iter+0x1fe/0x530
[ 1504.341386][T10009]  process_vm_rw_single_vec+0x294/0x460
[ 1504.346939][T10009]  process_vm_rw+0x347/0x4e0
[ 1504.351552][T10009]  ? fsnotify_perm+0x59/0x2e0
[ 1504.356230][T10009]  ? __fsnotify_parent+0x32f/0x430
[ 1504.361392][T10009]  ? get_pid_task+0x8b/0xc0
[ 1504.365897][T10009]  ? vfs_write+0x50c/0x770
[ 1504.370358][T10009]  ? __fget_light+0x21b/0x260
[ 1504.375027][T10009]  ? __cond_resched+0x11/0x40
[ 1504.379709][T10009]  ? fput+0x2d/0x130
[ 1504.383610][T10009]  __x64_sys_process_vm_writev+0x76/0x90
[ 1504.389246][T10009]  do_syscall_64+0x3d/0x90
[ 1504.393652][T10009]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1504.399533][T10009] RIP: 0033:0x4665e9
[ 1504.403425][T10009] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1504.423024][T10009] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1504.431488][T10009] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1504.439449][T10009] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a24
14:59:29 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

14:59:29 executing program 5 (fault-call:2 fault-nth:0):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:29 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xc0ffff, 0x12, r0, 0x10004000)

[ 1504.447407][T10009] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1504.455436][T10009] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1504.463398][T10009] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:29 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x12, r0, 0x10004000)

[ 1504.518804][T10019] FAULT_INJECTION: forcing a failure.
[ 1504.518804][T10019] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1504.531875][T10019] CPU: 0 PID: 10019 Comm: syz-executor.5 Not tainted 5.14.0-rc5-syzkaller #0
[ 1504.540724][T10019] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1504.550776][T10019] Call Trace:
[ 1504.554051][T10019]  dump_stack_lvl+0xb7/0x103
[ 1504.558695][T10019]  dump_stack+0x11/0x1a
[ 1504.562929][T10019]  should_fail+0x23c/0x250
14:59:29 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
socket$inet6_tcp(0xa, 0x1, 0x0)

[ 1504.567353][T10019]  should_fail_usercopy+0x16/0x20
[ 1504.572528][T10019]  _copy_from_user+0x1c/0xd0
[ 1504.577223][T10019]  __x64_sys_io_uring_setup+0x4b/0x120
[ 1504.582685][T10019]  ? fput+0x2d/0x130
[ 1504.586582][T10019]  ? ksys_write+0x157/0x180
[ 1504.591164][T10019]  ? fpregs_assert_state_consistent+0x7d/0x90
[ 1504.597225][T10019]  ? exit_to_user_mode_prepare+0x65/0x190
[ 1504.603001][T10019]  do_syscall_64+0x3d/0x90
[ 1504.607422][T10019]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1504.613348][T10019] RIP: 0033:0x4665e9
14:59:29 executing program 3 (fault-call:3 fault-nth:79):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:29 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x2, r1, &(0x7f0000000040)={0x90002008})

[ 1504.617234][T10019] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1504.636891][T10019] RSP: 002b:00007f9f987a9108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1504.645306][T10019] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9
[ 1504.653345][T10019] RDX: 0000000020ffd000 RSI: 0000000020000140 RDI: 0000000000004b26
[ 1504.661313][T10019] RBP: 0000000020000140 R08: 0000000020000200 R09: 0000000020000200
14:59:29 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x12, r0, 0x10004000)

[ 1504.669284][T10019] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000200
[ 1504.677247][T10019] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020fff000
14:59:29 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3c5, 0x0)

14:59:29 executing program 2:
r0 = epoll_create(0x8)
ioperm(0x0, 0x3, 0x5)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
syz_io_uring_setup(0x0, 0xfffffffffffffffc, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000040))
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

14:59:29 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
pipe(&(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r2, 0x89f3, &(0x7f0000000180)={'gretap0\x00', &(0x7f0000000100)={'tunl0\x00', 0x0, 0x40, 0x7, 0x4, 0x3, {{0xd, 0x4, 0x3, 0x29, 0x34, 0x64, 0x0, 0x4, 0x4, 0x0, @loopback, @dev={0xac, 0x14, 0x14, 0x33}, {[@lsrr={0x83, 0x1f, 0x38, [@local, @broadcast, @rand_addr=0x64010100, @multicast1, @loopback, @dev={0xac, 0x14, 0x14, 0x2c}, @broadcast]}, @end]}}}}})
ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(0xffffffffffffffff, 0xc0a85322, &(0x7f0000000000))
accept(r1, &(0x7f00000001c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r3=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, &(0x7f0000000240)=0x80)
setsockopt$inet6_tcp_buf(r3, 0x6, 0xd, &(0x7f0000000280)="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", 0x1000)

14:59:29 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4000000, 0x12, r0, 0x10004000)

14:59:29 executing program 2:
r0 = epoll_create(0x8)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000200)='cubic\x00', 0x6)
pipe(&(0x7f0000005500)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$MON_IOCG_STATS(r3, 0x80089203, &(0x7f0000000000))
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r3, &(0x7f0000000040)={0x90002008})
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r2)

[ 1504.817064][T10056] FAULT_INJECTION: forcing a failure.
[ 1504.817064][T10056] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1504.830147][T10056] CPU: 0 PID: 10056 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1504.838913][T10056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1504.848985][T10056] Call Trace:
[ 1504.852272][T10056]  dump_stack_lvl+0xb7/0x103
[ 1504.856969][T10056]  dump_stack+0x11/0x1a
[ 1504.861125][T10056]  should_fail+0x23c/0x250
[ 1504.865721][T10056]  should_fail_usercopy+0x16/0x20
[ 1504.870754][T10056]  copy_page_from_iter+0x1fe/0x530
[ 1504.875902][T10056]  process_vm_rw_single_vec+0x294/0x460
[ 1504.881447][T10056]  process_vm_rw+0x347/0x4e0
[ 1504.886032][T10056]  ? fsnotify_perm+0x59/0x2e0
[ 1504.890703][T10056]  ? __fsnotify_parent+0x32f/0x430
[ 1504.895817][T10056]  ? get_pid_task+0x8b/0xc0
[ 1504.900311][T10056]  ? vfs_write+0x50c/0x770
[ 1504.904720][T10056]  ? __fget_light+0x21b/0x260
[ 1504.909393][T10056]  ? __cond_resched+0x11/0x40
14:59:29 executing program 5 (fault-call:2 fault-nth:1):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:29 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1eb24000, 0x12, r0, 0x10004000)

14:59:29 executing program 1:
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000100)={'ip_vti0\x00', &(0x7f0000000000)=ANY=[@ANYBLOB="677265746170300000000000047ec2ce", @ANYRES32=0x0, @ANYBLOB="0001780000000007000000014b2300ac0066000089049078e0000001ac1414aa830ff164010102ac1414aaac1e010107075eac1414bb4414429000000008000000070000040100000003831fb70a010101ac1e00017f000001ac1414aa64010100ac141420e000000200441c7ec3ac1e010100000009e000000200000005e0000002fffffff9830f3bac1e0001e00000017f00000101071ff3ac1414aaffffffffe00000027f000001ffffffffe0000001ac1e0101000000"]})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
ioctl$PTP_SYS_OFFSET_EXTENDED(r1, 0xc4c03d09, &(0x7f0000000140)={0x6})
pipe(&(0x7f0000005500)={<r2=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r2, 0x10000000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
syz_io_uring_setup(0x56f2, &(0x7f0000000600)={0x0, 0x13d9, 0x1, 0x3, 0x19a, 0x0, r3}, &(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000680), &(0x7f00000006c0))

[ 1504.914212][T10056]  ? fput+0x2d/0x130
[ 1504.918112][T10056]  __x64_sys_process_vm_writev+0x76/0x90
[ 1504.923747][T10056]  do_syscall_64+0x3d/0x90
[ 1504.928165][T10056]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1504.934134][T10056] RIP: 0033:0x4665e9
[ 1504.938042][T10056] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1504.957641][T10056] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:29 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3c6, 0x0)

[ 1504.966148][T10056] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1504.974120][T10056] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a27
[ 1504.982086][T10056] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1504.990056][T10056] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1504.998089][T10056] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
[ 1505.034392][T10083] FAULT_INJECTION: forcing a failure.
[ 1505.034392][T10083] name failslab, interval 1, probability 0, space 0, times 0
[ 1505.047028][T10083] CPU: 0 PID: 10083 Comm: syz-executor.5 Not tainted 5.14.0-rc5-syzkaller #0
[ 1505.055802][T10083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1505.065952][T10083] Call Trace:
[ 1505.069239][T10083]  dump_stack_lvl+0xb7/0x103
[ 1505.073828][T10083]  dump_stack+0x11/0x1a
[ 1505.078051][T10083]  should_fail+0x23c/0x250
[ 1505.082465][T10083]  __should_failslab+0x81/0x90
[ 1505.087241][T10083]  ? io_uring_create+0x121/0x1940
[ 1505.092260][T10083]  should_failslab+0x5/0x20
[ 1505.096831][T10083]  kmem_cache_alloc_trace+0x49/0x310
[ 1505.102126][T10083]  io_uring_create+0x121/0x1940
[ 1505.106987][T10083]  ? vfs_write+0x50c/0x770
[ 1505.111409][T10083]  ? should_fail+0xd6/0x250
[ 1505.115947][T10083]  __x64_sys_io_uring_setup+0xe1/0x120
[ 1505.121401][T10083]  do_syscall_64+0x3d/0x90
[ 1505.125818][T10083]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1505.131722][T10083] RIP: 0033:0x4665e9
[ 1505.135604][T10083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1505.155207][T10083] RSP: 002b:00007f9f987a9108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1505.163618][T10083] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9
[ 1505.171590][T10083] RDX: 0000000020ffd000 RSI: 0000000020000140 RDI: 0000000000004b26
14:59:29 executing program 3 (fault-call:3 fault-nth:80):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:29 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xffff8000, 0x12, r0, 0x10004000)

14:59:29 executing program 2:
r0 = epoll_create(0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

14:59:29 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3c7, 0x0)

14:59:29 executing program 1:
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000000)={0x80002010})
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(0xffffffffffffffff, 0x4040534e, &(0x7f0000000040)={0x3, @time={0x9, 0xff}, 0x8, {0x6, 0x1}, 0x6, 0x1, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)

14:59:29 executing program 5 (fault-call:2 fault-nth:2):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

[ 1505.179586][T10083] RBP: 0000000020000140 R08: 0000000020000200 R09: 0000000020000200
[ 1505.187546][T10083] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000200
[ 1505.195588][T10083] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020fff000
14:59:29 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$BATADV_CMD_GET_HARDIF(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x50, 0x0, 0x2, 0x70bd2d, 0x25dfdbfb, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x3}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x1}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @remote}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0xff}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x101}]}, 0x50}, 0x1, 0x0, 0x0, 0x8000}, 0x2000a003)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r2, &(0x7f0000000040)={0x90002008})

14:59:29 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xffffc000, 0x12, r0, 0x10004000)

14:59:29 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x40b21e00000000, 0x12, r0, 0x10004000)

14:59:29 executing program 2:
epoll_create(0x6)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
epoll_create1(0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x300, r0, &(0x7f0000000040)={0x90002008})

[ 1505.292163][T10107] FAULT_INJECTION: forcing a failure.
[ 1505.292163][T10107] name failslab, interval 1, probability 0, space 0, times 0
[ 1505.304830][T10107] CPU: 0 PID: 10107 Comm: syz-executor.5 Not tainted 5.14.0-rc5-syzkaller #0
[ 1505.313600][T10107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1505.324002][T10107] Call Trace:
[ 1505.327280][T10107]  dump_stack_lvl+0xb7/0x103
[ 1505.331873][T10107]  dump_stack+0x11/0x1a
[ 1505.336027][T10107]  should_fail+0x23c/0x250
14:59:29 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x60000000000000, 0x12, r0, 0x10004000)

14:59:29 executing program 1:
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff})
ioctl$PTP_CLOCK_GETCAPS(0xffffffffffffffff, 0x80503d01, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)

[ 1505.340451][T10107]  ? io_uring_create+0x18e/0x1940
[ 1505.345474][T10107]  __should_failslab+0x81/0x90
[ 1505.350248][T10107]  should_failslab+0x5/0x20
[ 1505.354746][T10107]  __kmalloc+0x66/0x340
[ 1505.358905][T10107]  ? kmem_cache_alloc_trace+0x20f/0x310
[ 1505.364450][T10107]  ? io_uring_create+0x121/0x1940
[ 1505.369472][T10107]  io_uring_create+0x18e/0x1940
[ 1505.374321][T10107]  ? vfs_write+0x50c/0x770
[ 1505.378820][T10107]  __x64_sys_io_uring_setup+0xe1/0x120
[ 1505.384304][T10107]  do_syscall_64+0x3d/0x90
[ 1505.388724][T10107]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1505.394622][T10107] RIP: 0033:0x4665e9
[ 1505.398554][T10107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1505.418222][T10107] RSP: 002b:00007f9f987a9108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1505.426639][T10107] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9
[ 1505.434601][T10107] RDX: 0000000020ffd000 RSI: 0000000020000140 RDI: 0000000000004b26
[ 1505.442617][T10107] RBP: 0000000020000140 R08: 0000000020000200 R09: 0000000020000200
[ 1505.450581][T10107] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000200
[ 1505.458550][T10107] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020fff000
[ 1505.521518][T10142] FAULT_INJECTION: forcing a failure.
[ 1505.521518][T10142] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1505.534655][T10142] CPU: 1 PID: 10142 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1505.543398][T10142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1505.553453][T10142] Call Trace:
[ 1505.556715][T10142]  dump_stack_lvl+0xb7/0x103
[ 1505.561296][T10142]  dump_stack+0x11/0x1a
[ 1505.565469][T10142]  should_fail+0x23c/0x250
[ 1505.569901][T10142]  should_fail_usercopy+0x16/0x20
[ 1505.574970][T10142]  copy_page_from_iter+0x1fe/0x530
[ 1505.580134][T10142]  process_vm_rw_single_vec+0x294/0x460
[ 1505.585661][T10142]  process_vm_rw+0x347/0x4e0
[ 1505.590238][T10142]  ? fsnotify_perm+0x59/0x2e0
[ 1505.594928][T10142]  ? __fsnotify_parent+0x32f/0x430
[ 1505.600016][T10142]  ? get_pid_task+0x8b/0xc0
[ 1505.604755][T10142]  ? vfs_write+0x50c/0x770
[ 1505.609190][T10142]  ? __fget_light+0x21b/0x260
[ 1505.613842][T10142]  ? __cond_resched+0x11/0x40
[ 1505.618535][T10142]  ? fput+0x2d/0x130
[ 1505.622417][T10142]  __x64_sys_process_vm_writev+0x76/0x90
[ 1505.628042][T10142]  do_syscall_64+0x3d/0x90
[ 1505.632455][T10142]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1505.638378][T10142] RIP: 0033:0x4665e9
[ 1505.642253][T10142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1505.661874][T10142] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:30 executing program 3 (fault-call:3 fault-nth:81):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:30 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1e, &(0x7f0000000040)={0x7}, 0x14)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r1, 0x10000000)

14:59:30 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3c8, 0x0)

14:59:30 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
sendmsg$NFQNL_MSG_VERDICT_BATCH(r2, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x74, 0x3, 0x3, 0x201, 0x0, 0x0, {0x2, 0x0, 0x4}, [@NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x1000}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x101}, @NFQA_VERDICT_HDR={0xc, 0x2, {0x0, 0x4f4}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0x0, 0xfffffff8}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffd, 0x5}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffe, 0x9}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x200}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xdce75a38a1cc0cf4, 0x5}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffc}}]}, 0x74}, 0x1, 0x0, 0x0, 0x10}, 0x4008000)

14:59:30 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x80ffff00000000, 0x12, r0, 0x10004000)

14:59:30 executing program 5 (fault-call:2 fault-nth:3):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

[ 1505.670267][T10142] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1505.678217][T10142] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a2a
[ 1505.686251][T10142] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1505.694476][T10142] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1505.702438][T10142] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:30 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
r3 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000000)={0x5})

[ 1505.777475][T10154] FAULT_INJECTION: forcing a failure.
[ 1505.777475][T10154] name failslab, interval 1, probability 0, space 0, times 0
[ 1505.790130][T10154] CPU: 0 PID: 10154 Comm: syz-executor.5 Not tainted 5.14.0-rc5-syzkaller #0
[ 1505.798887][T10154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1505.808935][T10154] Call Trace:
[ 1505.812331][T10154]  dump_stack_lvl+0xb7/0x103
[ 1505.816924][T10154]  dump_stack+0x11/0x1a
[ 1505.821085][T10154]  should_fail+0x23c/0x250
14:59:30 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000b00)={0x5f, 0x7c0000, 0x9, "e13efbb5074fb360bf4bce922df80507c50bde425f71189a130bde5c57131fb85a7301550ca7664a914c58844375c625edde2405aad8633626f07b14f59021387f049fe7f269e6bfc4d0d15c500ca490a8a25b3bea52abcd0a43b15b65b974"})
sendmsg$nl_netfilter(r1, &(0x7f0000000ac0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000a80)={&(0x7f0000000040)={0xa30, 0x14, 0xa, 0x801, 0x70bd29, 0x25dfdbfe, {0x0, 0x0, 0x5}, [@typed={0xab, 0x8c, 0x0, 0x0, @binary="ea00ae9ec8c2fae5e18a5415121d787949c91d033c5007466ab77ed00ac292420bb90cf3095fbb9f3de115a28bd5c9ac0ed679113efc4d0c08617769aae5bc99987c311ae2093c392335d3a837ccebcd720347303cb8db7a4c7317b0a8ec5076b0c4a1996a1b6ad2cc4974b2d6f9726723e2f6ab297bdefd4f0d9336c8011c232180c8586037cdaa99914135d29614ce19f8d65c178f3f7dd972878a0419a91a142f132f38f773"}, @nested={0x18, 0x0, 0x0, 0x1, [@typed={0x8, 0xd, 0x0, 0x0, @u32=0x3}, @typed={0xc, 0x4f, 0x0, 0x0, @u64=0x405f}]}, @nested={0x108, 0x1c, 0x0, 0x1, [@typed={0x8, 0x3d, 0x0, 0x0, @fd=r2}, @generic="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"]}, @generic="1d42f4088618e33c5261bbc8134e143c2744053fbcf83bdd11fa29b8ef7c9187d5d9467ef2f71db538747f9cb1f905884b26b568fa1e1eb279a92181e52d6be2dfa46af0785563b796a1bb3895e4fe2055e3cd77b25270fd8bd0f5462df84cfc959190b6f27385348d0dbe8cdc62aec3ead46da2fdce2ae2ef3028a7b452ce586d6a887da223239fe855a13d2ac307b9ff4046", @typed={0x8, 0x5a, 0x0, 0x0, @pid=0xffffffffffffffff}, @nested={0x29a, 0x1c, 0x0, 0x1, [@generic="a50ee02386ab1eb10db6685d0f167a34944e9061e9edb0c9fc4f086ba540b24f6cbcba5685384b9fc897e49dc06ed87c3700e4d5b9be7883b1c15216baa9f18a265434fa", @generic="fb8d3f797f8db7b0a7d0ffddc3423e343e6e9327bda6d8064bf92e0735489be7d88057b9a5712bf3bd874a35aa879580d8c8f50ccab58b5bcabcde5a151a7a50720a38294a078d1ca53c85342e964a635945dc4d6124bc807685c829348ddb3305a19090348c72bbd3f989437c493bd8acec55dfbc9ac728eba9b53e8310dc4dc73453c1830c3d9e0f9ced107efedffde4a088ff99caaf18a28208ff4143ac09d64f9097289b5aeaa583f2b639f8fdd9b18f069036a23ed9eaeafa59994b0377498d3997298169d562d28f", @typed={0x4, 0x45}, @generic="c58945121cb35486679fe239adb6431fd66d3ac0c1db925fc7a339b44b7c9274c0673ddd7218a026dc192cc2120df34b8c943a33ae95b48075d8e78889fc7afd5b75e2ad701efd9c29fa4d5379bbcd19c5818912f49d4a819e56606b9301d8fee8c67ad17e78e811a6206ec9e394d012fb0fb98f7336a07dd5eb94f7fbaec948c089e351ca8bb255b8d9c36b8d4e4218ca2d95c169a3de48c899ffd839453bb7274cd2d5a5445b4e229c023227a735a1c615c247d104ba899588c4c504e7", @generic="58a605216d2d04ad8fbc0d738154a4fa43ab9187267b27bcafce72fba409aaf689aaa6d53488829ed36b7ba0eccc1f809185071a15f9d84454aacf748c8dbd6f1d4251fd390afcc880340d5fced3445daedfe74f47775b4067e029c67a8696953479a2f2f81b8c2ed73a12570addfcac608d345315782b7020be3aa336949e6a3ea1f19c0ca4cafba96d3619ebe568ad247232b6dbc33d4e7866090ed0410564644920f7925eb9591a8e615068bb9676", @typed={0xc, 0xe, 0x0, 0x0, @u64=0x3ff}, @generic="f2c3582e7dbb94d4bf"]}, @generic="7988328b5c04d2f273c297de00a2aeed7a0f15093c86204a0ee3ccd138ff15c8e16ffae6a9ed58e18d3dc1b0f1381ffa701c0b47a63ac54af9327e79ff0a9d83538392e98523148437a80e30d800e43b21bcb2ede28fa857b677ed4482a275008692ce4fab8a7c21b923fda96c48c5d9c89d22367654f1", @typed={0x8, 0x2b, 0x0, 0x0, @uid}, @nested={0x497, 0x4c, 0x0, 0x1, [@typed={0x8, 0x6, 0x0, 0x0, @ipv4=@loopback}, @typed={0x8, 0x5a, 0x0, 0x0, @ipv4=@local}, @generic="eec7cb7d97e200d2f34efa36c3c2b0939426a9ca7bb6947f8b99e63ba9abf2f3378fe50a612bdd31b214c052f017739f250afb89f2265d93cfd9dde2dc7bfdb449ea54c3bc0faa2ff259d0f1286eee19294b8dbd733830160645914fbd4c7c5fad679576245b85a9574cad40db5c6089b5a28ac590b35f9cf1b44be6e1b498b2d09441c981a00717b63c765d50bdbfabc89230119ae1333a31c1f9c27b3f02e35c670f06d94ac3498ea1d37ac0d85e6ec14edf00057b87e268e29cf12f159155771b44e2e0f1ecaebca4c9eec5c3be2f8f96dd8227b7bf3b19f57f0e8f3bc5615adf397e9cb148d17875bd60450bc3f9c58596fa9f", @generic="58e677e8ab6a0d1aee9ab3bbab3a2dd29462213810", @typed={0x3b, 0x9, 0x0, 0x0, @binary="aba268db88f333dff3e59260b3c74436c98cea67ba800759d1da87d65c66a193be5a798f47e8854cec411703171620fd97a626e3badf89"}, @generic="ef2c30696a9690648f93ac900bc55732886ee29d4c203077b76b70ef91644359b473d4ecb3661cee4640c1aaaaac35e97eeaceeefe421d067d582010edf42a745b83d14dd9b31a58b72fb35ca3d185f469c85fefcf0680e9c9f73ffa5bd5f04191354e963b01646b58c17b0c5b3c5ef4094101a82c77c569c36714a71e598b3fc98ade448f49e28a9fb6fcde2affb2e9cacdf284861328fe888f4662e4ad62cc6821d55d55af1dcc911d0ba834e74149e8822e2a6d0e5e652d2d0c831b742c820b56c4aaf34d861ee17d1d37d2", @generic="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", @typed={0x4, 0x45}, @generic="b7ba08491ec391eaa1bb0fe27cf8b5c516b5ad27afc3facf84fdc700dcd8539f58b0c1e0650923256dd973bbab1f30ebd89e4ece21ed49280f0d4c7cd22f796f72e69ba18c92ecc08806340cd3176858171fe67a579eeddbe07d7b392f54d4d447184f000091bca09252a521ffb8bd4c470c7324c4ab9604835e06f506fb0fa714b56f1c5a380f34d6733653a2ff6318670e382c8564d70ca9a635e951a54a01887103930dfed8897f8963f4dde4cf80d97657dc35797fdaff3d6b07d965d37e90b11e7b489b5d5e61fbbb0597", @typed={0x9f, 0x7a, 0x0, 0x0, @binary="7c84ce78bb34457165c1a7666393829f21fce7085509f187c617910dd173c3f68f66a1de2a9f2097523c94cb3147db02de7ed6ac8199139aa93e8e5d46c1197ae71ef490dec41de7ec1203d6cd908bed8fa6fbe71e213b2186da2fefc36f51537a5d8e30d7a13c429d49421ca80c2ba52d451e42792f743ba20fde24e7f9e26e10a3f343fd7dd434c659ec14e11627a91bd4bd922f0e0381cf97e1"}]}]}, 0xa30}, 0x1, 0x0, 0x0, 0x4000}, 0x4008000)

[ 1505.825499][T10154]  __should_failslab+0x81/0x90
[ 1505.830261][T10154]  ? io_uring_create+0x1df/0x1940
[ 1505.835323][T10154]  should_failslab+0x5/0x20
[ 1505.839904][T10154]  kmem_cache_alloc_trace+0x49/0x310
[ 1505.845196][T10154]  ? io_uring_create+0x18e/0x1940
[ 1505.850225][T10154]  io_uring_create+0x1df/0x1940
[ 1505.855070][T10154]  ? vfs_write+0x50c/0x770
[ 1505.859493][T10154]  __x64_sys_io_uring_setup+0xe1/0x120
[ 1505.864958][T10154]  do_syscall_64+0x3d/0x90
[ 1505.869442][T10154]  entry_SYSCALL_64_after_hwframe+0x44/0xae
14:59:30 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
kcmp$KCMP_EPOLL_TFD(0x0, 0x0, 0x7, r0, &(0x7f0000000000)={r1, r0, 0x8000})

14:59:30 executing program 1:
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
sendmsg$NFNL_MSG_COMPAT_GET(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x34, 0x0, 0xb, 0x3, 0x0, 0x0, {0x7, 0x0, 0x6}, [@NFTA_COMPAT_NAME={0x8, 0x1, '^#.\x00'}, @NFTA_COMPAT_NAME={0x6, 0x1, '$\x00'}, @NFTA_COMPAT_REV={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_COMPAT_TYPE={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x4000800)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r1, 0x10000000)
ioctl$PTP_SYS_OFFSET_PRECISE(r2, 0xc0403d08, &(0x7f0000000100))

[ 1505.875336][T10154] RIP: 0033:0x4665e9
[ 1505.879228][T10154] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1505.898887][T10154] RSP: 002b:00007f9f987a9108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1505.907295][T10154] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9
[ 1505.915259][T10154] RDX: 0000000020ffd000 RSI: 0000000020000140 RDI: 0000000000004b26
[ 1505.923262][T10154] RBP: 0000000020000140 R08: 0000000020000200 R09: 0000000020000200
[ 1505.931227][T10154] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000200
[ 1505.933573][T10153] FAULT_INJECTION: forcing a failure.
[ 1505.933573][T10153] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1505.939265][T10154] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020fff000
[ 1505.960302][T10153] CPU: 1 PID: 10153 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1505.969062][T10153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1505.979112][T10153] Call Trace:
[ 1505.982392][T10153]  dump_stack_lvl+0xb7/0x103
[ 1505.986978][T10153]  dump_stack+0x11/0x1a
[ 1505.991161][T10153]  should_fail+0x23c/0x250
[ 1505.995577][T10153]  should_fail_usercopy+0x16/0x20
[ 1506.000633][T10153]  copy_page_from_iter+0x1fe/0x530
[ 1506.005806][T10153]  process_vm_rw_single_vec+0x294/0x460
[ 1506.011355][T10153]  process_vm_rw+0x347/0x4e0
[ 1506.015937][T10153]  ? fsnotify_perm+0x59/0x2e0
[ 1506.020611][T10153]  ? __fsnotify_parent+0x32f/0x430
[ 1506.025783][T10153]  ? get_pid_task+0x8b/0xc0
[ 1506.030286][T10153]  ? vfs_write+0x50c/0x770
[ 1506.034711][T10153]  ? __fget_light+0x21b/0x260
[ 1506.039387][T10153]  ? __cond_resched+0x11/0x40
[ 1506.044062][T10153]  ? fput+0x2d/0x130
[ 1506.048082][T10153]  __x64_sys_process_vm_writev+0x76/0x90
[ 1506.053719][T10153]  do_syscall_64+0x3d/0x90
[ 1506.058136][T10153]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1506.064026][T10153] RIP: 0033:0x4665e9
14:59:30 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xc0ffff00000000, 0x12, r0, 0x10004000)

14:59:30 executing program 2:
r0 = epoll_create(0x8)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

[ 1506.067909][T10153] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1506.087516][T10153] RSP: 002b:00007f01019b2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1506.096013][T10153] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9
[ 1506.103981][T10153] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a2d
[ 1506.111947][T10153] RBP: 00007f01019b21d0 R08: 0000000000000001 R09: 0000000000000000
[ 1506.119945][T10153] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
14:59:30 executing program 3 (fault-call:3 fault-nth:82):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:30 executing program 5 (fault-call:2 fault-nth:4):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:30 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3c9, 0x0)

14:59:30 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
ioctl$SG_NEXT_CMD_LEN(r1, 0x2283, &(0x7f0000000040)=0xcd)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
ioctl$SG_GET_LOW_DMA(r2, 0x227a, &(0x7f0000000000))

14:59:30 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000000000000, 0x12, r0, 0x10004000)

14:59:30 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
kcmp$KCMP_EPOLL_TFD(0x0, 0x0, 0x7, r2, &(0x7f0000000000)={r0, r3, 0x1})

[ 1506.127910][T10153] R13: 00007fff37ded8df R14: 00007f01019b2300 R15: 0000000000022000
[ 1506.205147][T10200] FAULT_INJECTION: forcing a failure.
[ 1506.205147][T10200] name failslab, interval 1, probability 0, space 0, times 0
[ 1506.217815][T10200] CPU: 0 PID: 10200 Comm: syz-executor.5 Not tainted 5.14.0-rc5-syzkaller #0
[ 1506.226574][T10200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1506.236700][T10200] Call Trace:
[ 1506.240025][T10200]  dump_stack_lvl+0xb7/0x103
[ 1506.244650][T10200]  dump_stack+0x11/0x1a
[ 1506.248861][T10200]  should_fail+0x23c/0x250
[ 1506.253279][T10200]  ? io_uring_create+0x1940/0x1940
[ 1506.258396][T10200]  __should_failslab+0x81/0x90
[ 1506.263272][T10200]  ? percpu_ref_init+0x96/0x250
[ 1506.268115][T10200]  should_failslab+0x5/0x20
[ 1506.272620][T10200]  kmem_cache_alloc_trace+0x49/0x310
[ 1506.277992][T10200]  ? io_uring_create+0x1940/0x1940
[ 1506.283117][T10200]  percpu_ref_init+0x96/0x250
[ 1506.287786][T10200]  io_uring_create+0x226/0x1940
[ 1506.292646][T10200]  ? vfs_write+0x50c/0x770
[ 1506.297074][T10200]  __x64_sys_io_uring_setup+0xe1/0x120
[ 1506.302532][T10200]  do_syscall_64+0x3d/0x90
[ 1506.306952][T10200]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1506.312523][T10208] FAULT_INJECTION: forcing a failure.
[ 1506.312523][T10208] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1506.312917][T10200] RIP: 0033:0x4665e9
[ 1506.312934][T10200] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1506.349393][T10200] RSP: 002b:00007f9f987a9108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1506.357797][T10200] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9
[ 1506.365792][T10200] RDX: 0000000020ffd000 RSI: 0000000020000140 RDI: 0000000000004b26
[ 1506.373763][T10200] RBP: 0000000020000140 R08: 0000000020000200 R09: 0000000020000200
[ 1506.381722][T10200] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000200
[ 1506.389697][T10200] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020fff000
[ 1506.397658][T10208] CPU: 1 PID: 10208 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1506.406415][T10208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1506.416459][T10208] Call Trace:
[ 1506.419723][T10208]  dump_stack_lvl+0xb7/0x103
[ 1506.424315][T10208]  dump_stack+0x11/0x1a
[ 1506.428452][T10208]  should_fail+0x23c/0x250
[ 1506.432857][T10208]  should_fail_usercopy+0x16/0x20
[ 1506.437869][T10208]  copy_page_from_iter+0x1fe/0x530
[ 1506.443041][T10208]  process_vm_rw_single_vec+0x294/0x460
[ 1506.448572][T10208]  process_vm_rw+0x347/0x4e0
[ 1506.453158][T10208]  ? fsnotify_perm+0x59/0x2e0
[ 1506.457832][T10208]  ? __fsnotify_parent+0x32f/0x430
[ 1506.462958][T10208]  ? get_pid_task+0x8b/0xc0
[ 1506.467450][T10208]  ? vfs_write+0x50c/0x770
[ 1506.471874][T10208]  ? __fget_light+0x21b/0x260
[ 1506.476552][T10208]  ? __cond_resched+0x11/0x40
[ 1506.481220][T10208]  ? fput+0x2d/0x130
[ 1506.485154][T10208]  __x64_sys_process_vm_writev+0x76/0x90
[ 1506.490773][T10208]  do_syscall_64+0x3d/0x90
[ 1506.495176][T10208]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1506.501075][T10208] RIP: 0033:0x4665e9
[ 1506.504966][T10208] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1506.524574][T10208] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1506.532972][T10208] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1506.540931][T10208] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a2f
[ 1506.548892][T10208] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
14:59:31 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x200000000000000, 0x12, r0, 0x10004000)

14:59:31 executing program 2:
r0 = getpid()
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
accept(0xffffffffffffffff, &(0x7f0000000100)=@sco, &(0x7f0000000280)=0x80)
getpid()
pipe(&(0x7f0000005500)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
kcmp$KCMP_EPOLL_TFD(r0, r0, 0x7, r1, &(0x7f00000002c0)={r2, r3})
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r4, 0x5411, &(0x7f0000000300))
r5 = epoll_create(0xffffff4c)
r6 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r6, &(0x7f0000000080)={0x1})
pipe(&(0x7f0000005500)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r5, 0x300, r8, &(0x7f0000000040)={0x90002008})
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r9, 0xc0603d06, 0x0)
ioctl$MON_IOCG_STATS(r7, 0x80089203, &(0x7f00000000c0))
pipe(&(0x7f0000005500))
write$cgroup_netprio_ifpriomap(r9, &(0x7f0000000180)=ANY=[@ANYRES32=r8], 0x6)

[ 1506.556846][T10208] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1506.564801][T10208] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:31 executing program 5 (fault-call:2 fault-nth:5):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:31 executing program 1:
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20800}, 0xc, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x40}, 0x4090)
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000340)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_NOACK_MAP(r0, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x50, 0x0, 0x10, 0x70bd28, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x2, 0x2a}}}}, [@NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x9}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x7}, @NL80211_ATTR_NOACK_MAP={0x6}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x100}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x8}]}, 0x50}, 0x1, 0x0, 0x0, 0x8000}, 0x40)
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(r0, &(0x7f0000000540)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x14, 0x4, 0x1, 0x401, 0x0, 0x0, {0x5, 0x0, 0x9}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x4040040)
syz_io_uring_setup(0x64b1, &(0x7f0000000100)={0x0, 0x65c4, 0x8, 0x2, 0x198, 0x0, r1}, &(0x7f0000fef000/0x4000)=nil, &(0x7f0000ff0000/0x1000)=nil, &(0x7f0000000180), &(0x7f00000001c0))

14:59:31 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x400000000000000, 0x12, r0, 0x10004000)

[ 1506.656137][T10223] FAULT_INJECTION: forcing a failure.
[ 1506.656137][T10223] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1506.669476][T10223] CPU: 0 PID: 10223 Comm: syz-executor.5 Not tainted 5.14.0-rc5-syzkaller #0
[ 1506.678248][T10223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1506.688291][T10223] Call Trace:
[ 1506.691562][T10223]  dump_stack_lvl+0xb7/0x103
[ 1506.696175][T10223]  dump_stack+0x11/0x1a
[ 1506.700330][T10223]  should_fail+0x23c/0x250
14:59:31 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3ca, 0x0)

[ 1506.704745][T10223]  __alloc_pages+0x102/0x320
[ 1506.709334][T10223]  alloc_pages+0x2e8/0x340
[ 1506.713762][T10223]  __get_free_pages+0x8/0x30
[ 1506.718351][T10223]  io_uring_create+0x904/0x1940
[ 1506.723226][T10223]  ? vfs_write+0x50c/0x770
[ 1506.727638][T10223]  __x64_sys_io_uring_setup+0xe1/0x120
[ 1506.733087][T10223]  do_syscall_64+0x3d/0x90
[ 1506.737503][T10223]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1506.743392][T10223] RIP: 0033:0x4665e9
14:59:31 executing program 3 (fault-call:3 fault-nth:83):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:31 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r2, &(0x7f0000000040)={0x90002008})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_WDS_PEER(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="20002cbd7000fedbdf254200000006000000500000000a00060008021100000000000a000600ffffffffffff00000a00060050505050505000000a000600ffffffffffff00000a000600a0d90950d88700000a00060050505050505000000a000600ffffffffffff0000538ab370a1944b966d5d2a262cb98ad220847552d46c4bb79b24319dc380c2cc80455ff34f49030aa35c4ea83c351272835766bd53c2f32809c4b04e135df5f4d75c918eb5fc9c82f466315fe24f6bfa35c5d41edde30faf313dfeb6a7"], 0x74}, 0x1, 0x0, 0x0, 0x24000040}, 0x94)

[ 1506.747297][T10223] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1506.766898][T10223] RSP: 002b:00007f9f987a9108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1506.775308][T10223] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9
[ 1506.783270][T10223] RDX: 0000000020ffd000 RSI: 0000000020000140 RDI: 0000000000004b26
[ 1506.791238][T10223] RBP: 0000000020000140 R08: 0000000020000200 R09: 0000000020000200
14:59:31 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
geteuid()
syz_io_uring_setup(0x72ae, &(0x7f0000000000)={0x0, 0xd3c8, 0x0, 0x1, 0x245, 0x0, r0}, &(0x7f0000ff2000/0x2000)=nil, &(0x7f0000ff2000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000000c0))
r2 = io_uring_setup(0x40d1, &(0x7f0000000100)={0x0, 0x60cc, 0x0, 0x3, 0x28a, 0x0, r1})
mmap$IORING_OFF_SQES(&(0x7f0000fef000/0x4000)=nil, 0x4000, 0x2000002, 0x11, r2, 0x10000000)

14:59:31 executing program 2:
r0 = epoll_create(0x801)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

[ 1506.799201][T10223] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000200
[ 1506.807168][T10223] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020fff000
14:59:31 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x8000000)

14:59:31 executing program 5 (fault-call:2 fault-nth:6):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

[ 1506.915773][T10253] FAULT_INJECTION: forcing a failure.
[ 1506.915773][T10253] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1506.928906][T10253] CPU: 1 PID: 10253 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1506.937662][T10253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1506.947711][T10253] Call Trace:
[ 1506.950978][T10253]  dump_stack_lvl+0xb7/0x103
[ 1506.955642][T10253]  dump_stack+0x11/0x1a
[ 1506.959783][T10253]  should_fail+0x23c/0x250
[ 1506.964188][T10253]  should_fail_usercopy+0x16/0x20
[ 1506.969198][T10253]  copy_page_from_iter+0x1fe/0x530
[ 1506.974400][T10253]  process_vm_rw_single_vec+0x294/0x460
[ 1506.979934][T10253]  process_vm_rw+0x347/0x4e0
[ 1506.984511][T10253]  ? fsnotify_perm+0x59/0x2e0
[ 1506.989170][T10253]  ? __fsnotify_parent+0x32f/0x430
[ 1506.994298][T10253]  ? get_pid_task+0x8b/0xc0
[ 1506.998782][T10253]  ? vfs_write+0x50c/0x770
[ 1507.003221][T10253]  ? __fget_light+0x21b/0x260
[ 1507.007940][T10253]  ? __cond_resched+0x11/0x40
[ 1507.012606][T10253]  ? fput+0x2d/0x130
[ 1507.016497][T10253]  __x64_sys_process_vm_writev+0x76/0x90
[ 1507.022111][T10253]  do_syscall_64+0x3d/0x90
[ 1507.026533][T10253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1507.032412][T10253] RIP: 0033:0x4665e9
[ 1507.036294][T10253] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1507.055914][T10253] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:31 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, &(0x7f0000000040)={'\x00', 0x7, 0x2, 0xd8})

[ 1507.064335][T10253] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1507.072287][T10253] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a32
[ 1507.080239][T10253] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1507.088255][T10253] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1507.096286][T10253] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
[ 1507.111114][T10257] FAULT_INJECTION: forcing a failure.
[ 1507.111114][T10257] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1507.124365][T10257] CPU: 1 PID: 10257 Comm: syz-executor.5 Not tainted 5.14.0-rc5-syzkaller #0
[ 1507.133125][T10257] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1507.143166][T10257] Call Trace:
[ 1507.146565][T10257]  dump_stack_lvl+0xb7/0x103
[ 1507.151149][T10257]  dump_stack+0x11/0x1a
[ 1507.155290][T10257]  should_fail+0x23c/0x250
[ 1507.159699][T10257]  __alloc_pages+0x102/0x320
[ 1507.164402][T10257]  alloc_pages+0x2e8/0x340
[ 1507.168891][T10257]  __get_free_pages+0x8/0x30
[ 1507.173480][T10257]  io_uring_create+0x9f7/0x1940
[ 1507.178333][T10257]  ? vfs_write+0x50c/0x770
[ 1507.182750][T10257]  __x64_sys_io_uring_setup+0xe1/0x120
[ 1507.188301][T10257]  do_syscall_64+0x3d/0x90
[ 1507.192801][T10257]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1507.198730][T10257] RIP: 0033:0x4665e9
14:59:31 executing program 1:
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, 0xffffffffffffffff, 0x10000000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
ioctl$PTP_EXTTS_REQUEST(r0, 0x40103d02, &(0x7f0000000000)={0x6, 0x2})

14:59:31 executing program 2:
r0 = epoll_create(0x10000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_STATX={0x15, 0x0, 0x0, r1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, <r2=>0x0}, &(0x7f0000000000)='./file0\x00', 0x4, 0x100}, 0x7fff)
ioprio_set$uid(0x0, r2, 0x4004)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

14:59:31 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

[ 1507.202621][T10257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1507.222225][T10257] RSP: 002b:00007f9f987a9108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1507.230632][T10257] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9
[ 1507.238618][T10257] RDX: 0000000020ffd000 RSI: 0000000020000140 RDI: 0000000000004b26
[ 1507.246583][T10257] RBP: 0000000020000140 R08: 0000000020000200 R09: 0000000020000200
[ 1507.254557][T10257] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000200
14:59:31 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3cb, 0x0)

[ 1507.262526][T10257] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020fff000
14:59:31 executing program 2:
r0 = epoll_create(0xc)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r2, &(0x7f0000000040)={0x90002008})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
pipe(&(0x7f0000000140)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
read$ptp(r5, &(0x7f0000000180)=""/129, 0x81)
sendmsg$BATADV_CMD_GET_HARDIF(r4, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, 0x0, 0x300, 0x70bd2b, 0x25dfdbfd, {}, [@BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x9}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x4}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x1000}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4040}, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r3, 0x2, r1)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r6, 0xc0603d06, 0x0)
ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r6, 0x40505331, &(0x7f0000000240)={{0x6, 0xff}, {0x5, 0x40}, 0x401, 0x7, 0xca})

14:59:31 executing program 3 (fault-call:3 fault-nth:84):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:31 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x442)
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendmsg$nl_netfilter(r2, &(0x7f0000002740)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000002700)={&(0x7f0000002780)=ANY=[@ANYBLOB="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", @ANYRES32=r3, @ANYBLOB="1c2600006c5e74d846c9c55442e318cca3f297793d18772f3a219c469cdfcb5a7d8f3cc7ccdfdd16b866ac219a548c42999b5a7f3dfa1f285dc36aa622f4de65b25ad17780775eb70088ab4675f2d273f3bffd37bd3ab77b76c749ebd9d3a838dbe60ba792d07566a6667b176c2bcfcbdbb3cbe0afb21533731eed7d394ca93fdd7810b1f17d3e03ecbb40dfc7e21a967ba1ab8d64d79b0f043247e3a4141c81166e2c2b2c00eaea6a7fe2a4622d463e125534bde531f79b1faa2cb6e62abe818eded64ea8ef1706e505aa5da358554957f2b857814116d67269824e2427a64d919ff9a6d59f546c287311a67030", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=r4, @ANYBLOB="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"], 0x2644}, 0x1, 0x0, 0x0, 0x800}, 0x24040002)
pipe(&(0x7f0000000100))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r5, 0xc0603d06, 0x0)
ioctl$PTP_PIN_GETFUNC(0xffffffffffffffff, 0xc0603d06, 0x0)
kcmp$KCMP_EPOLL_TFD(0x0, 0x0, 0x7, 0xffffffffffffffff, &(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x200})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r6, 0xc0603d06, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
add_key$keyring(&(0x7f00000001c0), &(0x7f0000000200)={'syz', 0x0}, 0x0, 0x0, 0x0)
ioctl$PTP_PIN_GETFUNC(r7, 0xc0603d06, 0x0)
r8 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000280), 0x100)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r8, 0x4058534c, &(0x7f0000000140)={0x2, 0x400, 0x5, 0x5, 0xec, 0xfffff000})
kcmp$KCMP_EPOLL_TFD(0xffffffffffffffff, 0x0, 0x7, r6, &(0x7f00000000c0)={r7, r1, 0x4})

14:59:31 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004002)

14:59:31 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_wait(r0, &(0x7f0000000140)=[{}, {}, {}, {}], 0x4, 0x9)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000000080), &(0x7f00000000c0)=0x14)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000100)={0xa000200d})

14:59:31 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004004)

14:59:32 executing program 5 (fault-call:2 fault-nth:7):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:32 executing program 2:
r0 = epoll_create(0x8)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, 0xffffffffffffffff, &(0x7f0000000040)={0x90002008})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
r2 = epoll_create1(0x80000)
epoll_wait(r2, &(0x7f0000000000)=[{}, {}, {}, {}], 0x4, 0x100cf)

14:59:32 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
syz_io_uring_setup(0x6d38, &(0x7f0000000340)={0x0, 0xda83, 0x4, 0x3, 0x114, 0x0, r1}, &(0x7f0000ff0000/0x3000)=nil, &(0x7f0000ff1000/0x2000)=nil, &(0x7f00000002c0)=<r2=>0x0, &(0x7f00000003c0))
r3 = mmap$IORING_OFF_SQES(&(0x7f0000ff2000/0x1000)=nil, 0x1000, 0x3000004, 0x8010, r0, 0x10000000)
syz_io_uring_submit(r2, r3, &(0x7f0000000440)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000400)='./file0\x00', 0x8, 0x20000, 0x23456}, 0x101)
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
sendmsg$NFT_MSG_GETTABLE(r4, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x50, 0x1, 0xa, 0x301, 0x0, 0x0, {0x3, 0x0, 0x8}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x3}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x4}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x50}, 0x1, 0x0, 0x0, 0x60000004}, 0x5)
r5 = getpid()
sched_setattr(r5, &(0x7f0000000300)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000180), 0x2000, 0x0)
r8 = getpid()
sched_setattr(r8, &(0x7f0000000300)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r8, 0x3, &(0x7f0000000200)=""/131)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r9, 0xc0603d06, 0x0)
kcmp$KCMP_EPOLL_TFD(r5, r5, 0x7, r6, &(0x7f00000001c0)={r7, r9, 0x1})
tkill(r5, 0x1e)

