enat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x40045567)

[  843.368591][T18478] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  843.412154][T18492] input: syz1 as /devices/virtual/input/input123
17:15:34 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$eJzs3V1oXOl5B/Dn1ZHWkrdpZjebzYdzMbCBbL3ZRbK8axVvQI4VkQXjNSsrFwsFjS3ZHVZfluTiDSVVIaGEtMUlF7msYRNor+qrFpYG3KttCAFRKJRCi9tuzPZuEpq25CIKZ+YdaaSVLcWWJdn7+xn7P3PmOTPvmdUzc4523jkBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAER8+Sun+gfSPQp69nAwAMCeODv2Rv/gvd7/AYDHzvntjv8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAiRRHfjBTvfKeRJprXW3rP1GevXhsfGd16tb4UKbqiaNaXf3sHjg0ef/mVE0PtvPf6u+0z8frY+VPV03Mz8wtTi4tTk9Xx2frFucmpHd/Dg66/2dHmE1Cdeevq5KVLi9VjLw1uuPla5c6hJ5+tnBw6Mvhmu3Z8ZHR0rKOmu+e+H/1D0u7dFY+RJ6KIr0aK9178INUioisevBe2ee142Pqiu+y/5kaMj4w2N2S6XptdKm9MXbmqO6LSsdJwu0f2oBcfyHDEcvnfqRzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGW25PJbpiKEXMR0Sj2O/Bc9D0RBHHI8WdnzfShYgo2n3wwtmxN/oHt7+D7j0Y5BZWV1f/qFJErMQj0LNwQB2KIv4iUnx3oj8u5nZuts37EV8o89WIK2XeSnE9X0/lC8RQxM+8n8AjrTuK+EmkmEuNNNnu/eZ+5ZmvVV+bvTTXUdver3zkjw/2kn0TDrDeKOJCc4+/ke7/l10AAAAAAAAAAAAAwN4o4t1IcXPm+TQfnXNK67OXq+drF6Zbnwpuf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZ5j0BAAAAAAAAAAAAAAAAAACwy/qiiNFIceOdP2ieVzqa56X/+MmhsyPPdJ4z/lPb3E9Z+1JEvBs7OydvTz7XeOoq/+z+dgHb640ivpHP//fH+z0YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgQOiKIr4ZKb73i0aKFBHDERPRytvFfo8OAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACj1piJOR4r//kpv8/pKRHw2In61Wv6J+P/VzfZ7xAAAAAAAAAAAAAAAAAAAAPAYSkVciRTff6+RKhFxrXLn0JPPVk4OHRl8s4giUlnSWf/62PlT1dNzM/MLU4uLU5PV8dn6xbnJqZ0+XO+Z+uzVa+Mjow9lY7bV95DH39d7em7+7YX65d9f2vL2w72nLiwuLdQubn1z9EV3RH/nkqPNAY+PjDYHPV2vzTZXTV13GWB3RHWnGwMAAAAAAAAAAAAAAAAAAMCBcTgVMRIpnvvh8dSeN97dmvP/sda1Yq32B3+4/l0A05uyrfP7A9Yvtyerb14++Gba6UCPNifeV8dHRkfHOhZ393y4tBxTSkV8MlIc+ftPN+fDpzi85dz4su5PI8XQL4/nusqRsm54Q1Xv0fGR0erZudkXT01Pz12s9dUuTE9Vx+ZrF3f8xQEAAAAAAAAAAAAAAAAAAABwD4dTEX8WKY6/tpLa553P8/+7W9c65v+/GtGeyd+bNuaa5tz+327O7W9d/vjJodeOPXe35Q9j/n85ppSK+FWkeOovP908n357/n//ptqy7vuR4iff+lyu63qirBtob07rHi/Vp6f6y9oXIsW3z7Vro1n7Sq79xHrtQFn7D5Hi6d/bWHsi1z6zXnusrL0TKUbPbl37yfXawbK2L1J88U+q7drDZe2Xc+2z67UvXZybntzp08tHU9n//x4pPj/w1dT+mb9r/3d8/8fyplzzoZ6/9+Xd6v9Kx7Ll3Neruf8Htun/K5Hiz69/Lte1eu9Yvv2p5r/r/f/tSPE7H9tY+3KufXq9dmCnmwX7qez/H0WKldv/svYzn/s/d9Z6h3b2/2e7N2Z7v2DH/f9vu9v/T3Usq+RxDf6GzwV81Cy+/fW3atPTUwsuuLBrF5bjQAzDhQe4sN+vTMDDVu7//2+k+NKVIrWPY/P+/2+1rq0f///fN9b3/09uyjX7dPz/dMeyk/mopac7ondpZr7nUxG9i29//cX6TO3y1OWp2cHBoRO/e3zg2ImBnifaB/frl3b83MGjruz/tyLFD/7mn9Z+j73x+H/r3/8d3pRr7rP/f/nX2wx0m/7/ROc2bTiu+c2eD/goKfv/ryLFv974YO3/N93r93/t3/M9/9zG7GsX7dP7/zMdy6r5n6GOZc8XEad2+lgAAAAAAAAAAPCIOJyK+GGk+NvGP66d837j53/i8+3azs//3c3W5//f4vLKPz+08/8DAPdWvv+PRYofH/5ian+HzE4+/z+5Kdfs0+d/n+1YNrlH85p3/CQDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMB9SlHEoUjxznca6XZRXm/pPVOfvXptfGR069XenYuIriia9eXf3oFjg8dffuXEUDvvvf5u+0y8Pnb+VPX03Mz8wtTi4tRkdXy2fnFucmrH9/Cg6292tPkEVGfeujp56dJi9dhLgxtuvla5c+jJZysnh44MvtmuHR8ZHR3rqOnuue9H/5C0e3fFY+SJKOLHkeK9Fz9I/1GUPX23XljecS9s89rxsPVFd9l/zY0YHxltbsh0vTa7VN6YunJVd0SlY6Xhdo/sQS8+kOGI5fK1txzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGm370P1GJrhhKEfMR0Sj2e/AcND1RxN9Fijs/b6T/LCKKdh+8cHbsjf7B7e+gew8GeZeHrRQRK/EI9CwcUIeiiGcixXcn+uO/ilZfNdvm/YgvlPlqxJUyb6W4nq+n8gViKOJn3k/gkdYdRZyLFHOpkd4vcu839yvPfK362uyluY7a9n7lgx4r7/vxwV6yb8IB1htF/LS5x99IP/V+DgAAAAAAAAAAAAAHXBFfihQ3Z55Pzfmha3NK67OXq+drF6ZbH+tvf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZPicNAAAAAAAAAAAAAAAAAMBD0hVFfCtSfO8XjbRatM4vOxGtvG2eKzzWfh0AAP//5UVOig==") (fail_nth: 14)

17:15:34 executing program 1:
pselect6(0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)={0x0, 0x3938700}, &(0x7f0000000100)={&(0x7f00000000c0), 0x7})

17:15:34 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551b, &(0x7f0000000000))

17:15:34 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000000)=0x1ff)
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "641d0e3cc495debfe6484f23b39aa6e8e3921e"})
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "f68fe4821a4aeffdf08061d75aa75d40f73b3a"})

17:15:34 executing program 0:
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r1 = dup(r0)
read$dsp(r1, &(0x7f0000000000)=""/124, 0x7c)

17:15:34 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x40045568)

17:15:34 executing program 1:
r0 = syz_io_uring_setup(0x5111, &(0x7f0000000000), &(0x7f00000000c0), &(0x7f0000000100))
io_uring_register$IORING_UNREGISTER_RING_FDS(r0, 0x11, &(0x7f0000006f80)=[{0x0, 0x0, 0x0, 0x0, 0x0}], 0x1)

17:15:34 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551c, &(0x7f0000000000))

17:15:34 executing program 0:
r0 = fsopen(&(0x7f0000000180)='gfs2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)

[  843.559372][T18501] input: syz1 as /devices/virtual/input/input124
17:15:34 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000000)=0x1ff)
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "641d0e3cc495debfe6484f23b39aa6e8e3921e"})
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "f68fe4821a4aeffdf08061d75aa75d40f73b3a"})

[  843.613758][T18508] FAULT_INJECTION: forcing a failure.
[  843.613758][T18508] name fail_page_alloc, interval 1, probability 0, space 0, times 0
17:15:34 executing program 0:
r0 = syz_io_uring_setup(0x5111, &(0x7f0000000000), &(0x7f00000000c0), &(0x7f0000000100))
io_uring_register$IORING_UNREGISTER_RING_FDS(r0, 0x16, &(0x7f0000006f80)=[{0x0, 0x0, 0x0, 0x0, 0x0}], 0x1)

17:15:34 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc0189436, &(0x7f0000000000))

[  843.714251][T18508] CPU: 1 PID: 18508 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  843.722887][T18508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  843.733125][T18508] Call Trace:
[  843.736414][T18508]  <TASK>
[  843.739355][T18508]  dump_stack_lvl+0x1e3/0x2cb
[  843.744147][T18508]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  843.750105][T18508]  ? panic+0x84d/0x84d
[  843.754199][T18508]  should_fail+0x38a/0x4c0
[  843.758639][T18508]  prepare_alloc_pages+0x1db/0x5b0
[  843.763957][T18508]  __alloc_pages+0x14f/0x700
[  843.768574][T18508]  ? __rmqueue_pcplist+0x2030/0x2030
[  843.773903][T18508]  ? count_memcg_event_mm+0x385/0x3e0
[  843.779296][T18508]  ? remove_device_exclusive_entry+0xbf0/0xbf0
[  843.785564][T18508]  alloc_pages_vma+0x39a/0x800
[  843.790347][T18508]  handle_mm_fault+0x2f49/0x5950
[  843.795326][T18508]  ? numa_migrate_prep+0x1a0/0x1a0
[  843.800488][T18508]  ? vmacache_find+0x23c/0x590
[  843.805283][T18508]  exc_page_fault+0x271/0x740
[  843.810072][T18508]  asm_exc_page_fault+0x22/0x30
[  843.815044][T18508] RIP: 0033:0x7f768c8e3643
[  843.819493][T18508] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  843.839106][T18508] RSP: 002b:00007f768aeb8520 EFLAGS: 00010202
[  843.845190][T18508] RAX: 0000000000009001 RBX: 00007f768aeb85c0 RCX: 00007f7682a99000
[  843.853258][T18508] RDX: 00007f768aeb8760 RSI: 0000000000000001 RDI: 00007f768aeb8660
[  843.861239][T18508] RBP: 00000000000000d1 R08: 0000000000000009 R09: 00000000000001ad
[  843.869226][T18508] R10: 00000000000001c2 R11: 00007f768aeb85c0 R12: 0000000000000001
[  843.877210][T18508] R13: 00007f768c9a5360 R14: 0000000000000054 R15: 00007f768aeb8660
[  843.885320][T18508]  </TASK>
[  843.916167][T18508] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
17:15:34 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 15)

17:15:34 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x40045569)

17:15:34 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCPKT(0xffffffffffffffff, 0x5420, &(0x7f0000000000)=0x1ff)
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "641d0e3cc495debfe6484f23b39aa6e8e3921e"})
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "f68fe4821a4aeffdf08061d75aa75d40f73b3a"})

17:15:34 executing program 1:
r0 = openat$khugepaged_scan(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
pwritev(r0, &(0x7f0000000380)=[{&(0x7f0000000080)='1', 0x1}], 0x1, 0x0, 0x0)

17:15:34 executing program 0:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000022c0)='/proc/stat\x00', 0x0, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x8000000)

17:15:34 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc020660b, &(0x7f0000000000))

17:15:34 executing program 0:
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
writev(r0, &(0x7f0000000700)=[{&(0x7f0000000100)="9a", 0x1}], 0x1)

[  844.014140][T18523] input: syz1 as /devices/virtual/input/input125
[  844.040713][T18533] FAULT_INJECTION: forcing a failure.
[  844.040713][T18533] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  844.070182][T18533] CPU: 1 PID: 18533 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  844.078822][T18533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  844.088904][T18533] Call Trace:
[  844.092191][T18533]  <TASK>
[  844.095128][T18533]  dump_stack_lvl+0x1e3/0x2cb
[  844.099839][T18533]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  844.105927][T18533]  ? panic+0x84d/0x84d
[  844.110023][T18533]  should_fail+0x38a/0x4c0
[  844.114453][T18533]  prepare_alloc_pages+0x1db/0x5b0
17:15:34 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc0405519, &(0x7f0000000000))

17:15:34 executing program 1:
syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f0000000200)='./file0\x00', 0x180e1, &(0x7f00000022c0), 0x0, 0x0, 0x0)

17:15:34 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc0505510, &(0x7f0000000000))

[  844.119585][T18533]  __alloc_pages+0x14f/0x700
[  844.124195][T18533]  ? __rmqueue_pcplist+0x2030/0x2030
[  844.129507][T18533]  ? count_memcg_event_mm+0x385/0x3e0
[  844.134893][T18533]  ? remove_device_exclusive_entry+0xbf0/0xbf0
[  844.141241][T18533]  alloc_pages_vma+0x39a/0x800
[  844.146134][T18533]  handle_mm_fault+0x2f49/0x5950
[  844.151161][T18533]  ? numa_migrate_prep+0x1a0/0x1a0
[  844.156320][T18533]  ? vmacache_find+0x23c/0x590
[  844.161113][T18533]  exc_page_fault+0x271/0x740
[  844.165814][T18533]  asm_exc_page_fault+0x22/0x30
17:15:34 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556b)

[  844.170681][T18533] RIP: 0033:0x7f768c8e3643
[  844.175111][T18533] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  844.195596][T18533] RSP: 002b:00007f768aeb8520 EFLAGS: 00010202
[  844.201679][T18533] RAX: 0000000000018000 RBX: 00007f768aeb85c0 RCX: 00007f7682a99000
[  844.209668][T18533] RDX: 00007f768aeb8760 RSI: 0000000000000011 RDI: 00007f768aeb8660
17:15:34 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCPKT(0xffffffffffffffff, 0x5420, &(0x7f0000000000)=0x1ff)
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "641d0e3cc495debfe6484f23b39aa6e8e3921e"})
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "f68fe4821a4aeffdf08061d75aa75d40f73b3a"})

[  844.217738][T18533] RBP: 0000000000000102 R08: 0000000000000005 R09: 0000000000000010
[  844.225724][T18533] R10: 0000000000000012 R11: 00007f768aeb85c0 R12: 0000000000000001
[  844.233709][T18533] R13: 00007f768c9a5360 R14: 0000000000000001 R15: 00007f768aeb8660
[  844.241796][T18533]  </TASK>
[  844.259778][T18541] input: syz1 as /devices/virtual/input/input126
[  844.316915][T18533] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
17:15:34 executing program 0:
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
vmsplice(r0, &(0x7f0000000100)=[{&(0x7f0000000280)="d5", 0x1}], 0x1, 0x0)

17:15:34 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556d)

17:15:34 executing program 1:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x541b, 0x0)

17:15:34 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 16)

17:15:34 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc1105511, &(0x7f0000000000))

17:15:34 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCPKT(0xffffffffffffffff, 0x5420, &(0x7f0000000000)=0x1ff)
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "641d0e3cc495debfe6484f23b39aa6e8e3921e"})
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "f68fe4821a4aeffdf08061d75aa75d40f73b3a"})

17:15:34 executing program 1:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$BTRFS_IOC_INO_PATHS(r0, 0xc0389423, 0x0)

17:15:34 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc1105517, &(0x7f0000000000))

[  844.441609][T18556] input: syz1 as /devices/virtual/input/input127
[  844.452406][T18559] FAULT_INJECTION: forcing a failure.
[  844.452406][T18559] name fail_page_alloc, interval 1, probability 0, space 0, times 0
17:15:35 executing program 0:
r0 = open(&(0x7f0000001000)='./file0\x00', 0x10b740, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, 0x0)

17:15:35 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, 0x0)
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "641d0e3cc495debfe6484f23b39aa6e8e3921e"})
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "f68fe4821a4aeffdf08061d75aa75d40f73b3a"})

[  844.539416][T18559] CPU: 0 PID: 18559 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  844.548132][T18559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  844.558336][T18559] Call Trace:
[  844.561629][T18559]  <TASK>
[  844.564620][T18559]  dump_stack_lvl+0x1e3/0x2cb
[  844.569327][T18559]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  844.574980][T18559]  ? panic+0x84d/0x84d
[  844.579078][T18559]  should_fail+0x38a/0x4c0
[  844.583626][T18559]  prepare_alloc_pages+0x1db/0x5b0
17:15:35 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, 0x0)
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "641d0e3cc495debfe6484f23b39aa6e8e3921e"})
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "f68fe4821a4aeffdf08061d75aa75d40f73b3a"})

17:15:35 executing program 1:
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$vga_arbiter(r0, &(0x7f0000000080), 0xf)

[  844.588767][T18559]  __alloc_pages+0x14f/0x700
[  844.593381][T18559]  ? __rmqueue_pcplist+0x2030/0x2030
[  844.598697][T18559]  ? count_memcg_event_mm+0x385/0x3e0
[  844.604178][T18559]  ? remove_device_exclusive_entry+0xbf0/0xbf0
[  844.610366][T18559]  alloc_pages_vma+0x39a/0x800
[  844.615185][T18559]  handle_mm_fault+0x2f49/0x5950
[  844.620381][T18559]  ? numa_migrate_prep+0x1a0/0x1a0
[  844.625531][T18559]  ? vmacache_find+0x23c/0x590
[  844.630322][T18559]  exc_page_fault+0x271/0x740
[  844.635018][T18559]  asm_exc_page_fault+0x22/0x30
[  844.639882][T18559] RIP: 0033:0x7f768c8e3643
[  844.644309][T18559] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  844.664013][T18559] RSP: 002b:00007f768aeb8520 EFLAGS: 00010202
[  844.670085][T18559] RAX: 0000000000019000 RBX: 00007f768aeb85c0 RCX: 00007f7682a99000
[  844.678150][T18559] RDX: 00007f768aeb8760 RSI: 0000000000000001 RDI: 00007f768aeb8660
[  844.686145][T18559] RBP: 00000000000000bd R08: 0000000000000008 R09: 0000000000000094
[  844.694463][T18559] R10: 00000000000000ba R11: 00007f768aeb85c0 R12: 0000000000000001
[  844.702424][T18559] R13: 00007f768c9a5360 R14: 0000000000000004 R15: 00007f768aeb8660
[  844.710496][T18559]  </TASK>
[  844.729068][T18559] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
17:15:35 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 17)

17:15:35 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, 0x0)
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "641d0e3cc495debfe6484f23b39aa6e8e3921e"})
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "f68fe4821a4aeffdf08061d75aa75d40f73b3a"})

17:15:35 executing program 1:
r0 = syz_io_uring_setup(0x6b57, &(0x7f0000000000), &(0x7f0000000100), &(0x7f0000000140))
io_uring_register$IORING_REGISTER_PBUF_RING(r0, 0x16, &(0x7f0000000340)={&(0x7f0000002000)={[{0x0}, {0x0}, {0x0}]}, 0x3}, 0x1)

17:15:35 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc1105518, &(0x7f0000000000))

17:15:35 executing program 0:
r0 = io_uring_setup(0x5d8b, &(0x7f0000000080))
io_uring_register$IORING_UNREGISTER_PBUF_RING(r0, 0xc, 0x0, 0x1)

17:15:35 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556e)

17:15:35 executing program 1:
openat$sysfs(0xffffffffffffff9c, &(0x7f0000002540)='/sys/power/pm_trace', 0x42, 0x0)

17:15:35 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc4c85512, &(0x7f0000000000))

17:15:35 executing program 0:
syz_mount_image$exfat(&(0x7f0000000000), &(0x7f0000000200)='./file0\x00', 0x80001a, &(0x7f0000000380)=ANY=[], 0x0, 0x14e6, &(0x7f0000001100)="$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")
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
lseek(r0, 0x7fff, 0x0)
write$FUSE_ATTR(r0, &(0x7f0000000080)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee00}}}, 0x78)
r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0)
open(&(0x7f0000000080)='./file2\x00', 0x20200, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r1, 0xc0185879, &(0x7f0000000240)={0x0, 0x100004000, 0x4000})

[  844.820669][T18584] FAULT_INJECTION: forcing a failure.
[  844.820669][T18584] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  844.852074][T18580] input: syz1 as /devices/virtual/input/input128
17:15:35 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000000))
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "641d0e3cc495debfe6484f23b39aa6e8e3921e"})
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "f68fe4821a4aeffdf08061d75aa75d40f73b3a"})

17:15:35 executing program 1:
r0 = epoll_create(0x3)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000140)={0x727})

17:15:35 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc4c85513, &(0x7f0000000000))

[  844.921125][T18584] CPU: 0 PID: 18584 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  844.930488][T18584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  844.940731][T18584] Call Trace:
[  844.944033][T18584]  <TASK>
[  844.946979][T18584]  dump_stack_lvl+0x1e3/0x2cb
[  844.951680][T18584]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  844.957342][T18584]  ? panic+0x84d/0x84d
[  844.961619][T18584]  should_fail+0x38a/0x4c0
[  844.966066][T18584]  prepare_alloc_pages+0x1db/0x5b0
[  844.971213][T18584]  __alloc_pages+0x14f/0x700
[  844.975838][T18584]  ? __rmqueue_pcplist+0x2030/0x2030
[  844.981155][T18584]  ? mark_lock+0x98/0x340
[  844.985503][T18584]  ? __lock_acquire+0x1295/0x1ff0
[  844.990555][T18584]  alloc_pages_vma+0x39a/0x800
[  844.995353][T18584]  wp_page_copy+0x221/0x2070
[  844.999974][T18584]  ? __lock_acquire+0x1ff0/0x1ff0
[  845.005024][T18584]  ? rcu_lock_release+0x20/0x20
[  845.009896][T18584]  ? do_raw_spin_unlock+0x137/0x8b0
[  845.016819][T18584]  ? _raw_spin_unlock+0x24/0x40
[  845.021947][T18584]  ? do_wp_page+0x6d0/0xaf0
[  845.026473][T18584]  handle_mm_fault+0x2a3d/0x5950
[  845.031447][T18584]  ? numa_migrate_prep+0x1a0/0x1a0
[  845.036595][T18584]  ? vmacache_find+0x23c/0x590
[  845.041392][T18584]  exc_page_fault+0x271/0x740
[  845.046098][T18584]  asm_exc_page_fault+0x22/0x30
[  845.050982][T18584] RIP: 0033:0x7f768c8e3643
[  845.055405][T18584] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  845.075024][T18584] RSP: 002b:00007f768aeb8520 EFLAGS: 00010206
[  845.081104][T18584] RAX: 000000000001c002 RBX: 00007f768aeb85c0 RCX: 00007f7682a99000
[  845.089078][T18584] RDX: 00007f768aeb8760 RSI: 0000000000000071 RDI: 00007f768aeb8660
[  845.097855][T18584] RBP: 0000000000000066 R08: 0000000000000006 R09: 0000000000000026
[  845.105826][T18584] R10: 0000000000000028 R11: 00007f768aeb85c0 R12: 0000000000000001
[  845.113781][T18584] R13: 00007f768c9a5360 R14: 0000000000000003 R15: 00007f768aeb8660
17:15:35 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 18)

17:15:35 executing program 1:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/seq/clients\x00', 0x0, 0x0)
fcntl$lock(r0, 0x25, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff})

17:15:35 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000))

17:15:35 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000000))
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "641d0e3cc495debfe6484f23b39aa6e8e3921e"})
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "f68fe4821a4aeffdf08061d75aa75d40f73b3a"})

17:15:35 executing program 0:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001040)='/proc/key-users\x00', 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000022c0)='/proc/stat\x00', 0x0, 0x0)
dup3(r0, r1, 0x0)

17:15:35 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x40049409)

[  845.121834][T18584]  </TASK>
[  845.127489][T18584] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
17:15:35 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000000))
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "641d0e3cc495debfe6484f23b39aa6e8e3921e"})
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "f68fe4821a4aeffdf08061d75aa75d40f73b3a"})

17:15:35 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x2})

17:15:35 executing program 0:
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000005bc0), 0x0, 0x0)
mount$fuseblk(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000440)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x2000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@blksize}]}})

[  845.225814][T18606] input: syz1 as /devices/virtual/input/input129
[  845.227199][T18609] FAULT_INJECTION: forcing a failure.
[  845.227199][T18609] name fail_page_alloc, interval 1, probability 0, space 0, times 0
17:15:35 executing program 1:
r0 = syz_io_uring_setup(0x5111, &(0x7f0000000000), &(0x7f00000000c0), &(0x7f0000000100))
io_uring_register$IORING_UNREGISTER_RING_FDS(r0, 0x15, &(0x7f0000006f80)=[{0x0, 0x0, 0x0, 0x0, 0x0}], 0x1)

[  845.274430][T18609] CPU: 0 PID: 18609 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  845.283051][T18609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  845.293114][T18609] Call Trace:
[  845.296402][T18609]  <TASK>
[  845.299339][T18609]  dump_stack_lvl+0x1e3/0x2cb
[  845.304036][T18609]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  845.309680][T18609]  ? panic+0x84d/0x84d
[  845.313766][T18609]  should_fail+0x38a/0x4c0
[  845.318193][T18609]  prepare_alloc_pages+0x1db/0x5b0
[  845.323320][T18609]  __alloc_pages+0x14f/0x700
[  845.327912][T18609]  ? __rmqueue_pcplist+0x2030/0x2030
[  845.333212][T18609]  ? count_memcg_event_mm+0x385/0x3e0
[  845.338587][T18609]  ? remove_device_exclusive_entry+0xbf0/0xbf0
[  845.344747][T18609]  alloc_pages_vma+0x39a/0x800
[  845.349523][T18609]  handle_mm_fault+0x2f49/0x5950
[  845.354482][T18609]  ? numa_migrate_prep+0x1a0/0x1a0
[  845.359616][T18609]  ? vmacache_find+0x23c/0x590
[  845.364488][T18609]  exc_page_fault+0x271/0x740
[  845.369168][T18609]  asm_exc_page_fault+0x22/0x30
[  845.374025][T18609] RIP: 0033:0x7f768c8e3643
[  845.378436][T18609] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  845.398040][T18609] RSP: 002b:00007f768aeb8520 EFLAGS: 00010206
[  845.404113][T18609] RAX: 0000000000020000 RBX: 00007f768aeb85c0 RCX: 00007f7682a99000
[  845.412083][T18609] RDX: 00007f768aeb8760 RSI: 0000000000000051 RDI: 00007f768aeb8660
[  845.420062][T18609] RBP: 000000000000004f R08: 0000000000000008 R09: 0000000000000097
[  845.428027][T18609] R10: 00000000000000ba R11: 00007f768aeb85c0 R12: 0000000000000001
[  845.435995][T18609] R13: 00007f768c9a5360 R14: 0000000000000009 R15: 00007f768aeb8660
[  845.443977][T18609]  </TASK>
17:15:36 executing program 1:
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000040)='./bus\x00', 0x10008, &(0x7f0000000400)={[{@iocharset={'iocharset', 0x3d, 'macturkish'}}]}, 0x6, 0x312, &(0x7f0000000540)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000080)=""/208, 0xd0)

17:15:36 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4008556c)

17:15:36 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 19)

17:15:36 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0xc)
sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000009c0)={0x4c, 0x12, 0x1}, 0x4c}}, 0x0)

17:15:36 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x3})

17:15:36 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000000)=0x1ff)
ioctl$TCSETSF(0xffffffffffffffff, 0x5404, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "641d0e3cc495debfe6484f23b39aa6e8e3921e"})
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "f68fe4821a4aeffdf08061d75aa75d40f73b3a"})

17:15:36 executing program 1:
r0 = socket(0xa, 0x6, 0x0)
connect$netlink(r0, &(0x7f0000000000)=@unspec, 0xc)