[ 1507.491262][T10318] FAULT_INJECTION: forcing a failure.
[ 1507.491262][T10318] name failslab, interval 1, probability 0, space 0, times 0
[ 1507.500426][T10317] FAULT_INJECTION: forcing a failure.
[ 1507.500426][T10317] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1507.505324][T10318] CPU: 1 PID: 10318 Comm: syz-executor.5 Not tainted 5.14.0-rc5-syzkaller #0
[ 1507.527014][T10318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1507.537074][T10318] Call Trace:
[ 1507.540334][T10318]  dump_stack_lvl+0xb7/0x103
[ 1507.544948][T10318]  dump_stack+0x11/0x1a
[ 1507.549084][T10318]  should_fail+0x23c/0x250
[ 1507.553506][T10318]  __should_failslab+0x81/0x90
[ 1507.558259][T10318]  ? io_uring_create+0x1466/0x1940
[ 1507.563374][T10318]  should_failslab+0x5/0x20
[ 1507.567871][T10318]  kmem_cache_alloc_trace+0x49/0x310
[ 1507.573158][T10318]  ? alloc_pages+0x2e8/0x340
[ 1507.577801][T10318]  io_uring_create+0x1466/0x1940
[ 1507.582729][T10318]  ? vfs_write+0x50c/0x770
[ 1507.587132][T10318]  __x64_sys_io_uring_setup+0xe1/0x120
[ 1507.592669][T10318]  do_syscall_64+0x3d/0x90
[ 1507.597072][T10318]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1507.602996][T10318] RIP: 0033:0x4665e9
[ 1507.606874][T10318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1507.626464][T10318] RSP: 002b:00007f9f987a9108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1507.634906][T10318] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9
[ 1507.642859][T10318] RDX: 0000000020ffd000 RSI: 0000000020000140 RDI: 0000000000004b26
[ 1507.650816][T10318] RBP: 0000000020000140 R08: 0000000020000200 R09: 0000000020000200
[ 1507.658774][T10318] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000200
[ 1507.666726][T10318] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020fff000
[ 1507.674740][T10317] CPU: 0 PID: 10317 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1507.683500][T10317] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1507.693623][T10317] Call Trace:
[ 1507.696901][T10317]  dump_stack_lvl+0xb7/0x103
[ 1507.701567][T10317]  dump_stack+0x11/0x1a
[ 1507.705725][T10317]  should_fail+0x23c/0x250
[ 1507.710145][T10317]  should_fail_usercopy+0x16/0x20
[ 1507.715185][T10317]  copy_page_from_iter+0x1fe/0x530
[ 1507.720297][T10317]  process_vm_rw_single_vec+0x294/0x460
[ 1507.725881][T10317]  process_vm_rw+0x347/0x4e0
[ 1507.730454][T10317]  ? fsnotify_perm+0x59/0x2e0
[ 1507.735120][T10317]  ? __fsnotify_parent+0x32f/0x430
[ 1507.740271][T10317]  ? get_pid_task+0x8b/0xc0
[ 1507.744755][T10317]  ? vfs_write+0x50c/0x770
[ 1507.749250][T10317]  ? __fget_light+0x21b/0x260
[ 1507.753908][T10317]  ? __cond_resched+0x11/0x40
[ 1507.758586][T10317]  ? fput+0x2d/0x130
[ 1507.762522][T10317]  __x64_sys_process_vm_writev+0x76/0x90
[ 1507.768139][T10317]  do_syscall_64+0x3d/0x90
[ 1507.772540][T10317]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1507.778422][T10317] RIP: 0033:0x4665e9
[ 1507.782296][T10317] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1507.801901][T10317] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1507.810366][T10317] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1507.818331][T10317] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a35
[ 1507.826283][T10317] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1507.834236][T10317] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
14:59:32 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:32 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
ioctl$MON_IOCQ_URB_LEN(r0, 0x9201)
r1 = mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
sendmsg$nl_netfilter(r0, &(0x7f00000005c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000580)={&(0x7f0000000040)={0x52c, 0x7, 0xb, 0x101, 0x70bd2a, 0x25dfdbfb, {0x5, 0x0, 0x9}, [@typed={0x14, 0x18, 0x0, 0x0, @ipv6=@private1={0xfc, 0x1, '\x00', 0x1}}, @nested={0x343, 0x32, 0x0, 0x1, [@generic="70b01d573dcb05d80651b8d4c35339534b0f4937e67bc519a5ff564c7d40e3d28389b0f3", @typed={0xba, 0x3e, 0x0, 0x0, @binary="165d0712e341601e427e6048b55f2697e86d7b8ef52f987b5bc9aea15fc6850c749aff080e5c2784c08c98a8db1c92235dd9ea180886c21a285cf63bb9fef43e0415e3781eb98c618d70c9a552caa40cfc46e8c5f3767849b79659a6dd5c1545062ff09511957e89e67dd94f7b57764775bbb6d7ad3f0d2f1177722ff2b2f1444f055860e8fe5140cf815944a915c1a607c3d9930448994250eb8e9b3d9179780156b7e5e7210df7a45240b049a310112c6aef6ff77a"}, @typed={0xf9, 0x31, 0x0, 0x0, @binary="a637311fbfede337b28ade1aba73ff08b5bc9208a0732bc435f2dd430746e5258f7f800117955a127983560318b22fea560ed4d4c67aea52bd6e747dec726bbd05fbe64172eef242d2d6fb40720c6af183accb25765cdcafb08922de5a7eea59d97aacb3d2a25192e73a3c31d8a95d663d7680bd54c74c0d784474b40812c4028c70400877e13588cf8ef3c282cde7b3b6a78faa667b05836403ae3570078169f67a7743a5f07fe7e25fe322fd970d4ffde6ca9eb1c0c2f3222f2f1d92e8534910815ff0b9cc30440fd9a00fa86d01687564cbe0b8a425405d831530bd0e79aedae9708c8668b47d5746d6206b49142e28033fe9f5"}, @typed={0x8, 0x58, 0x0, 0x0, @uid=0xffffffffffffffff}, @typed={0xcc, 0x78, 0x0, 0x0, @binary="85a2bfd157460f8157da66543065a9ba7421286d0acfe0a9d1e9133bf7a45acb3ce9b18d451f747c67ae6c72f24518f7b8533edcadf67f1f1f4ce8219124874327359deb026201aed98f92ae2bbc4f57a8996d91cbc74ffda9367fee9a7630b877b8aba8a34abcfe906b2cf56cb0745dfc826d6d4c63c4c1b597db954eb37f76a68f3aa92d53dfb4aad8dfd4fa96f808aeece4dc4e38c32a461ede820f5f2513f29e6f9f2047a8e4ef979896165e5a0e4f5e3d586bce3fc2527b6cd26b5197437a1815c26bfd0ecd"}, @generic="2ff02c6d296ecb932728222c04f73fa15062ba441cc15a5bb35c1c279b39aa40be82c8d072fe5d11f9254ec0277b538ce42e1c9f92c33ea977231b5b770fef39749f0954241815005cd0285f9e3fe735ad42fcc50db60848615921d23fcb21dfc567c3e03bf23e8ec3848d94185be1eabf65e4a63bdfb327d17b6a2bf7ddc8c856a7031418d59e", @typed={0x8, 0x1f, 0x0, 0x0, @u32=0x80000000}]}, @nested={0x8, 0x82, 0x0, 0x1, [@typed={0x4, 0x7e}]}, @nested={0x1b5, 0xe, 0x0, 0x1, [@typed={0x14, 0x1a, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @typed={0x8, 0x4, 0x0, 0x0, @u32=0x7}, @typed={0x8, 0x16, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x4b, 0x0, 0x0, @u32=0x7fff}, @generic="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", @generic="a6fa8e22de52382ff6047bf172af9ba92f80f507002ac5c73b84c1e596f9887b76acbdce13cc0c33774be44c4d9e2e6cf24a4a49919f59bb71e2fe34604f939224097fc2231866edfdab3bd4e1e5289a89d9d767b54431c2811c45f89ec138b9932d17ee6b34617de627d4e6c1ab3ba860a391aeb3a7e87fcfe74ce38d12e4ce17cd6384e530f3ed12f9"]}, @generic]}, 0x52c}, 0x1, 0x0, 0x0, 0x40}, 0x4011)
syz_io_uring_submit(0x0, r1, &(0x7f0000000640)=@IORING_OP_LINK_TIMEOUT={0xf, 0x3, 0x0, 0x0, 0x0, &(0x7f0000000600)={0x77359400}, 0x1, 0x0, 0x1}, 0x7ff)

[ 1507.842241][T10317] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:32 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3cc, 0x0)

14:59:32 executing program 5 (fault-call:2 fault-nth:8):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:32 executing program 3 (fault-call:3 fault-nth:85):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:32 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x10004000)
arch_prctl$ARCH_MAP_VDSO_32(0x2002, 0x81)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000100)={'batadv_slave_1\x00'})
io_uring_setup(0x3769, &(0x7f0000000000)={0x0, 0xb3e1, 0x2, 0x3, 0x2be, 0x0, r0})

14:59:32 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2, 0x11, r0, 0x10000000)

[ 1507.974465][T10343] FAULT_INJECTION: forcing a failure.
[ 1507.974465][T10343] name failslab, interval 1, probability 0, space 0, times 0
[ 1507.987116][T10343] CPU: 0 PID: 10343 Comm: syz-executor.5 Not tainted 5.14.0-rc5-syzkaller #0
[ 1507.995894][T10343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1508.005998][T10343] Call Trace:
[ 1508.009304][T10343]  dump_stack_lvl+0xb7/0x103
[ 1508.013893][T10343]  dump_stack+0x11/0x1a
[ 1508.018051][T10343]  should_fail+0x23c/0x250
14:59:32 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x45dd, &(0x7f0000000000)={0x0, 0x7408, 0x1, 0x3, 0x1ac, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))

14:59:32 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x280102, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)

[ 1508.022496][T10343]  ? kzalloc+0x20/0x20
[ 1508.026595][T10343]  __should_failslab+0x81/0x90
[ 1508.031352][T10343]  ? percpu_ref_init+0x96/0x250
[ 1508.036200][T10343]  should_failslab+0x5/0x20
[ 1508.040729][T10343]  kmem_cache_alloc_trace+0x49/0x310
[ 1508.046038][T10343]  ? kzalloc+0x20/0x20
[ 1508.050104][T10343]  percpu_ref_init+0x96/0x250
[ 1508.054778][T10343]  io_uring_create+0x1488/0x1940
[ 1508.059713][T10343]  ? vfs_write+0x50c/0x770
[ 1508.064120][T10343]  __x64_sys_io_uring_setup+0xe1/0x120
[ 1508.069575][T10343]  do_syscall_64+0x3d/0x90
[ 1508.074013][T10343]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1508.080254][T10343] RIP: 0033:0x4665e9
[ 1508.084157][T10343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1508.103762][T10343] RSP: 002b:00007f9f987a9108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1508.112168][T10343] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9
[ 1508.120137][T10343] RDX: 0000000020ffd000 RSI: 0000000020000140 RDI: 0000000000004b26
[ 1508.128110][T10343] RBP: 0000000020000140 R08: 0000000020000200 R09: 0000000020000200
[ 1508.136084][T10343] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000200
[ 1508.144048][T10343] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020fff000
[ 1508.148558][T10356] FAULT_INJECTION: forcing a failure.
[ 1508.148558][T10356] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1508.165060][T10356] CPU: 1 PID: 10356 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1508.173820][T10356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1508.183860][T10356] Call Trace:
[ 1508.187124][T10356]  dump_stack_lvl+0xb7/0x103
[ 1508.191711][T10356]  dump_stack+0x11/0x1a
[ 1508.195865][T10356]  should_fail+0x23c/0x250
[ 1508.200293][T10356]  should_fail_usercopy+0x16/0x20
[ 1508.205320][T10356]  copy_page_from_iter+0x1fe/0x530
[ 1508.210457][T10356]  process_vm_rw_single_vec+0x294/0x460
[ 1508.216004][T10356]  process_vm_rw+0x347/0x4e0
[ 1508.220741][T10356]  ? fsnotify_perm+0x59/0x2e0
[ 1508.225414][T10356]  ? __fsnotify_parent+0x32f/0x430
[ 1508.230586][T10356]  ? get_pid_task+0x8b/0xc0
[ 1508.235130][T10356]  ? vfs_write+0x50c/0x770
[ 1508.239538][T10356]  ? __fget_light+0x21b/0x260
[ 1508.244207][T10356]  ? __cond_resched+0x11/0x40
[ 1508.248894][T10356]  ? fput+0x2d/0x130
[ 1508.252783][T10356]  __x64_sys_process_vm_writev+0x76/0x90
[ 1508.258485][T10356]  do_syscall_64+0x3d/0x90
[ 1508.262971][T10356]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1508.268963][T10356] RIP: 0033:0x4665e9
14:59:32 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3cd, 0x0)

[ 1508.272841][T10356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1508.292434][T10356] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1508.300921][T10356] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1508.308885][T10356] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a38
[ 1508.316847][T10356] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
14:59:32 executing program 2:
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x0, 0x8, 0x3, 0x0, 0x0, {0x3, 0x0, 0x8}}, 0x14}, 0x1, 0x0, 0x0, 0x2000c050}, 0x8800)
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

14:59:32 executing program 5 (fault-call:2 fault-nth:9):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:32 executing program 1:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
ioctl$PTP_SYS_OFFSET_PRECISE(r0, 0xc0403d08, &(0x7f0000000040))
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r1, 0x10000000)

14:59:32 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
socket$inet6_udplite(0xa, 0x2, 0x88)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

[ 1508.324811][T10356] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1508.332792][T10356] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:32 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_STOP_AP(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, r1, 0x4, 0x70bd26, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x88a1}, 0x4080)

[ 1508.380184][T10383] FAULT_INJECTION: forcing a failure.
[ 1508.380184][T10383] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1508.393262][T10383] CPU: 1 PID: 10383 Comm: syz-executor.5 Not tainted 5.14.0-rc5-syzkaller #0
[ 1508.402019][T10383] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1508.412165][T10383] Call Trace:
[ 1508.415439][T10383]  dump_stack_lvl+0xb7/0x103
[ 1508.420033][T10383]  dump_stack+0x11/0x1a
[ 1508.424181][T10383]  should_fail+0x23c/0x250
14:59:33 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
setsockopt$inet6_tcp_buf(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000100)="f0b8768883e6c63406c2ca1b2157fb6cd9c8f8db0dc2db37cb4118fa207ab0a5542f7e91d4307dc09bcc1990507620d2d304ff6d28a5750f12f0f690a06f0e291f45ce0cb69397e057d7d7963be7bbe61fa9298ea66919e7ad3af29246e8ea1f1f130a0323d6430b78a230d4dd01759530bf1e49f837877900c3391e69871fc32940b90563c57e0f1c7c218fac66b02b2f9c0dd6b8c44959f798c72e71cf80dcd7571b633bff81f537c68a4a60d545e456bbd0fa80a78d38ad4fe143b6e237a5d79f3951b7d71d703d090359eb858735503dd1bc684738b2c1298ae87a0dbfe7cf38a3c78ba0316a74985381c9958d069133", 0xf2)

[ 1508.428603][T10383]  should_fail_usercopy+0x16/0x20
[ 1508.433652][T10383]  _copy_to_user+0x1c/0x90
[ 1508.438068][T10383]  io_uring_create+0x160d/0x1940
[ 1508.443015][T10383]  ? vfs_write+0x50c/0x770
[ 1508.447484][T10383]  __x64_sys_io_uring_setup+0xe1/0x120
[ 1508.452945][T10383]  do_syscall_64+0x3d/0x90
[ 1508.457384][T10383]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1508.463312][T10383] RIP: 0033:0x4665e9
14:59:33 executing program 3 (fault-call:3 fault-nth:86):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

[ 1508.467201][T10383] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1508.486866][T10383] RSP: 002b:00007f9f987a9108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1508.495283][T10383] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9
[ 1508.503260][T10383] RDX: 0000000020ffd000 RSI: 0000000020000140 RDI: 0000000000004b26
[ 1508.511224][T10383] RBP: 0000000020000140 R08: 0000000020000200 R09: 0000000020000200
[ 1508.519230][T10383] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000200
[ 1508.527203][T10383] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020fff000
14:59:33 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3ce, 0x0)

14:59:33 executing program 2:
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff})
sendmsg$BATADV_CMD_GET_ORIGINATORS(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0xfffffdff, 0x0, 0x800, 0x70bd2b, 0x25dfdbfd, {}, [@BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0xffff}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x1f}, @BATADV_ATTR_ISOLATION_MASK={0x0, 0x2c, 0x4}, @BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x4}]}, 0x44}, 0x1, 0x0, 0x0, 0x20004001}, 0x4000000)
r1 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r1, 0x300, r2, &(0x7f0000000040)={0x90002008})
r3 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$link(0x8, 0x0, r3)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_HEADER(r4, &(0x7f0000000300)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)={0x34, 0xc, 0x6, 0x301, 0x0, 0x0, {0x2, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}]}, 0x34}}, 0x4000010)
keyctl$reject(0x13, r3, 0x1, 0x4, 0xfffffffffffffff8)

14:59:33 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x0, 0x0, 0xfffffffc})
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r0, &(0x7f0000000000)={0xa})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DISCONNECT(r2, &(0x7f0000000740)={&(0x7f0000000600), 0xc, &(0x7f0000000700)={&(0x7f0000000680)={0x28, r3, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @val={0xc}}}}, 0x28}}, 0x0)
sendmsg$NL80211_CMD_DISCONNECT(r1, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x4c, r3, 0x4, 0x70bd2c, 0x70f, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x9}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x21}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x1b}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x29}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x15}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x1f}]}, 0x4c}, 0x1, 0x0, 0x0, 0x41}, 0x10)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:33 executing program 1:
r0 = getpid()
sched_setattr(r0, &(0x7f0000000300)={0x38, 0x2, 0x0, 0x1, 0x4007, 0x1, 0x0, 0x8000101, 0x4}, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
kcmp$KCMP_EPOLL_TFD(0xffffffffffffffff, r0, 0x7, 0xffffffffffffffff, &(0x7f0000000000)={0xffffffffffffffff, r1, 0x3})
arch_prctl$ARCH_MAP_VDSO_32(0x2002, 0x0)
pipe(&(0x7f0000005500)={<r2=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x0, 0x11, r2, 0x10000000)
r3 = getpid()
sched_setattr(r3, &(0x7f0000000300)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
r4 = epoll_create(0x7)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r5, 0xc0603d06, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r6, 0xc0603d06, 0x0)
kcmp$KCMP_EPOLL_TFD(r0, r3, 0x7, r4, &(0x7f0000000040)={r5, r6, 0x4})
setregid(0xee00, 0xee00)

14:59:33 executing program 5 (fault-call:2 fault-nth:10):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

[ 1508.636538][T10411] FAULT_INJECTION: forcing a failure.
[ 1508.636538][T10411] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1508.649624][T10411] CPU: 0 PID: 10411 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1508.656770][T10424] FAULT_INJECTION: forcing a failure.
[ 1508.656770][T10424] name failslab, interval 1, probability 0, space 0, times 0
[ 1508.658383][T10411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1508.658397][T10411] Call Trace:
[ 1508.658404][T10411]  dump_stack_lvl+0xb7/0x103
[ 1508.688828][T10411]  dump_stack+0x11/0x1a
[ 1508.692988][T10411]  should_fail+0x23c/0x250
[ 1508.697427][T10411]  should_fail_usercopy+0x16/0x20
[ 1508.702447][T10411]  copy_page_from_iter+0x1fe/0x530
[ 1508.707596][T10411]  process_vm_rw_single_vec+0x294/0x460
[ 1508.713130][T10411]  process_vm_rw+0x347/0x4e0
[ 1508.717716][T10411]  ? fsnotify_perm+0x59/0x2e0
[ 1508.722379][T10411]  ? __fsnotify_parent+0x32f/0x430
[ 1508.727481][T10411]  ? get_pid_task+0x8b/0xc0
[ 1508.731974][T10411]  ? vfs_write+0x50c/0x770
[ 1508.736376][T10411]  ? __fget_light+0x21b/0x260
[ 1508.741210][T10411]  ? __cond_resched+0x11/0x40
[ 1508.745886][T10411]  ? fput+0x2d/0x130
[ 1508.749767][T10411]  __x64_sys_process_vm_writev+0x76/0x90
[ 1508.755384][T10411]  do_syscall_64+0x3d/0x90
[ 1508.759786][T10411]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1508.765757][T10411] RIP: 0033:0x4665e9
[ 1508.769670][T10411] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1508.789262][T10411] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1508.797665][T10411] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1508.805619][T10411] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a3b
[ 1508.813597][T10411] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1508.821599][T10411] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1508.829555][T10411] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:33 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
r1 = io_uring_setup(0x8a2, &(0x7f0000000000)={0x0, 0xc4d9, 0x4, 0x1, 0x98, 0x0, r0})
io_uring_setup(0x1e3f, &(0x7f0000000080)={0x0, 0x3020, 0x0, 0x0, 0x3bc, 0x0, r1})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)

[ 1508.837520][T10424] CPU: 1 PID: 10424 Comm: syz-executor.5 Not tainted 5.14.0-rc5-syzkaller #0
[ 1508.846280][T10424] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1508.856370][T10424] Call Trace:
[ 1508.859642][T10424]  dump_stack_lvl+0xb7/0x103
[ 1508.864225][T10424]  dump_stack+0x11/0x1a
[ 1508.868370][T10424]  should_fail+0x23c/0x250
[ 1508.872814][T10424]  ? sock_alloc_inode+0x23/0x90
[ 1508.877694][T10424]  __should_failslab+0x81/0x90
[ 1508.882457][T10424]  ? sockfs_init_fs_context+0x70/0x70
14:59:33 executing program 1:
pipe(&(0x7f0000005500))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
pipe(&(0x7f0000000000)={<r1=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x40010, r1, 0x10000000)

14:59:33 executing program 0:
r0 = io_uring_setup(0x4f73, &(0x7f0000000080)={0x0, 0x0, 0x30})
r1 = io_uring_setup(0x67ad, &(0x7f0000000000)={0x0, 0xdf0f, 0x8, 0x0, 0x3b8, 0x0, r0})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x10004000)
getcwd(&(0x7f00000001c0)=""/155, 0x9b)

[ 1508.887874][T10424]  should_failslab+0x5/0x20
[ 1508.892374][T10424]  kmem_cache_alloc+0x46/0x2e0
[ 1508.897144][T10424]  ? selinux_socket_create+0x7c/0x170
[ 1508.902517][T10424]  ? sockfs_init_fs_context+0x70/0x70
[ 1508.907967][T10424]  sock_alloc_inode+0x23/0x90
[ 1508.912810][T10424]  ? sockfs_init_fs_context+0x70/0x70
[ 1508.918187][T10424]  new_inode_pseudo+0x38/0x1c0
[ 1508.922961][T10424]  __sock_create+0x122/0x4e0
[ 1508.927551][T10424]  ? should_fail+0xd6/0x250
[ 1508.932103][T10424]  sock_create_kern+0x34/0x40
[ 1508.936785][T10424]  io_uring_create+0x1653/0x1940
[ 1508.941722][T10424]  ? vfs_write+0x50c/0x770
[ 1508.946206][T10424]  __x64_sys_io_uring_setup+0xe1/0x120
[ 1508.951669][T10424]  do_syscall_64+0x3d/0x90
[ 1508.956093][T10424]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1508.961986][T10424] RIP: 0033:0x4665e9
[ 1508.965872][T10424] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
14:59:33 executing program 3 (fault-call:3 fault-nth:87):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:33 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3cf, 0x0)

14:59:33 executing program 2:
r0 = epoll_create(0x8)
r1 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x40000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, r1)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$IPCTNL_MSG_CT_GET_STATS(r2, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x1, 0x0, 0x9}, ["", "", "", "", "", "", "", "", ""]}, 0x14}}, 0x20000010)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r2, &(0x7f0000000040)={0x90002008})

14:59:33 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = io_uring_setup(0x3112, &(0x7f0000000300)={0x0, 0xfad5, 0x2, 0x2, 0x14b, 0x0, r1})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r2, 0x10000000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r3, 0x6, 0x1d, &(0x7f0000000400)={0x1, 0xffff, 0x1, 0x6, 0x80}, 0x14)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, r1)
pipe(&(0x7f0000000380)={<r4=>0xffffffffffffffff})
openat$cgroup_procs(r4, &(0x7f00000003c0)='cgroup.threads\x00', 0x2, 0x0)
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000080), &(0x7f00000000c0)=0x14)
r5 = syz_io_uring_setup(0x4e8, &(0x7f0000000200)={0x0, 0x43dc, 0x20, 0x1, 0x2f6, 0x0, r0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
r6 = io_uring_setup(0x3fbe, &(0x7f0000000000)={0x0, 0x8dc, 0x8, 0x3, 0x3b2, 0x0, r5})
mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000001, 0x810, r6, 0x10000000)
syz_io_uring_setup(0x510f, &(0x7f0000000100)={0x0, 0xc62d, 0x10, 0x0, 0x2b4, 0x0, r0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000001c0))

[ 1508.985469][T10424] RSP: 002b:00007f9f987a9108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1508.994015][T10424] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9
[ 1509.002024][T10424] RDX: 0000000020ffd000 RSI: 0000000020000140 RDI: 0000000000004b26
[ 1509.010018][T10424] RBP: 0000000020000140 R08: 0000000020000200 R09: 0000000020000200
[ 1509.017981][T10424] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000200
[ 1509.025954][T10424] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020fff000
[ 1509.033997][T10424] socket: no more sockets
14:59:33 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$BATADV_CMD_GET_HARDIF(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x2c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x1}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x81}]}, 0x2c}, 0x1, 0x0, 0x0, 0x5004}, 0x1)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

14:59:33 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x88000, 0x0)
sendmsg$nl_netfilter(r1, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x5c, 0x13, 0xa, 0x401, 0x70bd29, 0x25dfdbfc, {0xc, 0x0, 0x5}, [@generic="482072a3b9a2270243f90dcfbe13e0daf7e857f663c1a8e9a51c1a33999e9dc837820873e0f6acf76ea5b100de394399d9f81dadf4e2bbbbee", @nested={0xc, 0x36, 0x0, 0x1, [@typed={0x8, 0x4b, 0x0, 0x0, @pid=0xffffffffffffffff}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4000}, 0x20000004)

[ 1509.114757][T10451] FAULT_INJECTION: forcing a failure.
[ 1509.114757][T10451] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1509.127862][T10451] CPU: 1 PID: 10451 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1509.136709][T10451] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1509.146831][T10451] Call Trace:
[ 1509.150102][T10451]  dump_stack_lvl+0xb7/0x103
[ 1509.154705][T10451]  dump_stack+0x11/0x1a
[ 1509.158852][T10451]  should_fail+0x23c/0x250
[ 1509.163264][T10451]  should_fail_usercopy+0x16/0x20
[ 1509.168327][T10451]  copy_page_from_iter+0x1fe/0x530
[ 1509.173432][T10451]  process_vm_rw_single_vec+0x294/0x460
[ 1509.178965][T10451]  process_vm_rw+0x347/0x4e0
[ 1509.183607][T10451]  ? fsnotify_perm+0x59/0x2e0
[ 1509.188291][T10451]  ? __fsnotify_parent+0x32f/0x430
[ 1509.193399][T10451]  ? get_pid_task+0x8b/0xc0
[ 1509.198125][T10451]  ? vfs_write+0x50c/0x770
[ 1509.202524][T10451]  ? __fget_light+0x21b/0x260
[ 1509.207181][T10451]  ? __cond_resched+0x11/0x40
[ 1509.211866][T10451]  ? fput+0x2d/0x130
[ 1509.215750][T10451]  __x64_sys_process_vm_writev+0x76/0x90
[ 1509.221367][T10451]  do_syscall_64+0x3d/0x90
[ 1509.225768][T10451]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1509.231674][T10451] RIP: 0033:0x4665e9
[ 1509.235571][T10451] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1509.255162][T10451] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:33 executing program 5 (fault-call:2 fault-nth:11):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:33 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

[ 1509.263561][T10451] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1509.271529][T10451] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a3e
[ 1509.279573][T10451] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1509.287616][T10451] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1509.295569][T10451] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
[ 1509.364344][T10471] FAULT_INJECTION: forcing a failure.
[ 1509.364344][T10471] name failslab, interval 1, probability 0, space 0, times 0
[ 1509.376977][T10471] CPU: 1 PID: 10471 Comm: syz-executor.5 Not tainted 5.14.0-rc5-syzkaller #0
[ 1509.385735][T10471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1509.395823][T10471] Call Trace:
[ 1509.399128][T10471]  dump_stack_lvl+0xb7/0x103
[ 1509.403721][T10471]  dump_stack+0x11/0x1a
[ 1509.407976][T10471]  should_fail+0x23c/0x250
14:59:33 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
syz_io_uring_setup(0x5db8, &(0x7f0000000100)={0x0, 0xa32, 0x20, 0x3, 0x29b, 0x0, r0}, &(0x7f0000ff0000/0x4000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f00000001c0))
r3 = syz_io_uring_setup(0x2311, &(0x7f0000000040), &(0x7f00007db000/0x4000)=nil, &(0x7f00007dd000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
r4 = mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x0, 0x13, r3, 0x10000000)
r5 = getpid()
r6 = socket$nl_generic(0x10, 0x3, 0x10)
kcmp$KCMP_EPOLL_TFD(r5, 0x0, 0x7, r6, &(0x7f0000000300)={r1, r3, 0x9})
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r7=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r7, r4, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
r8 = io_uring_setup(0x3277, &(0x7f0000000200)={0x0, 0x6d5a, 0x10, 0x2, 0x2fa, 0x0, r0})
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
r10 = socket$inet6_tcp(0xa, 0x1, 0x0)
syz_io_uring_submit(r2, r4, &(0x7f00000002c0)=@IORING_OP_FILES_UPDATE={0x14, 0x2, 0x0, 0x0, 0x12, &(0x7f0000000280)=[r8, r0, r9, r0, r0, r10], 0x6}, 0xff49)
ioctl$PTP_PIN_GETFUNC2(r1, 0xc0603d0f, &(0x7f0000000080)={'\x00', 0xa17d, 0x95c12453cb47ac70})
io_uring_setup(0x4, &(0x7f0000000000)={0x0, 0xe57e, 0x10, 0x0, 0x3cd})

14:59:34 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
semget$private(0x0, 0x4, 0x215)

[ 1509.412447][T10471]  ? security_inode_alloc+0x30/0x180
[ 1509.417766][T10471]  __should_failslab+0x81/0x90
[ 1509.422531][T10471]  should_failslab+0x5/0x20
[ 1509.427037][T10471]  kmem_cache_alloc+0x46/0x2e0
[ 1509.431814][T10471]  security_inode_alloc+0x30/0x180
[ 1509.436938][T10471]  inode_init_always+0x20b/0x420
[ 1509.441988][T10471]  ? sockfs_init_fs_context+0x70/0x70
[ 1509.447369][T10471]  new_inode_pseudo+0x73/0x1c0
[ 1509.452139][T10471]  __sock_create+0x122/0x4e0
[ 1509.456733][T10471]  ? should_fail+0xd6/0x250
14:59:34 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000180), 0x600, 0x0)
ioctl$SG_NEXT_CMD_LEN(r4, 0x2283, &(0x7f00000001c0)=0x1b)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f0000000000)={&(0x7f0000ff0000/0x2000)=nil, 0x2000}, &(0x7f0000000040)=0x10)
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
syz_io_uring_setup(0x27b2, &(0x7f0000000080)={0x0, 0x8df5, 0x10, 0x1, 0x67, 0x0, r1}, &(0x7f0000fef000/0x3000)=nil, &(0x7f0000fef000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000140))
mmap$IORING_OFF_SQES(&(0x7f0000fef000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)

[ 1509.461243][T10471]  sock_create_kern+0x34/0x40
[ 1509.465922][T10471]  io_uring_create+0x1653/0x1940
[ 1509.470902][T10471]  ? vfs_write+0x50c/0x770
[ 1509.475336][T10471]  __x64_sys_io_uring_setup+0xe1/0x120
[ 1509.480800][T10471]  do_syscall_64+0x3d/0x90
[ 1509.485210][T10471]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1509.491362][T10471] RIP: 0033:0x4665e9
[ 1509.495273][T10471] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1509.514889][T10471] RSP: 002b:00007f9f987a9108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1509.523378][T10471] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9
[ 1509.531345][T10471] RDX: 0000000020ffd000 RSI: 0000000020000140 RDI: 0000000000004b26
[ 1509.539306][T10471] RBP: 0000000020000140 R08: 0000000020000200 R09: 0000000020000200
[ 1509.547265][T10471] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000200
[ 1509.555289][T10471] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020fff000
14:59:34 executing program 2:
r0 = epoll_create(0x9)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x10000000})

[ 1509.563312][T10471] socket: no more sockets
14:59:34 executing program 3 (fault-call:3 fault-nth:88):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:34 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3d0, 0x0)

14:59:34 executing program 0:
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_NOACK_MAP(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x24, r1, 0x400, 0x70bd2b, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x7}]}, 0x24}, 0x1, 0x0, 0x0, 0x4090}, 0x4004808)
r2 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x10004000)

14:59:34 executing program 2:
prctl$PR_GET_ENDIAN(0x13, &(0x7f00000000c0))
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x300, 0xffffffffffffffff, &(0x7f0000000040)={0x90002008})
prctl$PR_GET_ENDIAN(0x13, &(0x7f0000000080))

14:59:34 executing program 5 (fault-call:2 fault-nth:12):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:34 executing program 1:
pipe(&(0x7f0000005500))
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
sendmsg$IPSET_CMD_FLUSH(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x3c, 0x4, 0x6, 0x101, 0x0, 0x0, {0xc, 0x0, 0x3}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}]}, 0x3c}, 0x1, 0x0, 0x0, 0x90}, 0x20040000)
socket$inet6_udp(0xa, 0x2, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x3000002, 0x8010, r1, 0x10000000)

14:59:34 executing program 0:
r0 = io_uring_setup(0x3782, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:34 executing program 1:
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = socket(0x3, 0xa, 0xfffffffc)
io_uring_setup(0x2ea4, &(0x7f0000000080)={0x0, 0xdb6, 0x1, 0x3, 0x1cb})
r2 = getuid()
sendmsg$nl_netfilter(r1, &(0x7f0000003480)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000003440)={&(0x7f00000034c0)=ANY=[@ANYBLOB="84210000020503002abd7000fbdbdf2503000005e152d63cac5d5e63fd542cfca2add5e70507768adaf2e34dce0be66fc00eb17d1a37e5545bdce44ea92a917bd54d28340368380659886f4da8f3d528c21190f7985f70fa78e0cc158eb1a90404a6d3014a711747577df4e2050f9082ca86d7df2a5edd54695c25c465c4c1bf226b649117840e076f2db636a0a91d1b6450b05c7425048e7d6a44f4f8496d26743863f5f797542c689fec394e2054c877af31ab9713fc1965fbba8002730da2821e1f230ea0bf88a8955e632bf14788926d12b4121b59bb242b1b342742e5d32d1d7818304b3697b92a2447799f502c08005600", @ANYRES32, @ANYBLOB="14007400fc02000000000000000000000000000004001d800c006b00050000000000000008000900090000005f20778004005c002ec54ead471f0996d278b71b04653c8ebde64084d1beb8ba24142966bc1f6c74b244a25199887c949260937312a689745add71b8037bb5c19f3289d0915d3f6f02cd29d79f0366368df058eb651193e92fd3659c117f41031c6a1d37f6e55537693a49a7ae0ee35fa6d9d166fe0d44be1496a9bb9a36b22222522fde07c2b7d6929099f51bd0b257db7aaca3dd7ecd2f6f7257210f2d83bd54d3690c47e77e080d7832a635ae28feadc38c57db69ce17637bba70f8ed864f483533c6050254d6c467dda47943ea7f7e4f995bcba3776dbb1ab58e49493ccc544a53c453776666c61187482a758fa97338d19e6fabfb6510b0407342f5efb0238a9e4c7b16272ec0a9b01989557c9e35f3234b3c8691b090b6c35a21ba968a7d9c58651604eacfd78ec87274b99c48c713b92a00295b7b682b4bae7bfc5ed88c3e616fbeda5adc7d4c17eead52438df58fc7dbae166df5c49f991d8d4da43d49dbe5ee76e8ac85519bb06bf5458d2335a95e547cda2bdc11c3f8961c86e1865a6881d21d017c18320aaa72480b27923fb10ff8da09cc5e8f7c6b66e5bbf337a6387f4ba08c62cdc35787fc11d01cc1e0ea09fe843c42d866b1eff5a60133c01b290cac8eae0eef2d856cfb7f2a31b33dc0e723aa15ce32bd026e74db5b43cfbc7f19aee22765b34a85fa22662f11291b43bc5969ecec440b4cf257d594499a1f25fd9b8a87d92349ebd9d8f7f31f01d792b2f6a7249cabd644675fe37b32f051329c16cbc4e3323cbee91d446676f4c3938eac2d2860ad854d53b4e3d4391b685577335847a602f8ef202964eb6f6b044fd9598ba9ce885d24ae2caab5f4d721e33459dab97b9bbb124ce03d97e477b601f7ea54b3766a6b911f822aad00b1375f0f1b73e84edd21b314921f991a73e7eddb9379a675d7f5a4c3aeedfeccc6c5c882a1551978ce2bb9530b694bf28027ff24e45d337691a028f4987c52d4382cfe21ffe4d973ab13af589e038960d99aec900abad26d2286d6410731314d54056c9fefe661ec61c256f78a458eb31e496923f62daf57d425a2a6094feaec65fc844f0340e8f5fabc3df22805fe93f65eac7cd905589f3d9f045cd1c67d4368370b59b7f9fbfb6112b4e9e0a2cefab040ea8d68ba42319e4cf14c32668033ca3f1657e123948f27be0d957d29727ead5339f3e6de53adb6b23862631e539b92f5a39b5470b3d88e310d3d3882265429cb452f71e06b6a0b527f6d6e9ad32162130e660dee3e824df93304943cc6f6c8c4f1891044cf63b6096c62908e7d71a7b1485c9a6dd382f3240d937000318bc2568ca431b7c20f3d6ec4d6e1590e893b5c0ded9bcc0ab9c82d5194e9dd09750ae28a529dda0fb6846f0c467524e410bb411bbfad0c37eb9f2d30488a1358c48c0615647af8b2c07cdd2ebcdd4539c55957c8b4c483907c1a2cac9fb7da6cabcd4f0583d44082c15babac32992a38beae206a580b871347cdc30bffdbfbf73180291e2f03cdc72db8648129c43ce69db72f59996f8f1ff67c234614b36177aa4f0efb6fc1ce10d89a73b1646b12730d9dd251d57d6eb776f6a18c1159563d547325a79a43780d5eafd3986c21b3b417a55c685bfb35c39ea6ca3b9cb2d511c8e5f5a2bb94364eec089a4ce8e86875e15e1d3b24e157ebd25ba62995c67bfee976f68ba2e7433c5be017d23a3d26f409ada68be67eea325ecb50bba514783e85403c53f8424f4374245a4cd4be96debbad69f2a6c68628edd738839e650e3f58f7a81daf3854820ee144f1de3688e01f8a5488b6ba947181eb353139262837b9ed597cad12f7fa221d4320451b09afa4d7cb710567adb32ed40a034a36228b12589ab17413ddf536cea30413300d494c36ecc80d1565ba28f00e5b0b6f53ef04e6205350c71fe6f41b1eca50649d4edda7d35effafa9c30a94d866da6969a56a6b4a4f2adad60df516fbfd5dd7d799a58b7e7e5f933e736e7064bc790fefae645890ead1163d6661ea98176e033208db07fb4c83df28c575aa1530ca125ae62335981022033505a18594088db31a1791de1992df129a1cca8ced550abc647a1ed4f2d5fcc6ea553eb14abd2a3fe89aa0994fa361e681d1916d585ee110848da6809ef302ea95e9dff6439a132de37fe70a4004b71d0bd77533efd761df6814a27616f8ba6d7da4afefb00c129334b27315fb46177a1cb1c24f6fd70923257fb987621d0fe07764389de051786f1b32465474595f804ac99464feec8f2689d1d5524c514306c72536061ecb3851a819495caed517d4579c0120c8bd822bd0491b2dad573240326b1eb6400bff04a228548bd5a35ab2ed1ddbb822fad959cf081aceaaae812d5b6c2bd2f28d81b6f58d6594b1295a603533e28531accacf7bdd57ea026a0e51ef005fe85b7a9bdc856884f6866d8e91baacfc4311a562e3f16e8bb786b4d5571ff8cc9e255a76be707c207a3d4ed0318a88fb09ede76fff50b07f963b0a3797356dda2cba40464a8666ecc3bcc3d45ad568458520d9618f2bccf6dd95e2ecfb5967b78c05291588d471c24901fc77a4a0dc6fffaa55208ad1baf2b069f38966bd90d51c9c4395a001e02c227a08e39508643b71217fb687ae732aef712392b30258aad955dd231706a95b29da020cd87748106b3758f161886107a2d85ce70fce79b944410dd98cda7521e69fb3bfdff4613f29b98b412190b581ee3c4ab638a723eb7ebc352be6a21b3f0697b7c3e6e7835c3a2efdfcd5a5fa7385e702f07947294f01508211681d58842b48021ab815fa95384f36e40582f0d4ce46b147659fb0c2f7416e7d397d96fa0a35e64814cb8e69305b9f69666cd5d4b0650e640e98eb7393205beaa2082cb77ae3bfe95f5caa18f05c8452a130aa9c85d4dec6095f77edda8ead8c7ba6bdab107074f5871824f4a5e110e67903f246b51ffdc361fadf8dbabdd595082572534153cada0a384efe2d7a7d541a2ea760cb157cf3797fe85a7f0c35ac9a07967d6af429419e8b788c9ab0b7bd8b2ca91f72229470897c2638c17749eb2614fc7702e9f0d603c090c9291b4b31fe0b93fc8404ae9336432cff207b32fa5c54d709f6489bcb00023c87ea6b4c5bb5b8776d8b58dbbd8b0c1e897a06674fa5eeef56225affd64815494a18bfd2ade1b1398632837a424d2334b0d6434e3a862dd67baa71a06435837a68e4f11ac84c429765a5b8b713a380f7615cbedc555ff3d16986dabf6f9a427b71a440eb2b65806016bae5f111d960bc93746af861d80ab5a022f2637081b65bbafe80f0917eea317432c446cc1580e4c31aff58ce56f6236d8303f02f4de9f5e87aa12cd4e6b9a4088f4c8b620f78137ab86ec1c7da811a6b1c8fead7c9e1c56e7b586dc4d867fd73134de0249a05430491c3c53f91fdeef3216f99391165ec25e31698d4bde007ace1f67257939495ad656cb1eb32df38b5768ce8439b9b7f9e209f31baa9cf7fc67b1ada4ece59ac15ddc88f63625e14a1478e64b335d41c8ac1d3f8c8d807f6912e7e410ea5c2cf8d8b25985e8756d31f25e5425a36ae635d6a618470cb3bafc5b7f428d90b586ef925191d016a67829efd5c7b9efb27dd319059bbb1fb5967565188cb38b7c4927cc126515449be048c5ebc00a926d4f5f5e2aa4efde4c8de84e6d43ac80f317852fc6dfd2a0e15e53baa180d5a98a4ea141eb969bf3a2ccad4d29168ffc7395c8809d58ccfdd12701feb4e36ebbfba9004d73dc062f8841d9f3ffb56f43740cf9ffc28e5e86b95130de48843683cbffae8e6a1a93f428443a3121e33fa33f0f3a6e3b8aba1f92f344800abd07d8fe293c328e2c0cc1ada4004cbf38061c384f5feaa564cccc13f4deabaa45b78da46e547c694851b900c7e87c4dcfeee305b0cde020abf1eddd47ff97a1e5545ce368bf8a9d657976a1a535723d378799e63ae83d89d5ce0c5a245a50d52bf28db48e059657175d2b9e2d40df6d81a06aa19b15838f7a960a0eaaf89b1505f134e000eaa3b94d333068244370fd9ff4dcc5a84cb3831e4d52bbb4388f687386f4b899a5c4416354a6ca57a8af3622cb0db8f0546d3fb0ec8b20b9550ae9201034143aa01c9f500f14f3d292b05dd600f4b7c4e046fcf9e996cad254092a36bd7aa93fbcd20edb963d29c0a45d22a5558e8208214e83f6f003566f2c7a7024e80e429d96d480f8c915a9e38c3958b0ee0f5a35d4c31e9aa9b4d34465d94b6ca494388f27057171b2433beb360379bc9f67e1d4b760a8cd417187eff9ff65e160f531c81eff49adf7cffe48160efed75e8da64e3f0655bc28976a3d0cae40b1714141d01cf230a5705b04468c1bfe8a18e81885ebe22f4d5d831ce841c9c5b8c4fdac7a3722b30c08168967bdd08f35e05d51d8d9ad0d4f25a8ad9a1691c523336fc2fb8ef2dbca1af11da80fb7d1e6044c8ba83bf766117a0b1ee4477e76e0027d7b8c196a08ead0a211962e7d979cab8c7d4bf6c271b494aaf54ca88e8058686e4407131aebecd83624b320b14cd6b7b0922e5f73b1d17c878b7d7b45edf85edfcd235a1cd51feaa2c003bc458100116ba41b2e343d4df6aa4cbbe2412cb77cd9a85a73489f24ca2206ad48659eaaa028a1227ee993cff86ba46cc98e97a0305b578053218b4cc169b5c2211be2a584a0047c364a7a03cd8ac332d810cc06a05cb6d280bd32627dc64b7a89cbd646dda980a1cac2570d71845fe2e22661b617bd467cf2552a71065e4af5548f89b49bcabe7a5a67dea4f9d55e78ff6fc5d392d3b60163771276b5d75dd30c53d94ccd19aaab3918c899d675257808e4e3d463c8ca914e830eb34d18385fc3b500175ab418811f98d49ef4df4d0a31437398d19b8d67efb00fb4e50ccf48bda61e75353e1690ca9629393f93ea5d328934d3db705a37f2a0e7167836ef341cb168a90607c0218099cdc19b1b5c250ea565a13435964427bd944c62fa7cef6c30172dbc249e88a1704288cb85045ab6729c5c2549586e048db539fd222c48c9fc23ed3eb26388cee7188b5027d8d23c9140cab3d73d9b40c7434329777e5f7c20d1aa060a928ba59f47dc17411aa153c5288aeb0638a7b73c340950ad7f95f66be2f11e09920dedab127be29e3e34e4ca60faa9dd92dd69a405c674f81d6477fe4714613911e517b9233b1e20146a714d054a8e1ef9c7ad79ce38f4eabba194077efcbc8c4ea6836dd05c3659f07a29896dc515073e5fb3c2a4eca57e470aeab07963e623646714ecff356d8296e5da72d951e4f839a583a650443a5d4bea15146f39106718862f58c26111972b26a283a17b267193d99b89749e63bca18a92a642112db1718d06a96238e75837257dec988f9bf03bb1938d5d2acee048251c0349540cb777a7d1b65f31b1789fa78ea7e482bd0be5cd95a3f7032e202b8527cd91622657f25bdf7e0549fd6623509098d84e83ae6515d434c401fe2dfe5316e26fc8a39c38b7914afc3c74f51a39148e0c135c7599e52f68f7e3e5a8506f50d76ff59abe49d917e3a7d351482ae58543f4f771181ba2a24a1b910159aa9e265793e2f41ec0c489f4773fcd54cd9dd7f5bd96ba02f940fbbdded6ba814f5509b33e098fd37188b78277aeb1f3e7467ab0941c47ac34d7de2753b50ccb659339b3cf967b8fa372be4c4036b95fc544def8e8d301eb0867193e1c0f7949f6fedbb2aafc2f3f02b3727018697db0c6d2ce164f13acab19514d166e4735a690f4cb9c61cdbda2810647bcc68cbea94d7abe40d714c466ff7a58b8c08007300", @ANYRES32=r2, @ANYBLOB='\b? \x00', @ANYRES32=0x0, @ANYBLOB='\b\x00L\x00', @ANYRES32, @ANYBLOB="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"], 0x2184}, 0x1, 0x0, 0x0, 0x40}, 0x40000844)
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
r3 = syz_open_dev$sg(&(0x7f0000000100), 0x39d0000000000000, 0x111000)
ioctl$SCSI_IOCTL_BENCHMARK_COMMAND(r3, 0x3)

[ 1509.677343][T10513] FAULT_INJECTION: forcing a failure.
[ 1509.677343][T10513] name failslab, interval 1, probability 0, space 0, times 0
[ 1509.689991][T10513] CPU: 0 PID: 10513 Comm: syz-executor.5 Not tainted 5.14.0-rc5-syzkaller #0
[ 1509.698744][T10513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1509.708795][T10513] Call Trace:
[ 1509.712067][T10513]  dump_stack_lvl+0xb7/0x103
[ 1509.716758][T10513]  dump_stack+0x11/0x1a
[ 1509.720909][T10513]  should_fail+0x23c/0x250
[ 1509.725329][T10513]  ? sk_prot_alloc+0x41/0x190
[ 1509.730035][T10513]  __should_failslab+0x81/0x90
[ 1509.734796][T10513]  should_failslab+0x5/0x20
[ 1509.739335][T10513]  kmem_cache_alloc+0x46/0x2e0
[ 1509.744179][T10513]  sk_prot_alloc+0x41/0x190
[ 1509.748685][T10513]  sk_alloc+0x2e/0x220
[ 1509.752843][T10513]  unix_create1+0x74/0x3c0
[ 1509.757260][T10513]  unix_create+0xdc/0x100
[ 1509.761590][T10513]  __sock_create+0x2c7/0x4e0
[ 1509.766271][T10513]  sock_create_kern+0x34/0x40
[ 1509.770948][T10513]  io_uring_create+0x1653/0x1940
[ 1509.775969][T10513]  ? vfs_write+0x50c/0x770
[ 1509.780381][T10513]  __x64_sys_io_uring_setup+0xe1/0x120
[ 1509.781672][T10521] FAULT_INJECTION: forcing a failure.
[ 1509.781672][T10521] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1509.785983][T10513]  do_syscall_64+0x3d/0x90
[ 1509.786006][T10513]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1509.811150][T10513] RIP: 0033:0x4665e9
[ 1509.815050][T10513] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1509.834744][T10513] RSP: 002b:00007f9f987a9108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1509.843156][T10513] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9
[ 1509.851112][T10513] RDX: 0000000020ffd000 RSI: 0000000020000140 RDI: 0000000000004b26
[ 1509.859140][T10513] RBP: 0000000020000140 R08: 0000000020000200 R09: 0000000020000200
[ 1509.867108][T10513] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000200
[ 1509.875063][T10513] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020fff000
[ 1509.883021][T10521] CPU: 1 PID: 10521 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1509.891838][T10521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1509.901933][T10521] Call Trace:
[ 1509.905271][T10521]  dump_stack_lvl+0xb7/0x103
[ 1509.910010][T10521]  dump_stack+0x11/0x1a
[ 1509.914269][T10521]  should_fail+0x23c/0x250
[ 1509.918753][T10521]  should_fail_usercopy+0x16/0x20
[ 1509.923771][T10521]  copy_page_from_iter+0x1fe/0x530
[ 1509.928946][T10521]  process_vm_rw_single_vec+0x294/0x460
[ 1509.934559][T10521]  process_vm_rw+0x347/0x4e0
[ 1509.939271][T10521]  ? fsnotify_perm+0x59/0x2e0
[ 1509.943990][T10521]  ? __fsnotify_parent+0x32f/0x430
[ 1509.949084][T10521]  ? get_pid_task+0x8b/0xc0
[ 1509.953570][T10521]  ? vfs_write+0x50c/0x770
[ 1509.957980][T10521]  ? __fget_light+0x21b/0x260
[ 1509.962642][T10521]  ? __cond_resched+0x11/0x40
[ 1509.967434][T10521]  ? fput+0x2d/0x130
[ 1509.971314][T10521]  __x64_sys_process_vm_writev+0x76/0x90
[ 1509.976944][T10521]  do_syscall_64+0x3d/0x90
[ 1509.981356][T10521]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1509.987259][T10521] RIP: 0033:0x4665e9
[ 1509.991138][T10521] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1510.010993][T10521] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1510.019390][T10521] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
14:59:34 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$SCSI_IOCTL_GET_BUS_NUMBER(r1, 0x5386, &(0x7f0000000040))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r1, &(0x7f0000000140)={0x20002000})
ioctl$SG_GET_LOW_DMA(0xffffffffffffffff, 0x227a, &(0x7f0000000100))

14:59:34 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000280), r1)
ioctl$PTP_PIN_SETFUNC2(0xffffffffffffffff, 0x40603d10, &(0x7f0000000080)={'\x00', 0xffff, 0x2, 0x7371})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(&(0x7f0000000140)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = io_uring_setup(0x6850, &(0x7f0000000180)={0x0, 0x9f11, 0x20, 0x2, 0x181})
epoll_ctl$EPOLL_CTL_DEL(r3, 0x2, r4)
r5 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x101041, 0x0)
r6 = epoll_create(0x2)
r7 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000040), 0x200000, 0x0)
epoll_ctl$EPOLL_CTL_MOD(r6, 0x3, r7, &(0x7f0000000240)={0x8000000a})
ioctl$PTP_SYS_OFFSET_PRECISE(r5, 0xc0403d08, &(0x7f0000000100))
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r2, &(0x7f0000000200)={0x10004004})

14:59:34 executing program 5 (fault-call:2 fault-nth:13):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

[ 1510.027359][T10521] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a41
[ 1510.035326][T10521] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1510.043322][T10521] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1510.051342][T10521] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:34 executing program 0:
sendmsg$IPSET_CMD_FLUSH(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x34, 0x4, 0x6, 0x201, 0x0, 0x0, {0x5, 0x0, 0x6}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x34}}, 0x44080)
pipe(&(0x7f0000000180)={<r0=>0xffffffffffffffff})
r1 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x342a, 0x8, 0x2, 0x0, 0x0, r0})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x10004000)

[ 1510.133446][T10542] FAULT_INJECTION: forcing a failure.
[ 1510.133446][T10542] name failslab, interval 1, probability 0, space 0, times 0
[ 1510.146186][T10542] CPU: 0 PID: 10542 Comm: syz-executor.5 Not tainted 5.14.0-rc5-syzkaller #0
[ 1510.154951][T10542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1510.165001][T10542] Call Trace:
[ 1510.168278][T10542]  dump_stack_lvl+0xb7/0x103
[ 1510.172868][T10542]  dump_stack+0x11/0x1a
[ 1510.177012][T10542]  should_fail+0x23c/0x250
[ 1510.181434][T10542]  __should_failslab+0x81/0x90
[ 1510.186202][T10542]  ? selinux_sk_alloc_security+0x61/0x120
[ 1510.192016][T10542]  should_failslab+0x5/0x20
[ 1510.196525][T10542]  kmem_cache_alloc_trace+0x49/0x310
[ 1510.202899][T10542]  ? should_fail+0xd6/0x250
[ 1510.207410][T10542]  selinux_sk_alloc_security+0x61/0x120
[ 1510.213055][T10542]  security_sk_alloc+0x45/0x90
[ 1510.217876][T10542]  sk_prot_alloc+0xd2/0x190
[ 1510.222401][T10542]  sk_alloc+0x2e/0x220
[ 1510.226539][T10542]  unix_create1+0x74/0x3c0
[ 1510.230957][T10542]  unix_create+0xdc/0x100
[ 1510.235288][T10542]  __sock_create+0x2c7/0x4e0
[ 1510.239883][T10542]  sock_create_kern+0x34/0x40
[ 1510.244626][T10542]  io_uring_create+0x1653/0x1940
[ 1510.249570][T10542]  ? vfs_write+0x50c/0x770
[ 1510.254148][T10542]  __x64_sys_io_uring_setup+0xe1/0x120
[ 1510.259727][T10542]  do_syscall_64+0x3d/0x90
[ 1510.264135][T10542]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1510.270026][T10542] RIP: 0033:0x4665e9
14:59:34 executing program 3 (fault-call:3 fault-nth:89):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:34 executing program 1:
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
tgkill(0x0, 0x0, 0x0)
ioctl$SCSI_IOCTL_DOORLOCK(r1, 0x5380)
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)

14:59:34 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000000)={0x90002008})
r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f00000000c0))

14:59:34 executing program 0:
r0 = io_uring_setup(0x477b, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x382})
prctl$PR_SET_SPECULATION_CTRL(0x35, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:34 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3d1, 0x0)

[ 1510.273915][T10542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1510.293515][T10542] RSP: 002b:00007f9f987a9108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1510.301929][T10542] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9
[ 1510.309991][T10542] RDX: 0000000020ffd000 RSI: 0000000020000140 RDI: 0000000000004b26
[ 1510.317969][T10542] RBP: 0000000020000140 R08: 0000000020000200 R09: 0000000020000200
[ 1510.325937][T10542] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000200
14:59:34 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)

14:59:34 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
epoll_wait(r1, &(0x7f0000000180)=[{}, {}, {}, {}, {}, {}], 0x6, 0x335f)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r2, &(0x7f0000000040)={0x90002008})
syz_io_uring_setup(0x40e9, &(0x7f0000000080)={0x0, 0x234d, 0x8, 0x2, 0x336, 0x0, r2}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000100))
pipe(&(0x7f0000000140))

[ 1510.333987][T10542] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020fff000
[ 1510.415733][T10567] FAULT_INJECTION: forcing a failure.
[ 1510.415733][T10567] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1510.428835][T10567] CPU: 1 PID: 10567 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1510.437598][T10567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1510.447654][T10567] Call Trace:
[ 1510.450952][T10567]  dump_stack_lvl+0xb7/0x103
[ 1510.455567][T10567]  dump_stack+0x11/0x1a
[ 1510.459714][T10567]  should_fail+0x23c/0x250
[ 1510.464219][T10567]  should_fail_usercopy+0x16/0x20
[ 1510.469285][T10567]  copy_page_from_iter+0x1fe/0x530
[ 1510.474430][T10567]  process_vm_rw_single_vec+0x294/0x460
[ 1510.480074][T10567]  process_vm_rw+0x347/0x4e0
[ 1510.484670][T10567]  ? fsnotify_perm+0x59/0x2e0
[ 1510.489398][T10567]  ? __fsnotify_parent+0x32f/0x430
[ 1510.494593][T10567]  ? get_pid_task+0x8b/0xc0
[ 1510.499104][T10567]  ? vfs_write+0x50c/0x770
[ 1510.503518][T10567]  ? __fget_light+0x21b/0x260
[ 1510.508309][T10567]  ? __cond_resched+0x11/0x40
[ 1510.512990][T10567]  ? fput+0x2d/0x130
[ 1510.516960][T10567]  __x64_sys_process_vm_writev+0x76/0x90
[ 1510.522593][T10567]  do_syscall_64+0x3d/0x90
[ 1510.527013][T10567]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1510.532906][T10567] RIP: 0033:0x4665e9
[ 1510.536798][T10567] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1510.556416][T10567] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:35 executing program 2:
r0 = epoll_create(0x8)
epoll_pwait(r0, &(0x7f0000000000)=[{}, {}], 0x2, 0x1, &(0x7f0000000080)={[0x9]}, 0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})
ioctl$MON_IOCQ_RING_SIZE(r1, 0x9205)

14:59:35 executing program 0:
r0 = io_uring_setup(0x6f3b, &(0x7f0000000000)={0x0, 0x0, 0x0, 0xfffffffc, 0x2f7})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x402c5342, &(0x7f00000000c0)={0x10000, 0x6, 0x1000, {0xffff7fff, 0x3}, 0x718b, 0x1})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x2, 0x40010, 0xffffffffffffffff, 0x10000000)
syz_io_uring_submit(0x0, r2, &(0x7f0000000080)=@IORING_OP_EPOLL_CTL=@del={0x1d, 0x5, 0x0, 0xffffffffffffffff, 0x0, r0}, 0x7)

14:59:35 executing program 5 (fault-call:2 fault-nth:14):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:35 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x2000)=nil, 0x2000, 0x2000002, 0x11, r0, 0x10000000)

14:59:35 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3d2, 0x0)

[ 1510.564820][T10567] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1510.572802][T10567] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a44
[ 1510.580770][T10567] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1510.588770][T10567] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1510.596750][T10567] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
[ 1510.597343][T10592] FAULT_INJECTION: forcing a failure.
[ 1510.597343][T10592] name failslab, interval 1, probability 0, space 0, times 0
[ 1510.617505][T10592] CPU: 0 PID: 10592 Comm: syz-executor.5 Not tainted 5.14.0-rc5-syzkaller #0
[ 1510.627131][T10592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1510.637179][T10592] Call Trace:
[ 1510.640453][T10592]  dump_stack_lvl+0xb7/0x103
[ 1510.645043][T10592]  dump_stack+0x11/0x1a
[ 1510.649214][T10592]  should_fail+0x23c/0x250
[ 1510.653645][T10592]  ? __d_alloc+0x36/0x370
[ 1510.658047][T10592]  __should_failslab+0x81/0x90
[ 1510.662830][T10592]  should_failslab+0x5/0x20
[ 1510.667330][T10592]  kmem_cache_alloc+0x46/0x2e0
[ 1510.672097][T10592]  __d_alloc+0x36/0x370
[ 1510.676255][T10592]  d_alloc_pseudo+0x1a/0x50
[ 1510.680759][T10592]  alloc_file_pseudo+0x63/0x130
[ 1510.685609][T10592]  anon_inode_getfile+0x9f/0x120
[ 1510.690618][T10592]  io_uring_create+0x16a8/0x1940
[ 1510.695635][T10592]  ? vfs_write+0x50c/0x770
[ 1510.700083][T10592]  __x64_sys_io_uring_setup+0xe1/0x120
[ 1510.705540][T10592]  do_syscall_64+0x3d/0x90
[ 1510.709950][T10592]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1510.715849][T10592] RIP: 0033:0x4665e9
[ 1510.719762][T10592] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1510.739366][T10592] RSP: 002b:00007f9f987a9108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1510.747773][T10592] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9
[ 1510.755731][T10592] RDX: 0000000020ffd000 RSI: 0000000020000140 RDI: 0000000000004b26
14:59:35 executing program 3 (fault-call:3 fault-nth:90):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:35 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
r1 = accept(0xffffffffffffffff, &(0x7f0000000000)=@in={0x2, 0x0, @initdev}, &(0x7f0000000080)=0x80)
sendmsg$NFNL_MSG_ACCT_DEL(r1, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x80, 0x3, 0x7, 0x202, 0x0, 0x0, {0xe, 0x0, 0xa}, [@NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x1}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x361}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0xfff}, @NFACCT_FILTER={0x34, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x98c}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x8001}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0xb2ab}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0xaf2f}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x10005}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x4}]}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x2}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x738ff2cf}]}, 0x80}, 0x1, 0x0, 0x0, 0x40001}, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x4000010, r0, 0x10000000)

14:59:35 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
epoll_create(0x9)

14:59:35 executing program 2:
semget$private(0x0, 0x4, 0x80)
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})
pipe(&(0x7f0000005500)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
ioctl$PTP_CLOCK_GETCAPS(r2, 0x80503d01, &(0x7f0000000080))
r4 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000002c0), 0x140, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r5, 0xc0603d06, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DISCONNECT(r6, &(0x7f0000000740)={&(0x7f0000000600), 0xc, &(0x7f0000000700)={&(0x7f0000000680)={0x28, r7, 0x1, 0x70bd2c, 0x0, {{}, {@val={0x8}, @val={0xc}}}}, 0x28}}, 0x0)
sendmsg$NL80211_CMD_DISCONNECT(r5, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x2c, r7, 0x4, 0x70bd27, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x32}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x14}]}, 0x2c}}, 0x0)
ioctl$PTP_PIN_GETFUNC2(r4, 0xc0603d0f, &(0x7f0000000140)={'\x00', 0x8, 0x3})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r3, 0x4040534e, &(0x7f0000000000)={0x170, @tick=0x8000006, 0xff, {0x2, 0x2}, 0x9, 0x2, 0x2})

[ 1510.763714][T10592] RBP: 0000000020000140 R08: 0000000020000200 R09: 0000000020000200
[ 1510.771692][T10592] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000200
[ 1510.779654][T10592] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020fff000
14:59:35 executing program 1:
prctl$PR_GET_PDEATHSIG(0x2, &(0x7f0000000300))
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1, 0x50, r0, 0x10000000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_DISCONNECT(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000080)={&(0x7f0000000340)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="dbdf2530000000060036001e000000060036000e0000000000000000000086afd2a525e3e30bc6e5031b5cc9769f56c5415d0ea993b50d658714e14410bbb4b4199bc9874aabb34e251f680f8568ee02c29053bfbeefab5a86426131e9de7cf04d98683c3113adc3556d371ccd561a39b0d00df49a7594c370ded60ad40720835de9efd427b49f95090417f6d0bbbfa69a5486a560566ea83b6c7590133a123a95e531bf6a1a61bb2a353995a70ec2ddd91baedd01c755f2f9a0444bb5c188e4429774da38f92660b12ff2b82a848557"], 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x20040091)
r2 = accept(r0, &(0x7f0000000100)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000180)=0x80)
sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r2, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)=ANY=[@ANYBLOB="4c000000020701010000000000000000020000012c002980080001406ae6c45408000240000000020800024000000020080002400000000808000140fffffbff0c0002403610db061804b899"], 0x4c}, 0x1, 0x0, 0x0, 0x800}, 0x24040040)

14:59:35 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3d3, 0x0)

14:59:35 executing program 0:
r0 = syz_io_uring_setup(0x7611, &(0x7f0000000000)={0x0, 0x5bdc, 0x4, 0x0, 0x18a}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, r0})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x10004000)

14:59:35 executing program 2:
r0 = epoll_create(0x5)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r0, &(0x7f0000000000)={0x80000015})

14:59:35 executing program 1:
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff})
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x4, 0x1, 0x801, 0x0, 0x0, {0x3, 0x0, 0x6}, ["", "", "", "", "", "", "", "", ""]}, 0x14}}, 0x10)
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)

[ 1510.905452][T10631] FAULT_INJECTION: forcing a failure.
[ 1510.905452][T10631] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1510.918598][T10631] CPU: 0 PID: 10631 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1510.927357][T10631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1510.937403][T10631] Call Trace:
[ 1510.940675][T10631]  dump_stack_lvl+0xb7/0x103
[ 1510.945264][T10631]  dump_stack+0x11/0x1a
[ 1510.949478][T10631]  should_fail+0x23c/0x250
[ 1510.953902][T10631]  should_fail_usercopy+0x16/0x20
[ 1510.958959][T10631]  copy_page_from_iter+0x1fe/0x530
[ 1510.964057][T10631]  process_vm_rw_single_vec+0x294/0x460
[ 1510.969655][T10631]  process_vm_rw+0x347/0x4e0
[ 1510.974228][T10631]  ? fsnotify_perm+0x59/0x2e0
[ 1510.978963][T10631]  ? __fsnotify_parent+0x32f/0x430
[ 1510.984188][T10631]  ? get_pid_task+0x8b/0xc0
[ 1510.988674][T10631]  ? vfs_write+0x50c/0x770
[ 1510.993076][T10631]  ? __fget_light+0x21b/0x260
[ 1510.997754][T10631]  ? __cond_resched+0x11/0x40
[ 1511.002423][T10631]  ? fput+0x2d/0x130
[ 1511.006308][T10631]  __x64_sys_process_vm_writev+0x76/0x90
[ 1511.011939][T10631]  do_syscall_64+0x3d/0x90
[ 1511.016391][T10631]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1511.022275][T10631] RIP: 0033:0x4665e9
[ 1511.026158][T10631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1511.045799][T10631] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1511.054218][T10631] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1511.062178][T10631] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a47
[ 1511.070188][T10631] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1511.078154][T10631] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1511.086137][T10631] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:35 executing program 5 (fault-call:2 fault-nth:15):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:35 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
prctl$PR_SET_FPEMU(0xa, 0x1)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
r1 = getpid()
sched_setattr(r1, &(0x7f0000000300)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
process_vm_readv(r1, &(0x7f0000000000)=[{&(0x7f0000000100)=""/4096, 0x1000}, {&(0x7f0000001100)=""/192, 0xc0}, {&(0x7f00000011c0)=""/239, 0xef}, {&(0x7f00000012c0)=""/249, 0xf9}, {&(0x7f00000013c0)=""/189, 0xbd}], 0x5, &(0x7f0000001a00)=[{&(0x7f0000001480)=""/247, 0xf7}, {&(0x7f0000001580)=""/128, 0x80}, {&(0x7f0000001600)=""/206, 0xce}, {&(0x7f0000001700)=""/17, 0x11}, {&(0x7f0000001740)=""/142, 0x8e}, {&(0x7f0000001800)=""/84, 0x54}, {&(0x7f0000001880)=""/3, 0x3}, {&(0x7f00000018c0)=""/181, 0xb5}, {&(0x7f0000001980)=""/93, 0x5d}], 0x9, 0x0)

14:59:35 executing program 2:
r0 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$link(0x8, 0x0, r0)
keyctl$negate(0xd, r0, 0x7ff, 0xfffffffffffffffa)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
ioctl$MON_IOCX_MFETCH(r1, 0xc0109207, &(0x7f0000000180)={&(0x7f0000000140)=[0x0, 0x0], 0x2, 0x101})
r2 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, &(0x7f00000001c0)={'\x00', 0xd, 0x2, 0x7fffffff})
r4 = add_key$keyring(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
r5 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$link(0x8, 0x0, r5)
keyctl$KEYCTL_MOVE(0x1e, 0x0, r4, r5, 0x1)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r6, 0xc0603d06, 0x0)
ioctl$SG_GET_SCSI_ID(r6, 0x2276, &(0x7f0000000000))
pipe(&(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
read$ptp(r7, &(0x7f00000000c0)=""/68, 0x44)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x300, r8, &(0x7f0000000040)={0x90002008})

14:59:35 executing program 3 (fault-call:3 fault-nth:91):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:35 executing program 1:
ptrace$cont(0x9, 0x0, 0x0, 0x8)
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)

14:59:35 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3d4, 0x0)

[ 1511.184519][T10651] FAULT_INJECTION: forcing a failure.
[ 1511.184519][T10651] name failslab, interval 1, probability 0, space 0, times 0
[ 1511.197157][T10651] CPU: 1 PID: 10651 Comm: syz-executor.5 Not tainted 5.14.0-rc5-syzkaller #0
[ 1511.205911][T10651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1511.216045][T10651] Call Trace:
[ 1511.219318][T10651]  dump_stack_lvl+0xb7/0x103
[ 1511.223908][T10651]  dump_stack+0x11/0x1a
[ 1511.228060][T10651]  should_fail+0x23c/0x250
14:59:35 executing program 0:
io_uring_setup(0x6f2e, &(0x7f0000000080))
read$ptp(0xffffffffffffffff, &(0x7f0000000000), 0x0)

[ 1511.232535][T10651]  ? __alloc_file+0x2e/0x1a0
[ 1511.237205][T10651]  __should_failslab+0x81/0x90
[ 1511.241969][T10651]  should_failslab+0x5/0x20
[ 1511.246468][T10651]  kmem_cache_alloc+0x46/0x2e0
[ 1511.251230][T10651]  __alloc_file+0x2e/0x1a0
[ 1511.255647][T10651]  alloc_empty_file+0xcd/0x1c0
[ 1511.260454][T10651]  alloc_file+0x3a/0x280
[ 1511.264756][T10651]  alloc_file_pseudo+0xe2/0x130
[ 1511.269686][T10651]  anon_inode_getfile+0x9f/0x120
[ 1511.274627][T10651]  io_uring_create+0x16a8/0x1940
[ 1511.279640][T10651]  ? vfs_write+0x50c/0x770
[ 1511.284068][T10651]  __x64_sys_io_uring_setup+0xe1/0x120
[ 1511.289589][T10651]  do_syscall_64+0x3d/0x90
[ 1511.294008][T10651]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1511.299902][T10651] RIP: 0033:0x4665e9
[ 1511.303810][T10651] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1511.305369][T10663] FAULT_INJECTION: forcing a failure.
[ 1511.305369][T10663] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1511.323411][T10651] RSP: 002b:00007f9f987a9108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1511.344847][T10651] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9
[ 1511.352803][T10651] RDX: 0000000020ffd000 RSI: 0000000020000140 RDI: 0000000000004b26
[ 1511.360775][T10651] RBP: 0000000020000140 R08: 0000000020000200 R09: 0000000020000200
[ 1511.368731][T10651] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000200
[ 1511.376717][T10651] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020fff000
[ 1511.384698][T10663] CPU: 0 PID: 10663 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1511.393456][T10663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1511.403503][T10663] Call Trace:
[ 1511.406782][T10663]  dump_stack_lvl+0xb7/0x103
[ 1511.411421][T10663]  dump_stack+0x11/0x1a
[ 1511.415574][T10663]  should_fail+0x23c/0x250
[ 1511.419994][T10663]  should_fail_usercopy+0x16/0x20
[ 1511.425019][T10663]  copy_page_from_iter+0x1fe/0x530
[ 1511.430142][T10663]  process_vm_rw_single_vec+0x294/0x460
[ 1511.435691][T10663]  process_vm_rw+0x347/0x4e0
[ 1511.440274][T10663]  ? fsnotify_perm+0x59/0x2e0
[ 1511.444995][T10663]  ? __fsnotify_parent+0x32f/0x430
[ 1511.450102][T10663]  ? get_pid_task+0x8b/0xc0
[ 1511.454594][T10663]  ? vfs_write+0x50c/0x770
[ 1511.459007][T10663]  ? __fget_light+0x21b/0x260
[ 1511.463679][T10663]  ? __cond_resched+0x11/0x40
[ 1511.468420][T10663]  ? fput+0x2d/0x130
[ 1511.472384][T10663]  __x64_sys_process_vm_writev+0x76/0x90
[ 1511.478021][T10663]  do_syscall_64+0x3d/0x90
14:59:36 executing program 5 (fault-call:2 fault-nth:16):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

[ 1511.482486][T10663]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1511.488387][T10663] RIP: 0033:0x4665e9
[ 1511.492273][T10663] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1511.511926][T10663] RSP: 002b:00007f01019b2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1511.520338][T10663] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9
[ 1511.528307][T10663] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a4a
14:59:36 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3d5, 0x0)

14:59:36 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r1 = getpid()
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
r3 = syz_open_dev$sg(&(0x7f00000000c0), 0xd7, 0x2040)
sendmsg$nl_netfilter(r2, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000100)={&(0x7f0000000340)={0x17b4, 0x7, 0x1, 0x201, 0x70bd28, 0x25dfdbfc, {0x5, 0x0, 0x9}, [@generic="02c3125201b7fb21e96e4dbc5bbe1871cd2a345b95dd98db21d9adea6a6a9be23525e1934d3e30592334e46edc1d20be9cef3c7fa9849afef8cc4a42896196265e2ecdc935878a8547b95593044417", @generic="75c21ad68d06b7ff59a911838736f7f378c6230a4af8a00e557065e831908ac562efa509b8c743bf2ed2a8606d829857ee8549de6bf36e994bd1605f84c7ba4e9daa24d8839e250fd2bf49b3bc75f0a510687ed422dc65b41e30058512a14ba4ed922a422b69ec68b9214e6970a6a18e7c95704aa4f5c96b1672a7d9c5c10f81d25ab5a6aa19f4ee5d162e5d24198ca21c3d543c943bfaa05fc7ecaa576d086eeee177d9d805c971960ab40d0b045d4c3ba20d4c072d7b9bde185d9e51596f6e9d8ebdb4407148d2c9b96c932c90f5be395ca0b7e55a5f3e274d370d", @nested={0x274, 0x22, 0x0, 0x1, [@typed={0x8, 0x58, 0x0, 0x0, @u32=0x9}, @generic="d7e5c85984247315213a1122fd46c1848b72c6a565b13026acceeaa971ff3eb9b05c71c54d9bda02a75b06c0ca477fb0d41c3b9399fc7a7162b234d47604b42c7d5b12b15a7e04ab32d9f2b19a4535b648415f46bf372fc76285f1fb2a9a4e9d5d8a751794a42255c77c4e1a316ee8098b5345bd1efca5e87a11b5fb9bc5594ceb862c10233ce1a0b367c1f64705bfc794d75d4366c99e44b005273e21559e85af5f070d5e2e612a587fbf954b4be737832d883b38c19ed637aa2a86a6d0dbbf61409c0373dadd89ea102ed695c39b30152b20fb6ce4febe78d882acacf59a23619c12b1a56a05d6f7c7bd343a9a85a908", @generic="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", @typed={0xc, 0x3f, 0x0, 0x0, @u64=0x7}, @generic="545f4f0c687296eb3d0b9be21e75c8ebcb27decaa53aa7f0b88be3493448c8253a0e33a439ba2535290e8ea5cd5a0470b16f33d9520af7ad7de9a00a4aaa6c21b6e11fe0170c2cc66b9f6f365f2dfbeffc8cc60f5ea2f68f03f27740455ab21e23556d0796533e697445df5c802d7464ab"]}, @generic="a6188999fda83a3df5bc92aa0f08e50f12a166d23f36a837b3692d4f7dccfdf14dfd26074ffd6ff6155dc00b63436cbdf50471d0f575c5491f61865f5d4fc1ccd6480e2ecfe79c917372ae83699cd5c55e5c4d958d943174074002", @nested={0x1133, 0x56, 0x0, 0x1, [@generic="49acddaf55e20a7b739123b594844dfd0173ca1a661e53f81c83efba8c6112cc388eba27889214cdb5ec01d8d2214e02bcd1e59edc9a88cd0748cd96689242b2f934292b672b52a483c49101e662790dd078dd505a0a9f8938799d0dacba3b9a687e650cc421d94357e0ee743b1edba4d0547403badca2958b705f5c844b4df396eb17c86ae5c614420e7a45d18ce1f00df76ff758208a9e0dc80b87d14070a8844ab7078f56d69bc31a60ecc3951d1c92e36240fb39953e370c50ea5790c8eeec0406a94505d2534820e749af53a71044ad8429e031eb8c8ba6f1b2", @generic="e54efe457ffd8a8392490b6ac6d4b62a532bfcb358331c8e76071b2570d23cbd14737f66c424d2d56ebbd00100b3c7197a744b5937b91a4a1c3d9e", @generic="c414e0d4209ae3b87fb0586cdf9f225e", @typed={0x8, 0x3d, 0x0, 0x0, @fd=r3}, @generic="fb13a5bd4214d1971f07dea425421282b83d8a88dec8eddec0fe225544a630ffebc263749becb1f37a77f2f3750641a8d353c644142c76ad6af86669c3bb81b63fa6348a01bb33c706281ac129b932327e2bfc5a44c342f21a16770ecbacf4fc273b68a8e0927198498ccde0c788b4994360dc51a26afd78ef5a8deff5e9db01927055637449d724dac1f09802c362d0d996e7c73ecaf51b3691c12c695ab3aa0785fe41d7eef023f460d15f649120b84502422473861abc8b431173664c27e89413a19fd25f08ce270702c488718aa819421d5eb6da33a381120639d92af482204316ce71254228ad502ec04b99549176a9661c1b48c3f13a10c28b9d2c86ea8fcd5c81ffbdeeaa2f8e5a5ccb4d82d2b3de1d2030d337872ca455dca5990d2de8d69182a461b7a86b2111ef8dd36058877dd7302a88ed8ac59cc5f5b046ebe0856edb944c5df90d15fd3a1863f8e5ad1d6af8d90dc54c34ae68a22791a196838d88ca8593bd60509ed4511177491201c14815ac00c080e5d3686771b01cfcb854200372dc13c95afc3ba78186e001a46b783669a683c31df566a2e0a5f9335a29fa2085d507d67ded760269b1b411bb3a5e5c9905f24edce6897dedf248f361b47f98805c80d705131b0b005f6b52d02d99e6f5e7f347527d7baf130935f5b3894a2da9ea5dcbe5072d4eeb88d86f747fabc6a9187c8f09fd647a81ec474cacc59238dd24366d34c377ced6ff1c934a0e62a3ca3ccfbfee5df6a7d4d116a7b98ccd283a5ecee37998f0b836b1c633f0e56886eaee8401d90744d018d0ad9b875508c35a95be7469bfbc087e745ad4664f36e88ab51cbf2ab8957fdcbd8556e1c0c3273beddf5c6c3c8c0cc76aa4244fc11710a94e819c214ec12a95b7a749fdc324bdb198b2b3fb5dc65bdc77f2c5d00b1a64189e53c0345262a56b3d0896404b9f023724d94aca451027cc99d82bb1852655644918f9f0936485cd16a5b038f6a2063c2b768a9869b3694576a6e137c290d03beb5af8c75fa10b01ea3b6ce54182fd5a3ebe1722136d13b1d66c06cf4971126c73e0780177c95ab7453b8377f97ded9e97099f8369cec4df130d0092af07b7ab643ff2f977d5ea35232605275eaf01762a459de7f660bb30455bbfc0fba92cde149171658c9e299260a5485333fc36f80f31adaf2a35051bb1253f1230bc24dea359b0ae7a8148a5aafa446434abb7e747a3c6eeb812f14a2a3f5709c0dee4570f256688109169b26077d10c265299b50a0529074260b0b7691800d17b9a55e739863c799822bb0c2363d34a3fe7aeb1769860d6318d7a086323b5b4ab437910fc710df832e738b96e305cb83a50ace922aa6898c5e475fc1728a671810c4e07fdac5c5e00d0251a61725f3557c603ac4eb4b4f402072392e2ebdfd75d77eca3dd02db0c88b64eb9ab0ac630c96af7e873495d657879320b6b57f6bdd55616f290e5e6860de7bcb627066fb4114888142b3b45061583d54aa075f733c044a5e96972971b62a573c5653b0e480b2953163cdf777993da89b26acf1ac8fffaa54f749f3baa13a5b7f162fdd205a5689a4915118d7425495847c13e4552c7d875f4b7079224e560e7c261d1f8e3d7e8184326f29efe79c8c81a789468b774ad3c883a0bde314b13788165059f56d93ef5eaa6aeeffb35a0a02f66f8ca2280277163cd35c2186bb169378db9057678d27f66ef59dd4a853fafa35d92801dd04bf9fa6abecbb759ef7a2da461256a963ebde7b9b1a7ba245bad9d0c26436a50bcdea1ff0ee90757a772619a782c2a7760ae117c28cd211db083e791d6bc4c561fcf40016d3af0c9fd4749b11c90ed5fdb9341691b7d4f3a772c325c093d3145e283736e2403a4a82185bf850c5b38b5bd9fe4a88194ab8875574a316c0a58b91e95c7f7b4e0ee42ed92cfeded461445ec983d581423a579d884caff628f820c5d14ff89070b0549107e7b6ec665a402c84ea03955ee8884a1902d1d2091f48d03c72cd598582b9da25a28bfc1e79bb3aba64bbae7ba0866502e2aa6a517d013fe1d9944565d6a7d7e454b2aaa5dffcd380fb90793247b2b5cfb9377e5c2c5555d2a8e8b56e2eddceef1101a2e9fa76f6a0103ff94c50e180aa7e446a532a005eb25f76df52a40dcdf68d100df718252ff6d543a60e51a94d1b0d585502dd76ef170ab828a20ff095569f118ed8ff69d0209f1ea6a06ffd53ffa5f71578e11faaee390eec6797e205f918da5bb3e95f7488ed127231805abcbb367ab65e4b8afa2617de7838d1d62d62e0254f89cd3c3b1070911541a586775f8fe27e4aa1c6a5cde29223e9b308c358eabd06e17a1ca9471403ace0e20891f5a1ff165f926e9a7b1b712d170502ef866f6682c699d1ee01a030c4c12eb052754c5f8da8ae69659fa1aeaf691ceae1e42912879aabd39ad4732aad1ca83b3d5c507896ffc24d7432cc7c099b709db121f5c6570c999ad6da050812a555bb6a4086aa483e51454acf33b0fdec61121918b0ce9e6fb0bdffad6cba65df160e07d0fcecacb01f2aac3633a8afd7850ccfe093e8e8ac6a6aaed5760045fd4a63eb9f8c783990a5f4296fd74b0b62260ee4f6d9fc096c22450b7959c4295809ddacefc9eb4e8268f51d6ea8ee0102b70ad1e2d4de0d8905c195eb3dda5b4a5abcee5bec0d91145f2f392f108774b45e456afbfa91ab8d20af8fd9e4844a08dd5a7b868ebb40ea05c834e08e0643e72b7410edee02b4c9eafe4888b5938a67df9c685439862728523bbb4a811b8ec3a55d998f742b23eeecfd32f96532f0d9b0aa632e841f3b7fbb71a4eacd03ab6d61493315033ceef14ffec25e3661cae223cab6c403c7df765569d749a76e9d955f2fe11ccc82b8c1e99bffaf8ad22cae72c6250bb32b201b70f0afd931a2204c76ede26c8397927cacf2aba7d6aceae78a4adc791812351501b03d47ce3b7e74db09430c913f523407aca439afc0875c43a6a9533b444f237c71075af02926cd65d7d429ffd7d266b798ebf2b25eec52bbf425ef4b29d0db0ff4d8a093667c6b3af0137d7d7ad6907e2f5fc84dc727d4a1a24510e3001a8caccb8db8e8c0ebd1ead3439460da7f3a497a512202f047d431e83f4758a4510054d52450672ddc6c4e0d0f5879890fe4648d4c2beb965d245a2cad2961e275d5b582cb158b991ca3e274034deb9af0b59c64c8c8ee79e49d65f33ee514199c715fda69eddf5378dff50341262a969e6948337b878a6c2fbc55b1953d6c4a2b573b5f3ba15e3a4b498954aa4e1e3ab5cbef1bc512f3eeced877a43a32e52a9764ba11257813d0486b754b7cc24f7f1ecebfe89a425fd0d0c4203549d9a6e96db379527bd7faadbce87e6cbf6a21d9b3ffe16c1e641555f84cdb7da8c116ac87f18153df2f9b5226716f7be4b9c823d64b45aeca5ea0e963c6cf269f9fe5b70b8c94a79f270349294dd396992f0cec7c4cd1a844d78d0228f5bf87c31d7fbf6ce83f56e90a000402fedf13db0425562d56d1fac0522ac26837292c68fb561a9d6f13adbc5cb3505abb79c51897cb0d6fa675355cafa9c5a1f9fe6dfa81f93c85068dc14546cf3251100186d11ce7c8e3777fa8631f8169cb487c6d577aac41bef095038e0c93093fd509ef310968803908546e4890d44f13fbf3fc733e6d49ba613d83f69226af4c2011bac94d7fc42bd7538c7f5bd9eec26c263c0f709a2ee56438973241a0ed663fe41142165c5fab574f7901f6ba274c2fbe9368628541e524e08135501645926f2abdea3c68a91924e43cfba5cc8639a0bc4bf50cdbfd48d80b72f6988a1f5e3ed0022320df47eb033938d14ef79aa57cf48cf9d4735c1fe8bdd9033500a3df8ecd83b1b2e5421614711b599b58fc66cef2f4f3162e06312d5bba9b63b8a72da3373ca9d6663cab0b8e63660a13db350c5dcee5fba7d59a1c61f2ee357085a78cdd41f26b6c6876ce70dee358470706930830ce39c138d9485c93f8ca4d6dd609557bb5d0f3bc36237dd13f6992f03d99f1b70892fbde55ee9b2f83c439f0f3067ff73a6ec96e0f46d6065ce51c1b4cb223409fdd670c458bb1bd7a4ebf42bec76f77522a0738882da7b41ebcadd0a9bbe1794eae5087b6d6a67b2a5030f560d57468e176ad3b1dc440b5a4394ed51e1a1364f0cf67000dc34619a51f8614e1beec291e447beacbf8b0a5c546696ae37e7419ebca1a4cfb6465a500dbfca48313d9a3e71bae274c0144dc4d189b08f0ab0c7654c86f7d43a778403ae4ed8f6dd64ad7bebb49f45176dc26093c4d1c7decc9c6dc9f9d71c93fb32d9a79434d291892f6edf2e814126bb4b6da6b47a98b5714906f621ac940a62569e8f35c49f5e5b6d344f38ffe9fbb331cf6238ca594ff25be771beb811b59c13a3de2c9fdaba76f0a5ec3a06b74cb13f7df2d99dbeae1647a89339b4e648d182b4d1c277d2b5e39046d87a65a83b52414dcfbb87a9b2b24c6e1fe7bc6291d2125b0a1b5eda5b3ab2282b73e99901b34ff1c0eaf54e164c1f7a74ec057ac5b584757dae89b053fc4dcb2709382e7515fb5658efe487117eafba9b863515f048fe2e76633cfaac79fb6303829b5944add67abbaf338d431a742167c5d835c3c928a2c635e2d782b68e6a2cd61789227d463f6077b27202a124fd48ab882dc5cf9c2be935b9b5b4dfefcf7abd77884f268947c9203e8ca2d958ccb514ef7fcd044b7ebeb1f172858dad65354b420edc1c17ef531efc318e8eaa9e962f9b11bfb65ce70aedaba58dc2bcf84ed58869ca9cd273451cdfefa09664505f6a93a77e6ce022d4fb33168b83356d5e5ac121ce56bfb7384232e10339f073e3ec08f92d0591cdf1a598e73f0a6ea97e5bab1e9a6fe509f53a1e387976aa3b57e9584782b3ab8c345ff925b516c0c6660bccfae7251a52c73f6254d387064ba198cd90e991ec9f424d1ad0fe08f4d25b0e0fb7ef6c8aeaf9546ed8b9c40ee6480cfd08c4ac607c7dca0641e48aa98b8b3a77b579cf246b37b487c479b8059a609cd7f4bd84189737c1c5cd61c5330944075848b8d02bf19180e3f19cf67eac701e8d2ecea9769606936870c93c18ca879789b0941ac91d076e40fb224cf2f9eb2c1f7c856120c63e2b15d9953c0996523674b37f8117f0acdcb48971292f85f125f11b64fc757a087aef7079cf05437ee1acba62c9da87d64e93e888d4892c8e0befcb8324f44fecfde1913c706d3face2d603ac5fd4f306bcffe7da9af1df67366c60baad13c4359415d9ae6a1c97765da1a5f9c1309d65d11ea83bfcbe53001bf114cb69d9ec153e12173864cedfc5064009e22adfbb5bc9f7cd834a7614b91770a18a02c79505582ec9136bed395931a5ffbc149e206672191c8d04041e7891b53c6bfd45a11ac064dac1c6842da498ca4d09b9da70861c49d64b1180ce907a1c4891b7ffa254ce7b906a9859822e0c78d2dca42331453a20ac8b3e5e7f9060cc4d79bcbd8f52ea46c2b2b1b61fd002b642facca0803df09e187bba395242da633a821bac01266592686961f9aa4369ae4041ed433e9a4706914ad29cba586e6079bfad489839c8c11876353abe78d119cbe89a14486de92e701fe70e046f48f495ba0947dfe1b1618caa969340b4efa036fc8d2158e01584b57013bb7c0109041f12d9e4059999e8a92b716a1daec13dc06a8b20122e4820155028d7b1cbcd006e0f74f8d061f3b136d8f1f3f46f65360b10700cbdcf2490a83fbea74422b27928b268a0d27f6098cf324ecb6b29448c9d618650"]}, @typed={0xb8, 0x94, 0x0, 0x0, @binary="def6591dbda1ed47de40e3dbdc9f310cb41ba1f8f6c3a73455797ea28e2c153d7e3c20a1fc4b7b053734c9e9ba0716461c9d28f444daafbf7bb84b16bba7f774c61264d74202bd00ddaec37e5a9a231c0bae0d3d820a572e5fe70d6ac9d0987ce9b8834ad203b7d0cd629c2352e11ef59488ca500779c3e464692e25ea984e9e2c0860527482c2c4ac297e603ae3fc7316d1faf3bc953bd3b6da1c8565a60b0433720829d3cf85fe847557395daec467e9ec61bb"}, @generic="9ef9289e8dc0e55fda0d0f10d95c85be688494a1d1adcde368fe8c60db8bd0cad15b2bdbc5f0b924344152e5fe3f135b551da2c35872eae30606a49e08d3ccf1a1cb871b5958063b72654bf2944d9c30a7d82c067b0bdebeb1b4e6b46f709155549df24d40bc0f7cb0a651258cbaa042b2d8d4342bd1511c5c87141568090a3b52427b6f448143623f42b5a9b4708600e5f0af86f4002da182ebf38bd909115d7c53f877e3b4d30a51620bfd9bc2c6b8693c7642a2", @nested={0x103, 0x90, 0x0, 0x1, [@generic="e22d841f2e97b151181d3b4e3c75951b88ff27a1da486acd899d43129a3e7ee67bc03b9e1e7e8fc2d320594e", @generic="af855fee14e64df277b1a270d961d0d12130afa7be27831431859a831645f8a5b87316ca416a755af9a748f63d80f84493c2d7cd", @generic="b715c249afeeec8522630a864bcb12c27eda7d1556d79a6e53ced85727a6e36b4ccee99f9f8d473445360e508cc4dcc4e3274da0ad6b07e57674e272a52d748a80d68e13a798ea47628549c3022859512c1c3a80cbe1cdcb784887d58b4d5cde3af1efdce8ace59a57d5a77c87070da607946f1fbfcae116389826aa62d83ad3f786be408ce0d2b849f439", @typed={0xc, 0xf, 0x0, 0x0, @u64=0x5}, @typed={0x8, 0x5, 0x0, 0x0, @pid=r1}]}]}, 0x17b4}, 0x1, 0x0, 0x0, 0x800}, 0x801)
sched_setattr(r1, &(0x7f0000000300)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
sched_setscheduler(r1, 0x6, &(0x7f0000000040)=0xfffffffc)
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)

[ 1511.536271][T10663] RBP: 00007f01019b21d0 R08: 0000000000000001 R09: 0000000000000000
[ 1511.544242][T10663] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1511.552314][T10663] R13: 00007fff37ded8df R14: 00007f01019b2300 R15: 0000000000022000
[ 1511.578118][T10678] FAULT_INJECTION: forcing a failure.
[ 1511.578118][T10678] name failslab, interval 1, probability 0, space 0, times 0
[ 1511.590876][T10678] CPU: 1 PID: 10678 Comm: syz-executor.5 Not tainted 5.14.0-rc5-syzkaller #0
[ 1511.599656][T10678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1511.609709][T10678] Call Trace:
[ 1511.612980][T10678]  dump_stack_lvl+0xb7/0x103
[ 1511.617635][T10678]  dump_stack+0x11/0x1a
[ 1511.621780][T10678]  should_fail+0x23c/0x250
[ 1511.626230][T10678]  ? security_file_alloc+0x30/0x190
[ 1511.631425][T10678]  __should_failslab+0x81/0x90
[ 1511.636184][T10678]  should_failslab+0x5/0x20
[ 1511.640699][T10678]  kmem_cache_alloc+0x46/0x2e0
[ 1511.645464][T10678]  security_file_alloc+0x30/0x190
[ 1511.650480][T10678]  __alloc_file+0x83/0x1a0
[ 1511.654896][T10678]  alloc_empty_file+0xcd/0x1c0
[ 1511.659660][T10678]  alloc_file+0x3a/0x280
[ 1511.663919][T10678]  alloc_file_pseudo+0xe2/0x130
[ 1511.668802][T10678]  anon_inode_getfile+0x9f/0x120
[ 1511.673740][T10678]  io_uring_create+0x16a8/0x1940
[ 1511.678676][T10678]  ? vfs_write+0x50c/0x770
[ 1511.683099][T10678]  __x64_sys_io_uring_setup+0xe1/0x120
[ 1511.688562][T10678]  do_syscall_64+0x3d/0x90
[ 1511.692971][T10678]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1511.698914][T10678] RIP: 0033:0x4665e9
[ 1511.702805][T10678] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
14:59:36 executing program 1:
pipe(&(0x7f0000005500))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x30, 0x3, 0x1, 0x3, 0x0, 0x0, {0xc}, [@CTA_ZONE={0x6, 0x12, 0x1, 0x0, 0x2}, @CTA_NAT_DST={0x14, 0xd, 0x0, 0x1, [@CTA_NAT_V4_MAXIP={0x8, 0x2, @local}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @local}]}]}, 0x30}}, 0x42001)
pipe(&(0x7f00000000c0))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
accept(r2, &(0x7f0000000140)=@ethernet={0x0, @link_local}, &(0x7f0000000040)=0x80)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x3a7242, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x1000008, 0x11, r3, 0x10000000)
socket$nl_generic(0x10, 0x3, 0x10)

14:59:36 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r1, 0x40505330, &(0x7f0000000100)={{0x20, 0x1}, {0x33, 0x3f}, 0x3b9, 0x1, 0x7})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r2, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x38, 0x0, 0x2, 0x70bd2d, 0x25dfdbfc, {}, [@BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @broadcast}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x1f}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x100}]}, 0x38}, 0x1, 0x0, 0x0, 0x24008045}, 0x4)
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)

14:59:36 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
times(&(0x7f0000000000))

14:59:36 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
io_uring_setup(0x739a, &(0x7f0000000000)={0x0, 0x4c87, 0x1, 0x1, 0x1fa, 0x0, r0})
r1 = io_uring_setup(0x292, &(0x7f0000000080)={0x0, 0x46a1, 0x4, 0x2, 0x11c})
mmap$IORING_OFF_SQES(&(0x7f0000fef000/0x2000)=nil, 0x2000, 0x2000002, 0x80010, r1, 0x10000000)

[ 1511.722510][T10678] RSP: 002b:00007f9f987a9108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1511.731023][T10678] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9
[ 1511.738985][T10678] RDX: 0000000020ffd000 RSI: 0000000020000140 RDI: 0000000000004b26
[ 1511.746951][T10678] RBP: 0000000020000140 R08: 0000000020000200 R09: 0000000020000200
[ 1511.754947][T10678] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000200
[ 1511.762988][T10678] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020fff000
14:59:36 executing program 2:
r0 = epoll_create(0x1)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x300, r3, &(0x7f0000000000)={0x90002008})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r4, 0xc0603d06, 0x0)
ioctl$PTP_PIN_SETFUNC(r4, 0x40603d07, &(0x7f0000000200)={'\x00', 0x101, 0x3, 0x6f3})
sendmsg$IPSET_CMD_GET_BYINDEX(r1, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x2c, 0xf, 0x6, 0x101, 0x0, 0x0, {0x5, 0x0, 0x4}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_INDEX={0x6, 0xb, 0xffffffffffffffff}, @IPSET_ATTR_INDEX={0x6, 0xb, 0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20040000}, 0x20040044)
pipe(&(0x7f0000000040)={<r5=>0xffffffffffffffff})
ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r5, 0x80045301, &(0x7f00000000c0))
r6 = getpid()
sched_setattr(r6, &(0x7f0000000300)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r7, 0x894c, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
kcmp$KCMP_EPOLL_TFD(0xffffffffffffffff, r6, 0x7, r8, &(0x7f0000000280)={r0, r9, 0x1})

14:59:36 executing program 0:
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
r1 = io_uring_setup(0x6f2e, &(0x7f0000000000)={0x0, 0xc75a, 0x0, 0x0, 0x0, 0x0, r0})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x10004000)

14:59:36 executing program 5 (fault-call:2 fault-nth:17):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:36 executing program 3 (fault-call:3 fault-nth:92):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:36 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3d6, 0x0)

14:59:36 executing program 1:
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x2000)=nil, 0x2000, 0x2000002, 0x11, r0, 0x10000000)

[ 1512.102386][T10718] FAULT_INJECTION: forcing a failure.
[ 1512.102386][T10718] name failslab, interval 1, probability 0, space 0, times 0
[ 1512.115036][T10718] CPU: 1 PID: 10718 Comm: syz-executor.5 Not tainted 5.14.0-rc5-syzkaller #0
[ 1512.123795][T10718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1512.133851][T10718] Call Trace:
[ 1512.137229][T10718]  dump_stack_lvl+0xb7/0x103
[ 1512.141902][T10718]  dump_stack+0x11/0x1a
[ 1512.146053][T10718]  should_fail+0x23c/0x250
14:59:36 executing program 0:
r0 = io_uring_setup(0x6f30, &(0x7f0000000080)={0x0, 0xffffffff, 0x0, 0x1, 0x80})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r2, 0x10000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000040))
ioctl$PTP_PIN_SETFUNC(r1, 0x40603d07, &(0x7f0000000440)={'\x00', 0x800, 0x0, 0x7})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2, 0x8010, r0, 0x10000000)
kexec_load(0x6, 0x4, &(0x7f00000003c0)=[{&(0x7f0000000100)="b16252356aede298be9a27909711c01f5f83e1333002ca7d9b61f19512fb9d339fc33012e8d7b66eadc033499f9c2b2f86802083204c42395bd904e6f47fbde5eb3e073f0c21d3f7562384cf77a345778ddcd2811135b89f45f288bc505103ec9a95561a4c1fb4ce3f58f1f2a4c0b91cdb756005ee42c4d2d822a2b67c5ec876794ccb1100f3801b7fa12fb43668890b51e4a626fe0dd29e40890007c688dc6fad0d7884de3b6180d2629f35668f40801c63fe9a91b61249f646c43e59a18ec8719b4fc054f3467f5c62fd96282511c7ac1785377f10f178a47900967ae0", 0xde, 0x3, 0x6}, {&(0x7f0000000200)="c3ee09f44cb11550dfa1e83b218397c7bee584c0741d07494669e03282262b0dab680be939961d0ff6cd0dc0d02cc9e2f512ff09be1c716bb655dbe95f3273aaa89e5a8de01b37f418eb4f1af9c0455843c17a36fb5cdc8152008df7fa27034bef35e78807fc1bf76a38c126034240438b1b1478abb537b55722a1d8a4c39cdabe215618d5c14ed78213ff852b9f50965a817093e7b2a03850f0d0077fde85d698be99e96c923d1726c08b55e200289bf383707359027f92c2a092936bae0f251c0fcbaf01267d88584a1334f197f853a907539650a4c7775895d1501216f8120481ec6990", 0xe5, 0x1ff, 0x6}, {&(0x7f0000000300)="bdf3d5ad9af3aaa8d9b11d35eb204888084c1bc8ec71fd5ae5f2d6b22e0481053039011e0f039921083eb02930228348ebe3650553bb439b2f19e5c1f4dc24f266ae54a374c9faa41b29264c00fb9176b0072bed8155dbd193ad7af393b4196c0781b475be6b80c39fbf3d546cf4732e414b76746d0f2b696f077434b334e296c3443be6ae7e4aa0a2ae089b00da6a1bb32538cb15ba978b52a3a3215efecc533452b60961120795fc", 0xa9, 0x6, 0x8}, {&(0x7f0000000000)="382059d3101c4ab93a5fda7fb319a6517e7c1e65cdad", 0x16, 0x6, 0x9}], 0x2)