[  845.577916][T18609] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  845.602532][T18621] input: syz1 as /devices/virtual/input/input130
17:15:36 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x40086602)

17:15:36 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x4})

17:15:36 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000000)=0x1ff)
ioctl$TCSETSF(0xffffffffffffffff, 0x5404, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "641d0e3cc495debfe6484f23b39aa6e8e3921e"})
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "f68fe4821a4aeffdf08061d75aa75d40f73b3a"})

17:15:36 executing program 1:
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000000c0))
ioctl$PPPIOCSACTIVE(r0, 0x40107446, 0x0)

[  845.749952][T18633] FAULT_INJECTION: forcing a failure.
[  845.749952][T18633] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  845.794395][T18633] CPU: 1 PID: 18633 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  845.803035][T18633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  845.813100][T18633] Call Trace:
[  845.816389][T18633]  <TASK>
[  845.819327][T18633]  dump_stack_lvl+0x1e3/0x2cb
[  845.824021][T18633]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  845.829664][T18633]  ? panic+0x84d/0x84d
[  845.833771][T18633]  should_fail+0x38a/0x4c0
[  845.838216][T18633]  prepare_alloc_pages+0x1db/0x5b0
[  845.843351][T18633]  __alloc_pages+0x14f/0x700
[  845.847961][T18633]  ? __rmqueue_pcplist+0x2030/0x2030
[  845.853275][T18633]  ? count_memcg_event_mm+0x385/0x3e0
[  845.858662][T18633]  ? remove_device_exclusive_entry+0xbf0/0xbf0
[  845.864927][T18633]  alloc_pages_vma+0x39a/0x800
[  845.869734][T18633]  handle_mm_fault+0x2f49/0x5950
[  845.874719][T18633]  ? numa_migrate_prep+0x1a0/0x1a0
[  845.879869][T18633]  ? vmacache_find+0x23c/0x590
[  845.884667][T18633]  exc_page_fault+0x271/0x740
[  845.889371][T18633]  asm_exc_page_fault+0x22/0x30
[  845.894408][T18633] RIP: 0033:0x7f768c8e3643
[  845.898832][T18633] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  845.918448][T18633] RSP: 002b:00007f768aeb8520 EFLAGS: 00010202
[  845.924530][T18633] RAX: 0000000000040000 RBX: 00007f768aeb85c0 RCX: 00007f7682a99000
[  845.932512][T18633] RDX: 00007f768aeb8760 RSI: 0000000000000011 RDI: 00007f768aeb8660
17:15:36 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0xc)
sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000009c0)={0x4c, 0x12, 0x1}, 0x4c}}, 0x0)

17:15:36 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000000)=0x1ff)
ioctl$TCSETSF(0xffffffffffffffff, 0x5404, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "641d0e3cc495debfe6484f23b39aa6e8e3921e"})
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "f68fe4821a4aeffdf08061d75aa75d40f73b3a"})

17:15:36 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'ip6erspan0\x00', 0x2})
ioctl$TUNSETIFF(r0, 0x400454cb, &(0x7f0000000080)={'wg2\x00'})

[  845.940584][T18633] RBP: 0000000000000085 R08: 0000000000000008 R09: 0000000000000093
[  845.948566][T18633] R10: 00000000000000ba R11: 00007f768aeb85c0 R12: 0000000000000001
[  845.956549][T18633] R13: 00007f768c9a5360 R14: 0000000000000002 R15: 00007f768aeb8660
[  845.964548][T18633]  </TASK>
17:15:36 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 20)

17:15:36 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000000)=0x1ff)
ioctl$TCSETSF(r0, 0x5404, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "f68fe4821a4aeffdf08061d75aa75d40f73b3a"})

17:15:36 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x5})

17:15:36 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x400c55cb)

17:15:36 executing program 0:
r0 = syz_io_uring_setup(0x5111, &(0x7f0000000000), &(0x7f00000000c0), &(0x7f0000000100))
io_uring_register$IORING_REGISTER_RING_FDS(r0, 0x18, &(0x7f00000085c0)=[{0x0, 0x0, 0x0, 0x0, 0x0}], 0x1)

17:15:36 executing program 1:
socketpair(0xa, 0x3, 0xa, &(0x7f00000000c0))

17:15:36 executing program 1:
ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffffff, 0xc0106426, 0x0)
syz_clone(0x18880000, 0x0, 0x0, 0x0, 0x0, 0x0)

17:15:36 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x6})

17:15:36 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000240)=0x1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
syz_mount_image$vfat(&(0x7f0000000940), &(0x7f0000001240)='./file0\x00', 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="00e789da34e04a1ffbc2f05ceffb4ee655ae1071124b2c2fb684f5c7ac9da18f49c7880f67e77dc70b90bbb45efd97899a16f2df4fa2a8f06ac2c5352509e3c51d672eb3ec0dd3b1c96e98016382e166e2ca4c353d3d4d316daf522556a16cab12d75a852bc680da7e010400009c101c78130d6ef7480feb2e60a1e30a59b7745235b33bc18c4ed0351cd2c5197b02f8a78993b5b416ba1c5721bcd87be5a338392f831637ee8c35bb2183794afff0a9eed63b1226b18c4b455ab200"/197, @ANYRES16, @ANYRES8, @ANYBLOB="373092aa29e2127671f87f18691a035693495a917b2906e31fd948855a5bd5ead164be9992f5776cc8fe4867703dd33350f75c29c48d53222ed8563b1284cd07b32fd5c265416455e3ad2250eba709e696700aa4cd2b473e6878f3f4d0a465259140135e71d5352fb04595fcac2f43be5bfa35f30daf1b94aa36ba872277dfeb7fc3e5924d23cd0fbb1d9b9abdc970d5792646bfad2936129530f592dc68e1eb0cc90b1c22af9a213027a2799eb01bf4ae3a2ce6fb3d9ee21546ae27b1db06d29df772b468e79af23f6aa1a16a2052fe1ed24151a091f020035fb86bd33a5247d1f49b", @ANYRES8=0x0], 0x1, 0x11d4, &(0x7f00000012c0)="$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")
r3 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
ftruncate(r3, 0x7fb)
lseek(r3, 0x0, 0x2)
r4 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
sendfile(r3, r4, 0x0, 0x1000fc4)

[  846.177032][T18659] input: syz1 as /devices/virtual/input/input131
17:15:36 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000000)=0x1ff)
ioctl$TCSETSF(r0, 0x5404, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "f68fe4821a4aeffdf08061d75aa75d40f73b3a"})

[  846.239464][T18661] FAULT_INJECTION: forcing a failure.
[  846.239464][T18661] name fail_page_alloc, interval 1, probability 0, space 0, times 0
17:15:36 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x40186366)

[  846.321055][T18661] CPU: 0 PID: 18661 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  846.329688][T18661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  846.339745][T18661] Call Trace:
[  846.343035][T18661]  <TASK>
[  846.346052][T18661]  dump_stack_lvl+0x1e3/0x2cb
[  846.350740][T18661]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  846.356380][T18661]  ? panic+0x84d/0x84d
[  846.360465][T18661]  should_fail+0x38a/0x4c0
[  846.364897][T18661]  prepare_alloc_pages+0x1db/0x5b0
[  846.370029][T18661]  __alloc_pages+0x14f/0x700
[  846.377039][T18661]  ? __rmqueue_pcplist+0x2030/0x2030
[  846.382355][T18661]  ? count_memcg_event_mm+0x385/0x3e0
[  846.387737][T18661]  ? remove_device_exclusive_entry+0xbf0/0xbf0
[  846.393902][T18661]  alloc_pages_vma+0x39a/0x800
[  846.398684][T18661]  handle_mm_fault+0x2f49/0x5950
[  846.403659][T18661]  ? numa_migrate_prep+0x1a0/0x1a0
[  846.408792][T18661]  ? vmacache_find+0x23c/0x590
[  846.413571][T18661]  exc_page_fault+0x271/0x740
[  846.418265][T18661]  asm_exc_page_fault+0x22/0x30
[  846.423131][T18661] RIP: 0033:0x7f768c8e3643
[  846.427545][T18661] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  846.447150][T18661] RSP: 002b:00007f768aeb8520 EFLAGS: 00010202
[  846.453228][T18661] RAX: 00000000000c4000 RBX: 00007f768aeb85c0 RCX: 00007f7682a99000
[  846.461202][T18661] RDX: 00007f768aeb8760 RSI: 0000000000000029 RDI: 00007f768aeb8660
[  846.469179][T18661] RBP: 0000000000000004 R08: 0000000000000008 R09: 0000000000000096
[  846.477159][T18661] R10: 00000000000000ba R11: 00007f768aeb85c0 R12: 0000000000000001
[  846.485138][T18661] R13: 00007f768c9a5360 R14: 0000000000000008 R15: 00007f768aeb8660
[  846.493134][T18661]  </TASK>
17:15:37 executing program 1:
r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r0, 0xc0184800, 0x0)

[  846.497764][   T26] audit: type=1804 audit(1691082936.826:219): pid=18672 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3167581681/syzkaller.sn1LVw/1131/bus" dev="sda1" ino=1964 res=1 errno=0
[  846.659574][T18675] input: syz1 as /devices/virtual/input/input132
[  847.120845][T18661] pagefault_out_of_memory: 1 callbacks suppressed
[  847.120866][T18661] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
17:15:37 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 21)

17:15:37 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x7})

17:15:37 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000000)=0x1ff)
ioctl$TCSETSF(r0, 0x5404, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "f68fe4821a4aeffdf08061d75aa75d40f73b3a"})

17:15:37 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x401c5820)

17:15:37 executing program 1:
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000080))
ioctl$PPPIOCATTACH(r0, 0x4004743d, 0x0)

17:15:37 executing program 0:
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGPHYS(r0, 0x80404507, &(0x7f00000000c0)=""/123)

17:15:37 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000000)=0x1ff)
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "641d0e3cc495debfe6484f23b39aa6e8e3921e"})
ioctl$TCSETSW(0xffffffffffffffff, 0x5403, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "f68fe4821a4aeffdf08061d75aa75d40f73b3a"})

17:15:37 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x8})

[  847.309163][T18683] input: syz1 as /devices/virtual/input/input133
17:15:37 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4020940d)

[  847.394791][T18688] FAULT_INJECTION: forcing a failure.
[  847.394791][T18688] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  847.452636][T18688] CPU: 1 PID: 18688 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  847.461262][T18688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  847.471444][T18688] Call Trace:
[  847.474732][T18688]  <TASK>
[  847.477668][T18688]  dump_stack_lvl+0x1e3/0x2cb
[  847.482372][T18688]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  847.488109][T18688]  ? panic+0x84d/0x84d
[  847.492210][T18688]  should_fail+0x38a/0x4c0
[  847.496654][T18688]  prepare_alloc_pages+0x1db/0x5b0
[  847.501792][T18688]  __alloc_pages+0x14f/0x700
[  847.506399][T18688]  ? __rmqueue_pcplist+0x2030/0x2030
[  847.511710][T18688]  ? count_memcg_event_mm+0x385/0x3e0
[  847.517106][T18688]  ? remove_device_exclusive_entry+0xbf0/0xbf0
[  847.523273][T18688]  alloc_pages_vma+0x39a/0x800
[  847.528066][T18688]  handle_mm_fault+0x2f49/0x5950
[  847.533045][T18688]  ? numa_migrate_prep+0x1a0/0x1a0
[  847.538208][T18688]  ? vmacache_find+0x23c/0x590
[  847.543008][T18688]  exc_page_fault+0x271/0x740
[  847.547705][T18688]  asm_exc_page_fault+0x22/0x30
[  847.552662][T18688] RIP: 0033:0x7f768c8e3643
[  847.557089][T18688] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  847.576842][T18688] RSP: 002b:00007f768aeb8520 EFLAGS: 00010202
[  847.582935][T18688] RAX: 00000000000c8001 RBX: 00007f768aeb85c0 RCX: 00007f7682a99000
[  847.590927][T18688] RDX: 00007f768aeb8760 RSI: 0000000000000000 RDI: 00007f768aeb8660
17:15:38 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x9})

[  847.598920][T18688] RBP: 00000000000000d3 R08: 0000000000000005 R09: 0000000000000010
[  847.606914][T18688] R10: 0000000000000012 R11: 00007f768aeb85c0 R12: 0000000000000001
[  847.614914][T18688] R13: 00007f768c9a5360 R14: 0000000000000001 R15: 00007f768aeb8660
[  847.622957][T18688]  </TASK>
17:15:38 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x405c5503)

17:15:38 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000000)=0x1ff)
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "641d0e3cc495debfe6484f23b39aa6e8e3921e"})
ioctl$TCSETSW(0xffffffffffffffff, 0x5403, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "f68fe4821a4aeffdf08061d75aa75d40f73b3a"})

[  847.725316][T18702] input: syz1 as /devices/virtual/input/input134
[  847.825620][T18688] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
17:15:38 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$eJzs3V1oXOl5B/Dn1ZHWkrdpZjebzYdzMbCBbL3ZRbK8axVvQI4VkQXjNSsrFwsFjS3ZHVZfluTiDSVVIaGEtMUlF7msYRNor+qrFpYG3KttCAFRKJRCi9tuzPZuEpq25CIKZ+YdaaSVLcWWJdn7+xn7P3PmOTPvmdUzc4523jkBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAER8+Sun+gfSPQp69nAwAMCeODv2Rv/gvd7/AYDHzvntjv8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAiRRHfjBTvfKeRJprXW3rP1GevXhsfGd16tb4UKbqiaNaXf3sHjg0ef/mVE0PtvPf6u+0z8frY+VPV03Mz8wtTi4tTk9Xx2frFucmpHd/Dg66/2dHmE1Cdeevq5KVLi9VjLw1uuPla5c6hJ5+tnBw6Mvhmu3Z8ZHR0rKOmu+e+H/1D0u7dFY+RJ6KIr0aK9178INUioisevBe2ee142Pqiu+y/5kaMj4w2N2S6XptdKm9MXbmqO6LSsdJwu0f2oBcfyHDEcvnfqRzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGW25PJbpiKEXMR0Sj2O/Bc9D0RBHHI8WdnzfShYgo2n3wwtmxN/oHt7+D7j0Y5BZWV1f/qFJErMQj0LNwQB2KIv4iUnx3oj8u5nZuts37EV8o89WIK2XeSnE9X0/lC8RQxM+8n8AjrTuK+EmkmEuNNNnu/eZ+5ZmvVV+bvTTXUdver3zkjw/2kn0TDrDeKOJCc4+/ke7/l10AAAAAAAAAAAAAwN4o4t1IcXPm+TQfnXNK67OXq+drF6Zbnwpuf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZ5j0BAAAAAAAAAAAAAAAAAACwy/qiiNFIceOdP2ieVzqa56X/+MmhsyPPdJ4z/lPb3E9Z+1JEvBs7OydvTz7XeOoq/+z+dgHb640ivpHP//fH+z0YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgQOiKIr4ZKb73i0aKFBHDERPRytvFfo8OAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACj1piJOR4r//kpv8/pKRHw2In61Wv6J+P/VzfZ7xAAAAAAAAAAAAAAAAAAAAPAYSkVciRTff6+RKhFxrXLn0JPPVk4OHRl8s4giUlnSWf/62PlT1dNzM/MLU4uLU5PV8dn6xbnJqZ0+XO+Z+uzVa+Mjow9lY7bV95DH39d7em7+7YX65d9f2vL2w72nLiwuLdQubn1z9EV3RH/nkqPNAY+PjDYHPV2vzTZXTV13GWB3RHWnGwMAAAAAAAAAAAAAAAAAAMCBcTgVMRIpnvvh8dSeN97dmvP/sda1Yq32B3+4/l0A05uyrfP7A9Yvtyerb14++Gba6UCPNifeV8dHRkfHOhZ393y4tBxTSkV8MlIc+ftPN+fDpzi85dz4su5PI8XQL4/nusqRsm54Q1Xv0fGR0erZudkXT01Pz12s9dUuTE9Vx+ZrF3f8xQEAAAAAAAAAAAAAAAAAAABwD4dTEX8WKY6/tpLa553P8/+7W9c65v+/GtGeyd+bNuaa5tz+327O7W9d/vjJodeOPXe35Q9j/n85ppSK+FWkeOovP908n357/n//ptqy7vuR4iff+lyu63qirBtob07rHi/Vp6f6y9oXIsW3z7Vro1n7Sq79xHrtQFn7D5Hi6d/bWHsi1z6zXnusrL0TKUbPbl37yfXawbK2L1J88U+q7drDZe2Xc+2z67UvXZybntzp08tHU9n//x4pPj/w1dT+mb9r/3d8/8fyplzzoZ6/9+Xd6v9Kx7Ll3Neruf8Htun/K5Hiz69/Lte1eu9Yvv2p5r/r/f/tSPE7H9tY+3KufXq9dmCnmwX7qez/H0WKldv/svYzn/s/d9Z6h3b2/2e7N2Z7v2DH/f9vu9v/T3Usq+RxDf6GzwV81Cy+/fW3atPTUwsuuLBrF5bjQAzDhQe4sN+vTMDDVu7//2+k+NKVIrWPY/P+/2+1rq0f///fN9b3/09uyjX7dPz/dMeyk/mopac7ondpZr7nUxG9i29//cX6TO3y1OWp2cHBoRO/e3zg2ImBnifaB/frl3b83MGjruz/tyLFD/7mn9Z+j73x+H/r3/8d3pRr7rP/f/nX2wx0m/7/ROc2bTiu+c2eD/goKfv/ryLFv974YO3/N93r93/t3/M9/9zG7GsX7dP7/zMdy6r5n6GOZc8XEad2+lgAAAAAAAAAAPCIOJyK+GGk+NvGP66d837j53/i8+3azs//3c3W5//f4vLKPz+08/8DAPdWvv+PRYofH/5ian+HzE4+/z+5Kdfs0+d/n+1YNrlH85p3/CQDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMB9SlHEoUjxznca6XZRXm/pPVOfvXptfGR069XenYuIriia9eXf3oFjg8dffuXEUDvvvf5u+0y8Pnb+VPX03Mz8wtTi4tRkdXy2fnFucmrH9/Cg6292tPkEVGfeujp56dJi9dhLgxtuvla5c+jJZysnh44MvtmuHR8ZHR3rqOnuue9H/5C0e3fFY+SJKOLHkeK9Fz9I/1GUPX23XljecS9s89rxsPVFd9l/zY0YHxltbsh0vTa7VN6YunJVd0SlY6Xhdo/sQS8+kOGI5fK1txzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGm370P1GJrhhKEfMR0Sj2e/AcND1RxN9Fijs/b6T/LCKKdh+8cHbsjf7B7e+gew8GeZeHrRQRK/EI9CwcUIeiiGcixXcn+uO/ilZfNdvm/YgvlPlqxJUyb6W4nq+n8gViKOJn3k/gkdYdRZyLFHOpkd4vcu839yvPfK362uyluY7a9n7lgx4r7/vxwV6yb8IB1htF/LS5x99IP/V+DgAAAAAAAAAAAAAHXBFfihQ3Z55Pzfmha3NK67OXq+drF6ZbH+tvf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZPicNAAAAAAAAAAAAAAAAAMBD0hVFfCtSfO8XjbRatM4vOxGtvG2eKzzWfh0AAP//5UVOig==") (fail_nth: 22)

17:15:38 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NBD_CMD_RECONFIGURE(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)={0x1c, r1, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x0}]}, 0x1c}}, 0x0)

17:15:38 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0xa})

17:15:38 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x406855c9)

17:15:38 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000000)=0x1ff)
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "641d0e3cc495debfe6484f23b39aa6e8e3921e"})
ioctl$TCSETSW(0xffffffffffffffff, 0x5403, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "f68fe4821a4aeffdf08061d75aa75d40f73b3a"})

17:15:38 executing program 1:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'ip6erspan0\x00', 0x2})
ioctl$TUNSETIFF(r0, 0x400454da, 0x0)

17:15:38 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0xb})

17:15:38 executing program 0:
r0 = syz_open_dev$vim2m(&(0x7f00000010c0), 0x8, 0x2)
ioctl$vim2m_VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000040)={0x0, 0x7f, 0x1, {0x2, @vbi={0x0, 0x0, 0x0, 0x0, [0x0, 0x7fffffff]}}})

[  848.027574][T18711] input: syz1 as /devices/virtual/input/input135
17:15:38 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000000)=0x1ff)
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "641d0e3cc495debfe6484f23b39aa6e8e3921e"})
ioctl$TCSETSW(r0, 0x5403, 0x0)

[  848.067718][T18714] FAULT_INJECTION: forcing a failure.
[  848.067718][T18714] name fail_page_alloc, interval 1, probability 0, space 0, times 0
17:15:38 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x8004552d)

17:15:38 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000040))

17:15:38 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0xc})

[  848.201449][T18724] input: syz1 as /devices/virtual/input/input136
[  848.251441][T18714] CPU: 1 PID: 18714 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  848.260064][T18714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  848.270133][T18714] Call Trace:
[  848.273424][T18714]  <TASK>
[  848.276358][T18714]  dump_stack_lvl+0x1e3/0x2cb
[  848.281051][T18714]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  848.286697][T18714]  ? panic+0x84d/0x84d
[  848.290786][T18714]  should_fail+0x38a/0x4c0
[  848.295219][T18714]  prepare_alloc_pages+0x1db/0x5b0
[  848.300352][T18714]  __alloc_pages+0x14f/0x700
[  848.304956][T18714]  ? __rmqueue_pcplist+0x2030/0x2030
[  848.310268][T18714]  ? count_memcg_event_mm+0x385/0x3e0
[  848.315655][T18714]  ? remove_device_exclusive_entry+0xbf0/0xbf0
[  848.321817][T18714]  alloc_pages_vma+0x39a/0x800
[  848.326599][T18714]  handle_mm_fault+0x2f49/0x5950
[  848.331573][T18714]  ? numa_migrate_prep+0x1a0/0x1a0
[  848.336718][T18714]  ? vmacache_find+0x23c/0x590
[  848.341499][T18714]  exc_page_fault+0x271/0x740
[  848.346194][T18714]  asm_exc_page_fault+0x22/0x30
[  848.351061][T18714] RIP: 0033:0x7f768c8e3643
[  848.355485][T18714] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  848.375101][T18714] RSP: 002b:00007f768aeb8520 EFLAGS: 00010206
[  848.381188][T18714] RAX: 00000000000cc000 RBX: 00007f768aeb85c0 RCX: 00007f7682a99000
[  848.389168][T18714] RDX: 00007f768aeb8760 RSI: 0000000000000001 RDI: 00007f768aeb8660
[  848.397149][T18714] RBP: 0000000000000089 R08: 0000000000000009 R09: 00000000000001a1
[  848.405130][T18714] R10: 00000000000001c2 R11: 00007f768aeb85c0 R12: 0000000000000001
[  848.413116][T18714] R13: 00007f768c9a5360 R14: 000000000000000a R15: 00007f768aeb8660
[  848.421115][T18714]  </TASK>
[  848.631616][T18714] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
17:15:39 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$eJzs3V1oXOl5B/Dn1ZHWkrdpZjebzYdzMbCBbL3ZRbK8axVvQI4VkQXjNSsrFwsFjS3ZHVZfluTiDSVVIaGEtMUlF7msYRNor+qrFpYG3KttCAFRKJRCi9tuzPZuEpq25CIKZ+YdaaSVLcWWJdn7+xn7P3PmOTPvmdUzc4523jkBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAER8+Sun+gfSPQp69nAwAMCeODv2Rv/gvd7/AYDHzvntjv8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAiRRHfjBTvfKeRJprXW3rP1GevXhsfGd16tb4UKbqiaNaXf3sHjg0ef/mVE0PtvPf6u+0z8frY+VPV03Mz8wtTi4tTk9Xx2frFucmpHd/Dg66/2dHmE1Cdeevq5KVLi9VjLw1uuPla5c6hJ5+tnBw6Mvhmu3Z8ZHR0rKOmu+e+H/1D0u7dFY+RJ6KIr0aK9178INUioisevBe2ee142Pqiu+y/5kaMj4w2N2S6XptdKm9MXbmqO6LSsdJwu0f2oBcfyHDEcvnfqRzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGW25PJbpiKEXMR0Sj2O/Bc9D0RBHHI8WdnzfShYgo2n3wwtmxN/oHt7+D7j0Y5BZWV1f/qFJErMQj0LNwQB2KIv4iUnx3oj8u5nZuts37EV8o89WIK2XeSnE9X0/lC8RQxM+8n8AjrTuK+EmkmEuNNNnu/eZ+5ZmvVV+bvTTXUdver3zkjw/2kn0TDrDeKOJCc4+/ke7/l10AAAAAAAAAAAAAwN4o4t1IcXPm+TQfnXNK67OXq+drF6Zbnwpuf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZ5j0BAAAAAAAAAAAAAAAAAACwy/qiiNFIceOdP2ieVzqa56X/+MmhsyPPdJ4z/lPb3E9Z+1JEvBs7OydvTz7XeOoq/+z+dgHb640ivpHP//fH+z0YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgQOiKIr4ZKb73i0aKFBHDERPRytvFfo8OAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACj1piJOR4r//kpv8/pKRHw2In61Wv6J+P/VzfZ7xAAAAAAAAAAAAAAAAAAAAPAYSkVciRTff6+RKhFxrXLn0JPPVk4OHRl8s4giUlnSWf/62PlT1dNzM/MLU4uLU5PV8dn6xbnJqZ0+XO+Z+uzVa+Mjow9lY7bV95DH39d7em7+7YX65d9f2vL2w72nLiwuLdQubn1z9EV3RH/nkqPNAY+PjDYHPV2vzTZXTV13GWB3RHWnGwMAAAAAAAAAAAAAAAAAAMCBcTgVMRIpnvvh8dSeN97dmvP/sda1Yq32B3+4/l0A05uyrfP7A9Yvtyerb14++Gba6UCPNifeV8dHRkfHOhZ393y4tBxTSkV8MlIc+ftPN+fDpzi85dz4su5PI8XQL4/nusqRsm54Q1Xv0fGR0erZudkXT01Pz12s9dUuTE9Vx+ZrF3f8xQEAAAAAAAAAAAAAAAAAAABwD4dTEX8WKY6/tpLa553P8/+7W9c65v+/GtGeyd+bNuaa5tz+327O7W9d/vjJodeOPXe35Q9j/n85ppSK+FWkeOovP908n357/n//ptqy7vuR4iff+lyu63qirBtob07rHi/Vp6f6y9oXIsW3z7Vro1n7Sq79xHrtQFn7D5Hi6d/bWHsi1z6zXnusrL0TKUbPbl37yfXawbK2L1J88U+q7drDZe2Xc+2z67UvXZybntzp08tHU9n//x4pPj/w1dT+mb9r/3d8/8fyplzzoZ6/9+Xd6v9Kx7Ll3Neruf8Htun/K5Hiz69/Lte1eu9Yvv2p5r/r/f/tSPE7H9tY+3KufXq9dmCnmwX7qez/H0WKldv/svYzn/s/d9Z6h3b2/2e7N2Z7v2DH/f9vu9v/T3Usq+RxDf6GzwV81Cy+/fW3atPTUwsuuLBrF5bjQAzDhQe4sN+vTMDDVu7//2+k+NKVIrWPY/P+/2+1rq0f///fN9b3/09uyjX7dPz/dMeyk/mopac7ondpZr7nUxG9i29//cX6TO3y1OWp2cHBoRO/e3zg2ImBnifaB/frl3b83MGjruz/tyLFD/7mn9Z+j73x+H/r3/8d3pRr7rP/f/nX2wx0m/7/ROc2bTiu+c2eD/goKfv/ryLFv974YO3/N93r93/t3/M9/9zG7GsX7dP7/zMdy6r5n6GOZc8XEad2+lgAAAAAAAAAAPCIOJyK+GGk+NvGP66d837j53/i8+3azs//3c3W5//f4vLKPz+08/8DAPdWvv+PRYofH/5ian+HzE4+/z+5Kdfs0+d/n+1YNrlH85p3/CQDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMB9SlHEoUjxznca6XZRXm/pPVOfvXptfGR069XenYuIriia9eXf3oFjg8dffuXEUDvvvf5u+0y8Pnb+VPX03Mz8wtTi4tRkdXy2fnFucmrH9/Cg6292tPkEVGfeujp56dJi9dhLgxtuvla5c+jJZysnh44MvtmuHR8ZHR3rqOnuue9H/5C0e3fFY+SJKOLHkeK9Fz9I/1GUPX23XljecS9s89rxsPVFd9l/zY0YHxltbsh0vTa7VN6YunJVd0SlY6Xhdo/sQS8+kOGI5fK1txzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGm370P1GJrhhKEfMR0Sj2e/AcND1RxN9Fijs/b6T/LCKKdh+8cHbsjf7B7e+gew8GeZeHrRQRK/EI9CwcUIeiiGcixXcn+uO/ilZfNdvm/YgvlPlqxJUyb6W4nq+n8gViKOJn3k/gkdYdRZyLFHOpkd4vcu839yvPfK362uyluY7a9n7lgx4r7/vxwV6yb8IB1htF/LS5x99IP/V+DgAAAAAAAAAAAAAHXBFfihQ3Z55Pzfmha3NK67OXq+drF6ZbH+tvf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZPicNAAAAAAAAAAAAAAAAAMBD0hVFfCtSfO8XjbRatM4vOxGtvG2eKzzWfh0AAP//5UVOig==") (fail_nth: 23)