14:59:36 executing program 0:
r0 = io_uring_setup(0x4ecc, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0xffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
ioctl$SCSI_IOCTL_BENCHMARK_COMMAND(0xffffffffffffffff, 0x3)

[ 1512.150478][T10718]  __should_failslab+0x81/0x90
[ 1512.155243][T10718]  ? io_uring_add_tctx_node+0xdc/0x200
[ 1512.160704][T10718]  should_failslab+0x5/0x20
[ 1512.165211][T10718]  kmem_cache_alloc_trace+0x49/0x310
[ 1512.170504][T10718]  ? xa_load+0x249/0x260
[ 1512.174754][T10718]  io_uring_add_tctx_node+0xdc/0x200
[ 1512.180039][T10718]  io_uring_create+0x17a0/0x1940
[ 1512.184977][T10718]  ? vfs_write+0x50c/0x770
[ 1512.189393][T10718]  __x64_sys_io_uring_setup+0xe1/0x120
[ 1512.194856][T10718]  do_syscall_64+0x3d/0x90
[ 1512.199319][T10718]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1512.205218][T10718] RIP: 0033:0x4665e9
[ 1512.209113][T10718] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1512.228735][T10718] RSP: 002b:00007f9f987a9108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1512.237141][T10718] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9
[ 1512.245105][T10718] RDX: 0000000020ffd000 RSI: 0000000020000140 RDI: 0000000000004b26
14:59:36 executing program 1:
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$clear(0x7, r0)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff})
r2 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$link(0x8, 0x0, r2)
keyctl$restrict_keyring(0x1d, r2, &(0x7f0000000140)='syzkaller\x00', &(0x7f0000000180)='}()@,*\x00')
r3 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$link(0x8, 0x0, r3)
keyctl$link(0x8, r3, r0)
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r1, 0x10000000)
r4 = request_key(&(0x7f0000000080)='id_resolver\x00', &(0x7f00000000c0)={'syz', 0x2}, &(0x7f0000000100)='#(-,.\xee}\x00', r0)
keyctl$KEYCTL_MOVE(0x1e, r4, r0, r0, 0x0)
r5 = add_key$keyring(&(0x7f00000001c0), &(0x7f0000000200)={'syz', 0x3}, 0x0, 0x0, r0)
r6 = request_key(&(0x7f00000002c0)='id_resolver\x00', &(0x7f0000000300)={'syz', 0x3}, &(0x7f0000000340)='syzkaller\x00', r2)
r7 = request_key(&(0x7f0000000380)='big_key\x00', &(0x7f00000003c0)={'syz', 0x0}, &(0x7f0000000400)='\\{.\xec:\x00', 0xfffffffffffffff8)
keyctl$KEYCTL_MOVE(0x1e, r5, r6, r7, 0x1)

14:59:36 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3d7, 0x0)

[ 1512.253137][T10718] RBP: 0000000020000140 R08: 0000000020000200 R09: 0000000020000200
[ 1512.261104][T10718] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000200
[ 1512.269071][T10718] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020fff000
14:59:36 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
openat$cgroup_procs(r1, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = syz_io_uring_setup(0x7205, &(0x7f0000000100)={0x0, 0x7a7, 0x4, 0x3, 0x330}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000180), &(0x7f00000001c0))
syz_io_uring_setup(0x19c6, &(0x7f0000000200)={0x0, 0x464d, 0x25, 0x3, 0x154, 0x0, r3}, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r2, &(0x7f0000000040)={0x90002008})
ioctl$PTP_CLOCK_GETCAPS(r2, 0x80503d01, &(0x7f0000000080))

14:59:36 executing program 0:
syslog(0x4, 0x0, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = io_uring_setup(0x4deb, &(0x7f0000000040)={0x0, 0x748f, 0x4, 0x2, 0x201, 0x0, r0})
pipe(&(0x7f00000000c0))
r2 = io_uring_setup(0x6f2e, &(0x7f0000000100)={0x0, 0x6259, 0x2, 0x3, 0x9b, 0x0, r1})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x10004000)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), r0)

[ 1512.339004][T10742] FAULT_INJECTION: forcing a failure.
[ 1512.339004][T10742] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1512.352079][T10742] CPU: 0 PID: 10742 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1512.360877][T10742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1512.370929][T10742] Call Trace:
[ 1512.374205][T10742]  dump_stack_lvl+0xb7/0x103
[ 1512.378792][T10742]  dump_stack+0x11/0x1a
[ 1512.382980][T10742]  should_fail+0x23c/0x250
[ 1512.387462][T10742]  should_fail_usercopy+0x16/0x20
[ 1512.392498][T10742]  copy_page_from_iter+0x1fe/0x530
[ 1512.397615][T10742]  process_vm_rw_single_vec+0x294/0x460
[ 1512.403151][T10742]  process_vm_rw+0x347/0x4e0
[ 1512.407726][T10742]  ? fsnotify_perm+0x59/0x2e0
[ 1512.412447][T10742]  ? __fsnotify_parent+0x32f/0x430
[ 1512.417612][T10742]  ? get_pid_task+0x8b/0xc0
[ 1512.422114][T10742]  ? vfs_write+0x50c/0x770
[ 1512.426516][T10742]  ? __fget_light+0x21b/0x260
[ 1512.431177][T10742]  ? __cond_resched+0x11/0x40
[ 1512.435924][T10742]  ? fput+0x2d/0x130
[ 1512.439805][T10742]  __x64_sys_process_vm_writev+0x76/0x90
[ 1512.445422][T10742]  do_syscall_64+0x3d/0x90
[ 1512.449824][T10742]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1512.455726][T10742] RIP: 0033:0x4665e9
[ 1512.459606][T10742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1512.479259][T10742] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:37 executing program 1:
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)

[ 1512.487655][T10742] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1512.495622][T10742] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a4c
[ 1512.503574][T10742] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1512.511527][T10742] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1512.519482][T10742] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:37 executing program 1:
add_key$keyring(&(0x7f0000000240), 0x0, 0x0, 0x0, 0xfffffffffffffffc)
r0 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$link(0x8, 0x0, r0)
keyctl$restrict_keyring(0x1d, r0, &(0x7f0000000000)='rxrpc_s\x00', &(0x7f0000000040)='keyring\x00')

14:59:37 executing program 5 (fault-call:2 fault-nth:18):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:37 executing program 3 (fault-call:3 fault-nth:93):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:37 executing program 0:
r0 = io_uring_setup(0x5e3d, &(0x7f0000000000)={0x0, 0xd174, 0x0, 0xffffffff})
r1 = syz_io_uring_setup(0xc90, &(0x7f00000000c0)={0x0, 0xe3f9, 0x1, 0x2, 0x17a, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180))
syz_io_uring_setup(0x40b0, &(0x7f00000001c0)={0x0, 0x9782, 0x1, 0x2, 0x69, 0x0, r1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000240), &(0x7f0000000280))
clock_gettime(0x7, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:37 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
r3 = openat$cgroup_netprio_ifpriomap(r2, &(0x7f0000000080), 0x2, 0x0)
write$cgroup_netprio_ifpriomap(r3, &(0x7f00000000c0)={'bond_slave_0', 0x32, 0x38}, 0xf)

14:59:37 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x200000, 0x0)
ioctl$PTP_SYS_OFFSET(r1, 0x43403d05, &(0x7f0000000040)={0x16})

14:59:37 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
epoll_wait(r2, &(0x7f0000000000)=[{}, {}], 0x2, 0x0)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r3, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT_REMOVE, 0xb6f1b91)
syz_io_uring_submit(r3, 0x0, &(0x7f00000000c0)=@IORING_OP_LINK_TIMEOUT={0xf, 0x4, 0x0, 0x0, 0x0, &(0x7f0000000080)={0x77359400}, 0x1, 0x1, 0x1}, 0xec29)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

[ 1512.628231][T10768] FAULT_INJECTION: forcing a failure.
[ 1512.628231][T10768] name failslab, interval 1, probability 0, space 0, times 0
[ 1512.640869][T10768] CPU: 1 PID: 10768 Comm: syz-executor.5 Not tainted 5.14.0-rc5-syzkaller #0
[ 1512.649629][T10768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1512.659679][T10768] Call Trace:
[ 1512.662955][T10768]  dump_stack_lvl+0xb7/0x103
[ 1512.667552][T10768]  dump_stack+0x11/0x1a
[ 1512.671709][T10768]  should_fail+0x23c/0x250
14:59:37 executing program 2:
r0 = epoll_create(0xffff2dc5)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

[ 1512.676132][T10768]  ? xas_create+0x96b/0xb30
[ 1512.680735][T10768]  __should_failslab+0x81/0x90
[ 1512.685492][T10768]  should_failslab+0x5/0x20
[ 1512.689995][T10768]  kmem_cache_alloc+0x46/0x2e0
[ 1512.694763][T10768]  ? should_fail+0xd6/0x250
[ 1512.699267][T10768]  xas_create+0x96b/0xb30
[ 1512.703598][T10768]  xas_store+0x70/0xca0
[ 1512.707755][T10768]  ? selinux_file_alloc_security+0x9c/0xb0
[ 1512.713626][T10768]  ? security_file_alloc+0x12e/0x190
[ 1512.718935][T10768]  ? percpu_counter_add_batch+0x69/0xd0
[ 1512.724492][T10768]  __xa_store+0xcb/0x320
[ 1512.728734][T10768]  xa_store+0x30/0x70
[ 1512.732734][T10768]  io_uring_add_tctx_node+0x111/0x200
[ 1512.738169][T10768]  io_uring_create+0x17a0/0x1940
[ 1512.743119][T10768]  ? vfs_write+0x50c/0x770
[ 1512.747540][T10768]  __x64_sys_io_uring_setup+0xe1/0x120
[ 1512.753008][T10768]  do_syscall_64+0x3d/0x90
[ 1512.757433][T10768]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1512.763323][T10768] RIP: 0033:0x4665e9
[ 1512.767201][T10768] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1512.786829][T10768] RSP: 002b:00007f9f987a9108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1512.795276][T10768] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9
[ 1512.803244][T10768] RDX: 0000000020ffd000 RSI: 0000000020000140 RDI: 0000000000004b26
[ 1512.804191][T10787] FAULT_INJECTION: forcing a failure.
[ 1512.804191][T10787] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1512.811213][T10768] RBP: 0000000020000140 R08: 0000000020000200 R09: 0000000020000200
[ 1512.811234][T10768] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000200
[ 1512.811246][T10768] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020fff000
[ 1512.848112][T10787] CPU: 0 PID: 10787 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1512.856926][T10787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1512.866972][T10787] Call Trace:
[ 1512.870244][T10787]  dump_stack_lvl+0xb7/0x103
[ 1512.874913][T10787]  dump_stack+0x11/0x1a
[ 1512.879050][T10787]  should_fail+0x23c/0x250
[ 1512.883495][T10787]  should_fail_usercopy+0x16/0x20
[ 1512.888523][T10787]  copy_page_from_iter+0x1fe/0x530
[ 1512.893664][T10787]  process_vm_rw_single_vec+0x294/0x460
[ 1512.899210][T10787]  process_vm_rw+0x347/0x4e0
[ 1512.903810][T10787]  ? fsnotify_perm+0x59/0x2e0
[ 1512.908488][T10787]  ? __fsnotify_parent+0x32f/0x430
[ 1512.913642][T10787]  ? get_pid_task+0x8b/0xc0
[ 1512.918142][T10787]  ? vfs_write+0x50c/0x770
[ 1512.922550][T10787]  ? __fget_light+0x21b/0x260
[ 1512.927233][T10787]  ? __cond_resched+0x11/0x40
[ 1512.931923][T10787]  ? fput+0x2d/0x130
[ 1512.935919][T10787]  __x64_sys_process_vm_writev+0x76/0x90
[ 1512.941551][T10787]  do_syscall_64+0x3d/0x90
[ 1512.945971][T10787]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1512.951866][T10787] RIP: 0033:0x4665e9
[ 1512.955758][T10787] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
14:59:37 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3d8, 0x0)

14:59:37 executing program 5 (fault-call:2 fault-nth:19):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:37 executing program 1:
r0 = mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, 0xffffffffffffffff, 0x10000000)
syz_io_uring_submit(0x0, r0, &(0x7f0000000000)=@IORING_OP_READ_FIXED={0x4, 0x5, 0x4007, @fd_index=0xa, 0x2, 0x8, 0xbe, 0x0, 0x0, {0x2}}, 0x9)

14:59:37 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x4058534c, &(0x7f0000000100)={0xac9, 0x2, 0x9, 0x200, 0x10000, 0x9})
r2 = getpid()
sched_setattr(r2, &(0x7f0000000300)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
r3 = getpid()
sched_setattr(r3, &(0x7f0000000300)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r5, 0xc0603d06, 0x0)
kcmp$KCMP_EPOLL_TFD(r2, r3, 0x7, r4, &(0x7f0000000000)={0xffffffffffffffff, r5, 0x9})

14:59:37 executing program 2:
epoll_create(0x8)
pipe(&(0x7f0000005500))

14:59:37 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r2, &(0x7f0000000040)={0x90002008})
ioctl$MON_IOCG_STATS(r1, 0x80089203, &(0x7f0000000000))

[ 1512.975479][T10787] RSP: 002b:00007f01019b2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1512.983938][T10787] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9
[ 1512.991996][T10787] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a4f
[ 1512.999967][T10787] RBP: 00007f01019b21d0 R08: 0000000000000001 R09: 0000000000000000
[ 1513.007936][T10787] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1513.015898][T10787] R13: 00007fff37ded8df R14: 00007f01019b2300 R15: 0000000000022000
[ 1513.050377][T10810] FAULT_INJECTION: forcing a failure.
[ 1513.050377][T10810] name failslab, interval 1, probability 0, space 0, times 0
[ 1513.063041][T10810] CPU: 1 PID: 10810 Comm: syz-executor.5 Not tainted 5.14.0-rc5-syzkaller #0
[ 1513.071857][T10810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1513.081907][T10810] Call Trace:
[ 1513.085176][T10810]  dump_stack_lvl+0xb7/0x103
[ 1513.089776][T10810]  dump_stack+0x11/0x1a
[ 1513.094003][T10810]  should_fail+0x23c/0x250
[ 1513.098485][T10810]  ? xas_create+0x96b/0xb30
[ 1513.103009][T10810]  __should_failslab+0x81/0x90
[ 1513.107765][T10810]  should_failslab+0x5/0x20
[ 1513.112295][T10810]  kmem_cache_alloc+0x46/0x2e0
[ 1513.117088][T10810]  ? xas_create+0x96b/0xb30
[ 1513.121592][T10810]  xas_create+0x96b/0xb30
[ 1513.125919][T10810]  xas_store+0x70/0xca0
[ 1513.130068][T10810]  ? selinux_file_alloc_security+0x9c/0xb0
[ 1513.135875][T10810]  ? security_file_alloc+0x12e/0x190
[ 1513.141156][T10810]  ? percpu_counter_add_batch+0x69/0xd0
[ 1513.146710][T10810]  __xa_store+0xcb/0x320
[ 1513.151023][T10810]  xa_store+0x30/0x70
[ 1513.155080][T10810]  io_uring_add_tctx_node+0x111/0x200
[ 1513.160560][T10810]  io_uring_create+0x17a0/0x1940
[ 1513.165521][T10810]  ? vfs_write+0x50c/0x770
[ 1513.169957][T10810]  __x64_sys_io_uring_setup+0xe1/0x120
[ 1513.175408][T10810]  do_syscall_64+0x3d/0x90
[ 1513.179824][T10810]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1513.185813][T10810] RIP: 0033:0x4665e9
14:59:37 executing program 3 (fault-call:3 fault-nth:94):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:37 executing program 0:
r0 = getpid()
sched_setattr(r0, &(0x7f0000000300)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
r1 = getpid()
sched_setattr(r1, &(0x7f0000000300)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
sched_setscheduler(r1, 0x1, &(0x7f0000000040)=0x1f)
kcmp$KCMP_EPOLL_TFD(r0, r1, 0x7, 0xffffffffffffffff, &(0x7f0000000000)={r2, 0xffffffffffffffff, 0x20})
r3 = io_uring_setup(0x6f2c, &(0x7f0000000100)={0x0, 0x0, 0x8, 0x0, 0x0, 0x0, r2})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r3, 0x10004000)

14:59:37 executing program 2:
ioctl$sock_inet6_tcp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000100))
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_dev$usbmon(&(0x7f0000000000), 0x71e2, 0x181242)
ioctl$MON_IOCG_STATS(r2, 0x80089203, &(0x7f0000000240))
ioctl$MON_IOCX_MFETCH(r2, 0xc0109207, &(0x7f00000000c0)={&(0x7f0000000080)=[0x0], 0x1, 0x100})
socket$inet6_tcp(0xa, 0x1, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DISCONNECT(r4, &(0x7f0000000740)={&(0x7f0000000600), 0xc, &(0x7f0000000700)={&(0x7f00000004c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000000000000003000000008000300b40100000000000000ed3bbfa0c87459e0c9e3b094ff105ca77c209e0ad399d7b529bbcb1200db", @ANYRES32=0x0, @ANYBLOB="0c950ac266e12ced541f4a0a"], 0x28}}, 0x0)
sendmsg$NL80211_CMD_SET_NOACK_MAP(r3, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="280000b15f0ddb7eef76ad3e2c31ac49bf5dd98b47aa1d069da8d4a457cf8aa4610117fc7425e4f110180cb60767296b2245791dadff9f6d17431ac387aa83a0d98acf4a3a05da174b85374c00384cd463b9a3f8e2a9f9aa1e811990b5fc74103d5d328823bde27d167a929b9ecd661195ae1983e45fa3e6b4930cda30a3fc6ae0b8a0afadaee8e0fb9d08ab6530d059bae62d1e28ef9bb703c182be8b18859616bebe5669d10d5c48e6ab413e92a898355ccc57fdb9a78e9c078bb6f96bf4596034585a684f238b", @ANYRES16=r5, @ANYBLOB="000125bd7000ffdbdf25570000000c009900810000004b0000000600950001800000"], 0x28}, 0x1, 0x0, 0x0, 0x200c0}, 0x8011)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})
r6 = epoll_create(0x4)
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f00000002c0), &(0x7f0000000380)=0x14)
pipe(&(0x7f0000005500)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r8, 0xc0603d06, 0x0)
sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r7, &(0x7f00000001c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000200)={&(0x7f0000000540)=ANY=[@ANYBLOB="44000000020701030000000000000000020000010c00034000000000000000000900010073797a31000000000c0f064000000000000000040c00024000000000000000087c9eaff9fd0342a5ac16e4d157a148ec45b5e2ffedfbbc2c5597d64cfb3086315926e6a9a272"], 0x44}}, 0x4044014)
epoll_ctl$EPOLL_CTL_DEL(r6, 0x2, r8)

14:59:37 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getpeername(r0, &(0x7f0000000080)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000100)=0x80)
io_uring_setup(0x2d9a, &(0x7f0000000000)={0x0, 0xbd63, 0x2, 0x1, 0x289, 0x0, r1})

[ 1513.189790][T10810] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1513.209452][T10810] RSP: 002b:00007f9f987a9108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1513.217896][T10810] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9
[ 1513.225869][T10810] RDX: 0000000020ffd000 RSI: 0000000020000140 RDI: 0000000000004b26
[ 1513.233920][T10810] RBP: 0000000020000140 R08: 0000000020000200 R09: 0000000020000200
[ 1513.241914][T10810] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000200
14:59:37 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3d9, 0x0)

14:59:37 executing program 1:
get_thread_area(&(0x7f0000000000)={0x9, 0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1})
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)

14:59:37 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
r1 = getpid()
sched_setattr(r1, &(0x7f0000000300)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
rt_sigqueueinfo(r1, 0x11, &(0x7f0000000000)={0x0, 0x9, 0x1})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

[ 1513.249875][T10810] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020fff000
[ 1513.276683][T10828] __nla_validate_parse: 2 callbacks suppressed
[ 1513.276696][T10828] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1513.329006][T10843] FAULT_INJECTION: forcing a failure.
[ 1513.329006][T10843] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1513.342425][T10843] CPU: 1 PID: 10843 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1513.351185][T10843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1513.361231][T10843] Call Trace:
[ 1513.364505][T10843]  dump_stack_lvl+0xb7/0x103
[ 1513.369126][T10843]  dump_stack+0x11/0x1a
[ 1513.373312][T10843]  should_fail+0x23c/0x250
14:59:37 executing program 5 (fault-call:2 fault-nth:20):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:37 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0xf000)=nil, 0xf000, 0x10, 0x101810, r0, 0x10000000)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000000)={&(0x7f0000ffe000/0x1000)=nil, 0x1000}, &(0x7f0000000040)=0x10)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r1, 0x40505330, &(0x7f0000000080)={{0x9, 0xff}, {0x1, 0x1f}, 0x0, 0x1, 0x1})

14:59:38 executing program 0:
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
sendmsg$IPCTNL_MSG_EXP_GET(r1, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[], 0x80}, 0x1, 0x0, 0x0, 0x4c042}, 0x24000011)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f00000002c0)={&(0x7f0000ffe000/0x2000)=nil, 0x2000}, &(0x7f0000000300)=0x10)
epoll_pwait(r0, &(0x7f0000000000)=[{}, {}, {}], 0x3, 0x101, &(0x7f0000000040)={[0x100]}, 0x8)
r3 = io_uring_setup(0x5340, &(0x7f00000001c0)={0x0, 0xfffffff7, 0x8, 0x1})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r3, 0x10004000)
syz_io_uring_setup(0x3851, &(0x7f0000000100)={0x0, 0x8240, 0x2, 0x1, 0xcb, 0x0, r2}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000340), &(0x7f0000000380))
kexec_load(0x5, 0x1, &(0x7f00000000c0)=[{&(0x7f0000000080)="82067b24f73f18c43dcb0518fc633f68f7ed385469d7a9e688959145e81192c2a102a99735f0db54f71b2b2adcfe3189c2acb0", 0x33, 0xc38, 0x7ff}], 0xa0000)

[ 1513.377732][T10843]  should_fail_usercopy+0x16/0x20
[ 1513.382758][T10843]  copy_page_from_iter+0x1fe/0x530
[ 1513.387945][T10843]  process_vm_rw_single_vec+0x294/0x460
[ 1513.393499][T10843]  process_vm_rw+0x347/0x4e0
[ 1513.398114][T10843]  ? fsnotify_perm+0x59/0x2e0
[ 1513.402794][T10843]  ? __fsnotify_parent+0x32f/0x430
[ 1513.407916][T10843]  ? get_pid_task+0x8b/0xc0
[ 1513.412417][T10843]  ? vfs_write+0x50c/0x770
[ 1513.416827][T10843]  ? __fget_light+0x21b/0x260
[ 1513.421498][T10843]  ? __cond_resched+0x11/0x40
[ 1513.426185][T10843]  ? fput+0x2d/0x130
[ 1513.430073][T10843]  __x64_sys_process_vm_writev+0x76/0x90
[ 1513.435705][T10843]  do_syscall_64+0x3d/0x90
[ 1513.440228][T10843]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1513.446121][T10843] RIP: 0033:0x4665e9
[ 1513.450015][T10843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1513.454944][T10855] FAULT_INJECTION: forcing a failure.
[ 1513.454944][T10855] name failslab, interval 1, probability 0, space 0, times 0
[ 1513.469623][T10843] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1513.469648][T10843] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1513.498603][T10843] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a51
[ 1513.506562][T10843] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1513.514522][T10843] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1513.522475][T10843] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
[ 1513.530433][T10855] CPU: 0 PID: 10855 Comm: syz-executor.5 Not tainted 5.14.0-rc5-syzkaller #0
[ 1513.539193][T10855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1513.549249][T10855] Call Trace:
[ 1513.552522][T10855]  dump_stack_lvl+0xb7/0x103
[ 1513.557182][T10855]  dump_stack+0x11/0x1a
[ 1513.561353][T10855]  should_fail+0x23c/0x250
[ 1513.565771][T10855]  ? xas_create+0x96b/0xb30
[ 1513.570303][T10855]  __should_failslab+0x81/0x90
[ 1513.575153][T10855]  should_failslab+0x5/0x20
[ 1513.579724][T10855]  kmem_cache_alloc+0x46/0x2e0
[ 1513.584515][T10855]  ? xas_create+0x96b/0xb30
[ 1513.589018][T10855]  xas_create+0x96b/0xb30
[ 1513.593428][T10855]  xas_store+0x70/0xca0
[ 1513.597579][T10855]  ? selinux_file_alloc_security+0x9c/0xb0
[ 1513.603479][T10855]  ? security_file_alloc+0x12e/0x190
[ 1513.608924][T10855]  ? percpu_counter_add_batch+0x69/0xd0
[ 1513.614542][T10855]  __xa_store+0xcb/0x320
[ 1513.618091][T10828] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1513.618833][T10855]  xa_store+0x30/0x70
[ 1513.632101][T10855]  io_uring_add_tctx_node+0x111/0x200
[ 1513.637468][T10855]  io_uring_create+0x17a0/0x1940
[ 1513.642410][T10855]  __x64_sys_io_uring_setup+0xe1/0x120
[ 1513.647870][T10855]  do_syscall_64+0x3d/0x90
[ 1513.652505][T10855]  ? irqentry_exit+0xe/0x30
[ 1513.657164][T10855]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1513.663062][T10855] RIP: 0033:0x4665e9
[ 1513.666958][T10855] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1513.686659][T10855] RSP: 002b:00007f9f987a9108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1513.695121][T10855] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9
[ 1513.703094][T10855] RDX: 0000000020ffd000 RSI: 0000000020000140 RDI: 0000000000004b26
[ 1513.711149][T10855] RBP: 0000000020000140 R08: 0000000020000200 R09: 0000000020000200
[ 1513.719115][T10855] R10: 00000000200001c0 R11: 0000000000000202 R12: 0000000020000200
14:59:38 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_DISCONNECT(r2, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x58, 0x0, 0x300, 0x70bd28, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x1, 0x13}}}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x3f}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2c}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2a}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x3f}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x1a}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x1d}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x10}]}, 0x58}, 0x1, 0x0, 0x0, 0x4000000}, 0x41)
epoll_wait(r1, &(0x7f0000000000)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], 0xa, 0x3)

14:59:38 executing program 3 (fault-call:3 fault-nth:95):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:38 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3da, 0x0)

14:59:38 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

[ 1513.727087][T10855] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020fff000
14:59:38 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
r1 = io_uring_setup(0x6b9, &(0x7f0000000000)={0x0, 0x14d6, 0x20, 0x1, 0xb5, 0x0, r0})
sendmsg$IPSET_CMD_HEADER(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000780)={0x6c, 0xc, 0x6, 0x801, 0x0, 0x0, {0x2, 0x0, 0x2}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x6c}, 0x1, 0x0, 0x0, 0x440d1}, 0x44)
read$ptp(0xffffffffffffffff, &(0x7f0000000500)=""/179, 0xb3)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x2810, r1, 0x10004000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_io_uring_setup(0x6d8c, &(0x7f0000000840)={0x0, 0x9d41, 0x2, 0x1, 0x20c, 0x0, r1}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000008c0), &(0x7f0000000900))
syz_io_uring_setup(0x825, &(0x7f0000000940)={0x0, 0xc125, 0x8, 0x1, 0x2b4, 0x0, r3}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f00000009c0), &(0x7f0000000a00))
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DISCONNECT(r4, &(0x7f0000000740)={&(0x7f0000000600), 0xc, &(0x7f0000000700)={&(0x7f0000000680)={0x28, r5, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @val={0xc}}}}, 0x28}}, 0x0)
sendmsg$NL80211_CMD_UPDATE_OWE_INFO(r2, &(0x7f00000004c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000480)={&(0x7f0000000140)={0x334, r5, 0x100, 0x70bd2a, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_IE={0x1c3, 0x2a, [@mesh_config={0x71, 0x7, {0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0x1, 0x41}}, @perr={0x84, 0x9b, {0x67, 0x9, [@not_ext={{}, @broadcast, 0x1000, "", 0x32}, @ext={{}, @broadcast, 0x7, @device_a, 0x30}, @ext={{}, @device_b, 0x9, @broadcast, 0x2d}, @ext={{}, @device_b, 0x3000, @device_b, 0x30}, @ext={{}, @device_b, 0x5, @broadcast, 0x9}, @not_ext={{}, @device_b, 0x7}, @not_ext={{}, @device_a, 0x10001, "", 0xb}, @ext={{}, @broadcast, 0xbf2b, @device_b, 0x36}, @ext={{}, @device_b, 0x4, @broadcast, 0x1f}]}}, @fast_bss_trans={0x37, 0xa7, {0x1, 0x4, "d673ace69fc7c01aefc68f86889afd70", "f9c316c655fc7cc89acb6725affa3788fb279a7cccab9f899249020d331464c1", "40b8b5e093bde43765bd415c8a3eae4c8c61f9fab7e603411eae2626b9d94842", [{0x4, 0xc, "de8210252c29b584bacb98d1"}, {0x3, 0x18, "4704dd401aced45372a182f7ea54d4c8f345143c4e1913b0"}, {0x2, 0x2, "0784"}, {0x4, 0x27, "637cc040ae42c0fcb56e11d337ff73f8ab9264908ecff9ce4cf2f3fab5d087b1cc8fff2f29297e"}]}}, @link_id={0x65, 0x12, {@from_mac=@broadcast, @broadcast}}, @challenge={0x10, 0x1, 0xe0}, @dsss={0x3, 0x1, 0x38}, @dsss={0x3, 0x1, 0x3}, @preq={0x82, 0x46, @not_ext={{0x1, 0x1, 0x1}, 0x20, 0x7f, 0x2, @broadcast, 0x2, "", 0x8, 0x8, 0x4, [{{}, @broadcast, 0xeba3}, {{0x1}, @device_a, 0x6}, {{}, @broadcast, 0x80}, {{0x1}, @broadcast, 0x8000}]}}, @mesh_id={0x72, 0x6}, @sec_chan_ofs={0x3e, 0x1}]}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x32}, @NL80211_ATTR_IE={0xfb, 0x2a, [@ibss={0x6, 0x2}, @random={0x3f, 0x4d, "38162a7e554a36e16d6ca6e0b558556bd7e9aea8fd0c27cf5fb3ba65a22a32cc52de1cf5b6decbad3d38caa36443223761924d589b03daff36e1cd385c8520c414f21660b516519f5a12042f11"}, @mesh_id={0x72, 0x6}, @ssid={0x0, 0x6, @default_ap_ssid}, @random={0x3f, 0x8a, "7c0cb4d5b18024fd0553828bb1cd7b99dcd0daca7eb596d268460bde9252f64e670c11d86ff502e02db1f2c2dac63bf2cdade0432167dc81c9dbce4d3007c8218d2ea0be00e2de52249f17a73066e188bac8689fb78c3e6d789e3cd3ceb7a3fce93ea42862e3f7af6941bf68da6ddc822ad61daf8525b6c34059d1cc9a9e8fcb401c70dd6ba227c463ad"}, @cf={0x4, 0x6, {0x8, 0xe0, 0x0, 0xfff}}]}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x1d}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_IE={0x1e, 0x2a, [@perr={0x84, 0x15, {0x6, 0x1, [@ext={{}, @device_a, 0x7, @device_b, 0x9}]}}, @challenge={0x10, 0x1, 0x50}]}]}, 0x334}, 0x1, 0x0, 0x0, 0x4000004}, 0x20040000)

14:59:38 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(r1, 0x89f4, &(0x7f0000000080)={'sit0\x00', &(0x7f0000000000)={'sit0\x00', 0x0, 0x2f, 0x45, 0x2, 0xfff, 0x31, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @remote, 0xa05a728a79118ed5, 0x7800, 0xf80, 0xff}})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)

14:59:38 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(r0, 0xc0a85322, &(0x7f0000000000))

[ 1513.841063][T10892] FAULT_INJECTION: forcing a failure.
[ 1513.841063][T10892] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1513.854127][T10892] CPU: 0 PID: 10892 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1513.862889][T10892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1513.873017][T10892] Call Trace:
[ 1513.876410][T10892]  dump_stack_lvl+0xb7/0x103
[ 1513.880998][T10892]  dump_stack+0x11/0x1a
[ 1513.885153][T10892]  should_fail+0x23c/0x250
[ 1513.889645][T10892]  should_fail_usercopy+0x16/0x20
[ 1513.894721][T10892]  copy_page_from_iter+0x1fe/0x530
[ 1513.899841][T10892]  process_vm_rw_single_vec+0x294/0x460
[ 1513.905415][T10892]  process_vm_rw+0x347/0x4e0
[ 1513.910006][T10892]  ? fsnotify_perm+0x59/0x2e0
[ 1513.914688][T10892]  ? __fsnotify_parent+0x32f/0x430
[ 1513.919795][T10892]  ? get_pid_task+0x8b/0xc0
[ 1513.924296][T10892]  ? vfs_write+0x50c/0x770
[ 1513.928789][T10892]  ? __fget_light+0x21b/0x260
[ 1513.933459][T10892]  ? __cond_resched+0x11/0x40
14:59:38 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r2, &(0x7f0000000040)={0x90002008})
r3 = accept(r2, &(0x7f0000000080)=@ieee802154, &(0x7f0000000000)=0x80)
r4 = epoll_create1(0x80000)
kcmp$KCMP_EPOLL_TFD(0xffffffffffffffff, 0xffffffffffffffff, 0x7, r3, &(0x7f0000000100)={r4, r1, 0x1})

14:59:38 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
syz_io_uring_setup(0x3b91, &(0x7f0000000000)={0x0, 0xc89, 0x1, 0x2, 0x360, 0x0, r1}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000140))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

[ 1513.938143][T10892]  ? fput+0x2d/0x130
[ 1513.942042][T10892]  __x64_sys_process_vm_writev+0x76/0x90
[ 1513.947672][T10892]  do_syscall_64+0x3d/0x90
[ 1513.952115][T10892]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1513.958011][T10892] RIP: 0033:0x4665e9
[ 1513.961972][T10892] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1513.981582][T10892] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:38 executing program 5 (fault-call:2 fault-nth:21):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:38 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3db, 0x0)

14:59:38 executing program 0:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT_REMOVE, 0xb6f1b91)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
r2 = syz_io_uring_setup(0x2311, &(0x7f0000000040), &(0x7f00007db000/0x4000)=nil, &(0x7f00007dd000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
r3 = mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x0, 0x13, r2, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r4, r3, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
syz_io_uring_submit(r1, r3, &(0x7f0000000500)=@IORING_OP_STATX={0x15, 0x4, 0x0, 0xffffffffffffff9c, &(0x7f0000000100), &(0x7f0000000000)='./file0\x00', 0x800, 0x400}, 0xff)
pipe(&(0x7f00000004c0))
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x14, 0x4, 0x1, 0x201, 0x0, 0x0, {0x7}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x40040)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x260200)
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r5, 0xc08c5336, &(0x7f0000000300)={0x2, 0x7fff, 0x0, 'queue1\x00', 0x10001})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r6, 0xc0603d06, 0x0)
ioctl$PTP_PIN_SETFUNC2(r6, 0x40603d10, &(0x7f0000000280)={'\x00', 0x20, 0x3, 0x901})

[ 1513.989992][T10892] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1513.997987][T10892] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a54
[ 1514.005958][T10892] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1514.013930][T10892] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1514.021891][T10892] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:38 executing program 0:
rt_sigqueueinfo(0x0, 0x1e, &(0x7f0000000000)={0x3c, 0x4, 0x5})
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

[ 1514.056711][T10919] FAULT_INJECTION: forcing a failure.
[ 1514.056711][T10919] name failslab, interval 1, probability 0, space 0, times 0
[ 1514.069344][T10919] CPU: 0 PID: 10919 Comm: syz-executor.5 Not tainted 5.14.0-rc5-syzkaller #0
[ 1514.078113][T10919] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1514.088235][T10919] Call Trace:
[ 1514.091508][T10919]  dump_stack_lvl+0xb7/0x103
[ 1514.096106][T10919]  dump_stack+0x11/0x1a
[ 1514.100267][T10919]  should_fail+0x23c/0x250
[ 1514.104681][T10919]  ? vm_area_dup+0x44/0x120
[ 1514.109172][T10919]  __should_failslab+0x81/0x90
[ 1514.114001][T10919]  should_failslab+0x5/0x20
[ 1514.118536][T10919]  kmem_cache_alloc+0x46/0x2e0
[ 1514.123342][T10919]  vm_area_dup+0x44/0x120
[ 1514.127672][T10919]  ? kmem_cache_alloc+0x1fb/0x2e0
[ 1514.132726][T10919]  ? xas_create+0x96b/0xb30
[ 1514.137286][T10919]  ? xas_create+0xae3/0xb30
[ 1514.141788][T10919]  __split_vma+0x82/0x320
[ 1514.146119][T10919]  ? vmacache_find+0x2df/0x320
[ 1514.150940][T10919]  __do_munmap+0x27c/0x1330
14:59:38 executing program 3 (fault-call:3 fault-nth:96):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:38 executing program 2:
r0 = epoll_create(0x8)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r0, &(0x7f0000000000)={0x10000019})
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r2)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_NOACK_MAP(r1, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x4c, r3, 0x100, 0x70bd28, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x20}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x3f}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xff}, @NL80211_ATTR_NOACK_MAP={0x6}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x4}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x3}]}, 0x4c}, 0x1, 0x0, 0x0, 0x800}, 0xa0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r2, &(0x7f0000000040)={0x90002008})

14:59:38 executing program 1:
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), r1)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x54, r2, 0x200, 0x70bd2d, 0x25dfdbfc, {}, [@BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x5}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x1}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x2}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x80000001}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x9f}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x800}]}, 0x54}, 0x1, 0x0, 0x0, 0x40414}, 0x4008040)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(r1, 0x89f4, &(0x7f0000000480)={'syztnl2\x00', &(0x7f0000000400)={'ip6tnl0\x00', <r3=>0x0, 0x4, 0x1, 0x40, 0x8, 0x1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @ipv4={'\x00', '\xff\xff', @empty}, 0x7800, 0x7800, 0x6, 0x3}})
sendmsg$BATADV_CMD_GET_NEIGHBORS(r0, &(0x7f0000000580)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000004c0)={0x4c, r2, 0x8, 0x70bd2c, 0x25dfdbfb, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0xd62}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r3}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0xeb}, @BATADV_ATTR_BONDING_ENABLED={0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40}, 0x40061)
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
r4 = syz_io_uring_setup(0x6d26, &(0x7f00000001c0)={0x0, 0x3981, 0x20, 0x1, 0x29f}, &(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ff0000/0x1000)=nil, &(0x7f0000000240), &(0x7f0000000280))
syz_io_uring_setup(0x1e26, &(0x7f00000002c0)={0x0, 0x98d3, 0x1, 0x0, 0x2b7, 0x0, r4}, &(0x7f0000fed000/0x4000)=nil, &(0x7f0000fee000/0x1000)=nil, &(0x7f0000000340), &(0x7f0000000380))

[ 1514.155445][T10919]  ? __xas_nomem+0xfc/0x270
[ 1514.159951][T10919]  mmap_region+0x5aa/0x1400
[ 1514.164459][T10919]  do_mmap+0x73f/0xc40
[ 1514.168524][T10919]  vm_mmap_pgoff+0xf9/0x1d0
[ 1514.173022][T10919]  ksys_mmap_pgoff+0x2a8/0x380
[ 1514.177803][T10919]  do_syscall_64+0x3d/0x90
[ 1514.182264][T10919]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1514.188169][T10919] RIP: 0033:0x466632
14:59:38 executing program 0:
r0 = io_uring_setup(0x2128, &(0x7f0000000080)={0x0, 0x0, 0x10})
r1 = syz_io_uring_setup(0x3341, &(0x7f0000000300)={0x0, 0x8f05, 0x10, 0x0, 0xf4}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000380), &(0x7f00000003c0))
syz_io_uring_setup(0x1cb1, &(0x7f0000000000)={0x0, 0xa232, 0x4, 0x3, 0x38a, 0x0, r0}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140))
r3 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x2000000, 0x2010, r0, 0x10000000)
syz_io_uring_setup(0x6ae6, &(0x7f0000000400)={0x0, 0x3174, 0x8, 0x3, 0x2f9, 0x0, r1}, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000480)=<r4=>0x0, &(0x7f00000007c0))
syz_io_uring_setup(0x214, &(0x7f0000000800)={0x0, 0xd4c, 0x10, 0x3, 0x2f1, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000880), &(0x7f00000008c0)=<r5=>0x0)
r6 = syz_io_uring_setup(0x19a9, &(0x7f00000009c0)={0x0, 0x8fb5, 0x20, 0x1, 0x8f, 0x0, r1}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000000a40), &(0x7f0000000a80))
syz_io_uring_submit(r4, r5, &(0x7f0000000ac0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd=r1, 0x0, 0x0, 0x0, 0x1, 0x0, {0x0, 0x0, r6}}, 0x5)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffffff, &(0x7f0000000180), &(0x7f0000000280)='./file0\x00', 0x0, 0x2000, 0x1}, 0x7f)
getpeername(0xffffffffffffffff, &(0x7f00000004c0)=@pppol2tp={0x18, 0x1, {0x0, <r7=>0xffffffffffffffff, {0x2, 0x0, @loopback}}}, &(0x7f0000000540)=0x80)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r8, 0xc0603d06, 0x0)
sendmsg$nl_netfilter(r7, &(0x7f0000000780)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000740)={&(0x7f00000005c0)={0x178, 0xf, 0x5, 0x401, 0x70bd25, 0x25dfdbfd, {0x5, 0x0, 0x9}, [@typed={0x8, 0x48, 0x0, 0x0, @fd=r8}, @nested={0x15a, 0xe, 0x0, 0x1, [@generic="d1cf8ed8fe8a1feadd91ee50cad4fcac4b2ffa05ef4f0cc90cc85f18", @typed={0x4, 0x2a}, @generic="fe24efeb05e035ba2f6b022183f1e626f530b68a824793d2e266c99b0831fa5e7a514f0ce7ee1e", @generic="7bd50530c03d6f60bcd6b3e873f3b3194afb5a014c3d3a98b675023df6dbf6e9a5e4f168847664ea41581b683b96664928469b1776ea0acb909a8cbeb3c8d787c319efe6211b3ece", @generic="c82187d4fd130f3e27eb64e9d844c52535f5720af7e10636b7c82ad53bf4e274d90894476c129ed2a76ca3c191f19696fa5497ca5f3c93749cce587e41a144414084ea1c2046961b0e41b14aac03d91478b6bd6f7ed33945b6d7344100241a616eff9827295c0e7460a47f746f708e735028f7f26aa36d97843d7b71df3e856afb5ba165b18e8c6a72c6e2defc8a95", @generic="4a8509984b03d041f061e5973a17def09927ed56bb4831fa54a7f11163", @typed={0x8, 0x67, 0x0, 0x0, @fd=r1}, @generic="8eb400d6401466cf5185695d5fe46d4e87cd04"]}]}, 0x178}, 0x1, 0x0, 0x0, 0x8000}, 0x24040008)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

[ 1514.192061][T10919] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64
[ 1514.211665][T10919] RSP: 002b:00007f9f987a90f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 1514.220246][T10919] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 0000000000466632
[ 1514.228220][T10919] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020fff000
[ 1514.236188][T10919] RBP: 0000000020fff000 R08: 0000000000000005 R09: 0000000000000000
[ 1514.244209][T10919] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000200
14:59:38 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3dc, 0x0)

[ 1514.252170][T10919] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020fff000
14:59:38 executing program 1:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x400442)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000000040)={{0x0, 0x5}, 'port0\x00', 0x62, 0x121000, 0x8, 0xdfa1, 0x2, 0x4, 0x4, 0x0, 0x2, 0x80})
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r1, 0x10000000)

14:59:38 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$SCSI_IOCTL_DOORLOCK(r1, 0x5380)
ioctl$PTP_SYS_OFFSET_EXTENDED(r1, 0xc4c03d09, &(0x7f0000000080)={0xe})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

14:59:38 executing program 0:
r0 = io_uring_setup(0x6f2f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x23c})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
getuid()

[ 1514.342429][T10952] FAULT_INJECTION: forcing a failure.
[ 1514.342429][T10952] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1514.355516][T10952] CPU: 0 PID: 10952 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1514.364302][T10952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1514.374348][T10952] Call Trace:
[ 1514.377618][T10952]  dump_stack_lvl+0xb7/0x103
[ 1514.382261][T10952]  dump_stack+0x11/0x1a
[ 1514.386407][T10952]  should_fail+0x23c/0x250
[ 1514.390829][T10952]  should_fail_usercopy+0x16/0x20
[ 1514.395848][T10952]  copy_page_from_iter+0x1fe/0x530
[ 1514.400972][T10952]  process_vm_rw_single_vec+0x294/0x460
[ 1514.406518][T10952]  process_vm_rw+0x347/0x4e0
[ 1514.411161][T10952]  ? fsnotify_perm+0x59/0x2e0
[ 1514.415915][T10952]  ? __fsnotify_parent+0x32f/0x430
[ 1514.421020][T10952]  ? get_pid_task+0x8b/0xc0
[ 1514.425521][T10952]  ? vfs_write+0x50c/0x770
[ 1514.429939][T10952]  ? __fget_light+0x21b/0x260
[ 1514.434613][T10952]  ? __cond_resched+0x11/0x40
14:59:39 executing program 5 (fault-call:2 fault-nth:22):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:39 executing program 2:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x300, r1, &(0x7f0000000040)={0x90002008})
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000180)={0x20, 0x100, 0x4, 0xb8d, 0x9}, 0x14)
r2 = socket(0x2, 0x5, 0x8)
sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r2, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="5c0000030000050c00024000000000000000da0c0003040c00034000000000000007ff080005400000000000080008000540000000010000000000000000000000000093cf00"/85], 0x5c}, 0x1, 0x0, 0x0, 0x24040888}, 0x24000000)
ioctl$MON_IOCQ_URB_LEN(r0, 0x9201)

14:59:39 executing program 1:
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SG_GET_TIMEOUT(r2, 0x2202, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
accept(r3, &(0x7f0000000080)=@ax25={{0x3, @bcast}, [@default, @default, @remote, @null, @rose, @remote, @remote, @default]}, &(0x7f0000000100)=0x80)
ioctl$SG_SET_RESERVED_SIZE(r1, 0x2275, &(0x7f0000000140)=0x5)
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)

[ 1514.439342][T10952]  ? fput+0x2d/0x130
[ 1514.443255][T10952]  __x64_sys_process_vm_writev+0x76/0x90
[ 1514.448961][T10952]  do_syscall_64+0x3d/0x90
[ 1514.453385][T10952]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1514.459282][T10952] RIP: 0033:0x4665e9
[ 1514.463168][T10952] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1514.482798][T10952] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:39 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x0, 0x10, 0x0, 0x245})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff})
ioctl$PTP_SYS_OFFSET_EXTENDED(r2, 0xc4c03d09, &(0x7f0000000140)={0x4})
openat$cgroup_procs(r1, &(0x7f0000000040)='cgroup.threads\x00', 0x2, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x8, 0x12, r3, 0x10000000)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2, 0x13, r0, 0x10000000)

[ 1514.491278][T10952] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1514.499245][T10952] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a57
[ 1514.507288][T10952] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1514.515263][T10952] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1514.523227][T10952] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
[ 1514.533196][T10976] FAULT_INJECTION: forcing a failure.
[ 1514.533196][T10976] name failslab, interval 1, probability 0, space 0, times 0
[ 1514.545854][T10976] CPU: 1 PID: 10976 Comm: syz-executor.5 Not tainted 5.14.0-rc5-syzkaller #0
[ 1514.555129][T10976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1514.565176][T10976] Call Trace:
[ 1514.568446][T10976]  dump_stack_lvl+0xb7/0x103
[ 1514.573061][T10976]  dump_stack+0x11/0x1a
[ 1514.577281][T10976]  should_fail+0x23c/0x250
[ 1514.581700][T10976]  ? vm_area_dup+0x44/0x120
[ 1514.586196][T10976]  __should_failslab+0x81/0x90
[ 1514.590964][T10976]  should_failslab+0x5/0x20
[ 1514.595476][T10976]  kmem_cache_alloc+0x46/0x2e0
[ 1514.600288][T10976]  vm_area_dup+0x44/0x120
[ 1514.604614][T10976]  ? kmem_cache_alloc+0x1fb/0x2e0
[ 1514.609631][T10976]  ? xas_create+0x96b/0xb30
[ 1514.614180][T10976]  ? xas_create+0xae3/0xb30
[ 1514.618692][T10976]  __split_vma+0x82/0x320
[ 1514.623022][T10976]  ? vmacache_find+0x2df/0x320
[ 1514.627785][T10976]  __do_munmap+0x27c/0x1330
[ 1514.632282][T10976]  ? __xas_nomem+0xfc/0x270
[ 1514.636810][T10976]  mmap_region+0x5aa/0x1400
14:59:39 executing program 3 (fault-call:3 fault-nth:97):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:39 executing program 0:
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0x40a85323, &(0x7f0000000100)={{0x1f, 0x2}, 'port0\x00', 0x47, 0x4, 0xff, 0x7f, 0xffff, 0xfffffc01})
io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x0, 0x4})
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000000)={{0x4}, {0x59, 0xff}, 0x1f, 0x0, 0x7})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(0xffffffffffffffff, 0x4040534e, &(0x7f00000001c0)={0x1a8, @tick=0x7fff, 0x6, {0xc1, 0x20}, 0x5, 0x0, 0x5})

14:59:39 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3dd, 0x0)

[ 1514.641305][T10976]  do_mmap+0x73f/0xc40
[ 1514.645506][T10976]  vm_mmap_pgoff+0xf9/0x1d0
[ 1514.650026][T10976]  ksys_mmap_pgoff+0x2a8/0x380
[ 1514.654849][T10976]  do_syscall_64+0x3d/0x90
[ 1514.659260][T10976]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1514.665149][T10976] RIP: 0033:0x466632
[ 1514.669032][T10976] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64
14:59:39 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
pipe(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$MON_IOCX_MFETCH(r1, 0xc0109207, &(0x7f0000000100)={&(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x5, 0x5})
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_WDS_PEER(r1, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x34, 0x0, 0x1, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8, 0x3, r3}, @val={0xc, 0x99, {0x4, 0x31}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@broadcast}]}, 0x34}, 0x1, 0x0, 0x0, 0x40000}, 0x40840)

[ 1514.688678][T10976] RSP: 002b:00007f9f987a90f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 1514.697088][T10976] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 0000000000466632
[ 1514.705167][T10976] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020fff000
[ 1514.713130][T10976] RBP: 0000000020fff000 R08: 0000000000000005 R09: 0000000000000000
[ 1514.721117][T10976] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000200
[ 1514.729077][T10976] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020fff000
14:59:39 executing program 0:
r0 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000180)={'tunl0\x00', &(0x7f0000000100)={'tunl0\x00', <r1=>0x0, 0x20, 0x700, 0x1ff, 0x4, {{0x15, 0x4, 0x0, 0x3, 0x54, 0x64, 0x0, 0x80, 0x2f, 0x0, @private=0xa010100, @multicast1, {[@lsrr={0x83, 0x2b, 0x6d, [@remote, @initdev={0xac, 0x1e, 0x0, 0x0}, @loopback, @initdev={0xac, 0x1e, 0x0, 0x0}, @initdev={0xac, 0x1e, 0x1, 0x0}, @rand_addr=0x64010102, @remote, @multicast1, @rand_addr=0x64010101, @private=0xa010101]}, @end, @noop, @end, @rr={0x7, 0xf, 0xc2, [@remote, @rand_addr=0x64010102, @initdev={0xac, 0x1e, 0x1, 0x0}]}, @end]}}}}})
sendmsg$BATADV_CMD_GET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="000000000000000000250500000008000600", @ANYRES32=r1, @ANYBLOB="08003400030000000a000900aaaaaaaaaa1c000008000b0006000000050033000200000005003000010000000600280003000000"], 0x50}, 0x1, 0x0, 0x0, 0x80}, 0x8d9aeacd978670da)
r2 = io_uring_setup(0x6f2e, &(0x7f0000000080))
r3 = syz_io_uring_setup(0x38d1, &(0x7f00000004c0)={0x0, 0x2124, 0x4, 0x0, 0x5e, 0x0, r2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000540), &(0x7f0000000580))
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x8, 0x4000010, r3, 0x10000000)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x10004000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000380)={'syztnl1\x00', &(0x7f0000000300)={'gretap0\x00', <r5=>r1, 0x7800, 0x7, 0x5, 0x2, {{0x15, 0x4, 0x3, 0x3b, 0x54, 0x66, 0x0, 0x8, 0x29, 0x0, @empty, @empty, {[@ssrr={0x89, 0xb, 0x17, [@multicast2, @dev={0xac, 0x14, 0x14, 0x21}]}, @end, @rr={0x7, 0x13, 0x20, [@remote, @local, @rand_addr=0x64010101, @multicast1]}, @rr={0x7, 0x13, 0x3f, [@multicast1, @loopback, @multicast2, @remote]}, @lsrr={0x83, 0xb, 0x57, [@broadcast, @rand_addr=0x64010100]}]}}}}})
sendmsg$BATADV_CMD_GET_NEIGHBORS(r4, &(0x7f0000000480)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000440)={&(0x7f00000003c0)={0x44, r0, 0x800, 0x70bd28, 0x25dfdbfd, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x400b}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x2}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000004}, 0x800)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r6, 0xc0603d06, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r6, 0xc08c5336, &(0x7f00000005c0)={0x5, 0x3, 0x1, 'queue1\x00', 0x10000})

14:59:39 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000000)={0x70, @tick=0x3, 0x40, {0x1, 0x2}, 0x4, 0x1, 0x1})
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f00000000c0)={'ip_vti0\x00', &(0x7f0000000100)=ANY=[@ANYBLOB="567b44ee1805c2d02e3000eb93db8a0f74d3678fd6d4ae8a4c00ffff000000008c", @ANYRES32=0x0, @ANYBLOB="00400040000000040000000343de004c0065000033049078e0000001e000000200441c13910a010102000000067f00000100000002e00000010000003f441843700000100000000006000080000000000000000009000000"]})

14:59:39 executing program 2:
r0 = epoll_create(0x8)
epoll_create(0x2b6d3ed7)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
r3 = getpid()
sendmsg$nl_netfilter(r2, &(0x7f0000002380)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000002340)={&(0x7f00000023c0)={0x22b4, 0x0, 0x7, 0x3, 0x70bd2b, 0x25dfdbfe, {0x3, 0x0, 0x1}, [@typed={0x8, 0x6c, 0x0, 0x0, @u32=0x408000}, @generic="dcfebf40f88ce6c51fcaf2da151a9223fd35476f44336ecff4886fdb096689d5e654a8d1748e0561963dfeeb349bac2298a1ff353e62b9a06e62252eebc01f5ce4", @generic="6d3e58563c30c986648592f57a51bd8151799cdc1a7d32c8a05ea023826c8b517b36c2ab930f2a7a394d4d60a675cfcad759c7669ef8603a19d145b9f146f6bed2360925eefba60a3b50d15156ad7ba11b186431ee7d9253333859c71e3d55db19e9c88cd04aac705a3bbe22bc65a7b9d78d4876b3684ab2c5252d2b5c701e43b2", @generic="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", @generic="a4e72a20a5a0c15040af8def3cd85391a1c3ceaff927f0dd973c79d2314af2ec84833af4fc4a11b4d29a333f62da1799", @generic="74abe33ecfac20fac032897f7805275d030bf7839184f2748113fdc65118926f82d04a541928a3161d4ccde11cf6612ff52635e68f51c9a497e90172d6ed", @generic="7f4ce25861797a54f95e0792853ebbc2b68be5692340234168cf5c51f68b790673bc15b2a099271067b63e47382ecbbd2ccf63199c912d6bcbace0735afc55312a091b192a96bfa70176163cf90220bd392f91a731e450490bc6ede246b441faa0376e6969a302024a827e6d15ddc714128b4ce8d331fdf58c", @nested={0x10d9, 0x60, 0x0, 0x1, [@generic="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", @generic="d7c1b66469efcf56dbe1e592298b65bc705d0ae3ec1a25ad1ec9", @typed={0x8, 0x5f, 0x0, 0x0, @pid=r3}, @typed={0x4, 0x51}, @generic="fd405f7bd2e417d6a130ca43abc9ad497e4fe3fd422da8d7116516a593842d1e8f1f952c44db22b95c352cff06bae6a4753f6a31ee217181671392971a53f39b74917d984b51eea3dc8ed467c3171be9c92dd7aa2dd890a8016a25640dbda87c20d1cf1410d42f3990e1d03c36038c58f65df0cb32fc73ea07ef213c7dde1a62af17825613a7599c384d5c920e734605c8b9acc0a61a7275473a49f73ab6d2d5381f4d4f6ffad5d4aba6f0fca19dbf"]}, @typed={0x8, 0x2d, 0x0, 0x0, @u32=0x5}, @typed={0x8, 0x4b, 0x0, 0x0, @ipv4=@broadcast}]}, 0x22b4}, 0x1, 0x0, 0x0, 0x24040010}, 0x24000054)

[ 1514.848370][T11011] FAULT_INJECTION: forcing a failure.
[ 1514.848370][T11011] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1514.861484][T11011] CPU: 1 PID: 11011 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1514.870287][T11011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1514.880338][T11011] Call Trace:
[ 1514.883610][T11011]  dump_stack_lvl+0xb7/0x103
[ 1514.888198][T11011]  dump_stack+0x11/0x1a
[ 1514.892372][T11011]  should_fail+0x23c/0x250
[ 1514.896785][T11011]  should_fail_usercopy+0x16/0x20
[ 1514.901814][T11011]  copy_page_from_iter+0x1fe/0x530
[ 1514.906932][T11011]  process_vm_rw_single_vec+0x294/0x460
[ 1514.912486][T11011]  process_vm_rw+0x347/0x4e0
[ 1514.917134][T11011]  ? fsnotify_perm+0x59/0x2e0
[ 1514.921804][T11011]  ? __fsnotify_parent+0x32f/0x430
[ 1514.926908][T11011]  ? get_pid_task+0x8b/0xc0
[ 1514.931493][T11011]  ? vfs_write+0x50c/0x770
[ 1514.935909][T11011]  ? __fget_light+0x21b/0x260
[ 1514.940582][T11011]  ? __cond_resched+0x11/0x40
14:59:39 executing program 5 (fault-call:2 fault-nth:23):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:39 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3de, 0x0)

14:59:39 executing program 0:
r0 = io_uring_setup(0x51bd, &(0x7f0000000080)={0x0, 0x8628, 0x0, 0x1, 0x4000000})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
getpeername(r1, &(0x7f0000000380)=@vsock, &(0x7f0000000500)=0x80)
prctl$PR_GET_DUMPABLE(0x3)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
sendmsg$NFT_MSG_GETRULE(r2, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x1280400}, 0xc, &(0x7f0000000400)={&(0x7f0000000340)={0x40, 0x7, 0xa, 0x801, 0x0, 0x0, {0xc, 0x0, 0x2}, [@NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x3}, @NFTA_RULE_COMPAT={0x24, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_FLAGS={0x8}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x1a}, @NFTA_RULE_COMPAT_FLAGS={0x8}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x32}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x4008800}, 0x440)
pipe(&(0x7f0000000480)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_EXTTS_REQUEST2(r3, 0x40103d0b, &(0x7f00000004c0)={0x0, 0x9})
syz_io_uring_setup(0x2597, &(0x7f0000000180)={0x0, 0xe9ab, 0x2, 0x0, 0x3d5, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000240))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r4, 0xc0603d06, 0x0)
sendmsg$NL80211_CMD_SET_NOACK_MAP(r4, &(0x7f0000000600)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)={0x24, 0x0, 0x1, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_NOACK_MAP={0x6}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xaa96}]}, 0x24}, 0x1, 0x0, 0x0, 0x20004000}, 0x1)
ioctl$PTP_EXTTS_REQUEST(0xffffffffffffffff, 0x40103d02, &(0x7f0000000000)={0x5, 0x5})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
io_uring_setup(0x2402, &(0x7f0000000280)={0x0, 0x8922, 0x1, 0x3, 0x108})
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
accept(r5, &(0x7f0000000100)=@pppoe={0x18, 0x0, {0x0, @remote}}, &(0x7f0000000040)=0x80)

14:59:39 executing program 1:
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x100000, 0x0)
sendmsg$IPSET_CMD_GET_BYNAME(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x28, 0xe, 0x6, 0x401, 0x0, 0x0, {0x3, 0x0, 0x3}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x4004800}, 0x0)

[ 1514.945411][T11011]  ? fput+0x2d/0x130
[ 1514.949331][T11011]  __x64_sys_process_vm_writev+0x76/0x90
[ 1514.955019][T11011]  do_syscall_64+0x3d/0x90
[ 1514.959435][T11011]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1514.965334][T11011] RIP: 0033:0x4665e9
[ 1514.969226][T11011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1514.989283][T11011] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:39 executing program 2:
r0 = epoll_create(0x8)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x11, &(0x7f0000000040), 0x14)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r2, &(0x7f0000000040)={0x90002008})

[ 1514.997694][T11011] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1515.005658][T11011] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a5a
[ 1515.013650][T11011] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1515.021611][T11011] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1515.029570][T11011] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
[ 1515.035680][T11038] FAULT_INJECTION: forcing a failure.
[ 1515.035680][T11038] name failslab, interval 1, probability 0, space 0, times 0
[ 1515.050225][T11038] CPU: 0 PID: 11038 Comm: syz-executor.5 Not tainted 5.14.0-rc5-syzkaller #0
[ 1515.059021][T11038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1515.069077][T11038] Call Trace:
[ 1515.072351][T11038]  dump_stack_lvl+0xb7/0x103
[ 1515.076937][T11038]  dump_stack+0x11/0x1a
[ 1515.081089][T11038]  should_fail+0x23c/0x250
[ 1515.085508][T11038]  ? vm_area_alloc+0x28/0xa0
[ 1515.090098][T11038]  __should_failslab+0x81/0x90
[ 1515.094962][T11038]  should_failslab+0x5/0x20
[ 1515.099464][T11038]  kmem_cache_alloc+0x46/0x2e0
[ 1515.104229][T11038]  vm_area_alloc+0x28/0xa0
[ 1515.108663][T11038]  mmap_region+0x741/0x1400
[ 1515.113182][T11038]  do_mmap+0x73f/0xc40
[ 1515.117310][T11038]  vm_mmap_pgoff+0xf9/0x1d0
[ 1515.121826][T11038]  ksys_mmap_pgoff+0x2a8/0x380
[ 1515.126611][T11038]  do_syscall_64+0x3d/0x90
[ 1515.131024][T11038]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1515.136996][T11038] RIP: 0033:0x466632
[ 1515.140882][T11038] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64
[ 1515.160496][T11038] RSP: 002b:00007f9f987a90f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 1515.168964][T11038] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 0000000000466632
[ 1515.176929][T11038] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020fff000
[ 1515.184898][T11038] RBP: 0000000020fff000 R08: 0000000000000005 R09: 0000000000000000
14:59:39 executing program 3 (fault-call:3 fault-nth:98):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:39 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$SCSI_IOCTL_DOORLOCK(r0, 0x5380)
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
ioctl$SCSI_IOCTL_GET_IDLUN(r1, 0x5382, &(0x7f0000000000))
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, 0xffffffffffffffff, 0x10000000)

14:59:39 executing program 0:
rt_sigqueueinfo(0xffffffffffffffff, 0x3e, &(0x7f0000000000)={0x18, 0x3ff, 0x5b3})
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(0xffffffffffffffff, 0xc0a85352, &(0x7f0000000100)={{0x8, 0x7f}, 'port0\x00', 0x6, 0x20, 0x0, 0x5, 0x8, 0x1, 0x0, 0x0, 0x4, 0x9})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
io_uring_setup(0x310b, &(0x7f00000001c0)={0x0, 0xafde, 0x8, 0x1, 0x16a, 0x0, r1})

14:59:39 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x1, 0x0, r2, &(0x7f0000000000)={0x20002001}}, 0x8001)
r3 = accept(r2, &(0x7f00000000c0)=@tipc, &(0x7f0000000140)=0x80)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r1)
sendmsg$NL80211_CMD_STOP_AP(r3, &(0x7f00000002c0)={&(0x7f0000000180), 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x14, r4, 0x300, 0x70ad29, 0x25dfdbfb, {{}, {@void, @void}}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20040000}, 0x80)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r5, &(0x7f0000000040)={0x90002008})
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000003c0)='./cgroup.net/syz1\x00', 0x200002, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_SPLICE={0x1e, 0x3, 0x0, @fd=r3, 0x1, {0x0, r6}, 0x2, 0x0, 0x1, {0x0, 0x0, r5}}, 0x101)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r7, 0xc0603d06, 0x0)
ioctl$SCSI_IOCTL_GET_BUS_NUMBER(r7, 0x5386, &(0x7f0000000280))

14:59:39 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3df, 0x0)

[ 1515.192869][T11038] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000200
[ 1515.200874][T11038] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020fff000
14:59:39 executing program 5 (fault-call:2 fault-nth:24):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:39 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
openat$cgroup_procs(r2, &(0x7f0000000080)='cgroup.procs\x00', 0x2, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$PTP_EXTTS_REQUEST(r1, 0x40103d02, &(0x7f00000000c0)={0x3, 0x5})
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x58, 0x3, 0x8, 0x301, 0x0, 0x0, {0x2, 0x0, 0x9}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x3a}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x84}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x3a}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x3a}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x58}, 0x1, 0x0, 0x0, 0x4000}, 0x40800)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r3, 0x89f3, &(0x7f0000000040)={'erspan0\x00', &(0x7f0000000100)={'erspan0\x00', 0x0, 0x700, 0x80, 0x7fffffff, 0x100, {{0xa, 0x4, 0x1, 0x21, 0x28, 0x67, 0x0, 0x4, 0x4, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local, {[@generic={0x88, 0x12, "590f0b5280d26b03fc5316cb4b56d043"}]}}}}})

14:59:39 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$MON_IOCX_MFETCH(r1, 0xc0109207, &(0x7f00000000c0)={&(0x7f0000000080), 0x0, 0x50000000})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r2, &(0x7f0000000040)={0xd0002008})
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000000000)={0xa47, 0x800, 0x80000000, 0x8fa, 0x2}, 0x14)

14:59:39 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r4, 0xc0603d06, 0x0)
setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r3, 0x6, 0x21, &(0x7f00000000c0)="6111a7d46494efef196fa120fbfa8452", 0x10)
sendmsg$NFT_MSG_GETSET(r4, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x270}, 0x1, 0x0, 0x0, 0x20040080}, 0x0)
r5 = getpid()
r6 = getpid()
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r7, 0xc0603d06, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r8, 0xc0603d06, 0x0)
kcmp$KCMP_EPOLL_TFD(r5, r6, 0x7, r7, &(0x7f0000000100)={r8, r1, 0x1})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r2, &(0x7f0000000040)={0x90002008})

[ 1515.307074][T11070] FAULT_INJECTION: forcing a failure.
[ 1515.307074][T11070] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1515.320337][T11070] CPU: 1 PID: 11070 Comm: syz-executor.5 Not tainted 5.14.0-rc5-syzkaller #0
[ 1515.329101][T11070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1515.339192][T11070] Call Trace:
[ 1515.342463][T11070]  dump_stack_lvl+0xb7/0x103
[ 1515.347054][T11070]  dump_stack+0x11/0x1a
[ 1515.351211][T11070]  should_fail+0x23c/0x250
[ 1515.355236][T11078] FAULT_INJECTION: forcing a failure.
[ 1515.355236][T11078] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1515.355654][T11070]  __alloc_pages+0x102/0x320
[ 1515.373305][T11070]  alloc_pages+0x2e8/0x340
[ 1515.377714][T11070]  pte_alloc_one+0x29/0xb0
[ 1515.382119][T11070]  __pte_alloc+0x2f/0x210
[ 1515.386499][T11070]  remap_pfn_range_notrack+0x5b7/0x770
[ 1515.391944][T11070]  remap_pfn_range+0x87/0xe0
[ 1515.396520][T11070]  io_uring_mmap+0x232/0x260
[ 1515.401111][T11070]  mmap_region+0xbcb/0x1400
[ 1515.405693][T11070]  do_mmap+0x73f/0xc40
[ 1515.409746][T11070]  vm_mmap_pgoff+0xf9/0x1d0
[ 1515.414278][T11070]  ksys_mmap_pgoff+0x2a8/0x380
[ 1515.419032][T11070]  do_syscall_64+0x3d/0x90
[ 1515.423436][T11070]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1515.429443][T11070] RIP: 0033:0x466632
[ 1515.433322][T11070] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64
[ 1515.452928][T11070] RSP: 002b:00007f9f987a90f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 1515.461329][T11070] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 0000000000466632
[ 1515.469283][T11070] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020fff000
[ 1515.477237][T11070] RBP: 0000000020fff000 R08: 0000000000000005 R09: 0000000000000000
[ 1515.485188][T11070] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000200
[ 1515.493143][T11070] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020fff000
[ 1515.501112][T11078] CPU: 0 PID: 11078 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1515.509871][T11078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1515.519917][T11078] Call Trace:
[ 1515.523197][T11078]  dump_stack_lvl+0xb7/0x103
[ 1515.527795][T11078]  dump_stack+0x11/0x1a
[ 1515.531958][T11078]  should_fail+0x23c/0x250
[ 1515.536382][T11078]  should_fail_usercopy+0x16/0x20
[ 1515.541414][T11078]  copy_page_from_iter+0x1fe/0x530
[ 1515.546531][T11078]  process_vm_rw_single_vec+0x294/0x460
[ 1515.552137][T11078]  process_vm_rw+0x347/0x4e0
[ 1515.556724][T11078]  ? fsnotify_perm+0x59/0x2e0
[ 1515.561399][T11078]  ? __fsnotify_parent+0x32f/0x430
[ 1515.566509][T11078]  ? get_pid_task+0x8b/0xc0
[ 1515.571009][T11078]  ? save_fpregs_to_fpstate+0xd8/0x110
[ 1515.576473][T11078]  ? __switch_to+0x145/0x480
[ 1515.581069][T11078]  ? finish_task_switch+0xce/0x290
[ 1515.586291][T11078]  ? __schedule+0x42a/0x670
[ 1515.590798][T11078]  ? __cond_resched+0x11/0x40
[ 1515.595479][T11078]  ? fput+0x2d/0x130
[ 1515.599373][T11078]  ? fpregs_restore_userregs+0x10c/0x1c0
[ 1515.605015][T11078]  __x64_sys_process_vm_writev+0x76/0x90
[ 1515.610685][T11078]  do_syscall_64+0x3d/0x90
[ 1515.615107][T11078]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1515.621050][T11078] RIP: 0033:0x4665e9
[ 1515.624930][T11078] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1515.644543][T11078] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:40 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3e0, 0x0)

14:59:40 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="24b2dea07ab74a24f9e9e814755873510000000206050000000000000000000700000800000000000000000500040001000000"], 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x8040)

14:59:40 executing program 5 (fault-call:2 fault-nth:25):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

[ 1515.652942][T11078] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1515.660897][T11078] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a5d
[ 1515.668852][T11078] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1515.676808][T11078] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000002
[ 1515.684764][T11078] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
[ 1515.755518][T11098] FAULT_INJECTION: forcing a failure.
[ 1515.755518][T11098] name failslab, interval 1, probability 0, space 0, times 0
[ 1515.768163][T11098] CPU: 0 PID: 11098 Comm: syz-executor.5 Not tainted 5.14.0-rc5-syzkaller #0
[ 1515.776923][T11098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1515.787067][T11098] Call Trace:
[ 1515.790339][T11098]  dump_stack_lvl+0xb7/0x103
[ 1515.794963][T11098]  dump_stack+0x11/0x1a
[ 1515.799174][T11098]  should_fail+0x23c/0x250
[ 1515.803633][T11098]  ? vm_area_dup+0x44/0x120
[ 1515.808131][T11098]  __should_failslab+0x81/0x90
[ 1515.812891][T11098]  should_failslab+0x5/0x20
[ 1515.817411][T11098]  kmem_cache_alloc+0x46/0x2e0
[ 1515.822175][T11098]  vm_area_dup+0x44/0x120
[ 1515.826496][T11098]  ? kcsan_setup_watchpoint+0x231/0x3e0
[ 1515.832126][T11098]  ? perf_event_mmap+0x14c/0xce0
[ 1515.837062][T11098]  ? rb_erase+0x4bb/0x750
[ 1515.841461][T11098]  ? save_fpregs_to_fpstate+0xd8/0x110
[ 1515.846912][T11098]  ? vma_interval_tree_augment_rotate+0xe9/0x100
14:59:40 executing program 3 (fault-call:3 fault-nth:99):
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:40 executing program 2:
openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r0 = epoll_create(0x9)
ioctl$SG_GET_PACK_ID(0xffffffffffffffff, 0x227c, &(0x7f0000000080))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})
r2 = accept(0xffffffffffffffff, 0x0, &(0x7f00000000c0))
sendmsg$IPSET_CMD_SAVE(r2, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x20, 0x8, 0x6, 0x4781596259e871cc, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000051}, 0x20008800)

14:59:40 executing program 1:
request_key(&(0x7f0000000000)='ceph\x00', &(0x7f0000000040)={'syz', 0x1}, &(0x7f0000000080)='\x00', 0xfffffffffffffffc)
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
ioctl$SCSI_IOCTL_BENCHMARK_COMMAND(r0, 0x3)
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r1, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x44, 0x0, 0x200, 0x70bd28, 0x25dfdbfb, {}, [@BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x40}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x1}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x3}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x5}]}, 0x44}, 0x1, 0x0, 0x0, 0x80}, 0x20008800)

14:59:40 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
write$tcp_congestion(0xffffffffffffffff, &(0x7f0000000000)='bbr\x00', 0x4)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(0xffffffffffffffff, 0x4058534c, &(0x7f0000000100)={0xfffffff7, 0x80000000, 0x7, 0x1, 0x3, 0x401})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r1, 0x40a85323, &(0x7f0000001980)={{0x5}, 'port0\x00', 0x8, 0x44, 0x10001, 0x8, 0x13, 0x7b1, 0xb306, 0x0, 0x3, 0x9})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
sendmsg$OSF_MSG_ADD(r2, &(0x7f0000001940)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000001900)={&(0x7f0000000180)={0x175c, 0x0, 0x5, 0x401, 0x0, 0x0, {0x2, 0x0, 0x1}, [{{0x254, 0x1, {{0x3, 0x2}, 0x7f, 0x0, 0x9, 0x3ff, 0x1d, 'syz1\x00', "07a4bc0b694c16276b129321fc68bcce65580159281fecb372207940ba3aafd3", "4ca8fdf2ac4a05711198a3cd06d4f04b7571736cd041273c43d9c0a2a0270ba6", [{0x1f, 0x7fff, {0x3, 0x20}}, {0x7, 0x0, {0x3, 0x27}}, {0x8, 0x6, {0x3, 0x4}}, {0x0, 0x1, {0x1, 0x6eaa}}, {0x7fff, 0x1961, {0x0, 0x4}}, {0x2, 0xfffe, {0x1, 0x7}}, {0x8c1, 0x400, {0x1}}, {0xb6, 0xe80, {0x3, 0x6}}, {0x8001, 0x7, {0x1, 0xff}}, {0x6, 0xfffb, {0x3, 0x8}}, {0xff, 0x5, {0x3, 0x5}}, {0xfffe, 0xfffb, {0x1, 0x2}}, {0xfffe, 0x5a48, {0x2, 0x5}}, {0x1, 0x1, {0x3, 0x2}}, {0x9, 0x101, {0x1, 0x7fff}}, {0xc8d, 0x80, {0x3, 0x8}}, {0x8600, 0x7, {0x2, 0xb2}}, {0xc5, 0x3ff, {0x0, 0xfff}}, {0x9, 0x4000, {0x3e5e4752f8e517ae, 0x3}}, {0xd55, 0x8, {0x3, 0x800}}, {0x1, 0x2, {0x0, 0x7f}}, {0x1, 0xad48, {0x0, 0x7fff}}, {0x0, 0x5938, {0x1, 0xffff0001}}, {0x8, 0x200, {0x0, 0x2}}, {0x3, 0x1ff, {0x1, 0x10001}}, {0x9f, 0x3, {0x3, 0x3}}, {0x2, 0x1000, {0x1, 0x8}}, {0xffff, 0x401, {0x3, 0x80000001}}, {0x101, 0x1, {0x1, 0x1f}}, {0x9, 0x7fff, {0x1, 0x1493}}, {0x0, 0x5, {0x0, 0x10001}}, {0x3, 0x52, {0x2, 0x2}}, {0x40, 0x80, {0x0, 0x7}}, {0x8, 0x7, {0x0, 0x7}}, {0x86e, 0x20, {0x3}}, {0x7ff, 0xff, {0x1, 0x6}}, {0x3, 0x10, {0x1, 0x4c1}}, {0x2, 0x8, {0x1, 0x1ff}}, {0x3, 0x8c72, {0x3, 0xace4}}, {0x20, 0x1, {0x0, 0x5}}]}}}, {{0x254, 0x1, {{0x3, 0x401}, 0xfa, 0x3f, 0x9, 0x6, 0x6, 'syz0\x00', "ff4f887912510a52ef7340f3825f3793a8987488e12e539f0524673c864be6bc", "b08d3ed81c986dcd1aaeade89f2f9ce7ffcfc09ec218a144456c4723aa9037b3", [{0xef9, 0x8001, {0x2, 0x2b}}, {0x2b6, 0x1, {0x0, 0x6}}, {0xae, 0x1, {0x3, 0x1}}, {0x2, 0x5, {0x3, 0x7}}, {0x102, 0x13ae, {0x1, 0x88}}, {0x3f, 0x8001, {0x3, 0x7}}, {0xfff, 0x1113, {0x1, 0x1}}, {0x269, 0x53c9, {0x3, 0x6}}, {0x40, 0x1, {0x3, 0x8020000}}, {0x8, 0x7, {0x0, 0x6}}, {0xff7f, 0x40, {0x0, 0x401}}, {0x1, 0xdf, {0x1, 0x7}}, {0x80, 0x7fff, {0x0, 0x400}}, {0x9, 0x1, {0x2, 0x8}}, {0x3f, 0x20, {0x1, 0x6}}, {0x8000, 0x3, {0x1, 0xa931}}, {0x996e, 0x7, {0x1, 0x10001}}, {0x7, 0x8, {0x3, 0x6}}, {0x6, 0x331c, {0x2, 0xc5a}}, {0x1000, 0x10, {0x3, 0x2}}, {0xfff, 0xfff7, {0x3, 0x400}}, {0x8, 0x4, {0x0, 0x101}}, {0x0, 0x3eef, {0x2, 0xbbe}}, {0x80, 0xc72, {0x3, 0x60000}}, {0x6, 0x5, {0x2, 0xfffffffc}}, {0x2, 0x9, {0x1, 0xef72}}, {0xfff, 0xe17, {0x0, 0x3}}, {0x8, 0x6, {0x0, 0x2}}, {0x6, 0x2, {0x3, 0x3}}, {0x4, 0x2, {0x2, 0x4}}, {0x3, 0x0, {0x0, 0x2}}, {0x3, 0x2f30, {0x2, 0x1ff}}, {0x2, 0x3, {0x2, 0xffff}}, {0x1, 0x3f, {0x1, 0x3}}, {0x25b, 0x94ed, {0x0, 0xed6}}, {0x8001, 0x456c, {0x2, 0x5}}, {0x6, 0xf4e, {0x1, 0x1}}, {0x3, 0x94c4, {0x1, 0x100}}, {0x9, 0x2, {0x0, 0x1e69}}, {0x2, 0x3ff, {0x0, 0xfffffff9}}]}}}, {{0x254, 0x1, {{0x1, 0x20004}, 0x1, 0x1f, 0x401, 0x6, 0x8, 'syz0\x00', "f4b8aa6c2dd5aef5746421f5b1ae1798f22d6b05ec33aa14dfcc5737b936dc69", "3a5b9213089eb295c6c4f0c1b37707c528be677668771d9483ae8b62dbe6b3b0", [{0x3, 0x4, {0x3, 0x7e9f}}, {0x101, 0x8001, {0x0, 0x6}}, {0x6, 0x3ff, {0x1}}, {0x20}, {0x8, 0x101, {0x0, 0x1ff}}, {0x401, 0x9, {0x2, 0x5}}, {0xff7f, 0x9, {0x0, 0xa5}}, {0x3, 0x100, {0x1}}, {0x7f, 0xe72, {0x0, 0x7}}, {0x3, 0x8002, {0x1, 0x8}}, {0x3, 0x8000, {0x3}}, {0x1, 0x2, {0x2, 0x7fffffff}}, {0x7ff, 0xf1b7, {0x3, 0xffffffff}}, {0xfff, 0x3, {0x2, 0x8}}, {0xd7, 0x7, {0x1, 0x7}}, {0x100, 0x0, {0x1, 0x1}}, {0x3, 0xfffd, {0x1, 0x6}}, {0x2, 0xf3e, {0x1, 0x81}}, {0xfffa, 0x3}, {0x8, 0x8001, {0x1, 0x2}}, {0x9, 0x0, {0x1, 0x9}}, {0x2, 0x3, {0x2, 0xfffff22c}}, {0x4, 0x8001, {0x1, 0x4}}, {0x0, 0x401, {0x2}}, {0x1}, {0x1, 0x100, {0x1, 0xee7}}, {0xfffc, 0x3342, {0x0, 0xfa}}, {0x7, 0x6, {0x1, 0x1}}, {0x3, 0x2, {0x1, 0x5}}, {0xeee, 0x0, {0x2, 0x40}}, {0x7, 0xd8d, {0x1, 0x4}}, {0x0, 0x3ff, {0x2, 0x62}}, {0x3, 0x8, {0x3, 0x18000000}}, {0x3ff, 0x2, {0x0, 0x8}}, {0x7fff, 0x20, {0x1, 0x8}}, {0x5, 0x4, {0x1, 0x3}}, {0x401, 0x7, {0x3, 0xfffffffc}}, {0x4, 0x9, {0x0, 0x5}}, {0x1, 0x6810, {0x3, 0x2}}, {0x3, 0xc01, {0x1, 0x6}}]}}}, {{0x254, 0x1, {{0x3, 0x7fff}, 0x8, 0x64, 0x1, 0x6, 0xb, 'syz0\x00', "c08d85dd58b83cd8205b24ea85940a8987ab6f17e9463cb1f4c4f3dec30063bc", "0bfba5a0b79a2590c8edf16133c2daa54f5c0ea419375c97fe0fd67981ee9a48", [{0x1000, 0x800, {0x0, 0xfff}}, {0x200, 0xe28, {0x2, 0x29}}, {0x322, 0x81, {0x0, 0x10001}}, {0x9, 0x3, {0x1, 0xffffffff}}, {0x8, 0x7, {0x3, 0x7fffffff}}, {0x5, 0xe000, {0x1}}, {0xff66, 0x4, {0x2, 0x6}}, {0x5, 0x8, {0x0, 0x100}}, {0x16, 0xf000, {0x2, 0xfffffff7}}, {0x3, 0x7fff, {0x3, 0x7}}, {0x70, 0xfff, {0x0, 0xfffffff7}}, {0x1, 0x5d1, {0x3, 0x3}}, {0x1000, 0x40, {0x1, 0x1f}}, {0x6, 0x8, {0x3, 0x3}}, {0x7, 0x8001, {0x1, 0x4}}, {0x1ff, 0x6, {0x3, 0x5}}, {0x0, 0xa09e, {0x2, 0x2}}, {0x4, 0x5, {0x2, 0x7}}, {0x4, 0x6, {0x3, 0x1}}, {0x87, 0x8, {0x3, 0x5}}, {0x1, 0x3, {0x3, 0x8}}, {0xffff, 0x0, {0x2}}, {0x8, 0x1, {0x1, 0x100}}, {0x5, 0x8001, {0x0, 0x5}}, {0x101, 0x0, {0x2}}, {0x3ff, 0x8000, {0x2, 0xf2}}, {0x12, 0x12b, {0x2, 0x4}}, {0x5f, 0x8, {0x2, 0x1}}, {0x8, 0x7ff, {0x1, 0x6}}, {0x200, 0x2, {0x3, 0xff}}, {0x1, 0x81, {0x3, 0x10001}}, {0x6, 0x7ff, {0x1, 0x8}}, {0x81, 0xfff9, {0x1, 0x4}}, {0x1f, 0x7, {0x3, 0xffff}}, {0x3, 0x4, {0x3, 0x9}}, {0xa5, 0x1, {0x3, 0x1000000}}, {0x3, 0xffff, {0xb3e10b28528c3b13, 0x1}}, {0x4, 0x2, {0x6, 0x7fff}}, {0xfff7, 0x700, {0x1, 0x7fffffff}}, {0x38ca, 0x3, {0x2, 0x9}}]}}}, {{0x254, 0x1, {{0x0, 0x7fff}, 0xe1, 0x1, 0xd8, 0x1, 0x22, 'syz0\x00', "530715967c3401f3fcdadbfb5ded85668e15f78dbbe6345984a46c8a99038e05", "46d5128f045204709bbae2df63ff3703e41da0e2d145645280043ac5391b0553", [{0x8001, 0x5, {0x3, 0x5}}, {0xc7a, 0x63, {0x2, 0x6}}, {0x8, 0xf42f, {0x1, 0x86b6}}, {0x7dd, 0x8000, {0x0, 0x80}}, {0x1, 0x5, {0x3, 0x4}}, {0x1ff, 0x5, {0x1, 0x80}}, {0x6, 0x2, {0x1, 0x2}}, {0x277c, 0x4, {0x0, 0x5}}, {0x0, 0x4, {0x2}}, {0x200, 0x401, {0x2, 0x400}}, {0x7ff, 0xff, {0x3, 0xfffffffb}}, {0x5, 0x8, {0x2, 0x1c00000}}, {0x9, 0x3ff, {0x2, 0x2}}, {0x3, 0x800, {0x0, 0x5}}, {0x3, 0x7f, {0x3, 0x1}}, {0xc85, 0x10, {0x2, 0x40}}, {0x7f, 0xff, {0x2, 0x14fe5dea}}, {0x4, 0x80, {0x0, 0x3}}, {0xdf, 0x2006, {0x2, 0x5}}, {0x20, 0x5, {0x2, 0x4}}, {0xefec, 0x0, {0x3, 0x101}}, {0x8000, 0x6, {0x1, 0x4}}, {0x4, 0xf001, {0x2, 0x3}}, {0x8, 0x0, {0x3, 0x10001}}, {0x200, 0xa469, {0x0, 0xb7fd}}, {0x7, 0x2, {0x3, 0x9}}, {0x0, 0x9, {0x3, 0x4}}, {0xff80, 0x6, {0x3, 0x9f}}, {0xc02, 0x7, {0x3, 0x8}}, {0x7, 0x1, {0x0, 0x40}}, {0x3, 0x7, {0x0, 0x81}}, {0x7fff, 0x5}, {0x40a, 0x6, {0x1, 0x6}}, {0x81, 0x8, {0x3, 0x4}}, {0x8d, 0xa9, {0xf41f5ac0458624d8, 0x9}}, {0x0, 0xb15, {0x2, 0xfffffffd}}, {0x8, 0x3, {0x0, 0x578c}}, {0x8001, 0x4, {0x1, 0xffff59c3}}, {0x66, 0xc4e, {0x3, 0x4}}, {0x5, 0x8, {0x2, 0x4}}]}}}, {{0x254, 0x1, {{0x2, 0x1}, 0x0, 0x81, 0x9, 0x83f4, 0x26, 'syz0\x00', "6b8c3f8773ae56fed9e6aaac0fbd94b812f9339594e052dc87be865752743305", "ae5dd42c57fee69deaeabdc162f23f5daab94717efa128a9401e00b8a7ab5c83", [{0x100, 0x7, {0x1, 0x6}}, {0x5, 0xd3, {0x1, 0x2}}, {0x401, 0x8, {0x1, 0x2}}, {0xff, 0x6, {0x0, 0x7}}, {0x0, 0x8000, {0x1}}, {0x2, 0x40, {0x1, 0xff}}, {0xff, 0x4, {0x3, 0x6}}, {0x3, 0x8, {0x3, 0x94d}}, {0x7, 0x3, {0x1, 0x3ff}}, {0x897c, 0x6334}, {0x2, 0x0, {0x0, 0x7}}, {0x3, 0x80, {0x3, 0x9}}, {0x8001, 0x7fff, {0x0, 0x7}}, {0x2, 0x101, {0x0, 0x9}}, {0x8, 0x9, {0x2, 0x1}}, {0x4, 0x1, {0x3, 0x4}}, {0x4, 0x2, {0x3, 0x3}}, {0x1, 0x2, {0x0, 0xff000}}, {0x8, 0xff4c, {0x0, 0x2}}, {0x3, 0xd800, {0x3, 0x273}}, {0x4, 0x4, {0x1, 0x9}}, {0x2, 0xffff, {0x2}}, {0x8, 0x3, {0x0, 0x1000}}, {0x7fc0, 0x1, {0x3, 0x81}}, {0x1, 0x800, {0x2, 0x7f}}, {0x4, 0x3f, {0x3, 0xffffffff}}, {0x40, 0x800, {0x0, 0xa399}}, {0x2000, 0x400, {0x1, 0xb1e961c}}, {0xfff, 0x1, {0x3, 0x4}}, {0x40, 0x5, {0x0, 0x2}}, {0x5, 0x7, {0x3, 0x8}}, {0x8, 0x100, {0x0, 0x5}}, {0x5, 0xff7e, {0x2, 0x7}}, {0x82f, 0x200, {0x2, 0x2}}, {0x0, 0x101, {0x2, 0x4}}, {0x400, 0x40, {0x1, 0x6}}, {0x100, 0x7ff, {0x3}}, {0xac8a, 0x8001, {0x0, 0x101}}, {0x78, 0x7, {0x1, 0x7}}, {0x9, 0x6, {0x1, 0x1}}]}}}, {{0x254, 0x1, {{0x2, 0x4}, 0x20, 0x8b, 0x7ff, 0x1, 0x10, 'syz1\x00', "b5a037bf318e143e219773fcabddd1de445b02126514e33256f0e516c4140adf", "66085ac7926c174a29b7d56205c696171b4a2258d32dc1ee56cce774e3fd98c6", [{0x0, 0x1, {0x0, 0xc3}}, {0x3, 0x6, {0x3}}, {0x1, 0x0, {0x2, 0xfffffeff}}, {0x80, 0x7, {0x2, 0x1}}, {0x20c, 0x81, {0x0, 0x8}}, {0x6, 0x6, {0x2, 0x6}}, {0x20, 0x7, {0x1, 0x3}}, {0xb2d, 0x2, {0x0, 0x5}}, {0x0, 0x4, {0x0, 0x6}}, {0x2, 0x63, {0x3, 0x7}}, {0x0, 0x5, {0x3, 0x6}}, {0xb2, 0x9, {0x3, 0x6}}, {0x7f, 0x5, {0x0, 0x6}}, {0x4, 0x1, {0x3, 0x8d9}}, {0x0, 0xd0c7, {0x1, 0x1}}, {0x2, 0x5, {0x2, 0xbad}}, {0x7, 0x7ff, {0x2, 0x8001}}, {0x1f, 0xfffe, {0x2, 0x7}}, {0x0, 0x0, {0x0, 0xfffffe00}}, {0x1, 0x6, {0x3, 0x100}}, {0x9, 0x347, {0x1, 0xebac}}, {0x7ff, 0x400, {0x1, 0x8}}, {0xfffb, 0x0, {0x1, 0x800}}, {0x1f, 0x80, {0x2, 0x200000}}, {0x5, 0x4, {0x0, 0x7f}}, {0x2, 0x1ff, {0x0, 0x8}}, {0x1, 0xfff, {0x0, 0x1000}}, {0xb3, 0x3ff, {0x1, 0xffff0000}}, {0x8, 0x5, {0x2}}, {0x12d, 0x8, {0x3, 0x80}}, {0x8, 0x20, {0x1, 0x9}}, {0x1, 0x6}, {0x6, 0x8, {0x0, 0x10000000}}, {0xff, 0x808, {0x3, 0x7}}, {0x1, 0x80, {0x3, 0x8}}, {0x1, 0x7f, {0x1, 0x9}}, {0x90f, 0x5, {0x2, 0x8}}, {0x4, 0x101, {0x3, 0x3}}, {0x6, 0x0, {0x2, 0x7e7c}}, {0x1, 0xffff, {0x0, 0x5}}]}}}, {{0x254, 0x1, {{0x0, 0x3}, 0xfc, 0x3f, 0x6, 0x7fff, 0x6, 'syz0\x00', "fe79ea9c966f7f26ee4015e2fff3ba447a78915047d6fa2f7c5193048c35309b", "e48c25d4014644ce6f1621fdde9ecf06e1a8b3715c328f33192738957b2dffb9", [{0x3, 0x1, {0x2, 0x3}}, {0xffff, 0x5, {0x0, 0xffffffff}}, {0x2, 0x8, {0x0, 0xfffeffff}}, {0x0, 0x1, {0x3, 0xfffffff7}}, {0x9, 0xf704, {0x0, 0x3f}}, {0x2, 0x5, {0x0, 0xcf52}}, {0x2, 0x400, {0x2, 0x27e3e4ab}}, {0x8, 0x1, {0x1, 0x7}}, {0x4, 0xfff8, {0x2, 0x7f}}, {0xfcc, 0x2, {0x2, 0x4}}, {0x4, 0x63e4, {0x1, 0x3f}}, {0x3, 0xa0f, {0x2, 0xfff}}, {0x3ff, 0x101, {0x3, 0x92}}, {0x100, 0x1, {0x1, 0x1}}, {0x9, 0xffdd, {0x0, 0x1}}, {0x2, 0x5, {0x2, 0xa9d4}}, {0x8, 0x1, {0x3, 0x81}}, {0x3f, 0x6, {0x1, 0x2}}, {0x6, 0x4f05, {0x0, 0x1ff}}, {0xffff, 0x6, {0x0, 0x6}}, {0xac81, 0x5, {0x2, 0x20}}, {0x1000, 0x7, {0x1, 0x6}}, {0x400, 0x6, {0x0, 0x7}}, {0x0, 0x0, {0x2}}, {0x260, 0xff, {0x1, 0x1e4c000}}, {0x8000, 0x9, {0x3, 0x8}}, {0x57, 0x2, {0x2}}, {0x7, 0x6, {0x2, 0x8}}, {0x5, 0x1000, {0x0, 0x40000}}, {0x3, 0xffff, {0x0, 0x1}}, {0x8, 0x5, {0x0, 0x76}}, {0x3, 0x0, {0x2, 0x6}}, {0x7, 0x3f, {0x1, 0xfffffffb}}, {0x400, 0x4, {0x0, 0x19}}, {0x7, 0x20, {0x2, 0x80000001}}, {0xf801, 0x5, {0x0, 0x3}}, {0x525, 0x5, {0x1, 0xfffffffd}}, {0x81, 0x10, {0x3}}, {0xdc8, 0x4, {0x2}}, {0x1000, 0x800, {0x3, 0xffff}}]}}}, {{0x254, 0x1, {{0x0, 0x6}, 0x1, 0x7, 0x7, 0x7, 0x5, 'syz0\x00', "0fd2e22a385764fcbd98d7aab2fafa4631454d65c5ceb0203496c3dcc9c3b205", "7f1be8db3e22b02213b0dd1e7959fedc336f414d230485fdcabda6f10da57598", [{0x5, 0x80, {0x1, 0x7f}}, {0xffff, 0xe71, {0x2, 0x3e}}, {0x7, 0x1000, {0x0, 0x3}}, {0x8, 0x1, {0x2, 0x800}}, {0x7, 0x6d5, {0x1, 0xfff}}, {0x3ff, 0x20, {0x0, 0xc1}}, {0x3f, 0x4, {0x3, 0x7}}, {0x83, 0x4, {0x3, 0x20}}, {0x5, 0x35, {0x3, 0x4}}, {0x6b3, 0xf7, {0x3, 0x4}}, {0x5, 0x0, {0x2, 0xb501}}, {0x2, 0x0, {0x3, 0xaa}}, {0x7, 0x3, {0x0, 0x9}}, {0xc0f, 0x3, {0x2, 0x6}}, {0x4, 0x1, {0x2, 0xb0}}, {0x8, 0x4e, {0x0, 0xc37}}, {0x17, 0xd8, {0x2, 0x80}}, {0x4, 0x5, {0x0, 0x3}}, {0x7, 0x3f, {0x2, 0x7}}, {0x0, 0x1000, {0x1, 0x4}}, {0x1, 0x3, {0x2, 0xbb}}, {0x1, 0x40, {0x0, 0x80000000}}, {0x3, 0x9}, {0x0, 0x7fff, {0x0, 0x7b}}, {0x1, 0x8000, {0x0, 0x4}}, {0x905, 0x0, {0x3, 0x2}}, {0x101, 0x800, {0x0, 0xff}}, {0x20, 0x3, {0x3, 0x4}}, {0x2, 0x7, {0x2, 0x1}}, {0xfff, 0x6, {0x1, 0x7}}, {0xfff, 0x1, {0x0, 0x7f}}, {0xee, 0x1}, {0x2, 0x9, {0x1, 0x5}}, {0x6, 0x40, {0x2, 0x2}}, {0x4, 0x998, {0x0, 0xc7}}, {0x2, 0xc9, {0x0, 0x6f70}}, {0xd99b, 0x80, {0x0, 0x3}}, {0x3, 0x20, {0xaff1e468913d55a8, 0x9}}, {0x7ff, 0xfee, {0x0, 0x6}}, {0x1, 0x2, {0x2, 0x5}}]}}}, {{0x254, 0x1, {{0x0, 0x5}, 0x1, 0x5, 0x5f9, 0x1f, 0x12, 'syz1\x00', "b2bec723bdcfaebd97acbd98b90239d8df0ff478280ac114aa627c92d49c5465", "69a30e02321795526e109ef7da8f5c698b70838bfff1882105b32deb66d45c3f", [{0x1000, 0x7, {0x3, 0x401}}, {0x1000, 0x8000, {0x3, 0x5}}, {0x682b, 0x8, {0x1, 0x40}}, {0x4, 0x800, {0x3, 0x4}}, {0x3, 0x0, {0x3, 0xfffff000}}, {0x6, 0x200, {0x1, 0x8}}, {0x7, 0xfc01, {0x1, 0xfa}}, {0x4, 0x6, {0x1, 0xffffff5f}}, {0x40, 0x7, {0x2, 0x83c}}, {0x200, 0x7, {0x0, 0x3}}, {0x9, 0x0, {0x3, 0x3}}, {0x8, 0xffc0, {0x0, 0xec}}, {0x3, 0x6, {0x3, 0x1}}, {0x5, 0x1, {0x0, 0x6}}, {0x5, 0x0, {0x2}}, {0x3f, 0x40, {0x0, 0x10001}}, {0x3, 0x3, {0x3, 0x401}}, {0x8, 0x200, {0x2, 0x1000}}, {0x3, 0x0, {0x1, 0x8}}, {0x1000, 0x40, {0x2, 0x72}}, {0x3, 0x3, {0x1, 0x8001}}, {0x5, 0xfffa, {0x0, 0x4}}, {0x1, 0x1f, {0x1, 0x1f}}, {0x0, 0xce, {0x0, 0x7}}, {0x8, 0xae, {0x0, 0xffffffe0}}, {0x20, 0x20, {0x0, 0x7}}, {0x1, 0x4, {0x2, 0x6}}, {0x1000, 0x4, {0x0, 0xfffffff7}}, {0x8, 0x2, {0x0, 0x4}}, {0x1ff, 0xfff8, {0x3, 0x3}}, {0x0, 0x6, {0x1, 0x2}}, {0x2, 0x1, {0x1, 0x1}}, {0x6, 0x3f, {0x1, 0x3}}, {0x5, 0x1, {0x2, 0xfffffffc}}, {0x5, 0xda87, {0x3, 0x80000001}}, {0x5, 0x4, {0x0, 0x7}}, {0x100, 0x0, {0x1, 0x5}}, {0x0, 0xb9c, {0x1, 0x5}}, {0x7, 0x4, {0x0, 0x7fff}}, {0x4, 0x9, {0x3, 0x6}}]}}}]}, 0x175c}, 0x1, 0x0, 0x0, 0xcd25621b3ea12ecd}, 0x0)