17:15:39 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000000)=0x1ff)
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "641d0e3cc495debfe6484f23b39aa6e8e3921e"})
ioctl$TCSETSW(r0, 0x5403, 0x0)

17:15:39 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0xd})

17:15:39 executing program 0:
socketpair(0x2, 0x6, 0x1, &(0x7f0000000000))

17:15:39 executing program 1:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'ip6erspan0\x00', 0x2})
ioctl$TUNSETIFF(r0, 0x400454da, 0x0)

17:15:39 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x80086301)

17:15:39 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000000)=0x1ff)
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "641d0e3cc495debfe6484f23b39aa6e8e3921e"})
ioctl$TCSETSW(r0, 0x5403, 0x0)

17:15:39 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0xe})

[  848.743778][T18736] input: syz1 as /devices/virtual/input/input137
[  848.764157][T18740] FAULT_INJECTION: forcing a failure.
[  848.764157][T18740] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  848.835493][T18740] CPU: 0 PID: 18740 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  848.844409][T18740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  848.854481][T18740] Call Trace:
[  848.857971][T18740]  <TASK>
[  848.860908][T18740]  dump_stack_lvl+0x1e3/0x2cb
[  848.865601][T18740]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  848.871256][T18740]  ? panic+0x84d/0x84d
[  848.875353][T18740]  should_fail+0x38a/0x4c0
[  848.879819][T18740]  prepare_alloc_pages+0x1db/0x5b0
[  848.884963][T18740]  __alloc_pages+0x14f/0x700
[  848.889572][T18740]  ? __rmqueue_pcplist+0x2030/0x2030
[  848.894894][T18740]  ? count_memcg_event_mm+0x385/0x3e0
[  848.900282][T18740]  ? remove_device_exclusive_entry+0xbf0/0xbf0
[  848.906455][T18740]  alloc_pages_vma+0x39a/0x800
[  848.911328][T18740]  handle_mm_fault+0x2f49/0x5950
[  848.916656][T18740]  ? numa_migrate_prep+0x1a0/0x1a0
[  848.921807][T18740]  ? vmacache_find+0x23c/0x590
[  848.926596][T18740]  exc_page_fault+0x271/0x740
[  848.931341][T18740]  asm_exc_page_fault+0x22/0x30
[  848.936292][T18740] RIP: 0033:0x7f768c8e3643
[  848.940726][T18740] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  848.960515][T18740] RSP: 002b:00007f768aeb8520 EFLAGS: 00010206
[  848.968175][T18740] RAX: 00000000000d0000 RBX: 00007f768aeb85c0 RCX: 00007f7682a99000
[  848.976160][T18740] RDX: 00007f768aeb8760 RSI: 0000000000000029 RDI: 00007f768aeb8660
17:15:39 executing program 3:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'ip6erspan0\x00', 0x2})
ioctl$TUNSETOFFLOAD(r0, 0x400454d0, 0x7)

17:15:39 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x80086601)

17:15:39 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'ip6erspan0\x00', 0x2})
ioctl$TUNSETIFF(r0, 0x400454e2, &(0x7f0000000080)={'wg2\x00'})

[  848.984152][T18740] RBP: 000000000000001b R08: 0000000000000009 R09: 00000000000001a1
[  848.992140][T18740] R10: 00000000000001c2 R11: 00007f768aeb85c0 R12: 0000000000000001
[  849.000306][T18740] R13: 00007f768c9a5360 R14: 000000000000000a R15: 00007f768aeb8660
[  849.008399][T18740]  </TASK>
17:15:39 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x10})

[  849.041157][T18740] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  849.049535][T18750] input: syz1 as /devices/virtual/input/input138
17:15:39 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 24)

17:15:39 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x801c581f)

17:15:39 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'ip6erspan0\x00', 0x2})
ioctl$TUNSETIFF(r0, 0x400454e2, &(0x7f0000000080)={'wg2\x00'})

17:15:39 executing program 3:
r0 = socket(0x29, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x5452, &(0x7f0000000040)={'wlan1\x00'})

17:15:39 executing program 1:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'ip6erspan0\x00', 0x2})
ioctl$TUNSETIFF(r0, 0x400454da, 0x0)

17:15:39 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x11})

[  849.220427][T18758] input: syz1 as /devices/virtual/input/input139
17:15:39 executing program 3:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NBD_CMD_RECONFIGURE(r0, &(0x7f0000000180)={&(0x7f0000000040), 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x24, r1, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_BACKEND_IDENTIFIER={0xd, 0xa, '/dev/ppp\x00'}]}, 0x24}}, 0x0)

17:15:39 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'ip6erspan0\x00', 0x2})
ioctl$TUNSETIFF(r0, 0x400454e2, &(0x7f0000000080)={'wg2\x00'})

[  849.268796][T18759] FAULT_INJECTION: forcing a failure.
[  849.268796][T18759] name fail_page_alloc, interval 1, probability 0, space 0, times 0
17:15:39 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x12})

[  849.337663][T18759] CPU: 0 PID: 18759 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  849.346416][T18759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  849.356482][T18759] Call Trace:
[  849.359773][T18759]  <TASK>
[  849.362714][T18759]  dump_stack_lvl+0x1e3/0x2cb
[  849.367453][T18759]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  849.373104][T18759]  ? panic+0x84d/0x84d
[  849.377201][T18759]  should_fail+0x38a/0x4c0
[  849.381634][T18759]  prepare_alloc_pages+0x1db/0x5b0
[  849.386781][T18759]  __alloc_pages+0x14f/0x700
[  849.391399][T18759]  ? __rmqueue_pcplist+0x2030/0x2030
[  849.396720][T18759]  ? count_memcg_event_mm+0x385/0x3e0
[  849.402107][T18759]  ? remove_device_exclusive_entry+0xbf0/0xbf0
[  849.408361][T18759]  alloc_pages_vma+0x39a/0x800
[  849.413150][T18759]  handle_mm_fault+0x2f49/0x5950
[  849.418130][T18759]  ? numa_migrate_prep+0x1a0/0x1a0
[  849.423285][T18759]  ? vmacache_find+0x23c/0x590
[  849.428161][T18759]  exc_page_fault+0x271/0x740
[  849.432872][T18759]  asm_exc_page_fault+0x22/0x30
[  849.437735][T18759] RIP: 0033:0x7f768c8e36f0
[  849.442162][T18759] Code: 39 4f 08 72 4c 8d 4d ff 85 ed 74 33 66 0f 1f 44 00 00 48 39 f0 72 1b 4d 8b 07 49 89 c1 49 29 f1 47 0f b6 0c 08 45 84 c9 74 08 <45> 88 0c 00 49 8b 47 10 48 83 c0 01 49 89 47 10 83 e9 01 73 d3 41
[  849.461953][T18759] RSP: 002b:00007f768aeb8520 EFLAGS: 00010206
[  849.468043][T18759] RAX: 00000000000d1000 RBX: 00007f768aeb85c0 RCX: 0000000000000019
[  849.476037][T18759] RDX: 000000000000002c RSI: 0000000000000009 RDI: 00007f768aeb8660
17:15:39 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x18})

17:15:40 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x25})

17:15:40 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0xc0045878)

[  849.484029][T18759] RBP: 000000000000003b R08: 00007f7682a99000 R09: 0000000000000065
[  849.492013][T18759] R10: 0000000000000074 R11: 00007f768aeb85d0 R12: 0000000000000009
[  849.500083][T18759] R13: 00007f768c9a5360 R14: 0000000000000006 R15: 00007f768aeb8660
[  849.508084][T18759]  </TASK>
[  849.521627][T18759] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
17:15:40 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 25)

17:15:40 executing program 3:
r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000080)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x5, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 'syz1\x00', 0x0})

17:15:40 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'ip6erspan0\x00', 0x2})
ioctl$TUNSETIFF(r0, 0x400454e2, &(0x7f0000000080)={'wg2\x00'})

17:15:40 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x5c})

17:15:40 executing program 1:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'ip6erspan0\x00', 0x2})
ioctl$TUNSETIFF(r0, 0x400454da, 0x0)

[  849.636704][T18783] input: syz1 as /devices/virtual/input/input140
17:15:40 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'ip6erspan0\x00', 0x2})
ioctl$TUNSETIFF(r0, 0x400454cd, 0x0)

17:15:40 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x300})

17:15:40 executing program 3:
r0 = creat(&(0x7f0000000280)='./file0\x00', 0x0)
close(r0)
r1 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000140)={0x0, &(0x7f0000000080)=[<r2=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r1, 0xc06864a1, &(0x7f0000000200)={0x0, 0x0, r2, <r3=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r1, 0xc06864ce, &(0x7f0000000600)={r3, 0x0, 0x0, 0x0, 0x0, [<r4=>0x0]})
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000001c0)={0x0, 0xae, 0x3ff, 0x3231564e, 0x0, [r4], [0xe00]})

17:15:40 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0xc0045878)

17:15:40 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x16, 0x10001, 0x0, 0x10000, 0x0, 0x1}, 0x48)

[  849.777929][T18794] FAULT_INJECTION: forcing a failure.
[  849.777929][T18794] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  849.815458][T18801] input: syz1 as /devices/virtual/input/input141
[  849.825551][T18794] CPU: 0 PID: 18794 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  849.834247][T18794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  849.844309][T18794] Call Trace:
[  849.847686][T18794]  <TASK>
[  849.851152][T18794]  dump_stack_lvl+0x1e3/0x2cb
[  849.856032][T18794]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  849.861686][T18794]  ? panic+0x84d/0x84d
[  849.865872][T18794]  should_fail+0x38a/0x4c0
[  849.870317][T18794]  prepare_alloc_pages+0x1db/0x5b0
17:15:40 executing program 3:
r0 = socket(0x29, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x891d, &(0x7f0000000040)={'wlan1\x00'})

17:15:40 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000640), 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_WAIT(r0, 0xc02064c3, &(0x7f00000000c0)={0x0})

[  849.875652][T18794]  __alloc_pages+0x14f/0x700
[  849.880261][T18794]  ? __rmqueue_pcplist+0x2030/0x2030
[  849.885596][T18794]  ? count_memcg_event_mm+0x385/0x3e0
[  849.891003][T18794]  ? remove_device_exclusive_entry+0xbf0/0xbf0
[  849.897269][T18794]  alloc_pages_vma+0x39a/0x800
[  849.902070][T18794]  handle_mm_fault+0x2f49/0x5950
[  849.907051][T18794]  ? numa_migrate_prep+0x1a0/0x1a0
[  849.912208][T18794]  ? vmacache_find+0x23c/0x590
[  849.917000][T18794]  exc_page_fault+0x271/0x740
[  849.921700][T18794]  asm_exc_page_fault+0x22/0x30
[  849.926577][T18794] RIP: 0033:0x7f768c8e3643
[  849.931003][T18794] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  849.950624][T18794] RSP: 002b:00007f768aeb8520 EFLAGS: 00010206
[  849.956709][T18794] RAX: 00000000000d4000 RBX: 00007f768aeb85c0 RCX: 00007f7682a99000
[  849.964789][T18794] RDX: 00007f768aeb8760 RSI: 0000000000000009 RDI: 00007f768aeb8660
17:15:40 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 26)

17:15:40 executing program 0:
r0 = syz_open_dev$sndctrl(&(0x7f0000000140), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, 0x0)

17:15:40 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000640), 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(r0, 0x541b, 0x0)

17:15:40 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x500})

17:15:40 executing program 1:
timerfd_settime(0xffffffffffffffff, 0x2a8556bb87ee2c20, &(0x7f0000000340)={{}, {0x77359400}}, 0x0)

17:15:40 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0xc00c55ca)

[  849.972800][T18794] RBP: 00000000000000a7 R08: 0000000000000009 R09: 00000000000001a1
[  849.980793][T18794] R10: 00000000000001c2 R11: 00007f768aeb85c0 R12: 0000000000000001
[  849.989023][T18794] R13: 00007f768c9a5360 R14: 000000000000000a R15: 00007f768aeb8660
[  849.997174][T18794]  </TASK>
[  850.002710][T18794] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
17:15:40 executing program 1:
r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r0, 0xc0045540, &(0x7f0000000040)=0x20)

17:15:40 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x600})

17:15:40 executing program 3:
memfd_create(&(0x7f00000000c0), 0x0)

17:15:40 executing program 0:
r0 = syz_open_dev$rtc(&(0x7f00000004c0), 0x0, 0x0)
ioctl$RTC_WKALM_SET(r0, 0x4028700f, &(0x7f0000000100))

17:15:40 executing program 1:
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$PPPIOCATTACH(r0, 0x801c581f, 0x0)

[  850.108237][T18818] FAULT_INJECTION: forcing a failure.
[  850.108237][T18818] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  850.137950][T18820] input: syz1 as /devices/virtual/input/input142
17:15:40 executing program 3:
syz_emit_ethernet(0x3e, &(0x7f00000001c0)={@local, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @multicast1, @private}, @dest_unreach={0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2}}}}}}, 0x0)

[  850.202580][T18818] CPU: 1 PID: 18818 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  850.211322][T18818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  850.221474][T18818] Call Trace:
[  850.224759][T18818]  <TASK>
[  850.227700][T18818]  dump_stack_lvl+0x1e3/0x2cb
[  850.232390][T18818]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  850.238043][T18818]  ? panic+0x84d/0x84d
[  850.242141][T18818]  should_fail+0x38a/0x4c0
[  850.246688][T18818]  prepare_alloc_pages+0x1db/0x5b0
[  850.251829][T18818]  __alloc_pages+0x14f/0x700
[  850.256444][T18818]  ? __rmqueue_pcplist+0x2030/0x2030
[  850.261763][T18818]  ? count_memcg_event_mm+0x385/0x3e0
[  850.267154][T18818]  ? remove_device_exclusive_entry+0xbf0/0xbf0
[  850.273328][T18818]  alloc_pages_vma+0x39a/0x800
[  850.278121][T18818]  handle_mm_fault+0x2f49/0x5950
[  850.283102][T18818]  ? numa_migrate_prep+0x1a0/0x1a0
[  850.288253][T18818]  ? vmacache_find+0x23c/0x590
[  850.293041][T18818]  exc_page_fault+0x271/0x740
[  850.297734][T18818]  asm_exc_page_fault+0x22/0x30
[  850.302602][T18818] RIP: 0033:0x7f768c8e3643
[  850.307024][T18818] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  850.326637][T18818] RSP: 002b:00007f768aeb8520 EFLAGS: 00010202
[  850.332690][T18818] RAX: 00000000000f8000 RBX: 00007f768aeb85c0 RCX: 00007f7682a99000
[  850.340646][T18818] RDX: 00007f768aeb8760 RSI: 0000000000000000 RDI: 00007f768aeb8660
17:15:40 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$eJzs3V1oXOl5B/Dn1ZHWkrdpZjebzYdzMbCBbL3ZRbK8axVvQI4VkQXjNSsrFwsFjS3ZHVZfluTiDSVVIaGEtMUlF7msYRNor+qrFpYG3KttCAFRKJRCi9tuzPZuEpq25CIKZ+YdaaSVLcWWJdn7+xn7P3PmOTPvmdUzc4523jkBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAER8+Sun+gfSPQp69nAwAMCeODv2Rv/gvd7/AYDHzvntjv8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAiRRHfjBTvfKeRJprXW3rP1GevXhsfGd16tb4UKbqiaNaXf3sHjg0ef/mVE0PtvPf6u+0z8frY+VPV03Mz8wtTi4tTk9Xx2frFucmpHd/Dg66/2dHmE1Cdeevq5KVLi9VjLw1uuPla5c6hJ5+tnBw6Mvhmu3Z8ZHR0rKOmu+e+H/1D0u7dFY+RJ6KIr0aK9178INUioisevBe2ee142Pqiu+y/5kaMj4w2N2S6XptdKm9MXbmqO6LSsdJwu0f2oBcfyHDEcvnfqRzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGW25PJbpiKEXMR0Sj2O/Bc9D0RBHHI8WdnzfShYgo2n3wwtmxN/oHt7+D7j0Y5BZWV1f/qFJErMQj0LNwQB2KIv4iUnx3oj8u5nZuts37EV8o89WIK2XeSnE9X0/lC8RQxM+8n8AjrTuK+EmkmEuNNNnu/eZ+5ZmvVV+bvTTXUdver3zkjw/2kn0TDrDeKOJCc4+/ke7/l10AAAAAAAAAAAAAwN4o4t1IcXPm+TQfnXNK67OXq+drF6Zbnwpuf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZ5j0BAAAAAAAAAAAAAAAAAACwy/qiiNFIceOdP2ieVzqa56X/+MmhsyPPdJ4z/lPb3E9Z+1JEvBs7OydvTz7XeOoq/+z+dgHb640ivpHP//fH+z0YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgQOiKIr4ZKb73i0aKFBHDERPRytvFfo8OAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACj1piJOR4r//kpv8/pKRHw2In61Wv6J+P/VzfZ7xAAAAAAAAAAAAAAAAAAAAPAYSkVciRTff6+RKhFxrXLn0JPPVk4OHRl8s4giUlnSWf/62PlT1dNzM/MLU4uLU5PV8dn6xbnJqZ0+XO+Z+uzVa+Mjow9lY7bV95DH39d7em7+7YX65d9f2vL2w72nLiwuLdQubn1z9EV3RH/nkqPNAY+PjDYHPV2vzTZXTV13GWB3RHWnGwMAAAAAAAAAAAAAAAAAAMCBcTgVMRIpnvvh8dSeN97dmvP/sda1Yq32B3+4/l0A05uyrfP7A9Yvtyerb14++Gba6UCPNifeV8dHRkfHOhZ393y4tBxTSkV8MlIc+ftPN+fDpzi85dz4su5PI8XQL4/nusqRsm54Q1Xv0fGR0erZudkXT01Pz12s9dUuTE9Vx+ZrF3f8xQEAAAAAAAAAAAAAAAAAAABwD4dTEX8WKY6/tpLa553P8/+7W9c65v+/GtGeyd+bNuaa5tz+327O7W9d/vjJodeOPXe35Q9j/n85ppSK+FWkeOovP908n357/n//ptqy7vuR4iff+lyu63qirBtob07rHi/Vp6f6y9oXIsW3z7Vro1n7Sq79xHrtQFn7D5Hi6d/bWHsi1z6zXnusrL0TKUbPbl37yfXawbK2L1J88U+q7drDZe2Xc+2z67UvXZybntzp08tHU9n//x4pPj/w1dT+mb9r/3d8/8fyplzzoZ6/9+Xd6v9Kx7Ll3Neruf8Htun/K5Hiz69/Lte1eu9Yvv2p5r/r/f/tSPE7H9tY+3KufXq9dmCnmwX7qez/H0WKldv/svYzn/s/d9Z6h3b2/2e7N2Z7v2DH/f9vu9v/T3Usq+RxDf6GzwV81Cy+/fW3atPTUwsuuLBrF5bjQAzDhQe4sN+vTMDDVu7//2+k+NKVIrWPY/P+/2+1rq0f///fN9b3/09uyjX7dPz/dMeyk/mopac7ondpZr7nUxG9i29//cX6TO3y1OWp2cHBoRO/e3zg2ImBnifaB/frl3b83MGjruz/tyLFD/7mn9Z+j73x+H/r3/8d3pRr7rP/f/nX2wx0m/7/ROc2bTiu+c2eD/goKfv/ryLFv974YO3/N93r93/t3/M9/9zG7GsX7dP7/zMdy6r5n6GOZc8XEad2+lgAAAAAAAAAAPCIOJyK+GGk+NvGP66d837j53/i8+3azs//3c3W5//f4vLKPz+08/8DAPdWvv+PRYofH/5ian+HzE4+/z+5Kdfs0+d/n+1YNrlH85p3/CQDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMB9SlHEoUjxznca6XZRXm/pPVOfvXptfGR069XenYuIriia9eXf3oFjg8dffuXEUDvvvf5u+0y8Pnb+VPX03Mz8wtTi4tRkdXy2fnFucmrH9/Cg6292tPkEVGfeujp56dJi9dhLgxtuvla5c+jJZysnh44MvtmuHR8ZHR3rqOnuue9H/5C0e3fFY+SJKOLHkeK9Fz9I/1GUPX23XljecS9s89rxsPVFd9l/zY0YHxltbsh0vTa7VN6YunJVd0SlY6Xhdo/sQS8+kOGI5fK1txzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGm370P1GJrhhKEfMR0Sj2e/AcND1RxN9Fijs/b6T/LCKKdh+8cHbsjf7B7e+gew8GeZeHrRQRK/EI9CwcUIeiiGcixXcn+uO/ilZfNdvm/YgvlPlqxJUyb6W4nq+n8gViKOJn3k/gkdYdRZyLFHOpkd4vcu839yvPfK362uyluY7a9n7lgx4r7/vxwV6yb8IB1htF/LS5x99IP/V+DgAAAAAAAAAAAAAHXBFfihQ3Z55Pzfmha3NK67OXq+drF6ZbH+tvf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZPicNAAAAAAAAAAAAAAAAAMBD0hVFfCtSfO8XjbRatM4vOxGtvG2eKzzWfh0AAP//5UVOig==") (fail_nth: 27)

17:15:40 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x700})

17:15:40 executing program 3:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'ip6erspan0\x00', 0x2})
ioctl$TUNSETIFF(r0, 0x400454dc, &(0x7f0000000080)={'wg2\x00'})

17:15:40 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0xc0189436)

17:15:40 executing program 1:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$inet(0x2, 0xa, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'ip6erspan0\x00', 0x2})

[  850.348606][T18818] RBP: 0000000000000037 R08: 0000000000000005 R09: 0000000000000010
[  850.356588][T18818] R10: 0000000000000012 R11: 00007f768aeb85c0 R12: 0000000000000001
[  850.364543][T18818] R13: 00007f768c9a5360 R14: 0000000000000001 R15: 00007f768aeb8660
[  850.372516][T18818]  </TASK>
[  850.375547][    C1] vkms_vblank_simulate: vblank timer overrun
[  850.395415][T18818] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
17:15:40 executing program 0:
r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000240), 0x2)
ioctl$UDMABUF_CREATE_LIST(r0, 0x40087543, &(0x7f0000000280))

17:15:41 executing program 0:
r0 = socket(0x29, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8993, &(0x7f0000000040)={'wlan1\x00'})

17:15:41 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x900})

[  850.459577][T18842] input: syz1 as /devices/virtual/input/input143
[  850.489130][T18845] FAULT_INJECTION: forcing a failure.
[  850.489130][T18845] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  850.538477][T18845] CPU: 0 PID: 18845 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  850.547102][T18845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  850.557433][T18845] Call Trace:
[  850.560731][T18845]  <TASK>
[  850.563736][T18845]  dump_stack_lvl+0x1e3/0x2cb
[  850.568411][T18845]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  850.574031][T18845]  ? panic+0x84d/0x84d
[  850.578093][T18845]  should_fail+0x38a/0x4c0
[  850.582501][T18845]  prepare_alloc_pages+0x1db/0x5b0
[  850.587607][T18845]  __alloc_pages+0x14f/0x700
[  850.592182][T18845]  ? __rmqueue_pcplist+0x2030/0x2030
[  850.597462][T18845]  ? count_memcg_event_mm+0x385/0x3e0
[  850.602938][T18845]  ? remove_device_exclusive_entry+0xbf0/0xbf0
[  850.609499][T18845]  alloc_pages_vma+0x39a/0x800
[  850.614287][T18845]  handle_mm_fault+0x2f49/0x5950
[  850.619246][T18845]  ? numa_migrate_prep+0x1a0/0x1a0
[  850.624374][T18845]  ? vmacache_find+0x23c/0x590
[  850.629130][T18845]  exc_page_fault+0x271/0x740
[  850.633822][T18845]  asm_exc_page_fault+0x22/0x30
[  850.638667][T18845] RIP: 0033:0x7f768c8e3643
[  850.643078][T18845] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  850.663371][T18845] RSP: 002b:00007f768aeb8520 EFLAGS: 00010202
[  850.669527][T18845] RAX: 00000000000f9000 RBX: 00007f768aeb85c0 RCX: 00007f7682a99000
[  850.677485][T18845] RDX: 00007f768aeb8760 RSI: 0000000000000001 RDI: 00007f768aeb8660
17:15:41 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, &(0x7f0000000040)={0x3, 0x0, "d41a31", 0x9})

17:15:41 executing program 0:
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000740), 0x0, 0x0)
ioctl$TCSBRKP(r0, 0x5425, 0x0)

17:15:41 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0xc020660b)

[  850.685526][T18845] RBP: 00000000000000bd R08: 0000000000000008 R09: 0000000000000094
[  850.693476][T18845] R10: 00000000000000ba R11: 00007f768aeb85c0 R12: 0000000000000001
[  850.701445][T18845] R13: 00007f768c9a5360 R14: 0000000000000004 R15: 00007f768aeb8660
[  850.709419][T18845]  </TASK>
[  850.715114][T18845] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
17:15:41 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0xa00})

17:15:41 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 28)

17:15:41 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000640), 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, &(0x7f0000000180)={0x0, 0x0})

17:15:41 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0xb00})

[  850.829385][T18856] input: syz1 as /devices/virtual/input/input144
17:15:41 executing program 1:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'ip6erspan0\x00', 0x2})
ioctl$TUNSETIFF(r0, 0x8927, &(0x7f0000000080)={'wg2\x00'})

17:15:41 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0xc06855c8)