[ 1515.853276][T11098]  __split_vma+0x82/0x320
[ 1515.857609][T11098]  ? vmacache_find+0x2df/0x320
[ 1515.862381][T11098]  __do_munmap+0x27c/0x1330
[ 1515.866882][T11098]  ? up_write+0x25/0xc0
[ 1515.871037][T11098]  ? vma_link+0x188/0x1a0
[ 1515.875439][T11098]  mmap_region+0x5aa/0x1400
[ 1515.880024][T11098]  do_mmap+0x73f/0xc40
[ 1515.884092][T11098]  vm_mmap_pgoff+0xf9/0x1d0
[ 1515.888668][T11098]  ksys_mmap_pgoff+0x2a8/0x380
[ 1515.893425][T11098]  do_syscall_64+0x3d/0x90
[ 1515.897836][T11098]  entry_SYSCALL_64_after_hwframe+0x44/0xae
14:59:40 executing program 1:
ptrace$cont(0x1f, 0x0, 0x2, 0xfad0)
pipe(&(0x7f0000005500))
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x5000)=nil, 0x5000, 0x0, 0x40010, r1, 0x10000000)
r2 = syz_open_dev$sg(&(0x7f0000000080), 0x100000001, 0x0)
ioctl$SCSI_IOCTL_GET_IDLUN(r2, 0x5382, &(0x7f00000000c0))

[ 1515.903728][T11098] RIP: 0033:0x466632
[ 1515.907614][T11098] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64
[ 1515.927211][T11098] RSP: 002b:00007f9f987a90f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 1515.935616][T11098] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 0000000000466632
[ 1515.943583][T11098] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffd000
14:59:40 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r2, &(0x7f0000000000)={0x1})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)

[ 1515.951579][T11098] RBP: 0000000020ffd000 R08: 0000000000000005 R09: 0000000010000000
[ 1515.959540][T11098] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000200
[ 1515.967501][T11098] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020fff000
14:59:40 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)

[ 1516.013782][T11120] FAULT_INJECTION: forcing a failure.
[ 1516.013782][T11120] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1516.026858][T11120] CPU: 0 PID: 11120 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1516.035611][T11120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1516.045786][T11120] Call Trace:
[ 1516.049068][T11120]  dump_stack_lvl+0xb7/0x103
[ 1516.053650][T11120]  dump_stack+0x11/0x1a
[ 1516.057804][T11120]  should_fail+0x23c/0x250
[ 1516.062207][T11120]  should_fail_usercopy+0x16/0x20
[ 1516.067273][T11120]  copy_page_from_iter+0x1fe/0x530
[ 1516.072447][T11120]  process_vm_rw_single_vec+0x294/0x460
[ 1516.078005][T11120]  process_vm_rw+0x347/0x4e0
[ 1516.082583][T11120]  ? fsnotify_perm+0x59/0x2e0
[ 1516.087279][T11120]  ? __fsnotify_parent+0x32f/0x430
[ 1516.092496][T11120]  ? get_pid_task+0x8b/0xc0
[ 1516.096997][T11120]  ? vfs_write+0x50c/0x770
[ 1516.101415][T11120]  ? __fget_light+0x21b/0x260
[ 1516.106077][T11120]  ? __cond_resched+0x11/0x40
[ 1516.110779][T11120]  ? fput+0x2d/0x130
[ 1516.114668][T11120]  __x64_sys_process_vm_writev+0x76/0x90
[ 1516.120429][T11120]  do_syscall_64+0x3d/0x90
[ 1516.124831][T11120]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1516.130710][T11120] RIP: 0033:0x4665e9
[ 1516.134635][T11120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1516.154262][T11120] RSP: 002b:00007f0101991188 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
14:59:40 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
pipe(&(0x7f0000000040)={<r1=>0xffffffffffffffff})
ioctl$SG_GET_TIMEOUT(r1, 0x2202, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
r2 = getpid()
r3 = epoll_create1(0x80000)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
kcmp$KCMP_EPOLL_TFD(r2, 0xffffffffffffffff, 0x7, r0, &(0x7f0000000000)={r3, r4, 0x7fffffff})
pipe(&(0x7f0000000100)={<r5=>0xffffffffffffffff})
sendmsg$NFNL_MSG_COMPAT_GET(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x48, 0x0, 0xb, 0x101, 0x0, 0x0, {0x3, 0x0, 0x9}, [@NFTA_COMPAT_NAME={0x5, 0x1, '\x00'}, @NFTA_COMPAT_NAME={0xc, 0x1, '(^\xa7+:^:\x00'}, @NFTA_COMPAT_NAME={0x8, 0x1, '@+U\x00'}, @NFTA_COMPAT_NAME={0x6, 0x1, ']\x00'}, @NFTA_COMPAT_REV={0x8}, @NFTA_COMPAT_TYPE={0x8, 0x3, 0x1, 0x0, 0x1}]}, 0x48}, 0x1, 0x0, 0x0, 0x840}, 0x4008086)
epoll_create1(0x0)
read$ptp(r1, &(0x7f0000000280)=""/225, 0xe1)

14:59:40 executing program 5 (fault-call:2 fault-nth:26):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

[ 1516.162670][T11120] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665e9
[ 1516.170621][T11120] RDX: 0000000000000003 RSI: 0000000020000300 RDI: 0000000000005a60
[ 1516.178573][T11120] RBP: 00007f01019911d0 R08: 0000000000000001 R09: 0000000000000000
[ 1516.186525][T11120] R10: 0000000020002b00 R11: 0000000000000246 R12: 0000000000000003
[ 1516.194476][T11120] R13: 00007fff37ded8df R14: 00007f0101991300 R15: 0000000000022000
14:59:40 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3e1, 0x0)

14:59:40 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
ioctl$MON_IOCX_MFETCH(r0, 0xc0109207, &(0x7f0000000040)={&(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x5, 0x8})
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x200000, 0x0)
ioctl$MON_IOCQ_URB_LEN(r1, 0x9201)
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)

14:59:40 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff})
epoll_create(0xe1d)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0xe79d82407bb48b97})

[ 1516.266770][T11135] FAULT_INJECTION: forcing a failure.
[ 1516.266770][T11135] name failslab, interval 1, probability 0, space 0, times 0
[ 1516.279491][T11135] CPU: 1 PID: 11135 Comm: syz-executor.5 Not tainted 5.14.0-rc5-syzkaller #0
[ 1516.288248][T11135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1516.298316][T11135] Call Trace:
[ 1516.301588][T11135]  dump_stack_lvl+0xb7/0x103
[ 1516.306179][T11135]  dump_stack+0x11/0x1a
[ 1516.310357][T11135]  should_fail+0x23c/0x250
[ 1516.314772][T11135]  ? vm_area_alloc+0x28/0xa0
[ 1516.319354][T11135]  __should_failslab+0x81/0x90
[ 1516.324110][T11135]  should_failslab+0x5/0x20
[ 1516.328615][T11135]  kmem_cache_alloc+0x46/0x2e0
[ 1516.333427][T11135]  vm_area_alloc+0x28/0xa0
[ 1516.337828][T11135]  mmap_region+0x741/0x1400
[ 1516.342329][T11135]  do_mmap+0x73f/0xc40
[ 1516.346395][T11135]  vm_mmap_pgoff+0xf9/0x1d0
[ 1516.350896][T11135]  ksys_mmap_pgoff+0x2a8/0x380
[ 1516.355670][T11135]  do_syscall_64+0x3d/0x90
[ 1516.360152][T11135]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1516.366038][T11135] RIP: 0033:0x466632
[ 1516.369913][T11135] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64
[ 1516.389515][T11135] RSP: 002b:00007f9f987a90f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 1516.397933][T11135] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 0000000000466632
[ 1516.405898][T11135] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffd000
14:59:41 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:41 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3e2, 0x0)

14:59:41 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(r2, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x14, 0x4, 0x1, 0x201, 0x0, 0x0, {0x7, 0x0, 0x5}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x804}, 0x4040000)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r3, &(0x7f0000000000)={0xd7c42a4ad2009eee})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r5, 0xc0603d06, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r6, 0xc0603d06, 0x0)
sendmsg$NFT_MSG_GETRULE(r6, &(0x7f00000009c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000980)={&(0x7f00000003c0)={0x5b4, 0x7, 0xa, 0x301, 0x0, 0x0, {0x3, 0x0, 0x2}, [@NFTA_RULE_COMPAT={0x34, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x3c}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x86dd}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0xff}, @NFTA_RULE_COMPAT_FLAGS={0x8}]}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x4}, @NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x4}, @NFTA_RULE_USERDATA={0xd6, 0x7, 0x1, 0x0, "f7898b96f7c7f5484863b1aa79d1d1ae69698874c29410b8b152bd80fbdc0d91379d0fc8a31cc67bc490d97144714424596456a2cd146762c38d56db1b3bf05d0c768c11c23b3650dd82507e88b2cb2adb29a1e17cca59b4ead365902f5f87b6c4936bf0750b5e1cbca08f733afc7ef2077d4a6dd0cf4be1509498de74baf0023ac6e9dec676768155bd3c0ad96063754775d9b75e4eb1e7b32f890f5ed6cebdbc5167eba0d4b94c8f117f1fdb62141ae5130e512c49e20b75598ed809cf8cefaef601cbee8ade66fb5bd6e968ee57a5571e"}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x2}, @NFTA_RULE_EXPRESSIONS={0x460, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, [@synproxy={{0xd}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_SYNPROXY_FLAGS={0x8, 0x3, 0x1, 0x0, 0x4}]}}, @nat={{0x8}, @void}]}, {0x344, 0x1, 0x0, 0x1, [@redir={{0xa}, @void}, @quota={{0xa}, @void}, @flow_offload={{0x11}, @void}, @byteorder={{0xe}, @val={0x44, 0x2, 0x0, 0x1, [@NFTA_BYTEORDER_SREG={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_BYTEORDER_OP={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_BYTEORDER_OP={0x8}, @NFTA_BYTEORDER_SIZE={0x8, 0x5, 0x1, 0x0, 0x3f}, @NFTA_BYTEORDER_DREG={0x8, 0x2, 0x1, 0x0, 0x17}, @NFTA_BYTEORDER_SREG={0x8, 0x1, 0x1, 0x0, 0x17}, @NFTA_BYTEORDER_SIZE={0x8, 0x5, 0x1, 0x0, 0x37}, @NFTA_BYTEORDER_SREG={0x8, 0x1, 0x1, 0x0, 0x1}]}}, @limit={{0xa}, @val={0x20, 0x2, 0x0, 0x1, [@NFTA_LIMIT_FLAGS={0x8}, @NFTA_LIMIT_TYPE={0x8, 0x4, 0x1, 0x0, 0x1}, @NFTA_LIMIT_UNIT={0xc}]}}, @exthdr={{0xb}, @val={0x3c, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_FLAGS={0x8}, @NFTA_EXTHDR_OP={0x8, 0x6, 0x1, 0x0, 0x1}, @NFTA_EXTHDR_TYPE={0x5, 0x2, 0x89}, @NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0x16}, @NFTA_EXTHDR_OP={0x8, 0x6, 0x1, 0x0, 0x2}, @NFTA_EXTHDR_OP={0x8, 0x6, 0x1, 0x0, 0xc5fc0f0e075ac0f6}, @NFTA_EXTHDR_FLAGS={0x8, 0x5, 0x1, 0x0, 0x1}]}}, @immediate={{0xe}, @val={0x21c, 0x2, 0x0, 0x1, [@NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0x10}, @NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0xd}, @NFTA_IMMEDIATE_DATA={0x208, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x4c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}, @NFTA_DATA_VALUE={0x23, 0x1, "599bfa68c4f93fafc869f8a7f7b15fd0dbbd01157f40c49f5622f50aca7d0a"}, @NFTA_DATA_VALUE={0x9b, 0x1, "7b2003137b6579c8c42484467eac513ec3aeb68a621e53d54591d005e523f7d0e44806384aacd94601a2057c689177efb11ee5e8a00b756a8b40ba736b25be38a5a0361bef5450048a42ec42b33fa388147b23470c2bb8aefefe4ef1f507bb87bfed2e4754baff069f24f624a20d1d9cfd6cd6f99a4c71d2a60b86c154c0c8d5b62baffb87c6a70c164f34344f0f6e5110b67b3e84fd37"}, @NFTA_DATA_VERDICT={0x34, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}]}, @NFTA_DATA_VALUE={0xc3, 0x1, "b5a9b82e3d903b4ee4db4afcd4fe3097e312dee6825ca1d235ae5a6bbcd965665477bba3a7bd906628b3207e3e69cb64eb4a2a1c011cfbbdf52c6b493eef898a33600f0bdff30113b642685057981762ce1ceea9b52c82ada5fbb143a6bd951752789384c8e6227d8126ce486850e0a595190bb76342cd64d4c400026be2ad90b49b3e515c81f6a890fc8b913983a615f19f3f98e115478acd91305ab5134849d3ec27001b5239f817f43d9a236fc3188d8a03f1b95e0b8cc0852c05e4d644"}]}]}}, @hash={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_HASH_OFFSET={0x8, 0x6, 0x1, 0x0, 0x27f4}, @NFTA_HASH_MODULUS={0x8, 0x4, 0x1, 0x0, 0x400}]}}]}, {0x84, 0x1, 0x0, 0x1, [@meta={{0x9}, @void}, @nat={{0x8}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_NAT_REG_ADDR_MAX={0x8, 0x4, 0x1, 0x0, 0xe}, @NFTA_NAT_REG_ADDR_MIN={0x8, 0x3, 0x1, 0x0, 0xd}]}}, @reject={{0xb}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_REJECT_ICMP_CODE={0x5, 0x2, 0x6}, @NFTA_REJECT_TYPE={0x8, 0x1, 0x1, 0x0, 0x1}]}}, @cmp={{0x8}, @void}, @nat={{0x8}, @void}, @socket={{0xb}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_SOCKET_KEY={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SOCKET_DREG={0x8}, @NFTA_SOCKET_KEY={0x8}]}}]}, {0xc, 0x1, 0x0, 0x1, [@fib={{0x8}, @void}]}, {0x60, 0x1, 0x0, 0x1, [@notrack={{0xc}, @val={0x4, 0x2, 0x0, 0x1, [""]}}, @nat={{0x8}, @void}, @ct={{0x7}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CT_DIRECTION={0x5, 0x3, 0x1}]}}, @tproxy={{0xb}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_TPROXY_FAMILY={0x8, 0x1, 0x1, 0x0, 0xa}, @NFTA_TPROXY_REG_PORT={0x8}, @NFTA_TPROXY_REG_ADDR={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TPROXY_REG_PORT={0x8, 0x3, 0x1, 0x0, 0x9}]}}]}]}, @NFTA_RULE_POSITION_ID={0x8}]}, 0x5b4}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
epoll_pwait(r5, &(0x7f0000000300)=[{}, {}, {}], 0x3, 0x9, &(0x7f0000000340)={[0xffffffff80000000]}, 0x8)
ioctl$PTP_PIN_GETFUNC(r4, 0xc0603d06, 0x0)
r7 = syz_genetlink_get_family_id$batadv(&(0x7f0000000100), r1)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r4, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x24, r7, 0x400, 0x70bd25, 0x25dfdbff, {}, [@BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x80}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000000)

14:59:41 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
r1 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
ioctl$PTP_ENABLE_PPS(r1, 0x40043d04, 0x0)

[ 1516.413866][T11135] RBP: 0000000020ffd000 R08: 0000000000000005 R09: 0000000010000000
[ 1516.421826][T11135] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000200
[ 1516.429891][T11135] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020fff000
14:59:41 executing program 1:
keyctl$negate(0xd, 0x0, 0x80000000, 0xfffffffffffffffa)
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)

14:59:41 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r2, &(0x7f0000000040)={0x80000005})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
r4 = getpid()
r5 = epoll_create1(0x80000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = syz_io_uring_setup(0x714c, &(0x7f0000000100)={0x0, 0xb300, 0x0, 0x0, 0x38b, 0x0, r2}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000000180), &(0x7f00000001c0))
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r7)
ioctl$PTP_PIN_GETFUNC(r6, 0xc0603d06, 0x0)
kcmp$KCMP_EPOLL_TFD(r4, 0x0, 0x7, r1, &(0x7f00000000c0)={r5, r6, 0x7})
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r3, 0x6, 0x1d, &(0x7f0000000000), &(0x7f0000000080)=0x14)

14:59:41 executing program 1:
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)

14:59:41 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
io_uring_setup(0x6e48, &(0x7f0000000000)={0x0, 0x5341, 0xf1c79304b46e7266, 0x2, 0x322, 0x0, r1})

14:59:41 executing program 2:
r0 = epoll_create(0x8)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT_REMOVE, 0xb6f1b91)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000080)=@IORING_OP_TIMEOUT={0xb, 0x4, 0x0, 0x0, 0x2, &(0x7f0000000000)={0x77359400}}, 0x8000)
pipe(&(0x7f0000005500)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r2, 0xc0a85320, &(0x7f0000000280)={{0x0, 0x81}, 'port0\x00', 0x10, 0x40000, 0x600, 0x7918, 0x81, 0x0, 0x4, 0x0, 0x0, 0xb6})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r3, 0xc0a85320, &(0x7f0000000340)={{0x70, 0x4}, 'port0\x00', 0x20, 0x171000, 0x9, 0x400, 0x1, 0xb5, 0x3, 0x0, 0x6})
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r3, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x3c, 0x3, 0x1, 0x5, 0x0, 0x0, {0x3, 0x0, 0x1}, [@CTA_PROTOINFO={0x28, 0x4, 0x0, 0x1, @CTA_PROTOINFO_TCP={0x24, 0x1, 0x0, 0x1, [@CTA_PROTOINFO_TCP_WSCALE_ORIGINAL={0x5}, @CTA_PROTOINFO_TCP_WSCALE_ORIGINAL={0x5, 0x2, 0x40}, @CTA_PROTOINFO_TCP_STATE={0x5, 0x1, 0x5}, @CTA_PROTOINFO_TCP_WSCALE_ORIGINAL={0x5, 0x2, 0x5f}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r4, &(0x7f0000000040)={0x90002008})

14:59:41 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
syz_io_uring_setup(0x5da2, &(0x7f0000000000)={0x0, 0xdc49, 0x0, 0x0, 0x2b8}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000000c0))
epoll_wait(r0, &(0x7f0000000100)=[{}, {}, {}], 0x3, 0x3)
r1 = socket(0x4, 0x1, 0xfffffffc)
sendmsg$IPSET_CMD_PROTOCOL(r1, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x24, 0x1, 0x6, 0x101, 0x0, 0x0, {0x7, 0x0, 0x6}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x11)

14:59:41 executing program 5 (fault-call:2 fault-nth:27):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:41 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3e3, 0x0)

14:59:41 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0, 0x10}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:41 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r2, &(0x7f0000000040)={0x90002008})
r3 = getpid()
r4 = getpid()
kcmp$KCMP_EPOLL_TFD(r3, r4, 0x7, r0, &(0x7f0000000000)={r1, r1, 0x7})

14:59:41 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x2})
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x48000, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r2, &(0x7f0000000040)={0x2001})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
ioctl$MON_IOCG_STATS(r2, 0x80089203, &(0x7f0000000100))

[ 1517.123659][T11197] FAULT_INJECTION: forcing a failure.
[ 1517.123659][T11197] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1517.136946][T11197] CPU: 1 PID: 11197 Comm: syz-executor.5 Not tainted 5.14.0-rc5-syzkaller #0
[ 1517.145704][T11197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1517.155755][T11197] Call Trace:
[ 1517.159025][T11197]  dump_stack_lvl+0xb7/0x103
[ 1517.163616][T11197]  dump_stack+0x11/0x1a
[ 1517.167770][T11197]  should_fail+0x23c/0x250
[ 1517.172255][T11197]  __alloc_pages+0x102/0x320
[ 1517.176846][T11197]  alloc_pages+0x2e8/0x340
[ 1517.181273][T11197]  pte_alloc_one+0x29/0xb0
[ 1517.185735][T11197]  __pte_alloc+0x2f/0x210
[ 1517.190144][T11197]  remap_pfn_range_notrack+0x5b7/0x770
[ 1517.195597][T11197]  remap_pfn_range+0x87/0xe0
[ 1517.200772][T11197]  io_uring_mmap+0x232/0x260
[ 1517.205362][T11197]  mmap_region+0xbcb/0x1400
[ 1517.209852][T11197]  do_mmap+0x73f/0xc40
[ 1517.213930][T11197]  vm_mmap_pgoff+0xf9/0x1d0
[ 1517.218428][T11197]  ksys_mmap_pgoff+0x2a8/0x380
[ 1517.223186][T11197]  do_syscall_64+0x3d/0x90
[ 1517.227600][T11197]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1517.233495][T11197] RIP: 0033:0x466632
[ 1517.237463][T11197] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64
[ 1517.257066][T11197] RSP: 002b:00007f9f987a90f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 1517.265470][T11197] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 0000000000466632
14:59:41 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
ioctl$PTP_EXTTS_REQUEST(r3, 0x40103d02, &(0x7f0000000000)={0x0, 0xd})
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r1, 0x40505330, &(0x7f0000000080)={{0x4, 0x80}, {0x20, 0x5}, 0x3, 0x6, 0x5})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r2, &(0x7f0000000040)={0x90002008})

14:59:41 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
socket$inet6_tcp(0xa, 0x1, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:41 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x3653, &(0x7f0000000000)={0x0, 0xc0cc, 0x4, 0x1, 0x2b8}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000140))

14:59:41 executing program 2:
epoll_create(0x8)
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x300, r0, &(0x7f0000000040)={0x10})
r2 = syz_open_dev$sg(&(0x7f0000000080), 0x6defa620, 0x400000)
syz_open_dev$sg(&(0x7f00000000c0), 0xe9, 0x8000)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, 0x2, 0x2, 0xff, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}}, 0x8c0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x2a, 0x40000)
ioctl$SG_GET_LOW_DMA(r4, 0x227a, &(0x7f0000000100))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r5, 0xc0603d06, 0x0)
ioctl$SG_NEXT_CMD_LEN(r2, 0x2283, &(0x7f0000000140)=0x7c)
ioctl$SCSI_IOCTL_DOORLOCK(r5, 0x5380)
prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x1)

[ 1517.273493][T11197] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffd000
[ 1517.281468][T11197] RBP: 0000000020ffd000 R08: 0000000000000005 R09: 0000000010000000
[ 1517.289551][T11197] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000200
[ 1517.297530][T11197] R13: 0000000020ffd000 R14: 00000000200001c0 R15: 0000000020fff000
14:59:41 executing program 1:
r0 = getpid()
process_vm_readv(r0, &(0x7f0000000600)=[{&(0x7f0000000380)=""/102, 0x66}, {&(0x7f0000000400)=""/171, 0xab}, {&(0x7f00000004c0)=""/33, 0x21}, {&(0x7f0000000500)=""/201, 0xc9}], 0x4, &(0x7f0000002a40)=[{&(0x7f0000000640)=""/4096, 0x1000}, {&(0x7f0000001640)=""/131, 0x83}, {&(0x7f0000001700)=""/4096, 0x1000}, {&(0x7f0000002700)=""/161, 0xa1}, {&(0x7f00000027c0)=""/162, 0xa2}, {&(0x7f0000002880)=""/123, 0x7b}, {&(0x7f0000002900)=""/243, 0xf3}, {&(0x7f0000002a00)=""/57, 0x39}], 0x8, 0x0)
ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r0, 0x1, &(0x7f0000000000)=""/78)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x2000002, 0x11, r1, 0x10000000)
r3 = getpid()
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETGEN(r4, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x14, 0x10, 0xa, 0x3, 0x0, 0x0, {0x7, 0x0, 0x7}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x2004}, 0x801)
sched_setattr(r3, &(0x7f0000000300)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
r5 = getpid()
sched_setattr(r5, &(0x7f0000000300)={0x38, 0x5, 0x60, 0x0, 0x7, 0x400000000000000, 0x4001, 0x9, 0x7, 0x7fff}, 0x0)
r6 = syz_open_dev$usbmon(&(0x7f0000000080), 0x5, 0x400000)
pipe(&(0x7f0000005500)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r7, 0x40505331, &(0x7f0000000100)={{0x4}, {0x1, 0x4}, 0xd3, 0x1, 0xed})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r9, 0xc0603d06, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r9, 0x40a85323, &(0x7f0000000180)={{0x5, 0x49}, 'port1\x00', 0x50, 0x20000, 0x0, 0x3, 0x9, 0x4, 0x57, 0x0, 0x4, 0x1})
socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$PTP_PIN_GETFUNC(r8, 0xc0603d06, 0x0)
kcmp$KCMP_EPOLL_TFD(r3, r5, 0x7, r6, &(0x7f00000000c0)={r8, r2, 0x3})

14:59:41 executing program 0:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000100), r1)
r2 = io_uring_setup(0x3fb0, &(0x7f0000000140)={0x0, 0x7704, 0x1, 0x0, 0x24a, 0x0, r1})
r3 = io_uring_setup(0x3ba8, &(0x7f0000000080)={0x0, 0x246, 0x1, 0x1, 0x74, 0x0, r2})
ioctl$SG_GET_TIMEOUT(r0, 0x2202, 0x0)
r4 = getpid()
sched_setattr(r4, &(0x7f0000000300)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
rt_sigqueueinfo(r4, 0x19, &(0x7f0000000000)={0x3, 0x2, 0xfff})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r3, 0x10004000)

14:59:41 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0, 0x4a}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:42 executing program 5 (fault-call:2 fault-nth:28):
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:42 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500))
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r0, &(0x7f0000000000)={0x80002009})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, r1)

14:59:42 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3e4, 0x0)

14:59:42 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x10010, r0, 0x10000000)

14:59:42 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
r1 = getpid()
sched_setattr(r1, &(0x7f0000000300)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
sched_setattr(r1, &(0x7f0000000000)={0x38, 0x0, 0x5c, 0x5, 0x8, 0x80000001, 0x81, 0xa6b, 0x2, 0x7}, 0x0)

[ 1517.517425][T11264] FAULT_INJECTION: forcing a failure.
[ 1517.517425][T11264] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1517.530481][T11264] CPU: 1 PID: 11264 Comm: syz-executor.5 Not tainted 5.14.0-rc5-syzkaller #0
[ 1517.539264][T11264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1517.549318][T11264] Call Trace:
[ 1517.552616][T11264]  dump_stack_lvl+0xb7/0x103
[ 1517.557207][T11264]  dump_stack+0x11/0x1a
[ 1517.561357][T11264]  should_fail+0x23c/0x250
14:59:42 executing program 2:
r0 = epoll_create(0x8)
syz_io_uring_setup(0x4e4b, &(0x7f0000000200)={0x0, 0x705f, 0x0, 0x0, 0xda}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100))
r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x300000b, 0x20010, 0xffffffffffffffff, 0x10000000)
io_uring_setup(0x2444, &(0x7f0000000280)={0x0, 0x8760, 0x4, 0x3, 0x4001c4})
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000140)={0x81, 0x1a8, 0x8}, &(0x7f0000000180)='./file0\x00', 0x18, 0x0, 0x12345}, 0x1)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r3, &(0x7f0000000040)={0x90002008})

[ 1517.565770][T11264]  should_fail_usercopy+0x16/0x20
[ 1517.570796][T11264]  _copy_to_user+0x1c/0x90
[ 1517.575208][T11264]  simple_read_from_buffer+0xab/0x120
[ 1517.580568][T11264]  proc_fail_nth_read+0xf6/0x140
[ 1517.585505][T11264]  ? rw_verify_area+0x136/0x250
[ 1517.590462][T11264]  ? proc_fault_inject_write+0x200/0x200
[ 1517.596102][T11264]  vfs_read+0x154/0x5d0
[ 1517.600257][T11264]  ? __fget_light+0x21b/0x260
[ 1517.604926][T11264]  ? __cond_resched+0x11/0x40
[ 1517.609607][T11264]  ksys_read+0xce/0x180
14:59:42 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
ioctl$PTP_CLOCK_GETCAPS(r1, 0x80503d01, &(0x7f0000000100))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
ioctl$MON_IOCX_MFETCH(r3, 0xc0109207, &(0x7f00000000c0)={&(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0], 0x4, 0x4acf6336})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r2, &(0x7f0000000040)={0x90002008})

[ 1517.613765][T11264]  __x64_sys_read+0x3e/0x50
[ 1517.618266][T11264]  do_syscall_64+0x3d/0x90
[ 1517.622793][T11264]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1517.628684][T11264] RIP: 0033:0x41936c
[ 1517.632567][T11264] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 1517.652217][T11264] RSP: 002b:00007f9f987a9170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
14:59:42 executing program 1:
getpeername(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tpin6={0x18, 0x1, {0x0, <r0=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, &(0x7f0000000080)=0x80)
sendmsg$BATADV_CMD_GET_HARDIF(r0, &(0x7f0000000180)={&(0x7f00000000c0), 0xc, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB="24a89ed2", @ANYRES16=0x0, @ANYBLOB="000226bd7000ffdbdf250500000008000600", @ANYRES32=0x0, @ANYBLOB='\b\x00\v\x00\x00\x00\x00\x00'], 0x24}, 0x1, 0x0, 0x0, 0x8800}, 0x4080)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r1, 0x10000000)

14:59:42 executing program 0:
r0 = io_uring_setup(0x6f2d, &(0x7f0000000080)={0x0, 0xffffffff})
r1 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$link(0x8, 0x0, r1)
keyctl$reject(0x13, r1, 0x800, 0x80000001, 0xfffffffffffffffa)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:42 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0, 0x4a00}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:42 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$NFQNL_MSG_VERDICT_BATCH(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x50, 0x3, 0x3, 0x101, 0x0, 0x0, {0x0, 0x0, 0xa}, [@NFQA_VERDICT_HDR={0xc, 0x2, {0x0, 0x1}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x200}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x1}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0x2}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0x5}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x2}]}, 0x50}}, 0x4)
r2 = socket(0x2, 0xa, 0x6)
sendmsg$NFT_MSG_GETSETELEM(r2, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x88}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

[ 1517.660756][T11264] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000041936c
[ 1517.668720][T11264] RDX: 000000000000000f RSI: 00007f9f987a91e0 RDI: 0000000000000004
[ 1517.676685][T11264] RBP: 00007f9f987a91d0 R08: 0000000000000000 R09: 0000000010000000
[ 1517.684714][T11264] R10: 0000000000008011 R11: 0000000000000246 R12: 0000000000000002
[ 1517.692676][T11264] R13: 00007ffda1a2aa9f R14: 00007f9f987a9300 R15: 0000000000022000
14:59:42 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
ioctl$SG_GET_PACK_ID(0xffffffffffffffff, 0x227c, &(0x7f0000000000))

[ 1517.732556][T11285] syz-executor.2 uses obsolete (PF_INET,SOCK_PACKET)
14:59:42 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:42 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3e5, 0x0)

14:59:42 executing program 1:
pipe(&(0x7f0000000040))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x100010, r0, 0x10000000)

14:59:42 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r2, &(0x7f0000000040)={0x90002008})
getpeername(r2, &(0x7f0000001480)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r3=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, &(0x7f0000001500)=0x80)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, r3)
r4 = getpid()
sched_setattr(r4, &(0x7f0000000300)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
r5 = getpid()
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r6, 0xc0603d06, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r7, 0xc0603d06, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r8, 0xc0603d06, 0x0)
sendmsg$nl_netfilter(r1, &(0x7f0000001440)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000001400)={&(0x7f0000001540)=ANY=[@ANYRESHEX=r8, @ANYRES32=r6, @ANYBLOB="4afe4c702e198b8cdfbdbc47c39dd7718a4d9a19f8fecb560049ab5a9497f2c5800014006d0000000000000000000000ffffac1414404e0193582a5df176a4d32f27e921dbab3c0a77827409259f77590eb1c11e1edada1dfa98575fba502a521c49e3b32e", @ANYRES32=r5, @ANYRES32, @ANYRES32=0x0, @ANYBLOB="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"], 0x135c}, 0x1, 0x0, 0x0, 0x400c800}, 0x24000000)

14:59:42 executing program 1:
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2000002, 0x11, r0, 0x10000000)

14:59:42 executing program 0:
io_uring_setup(0x6f2e, &(0x7f0000000080))
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x84000, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$IPCTNL_MSG_CT_GET_STATS(r1, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x14, 0x5, 0x1, 0x201, 0x0, 0x0, {0x2, 0x0, 0xa}, ["", "", ""]}, 0x14}}, 0x20048805)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
sendmsg$NFT_MSG_GETRULE(r2, &(0x7f0000000800)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000007c0)={&(0x7f00000005c0)={0x1cc, 0x7, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x3}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x150, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@counter={{0xc}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x9}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0xff}]}}]}, {0x3c, 0x1, 0x0, 0x1, [@socket={{0xb}, @void}, @dup_ipv4={{0x8}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_DUP_SREG_ADDR={0x8}, @NFTA_DUP_SREG_ADDR={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_DUP_SREG_DEV={0x8}]}}, @osf={{0x8}, @void}]}, {0x10, 0x1, 0x0, 0x1, [@dynset={{0xb}, @void}]}, {0x90, 0x1, 0x0, 0x1, [@xfrm={{0x9}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_XFRM_KEY={0x8, 0x2, 0x1, 0x0, 0x5}, @NFTA_XFRM_KEY={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_XFRM_DIR={0x5, 0x3, 0x1}]}}, @connlimit={{0xe}, @val={0x54, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8, 0x1, 0x1, 0x0, 0x7ff}, @NFTA_CONNLIMIT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_CONNLIMIT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_CONNLIMIT_COUNT={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_CONNLIMIT_FLAGS={0x8}, @NFTA_CONNLIMIT_COUNT={0x8, 0x1, 0x1, 0x0, 0x7fff}, @NFTA_CONNLIMIT_FLAGS={0x8}, @NFTA_CONNLIMIT_FLAGS={0x8}, @NFTA_CONNLIMIT_FLAGS={0x8}, @NFTA_CONNLIMIT_COUNT={0x8, 0x1, 0x1, 0x0, 0x8000}]}}]}, {0x44, 0x1, 0x0, 0x1, [@socket={{0xb}, @val={0x34, 0x2, 0x0, 0x1, [@NFTA_SOCKET_DREG={0x8, 0x2, 0x1, 0x0, 0x11}, @NFTA_SOCKET_KEY={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SOCKET_DREG={0x8}, @NFTA_SOCKET_DREG={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_SOCKET_KEY={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SOCKET_KEY={0x8}]}}]}]}, @NFTA_RULE_POSITION_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_COMPAT={0x3c, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0xd}, @NFTA_RULE_COMPAT_FLAGS={0x8}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x88b5}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x1d}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x86dd}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}]}]}, 0x1cc}, 0x1, 0x0, 0x0, 0x20000040}, 0x20000000)
mmap$IORING_OFF_SQES(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x12, r1, 0x10004000)
sendmsg$IPSET_CMD_PROTOCOL(r1, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x44, 0x1, 0x6, 0x301, 0x0, 0x0, {0xa, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x44}, 0x1, 0x0, 0x0, 0x1815}, 0x4000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000480)={'batadv0\x00', <r3=>0x0})
sendmsg$BATADV_CMD_GET_DAT_CACHE(r1, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x34, 0x0, 0x400, 0x70bd28, 0x25dfdbfc, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x55}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0xfffffffb}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x400c8c0)
sendmsg$NFT_MSG_GETSET(r1, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x2c, 0xa, 0xa, 0x801, 0x0, 0x0, {0x3, 0x0, 0x5}, [@NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x33}, @NFTA_SET_DATA_TYPE={0x8, 0x6, 0x1, 0x0, 0xffffff00}, @NFTA_SET_OBJ_TYPE={0x8, 0xf, 0x1, 0x0, 0x3}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20004800}, 0x24004051)

14:59:42 executing program 2:
r0 = epoll_create(0x1f)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$tcp_congestion(r1, &(0x7f0000000000)='cubic\x00', 0x6)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

14:59:42 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b25, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:42 executing program 1:
pipe(&(0x7f0000005500))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x100010, r1, 0x10000000)

14:59:42 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0, 0x80000}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:42 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x0, 0x4, 0x1000})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x20010, r0, 0x10004000)

14:59:42 executing program 2:
r0 = epoll_create(0x8)
epoll_wait(r0, &(0x7f00000000c0)=[{}, {}, {}, {}, {}, {}, {}], 0x7, 0xfffffff8)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r2, &(0x7f0000000040)={0x90002008})
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0)
epoll_pwait(r1, &(0x7f0000000140), 0x0, 0x8, &(0x7f0000000200)={[0xc]}, 0x8)
ioctl$PTP_EXTTS_REQUEST2(r3, 0x40103d0b, &(0x7f0000000080)={0x4})

14:59:42 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x50040, 0x0)
syz_open_dev$sg(&(0x7f0000000080), 0x20, 0x2000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
kcmp$KCMP_EPOLL_TFD(0x0, 0xffffffffffffffff, 0x7, r2, &(0x7f0000000040)={r0, r0, 0x9f})

14:59:42 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3e6, 0x0)

14:59:42 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:42 executing program 1:
prctl$PR_GET_ENDIAN(0x13, &(0x7f0000000000))
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
syz_genetlink_get_family_id$batadv(&(0x7f0000000040), r1)

14:59:42 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:42 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:42 executing program 1:
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
ioctl$SG_GET_TIMEOUT(r0, 0x2202, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x4c, 0x0, 0x120, 0x70bd2c, 0x25dfdbfd, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x200}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x20}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x1}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x7ff}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40000}, 0x4000441)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x13, r1, 0x10000000)

14:59:42 executing program 0:
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x8400, 0x0)
ioctl$SG_GET_SCSI_ID(r2, 0x2276, &(0x7f0000000040))
r3 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r3, 0x10004000)

14:59:42 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x110, r0, 0x10000000)
r2 = io_uring_setup(0x2a7d, &(0x7f0000000100)={0x0, 0x4e6b, 0x2, 0x3, 0x7e, 0x0, r0})
mmap$IORING_OFF_SQES(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x1, 0x1010, r2, 0x10000000)
syz_io_uring_setup(0x325d, &(0x7f0000000000)={0x0, 0xebf3, 0x9, 0x3, 0x28, 0x0, r0}, &(0x7f0000fef000/0x2000)=nil, &(0x7f0000ff1000/0x1000)=nil, &(0x7f0000000080), &(0x7f00000000c0))
io_uring_setup(0x401c, &(0x7f0000000280)={0x0, 0xef9a, 0x20, 0x0, 0x2c4, 0x0, r0})
ioctl$MON_IOCQ_URB_LEN(r1, 0x9201)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
sendmsg$IPSET_CMD_HEADER(r3, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c0000000c06010400000000ecffffffa5286b00000000840a4f5baf6df8d9bc4ec4273c28754ef541cd622d1ff49155c26d056fcb48"], 0x1c}, 0x1, 0x0, 0x0, 0xd2ec59b4b63c84f2}, 0x844)

14:59:42 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0, 0x100000}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:42 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x4}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:43 executing program 2:
r0 = epoll_create(0x40)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
getpeername(r1, &(0x7f0000000080)=@l2tp={0x2, 0x0, @private}, &(0x7f0000000000)=0x80)
process_vm_writev(0x0, &(0x7f0000000380)=[{&(0x7f0000000100)=""/190, 0xbe}, {&(0x7f00000001c0)=""/202, 0xca}, {&(0x7f00000002c0)=""/170, 0xaa}], 0x3, &(0x7f0000000740)=[{&(0x7f00000003c0)=""/244, 0xf4}, {&(0x7f00000004c0)}, {&(0x7f0000000500)=""/157, 0x9d}, {&(0x7f00000005c0)=""/39, 0x27}, {&(0x7f0000000600)=""/201, 0xc9}, {&(0x7f0000000700)=""/59, 0x3b}], 0x6, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r2, &(0x7f0000000040)={0x90002008})

14:59:43 executing program 0:
r0 = io_uring_setup(0x18cc, &(0x7f0000000080)={0x0, 0x8})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
io_uring_setup(0xe5a, &(0x7f0000000100)={0x0, 0x4005, 0x0, 0x5, 0x19d, 0x0, r1})
ioctl$SG_SET_RESERVED_SIZE(0xffffffffffffffff, 0x2275, &(0x7f0000000000)=0x800)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:43 executing program 1:
r0 = getpid()
r1 = getpid()
sched_setattr(r0, &(0x7f0000000300)={0x38, 0x2, 0x10000021, 0x0, 0xb, 0x80000001, 0xffffffffffffffff, 0x0, 0x0, 0x10000}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_COMPAT_GET(r2, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB="5bfdffff000b010800000000000000000300c8030500010000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4000840}, 0x4000880)
ptrace$peeksig(0x4209, r1, &(0x7f0000000000)={0xfffffffffffffffd, 0x0, 0x3}, &(0x7f0000000340)=[{}, {}, {}])
pipe(&(0x7f0000005500)={<r3=>0xffffffffffffffff})
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$PTP_PIN_GETFUNC(0xffffffffffffffff, 0xc0603d06, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r3, &(0x7f0000001d40)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000001d00)={&(0x7f0000000500)={0x17e8, 0xd, 0xa, 0x3, 0x0, 0x0, {0x1, 0x0, 0x3}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x179c, 0x3, 0x0, 0x1, [{0xfc, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY_END={0xf8, 0xa, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x14, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0x6}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}]}, @NFTA_DATA_VALUE={0xe0, 0x1, "d209c96a1cf0da73f5ab0ea12d5e4eff0a88666fd3bb65072ba74c3d54a8e362a32925d6db62407c5ddb6e956f5ab99c268eaa4d40fabb8cff4b317c6d310108ca442c75606bf2aaafede92fee31430d1702cea46c8c14cc1fed13ffa44b3095f900364fb42a2a0a6d6d9b8336ae003a10e0ba5a92d104b75850a816c7646ee6329321c0f96804b988fce7b5dd8abbc7a517a5405998f4fa8fd0f0c89e79a37e3a693a3959ee1bc39c8cea029ab91f67a28090d5e636f2efb9de28ffbcc167bb2b4f760c165fec56561107f5e6acc45d494adac80058408ad595a148"}]}]}, {0x1198, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz0\x00'}, @NFTA_SET_ELEM_EXPR={0x4}, @NFTA_SET_ELEM_KEY_END={0x117c, 0xa, 0x0, 0x1, [@NFTA_DATA_VALUE={0x98, 0x1, "824d5a973dea960dbf43f69244efd18d42e975231ea492652acb6b562e112af6ce19f1d878dc376fa22b91ac2732d76d538b6808b01b16fad886ed42b39632e499747a497628ca430aa06c7d20019d8f27bc9bb13995c7c5cfb79e6b440079dbc24de8aa6b43720129005c03d9deea57440f8d65b4ed6873b4371fcf6a5173556e75f4e9921355a2584062d0de7014b40d5b4dcb"}, @NFTA_DATA_VALUE={0xc3, 0x1, "eafb1d5d1874f9bcd67c392a6e101a55ad4a4711a1f7674275b784e9f4fd3c6af78f2396ff4a1c89607eaa1286c21b630ec3732c0368a1e9bf33d0e372b35b2fe3aef6c44201ba1eb8a4254863992349b83e62e61d06585c8889e91d545d74f59a00909605719c5d1b7848541cdd37902521d0b67987f10b749c6f972947328ac1aa80b4778e2971174f33cea7fcfb032d099e281a6decb090119692f4a1fdc9acd7e5bff038f9c7298a16cc1151d9e24859b865ed3dab866b2dcfb66edb50"}, @NFTA_DATA_VERDICT={0x18, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VALUE={0x1004, 0x1, "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"}]}]}, {0x504, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x294, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0xcf, 0x1, "a918fef22c0b04de839f36b19d43a651ef70a01ce4fdd46feb814b9940f9fa0dbea50c891bf036b6c0fa9747c50399ef5457ebb2c05b37de466a05d448c7bb2ffa389e105800eccade4d43508d9533fe3d77cbda168205ec42781c83c732fd4f0c33a0f9e37d3975033a81e47cff4ff344f95486b62863e4e292bb35e06aae19bc9a8afc1dd76d2875f826e74ef5a6a738182c21b0415704e35dd97bedaafe84c78abb00d17fd578049debc6dab7b36035ecfcc357fb7f3a2da7263488b09cd6b648ef51edef258cd7a304"}, @NFTA_DATA_VERDICT={0x58, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0x2f3d33f17368849f}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}, @NFTA_DATA_VERDICT={0x3c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}, @NFTA_DATA_VERDICT={0x3c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}, @NFTA_DATA_VERDICT={0x20, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}]}, @NFTA_DATA_VERDICT={0x20, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFTA_DATA_VALUE={0xae, 0x1, "b4fe872d537a71693da745540f10ae59be182e163cf597929649f17ad05973707512798b03253464c0637d13cd393604b1c24c7567c5a12324f71f68de489af10760bfabc6c99b83f5231ef53d7d5487a7d50fbe8f43e45b4e1165cbbf4322fc4ab0bd407079da1840138749108ac6d326b97c276b9b46ab1ce6be9ded7c4a0ae987a3ce17bf294fbf2b23c52b7b99eb99a955bd0eae6a74fb6ebcf92c771d3e60696a60621c5956428c"}]}, @NFTA_SET_ELEM_KEY_END={0x40, 0xa, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x3c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}]}]}, @NFTA_SET_ELEM_KEY_END={0x178, 0xa, 0x0, 0x1, [@NFTA_DATA_VALUE={0x91, 0x1, "879bfd1a8e533bd5104117b0f736710c8a72833f7a9f04e4537e2c89b21ec90740b2e98340e8fdc5a41f5588ec439488cd2b94768cbc673b4adcef7a10cfbef4b5513def70c506bd8557abeb8d24485fa5896f176e5fdb0910f2c1befb921f9461042fe8e6ad08f8c4f2eb4bc44d28025217f94131a559d7484b43b5da238a6a68aa09fdb4fd11f32c6c3d3213"}, @NFTA_DATA_VERDICT={0x64, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}, @NFTA_DATA_VERDICT={0x30, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}, @NFTA_DATA_VERDICT={0x40, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}]}, @NFTA_DATA_VALUE={0xc, 0x1, "3cc0152ce400bd8a"}]}, @NFTA_SET_ELEM_KEY={0x4}, @NFTA_SET_ELEM_KEY_END={0xa4, 0xa, 0x0, 0x1, [@NFTA_DATA_VALUE={0x40, 0x1, "ec71f9e5d0f2acfc9125918a5d4efea16bdd5cc3aa09dcf73bf17e5c2275f3aa7e5344b50e9c3b52eb587abb2540a3f4bd25858f2c57afe4e76eda5c"}, @NFTA_DATA_VERDICT={0x4c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFTA_DATA_VERDICT={0x14, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}]}]}, @NFTA_SET_ELEM_FLAGS={0x8}, @NFTA_SET_ELEM_USERDATA={0x4}]}]}, @NFTA_SET_ELEM_LIST_SET_ID={0x8}]}, 0x17e8}, 0x1, 0x0, 0x0, 0x20000005}, 0x20000000)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r4, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x30, 0x3, 0x8, 0x5, 0x0, 0x0, {0x5, 0x0, 0x4}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x88}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x8863}]}, 0x30}, 0x1, 0x0, 0x0, 0x20004050}, 0xe0)
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x1800002, 0x11, 0xffffffffffffffff, 0x10000000)

14:59:43 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3e7, 0x0)

14:59:43 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x7}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:43 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0, 0xf0ff7f}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:43 executing program 2:
ioctl$sock_inet6_tcp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000000))
r0 = epoll_create(0x6)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

14:59:43 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x0, 0x20010, r0, 0x10000000)

14:59:43 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x0, 0x20})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
r1 = epoll_create(0x80)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r1, &(0x7f0000000000)={0xc0000000})

14:59:43 executing program 2:
epoll_create(0x8)
pipe(&(0x7f0000000580)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000000)={0x80000000})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f00000005c0), 0x362c2, 0x0)
ioctl$PTP_SYS_OFFSET_PRECISE(r4, 0xc0403d08, &(0x7f0000000600))
ioctl$PTP_SYS_OFFSET_EXTENDED(r3, 0xc4c03d09, &(0x7f00000000c0)={0xf})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r5, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x300, r0, &(0x7f0000000040)={0xe8002018})

14:59:43 executing program 1:
pipe(&(0x7f0000000000))
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x300000c, 0x44013, r0, 0x10000000)

14:59:43 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x8}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:43 executing program 0:
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x2, &(0x7f00000006c0)={0xa, &(0x7f0000000640)=[{0x3, 0x7f, 0x5}, {0x3ff, 0x4, 0x1, 0x9}, {0x6, 0x6, 0xfd, 0x7ff}, {0x401, 0x80, 0x9, 0x9}, {0x6, 0x40, 0x81, 0x10f}, {0x5, 0x6, 0x3, 0xe0}, {0x5e, 0x7, 0xff}, {0x8, 0x20, 0x4, 0x6}, {0xd8d, 0xbc, 0x81, 0x40}, {0x101, 0x7f, 0xca, 0x3}]})
r0 = io_uring_setup(0x4d3, &(0x7f0000000080)={0x0, 0xfffffffd, 0x2, 0xffffffff, 0x194})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
ioctl$SCSI_IOCTL_BENCHMARK_COMMAND(0xffffffffffffffff, 0x3)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$NL80211_CMD_REGISTER_BEACONS(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)={0x1c, 0x0, 0x20, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x1, 0x75}, @void, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20004001}, 0x4)
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
pipe(&(0x7f0000005500)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r4, 0xc0603d06, 0x0)
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(r4, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x4, 0x1, 0x201, 0x0, 0x0, {0x7, 0x0, 0x7}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x20044894}, 0x4000090)
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
openat$cgroup_netprio_ifpriomap(r3, &(0x7f0000000240), 0x2, 0x0)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="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"], 0xc8}, 0x1, 0x0, 0x0, 0x4}, 0x8000)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r2, &(0x7f0000000500)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x2c, 0x0, 0x8, 0x70bd26, 0x25dfdbfd, {}, [@BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x6}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000040}, 0x14)
keyctl$clear(0x7, 0xfffffffffffffffe)

14:59:43 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3000006, 0x11, r0, 0x10000000)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x80010, r0, 0x10000000)
ioctl$SG_NEXT_CMD_LEN(r1, 0x2283, &(0x7f0000000000)=0x67)

14:59:43 executing program 2:
r0 = epoll_create(0x8)
epoll_wait(r0, &(0x7f0000000080)=[{}, {}, {}], 0x1555534c, 0x1)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f00000000c0))
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

14:59:43 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3e8, 0x0)

14:59:43 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x10}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:43 executing program 1:
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_inet6_tcp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000580))
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x30, 0x2, 0x1, 0x3, 0x0, 0x0, {0x1, 0x0, 0x1}, [@CTA_SEQ_ADJ_REPLY={0x1c, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0xfffffc01}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x7}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x6}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x24000084}, 0x1)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r1, 0x10000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'})
r3 = socket$inet_udp(0x2, 0x2, 0x0)
accept(r3, &(0x7f00000001c0)=@caif=@dgm, &(0x7f0000000240)=0x80)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000480), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_HARDIF(r1, &(0x7f0000000540)={&(0x7f0000000440), 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x2c, r5, 0x200, 0x70bd2c, 0x25dfdbfc, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x6}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x4}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x20000800)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r6, 0xc0603d06, 0x0)
io_uring_setup(0x6cf5, &(0x7f00000000c0)={0x0, 0xa5cb, 0x0, 0x0, 0x181, 0x0, r6})
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f0000000140)={&(0x7f0000ff0000/0x1000)=nil, 0x1000}, &(0x7f0000000180)=0x10)
ioctl$PTP_PIN_GETFUNC(r4, 0xc0603d06, 0x0)
ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, 0x0, 0xfff, &(0x7f0000000380)=""/137)
r7 = syz_open_dev$usbmon(&(0x7f0000000040), 0xe12, 0x200)
epoll_ctl$EPOLL_CTL_MOD(r4, 0x3, r7, &(0x7f0000000080)={0x68000008})

14:59:43 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_create(0x3f2)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

14:59:43 executing program 0:
prctl$PR_GET_KEEPCAPS(0x7)
r0 = io_uring_setup(0x4795, &(0x7f0000000080)={0x0, 0x0, 0x8, 0x3})
r1 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x400002, 0x0)
ioctl$PTP_PEROUT_REQUEST(r1, 0x40383d03, &(0x7f0000000040)={{0x3, 0x9620}, {0x4, 0x4}, 0xe889})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:43 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0, 0x4a000000}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:43 executing program 0:
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x10004000)

14:59:43 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x21}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:43 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
r2 = syz_open_dev$sg(&(0x7f0000000040), 0x9, 0x200000)
ioctl$SG_GET_TIMEOUT(r2, 0x2202, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00'})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)

14:59:43 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
ioctl$SG_GET_SCSI_ID(r1, 0x2276, &(0x7f0000000200))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
r2 = io_uring_setup(0x5eba, &(0x7f0000000000)={0x0, 0xb1b2, 0x2, 0x0, 0x58})
syz_io_uring_setup(0x8b6, &(0x7f0000000100)={0x0, 0xa2a6, 0x2, 0x2, 0x389, 0x0, r2}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000180), &(0x7f00000001c0))

14:59:43 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x42}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:43 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DISCONNECT(r0, &(0x7f0000000740)={&(0x7f0000000600), 0xc, &(0x7f0000000700)={&(0x7f0000000680)={0x28, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @val={0xc}}}}, 0x28}}, 0x0)
sendmsg$NL80211_CMD_REGISTER_BEACONS(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x24, r1, 0x300, 0x70bd2c, 0x25dfdbfc, {{}, {@val={0x8, 0x1, 0x71}, @val={0x8}, @void}}, ["", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x1)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x300, r2, &(0x7f0000000040)={0x90002008})
r3 = syz_io_uring_setup(0x2311, &(0x7f0000000040), &(0x7f00007db000/0x4000)=nil, &(0x7f00007dd000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
r4 = mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x0, 0x13, r3, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r5, r4, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r6, 0xc0603d06, 0x0)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000380), 0x1d3400, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r7, 0xc0603d06, 0x0)
pipe(&(0x7f0000005500)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r9, 0xc0603d06, 0x0)
ioctl$PTP_PIN_SETFUNC(r8, 0x40603d07, &(0x7f0000000300)={'\x00', 0xca81, 0x1, 0xff})
syz_io_uring_submit(0x0, r4, &(0x7f0000000000)=@IORING_OP_FALLOCATE={0x11, 0x3, 0x0, @fd_index=0x3, 0x6, 0x0, 0x80000001}, 0x3)

14:59:44 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3e9, 0x0)

14:59:44 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
ioctl$PTP_PEROUT_REQUEST(r2, 0x40383d03, &(0x7f0000000000)={{0x7f, 0x2}, {0x8, 0xffffffff}, 0x5})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
rt_sigsuspend(&(0x7f0000000040)={[0xc7e9]}, 0x8)
mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x3000003, 0x50, r1, 0x10000000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
sendmsg$NFT_MSG_GETSET(r3, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x30, 0xa, 0xa, 0x301, 0x0, 0x0, {0x3, 0x0, 0x1}, [@NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x12}, @NFTA_SET_TIMEOUT={0xc, 0xb, 0x1, 0x0, 0x7f}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2a}]}, 0x30}, 0x1, 0x0, 0x0, 0x800}, 0x400c800)
sendmsg$IPSET_CMD_HEADER(r1, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x80, 0xc, 0x6, 0x101, 0x0, 0x0, {0x8, 0x0, 0x6}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x80}, 0x1, 0x0, 0x0, 0xc004}, 0x40408f0)

14:59:44 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x60}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:44 executing program 2:
prctl$PR_SET_FPEMU(0xa, 0x2)
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})
r2 = epoll_create1(0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r3)

14:59:44 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
setsockopt$inet6_tcp_buf(r0, 0x6, 0xd, &(0x7f0000000100)="ddfd32e63717a63ad4c36da67b9c4318dba1f0077c56c27ec319de6cf48ae77d7752aaec4c9485a1f11480cd59ba1f06141a93c12d5d48250acbc5b45669e202179cd682cf17958d26396131282f1cece222e4580d92385adaa37b5f1edac9", 0x5f)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_pwait(r1, &(0x7f0000000080), 0x0, 0x0, &(0x7f00000000c0)={[0x8]}, 0x8)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x200000, 0x0)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000006, 0x1010, r3, 0x10000000)
openat$cgroup_netprio_ifpriomap(r2, &(0x7f0000000000), 0x2, 0x0)

14:59:44 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0, 0x7ffff000}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:44 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
pipe(&(0x7f0000000000))
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x2000002, 0x11, r0, 0x10000000)

14:59:44 executing program 2:
setregid(0xffffffffffffffff, 0xffffffffffffffff)
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002009})

14:59:44 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xac}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:44 executing program 1:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
sendmsg$NFT_MSG_GETTABLE(r1, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x34, 0x1, 0xa, 0x801, 0x0, 0x0, {0x1, 0x0, 0x2}, [@NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004082}, 0x84)
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)

14:59:44 executing program 2:
r0 = epoll_create(0x8)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, 0xffffffffffffffff, &(0x7f0000000040)={0x90002008})

14:59:44 executing program 1:
prctl$PR_SET_MM_AUXV(0x23, 0xc, &(0x7f0000000000)="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", 0xfa)
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r0, 0x10000000)

14:59:44 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3ea, 0x0)

14:59:44 executing program 0:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
setsockopt$inet6_tcp_buf(0xffffffffffffffff, 0x6, 0x1a, &(0x7f0000000000)="3957bf2e6925062a", 0x8)
r2 = io_uring_setup(0x6e2e, &(0x7f0000000080)={0x0, 0xfffffffe, 0xa, 0x0, 0x0, 0x0, r0})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x402c5342, &(0x7f00000002c0)={0x3ff, 0xfffffffb, 0x40, {0xb37a, 0x6}, 0x3ff, 0x17})
sendmsg$NFT_MSG_GETRULE(r1, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)={0x134, 0x7, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x2}, [@NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x1}, @NFTA_RULE_COMPAT={0x44, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x3a}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x8906}, @NFTA_RULE_COMPAT_FLAGS={0x8}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x35}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x71}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x5c}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_RULE_USERDATA={0xbb, 0x7, 0x1, 0x0, "959088835c1d63a8b89307065e70cb9521db9f03e190d2c7f79fbcd3a4c2c48a2d999a752693574eaa41c6962d0f57aea27b6dd0a248f6e9c7f9d45f772fbea803b46b1a032b8313bde01a35bbd2a4118aabf99b899c8f90b3ac9adc086c442fb3182a3d642faadabb6aba7c97cc93fbf680ce3dfe587712304a18a1d0494ed6150408529f55a189aa22e7f7931849a5696a9f41511df8d66d508fbe631923c052b0c71eef0481ec3c45191f40f8f8a1ed3642481f06ff"}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x1}]}, 0x134}, 0x1, 0x0, 0x0, 0x20000010}, 0x200100d5)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x10004000)

14:59:44 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x204}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:44 executing program 1:
r0 = mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, 0xffffffffffffffff, 0x10000000)
syz_io_uring_setup(0xce8, &(0x7f0000000000)={0x0, 0x6cd5, 0x20, 0x3, 0x2fe}, &(0x7f0000fee000/0x4000)=nil, &(0x7f0000fec000/0x4000)=nil, &(0x7f0000000080)=<r1=>0x0, &(0x7f00000000c0))
r2 = syz_io_uring_setup(0x2311, &(0x7f0000000040), &(0x7f00007db000/0x4000)=nil, &(0x7f00007dd000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
r3 = mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x0, 0x13, r2, 0x10000000)
syz_io_uring_submit(0x0, r0, &(0x7f0000000180)=@IORING_OP_POLL_REMOVE={0x7, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x10000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r4, r3, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
syz_io_uring_submit(r1, r3, &(0x7f0000000140)=@IORING_OP_WRITE={0x17, 0x0, 0x2000, @fd_index=0x1, 0x10000, &(0x7f0000000100)="e86473de8ad59caa5f3144", 0xb}, 0x1c08)

14:59:44 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

14:59:44 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0, 0x80000000000}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:44 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3eb, 0x0)

14:59:44 executing program 0:
r0 = io_uring_setup(0x6f2a, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:44 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, 0x2, 0x1, 0x3, 0x0, 0x0, {0x1, 0x0, 0x2}, [@CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x5}, @CTA_ID={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000061}, 0x4)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r2, &(0x7f0000000040)={0x90002008})

14:59:44 executing program 1:
setregid(0xffffffffffffffff, 0xffffffffffffffff)
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002009})

14:59:45 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x2fe}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:45 executing program 0:
r0 = io_uring_setup(0x6f6b, &(0x7f0000000080)={0x0, 0x835a, 0x1, 0x0, 0x82})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x8, 0x28013, r1, 0x10000000)

14:59:45 executing program 1:
setregid(0xffffffffffffffff, 0xffffffffffffffff)
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002009})

14:59:45 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
sendmsg$NFQNL_MSG_VERDICT_BATCH(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x60, 0x3, 0x3, 0x3, 0x0, 0x0, {0xc, 0x0, 0x1}, [@NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x81}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x7}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffd, 0x400}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0xdf5e}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffe, 0x1ff}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0x0, 0x81}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0xe37}}]}, 0x60}}, 0x24004880)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r2, &(0x7f0000000040)={0x90002008})

14:59:45 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000000)={{0x2, 0x3}, {0x0, 0x2}, 0x4c2f, 0x3, 0x5})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000100)={0x13, 0x100, 0x4, 0x9, 0xffffffff, 0x80000001})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:45 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x352}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:45 executing program 2:
r0 = epoll_create(0x8000209)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000000)={0x1000001c})

14:59:45 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0, 0x7ffffffff000}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:45 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3ec, 0x0)

14:59:45 executing program 1:
setregid(0xffffffffffffffff, 0xffffffffffffffff)
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002009})

14:59:45 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x402}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:45 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
sendmsg$OSF_MSG_REMOVE(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000006c0)={&(0x7f0000000740)=ANY=[@ANYBLOB="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"], 0x4bc}, 0x1, 0x0, 0x0, 0x40}, 0x4c800)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000180), 0x200, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x2738, &(0x7f0000000000)={0x0, 0x8000f44e, 0x10, 0x2, 0xe1}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000000100), &(0x7f0000000140))

14:59:45 executing program 2:
epoll_create(0x8)
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r0, 0xc0505350, &(0x7f00000000c0)={{0x6, 0x7f}, {0xb7, 0x1f}, 0xfffff001, 0x5, 0x3})
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f0000000140)={{0x81, 0x4}, {0x8, 0xe3}, 0x4, 0x1, 0x7})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
pipe(&(0x7f00000001c0))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x300, r1, &(0x7f0000000080)={0x90002008})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000040))
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000000)={'wlan1\x00'})

14:59:45 executing program 1:
setregid(0xffffffffffffffff, 0xffffffffffffffff)
epoll_create(0x8)
pipe(&(0x7f0000005500))

14:59:45 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x406}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:45 executing program 2:
r0 = epoll_create(0x8022)
openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

14:59:45 executing program 0:
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
ioctl$PTP_PIN_SETFUNC2(r1, 0x40603d10, &(0x7f0000000080)={'\x00', 0x5, 0x1, 0xffff})
ioctl$PTP_PEROUT_REQUEST(r0, 0x40383d03, &(0x7f0000000240)={{0x9, 0x7}, {0x1f, 0xfffffffb}, 0x6})
r2 = io_uring_setup(0x727a, &(0x7f0000000180)={0x0, 0x2, 0x4, 0xeffffffa, 0x0, 0x0, r1})
pipe(&(0x7f0000000100))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
write$tcp_congestion(r1, &(0x7f0000000140)='bbr\x00', 0x4)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x10004000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f0000000200), r4)
ioctl$SG_GET_SCSI_ID(0xffffffffffffffff, 0x2276, &(0x7f0000000000))
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, &(0x7f0000000040)=0x52)

14:59:45 executing program 1:
setregid(0xffffffffffffffff, 0xffffffffffffffff)
epoll_create(0x8)

14:59:45 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x3000004, 0x10, r1, 0x10000000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r2, &(0x7f0000000040)={0x90002008})

14:59:45 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0, 0x10000000000000}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:45 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3ed, 0x0)

14:59:45 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x604}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:45 executing program 0:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x8, 0x2, 0x1, 'queue0\x00', 0xffff88d2})
r1 = io_uring_setup(0x6f2e, &(0x7f0000000080))
getuid()
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x10004000)
time(&(0x7f0000000040))

14:59:45 executing program 1:
setregid(0xffffffffffffffff, 0xffffffffffffffff)

14:59:45 executing program 2:
r0 = epoll_create(0x8)
epoll_wait(r0, &(0x7f0000000100)=[{}, {}, {}, {}, {}, {}], 0x6, 0x400)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r4, 0xc0603d06, 0x0)
write$cgroup_netprio_ifpriomap(r4, &(0x7f0000000180)={'ip6_vti0', 0x32, 0x31}, 0xb)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000080)={0xc0000004})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

14:59:45 executing program 0:
r0 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x10004000)
syz_io_uring_submit(0x0, r0, &(0x7f0000000000)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x2, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x1}, 0x1)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
ioctl$PTP_SYS_OFFSET_EXTENDED(r1, 0xc4c03d09, &(0x7f0000000080)={0x1})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(0xffffffffffffffff, 0x4040534e, &(0x7f0000000040)={0x1c0, @tick=0x9, 0xe6, {0x1, 0x5}, 0x1, 0x1, 0xf7})

14:59:45 executing program 1:
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_inet6_tcp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000580))
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x30, 0x2, 0x1, 0x3, 0x0, 0x0, {0x1, 0x0, 0x1}, [@CTA_SEQ_ADJ_REPLY={0x1c, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0xfffffc01}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x7}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x6}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x24000084}, 0x1)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
mmap$IORING_OFF_SQES(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x2000002, 0x11, r1, 0x10000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'})
r3 = socket$inet_udp(0x2, 0x2, 0x0)
accept(r3, &(0x7f00000001c0)=@caif=@dgm, &(0x7f0000000240)=0x80)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000480), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_HARDIF(r1, &(0x7f0000000540)={&(0x7f0000000440), 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x2c, r5, 0x200, 0x70bd2c, 0x25dfdbfc, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x6}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x4}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x20000800)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r6, 0xc0603d06, 0x0)
io_uring_setup(0x6cf5, &(0x7f00000000c0)={0x0, 0xa5cb, 0x0, 0x0, 0x181, 0x0, r6})
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f0000000140)={&(0x7f0000ff0000/0x1000)=nil, 0x1000}, &(0x7f0000000180)=0x10)
ioctl$PTP_PIN_GETFUNC(r4, 0xc0603d06, 0x0)
ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, 0x0, 0xfff, &(0x7f0000000380)=""/137)
r7 = syz_open_dev$usbmon(&(0x7f0000000040), 0xe12, 0x200)
epoll_ctl$EPOLL_CTL_MOD(r4, 0x3, r7, &(0x7f0000000080)={0x68000008})

14:59:45 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x700}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:45 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
r1 = syz_io_uring_setup(0x1fd9, &(0x7f0000000280)={0x0, 0x9660, 0x4, 0x1, 0xdd, 0x0, r0}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000300), &(0x7f0000000340))
io_uring_setup(0x3a07, &(0x7f0000000380)={0x0, 0xceeb, 0x8fd2a189ffce6752, 0x3, 0x392, 0x0, r1})
r2 = syz_io_uring_setup(0x4b1d, &(0x7f0000000000)={0x0, 0x4e1, 0x8, 0x3, 0x106}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))
syz_io_uring_setup(0x49f2, &(0x7f0000000180)={0x0, 0xd792, 0x0, 0x2, 0x243, 0x0, r2}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000240))
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x23, &(0x7f0000000400)={&(0x7f0000ffd000/0x3000)=nil, 0x3000}, &(0x7f0000000440)=0x10)

14:59:45 executing program 1:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$NFQNL_MSG_VERDICT_BATCH(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x50, 0x3, 0x3, 0x101, 0x0, 0x0, {0x0, 0x0, 0xa}, [@NFQA_VERDICT_HDR={0xc, 0x2, {0x0, 0x1}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x200}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x1}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0x2}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0x5}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x2}]}, 0x50}}, 0x4)
r2 = socket(0x2, 0xa, 0x6)
sendmsg$NFT_MSG_GETSETELEM(r2, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x88}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

14:59:45 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x2000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:45 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0, 0xf0ff7f00000000}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:45 executing program 1:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$NFQNL_MSG_VERDICT_BATCH(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x50, 0x3, 0x3, 0x101, 0x0, 0x0, {0x0, 0x0, 0xa}, [@NFQA_VERDICT_HDR={0xc, 0x2, {0x0, 0x1}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x200}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x1}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0x2}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0x5}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x2}]}, 0x50}}, 0x4)
r2 = socket(0x2, 0xa, 0x6)
sendmsg$NFT_MSG_GETSETELEM(r2, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x88}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

14:59:45 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3ee, 0x0)

14:59:45 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x3f00}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:45 executing program 0:
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000080))
r0 = io_uring_setup(0x6f26, &(0x7f0000000100)={0x0, 0x2298, 0x4, 0x2})
mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x9, 0x4010, 0xffffffffffffffff, 0x10000000)
syz_io_uring_setup(0x4b20, &(0x7f0000000000)={0x0, 0x25d2, 0x0, 0x0, 0x21c, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000001c0))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$IPSET_CMD_SAVE(r1, &(0x7f00000007c0)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000780)={&(0x7f0000000700)={0x68, 0x8, 0x6, 0x801, 0x0, 0x0, {0x1, 0x0, 0x7}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x68}, 0x1, 0x0, 0x0, 0x4000}, 0xc4)
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
io_uring_setup(0x34f0, &(0x7f0000000640)={0x0, 0x9221, 0x0, 0x3, 0x3b9, 0x0, r1})
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0x40a85323, &(0x7f0000000300)={{0x81, 0xae}, 'port1\x00', 0x4, 0x1800, 0x7, 0x3, 0x0, 0x1f, 0x2000, 0x0, 0x6, 0x3})
pipe(&(0x7f00000004c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_GET(r3, &(0x7f0000000480)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000540)={0xe8, 0x1, 0x8, 0x201, 0x0, 0x0, {0x0, 0x0, 0x7}, [@CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x200}, @CTA_TIMEOUT_DATA={0x14, 0x4, 0x0, 0x1, @sctp=[@CTA_TIMEOUT_SCTP_COOKIE_ECHOED={0x8, 0x3, 0x1, 0x0, 0x4}, @CTA_TIMEOUT_SCTP_SHUTDOWN_RECD={0x8, 0x6, 0x1, 0x0, 0x400}]}, @CTA_TIMEOUT_DATA={0x3c, 0x4, 0x0, 0x1, @tcp=[@CTA_TIMEOUT_TCP_ESTABLISHED={0x8, 0x3, 0x1, 0x0, 0x200}, @CTA_TIMEOUT_TCP_LAST_ACK={0x8, 0x6, 0x1, 0x0, 0x2}, @CTA_TIMEOUT_TCP_SYN_RECV={0x8, 0x2, 0x1, 0x0, 0xd}, @CTA_TIMEOUT_TCP_LAST_ACK={0x8, 0x6, 0x1, 0x0, 0x20}, @CTA_TIMEOUT_TCP_CLOSE={0x8, 0x8, 0x1, 0x0, 0x2}, @CTA_TIMEOUT_TCP_SYN_SENT2={0x8, 0x9, 0x1, 0x0, 0xffffffff}, @CTA_TIMEOUT_TCP_FIN_WAIT={0x8, 0x4, 0x1, 0x0, 0x70}]}, @CTA_TIMEOUT_DATA={0x44, 0x4, 0x0, 0x1, @sctp=[@CTA_TIMEOUT_SCTP_SHUTDOWN_SENT={0x8, 0x5, 0x1, 0x0, 0x1}, @CTA_TIMEOUT_SCTP_SHUTDOWN_RECD={0x8, 0x6, 0x1, 0x0, 0x8}, @CTA_TIMEOUT_SCTP_SHUTDOWN_SENT={0x8, 0x5, 0x1, 0x0, 0x1000}, @CTA_TIMEOUT_SCTP_SHUTDOWN_ACK_SENT={0x8, 0x7, 0x1, 0x0, 0xff}, @CTA_TIMEOUT_SCTP_SHUTDOWN_SENT={0x8, 0x5, 0x1, 0x0, 0x3}, @CTA_TIMEOUT_SCTP_HEARTBEAT_SENT={0x8, 0x8, 0x1, 0x0, 0x20000}, @CTA_TIMEOUT_SCTP_HEARTBEAT_ACKED={0x8, 0x9, 0x1, 0x0, 0x8000}, @CTA_TIMEOUT_SCTP_COOKIE_WAIT={0x8, 0x2, 0x1, 0x0, 0x1}]}, @CTA_TIMEOUT_DATA={0x1c, 0x4, 0x0, 0x1, @icmp=[@CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x80000001}, @CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x8}, @CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x7fffffff}]}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x886c}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x6}]}, 0xe8}, 0x1, 0x0, 0x0, 0x40040}, 0x24048881)
setsockopt$inet6_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000500)='cubic\x00', 0x6)
r4 = syz_io_uring_setup(0x4468, &(0x7f0000000200)={0x0, 0xbbef, 0xa, 0x1, 0x64}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x30, r4, 0x10004000)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r4, &(0x7f00000003c0)={0x80000000})
openat$autofs(0xffffffffffffff9c, &(0x7f00000000c0), 0x80c40, 0x0)

14:59:46 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x4000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:46 executing program 1:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$NFQNL_MSG_VERDICT_BATCH(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x50, 0x3, 0x3, 0x101, 0x0, 0x0, {0x0, 0x0, 0xa}, [@NFQA_VERDICT_HDR={0xc, 0x2, {0x0, 0x1}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x200}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x1}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0x2}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0x5}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x2}]}, 0x50}}, 0x4)
r2 = socket(0x2, 0xa, 0x6)
sendmsg$NFT_MSG_GETSETELEM(r2, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x88}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

14:59:46 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x40010, r0, 0x10000000)
r1 = epoll_create1(0x80000)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x5, 0x80000)
ioctl$SG_GET_TIMEOUT(r2, 0x2202, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000008, 0x1a2107eaaf6527b5, r0, 0x10000000)
epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r0)

14:59:46 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0, 0xf0ffffff7f0000}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:46 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3ef, 0x0)

14:59:46 executing program 2:
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(0xffffffffffffffff, 0x402c5342, &(0x7f00000000c0)={0x5e84b687, 0xfffffeff, 0x40, {0x6, 0x1}, 0x480, 0x6})
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r2, &(0x7f0000000040)={0x90002008})
r3 = getpid()
prctl$PR_GET_SECUREBITS(0x1b)
sched_setattr(r3, &(0x7f0000000300)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000340), 0x100, 0x0)
ioctl$SG_GET_LOW_DMA(r5, 0x227a, &(0x7f00000002c0))
r6 = getpid()
sched_setattr(r6, &(0x7f0000000300)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
sched_setscheduler(r6, 0x1, &(0x7f0000000080)=0x90e)
sendmsg$NL80211_CMD_DISCONNECT(r1, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x60, 0x0, 0x1, 0x70bd25, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x5, 0x69}}}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x42}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x42}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x20}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2f}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x29}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2c}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x36}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x42}]}, 0x60}, 0x1, 0x0, 0x0, 0x8000}, 0x20000884)
kcmp$KCMP_EPOLL_TFD(r3, 0xffffffffffffffff, 0x7, r2, &(0x7f0000000000)={r0, r4, 0x80})

14:59:46 executing program 1:
epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$NFQNL_MSG_VERDICT_BATCH(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x50, 0x3, 0x3, 0x101, 0x0, 0x0, {0x0, 0x0, 0xa}, [@NFQA_VERDICT_HDR={0xc, 0x2, {0x0, 0x1}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x200}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x1}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0x2}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0x5}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x2}]}, 0x50}}, 0x4)
r1 = socket(0x2, 0xa, 0x6)
sendmsg$NFT_MSG_GETSETELEM(r1, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x88}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:46 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x4200}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:46 executing program 0:
sched_setscheduler(0x0, 0x6, &(0x7f0000000000))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x200000c, 0x12, 0xffffffffffffffff, 0x10004000)

14:59:46 executing program 2:
getrlimit(0x8, &(0x7f0000000000))
r0 = epoll_create(0x8)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r1)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r2, &(0x7f0000000040)={0x90002008})

14:59:46 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$NL80211_CMD_STOP_AP(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x28, 0x0, 0x1, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8}, @val={0xc, 0x99, {0x4, 0x1f}}}}, [""]}, 0x28}, 0x1, 0x0, 0x0, 0x805}, 0x20004005)

14:59:46 executing program 1:
epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$NFQNL_MSG_VERDICT_BATCH(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x50, 0x3, 0x3, 0x101, 0x0, 0x0, {0x0, 0x0, 0xa}, [@NFQA_VERDICT_HDR={0xc, 0x2, {0x0, 0x1}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x200}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x1}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0x2}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0x5}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x2}]}, 0x50}}, 0x4)
sendmsg$NFT_MSG_GETSETELEM(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x88}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:46 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x5203}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:46 executing program 2:
r0 = epoll_create(0x8)
ioprio_set$uid(0x3, 0xffffffffffffffff, 0x6000)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

14:59:46 executing program 1:
epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$NFQNL_MSG_VERDICT_BATCH(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x50, 0x3, 0x3, 0x101, 0x0, 0x0, {0x0, 0x0, 0xa}, [@NFQA_VERDICT_HDR={0xc, 0x2, {0x0, 0x1}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x200}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x1}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0x2}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0x5}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x2}]}, 0x50}}, 0x4)
sendmsg$NFT_MSG_GETSETELEM(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x88}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:46 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0, 0x4a00000000000000}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:46 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3f0, 0x0)

14:59:46 executing program 1:
epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$NFQNL_MSG_VERDICT_BATCH(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x50, 0x3, 0x3, 0x101, 0x0, 0x0, {0x0, 0x0, 0xa}, [@NFQA_VERDICT_HDR={0xc, 0x2, {0x0, 0x1}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x200}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x1}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0x2}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0x5}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x2}]}, 0x50}}, 0x4)
sendmsg$NFT_MSG_GETSETELEM(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x88}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:46 executing program 0:
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = io_uring_setup(0x6f2b, &(0x7f0000000080)={0x0, 0x0, 0x1, 0x0, 0x22c, 0x0, r0})
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0x40a85323, &(0x7f0000000100)={{0xf7, 0x81}, 'port0\x00', 0x4, 0x800, 0x2, 0x0, 0x7ff, 0x0, 0x1, 0x0, 0x4, 0x7})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r3, 0x4040534e, &(0x7f0000000040)={0x0, @tick=0x3, 0x5, {0x6, 0x4}, 0xe1, 0x0, 0x40})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r2, 0xc0505350, &(0x7f00000001c0)={{0xf9, 0x5}, {0x2, 0x7}, 0x6f, 0x7})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x10004000)

14:59:46 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x6000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:46 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

14:59:46 executing program 1:
epoll_create(0x8)
pipe(&(0x7f0000005500))
r0 = socket(0x2, 0xa, 0x6)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x88}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:46 executing program 0:
r0 = io_uring_setup(0x20006f2e, &(0x7f0000000140)={0x0, 0x0, 0x4})
r1 = socket$inet_udp(0x2, 0x2, 0x0)
accept(r1, &(0x7f0000000000)=@hci, &(0x7f0000000100)=0x80)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:46 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
sendmsg$IPSET_CMD_SAVE(r2, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="240000000806030000000000006fccec9c0918d3ded9000000020000434b512e112cf444"], 0x24}, 0x1, 0x0, 0x0, 0x94672772c8a90d77}, 0x8010)

14:59:46 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xac00}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:46 executing program 1:
epoll_create(0x8)
r0 = socket(0x2, 0xa, 0x6)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x88}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:46 executing program 2:
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(0xffffffffffffffff, 0x4040534e, &(0x7f0000000000)={0x204, @time={0x7, 0x7d6}, 0x4, {0x1, 0x1}, 0x0, 0x1, 0x4})
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x8080)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0x40a85323, &(0x7f00000000c0)={{0x9, 0x81}, 'port1\x00', 0x41, 0x41c08, 0x80000000, 0x9, 0xfffffffc, 0x6, 0x6, 0x0, 0x3, 0x7})
r1 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r1, 0x300, r2, &(0x7f0000000040)={0x90002008})

14:59:46 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff04a}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:46 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3f1, 0x0)

14:59:46 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DISCONNECT(r2, &(0x7f0000000740)={&(0x7f0000000600), 0xc, &(0x7f0000000700)={&(0x7f0000000680)={0x28, r3, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @val={0xc}}}}, 0x28}}, 0x0)
sendmsg$NL80211_CMD_UPDATE_OWE_INFO(r1, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000040)={&(0x7f0000000100)={0x98, r3, 0x100, 0x70bd27, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x49}, @NL80211_ATTR_IE={0x35, 0x2a, [@challenge={0x10, 0x1, 0xe2}, @erp={0x2a, 0x1, {0x1, 0x1}}, @link_id={0x65, 0x12, {@from_mac=@broadcast}}, @ext_channel_switch={0x3c, 0x4, {0x0, 0x1, 0x1, 0x8}}, @ext_channel_switch={0x3c, 0x4, {0x0, 0x7, 0x74}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x0, 0xd1, 0x3}}, @channel_switch={0x25, 0x3, {0x0, 0x9d}}]}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x23}, @NL80211_ATTR_IE={0x9, 0x2a, [@channel_switch={0x25, 0x3, {0x1, 0x38, 0x6d}}]}]}, 0x98}, 0x1, 0x0, 0x0, 0x8080}, 0x801)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:46 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xfe02}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:46 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r2, &(0x7f0000000040)={0x90002008})
r3 = getpid()
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
kcmp$KCMP_EPOLL_TFD(r3, 0x0, 0x7, r1, &(0x7f0000000080)={r4, r0, 0x9})

14:59:46 executing program 1:
r0 = socket(0x2, 0xa, 0x6)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x88}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:47 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_dev$usbmon(&(0x7f0000000000), 0x5, 0x180002)
ioctl$MON_IOCG_STATS(r2, 0x80089203, &(0x7f0000000080))
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

14:59:47 executing program 0:
sched_setattr(0xffffffffffffffff, &(0x7f0000000000)={0x38, 0x3, 0x10000000, 0x9, 0x7, 0x0, 0x0, 0x16, 0xffffffff, 0xfffff801}, 0x0)
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:47 executing program 1:
r0 = socket(0x0, 0xa, 0x6)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x88}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:47 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x40000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:47 executing program 2:
epoll_create(0x8)
epoll_create1(0x0)
r0 = accept(0xffffffffffffffff, 0x0, &(0x7f0000000000))
sendmsg$IPSET_CMD_HEADER(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x3c, 0xc, 0x6, 0x3, 0x0, 0x0, {0x5, 0x0, 0x7}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x3c}, 0x1, 0x0, 0x0, 0x400}, 0x800)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_create(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x300, r1, &(0x7f0000000040)={0x90002008})

14:59:47 executing program 1:
r0 = socket(0x0, 0xa, 0x6)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x88}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:47 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0xa0000380}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:47 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3f2, 0x0)

14:59:47 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x0, 0x1, 0x1})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:47 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x80000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:47 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r4, 0xc0603d06, 0x0)
sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r3, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYRES16=r4], 0xd8}, 0x1, 0x0, 0x0, 0x4000881}, 0x40010)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
getpeername(r1, &(0x7f00000001c0)=@ipx, &(0x7f0000000140)=0x80)
ioctl$PTP_PIN_GETFUNC(r5, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_MOD(r4, 0x3, r5, &(0x7f0000000100)={0x10002010})
r6 = socket(0x21, 0x8080b, 0x9)
sendmsg$NFNL_MSG_COMPAT_GET(r6, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x4c, 0x0, 0xb, 0x401, 0x0, 0x0, {0xa, 0x0, 0xa}, [@NFTA_COMPAT_REV={0x8, 0x2, 0x1, 0x0, 0x4}, @NFTA_COMPAT_NAME={0xb, 0x1, ':/#\\^+\x00'}, @NFTA_COMPAT_TYPE={0x8}, @NFTA_COMPAT_NAME={0x5, 0x1, '\x00'}, @NFTA_COMPAT_NAME={0x5, 0x1, '\x00'}, @NFTA_COMPAT_NAME={0xb, 0x1, ').,\\\'*\x00'}]}, 0x4c}, 0x1, 0x0, 0x0, 0x44001}, 0x10)

14:59:47 executing program 1:
r0 = socket(0x0, 0xa, 0x6)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x88}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:47 executing program 1:
r0 = socket(0x2, 0x0, 0x6)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x88}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:47 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0xdbaa, 0x8, 0x3})
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(0xffffffffffffffff, 0xc0a85320, &(0x7f0000000100)={{0xff, 0x4}, 'port1\x00', 0x14, 0x1000, 0x7, 0x100000, 0x3ff, 0x0, 0xfffeffff, 0x0, 0x1, 0x5})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
ioctl$PTP_PEROUT_REQUEST2(0xffffffffffffffff, 0x40383d0c, &(0x7f0000000000)={{0x1}, {0x6, 0x40}, 0x1ff})

14:59:47 executing program 2:
r0 = getpid()
sched_setattr(r0, &(0x7f0000000300)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
ptrace$pokeuser(0x6, r0, 0x9d64, 0x6)
r1 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r3)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
getcwd(&(0x7f0000000000)=""/31, 0x1f)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r5, 0xc0603d06, 0x0)
sendmsg$IPSET_CMD_FLUSH(r5, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x2c, 0x4, 0x6, 0x3, 0x0, 0x0, {0x1, 0x0, 0x2}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x5)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x300, r4, &(0x7f0000000040)={0x90002008})

14:59:47 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x128e00}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:47 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
syz_io_uring_setup(0x3e27, &(0x7f0000000000)={0x0, 0x49f6, 0x2, 0x0, 0x1cf, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$link(0x8, 0x0, r1)
sched_setattr(0x0, &(0x7f0000000200)={0x38, 0x6, 0x4, 0x75f, 0x3, 0x0, 0xfffffffffffffff7, 0x400, 0x40, 0x200}, 0x0)
r2 = add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffff8)
keyctl$KEYCTL_MOVE(0x1e, r1, 0xfffffffffffffffe, r2, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:47 executing program 1:
r0 = socket(0x2, 0x0, 0x6)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x88}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:47 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x2000150a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:47 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3f3, 0x0)

14:59:47 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r3, &(0x7f0000000000)={0x1})

14:59:47 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x128e01}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:47 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
pipe(&(0x7f0000000000)={<r1=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
prctl$PR_GET_KEEPCAPS(0x7)
sendmsg$nl_netfilter(r1, &(0x7f00000024c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000002480)={&(0x7f0000002580)=ANY=[@ANYBLOB="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", @ANYRES32=r2, @ANYBLOB="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"], 0x2358}, 0x1, 0x0, 0x0, 0x2000}, 0x40800)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
ioctl$PTP_ENABLE_PPS(r3, 0x40043d04, 0x0)

14:59:47 executing program 1:
r0 = socket(0x2, 0x0, 0x6)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x88}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:47 executing program 2:
r0 = epoll_create(0x6)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff})
pipe(&(0x7f0000000000))
epoll_ctl$EPOLL_CTL_ADD(r1, 0x300, r0, &(0x7f0000000040))

14:59:47 executing program 0:
syz_io_uring_setup(0x7a4d, &(0x7f0000000000)={0x0, 0x1e8, 0x0, 0x1, 0x75}, &(0x7f0000ff9000/0x7000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x10004000)
sendmsg$NFNL_MSG_COMPAT_GET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x68, 0x0, 0xb, 0x3, 0x0, 0x0, {0x7, 0x0, 0x8}, [@NFTA_COMPAT_TYPE={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_COMPAT_REV={0x8, 0x2, 0x1, 0x0, 0x5}, @NFTA_COMPAT_TYPE={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_COMPAT_REV={0x8, 0x2, 0x1, 0x0, 0x4}, @NFTA_COMPAT_TYPE={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_COMPAT_REV={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_COMPAT_NAME={0x7, 0x1, ']!\x00'}, @NFTA_COMPAT_REV={0x8, 0x2, 0x1, 0x0, 0x4}, @NFTA_COMPAT_NAME={0x8, 0x1, '})\x03\x00'}, @NFTA_COMPAT_NAME={0x9, 0x1, '-([:\x00'}]}, 0x68}, 0x1, 0x0, 0x0, 0x20008010}, 0x8000)

14:59:47 executing program 1:
r0 = socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x88}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:47 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x128e03}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:47 executing program 1:
socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x88}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:47 executing program 0:
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(0xffffffffffffffff, 0xc0a85320, &(0x7f0000000100)={{0xf9, 0x8}, 'port0\x00', 0x12, 0x1000, 0x4ea, 0x3, 0x9ff, 0x8, 0x8000, 0x0, 0x2})
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
r1 = getpid()
rt_sigqueueinfo(r1, 0x21, &(0x7f0000000000)={0x3e, 0xb1a3, 0x9})
sched_setattr(r1, &(0x7f0000000300)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
tkill(r1, 0x14)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:47 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x4, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:47 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3f4, 0x0)

14:59:47 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})
r2 = getpid()
r3 = getpid()
r4 = openat$cgroup_netprio_ifpriomap(r1, &(0x7f0000000000), 0x2, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r5, 0xc0603d06, 0x0)
kcmp$KCMP_EPOLL_TFD(r2, r3, 0x7, r4, &(0x7f0000000080)={r5, r0, 0x7fffffff})

14:59:47 executing program 1:
socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x88}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:47 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x400000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:47 executing program 1:
socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x88}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:47 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000000)={0x2000200b})

14:59:47 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x600000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:47 executing program 1:
r0 = socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, 0x0, 0x4040000)

14:59:47 executing program 2:
ioctl$sock_inet6_tcp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000100))
ioctl$PTP_CLOCK_GETCAPS(0xffffffffffffffff, 0x80503d01, &(0x7f0000000080))
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
kcmp$KCMP_EPOLL_TFD(0xffffffffffffffff, 0x0, 0x7, 0xffffffffffffffff, &(0x7f0000000180)={0xffffffffffffffff, r2})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)={0x6017})
pipe(&(0x7f0000005500))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r3, &(0x7f0000000040)={0x90002009})

14:59:47 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x80ffff}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:50 executing program 0:
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
sendmsg$NL80211_CMD_SET_NOACK_MAP(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000100)={0x54, 0x0, 0x400, 0x70bd29, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x2}, @NL80211_ATTR_NOACK_MAP={0x6}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x8001}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x7}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x1}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x1f}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x74b}]}, 0x54}, 0x1, 0x0, 0x0, 0x24004046}, 0x4800)
r1 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0xfffffffc, 0x0, 0x0, 0xc3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x10004000)

14:59:50 executing program 1:
r0 = socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, 0x0, 0x4040000)

14:59:50 executing program 2:
r0 = epoll_create(0x81)
get_thread_area(&(0x7f0000000000)={0x3f, 0x20001000, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1})
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r2, &(0x7f0000000040)={0x90002008})
r3 = epoll_create(0x4)
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r4, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x84}, 0x1, 0x0, 0x0, 0x4}, 0x20000000)
kcmp$KCMP_EPOLL_TFD(0x0, 0x0, 0x7, r1, &(0x7f0000000080)={r3, r1, 0x7})
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r2, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x38, 0x0, 0x8, 0x5, 0x0, 0x0, {0x0, 0x0, 0x7}, [@CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x3}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x6558}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x6}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000000}, 0x40801)

14:59:50 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x8, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:50 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x8e1200}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:50 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3f5, 0x0)

14:59:50 executing program 1:
r0 = socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, 0x0, 0x4040000)

14:59:50 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xc0ffff}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:50 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r2, &(0x7f0000000040)={0x90002008})
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(r3, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x800010}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x14, 0x4, 0x1, 0x801, 0x0, 0x0, {0xa, 0x0, 0x5}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x20000000)
r5 = accept(r1, &(0x7f0000000080)=@nfc_llcp, &(0x7f0000000000)=0x80)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x140010}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x30, 0x2, 0x6, 0x101, 0x0, 0x0, {0x7, 0x0, 0x8}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x2}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0x4040}, 0x20000004)
ioctl$MON_IOCQ_URB_LEN(r4, 0x9201)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r6=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r6, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT_REMOVE, 0xb6f1b91)
syz_io_uring_submit(r6, 0x0, &(0x7f0000000340)=@IORING_OP_ASYNC_CANCEL={0xe, 0x1, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x800)

14:59:50 executing program 1:
r0 = socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:50 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
pipe(&(0x7f0000005500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r2, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000300)={0x20000008})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(0xffffffffffffffff, 0xc08c5336, &(0x7f0000000100)={0x7, 0x0, 0x1, 'queue1\x00', 0x5b})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000000)={0x5000001a})
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x20000, 0x0)
sendmsg$IPSET_CMD_GET_BYNAME(r3, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0xa0040}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x4c, 0xe, 0x6, 0x101, 0x0, 0x0, {0x0, 0x0, 0x6}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4040880}, 0x8090)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r2, 0x402c5342, &(0x7f0000000800)={0x1, 0x80, 0xf7, {0x8, 0x8}, 0x545, 0xffffffff})
ioctl$PTP_SYS_OFFSET_EXTENDED(r1, 0xc4c03d09, &(0x7f0000000340)={0x12})

14:59:50 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xd0fc1c}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:50 executing program 2:
r0 = epoll_create(0x8)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

14:59:50 executing program 1:
r0 = socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:50 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
ioctl$SG_GET_SCSI_ID(0xffffffffffffffff, 0x2276, &(0x7f0000000000))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:50 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0xf, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:50 executing program 1:
r0 = socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:50 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xd0ff20}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:50 executing program 0:
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000040)={0x2f, 0xffffffff, 0x8, "e155915a54494eda88d4465441c06e51a512284405a542e5f2c86cb82e0412cd7c09c6f445ca512ad2a24e78010d4b"})
r2 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x10004000)
epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r0)

14:59:50 executing program 2:
r0 = epoll_create(0x9)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
ioctl$SG_GET_SCSI_ID(r1, 0x2276, &(0x7f0000000100))
arch_prctl$ARCH_MAP_VDSO_32(0x2002, 0x80)
pipe(&(0x7f0000005500)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r3, &(0x7f0000000040)={0x90002008})
ioctl$sock_ipv6_tunnel_SIOCGETPRL(r2, 0x89f4, &(0x7f0000000000)={'ip6tnl0\x00', &(0x7f0000000080)={'sit0\x00', 0x0, 0x2f, 0x0, 0x3, 0x1, 0x51, @private1, @mcast1, 0x7800, 0x8080, 0x8, 0x61}})

14:59:50 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3f6, 0x0)

14:59:51 executing program 2:
r0 = epoll_create(0x8)
pipe(0xffffffffffffffff)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, 0xffffffffffffffff, &(0x7f0000000000)={0xa000200a})

14:59:51 executing program 1:
r0 = socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={&(0x7f0000000180), 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:51 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0x0, 0x2})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:51 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xe0ff20}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:51 executing program 1:
r0 = socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={&(0x7f0000000180), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:51 executing program 2:
r0 = epoll_create(0x8)
epoll_create1(0x0)
rt_sigaction(0x0, &(0x7f0000000100)={&(0x7f0000000080)="8f29109054f9fb2666400f383bfb8fa91898aa0000008044802d0b00000000c4015bc2677900440ff94000c421465d49076645dad0c4e3b97acd1966460f382518", 0x8000004, &(0x7f0000000000)="45c129000f872b000000430f1abaf0760000676666dfc1f3450fa6c86526420f38f9b807c600000f38011cc14656c401c012a900000100f347e932233333"}, &(0x7f0000000200)={&(0x7f0000000140)="660f38dfbebeffffff66410f3a0b2db4ce000009c4a27d799bf8c726dff771e9263e0f8300000000c4216d65e8660f381ce2440fe5645b99c421bd6a7c720042d9f6", 0x0, &(0x7f00000001c0)="65420f12e7f02127f02083f7fffffff0fe85446d00000f5a4ce371c4a31d5c3cd30c6564420f71f69d2e470fde02c423496a5100000f8d53b60000"}, 0x8, &(0x7f0000000240))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

14:59:51 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff04a}], 0x1, 0x0)

14:59:51 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
r1 = getpid()
ioprio_set$pid(0x0, r1, 0x0)

14:59:51 executing program 1:
r0 = socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={&(0x7f0000000180), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:51 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xf0ff20}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:51 executing program 2:
r0 = epoll_create(0x8)
pipe(0xffffffffffffffff)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, 0xffffffffffffffff, &(0x7f0000000000)={0xa000200a})

14:59:51 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3f7, 0x0)

14:59:51 executing program 2:
r0 = epoll_create(0x8)
pipe(0xffffffffffffffff)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, 0xffffffffffffffff, &(0x7f0000000000)={0xa000200a})