[  850.870910][T18860] FAULT_INJECTION: forcing a failure.
[  850.870910][T18860] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  850.895109][T18860] CPU: 1 PID: 18860 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  850.903818][T18860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  850.913884][T18860] Call Trace:
[  850.917189][T18860]  <TASK>
[  850.920156][T18860]  dump_stack_lvl+0x1e3/0x2cb
[  850.924854][T18860]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  850.930513][T18860]  ? panic+0x84d/0x84d
[  850.934713][T18860]  should_fail+0x38a/0x4c0
[  850.939241][T18860]  prepare_alloc_pages+0x1db/0x5b0
[  850.944384][T18860]  __alloc_pages+0x14f/0x700
[  850.948993][T18860]  ? __rmqueue_pcplist+0x2030/0x2030
[  850.954297][T18860]  ? mark_lock+0x98/0x340
[  850.958649][T18860]  ? __lock_acquire+0x1295/0x1ff0
[  850.963711][T18860]  alloc_pages_vma+0x39a/0x800
[  850.968506][T18860]  wp_page_copy+0x221/0x2070
[  850.969303][T18866] input: syz1 as /devices/virtual/input/input145
[  850.973113][T18860]  ? __lock_acquire+0x1ff0/0x1ff0
[  850.973150][T18860]  ? rcu_lock_release+0x20/0x20
[  850.973169][T18860]  ? do_raw_spin_unlock+0x137/0x8b0
[  850.973191][T18860]  ? _raw_spin_unlock+0x24/0x40
[  850.973209][T18860]  ? do_wp_page+0x6d0/0xaf0
[  850.973233][T18860]  handle_mm_fault+0x2a3d/0x5950
[  850.973282][T18860]  ? numa_migrate_prep+0x1a0/0x1a0
[  851.014551][T18860]  ? vmacache_find+0x23c/0x590
[  851.019352][T18860]  exc_page_fault+0x271/0x740
[  851.024045][T18860]  asm_exc_page_fault+0x22/0x30
[  851.028907][T18860] RIP: 0033:0x7f768c8e3643
[  851.033316][T18860] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  851.053678][T18860] RSP: 002b:00007f768aeb8520 EFLAGS: 00010206
[  851.059864][T18860] RAX: 00000000000fc002 RBX: 00007f768aeb85c0 RCX: 00007f7682a99000
17:15:41 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'ip6erspan0\x00', 0x2})
ioctl$TUNSETVNETLE(r0, 0x400454dc, 0x0)

[  851.067834][T18860] RDX: 00007f768aeb8760 RSI: 0000000000000001 RDI: 00007f768aeb8660
[  851.075891][T18860] RBP: 000000000000009f R08: 0000000000000006 R09: 0000000000000026
[  851.083870][T18860] R10: 0000000000000028 R11: 00007f768aeb85c0 R12: 0000000000000001
[  851.092693][T18860] R13: 00007f768c9a5360 R14: 0000000000000003 R15: 00007f768aeb8660
[  851.100689][T18860]  </TASK>
[  851.103793][    C1] vkms_vblank_simulate: vblank timer overrun
17:15:41 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0xc00})

17:15:41 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000040), 0x0, 0x0)
ioctl$DRM_IOCTL_GET_UNIQUE(r0, 0xc0106401, &(0x7f0000000180)={0x0, 0x0})

[  851.236422][T18860] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
17:15:42 executing program 3:
openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)

17:15:42 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x17)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

17:15:42 executing program 1:
r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000080)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 'syz1\x00', 0x0})

17:15:42 executing program 0:
r0 = socket(0x29, 0x5, 0x0)
getsockopt$inet_pktinfo(r0, 0x119, 0x8, 0x0, 0x0)

17:15:42 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0xd00})

17:15:42 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 29)

17:15:42 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0xe00})

17:15:42 executing program 1:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x891d, &(0x7f0000000040)={'wg0\x00'})

17:15:42 executing program 0:
add_key(&(0x7f0000000000)='dns_resolver\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe)

17:15:42 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000140), 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r0, 0xc01864cd, &(0x7f0000000200)={0x0, 0x0})

[  851.653307][T18885] input: syz1 as /devices/virtual/input/input146
[  851.666611][T18881] FAULT_INJECTION: forcing a failure.
[  851.666611][T18881] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  851.745558][T18881] CPU: 1 PID: 18881 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  851.754183][T18881] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  851.764254][T18881] Call Trace:
[  851.767546][T18881]  <TASK>
[  851.770484][T18881]  dump_stack_lvl+0x1e3/0x2cb
[  851.775184][T18881]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  851.780929][T18881]  ? panic+0x84d/0x84d
[  851.785017][T18881]  ? __lock_acquire+0x1295/0x1ff0
[  851.790061][T18881]  should_fail+0x38a/0x4c0
17:15:42 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
dup(r0) (async)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x17)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a) (async)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

17:15:42 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="1fe8ffff0000000000003b00000008000300", @ANYRES32=r2, @ANYBLOB="23003300d08000000802110000000802110000015050505050500000000000001502"], 0x40}}, 0x0)

17:15:42 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x1100})

17:15:42 executing program 0:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000014c0)={'vcan0\x00'})

17:15:42 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x1200})

[  851.794505][T18881]  prepare_alloc_pages+0x1db/0x5b0
[  851.799643][T18881]  __alloc_pages+0x14f/0x700
[  851.804256][T18881]  ? __rmqueue_pcplist+0x2030/0x2030
[  851.809569][T18881]  ? mark_lock+0x98/0x340
[  851.813917][T18881]  ? __lock_acquire+0x1295/0x1ff0
[  851.818964][T18881]  alloc_pages_vma+0x39a/0x800
[  851.823754][T18881]  wp_page_copy+0x221/0x2070
[  851.828363][T18881]  ? __lock_acquire+0x1ff0/0x1ff0
[  851.833411][T18881]  ? rcu_lock_release+0x20/0x20
[  851.838278][T18881]  ? do_raw_spin_unlock+0x137/0x8b0
17:15:42 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x1800})

[  851.843492][T18881]  ? _raw_spin_unlock+0x24/0x40
[  851.848360][T18881]  ? do_wp_page+0x6d0/0xaf0
[  851.853069][T18881]  handle_mm_fault+0x2a3d/0x5950
[  851.858051][T18881]  ? numa_migrate_prep+0x1a0/0x1a0
[  851.863208][T18881]  ? vmacache_find+0x23c/0x590
[  851.867994][T18881]  exc_page_fault+0x271/0x740
[  851.872779][T18881]  asm_exc_page_fault+0x22/0x30
[  851.877904][T18881] RIP: 0033:0x7f768c8e3643
17:15:42 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x2500})

[  851.882354][T18881] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  851.901985][T18881] RSP: 002b:00007f768aeb8520 EFLAGS: 00010202
[  851.908069][T18881] RAX: 00000000000ffc00 RBX: 00007f768aeb85c0 RCX: 00007f7682a99000
[  851.916146][T18881] RDX: 00007f768aeb8760 RSI: 0000000000000001 RDI: 00007f768aeb8660
[  851.924134][T18881] RBP: 0000000000000057 R08: 0000000000000008 R09: 0000000000000093
[  851.932113][T18881] R10: 00000000000000ba R11: 00007f768aeb85c0 R12: 0000000000000001
[  851.940088][T18881] R13: 00007f768c9a5360 R14: 0000000000000002 R15: 00007f768aeb8660
[  851.948083][T18881]  </TASK>
[  851.951204][    C1] vkms_vblank_simulate: vblank timer overrun
17:15:42 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$eJzs3V1oXOl5B/Dn1ZHWkrdpZjebzYdzMbCBbL3ZRbK8axVvQI4VkQXjNSsrFwsFjS3ZHVZfluTiDSVVIaGEtMUlF7msYRNor+qrFpYG3KttCAFRKJRCi9tuzPZuEpq25CIKZ+YdaaSVLcWWJdn7+xn7P3PmOTPvmdUzc4523jkBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAER8+Sun+gfSPQp69nAwAMCeODv2Rv/gvd7/AYDHzvntjv8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAiRRHfjBTvfKeRJprXW3rP1GevXhsfGd16tb4UKbqiaNaXf3sHjg0ef/mVE0PtvPf6u+0z8frY+VPV03Mz8wtTi4tTk9Xx2frFucmpHd/Dg66/2dHmE1Cdeevq5KVLi9VjLw1uuPla5c6hJ5+tnBw6Mvhmu3Z8ZHR0rKOmu+e+H/1D0u7dFY+RJ6KIr0aK9178INUioisevBe2ee142Pqiu+y/5kaMj4w2N2S6XptdKm9MXbmqO6LSsdJwu0f2oBcfyHDEcvnfqRzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGW25PJbpiKEXMR0Sj2O/Bc9D0RBHHI8WdnzfShYgo2n3wwtmxN/oHt7+D7j0Y5BZWV1f/qFJErMQj0LNwQB2KIv4iUnx3oj8u5nZuts37EV8o89WIK2XeSnE9X0/lC8RQxM+8n8AjrTuK+EmkmEuNNNnu/eZ+5ZmvVV+bvTTXUdver3zkjw/2kn0TDrDeKOJCc4+/ke7/l10AAAAAAAAAAAAAwN4o4t1IcXPm+TQfnXNK67OXq+drF6Zbnwpuf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZ5j0BAAAAAAAAAAAAAAAAAACwy/qiiNFIceOdP2ieVzqa56X/+MmhsyPPdJ4z/lPb3E9Z+1JEvBs7OydvTz7XeOoq/+z+dgHb640ivpHP//fH+z0YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgQOiKIr4ZKb73i0aKFBHDERPRytvFfo8OAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACj1piJOR4r//kpv8/pKRHw2In61Wv6J+P/VzfZ7xAAAAAAAAAAAAAAAAAAAAPAYSkVciRTff6+RKhFxrXLn0JPPVk4OHRl8s4giUlnSWf/62PlT1dNzM/MLU4uLU5PV8dn6xbnJqZ0+XO+Z+uzVa+Mjow9lY7bV95DH39d7em7+7YX65d9f2vL2w72nLiwuLdQubn1z9EV3RH/nkqPNAY+PjDYHPV2vzTZXTV13GWB3RHWnGwMAAAAAAAAAAAAAAAAAAMCBcTgVMRIpnvvh8dSeN97dmvP/sda1Yq32B3+4/l0A05uyrfP7A9Yvtyerb14++Gba6UCPNifeV8dHRkfHOhZ393y4tBxTSkV8MlIc+ftPN+fDpzi85dz4su5PI8XQL4/nusqRsm54Q1Xv0fGR0erZudkXT01Pz12s9dUuTE9Vx+ZrF3f8xQEAAAAAAAAAAAAAAAAAAABwD4dTEX8WKY6/tpLa553P8/+7W9c65v+/GtGeyd+bNuaa5tz+327O7W9d/vjJodeOPXe35Q9j/n85ppSK+FWkeOovP908n357/n//ptqy7vuR4iff+lyu63qirBtob07rHi/Vp6f6y9oXIsW3z7Vro1n7Sq79xHrtQFn7D5Hi6d/bWHsi1z6zXnusrL0TKUbPbl37yfXawbK2L1J88U+q7drDZe2Xc+2z67UvXZybntzp08tHU9n//x4pPj/w1dT+mb9r/3d8/8fyplzzoZ6/9+Xd6v9Kx7Ll3Neruf8Htun/K5Hiz69/Lte1eu9Yvv2p5r/r/f/tSPE7H9tY+3KufXq9dmCnmwX7qez/H0WKldv/svYzn/s/d9Z6h3b2/2e7N2Z7v2DH/f9vu9v/T3Usq+RxDf6GzwV81Cy+/fW3atPTUwsuuLBrF5bjQAzDhQe4sN+vTMDDVu7//2+k+NKVIrWPY/P+/2+1rq0f///fN9b3/09uyjX7dPz/dMeyk/mopac7ondpZr7nUxG9i29//cX6TO3y1OWp2cHBoRO/e3zg2ImBnifaB/frl3b83MGjruz/tyLFD/7mn9Z+j73x+H/r3/8d3pRr7rP/f/nX2wx0m/7/ROc2bTiu+c2eD/goKfv/ryLFv974YO3/N93r93/t3/M9/9zG7GsX7dP7/zMdy6r5n6GOZc8XEad2+lgAAAAAAAAAAPCIOJyK+GGk+NvGP66d837j53/i8+3azs//3c3W5//f4vLKPz+08/8DAPdWvv+PRYofH/5ian+HzE4+/z+5Kdfs0+d/n+1YNrlH85p3/CQDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMB9SlHEoUjxznca6XZRXm/pPVOfvXptfGR069XenYuIriia9eXf3oFjg8dffuXEUDvvvf5u+0y8Pnb+VPX03Mz8wtTi4tRkdXy2fnFucmrH9/Cg6292tPkEVGfeujp56dJi9dhLgxtuvla5c+jJZysnh44MvtmuHR8ZHR3rqOnuue9H/5C0e3fFY+SJKOLHkeK9Fz9I/1GUPX23XljecS9s89rxsPVFd9l/zY0YHxltbsh0vTa7VN6YunJVd0SlY6Xhdo/sQS8+kOGI5fK1txzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGm370P1GJrhhKEfMR0Sj2e/AcND1RxN9Fijs/b6T/LCKKdh+8cHbsjf7B7e+gew8GeZeHrRQRK/EI9CwcUIeiiGcixXcn+uO/ilZfNdvm/YgvlPlqxJUyb6W4nq+n8gViKOJn3k/gkdYdRZyLFHOpkd4vcu839yvPfK362uyluY7a9n7lgx4r7/vxwV6yb8IB1htF/LS5x99IP/V+DgAAAAAAAAAAAAAHXBFfihQ3Z55Pzfmha3NK67OXq+drF6ZbH+tvf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZPicNAAAAAAAAAAAAAAAAAMBD0hVFfCtSfO8XjbRatM4vOxGtvG2eKzzWfh0AAP//5UVOig==") (fail_nth: 30)

17:15:42 executing program 1:
bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, 0x0, 0x0)
syz_clone(0x3000, 0x0, 0x0, &(0x7f0000000600), &(0x7f0000000640), &(0x7f0000000680)="0c91d79f1a7259a56d47aa9a6fd4c3e330faa2a1318544")

17:15:42 executing program 3:
r0 = add_key(&(0x7f0000000000)='user\x00', &(0x7f0000000040)={'syz', 0x2}, &(0x7f0000000080)="7f", 0x1, 0xfffffffffffffffe)
keyctl$search(0x2, r0, 0x0, 0x0, 0x0)

17:15:42 executing program 0:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$SO_J1939_FILTER(r0, 0x6b, 0x1, 0x0, 0x0)

17:15:42 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x5c00})

17:15:42 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x17)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) (async)
dup(r0) (async)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c) (async)
ioctl$UI_DEV_CREATE(r1, 0x5501) (async)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x17) (async)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a) (async)

[  852.025912][T18881] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
17:15:42 executing program 0:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/snat_reroute\x00', 0x2, 0x0)
write$cgroup_int(r0, &(0x7f0000000000)=0xfff, 0x12)

17:15:42 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x1000000})

17:15:42 executing program 3:
syz_clone3(&(0x7f0000000300)={0x80, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[0x0], 0x1}, 0x58)

17:15:42 executing program 1:
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(0xffffffffffffffff, 0xc02064b9, &(0x7f0000000080)={0x0, &(0x7f0000000040)=[0x0], 0x0, 0x0, 0xe0e0e0e0})
io_setup(0x8000, &(0x7f0000002740))
ioctl$DRM_IOCTL_SG_ALLOC(0xffffffffffffffff, 0xc0106438, &(0x7f0000002a40)={0x41})
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, 0x0)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, 0x0)

17:15:42 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x2000000})

[  852.140048][T18924] input: syz1 as /devices/virtual/input/input147
17:15:42 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, 0x0, 0x0)

[  852.206164][T18921] FAULT_INJECTION: forcing a failure.
[  852.206164][T18921] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  852.281335][T18921] CPU: 0 PID: 18921 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  852.289960][T18921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  852.300022][T18921] Call Trace:
[  852.303311][T18921]  <TASK>
[  852.306247][T18921]  dump_stack_lvl+0x1e3/0x2cb
[  852.310945][T18921]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  852.316601][T18921]  ? panic+0x84d/0x84d
[  852.320686][T18921]  ? is_bpf_text_address+0x24f/0x260
[  852.326065][T18921]  should_fail+0x38a/0x4c0
[  852.330499][T18921]  prepare_alloc_pages+0x1db/0x5b0
[  852.335632][T18921]  __alloc_pages+0x14f/0x700
[  852.340253][T18921]  ? __rmqueue_pcplist+0x2030/0x2030
[  852.345577][T18921]  alloc_pages_vma+0x39a/0x800
[  852.350358][T18921]  ? mpol_shared_policy_lookup+0x144/0x1e0
[  852.356180][T18921]  shmem_alloc_and_acct_page+0x4d1/0xd10
[  852.361842][T18921]  ? shmem_swapin_page+0x22f0/0x22f0
[  852.367158][T18921]  ? xas_start+0x3ff/0x7b0
[  852.371594][T18921]  ? xas_load+0x11a/0x140
[  852.375968][T18921]  ? pagecache_get_page+0xd23/0x1010
[  852.381331][T18921]  ? page_cache_prev_miss+0x500/0x500
[  852.386723][T18921]  ? reacquire_held_locks+0x3a2/0x660
[  852.392102][T18921]  ? __mark_inode_dirty+0x4ca/0xd60
[  852.397363][T18921]  shmem_getpage_gfp+0x17b1/0x3190
[  852.402518][T18921]  ? shmem_getpage+0xa0/0xa0
[  852.407115][T18921]  ? fault_in_safe_writeable+0x250/0x250
[  852.412742][T18921]  ? generic_update_time+0x1cb/0x1e0
[  852.418034][T18921]  shmem_write_begin+0xce/0x1a0
[  852.422894][T18921]  generic_perform_write+0x2bf/0x5b0
[  852.428189][T18921]  ? grab_cache_page_write_begin+0x90/0x90
[  852.433987][T18921]  ? file_remove_privs+0x610/0x610
[  852.439103][T18921]  ? down_write+0x10e/0x170
[  852.444298][T18921]  __generic_file_write_iter+0x243/0x4f0
[  852.449952][T18921]  generic_file_write_iter+0xa7/0x1b0
[  852.455345][T18921]  vfs_write+0xacf/0xe50
[  852.459606][T18921]  ? file_end_write+0x250/0x250
[  852.464449][T18921]  ? __fget_files+0x413/0x480
[  852.469133][T18921]  ? __fdget_pos+0x1eb/0x2b0
[  852.473715][T18921]  ? ksys_write+0x77/0x2c0
[  852.478147][T18921]  ksys_write+0x1a2/0x2c0
[  852.482483][T18921]  ? print_irqtrace_events+0x210/0x210
[  852.488037][T18921]  ? __ia32_sys_read+0x80/0x80
[  852.492793][T18921]  ? syscall_enter_from_user_mode+0x2e/0x230
[  852.498780][T18921]  ? lockdep_hardirqs_on+0x94/0x130
[  852.503978][T18921]  ? syscall_enter_from_user_mode+0x2e/0x230
[  852.509970][T18921]  do_syscall_64+0x3d/0xb0
[  852.514385][T18921]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  852.520288][T18921] RIP: 0033:0x7f768c93682f
[  852.524834][T18921] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  852.544605][T18921] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  852.553101][T18921] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  852.561088][T18921] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  852.569067][T18921] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
17:15:43 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 31)

17:15:43 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x3000000})

17:15:43 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [], [], [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc]}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0)
ioctl$UI_DEV_DESTROY(r2, 0x5502)

17:15:43 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000200), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_RMFB(r0, 0xc00464af, &(0x7f0000000240))

17:15:43 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x19, 0x0, 0x0)

[  852.577050][T18921] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  852.585024][T18921] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  852.593030][T18921]  </TASK>
17:15:43 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x4000000})

17:15:43 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000200), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_RMFB(r0, 0xc00464af, &(0x7f0000000240))

17:15:43 executing program 0:
openat$dlm_plock(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
syz_genetlink_get_family_id$l2tp(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), 0xffffffffffffffff)

17:15:43 executing program 1:
socketpair(0x2b, 0x1, 0x0, &(0x7f0000002400))

[  852.661934][T18948] input: syz1 as /devices/virtual/input/input148
[  852.746031][T18952] FAULT_INJECTION: forcing a failure.
[  852.746031][T18952] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  852.759325][T18952] CPU: 0 PID: 18952 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  852.767927][T18952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  852.778082][T18952] Call Trace:
[  852.781374][T18952]  <TASK>
[  852.784314][T18952]  dump_stack_lvl+0x1e3/0x2cb
[  852.789005][T18952]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  852.794675][T18952]  ? panic+0x84d/0x84d
[  852.798790][T18952]  ? shmem_getpage_gfp+0x2b48/0x3190
[  852.804099][T18952]  should_fail+0x38a/0x4c0
[  852.808545][T18952]  copy_page_from_iter_atomic+0x451/0x1230
[  852.814382][T18952]  ? pipe_zero+0x4f0/0x4f0
[  852.818812][T18952]  ? generic_update_time+0x1cb/0x1e0
[  852.824126][T18952]  generic_perform_write+0x33a/0x5b0
[  852.829436][T18952]  ? grab_cache_page_write_begin+0x90/0x90
[  852.835253][T18952]  ? file_remove_privs+0x610/0x610
[  852.840381][T18952]  ? down_write+0x10e/0x170
17:15:43 executing program 0:
syz_clone3(&(0x7f00000015c0)={0xc004400, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000001580)=[0x0], 0x1}, 0x58)

17:15:43 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000200), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_RMFB(r0, 0xc00464af, &(0x7f0000000240))

[  852.844905][T18952]  __generic_file_write_iter+0x243/0x4f0
[  852.850560][T18952]  generic_file_write_iter+0xa7/0x1b0
[  852.855945][T18952]  vfs_write+0xacf/0xe50
[  852.860207][T18952]  ? file_end_write+0x250/0x250
[  852.865087][T18952]  ? __fget_files+0x413/0x480
[  852.869787][T18952]  ? __fdget_pos+0x1eb/0x2b0
[  852.874388][T18952]  ? ksys_write+0x77/0x2c0
[  852.878822][T18952]  ksys_write+0x1a2/0x2c0
[  852.883167][T18952]  ? print_irqtrace_events+0x210/0x210
[  852.888650][T18952]  ? __ia32_sys_read+0x80/0x80
17:15:43 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x5000000})

[  852.893443][T18952]  ? syscall_enter_from_user_mode+0x2e/0x230
[  852.899440][T18952]  ? lockdep_hardirqs_on+0x94/0x130
[  852.904678][T18952]  ? syscall_enter_from_user_mode+0x2e/0x230
[  852.910674][T18952]  do_syscall_64+0x3d/0xb0
[  852.915107][T18952]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  852.921013][T18952] RIP: 0033:0x7f768c93682f
[  852.925436][T18952] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  852.945048][T18952] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  852.953490][T18952] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  852.961475][T18952] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  852.969458][T18952] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  852.977443][T18952] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  852.985431][T18952] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  852.993440][T18952]  </TASK>
[  853.007854][ T3614] Bluetooth: hci3: command 0x0401 tx timeout
17:15:43 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 32)

17:15:43 executing program 1:
socketpair(0x2b, 0x1, 0x0, &(0x7f0000002400))

17:15:43 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000200), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_RMFB(r0, 0xc00464af, &(0x7f0000000240))

17:15:43 executing program 5:
openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) (async)
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [], [], [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc]}, 0x45c) (async)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [], [], [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc]}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b) (async)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0)
ioctl$UI_DEV_DESTROY(r2, 0x5502)

17:15:43 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x7, &(0x7f0000000040)=0x1, 0x4)

17:15:43 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x6000000})

17:15:43 executing program 1:
socketpair(0x2b, 0x1, 0x0, &(0x7f0000002400))

17:15:43 executing program 0:
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000380)=@bpf_lsm={0x1d, 0x1, &(0x7f0000000080)=@raw=[@generic], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x80)

[  853.114515][T18975] input: syz1 as /devices/virtual/input/input149
17:15:43 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_DELETE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x20, r1, 0x1, 0x0, 0x0, {}, [@L2TP_ATTR_COOKIE={0xc}]}, 0x20}}, 0x0)

17:15:43 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x7000000})

17:15:43 executing program 1:
socketpair(0x2b, 0x1, 0x0, &(0x7f0000002400))

[  853.184067][T18978] FAULT_INJECTION: forcing a failure.
[  853.184067][T18978] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  853.232483][T18978] CPU: 0 PID: 18978 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  853.241112][T18978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  853.251188][T18978] Call Trace:
[  853.254476][T18978]  <TASK>
[  853.257442][T18978]  dump_stack_lvl+0x1e3/0x2cb
[  853.262142][T18978]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  853.267792][T18978]  ? panic+0x84d/0x84d
[  853.271882][T18978]  should_fail+0x38a/0x4c0
[  853.276320][T18978]  prepare_alloc_pages+0x1db/0x5b0
[  853.281466][T18978]  __alloc_pages+0x14f/0x700
[  853.286070][T18978]  ? __rmqueue_pcplist+0x2030/0x2030
[  853.291376][T18978]  ? __lock_acquire+0x1295/0x1ff0
[  853.296413][T18978]  ? look_up_lock_class+0x77/0x120
[  853.301546][T18978]  alloc_pages_vma+0x39a/0x800
[  853.306362][T18978]  ? mpol_shared_policy_lookup+0x144/0x1e0
[  853.312184][T18978]  shmem_alloc_and_acct_page+0x4d1/0xd10
[  853.317834][T18978]  ? shmem_swapin_page+0x22f0/0x22f0
[  853.323150][T18978]  ? xas_start+0x3cc/0x7b0
[  853.327579][T18978]  ? xas_load+0x11a/0x140
[  853.331925][T18978]  ? pagecache_get_page+0xd23/0x1010
[  853.337222][T18978]  ? page_cache_prev_miss+0x500/0x500
[  853.342632][T18978]  ? do_raw_spin_unlock+0x137/0x8b0
[  853.347846][T18978]  ? _raw_spin_unlock_irq+0x1f/0x40
[  853.353059][T18978]  ? lockdep_hardirqs_on+0x94/0x130
[  853.358282][T18978]  shmem_getpage_gfp+0x17b1/0x3190
[  853.363457][T18978]  ? shmem_getpage+0xa0/0xa0
[  853.368062][T18978]  ? fault_in_safe_writeable+0x250/0x250
[  853.373723][T18978]  shmem_write_begin+0xce/0x1a0
[  853.378604][T18978]  generic_perform_write+0x2bf/0x5b0
[  853.383915][T18978]  ? grab_cache_page_write_begin+0x90/0x90
[  853.389733][T18978]  ? file_remove_privs+0x610/0x610
[  853.394861][T18978]  ? down_write+0x10e/0x170
[  853.399376][T18978]  __generic_file_write_iter+0x243/0x4f0
[  853.405026][T18978]  generic_file_write_iter+0xa7/0x1b0
[  853.410417][T18978]  vfs_write+0xacf/0xe50
[  853.414711][T18978]  ? file_end_write+0x250/0x250
[  853.419584][T18978]  ? __fget_files+0x413/0x480
[  853.424281][T18978]  ? __fdget_pos+0x1eb/0x2b0
[  853.428875][T18978]  ? ksys_write+0x77/0x2c0
[  853.433302][T18978]  ksys_write+0x1a2/0x2c0
[  853.437647][T18978]  ? print_irqtrace_events+0x210/0x210
[  853.443135][T18978]  ? __ia32_sys_read+0x80/0x80
[  853.447920][T18978]  ? syscall_enter_from_user_mode+0x2e/0x230
[  853.453915][T18978]  ? lockdep_hardirqs_on+0x94/0x130
[  853.459131][T18978]  ? syscall_enter_from_user_mode+0x2e/0x230
[  853.465595][T18978]  do_syscall_64+0x3d/0xb0
[  853.472127][T18978]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  853.478042][T18978] RIP: 0033:0x7f768c93682f
[  853.482485][T18978] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  853.502191][T18978] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  853.510625][T18978] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  853.518614][T18978] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
17:15:44 executing program 0:
openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000280), 0x210400, 0x0)

[  853.526599][T18978] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  853.534670][T18978] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  853.542652][T18978] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  853.550678][T18978]  </TASK>
17:15:44 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 33)