14:59:51 executing program 1:
r0 = socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={&(0x7f0000000180), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:51 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
r1 = syz_io_uring_setup(0x21e1, &(0x7f0000000000)={0x0, 0xc688, 0x0, 0x0, 0x3a5, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000140))
read$ptp(0xffffffffffffffff, &(0x7f0000000280)=""/199, 0xc7)
syz_io_uring_setup(0x1cab, &(0x7f0000000180)={0x0, 0x7277, 0x4, 0x2, 0x52, 0x0, r1}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000240))
prctl$PR_SET_TSC(0x1a, 0x0)

14:59:51 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x1000000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:51 executing program 2:
r0 = epoll_create(0x8)
pipe(0xffffffffffffffff)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, 0xffffffffffffffff, &(0x7f0000000000)={0xa000200a})

14:59:51 executing program 1:
r0 = socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={&(0x7f0000000180), 0xc, &(0x7f0000000200)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:51 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0xa0000380}], 0x1, 0x0)

14:59:51 executing program 0:
r0 = io_uring_setup(0x6f2b, &(0x7f0000000080)={0x0, 0x3, 0x8})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:51 executing program 2:
epoll_create(0x8)
pipe(0xffffffffffffffff)

14:59:51 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x18e1200}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:51 executing program 1:
r0 = socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={&(0x7f0000000180), 0xc, &(0x7f0000000200)={0x0, 0x14}}, 0x4040000)

14:59:51 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3f8, 0x0)

14:59:51 executing program 2:
pipe(0xffffffffffffffff)

14:59:51 executing program 1:
r0 = socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={&(0x7f0000000180), 0xc, &(0x7f0000000200)={0x0, 0x14}}, 0x0)

14:59:51 executing program 0:
r0 = io_uring_setup(0x2589, &(0x7f0000000000)={0x0, 0x9d9d, 0x2, 0x0, 0x3d7})
r1 = io_uring_setup(0xf1a, &(0x7f0000000100)={0x0, 0x1, 0x8, 0x0, 0x17b, 0x0, r0})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x2010, r0, 0x10000000)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x10004000)

14:59:51 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x2000000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:51 executing program 2:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xf0ff20}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:51 executing program 1:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0xf, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:51 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x4, 0x0)

14:59:51 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
io_uring_setup(0x1dc, &(0x7f0000000000)={0x0, 0x711, 0x0, 0xffffffff, 0x35a})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
sendmsg$NFNL_MSG_ACCT_DEL(r1, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x20, 0x3, 0x7, 0x201, 0x0, 0x0, {0xc, 0x0, 0x8}, [@NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x7fffffff}]}, 0x20}, 0x1, 0x0, 0x0, 0xc0043}, 0x40000)

14:59:51 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x2040000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:51 executing program 2:
r0 = socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:51 executing program 2:
r0 = socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:51 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3f9, 0x0)

14:59:51 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x38e1200}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:51 executing program 0:
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff})
epoll_pwait(r0, &(0x7f0000000100)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x8, 0x8, &(0x7f0000000040)={[0x7]}, 0x8)
r1 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x10004000)

14:59:51 executing program 2:
r0 = socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:51 executing program 2:
sendmsg$NFT_MSG_GETSETELEM(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:51 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
io_uring_setup(0x149f, &(0x7f0000000000)={0x0, 0x9482, 0x4, 0x3, 0x27e, 0x0, r0})
syz_io_uring_setup(0x6bf, &(0x7f0000000100)={0x0, 0xb209, 0x4, 0x1, 0x26b}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000001c0))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:51 executing program 1:
epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$NFQNL_MSG_VERDICT_BATCH(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x50, 0x3, 0x3, 0x101, 0x0, 0x0, {0x0, 0x0, 0xa}, [@NFQA_VERDICT_HDR={0xc, 0x2, {0x0, 0x1}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x200}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x1}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0x2}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0x5}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x2}]}, 0x50}}, 0x4)
r1 = socket(0x2, 0xa, 0x6)
sendmsg$NFT_MSG_GETSETELEM(r1, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x88}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

[ 1527.438505][T12331] ==================================================================
[ 1527.446611][T12331] BUG: KCSAN: data-race in copy_page_from_iter / copy_page_from_iter
[ 1527.454672][T12331] 
[ 1527.456975][T12331] write to 0xffff888121d68000 of 4096 bytes by task 12313 on cpu 1:
[ 1527.464937][T12331]  copy_page_from_iter+0x261/0x530
[ 1527.470053][T12331]  process_vm_rw_single_vec+0x294/0x460
[ 1527.475582][T12331]  process_vm_rw+0x347/0x4e0
[ 1527.480156][T12331]  __x64_sys_process_vm_writev+0x76/0x90
[ 1527.485782][T12331]  do_syscall_64+0x3d/0x90
[ 1527.490190][T12331]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1527.496076][T12331] 
[ 1527.498385][T12331] write to 0xffff888121d68000 of 4096 bytes by task 12331 on cpu 0:
[ 1527.506340][T12331]  copy_page_from_iter+0x261/0x530
[ 1527.511454][T12331]  process_vm_rw_single_vec+0x294/0x460
[ 1527.516983][T12331]  process_vm_rw+0x347/0x4e0
[ 1527.521555][T12331]  __x64_sys_process_vm_writev+0x76/0x90
[ 1527.527190][T12331]  do_syscall_64+0x3d/0x90
[ 1527.531625][T12331]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1527.537513][T12331] 
[ 1527.539818][T12331] Reported by Kernel Concurrency Sanitizer on:
[ 1527.545957][T12331] CPU: 0 PID: 12331 Comm: syz-executor.3 Not tainted 5.14.0-rc5-syzkaller #0
[ 1527.554703][T12331] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1527.564738][T12331] ==================================================================
14:59:52 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x8, 0x0)

14:59:52 executing program 2:
sendmsg$NFT_MSG_GETSETELEM(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:52 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
ptrace$pokeuser(0x6, 0x0, 0x7, 0x100000001)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000000)={0x4a, 0x1000, 0x4d, "2a7ba84051a10f85639030ec9c34a9961495b6a0e61b38402eb55a80cc141355012ac7e50e2c28c8567d491f94fafbec1f620152924829cc8a68dea904fec558015a4c274d82d5f10bfe"})

14:59:52 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x4000000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:52 executing program 1:
epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$NFQNL_MSG_VERDICT_BATCH(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x50, 0x3, 0x3, 0x101, 0x0, 0x0, {0x0, 0x0, 0xa}, [@NFQA_VERDICT_HDR={0xc, 0x2, {0x0, 0x1}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x200}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x1}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0x2}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0x5}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x2}]}, 0x50}}, 0x4)
r1 = socket(0x2, 0xa, 0x6)
sendmsg$NFT_MSG_GETSETELEM(r1, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x88}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:52 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3fa, 0x0)

14:59:52 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x6040000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:52 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080)={0x0, 0xf63a})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)

14:59:52 executing program 1:
epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$NFQNL_MSG_VERDICT_BATCH(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x50, 0x3, 0x3, 0x101, 0x0, 0x0, {0x0, 0x0, 0xa}, [@NFQA_VERDICT_HDR={0xc, 0x2, {0x0, 0x1}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x200}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x1}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0x2}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0x5}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x2}]}, 0x50}}, 0x4)
r1 = socket(0x2, 0xa, 0x6)
sendmsg$NFT_MSG_GETSETELEM(r1, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x88}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:52 executing program 2:
sendmsg$NFT_MSG_GETSETELEM(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:52 executing program 1:
epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$NFQNL_MSG_VERDICT_BATCH(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x50, 0x3, 0x3, 0x101, 0x0, 0x0, {0x0, 0x0, 0xa}, [@NFQA_VERDICT_HDR={0xc, 0x2, {0x0, 0x1}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x200}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x1}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0x2}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0x5}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x2}]}, 0x50}}, 0x4)
socket(0x2, 0xa, 0x6)

14:59:52 executing program 2:
r0 = socket(0x0, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:52 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0xf, 0x0)

14:59:52 executing program 0:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x4, 0x0)

14:59:52 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x7000000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:52 executing program 2:
r0 = socket(0x0, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:52 executing program 1:
epoll_create(0x8)
pipe(&(0x7f0000005500))
socket(0x2, 0xa, 0x6)

14:59:52 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3fb, 0x0)

14:59:52 executing program 2:
r0 = socket(0x0, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:52 executing program 1:
epoll_create(0x8)
socket(0x2, 0xa, 0x6)

14:59:52 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x8000000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:52 executing program 1:
socket(0x2, 0xa, 0x6)

14:59:52 executing program 2:
r0 = socket(0x2, 0x0, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:52 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x10000000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:52 executing program 1:
socket(0x0, 0xa, 0x6)

14:59:52 executing program 0:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0xf, 0x0)

14:59:52 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0xfd, 0x0)

14:59:52 executing program 2:
r0 = socket(0x2, 0x0, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:52 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x1cfcd000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:52 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3fc, 0x0)

14:59:52 executing program 1:
socket(0x0, 0xa, 0x6)

14:59:52 executing program 2:
r0 = socket(0x2, 0x0, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:52 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x20000000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:52 executing program 1:
socket(0x0, 0xa, 0x6)

14:59:53 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x20ffd000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:53 executing program 2:
socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:53 executing program 1:
socket(0x2, 0x0, 0x6)

14:59:53 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x40010, r0, 0x10000000)
r1 = epoll_create1(0x80000)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x5, 0x80000)
ioctl$SG_GET_TIMEOUT(r2, 0x2202, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000008, 0x1a2107eaaf6527b5, r0, 0x10000000)
epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r0)

14:59:53 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0xfe, 0x0)

14:59:53 executing program 2:
socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:53 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x20ffe000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:53 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3fd, 0x0)

14:59:53 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x40010, r0, 0x10000000)
r1 = epoll_create1(0x80000)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x5, 0x80000)
ioctl$SG_GET_TIMEOUT(r2, 0x2202, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000008, 0x1a2107eaaf6527b5, r0, 0x10000000)
epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r0)

14:59:53 executing program 2:
socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:53 executing program 1:
socket(0x2, 0x0, 0x6)

14:59:53 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x20fff000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:53 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x40010, r0, 0x10000000)
r1 = epoll_create1(0x80000)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x5, 0x80000)
ioctl$SG_GET_TIMEOUT(r2, 0x2202, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000008, 0x1a2107eaaf6527b5, r0, 0x10000000)
epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r0)

14:59:53 executing program 2:
r0 = socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, 0x0, 0x4040000)

14:59:53 executing program 1:
socket(0x2, 0x0, 0x6)

14:59:53 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x21000000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:53 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x102, 0x0)

14:59:53 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x40010, r0, 0x10000000)
epoll_create1(0x80000)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x5, 0x80000)
ioctl$SG_GET_TIMEOUT(r1, 0x2202, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000008, 0x1a2107eaaf6527b5, r0, 0x10000000)

14:59:53 executing program 2:
r0 = socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, 0x0, 0x4040000)

14:59:53 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3fe, 0x0)

14:59:53 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x3f000000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:53 executing program 1:
socket(0x2, 0xa, 0x0)

14:59:53 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x40010, r0, 0x10000000)
epoll_create1(0x80000)
syz_open_dev$sg(&(0x7f0000000000), 0x5, 0x80000)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000008, 0x1a2107eaaf6527b5, r0, 0x10000000)

14:59:53 executing program 2:
r0 = socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, 0x0, 0x4040000)

14:59:53 executing program 2:
r0 = socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:53 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x40000000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:53 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x40010, r0, 0x10000000)
epoll_create1(0x80000)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000008, 0x1a2107eaaf6527b5, r0, 0x10000000)

14:59:53 executing program 1:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x3fc, 0x0)

14:59:53 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x103, 0x0)

14:59:53 executing program 2:
r0 = socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:53 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x42000000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:53 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x10)

14:59:53 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x40010, r0, 0x10000000)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000008, 0x1a2107eaaf6527b5, r0, 0x10000000)

14:59:53 executing program 2:
r0 = socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:53 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x52030000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:53 executing program 2:
r0 = socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)

14:59:53 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000008, 0x1a2107eaaf6527b5, r0, 0x10000000)

14:59:53 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x104, 0x0)

14:59:53 executing program 2:
r0 = socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x14}}, 0x4040000)

14:59:53 executing program 1:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x52030000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:53 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xac000000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:53 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x4a)

14:59:53 executing program 0:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000008, 0x1a2107eaaf6527b5, r0, 0x10000000)

14:59:53 executing program 2:
r0 = socket(0x2, 0xa, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x14}}, 0x0)

14:59:53 executing program 1:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x4000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:53 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0xef)

14:59:54 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xfe020000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:54 executing program 0:
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000008, 0x1a2107eaaf6527b5, 0xffffffffffffffff, 0x10000000)

14:59:54 executing program 2:
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000080))
r0 = io_uring_setup(0x6f26, &(0x7f0000000100)={0x0, 0x2298, 0x4, 0x2})
mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x9, 0x4010, 0xffffffffffffffff, 0x10000000)
syz_io_uring_setup(0x4b20, &(0x7f0000000000)={0x0, 0x25d2, 0x0, 0x0, 0x21c, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000001c0))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$IPSET_CMD_SAVE(r1, &(0x7f00000007c0)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000780)={&(0x7f0000000700)={0x68, 0x8, 0x6, 0x801, 0x0, 0x0, {0x1, 0x0, 0x7}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x68}, 0x1, 0x0, 0x0, 0x4000}, 0xc4)
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
io_uring_setup(0x34f0, &(0x7f0000000640)={0x0, 0x9221, 0x0, 0x3, 0x3b9, 0x0, r1})
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0x40a85323, &(0x7f0000000300)={{0x81, 0xae}, 'port1\x00', 0x4, 0x1800, 0x7, 0x3, 0x0, 0x1f, 0x2000, 0x0, 0x6, 0x3})
pipe(&(0x7f00000004c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_GET(r3, &(0x7f0000000480)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000540)={0xe8, 0x1, 0x8, 0x201, 0x0, 0x0, {0x0, 0x0, 0x7}, [@CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x200}, @CTA_TIMEOUT_DATA={0x14, 0x4, 0x0, 0x1, @sctp=[@CTA_TIMEOUT_SCTP_COOKIE_ECHOED={0x8, 0x3, 0x1, 0x0, 0x4}, @CTA_TIMEOUT_SCTP_SHUTDOWN_RECD={0x8, 0x6, 0x1, 0x0, 0x400}]}, @CTA_TIMEOUT_DATA={0x3c, 0x4, 0x0, 0x1, @tcp=[@CTA_TIMEOUT_TCP_ESTABLISHED={0x8, 0x3, 0x1, 0x0, 0x200}, @CTA_TIMEOUT_TCP_LAST_ACK={0x8, 0x6, 0x1, 0x0, 0x2}, @CTA_TIMEOUT_TCP_SYN_RECV={0x8, 0x2, 0x1, 0x0, 0xd}, @CTA_TIMEOUT_TCP_LAST_ACK={0x8, 0x6, 0x1, 0x0, 0x20}, @CTA_TIMEOUT_TCP_CLOSE={0x8, 0x8, 0x1, 0x0, 0x2}, @CTA_TIMEOUT_TCP_SYN_SENT2={0x8, 0x9, 0x1, 0x0, 0xffffffff}, @CTA_TIMEOUT_TCP_FIN_WAIT={0x8, 0x4, 0x1, 0x0, 0x70}]}, @CTA_TIMEOUT_DATA={0x44, 0x4, 0x0, 0x1, @sctp=[@CTA_TIMEOUT_SCTP_SHUTDOWN_SENT={0x8, 0x5, 0x1, 0x0, 0x1}, @CTA_TIMEOUT_SCTP_SHUTDOWN_RECD={0x8, 0x6, 0x1, 0x0, 0x8}, @CTA_TIMEOUT_SCTP_SHUTDOWN_SENT={0x8, 0x5, 0x1, 0x0, 0x1000}, @CTA_TIMEOUT_SCTP_SHUTDOWN_ACK_SENT={0x8, 0x7, 0x1, 0x0, 0xff}, @CTA_TIMEOUT_SCTP_SHUTDOWN_SENT={0x8, 0x5, 0x1, 0x0, 0x3}, @CTA_TIMEOUT_SCTP_HEARTBEAT_SENT={0x8, 0x8, 0x1, 0x0, 0x20000}, @CTA_TIMEOUT_SCTP_HEARTBEAT_ACKED={0x8, 0x9, 0x1, 0x0, 0x8000}, @CTA_TIMEOUT_SCTP_COOKIE_WAIT={0x8, 0x2, 0x1, 0x0, 0x1}]}, @CTA_TIMEOUT_DATA={0x1c, 0x4, 0x0, 0x1, @icmp=[@CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x80000001}, @CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x8}, @CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x7fffffff}]}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x886c}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x6}]}, 0xe8}, 0x1, 0x0, 0x0, 0x40040}, 0x24048881)
setsockopt$inet6_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000500)='cubic\x00', 0x6)
r4 = syz_io_uring_setup(0x4468, &(0x7f0000000200)={0x0, 0xbbef, 0xa, 0x1, 0x64}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x30, r4, 0x10004000)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r4, &(0x7f00000003c0)={0x80000000})
openat$autofs(0xffffffffffffff9c, &(0x7f00000000c0), 0x80c40, 0x0)

14:59:54 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x105, 0x0)

14:59:54 executing program 1:
r0 = epoll_create(0x8)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$NFQNL_MSG_VERDICT_BATCH(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x50, 0x3, 0x3, 0x101, 0x0, 0x0, {0x0, 0x0, 0xa}, [@NFQA_VERDICT_HDR={0xc, 0x2, {0x0, 0x1}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x200}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x1}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0x2}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0x5}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x2}]}, 0x50}}, 0x4)
r2 = socket(0x2, 0xa, 0x6)
sendmsg$NFT_MSG_GETSETELEM(r2, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x88}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000400000001dbc996f0007000002000005"], 0x14}, 0x1, 0x0, 0x0, 0x4058}, 0x4040000)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0x90002008})

14:59:54 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0xf0)

14:59:54 executing program 0:
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x1a2107eaaf6527b5, 0xffffffffffffffff, 0x10000000)

14:59:54 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xfeffffff}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:54 executing program 2:
epoll_create(0x8)
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x300, r0, &(0x7f0000000040)={0x10})
r2 = syz_open_dev$sg(&(0x7f0000000080), 0x6defa620, 0x400000)
syz_open_dev$sg(&(0x7f00000000c0), 0xe9, 0x8000)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, 0x2, 0x2, 0xff, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}}, 0x8c0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x2a, 0x40000)
ioctl$SG_GET_LOW_DMA(r4, 0x227a, &(0x7f0000000100))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r5, 0xc0603d06, 0x0)
ioctl$SG_NEXT_CMD_LEN(r2, 0x2283, &(0x7f0000000140)=0x7c)
ioctl$SCSI_IOCTL_DOORLOCK(r5, 0x5380)
prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x1)

14:59:54 executing program 0:
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x10000000)

14:59:54 executing program 2:
epoll_create(0x8)
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x300, r0, &(0x7f0000000040)={0x10})
r2 = syz_open_dev$sg(&(0x7f0000000080), 0x6defa620, 0x400000)
syz_open_dev$sg(&(0x7f00000000c0), 0xe9, 0x8000)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, 0x2, 0x2, 0xff, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}}, 0x8c0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x2a, 0x40000)
ioctl$SG_GET_LOW_DMA(r4, 0x227a, &(0x7f0000000100))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r5, 0xc0603d06, 0x0)
ioctl$SG_NEXT_CMD_LEN(r2, 0x2283, &(0x7f0000000140)=0x7c)
ioctl$SCSI_IOCTL_DOORLOCK(r5, 0x5380)
prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x1)

14:59:54 executing program 1:
r0 = epoll_create(0x8)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff})
epoll_create(0xe1d)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0xe79d82407bb48b97})

14:59:54 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xffff8000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:54 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x2000)

14:59:54 executing program 2:
epoll_create(0x8)
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x300, r0, &(0x7f0000000040)={0x10})
r2 = syz_open_dev$sg(&(0x7f0000000080), 0x6defa620, 0x400000)
syz_open_dev$sg(&(0x7f00000000c0), 0xe9, 0x8000)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, 0x2, 0x2, 0xff, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}}, 0x8c0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x2a, 0x40000)
ioctl$SG_GET_LOW_DMA(r4, 0x227a, &(0x7f0000000100))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r5, 0xc0603d06, 0x0)
ioctl$SG_NEXT_CMD_LEN(r2, 0x2283, &(0x7f0000000140)=0x7c)
ioctl$SCSI_IOCTL_DOORLOCK(r5, 0x5380)
prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x1)

14:59:54 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x106, 0x0)

14:59:54 executing program 0:
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x10000000)

14:59:54 executing program 1:
r0 = epoll_create(0x8)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff})
epoll_create(0xe1d)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0xe79d82407bb48b97})

14:59:54 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x4000)

14:59:54 executing program 2:
epoll_create(0x8)
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x300, r0, &(0x7f0000000040)={0x10})
r2 = syz_open_dev$sg(&(0x7f0000000080), 0x6defa620, 0x400000)
syz_open_dev$sg(&(0x7f00000000c0), 0xe9, 0x8000)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, 0x2, 0x2, 0xff, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}}, 0x8c0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x2a, 0x40000)
ioctl$SG_GET_LOW_DMA(r4, 0x227a, &(0x7f0000000100))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r5, 0xc0603d06, 0x0)
ioctl$SG_NEXT_CMD_LEN(r2, 0x2283, &(0x7f0000000140)=0x7c)
ioctl$SCSI_IOCTL_DOORLOCK(r5, 0x5380)

14:59:54 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xffffc000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:54 executing program 0:
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x10000000)

14:59:54 executing program 1:
r0 = epoll_create(0x8)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff})
epoll_create(0xe1d)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0xe79d82407bb48b97})

14:59:54 executing program 2:
epoll_create(0x8)
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x300, r0, &(0x7f0000000040)={0x10})
r2 = syz_open_dev$sg(&(0x7f0000000080), 0x6defa620, 0x400000)
syz_open_dev$sg(&(0x7f00000000c0), 0xe9, 0x8000)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, 0x2, 0x2, 0xff, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}}, 0x8c0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x2a, 0x40000)
ioctl$SG_GET_LOW_DMA(r4, 0x227a, &(0x7f0000000100))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r5, 0xc0603d06, 0x0)
ioctl$SG_NEXT_CMD_LEN(r2, 0x2283, &(0x7f0000000140)=0x7c)

14:59:54 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x4a00)

14:59:54 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0xfffffffe}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:54 executing program 0:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT_REMOVE, 0xb6f1b91)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
r2 = syz_io_uring_setup(0x2311, &(0x7f0000000040), &(0x7f00007db000/0x4000)=nil, &(0x7f00007dd000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
r3 = mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x0, 0x13, r2, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r4, r3, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
syz_io_uring_submit(r1, r3, &(0x7f0000000500)=@IORING_OP_STATX={0x15, 0x4, 0x0, 0xffffffffffffff9c, &(0x7f0000000100), &(0x7f0000000000)='./file0\x00', 0x800, 0x400}, 0xff)
pipe(&(0x7f00000004c0))
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x14, 0x4, 0x1, 0x201, 0x0, 0x0, {0x7}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x40040)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x260200)
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r5, 0xc08c5336, &(0x7f0000000300)={0x2, 0x7fff, 0x0, 'queue1\x00', 0x10001})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r6, 0xc0603d06, 0x0)
ioctl$PTP_PIN_SETFUNC2(r6, 0x40603d10, &(0x7f0000000280)={'\x00', 0x20, 0x3, 0x901})

14:59:54 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x107, 0x0)

14:59:54 executing program 2:
epoll_create(0x8)
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x300, r0, &(0x7f0000000040)={0x10})
syz_open_dev$sg(&(0x7f0000000080), 0x6defa620, 0x400000)
syz_open_dev$sg(&(0x7f00000000c0), 0xe9, 0x8000)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, 0x2, 0x2, 0xff, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}}, 0x8c0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x2a, 0x40000)
ioctl$SG_GET_LOW_DMA(r3, 0x227a, &(0x7f0000000100))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r4, 0xc0603d06, 0x0)

14:59:54 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0xefff)

14:59:54 executing program 1:
r0 = epoll_create(0x8)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0xe79d82407bb48b97})

14:59:54 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:54 executing program 0:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT_REMOVE, 0xb6f1b91)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
r2 = syz_io_uring_setup(0x2311, &(0x7f0000000040), &(0x7f00007db000/0x4000)=nil, &(0x7f00007dd000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
r3 = mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x0, 0x13, r2, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r4, r3, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
syz_io_uring_submit(r1, r3, &(0x7f0000000500)=@IORING_OP_STATX={0x15, 0x4, 0x0, 0xffffffffffffff9c, &(0x7f0000000100), &(0x7f0000000000)='./file0\x00', 0x800, 0x400}, 0xff)
pipe(&(0x7f00000004c0))
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x14, 0x4, 0x1, 0x201, 0x0, 0x0, {0x7}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x40040)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x260200)
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r5, 0xc08c5336, &(0x7f0000000300)={0x2, 0x7fff, 0x0, 'queue1\x00', 0x10001})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r6, 0xc0603d06, 0x0)
ioctl$PTP_PIN_SETFUNC2(r6, 0x40603d10, &(0x7f0000000280)={'\x00', 0x20, 0x3, 0x901})

14:59:54 executing program 2:
epoll_create(0x8)
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x300, r0, &(0x7f0000000040)={0x10})
syz_open_dev$sg(&(0x7f0000000080), 0x6defa620, 0x400000)
syz_open_dev$sg(&(0x7f00000000c0), 0xe9, 0x8000)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, 0x2, 0x2, 0xff, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}}, 0x8c0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x2a, 0x40000)
ioctl$SG_GET_LOW_DMA(r3, 0x227a, &(0x7f0000000100))
pipe(&(0x7f0000005500))

14:59:54 executing program 1:
r0 = epoll_create(0x8)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, 0xffffffffffffffff, &(0x7f0000000040)={0xe79d82407bb48b97})

14:59:54 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0xffef)

14:59:54 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:54 executing program 2:
epoll_create(0x8)
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x300, r0, &(0x7f0000000040)={0x10})
syz_open_dev$sg(&(0x7f0000000080), 0x6defa620, 0x400000)
syz_open_dev$sg(&(0x7f00000000c0), 0xe9, 0x8000)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, 0x2, 0x2, 0xff, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}}, 0x8c0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x2a, 0x40000)
ioctl$SG_GET_LOW_DMA(r3, 0x227a, &(0x7f0000000100))

14:59:54 executing program 0:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT_REMOVE, 0xb6f1b91)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
r2 = syz_io_uring_setup(0x2311, &(0x7f0000000040), &(0x7f00007db000/0x4000)=nil, &(0x7f00007dd000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
r3 = mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x0, 0x13, r2, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r4, r3, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
syz_io_uring_submit(r1, r3, &(0x7f0000000500)=@IORING_OP_STATX={0x15, 0x4, 0x0, 0xffffffffffffff9c, &(0x7f0000000100), &(0x7f0000000000)='./file0\x00', 0x800, 0x400}, 0xff)
pipe(&(0x7f00000004c0))
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x14, 0x4, 0x1, 0x201, 0x0, 0x0, {0x7}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x40040)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x260200)
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r5, 0xc08c5336, &(0x7f0000000300)={0x2, 0x7fff, 0x0, 'queue1\x00', 0x10001})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r6, 0xc0603d06, 0x0)
ioctl$PTP_PIN_SETFUNC2(r6, 0x40603d10, &(0x7f0000000280)={'\x00', 0x20, 0x3, 0x901})

14:59:54 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x108, 0x0)

14:59:54 executing program 1:
r0 = epoll_create(0x8)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, 0xffffffffffffffff, &(0x7f0000000040)={0xe79d82407bb48b97})

14:59:54 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x80000)

14:59:54 executing program 2:
epoll_create(0x8)
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x300, r0, &(0x7f0000000040)={0x10})
syz_open_dev$sg(&(0x7f0000000080), 0x6defa620, 0x400000)
syz_open_dev$sg(&(0x7f00000000c0), 0xe9, 0x8000)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, 0x2, 0x2, 0xff, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}}, 0x8c0)
syz_open_dev$sg(&(0x7f0000000000), 0x2a, 0x40000)

14:59:54 executing program 0:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT_REMOVE, 0xb6f1b91)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
r2 = syz_io_uring_setup(0x2311, &(0x7f0000000040), &(0x7f00007db000/0x4000)=nil, &(0x7f00007dd000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
r3 = mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x0, 0x13, r2, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r4, r3, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
syz_io_uring_submit(r1, r3, &(0x7f0000000500)=@IORING_OP_STATX={0x15, 0x4, 0x0, 0xffffffffffffff9c, &(0x7f0000000100), &(0x7f0000000000)='./file0\x00', 0x800, 0x400}, 0xff)
pipe(&(0x7f00000004c0))
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x14, 0x4, 0x1, 0x201, 0x0, 0x0, {0x7}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x40040)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x260200)
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r5, 0xc08c5336, &(0x7f0000000300)={0x2, 0x7fff, 0x0, 'queue1\x00', 0x10001})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r6, 0xc0603d06, 0x0)

14:59:54 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x4}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:54 executing program 2:
epoll_create(0x8)
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x300, r0, &(0x7f0000000040)={0x10})
syz_open_dev$sg(&(0x7f0000000080), 0x6defa620, 0x400000)
syz_open_dev$sg(&(0x7f00000000c0), 0xe9, 0x8000)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, 0x2, 0x2, 0xff, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}}, 0x8c0)

14:59:54 executing program 0:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT_REMOVE, 0xb6f1b91)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
r2 = syz_io_uring_setup(0x2311, &(0x7f0000000040), &(0x7f00007db000/0x4000)=nil, &(0x7f00007dd000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
r3 = mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x0, 0x13, r2, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r4, r3, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
syz_io_uring_submit(r1, r3, &(0x7f0000000500)=@IORING_OP_STATX={0x15, 0x4, 0x0, 0xffffffffffffff9c, &(0x7f0000000100), &(0x7f0000000000)='./file0\x00', 0x800, 0x400}, 0xff)
pipe(&(0x7f00000004c0))
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x14, 0x4, 0x1, 0x201, 0x0, 0x0, {0x7}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x40040)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x260200)
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r5, 0xc08c5336, &(0x7f0000000300)={0x2, 0x7fff, 0x0, 'queue1\x00', 0x10001})
pipe(&(0x7f0000005500))

14:59:54 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x100000)

14:59:54 executing program 1:
r0 = epoll_create(0x8)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, 0xffffffffffffffff, &(0x7f0000000040)={0xe79d82407bb48b97})

14:59:54 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x7}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:54 executing program 1:
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x300, r0, &(0x7f0000000040)={0xe79d82407bb48b97})

14:59:55 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x109, 0x0)

14:59:55 executing program 2:
epoll_create(0x8)
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x300, r0, &(0x7f0000000040)={0x10})
syz_open_dev$sg(&(0x7f0000000080), 0x6defa620, 0x400000)
syz_open_dev$sg(&(0x7f00000000c0), 0xe9, 0x8000)
sendmsg$IPCTNL_MSG_CT_DELETE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, 0x2, 0x2, 0xff, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}}, 0x8c0)

14:59:55 executing program 0:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT_REMOVE, 0xb6f1b91)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
r2 = syz_io_uring_setup(0x2311, &(0x7f0000000040), &(0x7f00007db000/0x4000)=nil, &(0x7f00007dd000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
r3 = mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x0, 0x13, r2, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r4, r3, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
syz_io_uring_submit(r1, r3, &(0x7f0000000500)=@IORING_OP_STATX={0x15, 0x4, 0x0, 0xffffffffffffff9c, &(0x7f0000000100), &(0x7f0000000000)='./file0\x00', 0x800, 0x400}, 0xff)
pipe(&(0x7f00000004c0))
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x14, 0x4, 0x1, 0x201, 0x0, 0x0, {0x7}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x40040)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x260200)
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r5, 0xc08c5336, &(0x7f0000000300)={0x2, 0x7fff, 0x0, 'queue1\x00', 0x10001})

14:59:55 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x200000)

14:59:55 executing program 1:
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x300, r0, &(0x7f0000000040)={0xe79d82407bb48b97})

14:59:55 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x8}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:55 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0xf0ff7f)

14:59:55 executing program 1:
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x300, r0, &(0x7f0000000040)={0xe79d82407bb48b97})

14:59:55 executing program 0:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT_REMOVE, 0xb6f1b91)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
r2 = syz_io_uring_setup(0x2311, &(0x7f0000000040), &(0x7f00007db000/0x4000)=nil, &(0x7f00007dd000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
r3 = mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x0, 0x13, r2, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r4, r3, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
syz_io_uring_submit(r1, r3, &(0x7f0000000500)=@IORING_OP_STATX={0x15, 0x4, 0x0, 0xffffffffffffff9c, &(0x7f0000000100), &(0x7f0000000000)='./file0\x00', 0x800, 0x400}, 0xff)
pipe(&(0x7f00000004c0))
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x14, 0x4, 0x1, 0x201, 0x0, 0x0, {0x7}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x40040)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x260200)

14:59:55 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x10}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:55 executing program 2:
epoll_create(0x8)
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x300, r0, &(0x7f0000000040)={0x10})
syz_open_dev$sg(&(0x7f0000000080), 0x6defa620, 0x400000)
syz_open_dev$sg(&(0x7f00000000c0), 0xe9, 0x8000)
sendmsg$IPCTNL_MSG_CT_DELETE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, 0x2, 0x2, 0xff, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}}, 0x8c0)

14:59:55 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x40000000)

14:59:55 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x10a, 0x0)

14:59:55 executing program 1:
r0 = epoll_create(0x0)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0xe79d82407bb48b97})

14:59:55 executing program 0:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT_REMOVE, 0xb6f1b91)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
r2 = syz_io_uring_setup(0x2311, &(0x7f0000000040), &(0x7f00007db000/0x4000)=nil, &(0x7f00007dd000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
r3 = mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x0, 0x13, r2, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r4, r3, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
syz_io_uring_submit(r1, r3, &(0x7f0000000500)=@IORING_OP_STATX={0x15, 0x4, 0x0, 0xffffffffffffff9c, &(0x7f0000000100), &(0x7f0000000000)='./file0\x00', 0x800, 0x400}, 0xff)
pipe(&(0x7f00000004c0))
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x14, 0x4, 0x1, 0x201, 0x0, 0x0, {0x7}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x40040)

14:59:55 executing program 2:
epoll_create(0x8)
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x300, r0, &(0x7f0000000040)={0x10})
syz_open_dev$sg(&(0x7f0000000080), 0x6defa620, 0x400000)
syz_open_dev$sg(&(0x7f00000000c0), 0xe9, 0x8000)
sendmsg$IPCTNL_MSG_CT_DELETE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, 0x2, 0x2, 0xff, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}}, 0x8c0)

14:59:55 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x21}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:55 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x4a000000)

14:59:55 executing program 1:
r0 = epoll_create(0x0)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0xe79d82407bb48b97})

14:59:55 executing program 0:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT_REMOVE, 0xb6f1b91)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
r2 = syz_io_uring_setup(0x2311, &(0x7f0000000040), &(0x7f00007db000/0x4000)=nil, &(0x7f00007dd000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
r3 = mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x0, 0x13, r2, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r4, r3, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
syz_io_uring_submit(r1, r3, &(0x7f0000000500)=@IORING_OP_STATX={0x15, 0x4, 0x0, 0xffffffffffffff9c, &(0x7f0000000100), &(0x7f0000000000)='./file0\x00', 0x800, 0x400}, 0xff)
pipe(&(0x7f00000004c0))

14:59:55 executing program 2:
epoll_create(0x8)
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x300, r0, &(0x7f0000000040)={0x10})
syz_open_dev$sg(&(0x7f0000000080), 0x6defa620, 0x400000)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, 0x2, 0x2, 0xff, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}}, 0x8c0)

14:59:55 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x7ffff000)

14:59:55 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x42}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:55 executing program 1:
r0 = epoll_create(0x0)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040)={0xe79d82407bb48b97})

14:59:55 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x10b, 0x0)

14:59:55 executing program 0:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT_REMOVE, 0xb6f1b91)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
r2 = syz_io_uring_setup(0x2311, &(0x7f0000000040), &(0x7f00007db000/0x4000)=nil, &(0x7f00007dd000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
r3 = mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x0, 0x13, r2, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r4, r3, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
syz_io_uring_submit(r1, r3, &(0x7f0000000500)=@IORING_OP_STATX={0x15, 0x4, 0x0, 0xffffffffffffff9c, &(0x7f0000000100), &(0x7f0000000000)='./file0\x00', 0x800, 0x400}, 0xff)

14:59:55 executing program 2:
epoll_create(0x8)
pipe(&(0x7f0000005500)={<r0=>0xffffffffffffffff})
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r1, 0xc0603d06, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x300, r0, &(0x7f0000000040)={0x10})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, 0x2, 0x2, 0xff, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}}, 0x8c0)

14:59:55 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0xefffffff)

14:59:55 executing program 1:
r0 = epoll_create(0x8)
pipe(0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, 0xffffffffffffffff, &(0x7f0000000040)={0xe79d82407bb48b97})

14:59:55 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x60}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:55 executing program 1:
r0 = epoll_create(0x8)
pipe(0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, 0xffffffffffffffff, &(0x7f0000000040)={0xe79d82407bb48b97})

14:59:55 executing program 0:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT_REMOVE, 0xb6f1b91)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
r2 = syz_io_uring_setup(0x2311, &(0x7f0000000040), &(0x7f00007db000/0x4000)=nil, &(0x7f00007dd000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
r3 = mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x0, 0x13, r2, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r4, r3, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)

14:59:55 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0xffffffef)

14:59:55 executing program 2:
epoll_create(0x8)
pipe(&(0x7f0000005500))
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, 0x2, 0x2, 0xff, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}}, 0x8c0)

14:59:55 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0xac}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:55 executing program 1:
r0 = epoll_create(0x8)
pipe(0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, 0xffffffffffffffff, &(0x7f0000000040)={0xe79d82407bb48b97})

14:59:55 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x10c, 0x0)

14:59:55 executing program 0:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT_REMOVE, 0xb6f1b91)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
r2 = syz_io_uring_setup(0x2311, &(0x7f0000000040), &(0x7f00007db000/0x4000)=nil, &(0x7f00007dd000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x0, 0x13, r2, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:55 executing program 2:
epoll_create(0x8)
pipe(&(0x7f0000005500))
pipe(&(0x7f0000005500))
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, 0x2, 0x2, 0xff, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}}, 0x8c0)

14:59:55 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x80000000000)

14:59:55 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x204}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:55 executing program 1:
epoll_create(0x8)
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x300, r0, &(0x7f0000000040)={0xe79d82407bb48b97})

14:59:55 executing program 2:
epoll_create(0x8)
pipe(&(0x7f0000005500))
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, 0x2, 0x2, 0xff, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}}, 0x8c0)

14:59:55 executing program 1:
epoll_create(0x8)
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x300, r0, &(0x7f0000000040)={0xe79d82407bb48b97})

14:59:55 executing program 0:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT_REMOVE, 0xb6f1b91)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x2311, &(0x7f0000000040), &(0x7f00007db000/0x4000)=nil, &(0x7f00007dd000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:55 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x2fe}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:55 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x7ffffffff000)

14:59:55 executing program 1:
epoll_create(0x8)
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x300, r0, &(0x7f0000000040)={0xe79d82407bb48b97})

14:59:55 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x10d, 0x0)

14:59:55 executing program 2:
epoll_create(0x8)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, 0x2, 0x2, 0xff, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}}, 0x8c0)

14:59:55 executing program 0:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT_REMOVE, 0xb6f1b91)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:55 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x10000000000000)

14:59:55 executing program 1:
r0 = epoll_create(0x8)
pipe(&(0x7f0000000080))
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, 0xffffffffffffffff, &(0x7f0000000040)={0xe79d82407bb48b97})

14:59:55 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x352}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:55 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, 0x2, 0x2, 0xff, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}}, 0x8c0)

14:59:55 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x402}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:55 executing program 0:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT_REMOVE, 0xb6f1b91)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:55 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x20000000000000)

14:59:55 executing program 1:
r0 = epoll_create(0x8)
pipe(&(0x7f0000000080))
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, 0xffffffffffffffff, &(0x7f0000000040)={0xe79d82407bb48b97})

14:59:56 executing program 0:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT_REMOVE, 0xb6f1b91)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:56 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x10e, 0x0)

14:59:56 executing program 1:
r0 = epoll_create(0x8)
pipe(&(0x7f0000000080))
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, 0xffffffffffffffff, &(0x7f0000000040)={0xe79d82407bb48b97})

14:59:56 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x406}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:56 executing program 2:
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, 0x2, 0x2, 0xff, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}}, 0x8c0)

14:59:56 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0xf0ff7f00000000)

14:59:56 executing program 0:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT_REMOVE, 0xb6f1b91)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:56 executing program 2:
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, 0x2, 0x2, 0xff, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}}, 0x8c0)

14:59:56 executing program 0:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:56 executing program 1:
r0 = epoll_create(0x8)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, 0x0)

14:59:56 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x604}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:56 executing program 2:
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, 0x2, 0x2, 0xff, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}}, 0x8c0)

14:59:56 executing program 0:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:56 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0xf0ffffff7f0000)

14:59:56 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x10f, 0x0)

14:59:56 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x700}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:56 executing program 1:
r0 = epoll_create(0x8)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, 0x0)

14:59:56 executing program 0:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:56 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, 0x0, 0x8c0)

14:59:56 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x4000000000000000)

14:59:56 executing program 1:
r0 = epoll_create(0x8)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, 0x0)

14:59:56 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, 0x0, 0x8c0)

14:59:56 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x2000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:56 executing program 0:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:56 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x4a00000000000000)

14:59:56 executing program 1:
r0 = epoll_create(0x8)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040))

14:59:56 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x110, 0x0)

14:59:56 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, 0x0, 0x8c0)

14:59:56 executing program 0:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:56 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x3f00}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:56 executing program 1:
r0 = epoll_create(0x8)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040))

14:59:56 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0xefffffffffffffff)

14:59:56 executing program 1:
r0 = epoll_create(0x8)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x300, r1, &(0x7f0000000040))

14:59:56 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x8c0)

14:59:56 executing program 0:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:56 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0xf000000000000000)

14:59:56 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x4000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:56 executing program 1:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:56 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x111, 0x0)

14:59:56 executing program 0:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:56 executing program 1:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:56 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x8c0)

14:59:56 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0xffffffff00000000)

14:59:56 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x4200}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:56 executing program 1:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:56 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x8c0)

14:59:56 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x5203}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:56 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0xffffffffffffffef)

14:59:56 executing program 0:
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, 0xffffffffffffffff, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:56 executing program 1:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:56 executing program 0:
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, 0xffffffffffffffff, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:56 executing program 1:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:56 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x6000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:56 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x112, 0x0)

14:59:56 executing program 4:
r0 = syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)
syz_io_uring_setup(0x44c5, &(0x7f0000000000)={0x0, 0x4e37, 0x20, 0x0, 0x217, 0x0, r0}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000de7000/0x1000)=nil, &(0x7f0000000080)=<r2=>0x0, &(0x7f00000000c0))
r3 = syz_io_uring_setup(0x2311, &(0x7f0000000040), &(0x7f00007db000/0x4000)=nil, &(0x7f00007dd000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
r4 = mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x0, 0x13, r3, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r5, r4, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r6, 0xc0603d06, 0x0)
syz_io_uring_submit(r2, r4, &(0x7f0000000180)=@IORING_OP_OPENAT2={0x1c, 0x3, 0x0, r6, &(0x7f0000000100)={0x40000, 0x80, 0xc}, &(0x7f0000000140)='./file0\x00', 0x18, 0x0, 0x12345}, 0x400)

14:59:56 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x8c0)

14:59:57 executing program 0:
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, 0xffffffffffffffff, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:57 executing program 1:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:57 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x8c0)

14:59:57 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0xac00}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:57 executing program 0:
r0 = io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:57 executing program 1:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:57 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x8c0)

14:59:57 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x113, 0x0)

14:59:57 executing program 0:
r0 = io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:57 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0xfe02}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:57 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, 0x2, 0x2, 0x0, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}}, 0x8c0)

14:59:57 executing program 1:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:57 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, 0x0)
ioctl$SG_GET_SCSI_ID(r0, 0x2276, &(0x7f0000000000))
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:57 executing program 1:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:57 executing program 0:
r0 = io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:57 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, 0x2, 0x2, 0x0, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}}, 0x8c0)

14:59:57 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x40000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:57 executing program 0:
r0 = io_uring_setup(0x3ef7, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:57 executing program 1:
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x10004000)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, 0xffffffffffffffff, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:57 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x114, 0x0)

14:59:57 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, 0x2, 0x2, 0x0, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}}, 0x8c0)

14:59:57 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x80000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:57 executing program 1:
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x10004000)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, 0xffffffffffffffff, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:57 executing program 0:
r0 = io_uring_setup(0x3ef7, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:57 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080)={0x0, 0x6273}, &(0x7f0000cd4000/0x1000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:57 executing program 1:
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x10004000)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, 0xffffffffffffffff, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:57 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, 0x2, 0x2, 0xff, 0x0, 0x0, {}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}}, 0x8c0)

14:59:57 executing program 0:
r0 = io_uring_setup(0x3ef7, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:57 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, 0x2, 0x2, 0xff, 0x0, 0x0, {}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}}, 0x8c0)

14:59:57 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x128e00}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:57 executing program 1:
r0 = io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:57 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x115, 0x0)

14:59:57 executing program 0:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:57 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, 0x2, 0x2, 0xff, 0x0, 0x0, {}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}}, 0x8c0)

14:59:57 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x128e01}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:57 executing program 1:
r0 = io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:57 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)
sendmsg$IPSET_CMD_GET_BYNAME(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x58, 0xe, 0x6, 0x801, 0x0, 0x0, {0xc, 0x0, 0x9}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x20000000)

14:59:57 executing program 1:
r0 = io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:57 executing program 0:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:57 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x128e03}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:57 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x14, 0x2, 0x2, 0xff, 0x0, 0x0, {0xa}}, 0x14}}, 0x8c0)

14:59:57 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x14, 0x2, 0x2, 0xff, 0x0, 0x0, {0xa}}, 0x14}}, 0x8c0)

14:59:57 executing program 1:
r0 = io_uring_setup(0x3ef7, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:58 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x116, 0x0)

14:59:58 executing program 0:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:58 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x400000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:58 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x14, 0x2, 0x2, 0xff, 0x0, 0x0, {0xa}}, 0x14}}, 0x8c0)

14:59:58 executing program 1:
r0 = io_uring_setup(0x3ef7, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:58 executing program 4:
sendmsg$IPSET_CMD_PROTOCOL(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x54, 0x1, 0x6, 0x3, 0x0, 0x0, {0xa, 0x0, 0x5}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000000}, 0x24040080)
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)

14:59:58 executing program 0:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:58 executing program 1:
r0 = io_uring_setup(0x3ef7, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:58 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x18, 0x2, 0x2, 0xff, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}}, 0x0)

14:59:58 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x600000}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:58 executing program 0:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, r0, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:58 executing program 2:
r0 = syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)
syz_io_uring_setup(0x44c5, &(0x7f0000000000)={0x0, 0x4e37, 0x20, 0x0, 0x217, 0x0, r0}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000de7000/0x1000)=nil, &(0x7f0000000080)=<r2=>0x0, &(0x7f00000000c0))
r3 = syz_io_uring_setup(0x2311, &(0x7f0000000040), &(0x7f00007db000/0x4000)=nil, &(0x7f00007dd000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
r4 = mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x0, 0x13, r3, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000100))
syz_io_uring_submit(r5, r4, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
pipe(&(0x7f0000005500)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$PTP_PIN_GETFUNC(r6, 0xc0603d06, 0x0)
syz_io_uring_submit(r2, r4, &(0x7f0000000180)=@IORING_OP_OPENAT2={0x1c, 0x3, 0x0, r6, &(0x7f0000000100)={0x40000, 0x80, 0xc}, &(0x7f0000000140)='./file0\x00', 0x18, 0x0, 0x12345}, 0x400)

14:59:58 executing program 3:
r0 = getpid()
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x251, 0x0)
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x117, 0x0)

14:59:58 executing program 1:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x3})
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10004000)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:58 executing program 5:
r0 = io_uring_setup(0x6f2e, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x4b26, &(0x7f0000000140)={0x0, 0x0, 0x80ffff}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

14:59:58 executing program 0:
r0 = io_uring_setup(0x3ef7, &(0x7f0000000080))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x10004000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r0, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000100))

14:59:58 executing program 4:
syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r0 = getpid()
process_vm_writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x101000)

14:59:58 executing program 2:
r0 = syz_io_uring_setup(0x479b, &(0x7f0000001080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00003fe000/0xc00000)=nil, 0x0, 0x0)
r1 = getpid()
process_vm_writev(r1, &(0x7f0000000300)=[{0x0}, {&(0x7f0000001380)=""/161, 0x7ffff000}, {&(0x7f00000014c0)=""/74, 0x4a}], 0x3, &(0x7f0000002b00)=[{&(0x7f0000002c80)=""/4101, 0x7ffff000}], 0x1, 0x0)
syz_io_uring_setup(0x44c5, &(0x7f0000000000)={0x0, 0x4e37, 0x20, 0x0, 0x217, 0x0, r0}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000de7000/0x1000)=nil, &(0x7f0000000080)=<r2=>0x0, &(0x7f00000000c0))
r3 = syz_io_uring_setup(0x2311, &(0x7f0000000040), &(0x7f00007db000/0x4000)=nil, &(0x7f00007dd000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
r4 = mmap$IORING_OFF_SQES(&(0x7f00007dc000/0x4000)=nil, 0x4000, 0x0, 0x13, r3, 0x10000000)
syz_io_uring_setup(0x1109, &(0x7f0000000080), &(0x7f00