17:15:44 executing program 1:
io_setup(0x8000, &(0x7f0000002740))
ioctl$DRM_IOCTL_SG_ALLOC(0xffffffffffffffff, 0xc0106438, 0x0)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, 0x0)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000003140)={{}, 0x0, 0x0, @inherit={0x50, &(0x7f00000030c0)={0x0, 0x1, 0x8, 0x0, {0x2b, 0x7fff, 0x3}, [0x0]}}, @name="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"})

17:15:44 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x8000000})

[  853.684674][T18999] FAULT_INJECTION: forcing a failure.
[  853.684674][T18999] name failslab, interval 1, probability 0, space 0, times 0
[  853.698890][T18999] CPU: 0 PID: 18999 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  853.707496][T18999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  853.717564][T18999] Call Trace:
[  853.720859][T18999]  <TASK>
[  853.723792][T18999]  dump_stack_lvl+0x1e3/0x2cb
[  853.728482][T18999]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  853.734127][T18999]  ? panic+0x84d/0x84d
[  853.738321][T18999]  ? __lock_acquire+0x1295/0x1ff0
[  853.743370][T18999]  should_fail+0x38a/0x4c0
[  853.747805][T18999]  should_failslab+0x5/0x20
[  853.752315][T18999]  slab_pre_alloc_hook+0x53/0xc0
[  853.757265][T18999]  ? xas_create+0x654/0x1620
[  853.761871][T18999]  kmem_cache_alloc+0x3f/0x280
[  853.766658][T18999]  xas_create+0x654/0x1620
[  853.771189][T18999]  xas_create_range+0x1ee/0x7e0
[  853.776077][T18999]  shmem_add_to_page_cache+0xdb5/0x17c0
[  853.781662][T18999]  ? put_page+0x1e0/0x1e0
[  853.786010][T18999]  ? do_raw_spin_unlock+0x137/0x8b0
[  853.791222][T18999]  ? _raw_spin_unlock_irq+0x1f/0x40
[  853.796432][T18999]  ? lockdep_hardirqs_on+0x94/0x130
[  853.801652][T18999]  shmem_getpage_gfp+0x1aa1/0x3190
[  853.806836][T18999]  ? shmem_getpage+0xa0/0xa0
[  853.811437][T18999]  ? fault_in_safe_writeable+0x250/0x250
[  853.817092][T18999]  shmem_write_begin+0xce/0x1a0
[  853.821962][T18999]  generic_perform_write+0x2bf/0x5b0
[  853.827354][T18999]  ? grab_cache_page_write_begin+0x90/0x90
[  853.833188][T18999]  ? file_remove_privs+0x610/0x610
[  853.838311][T18999]  ? down_write+0x10e/0x170
[  853.843355][T18999]  __generic_file_write_iter+0x243/0x4f0
[  853.849013][T18999]  generic_file_write_iter+0xa7/0x1b0
[  853.854402][T18999]  vfs_write+0xacf/0xe50
[  853.858670][T18999]  ? file_end_write+0x250/0x250
[  853.863542][T18999]  ? __fget_files+0x413/0x480
[  853.868250][T18999]  ? __fdget_pos+0x1eb/0x2b0
[  853.872850][T18999]  ? ksys_write+0x77/0x2c0
[  853.877281][T18999]  ksys_write+0x1a2/0x2c0
[  853.881626][T18999]  ? print_irqtrace_events+0x210/0x210
[  853.887105][T18999]  ? __ia32_sys_read+0x80/0x80
[  853.891880][T18999]  ? syscall_enter_from_user_mode+0x2e/0x230
[  853.897866][T18999]  ? lockdep_hardirqs_on+0x94/0x130
[  853.903074][T18999]  ? syscall_enter_from_user_mode+0x2e/0x230
[  853.909070][T18999]  do_syscall_64+0x3d/0xb0
[  853.913507][T18999]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  853.919410][T18999] RIP: 0033:0x7f768c93682f
[  853.923838][T18999] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  853.943450][T18999] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  853.951884][T18999] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  853.959869][T18999] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  853.967863][T18999] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  853.975860][T18999] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  853.983842][T18999] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  853.991846][T18999]  </TASK>
17:15:44 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [], [], [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc]}, 0x45c) (async, rerun: 32)
ioctl$UI_DEV_CREATE(r1, 0x5501) (rerun: 32)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0)
ioctl$UI_DEV_DESTROY(r2, 0x5502)

17:15:44 executing program 3:
ustat(0x9, &(0x7f0000000140))

17:15:44 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f0000000000)={0x1, 0x0, [{0x1, 0x0, 0x0, 0xffffffff}]})
ioctl$KVM_SET_LAPIC(r2, 0xc008ae88, &(0x7f0000000240)={"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"})

17:15:44 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x9000000})

17:15:44 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 34)

17:15:44 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0xa000000})

17:15:44 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_tcp_int(r0, 0x6, 0x13, 0x0, &(0x7f0000000080))

[  854.096334][T19004] kvm [19000]: vcpu0, guest rIP: 0xfff0 Hyper-V unhandled rdmsr: 0x4000000e
17:15:44 executing program 3:
syz_clone3(&(0x7f0000001540)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  854.168673][T19008] FAULT_INJECTION: forcing a failure.
[  854.168673][T19008] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  854.181951][T19008] CPU: 0 PID: 19008 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  854.190553][T19008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  854.200620][T19008] Call Trace:
[  854.203937][T19008]  <TASK>
[  854.206878][T19008]  dump_stack_lvl+0x1e3/0x2cb
[  854.211591][T19008]  ? io_uring_drop_tctx_refs+0x19d/0x19d
17:15:44 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0xb000000})

17:15:44 executing program 1:
io_setup(0x401, &(0x7f00000000c0)=<r0=>0x0)
io_submit(r0, 0x0, 0x0)

17:15:44 executing program 3:
syz_emit_ethernet(0x26, &(0x7f0000000640)={@link_local, @dev, @val={@val={0x6000}}, {@can={0xc, {{}, 0x0, 0x0, 0x0, 0x0, "6413cf398671a6a1"}}}}, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000180)={@multicast, @empty, @void, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3c}, @remote, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @loopback}}}}, &(0x7f00000001c0)={0x1, 0x1, [0xd17, 0xb73, 0x695, 0x4be]})
r0 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder-control\x00', 0x1804, 0x0)
ioctl$BINDER_CTL_ADD(r0, 0xc1086201, &(0x7f0000000040)={'custom0\x00'})

[  854.217233][T19008]  ? panic+0x84d/0x84d
[  854.221318][T19008]  ? shmem_getpage_gfp+0x2b48/0x3190
[  854.226624][T19008]  should_fail+0x38a/0x4c0
[  854.231061][T19008]  copy_page_from_iter_atomic+0x451/0x1230
[  854.236990][T19008]  ? pipe_zero+0x4f0/0x4f0
[  854.241435][T19008]  generic_perform_write+0x33a/0x5b0
[  854.246745][T19008]  ? grab_cache_page_write_begin+0x90/0x90
[  854.252566][T19008]  ? file_remove_privs+0x610/0x610
[  854.257694][T19008]  ? down_write+0x10e/0x170
[  854.262208][T19008]  __generic_file_write_iter+0x243/0x4f0
17:15:44 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0xc000000})

[  854.267867][T19008]  generic_file_write_iter+0xa7/0x1b0
[  854.273255][T19008]  vfs_write+0xacf/0xe50
[  854.277527][T19008]  ? file_end_write+0x250/0x250
[  854.282484][T19008]  ? __fget_files+0x413/0x480
[  854.287177][T19008]  ? __fdget_pos+0x1eb/0x2b0
[  854.291773][T19008]  ? ksys_write+0x77/0x2c0
[  854.296198][T19008]  ksys_write+0x1a2/0x2c0
[  854.300536][T19008]  ? print_irqtrace_events+0x210/0x210
[  854.306016][T19008]  ? __ia32_sys_read+0x80/0x80
[  854.310797][T19008]  ? syscall_enter_from_user_mode+0x2e/0x230
[  854.316791][T19008]  ? lockdep_hardirqs_on+0x94/0x130
[  854.322000][T19008]  ? syscall_enter_from_user_mode+0x2e/0x230
[  854.327995][T19008]  do_syscall_64+0x3d/0xb0
[  854.332433][T19008]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  854.338335][T19008] RIP: 0033:0x7f768c93682f
[  854.342773][T19008] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  854.362385][T19008] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  854.370815][T19008] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  854.378799][T19008] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  854.386812][T19008] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  854.394793][T19008] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  854.402779][T19008] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  854.411128][T19008]  </TASK>
[  854.537896][T19026] input: syz1 as /devices/virtual/input/input150
17:15:45 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0xd000000})

17:15:45 executing program 3:
add_key(&(0x7f0000000080)='encrypted\x00', &(0x7f0000000180)={'syz', 0x3}, &(0x7f00000001c0)="e0", 0x1, 0xffffffffffffffff)

17:15:45 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000), 0x4)

17:15:45 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 35)

17:15:45 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000003140), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_SB_POOL_SET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)={0x54, r1, 0xa3, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}, {0x6}, {0x8}, {0x5}}]}, 0x54}}, 0x0)

17:15:45 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x4)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x100]}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0)
ioctl$UI_DEV_DESTROY(r2, 0x5502)

17:15:45 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0xe000000})

[  854.638824][T19030] trusted_key: encrypted_key: insufficient parameters specified
[  854.675212][T19034] FAULT_INJECTION: forcing a failure.
[  854.675212][T19034] name fail_page_alloc, interval 1, probability 0, space 0, times 0
17:15:45 executing program 1:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8912, &(0x7f0000000040)={'wg0\x00'})

17:15:45 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f00000052c0), 0xffffffffffffffff)
sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x1c, r1, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x0}]}, 0x1c}}, 0x0)

17:15:45 executing program 3:
bpf$MAP_CREATE(0x0, &(0x7f0000000e00)=@base={0x1a, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x5}, 0x48)

[  854.736849][T19034] CPU: 0 PID: 19034 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  854.745479][T19034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  854.755554][T19034] Call Trace:
[  854.758846][T19034]  <TASK>
[  854.761790][T19034]  dump_stack_lvl+0x1e3/0x2cb
[  854.766756][T19034]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  854.772400][T19034]  ? panic+0x84d/0x84d
[  854.776502][T19034]  should_fail+0x38a/0x4c0
[  854.780945][T19034]  prepare_alloc_pages+0x1db/0x5b0
17:15:45 executing program 3:
socketpair(0x2c, 0x3, 0x7, &(0x7f0000002400))

17:15:45 executing program 0:
syz_open_dev$dri(&(0x7f0000000000), 0x1, 0xc4e01)

[  854.786088][T19034]  __alloc_pages+0x14f/0x700
[  854.790710][T19034]  ? __rmqueue_pcplist+0x2030/0x2030
[  854.796023][T19034]  ? mark_lock+0x98/0x340
[  854.800729][T19034]  alloc_pages_vma+0x39a/0x800
[  854.805515][T19034]  ? mpol_shared_policy_lookup+0x144/0x1e0
[  854.811604][T19034]  shmem_alloc_and_acct_page+0x4d1/0xd10
[  854.817259][T19034]  ? shmem_swapin_page+0x22f0/0x22f0
[  854.822578][T19034]  ? xas_descend+0x219/0x3a0
[  854.827190][T19034]  ? xas_load+0x128/0x140
[  854.831549][T19034]  ? pagecache_get_page+0xd23/0x1010
[  854.836863][T19034]  ? page_cache_prev_miss+0x500/0x500
[  854.842343][T19034]  ? print_irqtrace_events+0x210/0x210
[  854.847827][T19034]  ? rcu_is_watching+0x11/0xa0
[  854.854103][T19034]  shmem_getpage_gfp+0x17b1/0x3190
[  854.859279][T19034]  ? shmem_getpage+0xa0/0xa0
[  854.863903][T19034]  ? fault_in_safe_writeable+0x250/0x250
[  854.869568][T19034]  shmem_write_begin+0xce/0x1a0
[  854.874535][T19034]  generic_perform_write+0x2bf/0x5b0
[  854.879855][T19034]  ? grab_cache_page_write_begin+0x90/0x90
17:15:45 executing program 1:
syz_mount_image$btrfs(&(0x7f0000005100), &(0x7f0000000000)='./bus\x00', 0x80, &(0x7f0000000040)={[{@ref_verify}, {@nossd}, {@inode_cache}, {@compress_force}, {@space_cache_v2}, {}, {@noacl}]}, 0x5, 0x50ef, &(0x7f0000005140)="$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")
r0 = open(&(0x7f00000025c0)='./file0\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000001840)={<r1=>0x0})
ioctl$BTRFS_IOC_INO_LOOKUP(r0, 0xc4009420, &(0x7f00000003c0)={r1})
unlink(&(0x7f00000000c0)='./bus\x00')
creat(0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000001180)='./file0\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_SNAP_CREATE(r2, 0x50009401, &(0x7f0000001380)={{r3}, "578f39dc6312f022853fa8f8003e5e68eba318e4ed95ec67f9d8ede58abccfc3b8790da2dfb6542d082edf9064f6fb0c9908aef5ee134827fff1e96cb462ee9c9ae61e6bda5ef9fc25f7d181bad67776434bd197c1d2b9c9e41544e89b13b13d26634d849a51d160c825a4b59a37c237ab7a34d1d425230b690891282ab095e9f011138f2bf078b8e7982001db7c908cbadeb1dca6dd3c7bed7ed1a629b23259a5d84337f069e519507214ccc93fc29a008676018f2c2e7d876f069a681fe45c1435d9ba2c89acd7e776d64ea79d9c251b161a461b6dd03de25cae713ffae622e33a47ddf249f692db055bf6e28947efc8df8a5a05625630f980529144d1941d1ff6f442ae0fd872b02bd0ac7328b3d04ea7cf83ce25fe84493d852c409a15f0e0ddbb0da45ed6731ac3578cec606bf7bdef07f19583cd0a5eb8d20bcf679ad902f8793dfdc4256da273692ca89e0cb76b091578279397385fa92b071900ebac1d7bc3eab019a01149f41b009ca95761b27449e38f0d1026e84c2e9e94b2f8bbdc8643ce0fbb33b1c70b7153acddfc7500b70c0e468b908834e2cee6e1a16ff7df46b93889417dd8ffb7a36e1d72bb26655b3854e0177eda5b3093a7b1878f55837f2f71cc8c7dea9c6a438247fb52603454bd15cde1ac6ca6d02d9d04a83607250bc2cd72b82b32cce4c55d6b66ee6dba0e38ef731a93b6cdd8c0bb731ed25f400c245be00217c52793040ca36b276651bf2acca47a0ee2e66bb9e51be7643fbe063205ea594884f609a847d244ad3d39861763570ef04628abb5c58ef8af891dc3e5d9fcb366c85ae1948d9a7995c19ff1123b7b94832a77f7f2428be0b76447a4e6788a17b51c7807a22c467868d7503560b1809c819ae936d9a5bc6c6d10dabf162899e43b1854c8dd92958fbe91c38b7b31e157e232a2b17825b59a7a975b1f22e66c3f88b57f066388bd5817b242b0de7a0a430a62ed449f3e81cfafe18ab3dfd3a6b27746ff00e62ddf74be3bd0b7500497ef97e6f22e936e32dde5427247e4e80545999404c7d1091a9534f0e6d7e768aaae3419b09e8aee0f9ec09446fd4528585934e329e1a58afb36b9d3e5b70eb3870e809e342d2d6d2b87c73b9b2b7a56555151f558bcb96183b70c7f56d84d4e73ba972be0a47ae841b967907781630aac4da0cb4b83a1974fd5e77869a71deb3b53e45f48ad73d95e2f97b4b89433c04a5406335548a3656b3fb1060c1627b49d899bfe59fd34e2c75c6849b40b43040f57109c5d40c3c50527642b00e2b0acac67ef9ad127d3acf92f69c08a3cc878f507c585a60bdd21c4c252e5a07097497a0378e75fab0d7c89a904342e069b8e94ab54535608443ce7d9306255d3966fe0b7d860922e9e7adfd72f9ac2138560c0caa15ff263813f4c2f52e5f97f562b7395cdce76d3aeb2aa898d14379f0f71a9288734d0530ca760cac425ef7f522540d6339014bc8956118b8b3c521528da4004f91c0878b075697de8fb8f5840473802bdf8c5865abe09b9bf318a18a6bf079eec640fa502e64f3027219eb070d72540046ea40c3f14b6213528858d02feed52190cf34db916448695e974e260d83b5936ed9f0f2dbf4cd07f6f0c3f1c110ee60d9108024507277499a1cfcc6e9a13009d3847130651bdb5b181eee5bbad60122f497b66b56d268ff109b19c78440d79313d7d984e68027b279a8a87e922602f20f0ef01d753f4f280556a8fb81c2b16453e8a2fad01a854e90a216cfb2f531ccf2d2870c033099d69f2253e4467b8a3fc43106b8937dac6c6ae041c66c26bfc4b4cd4d95b6b0bc23cd0c5151a1ab4b48a747870928e7710ac4ed9cf52f9d8b71d3390fae968cacfc65bf3a319bfcad8ebeb4b9be7e2524ebf5a437440468cd197c2bf968f74533eaaa5087281506e3bb79d02999411850fc56d1fe4d9c8305a242d504a973a4b70f51adf9341890d6df04d3a21bbe49e0bc13014ee39b6298c4e8ea95870b077584fd5485a8d90cca611ee3683eb86c08e04112333d71be8b3cce9bce8ab5527a52d1b290cd1f700457278f6ee3f149cbd44a99de55dc39814ac868521fdbaa8b38233b0b13c87abfc2e7aee23e39fb05c3c3560ad93c7733cb2a37f4df4b3290c7fe9edd119a79643b6a155fc1dba63725df32feeb63a6e7d28a24fee8c4df92dac671f9b65e0c6e3e4abf8e255e51410f76ad660a4afc60908e17cbdac7967a77201216f3e33b0b018b0612e74c940fa6a896f7903da896b37dd4eccdb3312a534b9d999a0b4dc59a00d956e493afee052e14518e32b78f56f87f10f41f5dc4935b4ed720a199f63ea38e9daa0a8c5d6ac4830086e828e068af9c6ea96256286065188553571b9e685131404177a6a368adaeeee19942eb90a2194396a3ab7e7b0a3c2930afd5cec2271f6fbfd62775dcdb3a82b0abe4a195165c5b005849a32a6b88cfebd981cce014b95b2e04a8a27228e72cdc34b6db98e367d332a0b134afe0b02cf48a6c81174f9b7869fb268db8d6ecfa97f79bac68c31070b6a4349557b0f8fa832c4b3a0bba53b9e568ec920c736ef08bdc60fe6d4d3acd0364ad7956561f98e7dd0c50c4792112abe54ce51b2946d1d9e925080de412022627e66aaed8fc7b3e1bb7d86af4848d803b5fad95338d5405c0bb027a674e7f1d955fc3ab017f7603397df0369e8f8839db80588970e84406be2d1bd977a33d3426b788c32a0eb49c8385a79f1d695aecde97322e14ac6c89bc14350a945aaa4796ab814dc934c6f3f87d0e6570dbb284aef4a7c55cf879b5b3a57801a73bb8d3648d26d77ad47eab5172c3a678c868194a38f5c62bba6c5b5e6256a5daba4066357a3dafc6be9ff5d90f17fa8c5ba68baea99185b213fd9eb305a95fa30e263dcc75796f6b67aa0a07fbf2d3e8320471f07008efe19f4ec6bcad8602640c73859ff424b5377e82b8f69c33e60c3f6906fe6a613cac60f8d56f00c78b0c7e006dee8614e3a9f6687c535d50622343d3ddcc6f0c49d1d7e7eee5039a529ff36d526fde2a64072d43b2022ef94d39e563dd6ee65f4a587789c0ffaa1e8e4e6a5a4fd0460788ab97dc2731c93e96df8a9a79c8366e215a11aef2352a4915740a270e1df8fa8dcbbe3667d771be35e3eb3f4de774b0af621ab309ab87d406e481cfc1d27387f31434192b5fb9e42b8044d5c35fb1f7fb5a8b6b56c441eb7342e761da6f72a96aeea10db366ecdaa7e72afbb80cd8d2db4eb5902948c4afca03cfe25a371d249bb1eb44ad6471d7d06f02ce0c5532425499fe2855fea991192043326cbba39a7468b18b1858899d9abbcf2a783e32665dac544ac76fd235175def6219b8230a41fcd9657341f028072674d7fb847c3eebc0a49e50180fc6238293fa781261b6cd32dc5b042a1f0f44b649d8d64ef1da9dd2f7b92022f09c4687f6e8c87ae83cb569f16f56cd506e97bf61164f9cb55120cf8d71c55c39c712b8e1b0c25032d5371dc55fbaaa1d853daa018a625dbb9e3e1b1fb3f712d9fc258452f8d49dbb2fc22ee82dec77abbe62866ccbab523b0d08db583ad7486b835bdecd890c8ad88511fa1f27eeec6bd0f8dc9dc43071a190be174b3ac9d7abf76ef2816282638e269c0015a998a6572a10a5c644814edee281943b910842ec738f0c27d622998c19cd3908a989d8c25019d1986c8ca5b179b62ed50cd98aaf3f68450c256fe26be22d0c3c5a23d687dcb162f46b10b359b8cc65fa681878eb4fcb155cb294610debaa537abe965c0ad3be659715fae81b41a85c81a317b1a021734129df68ca63b7121c65b0bfcc56d6a875f10de732ec24e91652c6ce6794db7b05bfcf04c5a1a90b2737f9c522bcabfa669cbf7d316c7ca70ef5b434ce446025210753ea30882fa56b5ed1b6261c27260ae82067baecf57839a8a92d96962a0cdce0bc9bf159c3a8a0b78f7c90770252e669374132e8f9ef2399016d0925815503039be2396c2f5c7c4da3024b95d1db4a31cf4a07243d88b6c31f55107a5e1e9265882704d6c1f6b5ad56f0b2370803c3d1eb35e481776448946f6dcbb44592f13372cbff4f2c58673c9873b65557168340b42248c54730e29c65a2e87641e071454ea23de7f57aa7aa97dc9a50cbaeddd35907d6a35285988bc0bd4fed1403f197f3c19e829fba59e7a9fb914f4add327ba20dab20b16376672d2081f16e2487d80ac60a3d3e21b27bd618be8fac01ffddab4371049d69bfb58801c4e8e02e8e5104d1dee829bf836a09de53cd99266f09dd92ec1b15f29d148ef4b6b252af2cf3b0ab5ff7925f6998ff767e052dd96de3204951527a9336127cdbb66799cb34973b9774081017b47353bb7a9e632b569d65f99dc79a4a7c2044c5ec37bb562e43066cf526e65c60d4bf96f0deece47b5e10da6201efad4ee084af6c3592e6d14cde661e69a3617360734bd9acbd2230c573e47d900d33a3a206601fbdb449a7e5c327b06f6147468c351bfa0286e7a6c5d69d71106989a648b2eac91ddfc7c6b3f5e293e0608b9e4205a97f9006e5ac5e2499830838ce8f66b124aac0a79fd967eb94699d5dbdafd08af3a85ea2c128f2e8ce1fc309941c2a944f040e5ab15ea2721c415caee0e46e5bd41ca89745b5a44bfcfd209086312671cb8e7530ea503e72a7f6a32d32585dc44b5b9d5ac8a03adaf38774d0b8b23067670b597023993cf7f5eafa5da1cb2fe7af985251f057f4146cf3f0bf2f1d68b811ffeac39422aa87a681cd6cf5995de66ad2036dc64e5eaac149fa9f2ff51a02462d2aebb9c527fa023425ba9064ce5d15266e988940089e015f1848c70a84cd8c615af1b025cca7bd40acfc898156a441f5f1890e8b773fca4bedf8181a65d145965811295d2eecdb7443171f270d396511d1219399b1f9da740b54a91ffdafc15dc53308291f2a23e8af60a00b17da7779f1e73ad09d8a2459b0ce305a15736379fa3f1406779516a6053da14eb4073eafcfad3894a7ba48bfa3e2476ca52b9bc120ac98edb975ea7f8cdafa6ddb22130ac9527355f24c2dc8b8069399857e563cb9c1d290aaf0e520b5a69334884925e6a76b6001447068fa78541d574331bc988880e0415cd5f3552da0328927471bef9901229e004d73b1a7c00a0a2842ad1d34b28aca0efa0ab8ec4a08b8f480804b4af459ace5714b54aeb8e0b2e1aa038cb029dd208ba012196f200d4a5e30382ad486485d9bc64584dae778b9c61c9079b157a74181d434f1223a68fcc9fcd214733c9c877e094eed53f0660fbbbc95aab4b7f2e078280844176cc8199339796e0ae763cdacf3a7c3f5e304420187fa253e4b8f10a3c53a93bb0814cc8f217d75f0e1d5d9ed0506371f8ee3e9f19ec04c7f8773ec9a9a4e39203f7089724eab3bc81648f71242f8f2b85b6a512f0fccd3b2693bdb4186b5bb2665a664248916b4ef8afac5896910a83a49c2bdc8d75d244168ba027350c1c5a969388ba3274e553fde46849d59c323f5b3d168fae2c5812073616110b84416deda2867de63ae3a67fd52c594f2718f9994fc49206b9bd9bb7e9d8694db5c35b25074109a814265dea081d134f89402c89e4d6602703012ee68a8f2d5325802f1d080c69020fea3e777a5f5fc431e2f80423f72ff0019fcf03cf1c471703d6497f455245cc0d304433e080b8e8977109cee775cd72faad45fcb0d30656a4444b07f645ae6438debae3cc6f6507e01288bd3127aadd4b7c5971a4f04c6b889594e2eb5f12366b0916e132135e"})

[  854.885690][T19034]  ? file_remove_privs+0x610/0x610
[  854.890820][T19034]  ? down_write+0x10e/0x170
[  854.895340][T19034]  __generic_file_write_iter+0x243/0x4f0
[  854.901002][T19034]  generic_file_write_iter+0xa7/0x1b0
[  854.906388][T19034]  vfs_write+0xacf/0xe50
[  854.910656][T19034]  ? file_end_write+0x250/0x250
[  854.915527][T19034]  ? __fget_files+0x413/0x480
[  854.920270][T19034]  ? __fdget_pos+0x1eb/0x2b0
[  854.924873][T19034]  ? ksys_write+0x77/0x2c0
[  854.929304][T19034]  ksys_write+0x1a2/0x2c0
[  854.933724][T19034]  ? print_irqtrace_events+0x210/0x210
[  854.939198][T19034]  ? __ia32_sys_read+0x80/0x80
[  854.943968][T19034]  ? syscall_enter_from_user_mode+0x2e/0x230
[  854.949954][T19034]  ? lockdep_hardirqs_on+0x94/0x130
[  854.955155][T19034]  ? syscall_enter_from_user_mode+0x2e/0x230
[  854.961143][T19034]  do_syscall_64+0x3d/0xb0
[  854.965570][T19034]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  854.971476][T19034] RIP: 0033:0x7f768c93682f
[  854.975903][T19034] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  854.995604][T19034] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  855.004031][T19034] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  855.012017][T19034] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  855.020003][T19034] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  855.027980][T19034] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
17:15:45 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x10000000})

17:15:45 executing program 0:
keyctl$search(0x5, 0x0, 0x0, 0x0, 0x0)

[  855.035955][T19034] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  855.044060][T19034]  </TASK>
17:15:45 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$eJzs3V1oXOl5B/Dn1ZHWkrdpZjebzYdzMbCBbL3ZRbK8axVvQI4VkQXjNSsrFwsFjS3ZHVZfluTiDSVVIaGEtMUlF7msYRNor+qrFpYG3KttCAFRKJRCi9tuzPZuEpq25CIKZ+YdaaSVLcWWJdn7+xn7P3PmOTPvmdUzc4523jkBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAER8+Sun+gfSPQp69nAwAMCeODv2Rv/gvd7/AYDHzvntjv8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAiRRHfjBTvfKeRJprXW3rP1GevXhsfGd16tb4UKbqiaNaXf3sHjg0ef/mVE0PtvPf6u+0z8frY+VPV03Mz8wtTi4tTk9Xx2frFucmpHd/Dg66/2dHmE1Cdeevq5KVLi9VjLw1uuPla5c6hJ5+tnBw6Mvhmu3Z8ZHR0rKOmu+e+H/1D0u7dFY+RJ6KIr0aK9178INUioisevBe2ee142Pqiu+y/5kaMj4w2N2S6XptdKm9MXbmqO6LSsdJwu0f2oBcfyHDEcvnfqRzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGW25PJbpiKEXMR0Sj2O/Bc9D0RBHHI8WdnzfShYgo2n3wwtmxN/oHt7+D7j0Y5BZWV1f/qFJErMQj0LNwQB2KIv4iUnx3oj8u5nZuts37EV8o89WIK2XeSnE9X0/lC8RQxM+8n8AjrTuK+EmkmEuNNNnu/eZ+5ZmvVV+bvTTXUdver3zkjw/2kn0TDrDeKOJCc4+/ke7/l10AAAAAAAAAAAAAwN4o4t1IcXPm+TQfnXNK67OXq+drF6Zbnwpuf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZ5j0BAAAAAAAAAAAAAAAAAACwy/qiiNFIceOdP2ieVzqa56X/+MmhsyPPdJ4z/lPb3E9Z+1JEvBs7OydvTz7XeOoq/+z+dgHb640ivpHP//fH+z0YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgQOiKIr4ZKb73i0aKFBHDERPRytvFfo8OAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACj1piJOR4r//kpv8/pKRHw2In61Wv6J+P/VzfZ7xAAAAAAAAAAAAAAAAAAAAPAYSkVciRTff6+RKhFxrXLn0JPPVk4OHRl8s4giUlnSWf/62PlT1dNzM/MLU4uLU5PV8dn6xbnJqZ0+XO+Z+uzVa+Mjow9lY7bV95DH39d7em7+7YX65d9f2vL2w72nLiwuLdQubn1z9EV3RH/nkqPNAY+PjDYHPV2vzTZXTV13GWB3RHWnGwMAAAAAAAAAAAAAAAAAAMCBcTgVMRIpnvvh8dSeN97dmvP/sda1Yq32B3+4/l0A05uyrfP7A9Yvtyerb14++Gba6UCPNifeV8dHRkfHOhZ393y4tBxTSkV8MlIc+ftPN+fDpzi85dz4su5PI8XQL4/nusqRsm54Q1Xv0fGR0erZudkXT01Pz12s9dUuTE9Vx+ZrF3f8xQEAAAAAAAAAAAAAAAAAAABwD4dTEX8WKY6/tpLa553P8/+7W9c65v+/GtGeyd+bNuaa5tz+327O7W9d/vjJodeOPXe35Q9j/n85ppSK+FWkeOovP908n357/n//ptqy7vuR4iff+lyu63qirBtob07rHi/Vp6f6y9oXIsW3z7Vro1n7Sq79xHrtQFn7D5Hi6d/bWHsi1z6zXnusrL0TKUbPbl37yfXawbK2L1J88U+q7drDZe2Xc+2z67UvXZybntzp08tHU9n//x4pPj/w1dT+mb9r/3d8/8fyplzzoZ6/9+Xd6v9Kx7Ll3Neruf8Htun/K5Hiz69/Lte1eu9Yvv2p5r/r/f/tSPE7H9tY+3KufXq9dmCnmwX7qez/H0WKldv/svYzn/s/d9Z6h3b2/2e7N2Z7v2DH/f9vu9v/T3Usq+RxDf6GzwV81Cy+/fW3atPTUwsuuLBrF5bjQAzDhQe4sN+vTMDDVu7//2+k+NKVIrWPY/P+/2+1rq0f///fN9b3/09uyjX7dPz/dMeyk/mopac7ondpZr7nUxG9i29//cX6TO3y1OWp2cHBoRO/e3zg2ImBnifaB/frl3b83MGjruz/tyLFD/7mn9Z+j73x+H/r3/8d3pRr7rP/f/nX2wx0m/7/ROc2bTiu+c2eD/goKfv/ryLFv974YO3/N93r93/t3/M9/9zG7GsX7dP7/zMdy6r5n6GOZc8XEad2+lgAAAAAAAAAAPCIOJyK+GGk+NvGP66d837j53/i8+3azs//3c3W5//f4vLKPz+08/8DAPdWvv+PRYofH/5ian+HzE4+/z+5Kdfs0+d/n+1YNrlH85p3/CQDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMB9SlHEoUjxznca6XZRXm/pPVOfvXptfGR069XenYuIriia9eXf3oFjg8dffuXEUDvvvf5u+0y8Pnb+VPX03Mz8wtTi4tRkdXy2fnFucmrH9/Cg6292tPkEVGfeujp56dJi9dhLgxtuvla5c+jJZysnh44MvtmuHR8ZHR3rqOnuue9H/5C0e3fFY+SJKOLHkeK9Fz9I/1GUPX23XljecS9s89rxsPVFd9l/zY0YHxltbsh0vTa7VN6YunJVd0SlY6Xhdo/sQS8+kOGI5fK1txzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGm370P1GJrhhKEfMR0Sj2e/AcND1RxN9Fijs/b6T/LCKKdh+8cHbsjf7B7e+gew8GeZeHrRQRK/EI9CwcUIeiiGcixXcn+uO/ilZfNdvm/YgvlPlqxJUyb6W4nq+n8gViKOJn3k/gkdYdRZyLFHOpkd4vcu839yvPfK362uyluY7a9n7lgx4r7/vxwV6yb8IB1htF/LS5x99IP/V+DgAAAAAAAAAAAAAHXBFfihQ3Z55Pzfmha3NK67OXq+drF6ZbH+tvf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZPicNAAAAAAAAAAAAAAAAAMBD0hVFfCtSfO8XjbRatM4vOxGtvG2eKzzWfh0AAP//5UVOig==") (fail_nth: 36)

17:15:45 executing program 3:
syz_io_uring_setup(0x591c, &(0x7f0000000100)={0x0, 0x0, 0x800}, &(0x7f0000000000), &(0x7f0000000180))

17:15:45 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x11000000})

17:15:45 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x4) (async)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x100]}, 0x45c) (async)
ioctl$UI_DEV_CREATE(r1, 0x5501) (async)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0) (async)
ioctl$UI_DEV_DESTROY(r2, 0x5502)

17:15:45 executing program 0:
keyctl$search(0xf, 0x0, 0x0, 0x0, 0x0)

[  855.188959][T19069] input: syz1 as /devices/virtual/input/input151
[  855.204266][T19068] FAULT_INJECTION: forcing a failure.
[  855.204266][T19068] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  855.218073][T19068] CPU: 1 PID: 19068 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  855.226685][T19068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  855.236836][T19068] Call Trace:
[  855.240129][T19068]  <TASK>
[  855.243069][T19068]  dump_stack_lvl+0x1e3/0x2cb
[  855.247766][T19068]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  855.253425][T19068]  ? panic+0x84d/0x84d
[  855.257514][T19068]  ? shmem_getpage_gfp+0x2b48/0x3190
[  855.262827][T19068]  should_fail+0x38a/0x4c0
[  855.267267][T19068]  copy_page_from_iter_atomic+0x451/0x1230
[  855.273109][T19068]  ? pipe_zero+0x4f0/0x4f0
[  855.277554][T19068]  generic_perform_write+0x33a/0x5b0
[  855.282873][T19068]  ? grab_cache_page_write_begin+0x90/0x90
[  855.288696][T19068]  ? file_remove_privs+0x610/0x610
[  855.293823][T19068]  ? down_write+0x10e/0x170
[  855.298430][T19068]  __generic_file_write_iter+0x243/0x4f0
[  855.304085][T19068]  generic_file_write_iter+0xa7/0x1b0
[  855.309478][T19068]  vfs_write+0xacf/0xe50
[  855.313740][T19068]  ? file_end_write+0x250/0x250
[  855.318599][T19068]  ? __fget_files+0x413/0x480
[  855.323286][T19068]  ? __fdget_pos+0x1eb/0x2b0
[  855.327888][T19068]  ? ksys_write+0x77/0x2c0
[  855.332319][T19068]  ksys_write+0x1a2/0x2c0
[  855.336659][T19068]  ? print_irqtrace_events+0x210/0x210
[  855.342234][T19068]  ? __ia32_sys_read+0x80/0x80
[  855.347016][T19068]  ? syscall_enter_from_user_mode+0x2e/0x230
[  855.353005][T19068]  ? lockdep_hardirqs_on+0x94/0x130
[  855.358209][T19068]  ? syscall_enter_from_user_mode+0x2e/0x230
[  855.364207][T19068]  do_syscall_64+0x3d/0xb0
[  855.368634][T19068]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  855.374535][T19068] RIP: 0033:0x7f768c93682f
[  855.378960][T19068] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  855.398571][T19068] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  855.406998][T19068] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  855.414978][T19068] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  855.422960][T19068] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  855.430953][T19068] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
17:15:45 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x12000000})

17:15:45 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x18000000})

17:15:45 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x25000000})

17:15:45 executing program 3:
add_key(&(0x7f0000000000)='user\x00', &(0x7f0000000040)={'syz', 0x2}, &(0x7f0000000080)="cb", 0x1, 0xffffffffffffffff)

[  855.439029][T19068] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  855.447042][T19068]  </TASK>
[  855.450183][    C1] vkms_vblank_simulate: vblank timer overrun
17:15:46 executing program 1:
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$nci(r0, 0x0, 0x0)

17:15:46 executing program 0:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0xc0045878, 0x0)

17:15:46 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x5c000000})

17:15:46 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x4)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x100]}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501) (async)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0) (async)
ioctl$UI_DEV_DESTROY(r2, 0x5502)

17:15:46 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/ptype\x00')
socket$packet(0x11, 0x2, 0x300)
preadv(r0, &(0x7f0000000380)=[{&(0x7f0000000240)=""/247, 0xf7}], 0x1, 0x0, 0x0)

17:15:46 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 37)

17:15:46 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000))

[  855.718844][T19088] FAULT_INJECTION: forcing a failure.
[  855.718844][T19088] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  855.729694][T19089] input: syz1 as /devices/virtual/input/input152
17:15:46 executing program 0:
r0 = socket$phonet(0x23, 0x2, 0x1)
recvfrom$phonet(r0, 0x0, 0x0, 0x6020, 0x0, 0x0)

17:15:46 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/ptype\x00')
socket$packet(0x11, 0x2, 0x300)
preadv(r0, &(0x7f0000000380)=[{&(0x7f0000000240)=""/247, 0xf7}], 0x1, 0x0, 0x0)

17:15:46 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [], [], [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

17:15:46 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x2})

17:15:46 executing program 1:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000006c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000740)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)

17:15:46 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/ptype\x00')
socket$packet(0x11, 0x2, 0x300)
preadv(r0, &(0x7f0000000380)=[{&(0x7f0000000240)=""/247, 0xf7}], 0x1, 0x0, 0x0)

17:15:46 executing program 0:
r0 = socket$phonet(0x23, 0x2, 0x1)
recvfrom$phonet(r0, 0x0, 0x0, 0x6020, 0x0, 0x0)

17:15:46 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x3})

[  855.935606][T19108] input: syz1 as /devices/virtual/input/input153
[  855.980312][T19088] CPU: 1 PID: 19088 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  855.988941][T19088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  855.999007][T19088] Call Trace:
[  856.002308][T19088]  <TASK>
[  856.005246][T19088]  dump_stack_lvl+0x1e3/0x2cb
[  856.009942][T19088]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  856.015594][T19088]  ? panic+0x84d/0x84d
[  856.019711][T19088]  should_fail+0x38a/0x4c0
[  856.024151][T19088]  prepare_alloc_pages+0x1db/0x5b0
[  856.029288][T19088]  __alloc_pages+0x14f/0x700
[  856.033891][T19088]  ? __rmqueue_pcplist+0x2030/0x2030
[  856.039186][T19088]  ? __lock_acquire+0x1295/0x1ff0
[  856.044209][T19088]  alloc_pages_vma+0x39a/0x800
[  856.048957][T19088]  ? mpol_shared_policy_lookup+0x144/0x1e0
[  856.054750][T19088]  shmem_alloc_and_acct_page+0x4d1/0xd10
[  856.060386][T19088]  ? shmem_swapin_page+0x22f0/0x22f0
[  856.065675][T19088]  ? xas_descend+0x219/0x3a0
[  856.070258][T19088]  ? xas_load+0x128/0x140
[  856.074597][T19088]  ? pagecache_get_page+0xd23/0x1010
[  856.079873][T19088]  ? page_cache_prev_miss+0x500/0x500
[  856.085238][T19088]  ? do_raw_spin_unlock+0x137/0x8b0
[  856.090441][T19088]  ? _raw_spin_unlock_irq+0x1f/0x40
[  856.095622][T19088]  ? lockdep_hardirqs_on+0x94/0x130
[  856.100826][T19088]  shmem_getpage_gfp+0x17b1/0x3190
[  856.105953][T19088]  ? shmem_getpage+0xa0/0xa0
[  856.110530][T19088]  ? fault_in_safe_writeable+0x250/0x250
[  856.116238][T19088]  shmem_write_begin+0xce/0x1a0
[  856.121077][T19088]  generic_perform_write+0x2bf/0x5b0
[  856.126352][T19088]  ? grab_cache_page_write_begin+0x90/0x90
[  856.132154][T19088]  ? file_remove_privs+0x610/0x610
[  856.137268][T19088]  ? down_write+0x10e/0x170
[  856.141787][T19088]  __generic_file_write_iter+0x243/0x4f0
[  856.147416][T19088]  generic_file_write_iter+0xa7/0x1b0
[  856.152788][T19088]  vfs_write+0xacf/0xe50
[  856.157042][T19088]  ? file_end_write+0x250/0x250
[  856.161901][T19088]  ? __fget_files+0x413/0x480
[  856.167510][T19088]  ? __fdget_pos+0x1eb/0x2b0
[  856.172091][T19088]  ? ksys_write+0x77/0x2c0
[  856.177121][T19088]  ksys_write+0x1a2/0x2c0
[  856.181446][T19088]  ? print_irqtrace_events+0x210/0x210
[  856.186897][T19088]  ? __ia32_sys_read+0x80/0x80
[  856.191905][T19088]  ? syscall_enter_from_user_mode+0x2e/0x230
[  856.198334][T19088]  ? lockdep_hardirqs_on+0x94/0x130
[  856.203557][T19088]  ? syscall_enter_from_user_mode+0x2e/0x230
[  856.209537][T19088]  do_syscall_64+0x3d/0xb0
[  856.213945][T19088]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  856.219913][T19088] RIP: 0033:0x7f768c93682f
[  856.224319][T19088] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  856.243999][T19088] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  856.252410][T19088] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  856.260455][T19088] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  856.268416][T19088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
17:15:46 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x4})

17:15:46 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/ptype\x00')
socket$packet(0x11, 0x2, 0x300)
preadv(r0, &(0x7f0000000380)=[{&(0x7f0000000240)=""/247, 0xf7}], 0x1, 0x0, 0x0)

[  856.276370][T19088] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  856.284533][T19088] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  856.292535][T19088]  </TASK>
[  856.295604][    C1] vkms_vblank_simulate: vblank timer overrun
17:15:46 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x5})

17:15:46 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 38)

17:15:46 executing program 1:
add_key$keyring(&(0x7f00000002c0), 0x0, 0x0, 0x0, 0xffffffffffffffff)
syz_clone3(&(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

17:15:46 executing program 0:
r0 = socket$phonet(0x23, 0x2, 0x1)
recvfrom$phonet(r0, 0x0, 0x0, 0x6020, 0x0, 0x0)

17:15:46 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [], [], [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) (async)
dup(r0) (async)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [], [], [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, 0x45c) (async)
ioctl$UI_DEV_CREATE(r1, 0x5501) (async)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a) (async)

17:15:46 executing program 3:
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$cgroup_int(r0, 0x0, 0x0)

17:15:46 executing program 1:
r0 = open$dir(&(0x7f0000000140)='./file0\x00', 0x4040, 0x0)
pipe2$9p(&(0x7f00000029c0)={<r1=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000002980), 0x0, &(0x7f0000002a00)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}})

[  856.450209][T19130] input: syz1 as /devices/virtual/input/input154
[  856.480373][T19135] FAULT_INJECTION: forcing a failure.
[  856.480373][T19135] name fail_usercopy, interval 1, probability 0, space 0, times 0
17:15:47 executing program 1:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x5460, 0x0)

[  856.493824][T19135] CPU: 0 PID: 19135 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  856.502438][T19135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  856.512598][T19135] Call Trace:
[  856.515886][T19135]  <TASK>
[  856.518817][T19135]  dump_stack_lvl+0x1e3/0x2cb
[  856.523504][T19135]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  856.529161][T19135]  ? panic+0x84d/0x84d
[  856.533250][T19135]  ? shmem_getpage_gfp+0x2b48/0x3190
[  856.538570][T19135]  should_fail+0x38a/0x4c0
[  856.543112][T19135]  copy_page_from_iter_atomic+0x451/0x1230
[  856.549220][T19135]  ? pipe_zero+0x4f0/0x4f0
[  856.553694][T19135]  generic_perform_write+0x33a/0x5b0
[  856.555701][   T26] audit: type=1800 audit(1691082947.016:220): pid=19142 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file0" dev="sda1" ino=1972 res=0 errno=0
[  856.559005][T19135]  ? grab_cache_page_write_begin+0x90/0x90
[  856.580208][    C1] vkms_vblank_simulate: vblank timer overrun
[  856.585990][T19135]  ? file_remove_privs+0x610/0x610
17:15:47 executing program 3:
r0 = add_key(&(0x7f00000000c0)='id_legacy\x00', &(0x7f0000000100)={'syz', 0x0}, &(0x7f0000000140)="a7", 0x1, 0xfffffffffffffffc)
keyctl$clear(0x7, r0)

17:15:47 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x6})

[  856.597026][T19135]  ? down_write+0x10e/0x170
[  856.601541][T19135]  __generic_file_write_iter+0x243/0x4f0
[  856.607193][T19135]  generic_file_write_iter+0xa7/0x1b0
[  856.612580][T19135]  vfs_write+0xacf/0xe50
[  856.616846][T19135]  ? file_end_write+0x250/0x250
[  856.621712][T19135]  ? __fget_files+0x413/0x480
[  856.626407][T19135]  ? __fdget_pos+0x1eb/0x2b0
[  856.631007][T19135]  ? ksys_write+0x77/0x2c0
[  856.635434][T19135]  ksys_write+0x1a2/0x2c0
[  856.639770][T19135]  ? print_irqtrace_events+0x210/0x210
[  856.645246][T19135]  ? __ia32_sys_read+0x80/0x80
17:15:47 executing program 1:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x6, &(0x7f0000000100)=@framed={{}, [@cb_func, @kfunc]}, &(0x7f0000000080)='GPL\x00', 0x1, 0xe7, &(0x7f0000000180)=""/231, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

[  856.650021][T19135]  ? syscall_enter_from_user_mode+0x2e/0x230
[  856.656013][T19135]  ? lockdep_hardirqs_on+0x94/0x130
[  856.661229][T19135]  ? syscall_enter_from_user_mode+0x2e/0x230
[  856.667233][T19135]  do_syscall_64+0x3d/0xb0
[  856.671678][T19135]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  856.678160][T19135] RIP: 0033:0x7f768c93682f
17:15:47 executing program 1:
socketpair(0x2, 0x1, 0x0, &(0x7f0000001840))

[  856.682691][T19135] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  856.702407][T19135] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  856.711007][T19135] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  856.719012][T19135] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  856.726999][T19135] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  856.734990][T19135] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  856.743150][T19135] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  856.751237][T19135]  </TASK>
17:15:47 executing program 0:
r0 = socket$phonet(0x23, 0x2, 0x1)
recvfrom$phonet(r0, 0x0, 0x0, 0x6020, 0x0, 0x0)

17:15:47 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 39)

17:15:47 executing program 3:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8914, &(0x7f0000000040)={'wg0\x00'})

17:15:47 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x7})

17:15:47 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [], [], [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501) (async)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

17:15:47 executing program 1:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x401c5820, 0x0)

17:15:47 executing program 0:
ioctl$VIDIOC_QUERYBUF_DMABUF(0xffffffffffffffff, 0xc0585609, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, 0x0)
syz_open_dev$evdev(0x0, 0x0, 0x0)
io_setup(0x8000, &(0x7f0000002740))
ioctl$DRM_IOCTL_SG_ALLOC(0xffffffffffffffff, 0xc0106438, 0x0)

17:15:47 executing program 1:
pipe2(&(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
io_setup(0x401, &(0x7f00000000c0)=<r1=>0x0)
io_submit(r1, 0x3, &(0x7f0000000400)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x8, 0x4800, r0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0])

17:15:47 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x8})

[  856.920890][T19161] input: syz1 as /devices/virtual/input/input155
17:15:47 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x14)
ioctl$UI_DEV_CREATE(r0, 0x5501)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

[  856.997577][T19171] FAULT_INJECTION: forcing a failure.
[  856.997577][T19171] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  857.010673][T19171] CPU: 0 PID: 19171 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  857.019268][T19171] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  857.029320][T19171] Call Trace:
[  857.032613][T19171]  <TASK>
[  857.035549][T19171]  dump_stack_lvl+0x1e3/0x2cb
[  857.040271][T19171]  ? io_uring_drop_tctx_refs+0x19d/0x19d
17:15:47 executing program 3:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8914, &(0x7f0000000040)={'wg0\x00'})

[  857.045982][T19171]  ? panic+0x84d/0x84d
[  857.050070][T19171]  ? shmem_getpage_gfp+0x2b48/0x3190
[  857.055380][T19171]  should_fail+0x38a/0x4c0
[  857.059819][T19171]  copy_page_from_iter_atomic+0x451/0x1230
[  857.065660][T19171]  ? pipe_zero+0x4f0/0x4f0
[  857.070289][T19171]  generic_perform_write+0x33a/0x5b0
[  857.075666][T19171]  ? grab_cache_page_write_begin+0x90/0x90
[  857.081491][T19171]  ? file_remove_privs+0x610/0x610
[  857.086708][T19171]  ? down_write+0x10e/0x170
[  857.091230][T19171]  __generic_file_write_iter+0x243/0x4f0
17:15:47 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x9})

17:15:47 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0xa})

[  857.096890][T19171]  generic_file_write_iter+0xa7/0x1b0
[  857.102364][T19171]  vfs_write+0xacf/0xe50
[  857.106632][T19171]  ? file_end_write+0x250/0x250
[  857.111518][T19171]  ? __fget_files+0x413/0x480
[  857.116222][T19171]  ? __fdget_pos+0x1eb/0x2b0
[  857.120827][T19171]  ? ksys_write+0x77/0x2c0
[  857.125269][T19171]  ksys_write+0x1a2/0x2c0
[  857.129610][T19171]  ? print_irqtrace_events+0x210/0x210
[  857.135094][T19171]  ? __ia32_sys_read+0x80/0x80
[  857.139876][T19171]  ? syscall_enter_from_user_mode+0x2e/0x230
[  857.146653][T19171]  ? lockdep_hardirqs_on+0x94/0x130
[  857.152300][T19171]  ? syscall_enter_from_user_mode+0x2e/0x230
[  857.158301][T19171]  do_syscall_64+0x3d/0xb0
[  857.162739][T19171]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  857.168658][T19171] RIP: 0033:0x7f768c93682f
[  857.173082][T19171] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  857.192699][T19171] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  857.201132][T19171] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  857.209116][T19171] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  857.217185][T19171] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  857.225163][T19171] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  857.233144][T19171] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  857.241131][T19171]  </TASK>
17:15:47 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 40)

17:15:47 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0xb})

17:15:47 executing program 3:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8914, &(0x7f0000000040)={'wg0\x00'})

17:15:47 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x14)
ioctl$UI_DEV_CREATE(r0, 0x5501)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) (async)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x14) (async)
ioctl$UI_DEV_CREATE(r0, 0x5501) (async)
dup(r0) (async)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c) (async)
ioctl$UI_DEV_CREATE(r1, 0x5501) (async)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a) (async)

17:15:47 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x10, &(0x7f0000000000), 0x4)

[  857.275541][T19180] input: syz1 as /devices/virtual/input/input156
17:15:47 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0xc})

17:15:47 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000009b00)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$fuse(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])

17:15:47 executing program 3:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8914, &(0x7f0000000040)={'wg0\x00'})

[  857.368369][T19187] input: syz1 as /devices/virtual/input/input157
[  857.387854][T19192] FAULT_INJECTION: forcing a failure.
[  857.387854][T19192] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  857.401075][T19192] CPU: 1 PID: 19192 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  857.409675][T19192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  857.419742][T19192] Call Trace:
[  857.423031][T19192]  <TASK>
[  857.425972][T19192]  dump_stack_lvl+0x1e3/0x2cb
[  857.430663][T19192]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  857.430691][T19192]  ? panic+0x84d/0x84d
[  857.430712][T19192]  ? shmem_getpage_gfp+0x2b48/0x3190
[  857.445661][T19192]  should_fail+0x38a/0x4c0
[  857.450094][T19192]  copy_page_from_iter_atomic+0x451/0x1230
[  857.455937][T19192]  ? pipe_zero+0x4f0/0x4f0
[  857.460395][T19192]  generic_perform_write+0x33a/0x5b0
17:15:47 executing program 3:
io_setup(0x8000, &(0x7f0000002740))
io_setup(0x1000, &(0x7f0000000040))

[  857.465803][T19192]  ? grab_cache_page_write_begin+0x90/0x90
[  857.471638][T19192]  ? file_remove_privs+0x610/0x610
[  857.476772][T19192]  ? down_write+0x10e/0x170
[  857.481298][T19192]  __generic_file_write_iter+0x243/0x4f0
[  857.486951][T19192]  generic_file_write_iter+0xa7/0x1b0
[  857.492342][T19192]  vfs_write+0xacf/0xe50
[  857.496871][T19192]  ? file_end_write+0x250/0x250
[  857.501765][T19192]  ? __fget_files+0x413/0x480
[  857.506589][T19192]  ? __fdget_pos+0x1eb/0x2b0
[  857.511189][T19192]  ? ksys_write+0x77/0x2c0
17:15:48 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x24, &(0x7f0000000000), 0x4)

[  857.515625][T19192]  ksys_write+0x1a2/0x2c0
[  857.519961][T19192]  ? print_irqtrace_events+0x210/0x210
[  857.525518][T19192]  ? __ia32_sys_read+0x80/0x80
[  857.530285][T19192]  ? syscall_enter_from_user_mode+0x2e/0x230
[  857.536269][T19192]  ? lockdep_hardirqs_on+0x94/0x130
[  857.541461][T19192]  ? syscall_enter_from_user_mode+0x2e/0x230
[  857.547451][T19192]  do_syscall_64+0x3d/0xb0
[  857.551890][T19192]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  857.557890][T19192] RIP: 0033:0x7f768c93682f
17:15:48 executing program 0:
pselect6(0x40, &(0x7f00000002c0)={0x1}, &(0x7f0000000300)={0x4}, 0x0, 0x0, &(0x7f0000000400)={&(0x7f00000003c0), 0x8})

[  857.562318][T19192] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  857.581946][T19192] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  857.590374][T19192] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  857.598357][T19192] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  857.606342][T19192] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
17:15:48 executing program 0:
syz_mount_image$btrfs(&(0x7f0000005100), &(0x7f0000005140)='./file0\x00', 0x0, &(0x7f0000000100)={[{@noinode_cache}, {@noautodefrag}, {@ref_verify}]}, 0x1, 0x50ed, &(0x7f000000a2c0)="$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")
r0 = open(&(0x7f0000000180)='./bus\x00', 0x0, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000f4)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f0000000400)={{0x1, 0x1, 0x18, <r3=>r0, {0x5}}, './file0\x00'})
ioctl$AUTOFS_IOC_EXPIRE(r3, 0x810c9365, 0x0)
ioctl$BTRFS_IOC_QUOTA_CTL(r2, 0xc0109428, &(0x7f0000000000)={0x1})
r4 = open(&(0x7f0000002000)='./bus\x00', 0x14f942, 0x0)
r5 = open(&(0x7f0000000000)='./bus\x00', 0x60142, 0x0)
r6 = open(&(0x7f0000007f80)='./bus\x00', 0x145182, 0x0)
ftruncate(r6, 0x2007ffb)
sendfile(r5, r6, 0x0, 0x1000000201005)
r7 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0)
sendfile(r4, r7, 0x0, 0x1000000201004)
ioctl$BTRFS_IOC_QGROUP_LIMIT(r1, 0x8030942b, &(0x7f0000000040)={0x0, {0xa, 0x0, 0x2, 0xfffffffffffffffd}})

[  857.614324][T19192] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  857.622305][T19192] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  857.630306][T19192]  </TASK>
[  857.633386][    C1] vkms_vblank_simulate: vblank timer overrun
17:15:48 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 41)

17:15:48 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0xd})

17:15:48 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x14)
ioctl$UI_DEV_CREATE(r0, 0x5501)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) (async)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x14) (async)
ioctl$UI_DEV_CREATE(r0, 0x5501) (async)
dup(r0) (async)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c) (async)
ioctl$UI_DEV_CREATE(r1, 0x5501) (async)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a) (async)

17:15:48 executing program 3:
io_setup(0x8000, &(0x7f0000002740))
io_setup(0x1000, &(0x7f0000000040))

17:15:48 executing program 1:
r0 = add_key(&(0x7f00000000c0)='id_legacy\x00', &(0x7f0000000100)={'syz', 0x0}, &(0x7f0000000140)="a7", 0x1, 0xfffffffffffffffc)
keyctl$unlink(0x9, r0, 0xfffffffffffffffb)

17:15:48 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0xa, &(0x7f0000000000), 0x4)

17:15:48 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0xe})

[  857.923644][T19220] input: syz1 as /devices/virtual/input/input158
17:15:48 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f0000000080)={{0x8000, 0xc9c4, 0xfff, 0x4}, 'syz0\x00', 0x7})
r1 = dup(r0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0)
ioctl$IMHOLD_L1(r2, 0x80044948, &(0x7f0000000100)=0x10000)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000], [0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000]}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>r1, {0xee01}}, './file0\x00'})
ioctl$UI_SET_RELBIT(r3, 0x40045566, 0x5)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

17:15:48 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x10})

17:15:48 executing program 1:
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140), &(0x7f0000000180), &(0x7f0000000200)={&(0x7f00000001c0)={[0x4]}, 0x8})

[  858.008029][T19227] FAULT_INJECTION: forcing a failure.
[  858.008029][T19227] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  858.064045][T19227] CPU: 0 PID: 19227 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  858.072668][T19227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  858.082737][T19227] Call Trace:
[  858.086025][T19227]  <TASK>
[  858.088958][T19227]  dump_stack_lvl+0x1e3/0x2cb
[  858.093653][T19227]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  858.099299][T19227]  ? panic+0x84d/0x84d
[  858.103390][T19227]  should_fail+0x38a/0x4c0
[  858.107821][T19227]  prepare_alloc_pages+0x1db/0x5b0
[  858.112955][T19227]  __alloc_pages+0x14f/0x700
[  858.117557][T19227]  ? __rmqueue_pcplist+0x2030/0x2030
[  858.122857][T19227]  ? __lock_acquire+0x1295/0x1ff0
[  858.127898][T19227]  alloc_pages_vma+0x39a/0x800
[  858.132674][T19227]  ? mpol_shared_policy_lookup+0x144/0x1e0
[  858.138488][T19227]  shmem_alloc_and_acct_page+0x4d1/0xd10
[  858.144139][T19227]  ? shmem_swapin_page+0x22f0/0x22f0
[  858.149472][T19227]  ? xas_descend+0x219/0x3a0
[  858.150238][   T26] audit: type=1800 audit(1691082948.656:221): pid=19212 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1950 res=0 errno=0
[  858.154180][T19227]  ? xas_load+0x128/0x140
[  858.154208][T19227]  ? pagecache_get_page+0xd23/0x1010
[  858.154236][T19227]  ? page_cache_prev_miss+0x500/0x500
[  858.154260][T19227]  ? do_raw_spin_unlock+0x137/0x8b0
[  858.154282][T19227]  ? _raw_spin_unlock_irq+0x1f/0x40
[  858.154301][T19227]  ? lockdep_hardirqs_on+0x94/0x130
[  858.154321][T19227]  shmem_getpage_gfp+0x17b1/0x3190
[  858.210748][T19227]  ? shmem_getpage+0xa0/0xa0
[  858.215364][T19227]  ? fault_in_safe_writeable+0x250/0x250
[  858.221061][T19227]  shmem_write_begin+0xce/0x1a0
[  858.225935][T19227]  generic_perform_write+0x2bf/0x5b0
[  858.231258][T19227]  ? grab_cache_page_write_begin+0x90/0x90
[  858.237075][T19227]  ? file_remove_privs+0x610/0x610
[  858.242282][T19227]  ? down_write+0x10e/0x170
[  858.245081][   T26] audit: type=1804 audit(1691082948.756:222): pid=19235 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3167581681/syzkaller.sn1LVw/1178/bus" dev="sda1" ino=1950 res=1 errno=0
[  858.246796][T19227]  __generic_file_write_iter+0x243/0x4f0
[  858.246833][T19227]  generic_file_write_iter+0xa7/0x1b0
[  858.246855][T19227]  vfs_write+0xacf/0xe50
[  858.287195][T19227]  ? file_end_write+0x250/0x250
[  858.292068][T19227]  ? __fget_files+0x413/0x480
[  858.296762][T19227]  ? __fdget_pos+0x1eb/0x2b0
[  858.301364][T19227]  ? ksys_write+0x77/0x2c0
[  858.305783][T19227]  ksys_write+0x1a2/0x2c0
[  858.310105][T19227]  ? print_irqtrace_events+0x210/0x210
[  858.315579][T19227]  ? __ia32_sys_read+0x80/0x80
[  858.320340][T19227]  ? syscall_enter_from_user_mode+0x2e/0x230
[  858.326310][T19227]  ? lockdep_hardirqs_on+0x94/0x130
[  858.331518][T19227]  ? syscall_enter_from_user_mode+0x2e/0x230
[  858.337515][T19227]  do_syscall_64+0x3d/0xb0
[  858.341951][T19227]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  858.347953][T19227] RIP: 0033:0x7f768c93682f
[  858.352382][T19227] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  858.372010][T19227] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  858.380437][T19227] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  858.388422][T19227] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  858.396401][T19227] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  858.404387][T19227] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
17:15:48 executing program 1:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x89a1, 0x0)

[  858.412373][T19227] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  858.420460][T19227]  </TASK>
17:15:49 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_buf(r0, 0x6, 0xd, &(0x7f00000002c0)='q', 0x1)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x3, &(0x7f0000000000), 0x4)

17:15:49 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 42)

17:15:49 executing program 3:
io_setup(0x8000, &(0x7f0000002740))
io_setup(0x1000, &(0x7f0000000040))

17:15:49 executing program 1:
syz_open_dev$evdev(&(0x7f0000000000), 0x837, 0x86000)

17:15:49 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x11})

17:15:49 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f0000000080)={{0x8000, 0xc9c4, 0xfff, 0x4}, 'syz0\x00', 0x7})
r1 = dup(r0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0) (async)
ioctl$IMHOLD_L1(r2, 0x80044948, &(0x7f0000000100)=0x10000) (async)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000], [0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000]}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>r1, {0xee01}}, './file0\x00'})
ioctl$UI_SET_RELBIT(r3, 0x40045566, 0x5)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

17:15:49 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x12})

17:15:49 executing program 1:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vxcan1\x00', <r2=>0x0})
connect$can_j1939(r1, &(0x7f0000000080)={0x1d, r2, 0x0, {0x0, 0x0, 0x4}}, 0x18)

[  858.654184][T19260] FAULT_INJECTION: forcing a failure.
[  858.654184][T19260] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  858.667599][T19260] CPU: 0 PID: 19260 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  858.676201][T19260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  858.686263][T19260] Call Trace:
[  858.689551][T19260]  <TASK>
[  858.692492][T19260]  dump_stack_lvl+0x1e3/0x2cb
[  858.697180][T19260]  ? io_uring_drop_tctx_refs+0x19d/0x19d
17:15:49 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f0000000080)={{0x8000, 0xc9c4, 0xfff, 0x4}, 'syz0\x00', 0x7}) (async)
r1 = dup(r0) (async)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0) (async)
ioctl$IMHOLD_L1(r2, 0x80044948, &(0x7f0000000100)=0x10000) (async)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000], [0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000]}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501) (async)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>r1, {0xee01}}, './file0\x00'})
ioctl$UI_SET_RELBIT(r3, 0x40045566, 0x5)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

[  858.702816][T19260]  ? panic+0x84d/0x84d
[  858.706900][T19260]  ? shmem_getpage_gfp+0x2b48/0x3190
[  858.712206][T19260]  should_fail+0x38a/0x4c0
[  858.716636][T19260]  copy_page_from_iter_atomic+0x451/0x1230
[  858.722461][T19260]  ? pipe_zero+0x4f0/0x4f0
[  858.726905][T19260]  generic_perform_write+0x33a/0x5b0
[  858.732214][T19260]  ? grab_cache_page_write_begin+0x90/0x90
[  858.738036][T19260]  ? file_remove_privs+0x610/0x610
[  858.743162][T19260]  ? down_write+0x10e/0x170
[  858.747855][T19260]  __generic_file_write_iter+0x243/0x4f0
17:15:49 executing program 1:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8903, &(0x7f0000000040)={'wg0\x00'})

[  858.753506][T19260]  generic_file_write_iter+0xa7/0x1b0
[  858.758897][T19260]  vfs_write+0xacf/0xe50
[  858.763159][T19260]  ? file_end_write+0x250/0x250
[  858.768027][T19260]  ? __fget_files+0x413/0x480
[  858.772725][T19260]  ? __fdget_pos+0x1eb/0x2b0
[  858.777324][T19260]  ? ksys_write+0x77/0x2c0
[  858.781754][T19260]  ksys_write+0x1a2/0x2c0
[  858.786101][T19260]  ? print_irqtrace_events+0x210/0x210
[  858.791583][T19260]  ? __ia32_sys_read+0x80/0x80
[  858.791609][T19260]  ? syscall_enter_from_user_mode+0x2e/0x230
17:15:49 executing program 5:
io_uring_register$IORING_REGISTER_PROBE(0xffffffffffffffff, 0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, '\x00', [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}]}, 0x1c)
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000000)={0x1f, {0x5, 0x80000000, 0x7ff, 0x1, 0x0, 0x1}})
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000]}, 0x45c)
r2 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000180), 0x400082, 0x0)
io_uring_register$IORING_REGISTER_ENABLE_RINGS(r2, 0xc, 0x0, 0x0)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

[  858.791631][T19260]  ? lockdep_hardirqs_on+0x94/0x130
[  858.791648][T19260]  ? syscall_enter_from_user_mode+0x2e/0x230
[  858.791668][T19260]  do_syscall_64+0x3d/0xb0
[  858.791689][T19260]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  858.791709][T19260] RIP: 0033:0x7f768c93682f
[  858.791726][T19260] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
17:15:49 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x18})

[  858.791741][T19260] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  858.791763][T19260] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  858.791777][T19260] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  858.872301][T19260] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  858.880285][T19260] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  858.888268][T19260] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  858.896267][T19260]  </TASK>
17:15:49 executing program 0:
syz_emit_ethernet(0x2e, &(0x7f0000000080)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x6, 0x4, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @private=0xa010102, {[@timestamp={0x44, 0x4}]}}, @info_request}}}}, 0x0)

17:15:49 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$eJzs3V1oXOl5B/Dn1ZHWkrdpZjebzYdzMbCBbL3ZRbK8axVvQI4VkQXjNSsrFwsFjS3ZHVZfluTiDSVVIaGEtMUlF7msYRNor+qrFpYG3KttCAFRKJRCi9tuzPZuEpq25CIKZ+YdaaSVLcWWJdn7+xn7P3PmOTPvmdUzc4523jkBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAER8+Sun+gfSPQp69nAwAMCeODv2Rv/gvd7/AYDHzvntjv8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAiRRHfjBTvfKeRJprXW3rP1GevXhsfGd16tb4UKbqiaNaXf3sHjg0ef/mVE0PtvPf6u+0z8frY+VPV03Mz8wtTi4tTk9Xx2frFucmpHd/Dg66/2dHmE1Cdeevq5KVLi9VjLw1uuPla5c6hJ5+tnBw6Mvhmu3Z8ZHR0rKOmu+e+H/1D0u7dFY+RJ6KIr0aK9178INUioisevBe2ee142Pqiu+y/5kaMj4w2N2S6XptdKm9MXbmqO6LSsdJwu0f2oBcfyHDEcvnfqRzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGW25PJbpiKEXMR0Sj2O/Bc9D0RBHHI8WdnzfShYgo2n3wwtmxN/oHt7+D7j0Y5BZWV1f/qFJErMQj0LNwQB2KIv4iUnx3oj8u5nZuts37EV8o89WIK2XeSnE9X0/lC8RQxM+8n8AjrTuK+EmkmEuNNNnu/eZ+5ZmvVV+bvTTXUdver3zkjw/2kn0TDrDeKOJCc4+/ke7/l10AAAAAAAAAAAAAwN4o4t1IcXPm+TQfnXNK67OXq+drF6Zbnwpuf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZ5j0BAAAAAAAAAAAAAAAAAACwy/qiiNFIceOdP2ieVzqa56X/+MmhsyPPdJ4z/lPb3E9Z+1JEvBs7OydvTz7XeOoq/+z+dgHb640ivpHP//fH+z0YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgQOiKIr4ZKb73i0aKFBHDERPRytvFfo8OAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACj1piJOR4r//kpv8/pKRHw2In61Wv6J+P/VzfZ7xAAAAAAAAAAAAAAAAAAAAPAYSkVciRTff6+RKhFxrXLn0JPPVk4OHRl8s4giUlnSWf/62PlT1dNzM/MLU4uLU5PV8dn6xbnJqZ0+XO+Z+uzVa+Mjow9lY7bV95DH39d7em7+7YX65d9f2vL2w72nLiwuLdQubn1z9EV3RH/nkqPNAY+PjDYHPV2vzTZXTV13GWB3RHWnGwMAAAAAAAAAAAAAAAAAAMCBcTgVMRIpnvvh8dSeN97dmvP/sda1Yq32B3+4/l0A05uyrfP7A9Yvtyerb14++Gba6UCPNifeV8dHRkfHOhZ393y4tBxTSkV8MlIc+ftPN+fDpzi85dz4su5PI8XQL4/nusqRsm54Q1Xv0fGR0erZudkXT01Pz12s9dUuTE9Vx+ZrF3f8xQEAAAAAAAAAAAAAAAAAAABwD4dTEX8WKY6/tpLa553P8/+7W9c65v+/GtGeyd+bNuaa5tz+327O7W9d/vjJodeOPXe35Q9j/n85ppSK+FWkeOovP908n357/n//ptqy7vuR4iff+lyu63qirBtob07rHi/Vp6f6y9oXIsW3z7Vro1n7Sq79xHrtQFn7D5Hi6d/bWHsi1z6zXnusrL0TKUbPbl37yfXawbK2L1J88U+q7drDZe2Xc+2z67UvXZybntzp08tHU9n//x4pPj/w1dT+mb9r/3d8/8fyplzzoZ6/9+Xd6v9Kx7Ll3Neruf8Htun/K5Hiz69/Lte1eu9Yvv2p5r/r/f/tSPE7H9tY+3KufXq9dmCnmwX7qez/H0WKldv/svYzn/s/d9Z6h3b2/2e7N2Z7v2DH/f9vu9v/T3Usq+RxDf6GzwV81Cy+/fW3atPTUwsuuLBrF5bjQAzDhQe4sN+vTMDDVu7//2+k+NKVIrWPY/P+/2+1rq0f///fN9b3/09uyjX7dPz/dMeyk/mopac7ondpZr7nUxG9i29//cX6TO3y1OWp2cHBoRO/e3zg2ImBnifaB/frl3b83MGjruz/tyLFD/7mn9Z+j73x+H/r3/8d3pRr7rP/f/nX2wx0m/7/ROc2bTiu+c2eD/goKfv/ryLFv974YO3/N93r93/t3/M9/9zG7GsX7dP7/zMdy6r5n6GOZc8XEad2+lgAAAAAAAAAAPCIOJyK+GGk+NvGP66d837j53/i8+3azs//3c3W5//f4vLKPz+08/8DAPdWvv+PRYofH/5ian+HzE4+/z+5Kdfs0+d/n+1YNrlH85p3/CQDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMB9SlHEoUjxznca6XZRXm/pPVOfvXptfGR069XenYuIriia9eXf3oFjg8dffuXEUDvvvf5u+0y8Pnb+VPX03Mz8wtTi4tRkdXy2fnFucmrH9/Cg6292tPkEVGfeujp56dJi9dhLgxtuvla5c+jJZysnh44MvtmuHR8ZHR3rqOnuue9H/5C0e3fFY+SJKOLHkeK9Fz9I/1GUPX23XljecS9s89rxsPVFd9l/zY0YHxltbsh0vTa7VN6YunJVd0SlY6Xhdo/sQS8+kOGI5fK1txzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGm370P1GJrhhKEfMR0Sj2e/AcND1RxN9Fijs/b6T/LCKKdh+8cHbsjf7B7e+gew8GeZeHrRQRK/EI9CwcUIeiiGcixXcn+uO/ilZfNdvm/YgvlPlqxJUyb6W4nq+n8gViKOJn3k/gkdYdRZyLFHOpkd4vcu839yvPfK362uyluY7a9n7lgx4r7/vxwV6yb8IB1htF/LS5x99IP/V+DgAAAAAAAAAAAAAHXBFfihQ3Z55Pzfmha3NK67OXq+drF6ZbH+tvf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZPicNAAAAAAAAAAAAAAAAAMBD0hVFfCtSfO8XjbRatM4vOxGtvG2eKzzWfh0AAP//5UVOig==") (fail_nth: 43)

17:15:49 executing program 3:
io_setup(0x8000, &(0x7f0000002740))
io_setup(0x1000, &(0x7f0000000040))

17:15:49 executing program 1:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000001f40)='/proc/sys/net/ipv4/vs/sync_threshold\x00', 0x2, 0x0)
syz_io_uring_setup(0x62f, &(0x7f0000000000)={0x0, 0x0, 0x20, 0x0, 0x0, 0x0, r0}, 0x0, 0x0)

[  858.924586][T19274] input: syz1 as /devices/virtual/input/input161
17:15:49 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x25})

17:15:49 executing program 5:
io_uring_register$IORING_REGISTER_PROBE(0xffffffffffffffff, 0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, '\x00', [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}]}, 0x1c)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) (async)
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000000)={0x1f, {0x5, 0x80000000, 0x7ff, 0x1, 0x0, 0x1}})
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000]}, 0x45c)
r2 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000180), 0x400082, 0x0)
io_uring_register$IORING_REGISTER_ENABLE_RINGS(r2, 0xc, 0x0, 0x0) (async)
io_uring_register$IORING_REGISTER_ENABLE_RINGS(r2, 0xc, 0x0, 0x0)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a) (async)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

17:15:49 executing program 0:
syz_emit_ethernet(0x2e, &(0x7f0000000080)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x6, 0x4, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @private=0xa010102, {[@timestamp={0x44, 0x4}]}}, @info_request}}}}, 0x0)

17:15:49 executing program 1:
socketpair(0x2, 0x1, 0x43, &(0x7f0000001840))

[  859.041385][T19282] FAULT_INJECTION: forcing a failure.
[  859.041385][T19282] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  859.090215][T19288] input: syz1 as /devices/virtual/input/input162
[  859.099209][T19282] CPU: 1 PID: 19282 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  859.107825][T19282] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  859.118203][T19282] Call Trace:
[  859.121510][T19282]  <TASK>
[  859.124450][T19282]  dump_stack_lvl+0x1e3/0x2cb
[  859.129147][T19282]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  859.134795][T19282]  ? panic+0x84d/0x84d
[  859.138895][T19282]  should_fail+0x38a/0x4c0
[  859.143359][T19282]  prepare_alloc_pages+0x1db/0x5b0
[  859.148492][T19282]  __alloc_pages+0x14f/0x700
[  859.153094][T19282]  ? __rmqueue_pcplist+0x2030/0x2030
[  859.158447][T19282]  ? __lock_acquire+0x1295/0x1ff0
[  859.163471][T19282]  alloc_pages_vma+0x39a/0x800
[  859.168229][T19282]  ? mpol_shared_policy_lookup+0x144/0x1e0
[  859.174121][T19282]  shmem_alloc_and_acct_page+0x4d1/0xd10
[  859.179779][T19282]  ? shmem_swapin_page+0x22f0/0x22f0
[  859.185089][T19282]  ? xas_descend+0x219/0x3a0
[  859.189674][T19282]  ? xas_load+0x128/0x140
[  859.193994][T19282]  ? pagecache_get_page+0xd23/0x1010
[  859.199271][T19282]  ? page_cache_prev_miss+0x500/0x500
[  859.204718][T19282]  ? do_raw_spin_unlock+0x137/0x8b0
[  859.210081][T19282]  ? _raw_spin_unlock_irq+0x1f/0x40
[  859.215291][T19282]  ? lockdep_hardirqs_on+0x94/0x130
[  859.220840][T19282]  shmem_getpage_gfp+0x17b1/0x3190
[  859.225982][T19282]  ? shmem_getpage+0xa0/0xa0
[  859.230582][T19282]  ? fault_in_safe_writeable+0x250/0x250
[  859.236218][T19282]  shmem_write_begin+0xce/0x1a0
[  859.241071][T19282]  generic_perform_write+0x2bf/0x5b0
[  859.246354][T19282]  ? grab_cache_page_write_begin+0x90/0x90
[  859.252154][T19282]  ? file_remove_privs+0x610/0x610
[  859.257265][T19282]  ? down_write+0x10e/0x170
[  859.261783][T19282]  __generic_file_write_iter+0x243/0x4f0
[  859.267428][T19282]  generic_file_write_iter+0xa7/0x1b0
[  859.272789][T19282]  vfs_write+0xacf/0xe50
[  859.277034][T19282]  ? file_end_write+0x250/0x250
[  859.281888][T19282]  ? __fget_files+0x413/0x480
[  859.286577][T19282]  ? __fdget_pos+0x1eb/0x2b0
[  859.291151][T19282]  ? ksys_write+0x77/0x2c0
[  859.295553][T19282]  ksys_write+0x1a2/0x2c0
[  859.299876][T19282]  ? print_irqtrace_events+0x210/0x210
[  859.305526][T19282]  ? __ia32_sys_read+0x80/0x80
[  859.310293][T19282]  ? syscall_enter_from_user_mode+0x2e/0x230
[  859.316347][T19282]  ? lockdep_hardirqs_on+0x94/0x130
[  859.321540][T19282]  ? syscall_enter_from_user_mode+0x2e/0x230
[  859.327533][T19282]  do_syscall_64+0x3d/0xb0
[  859.331945][T19282]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  859.337827][T19282] RIP: 0033:0x7f768c93682f
[  859.342232][T19282] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  859.362138][T19282] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  859.371219][T19282] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  859.379210][T19282] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
17:15:49 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x5c})

17:15:49 executing program 0:
syz_emit_ethernet(0x2e, &(0x7f0000000080)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x6, 0x4, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @private=0xa010102, {[@timestamp={0x44, 0x4}]}}, @info_request}}}}, 0x0)

[  859.387193][T19282] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  859.395170][T19282] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  859.403129][T19282] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  859.411106][T19282]  </TASK>
[  859.414197][    C1] vkms_vblank_simulate: vblank timer overrun
17:15:49 executing program 0:
syz_emit_ethernet(0x2e, &(0x7f0000000080)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x6, 0x4, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @private=0xa010102, {[@timestamp={0x44, 0x4}]}}, @info_request}}}}, 0x0)

17:15:50 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x300})

17:15:50 executing program 5:
io_uring_register$IORING_REGISTER_PROBE(0xffffffffffffffff, 0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, '\x00', [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}]}, 0x1c) (async)
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000000)={0x1f, {0x5, 0x80000000, 0x7ff, 0x1, 0x0, 0x1}}) (async)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000]}, 0x45c) (async)
r2 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000180), 0x400082, 0x0)
io_uring_register$IORING_REGISTER_ENABLE_RINGS(r2, 0xc, 0x0, 0x0)
ioctl$UI_DEV_CREATE(r1, 0x5501) (async)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

17:15:50 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$eJzs3V1oXOl5B/Dn1ZHWkrdpZjebzYdzMbCBbL3ZRbK8axVvQI4VkQXjNSsrFwsFjS3ZHVZfluTiDSVVIaGEtMUlF7msYRNor+qrFpYG3KttCAFRKJRCi9tuzPZuEpq25CIKZ+YdaaSVLcWWJdn7+xn7P3PmOTPvmdUzc4523jkBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAER8+Sun+gfSPQp69nAwAMCeODv2Rv/gvd7/AYDHzvntjv8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAiRRHfjBTvfKeRJprXW3rP1GevXhsfGd16tb4UKbqiaNaXf3sHjg0ef/mVE0PtvPf6u+0z8frY+VPV03Mz8wtTi4tTk9Xx2frFucmpHd/Dg66/2dHmE1Cdeevq5KVLi9VjLw1uuPla5c6hJ5+tnBw6Mvhmu3Z8ZHR0rKOmu+e+H/1D0u7dFY+RJ6KIr0aK9178INUioisevBe2ee142Pqiu+y/5kaMj4w2N2S6XptdKm9MXbmqO6LSsdJwu0f2oBcfyHDEcvnfqRzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGW25PJbpiKEXMR0Sj2O/Bc9D0RBHHI8WdnzfShYgo2n3wwtmxN/oHt7+D7j0Y5BZWV1f/qFJErMQj0LNwQB2KIv4iUnx3oj8u5nZuts37EV8o89WIK2XeSnE9X0/lC8RQxM+8n8AjrTuK+EmkmEuNNNnu/eZ+5ZmvVV+bvTTXUdver3zkjw/2kn0TDrDeKOJCc4+/ke7/l10AAAAAAAAAAAAAwN4o4t1IcXPm+TQfnXNK67OXq+drF6Zbnwpuf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZ5j0BAAAAAAAAAAAAAAAAAACwy/qiiNFIceOdP2ieVzqa56X/+MmhsyPPdJ4z/lPb3E9Z+1JEvBs7OydvTz7XeOoq/+z+dgHb640ivpHP//fH+z0YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgQOiKIr4ZKb73i0aKFBHDERPRytvFfo8OAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACj1piJOR4r//kpv8/pKRHw2In61Wv6J+P/VzfZ7xAAAAAAAAAAAAAAAAAAAAPAYSkVciRTff6+RKhFxrXLn0JPPVk4OHRl8s4giUlnSWf/62PlT1dNzM/MLU4uLU5PV8dn6xbnJqZ0+XO+Z+uzVa+Mjow9lY7bV95DH39d7em7+7YX65d9f2vL2w72nLiwuLdQubn1z9EV3RH/nkqPNAY+PjDYHPV2vzTZXTV13GWB3RHWnGwMAAAAAAAAAAAAAAAAAAMCBcTgVMRIpnvvh8dSeN97dmvP/sda1Yq32B3+4/l0A05uyrfP7A9Yvtyerb14++Gba6UCPNifeV8dHRkfHOhZ393y4tBxTSkV8MlIc+ftPN+fDpzi85dz4su5PI8XQL4/nusqRsm54Q1Xv0fGR0erZudkXT01Pz12s9dUuTE9Vx+ZrF3f8xQEAAAAAAAAAAAAAAAAAAABwD4dTEX8WKY6/tpLa553P8/+7W9c65v+/GtGeyd+bNuaa5tz+327O7W9d/vjJodeOPXe35Q9j/n85ppSK+FWkeOovP908n357/n//ptqy7vuR4iff+lyu63qirBtob07rHi/Vp6f6y9oXIsW3z7Vro1n7Sq79xHrtQFn7D5Hi6d/bWHsi1z6zXnusrL0TKUbPbl37yfXawbK2L1J88U+q7drDZe2Xc+2z67UvXZybntzp08tHU9n//x4pPj/w1dT+mb9r/3d8/8fyplzzoZ6/9+Xd6v9Kx7Ll3Neruf8Htun/K5Hiz69/Lte1eu9Yvv2p5r/r/f/tSPE7H9tY+3KufXq9dmCnmwX7qez/H0WKldv/svYzn/s/d9Z6h3b2/2e7N2Z7v2DH/f9vu9v/T3Usq+RxDf6GzwV81Cy+/fW3atPTUwsuuLBrF5bjQAzDhQe4sN+vTMDDVu7//2+k+NKVIrWPY/P+/2+1rq0f///fN9b3/09uyjX7dPz/dMeyk/mopac7ondpZr7nUxG9i29//cX6TO3y1OWp2cHBoRO/e3zg2ImBnifaB/frl3b83MGjruz/tyLFD/7mn9Z+j73x+H/r3/8d3pRr7rP/f/nX2wx0m/7/ROc2bTiu+c2eD/goKfv/ryLFv974YO3/N93r93/t3/M9/9zG7GsX7dP7/zMdy6r5n6GOZc8XEad2+lgAAAAAAAAAAPCIOJyK+GGk+NvGP66d837j53/i8+3azs//3c3W5//f4vLKPz+08/8DAPdWvv+PRYofH/5ian+HzE4+/z+5Kdfs0+d/n+1YNrlH85p3/CQDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMB9SlHEoUjxznca6XZRXm/pPVOfvXptfGR069XenYuIriia9eXf3oFjg8dffuXEUDvvvf5u+0y8Pnb+VPX03Mz8wtTi4tRkdXy2fnFucmrH9/Cg6292tPkEVGfeujp56dJi9dhLgxtuvla5c+jJZysnh44MvtmuHR8ZHR3rqOnuue9H/5C0e3fFY+SJKOLHkeK9Fz9I/1GUPX23XljecS9s89rxsPVFd9l/zY0YHxltbsh0vTa7VN6YunJVd0SlY6Xhdo/sQS8+kOGI5fK1txzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGm370P1GJrhhKEfMR0Sj2e/AcND1RxN9Fijs/b6T/LCKKdh+8cHbsjf7B7e+gew8GeZeHrRQRK/EI9CwcUIeiiGcixXcn+uO/ilZfNdvm/YgvlPlqxJUyb6W4nq+n8gViKOJn3k/gkdYdRZyLFHOpkd4vcu839yvPfK362uyluY7a9n7lgx4r7/vxwV6yb8IB1htF/LS5x99IP/V+DgAAAAAAAAAAAAAHXBFfihQ3Z55Pzfmha3NK67OXq+drF6ZbH+tvf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZPicNAAAAAAAAAAAAAAAAAMBD0hVFfCtSfO8XjbRatM4vOxGtvG2eKzzWfh0AAP//5UVOig==") (fail_nth: 44)

17:15:50 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_DROP_MASTER(r0, 0x641f)
r1 = syz_open_dev$dri(&(0x7f0000000040), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r2=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r1, 0xc06864a1, &(0x7f00000003c0)={0x0, 0x0, r2, <r3=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r0, 0xc06864ce, &(0x7f0000000280)={r3})

17:15:50 executing program 0:
syz_emit_ethernet(0x0, 0x0, 0x0)

17:15:50 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
r2 = dup(r1)
ioctl$UI_SET_EVBIT(r2, 0x40045564, 0x3)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

17:15:50 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x500})

17:15:50 executing program 0:
syz_emit_ethernet(0x0, 0x0, 0x0)

17:15:50 executing program 1:
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_QP_GET(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000002c0)=ANY=[@ANYBLOB="100000000ace17"], 0x10}}, 0x0)

17:15:50 executing program 3:
socketpair(0x2c, 0x3, 0x200, &(0x7f0000000080))

17:15:50 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x600})

[  859.660547][T19316] input: syz1 as /devices/virtual/input/input164
17:15:50 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
r2 = dup(r1)
ioctl$UI_SET_EVBIT(r2, 0x40045564, 0x3)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c) (async)
ioctl$UI_DEV_CREATE(r1, 0x5501) (async)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

17:15:50 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_STATION(r0, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={&(0x7f00000007c0)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_STA_AID={0x6}]}, 0x24}}, 0x0)

17:15:50 executing program 0:
syz_emit_ethernet(0x0, 0x0, 0x0)

[  859.770664][T19326] FAULT_INJECTION: forcing a failure.
[  859.770664][T19326] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  859.785295][T19326] CPU: 1 PID: 19326 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  859.793917][T19326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  859.801855][T19333] input: syz1 as /devices/virtual/input/input165
[  859.803978][T19326] Call Trace:
[  859.803988][T19326]  <TASK>
[  859.803997][T19326]  dump_stack_lvl+0x1e3/0x2cb
[  859.804026][T19326]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  859.826835][T19326]  ? panic+0x84d/0x84d
[  859.830914][T19326]  ? shmem_getpage_gfp+0x2b48/0x3190
[  859.836194][T19326]  should_fail+0x38a/0x4c0
[  859.840602][T19326]  copy_page_from_iter_atomic+0x451/0x1230
[  859.846401][T19326]  ? pipe_zero+0x4f0/0x4f0
[  859.850824][T19326]  generic_perform_write+0x33a/0x5b0
[  859.856103][T19326]  ? grab_cache_page_write_begin+0x90/0x90
[  859.861892][T19326]  ? file_remove_privs+0x610/0x610
[  859.867016][T19326]  ? down_write+0x10e/0x170
[  859.871506][T19326]  __generic_file_write_iter+0x243/0x4f0
[  859.877151][T19326]  generic_file_write_iter+0xa7/0x1b0
[  859.882523][T19326]  vfs_write+0xacf/0xe50
[  859.886792][T19326]  ? file_end_write+0x250/0x250
[  859.891629][T19326]  ? __fget_files+0x413/0x480
[  859.896292][T19326]  ? __fdget_pos+0x1eb/0x2b0
[  859.900861][T19326]  ? ksys_write+0x77/0x2c0
[  859.905260][T19326]  ksys_write+0x1a2/0x2c0
[  859.909594][T19326]  ? print_irqtrace_events+0x210/0x210
[  859.915058][T19326]  ? __ia32_sys_read+0x80/0x80
[  859.919828][T19326]  ? syscall_enter_from_user_mode+0x2e/0x230
[  859.925808][T19326]  ? lockdep_hardirqs_on+0x94/0x130
[  859.930990][T19326]  ? syscall_enter_from_user_mode+0x2e/0x230
[  859.936958][T19326]  do_syscall_64+0x3d/0xb0
[  859.941365][T19326]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  859.947244][T19326] RIP: 0033:0x7f768c93682f
[  859.951650][T19326] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  859.971353][T19326] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  859.979893][T19326] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  859.987863][T19326] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  859.995830][T19326] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  860.003796][T19326] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  860.011787][T19326] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  860.019786][T19326]  </TASK>
[  860.022835][    C1] vkms_vblank_simulate: vblank timer overrun
17:15:50 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 45)

17:15:50 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$L2TP_CMD_SESSION_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001200)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010727bd6f00fbdbdf2508"], 0x48}}, 0x0)

17:15:50 executing program 3:
syz_mount_image$fuse(0x0, &(0x7f0000009b00)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$fuse(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0xc0ed0000, 0x0)

17:15:50 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
r2 = dup(r1)
ioctl$UI_SET_EVBIT(r2, 0x40045564, 0x3) (async)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c) (async)
ioctl$UI_DEV_CREATE(r1, 0x5501) (async)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

17:15:50 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x700})

17:15:50 executing program 0:
syz_emit_ethernet(0x2e, &(0x7f0000000080)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x6, 0x4, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @private, {[@timestamp={0x44, 0x4}]}}, @info_request}}}}, 0x0)

17:15:50 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_GET(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0xfb8c2fa10892d119}, 0x14}}, 0x0)

17:15:50 executing program 0:
syz_emit_ethernet(0x2e, &(0x7f0000000080)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x6, 0x4, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @private, {[@timestamp={0x44, 0x4}]}}, @info_request}}}}, 0x0)

17:15:50 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
fsetxattr$trusted_overlay_nlink(r0, &(0x7f0000000000), &(0x7f0000000080)={'L+'}, 0x16, 0x1)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8], [0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x31d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7]}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

17:15:50 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x900})

17:15:50 executing program 1:
syz_open_dev$I2C(&(0x7f00000003c0), 0xffffffffffffffff, 0x1c3)

[  860.210628][T19353] FAULT_INJECTION: forcing a failure.
[  860.210628][T19353] name fail_page_alloc, interval 1, probability 0, space 0, times 0
17:15:50 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000009b00)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$fuse(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x8000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{}]}})

[  860.257102][T19359] input: syz1 as /devices/virtual/input/input167
[  860.305167][T19353] CPU: 0 PID: 19353 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  860.313787][T19353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  860.323850][T19353] Call Trace:
[  860.327138][T19353]  <TASK>
[  860.330055][T19353]  dump_stack_lvl+0x1e3/0x2cb
[  860.334728][T19353]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  860.340351][T19353]  ? panic+0x84d/0x84d
[  860.344416][T19353]  should_fail+0x38a/0x4c0
[  860.348836][T19353]  prepare_alloc_pages+0x1db/0x5b0
[  860.353939][T19353]  __alloc_pages+0x14f/0x700
[  860.358516][T19353]  ? __rmqueue_pcplist+0x2030/0x2030
[  860.363897][T19353]  alloc_pages_vma+0x39a/0x800
[  860.368664][T19353]  ? mpol_shared_policy_lookup+0x144/0x1e0
[  860.374456][T19353]  shmem_alloc_and_acct_page+0x4d1/0xd10
[  860.380104][T19353]  ? shmem_swapin_page+0x22f0/0x22f0
[  860.385414][T19353]  ? xas_descend+0x219/0x3a0
[  860.390024][T19353]  ? xas_load+0x128/0x140
[  860.394350][T19353]  ? pagecache_get_page+0xd23/0x1010
[  860.399639][T19353]  ? page_cache_prev_miss+0x500/0x500
[  860.405021][T19353]  ? do_raw_spin_unlock+0x137/0x8b0
[  860.410399][T19353]  ? _raw_spin_unlock_irq+0x1f/0x40
[  860.415606][T19353]  ? lockdep_hardirqs_on+0x94/0x130
[  860.420809][T19353]  shmem_getpage_gfp+0x17b1/0x3190
[  860.425941][T19353]  ? shmem_getpage+0xa0/0xa0
[  860.430538][T19353]  ? fault_in_safe_writeable+0x250/0x250
[  860.436267][T19353]  shmem_write_begin+0xce/0x1a0
[  860.441116][T19353]  generic_perform_write+0x2bf/0x5b0
[  860.446398][T19353]  ? grab_cache_page_write_begin+0x90/0x90
[  860.452885][T19353]  ? file_remove_privs+0x610/0x610
[  860.457987][T19353]  ? down_write+0x10e/0x170
[  860.462479][T19353]  __generic_file_write_iter+0x243/0x4f0
[  860.468102][T19353]  generic_file_write_iter+0xa7/0x1b0
[  860.473460][T19353]  vfs_write+0xacf/0xe50
[  860.477695][T19353]  ? file_end_write+0x250/0x250
[  860.482535][T19353]  ? __fget_files+0x413/0x480
[  860.487208][T19353]  ? __fdget_pos+0x1eb/0x2b0
[  860.491797][T19353]  ? ksys_write+0x77/0x2c0
[  860.496202][T19353]  ksys_write+0x1a2/0x2c0
[  860.500513][T19353]  ? print_irqtrace_events+0x210/0x210
[  860.505958][T19353]  ? __ia32_sys_read+0x80/0x80
[  860.510703][T19353]  ? syscall_enter_from_user_mode+0x2e/0x230
[  860.516836][T19353]  ? lockdep_hardirqs_on+0x94/0x130
[  860.522026][T19353]  ? syscall_enter_from_user_mode+0x2e/0x230
[  860.528010][T19353]  do_syscall_64+0x3d/0xb0
[  860.532426][T19353]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  860.538318][T19353] RIP: 0033:0x7f768c93682f
[  860.542722][T19353] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  860.562830][T19353] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  860.571230][T19353] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  860.579183][T19353] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  860.587135][T19353] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  860.595085][T19353] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  860.603036][T19353] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  860.611004][T19353]  </TASK>
17:15:51 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$eJzs3V1oXOl5B/Dn1ZHWkrdpZjebzYdzMbCBbL3ZRbK8axVvQI4VkQXjNSsrFwsFjS3ZHVZfluTiDSVVIaGEtMUlF7msYRNor+qrFpYG3KttCAFRKJRCi9tuzPZuEpq25CIKZ+YdaaSVLcWWJdn7+xn7P3PmOTPvmdUzc4523jkBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAER8+Sun+gfSPQp69nAwAMCeODv2Rv/gvd7/AYDHzvntjv8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAiRRHfjBTvfKeRJprXW3rP1GevXhsfGd16tb4UKbqiaNaXf3sHjg0ef/mVE0PtvPf6u+0z8frY+VPV03Mz8wtTi4tTk9Xx2frFucmpHd/Dg66/2dHmE1Cdeevq5KVLi9VjLw1uuPla5c6hJ5+tnBw6Mvhmu3Z8ZHR0rKOmu+e+H/1D0u7dFY+RJ6KIr0aK9178INUioisevBe2ee142Pqiu+y/5kaMj4w2N2S6XptdKm9MXbmqO6LSsdJwu0f2oBcfyHDEcvnfqRzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGW25PJbpiKEXMR0Sj2O/Bc9D0RBHHI8WdnzfShYgo2n3wwtmxN/oHt7+D7j0Y5BZWV1f/qFJErMQj0LNwQB2KIv4iUnx3oj8u5nZuts37EV8o89WIK2XeSnE9X0/lC8RQxM+8n8AjrTuK+EmkmEuNNNnu/eZ+5ZmvVV+bvTTXUdver3zkjw/2kn0TDrDeKOJCc4+/ke7/l10AAAAAAAAAAAAAwN4o4t1IcXPm+TQfnXNK67OXq+drF6Zbnwpuf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZ5j0BAAAAAAAAAAAAAAAAAACwy/qiiNFIceOdP2ieVzqa56X/+MmhsyPPdJ4z/lPb3E9Z+1JEvBs7OydvTz7XeOoq/+z+dgHb640ivpHP//fH+z0YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgQOiKIr4ZKb73i0aKFBHDERPRytvFfo8OAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACj1piJOR4r//kpv8/pKRHw2In61Wv6J+P/VzfZ7xAAAAAAAAAAAAAAAAAAAAPAYSkVciRTff6+RKhFxrXLn0JPPVk4OHRl8s4giUlnSWf/62PlT1dNzM/MLU4uLU5PV8dn6xbnJqZ0+XO+Z+uzVa+Mjow9lY7bV95DH39d7em7+7YX65d9f2vL2w72nLiwuLdQubn1z9EV3RH/nkqPNAY+PjDYHPV2vzTZXTV13GWB3RHWnGwMAAAAAAAAAAAAAAAAAAMCBcTgVMRIpnvvh8dSeN97dmvP/sda1Yq32B3+4/l0A05uyrfP7A9Yvtyerb14++Gba6UCPNifeV8dHRkfHOhZ393y4tBxTSkV8MlIc+ftPN+fDpzi85dz4su5PI8XQL4/nusqRsm54Q1Xv0fGR0erZudkXT01Pz12s9dUuTE9Vx+ZrF3f8xQEAAAAAAAAAAAAAAAAAAABwD4dTEX8WKY6/tpLa553P8/+7W9c65v+/GtGeyd+bNuaa5tz+327O7W9d/vjJodeOPXe35Q9j/n85ppSK+FWkeOovP908n357/n//ptqy7vuR4iff+lyu63qirBtob07rHi/Vp6f6y9oXIsW3z7Vro1n7Sq79xHrtQFn7D5Hi6d/bWHsi1z6zXnusrL0TKUbPbl37yfXawbK2L1J88U+q7drDZe2Xc+2z67UvXZybntzp08tHU9n//x4pPj/w1dT+mb9r/3d8/8fyplzzoZ6/9+Xd6v9Kx7Ll3Neruf8Htun/K5Hiz69/Lte1eu9Yvv2p5r/r/f/tSPE7H9tY+3KufXq9dmCnmwX7qez/H0WKldv/svYzn/s/d9Z6h3b2/2e7N2Z7v2DH/f9vu9v/T3Usq+RxDf6GzwV81Cy+/fW3atPTUwsuuLBrF5bjQAzDhQe4sN+vTMDDVu7//2+k+NKVIrWPY/P+/2+1rq0f///fN9b3/09uyjX7dPz/dMeyk/mopac7ondpZr7nUxG9i29//cX6TO3y1OWp2cHBoRO/e3zg2ImBnifaB/frl3b83MGjruz/tyLFD/7mn9Z+j73x+H/r3/8d3pRr7rP/f/nX2wx0m/7/ROc2bTiu+c2eD/goKfv/ryLFv974YO3/N93r93/t3/M9/9zG7GsX7dP7/zMdy6r5n6GOZc8XEad2+lgAAAAAAAAAAPCIOJyK+GGk+NvGP66d837j53/i8+3azs//3c3W5//f4vLKPz+08/8DAPdWvv+PRYofH/5ian+HzE4+/z+5Kdfs0+d/n+1YNrlH85p3/CQDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMB9SlHEoUjxznca6XZRXm/pPVOfvXptfGR069XenYuIriia9eXf3oFjg8dffuXEUDvvvf5u+0y8Pnb+VPX03Mz8wtTi4tRkdXy2fnFucmrH9/Cg6292tPkEVGfeujp56dJi9dhLgxtuvla5c+jJZysnh44MvtmuHR8ZHR3rqOnuue9H/5C0e3fFY+SJKOLHkeK9Fz9I/1GUPX23XljecS9s89rxsPVFd9l/zY0YHxltbsh0vTa7VN6YunJVd0SlY6Xhdo/sQS8+kOGI5fK1txzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGm370P1GJrhhKEfMR0Sj2e/AcND1RxN9Fijs/b6T/LCKKdh+8cHbsjf7B7e+gew8GeZeHrRQRK/EI9CwcUIeiiGcixXcn+uO/ilZfNdvm/YgvlPlqxJUyb6W4nq+n8gViKOJn3k/gkdYdRZyLFHOpkd4vcu839yvPfK362uyluY7a9n7lgx4r7/vxwV6yb8IB1htF/LS5x99IP/V+DgAAAAAAAAAAAAAHXBFfihQ3Z55Pzfmha3NK67OXq+drF6ZbH+tvf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZPicNAAAAAAAAAAAAAAAAAMBD0hVFfCtSfO8XjbRatM4vOxGtvG2eKzzWfh0AAP//5UVOig==") (fail_nth: 46)

17:15:51 executing program 0:
syz_emit_ethernet(0x2e, &(0x7f0000000080)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x6, 0x4, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @private, {[@timestamp={0x44, 0x4}]}}, @info_request}}}}, 0x0)

17:15:51 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0xa00})

17:15:51 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
fsetxattr$trusted_overlay_nlink(r0, &(0x7f0000000000), &(0x7f0000000080)={'L+'}, 0x16, 0x1) (async)
fsetxattr$trusted_overlay_nlink(r0, &(0x7f0000000000), &(0x7f0000000080)={'L+'}, 0x16, 0x1)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8], [0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x31d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7]}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a) (async)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

17:15:51 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0xb00})

17:15:51 executing program 1:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000001f40)='/proc/sys/net/ipv4/vs/sync_threshold\x00', 0x2, 0x0)
write$cgroup_int(r0, 0x0, 0x62)

[  860.717576][T19370] input: syz1 as /devices/virtual/input/input168
17:15:51 executing program 0:
syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @private=0xa010102}, @info_request}}}}, 0x0)

17:15:51 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
fsetxattr$trusted_overlay_nlink(r0, &(0x7f0000000000), &(0x7f0000000080)={'L+'}, 0x16, 0x1)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8], [0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x31d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7]}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) (async)
dup(r0) (async)
fsetxattr$trusted_overlay_nlink(r0, &(0x7f0000000000), &(0x7f0000000080)={'L+'}, 0x16, 0x1) (async)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8], [0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x31d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7]}, 0x45c) (async)
ioctl$UI_DEV_CREATE(r1, 0x5501) (async)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a) (async)

17:15:51 executing program 3:
syz_open_dev$dri(&(0x7f0000000000), 0x1, 0xc4e01)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, 0x0)
ioctl$DRM_IOCTL_MODE_GET_LEASE(0xffffffffffffffff, 0xc01064c8, &(0x7f0000000080)={0x2, 0x0, &(0x7f0000000040)=[0x0, 0x0]})

[  860.804618][T19376] FAULT_INJECTION: forcing a failure.
[  860.804618][T19376] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  860.818112][T19376] CPU: 0 PID: 19376 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  860.826713][T19376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  860.836777][T19376] Call Trace:
[  860.840065][T19376]  <TASK>
[  860.843004][T19376]  dump_stack_lvl+0x1e3/0x2cb
[  860.847701][T19376]  ? io_uring_drop_tctx_refs+0x19d/0x19d
17:15:51 executing program 1:
syz_clone3(&(0x7f0000000840)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0xa1)

17:15:51 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0xc00})

[  860.853360][T19376]  ? panic+0x84d/0x84d
[  860.857450][T19376]  ? shmem_getpage_gfp+0x2b48/0x3190
[  860.862929][T19376]  should_fail+0x38a/0x4c0
[  860.867364][T19376]  copy_page_from_iter_atomic+0x451/0x1230
[  860.873199][T19376]  ? pipe_zero+0x4f0/0x4f0
[  860.877643][T19376]  generic_perform_write+0x33a/0x5b0
[  860.882956][T19376]  ? grab_cache_page_write_begin+0x90/0x90
[  860.888770][T19376]  ? file_remove_privs+0x610/0x610
[  860.893893][T19376]  ? down_write+0x10e/0x170
[  860.898422][T19376]  __generic_file_write_iter+0x243/0x4f0
17:15:51 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0xd00})

[  860.904071][T19376]  generic_file_write_iter+0xa7/0x1b0
[  860.909451][T19376]  vfs_write+0xacf/0xe50
[  860.913709][T19376]  ? file_end_write+0x250/0x250
[  860.918571][T19376]  ? __fget_files+0x413/0x480
[  860.920466][T19385] input: syz1 as /devices/virtual/input/input169
[  860.923260][T19376]  ? __fdget_pos+0x1eb/0x2b0
[  860.923282][T19376]  ? ksys_write+0x77/0x2c0
[  860.923303][T19376]  ksys_write+0x1a2/0x2c0
[  860.923321][T19376]  ? print_irqtrace_events+0x210/0x210
[  860.923346][T19376]  ? __ia32_sys_read+0x80/0x80
[  860.923364][T19376]  ? syscall_enter_from_user_mode+0x2e/0x230
[  860.923383][T19376]  ? lockdep_hardirqs_on+0x94/0x130
[  860.923401][T19376]  ? syscall_enter_from_user_mode+0x2e/0x230
[  860.923423][T19376]  do_syscall_64+0x3d/0xb0
[  860.923444][T19376]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  860.923464][T19376] RIP: 0033:0x7f768c93682f
[  860.923481][T19376] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  860.923494][T19376] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  860.923515][T19376] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  861.021012][T19376] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  861.028985][T19376] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  861.036969][T19376] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  861.044959][T19376] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  861.052964][T19376]  </TASK>
17:15:51 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$eJzs3V1oXOl5B/Dn1ZHWkrdpZjebzYdzMbCBbL3ZRbK8axVvQI4VkQXjNSsrFwsFjS3ZHVZfluTiDSVVIaGEtMUlF7msYRNor+qrFpYG3KttCAFRKJRCi9tuzPZuEpq25CIKZ+YdaaSVLcWWJdn7+xn7P3PmOTPvmdUzc4523jkBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAER8+Sun+gfSPQp69nAwAMCeODv2Rv/gvd7/AYDHzvntjv8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAiRRHfjBTvfKeRJprXW3rP1GevXhsfGd16tb4UKbqiaNaXf3sHjg0ef/mVE0PtvPf6u+0z8frY+VPV03Mz8wtTi4tTk9Xx2frFucmpHd/Dg66/2dHmE1Cdeevq5KVLi9VjLw1uuPla5c6hJ5+tnBw6Mvhmu3Z8ZHR0rKOmu+e+H/1D0u7dFY+RJ6KIr0aK9178INUioisevBe2ee142Pqiu+y/5kaMj4w2N2S6XptdKm9MXbmqO6LSsdJwu0f2oBcfyHDEcvnfqRzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGW25PJbpiKEXMR0Sj2O/Bc9D0RBHHI8WdnzfShYgo2n3wwtmxN/oHt7+D7j0Y5BZWV1f/qFJErMQj0LNwQB2KIv4iUnx3oj8u5nZuts37EV8o89WIK2XeSnE9X0/lC8RQxM+8n8AjrTuK+EmkmEuNNNnu/eZ+5ZmvVV+bvTTXUdver3zkjw/2kn0TDrDeKOJCc4+/ke7/l10AAAAAAAAAAAAAwN4o4t1IcXPm+TQfnXNK67OXq+drF6Zbnwpuf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZ5j0BAAAAAAAAAAAAAAAAAACwy/qiiNFIceOdP2ieVzqa56X/+MmhsyPPdJ4z/lPb3E9Z+1JEvBs7OydvTz7XeOoq/+z+dgHb640ivpHP//fH+z0YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgQOiKIr4ZKb73i0aKFBHDERPRytvFfo8OAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACj1piJOR4r//kpv8/pKRHw2In61Wv6J+P/VzfZ7xAAAAAAAAAAAAAAAAAAAAPAYSkVciRTff6+RKhFxrXLn0JPPVk4OHRl8s4giUlnSWf/62PlT1dNzM/MLU4uLU5PV8dn6xbnJqZ0+XO+Z+uzVa+Mjow9lY7bV95DH39d7em7+7YX65d9f2vL2w72nLiwuLdQubn1z9EV3RH/nkqPNAY+PjDYHPV2vzTZXTV13GWB3RHWnGwMAAAAAAAAAAAAAAAAAAMCBcTgVMRIpnvvh8dSeN97dmvP/sda1Yq32B3+4/l0A05uyrfP7A9Yvtyerb14++Gba6UCPNifeV8dHRkfHOhZ393y4tBxTSkV8MlIc+ftPN+fDpzi85dz4su5PI8XQL4/nusqRsm54Q1Xv0fGR0erZudkXT01Pz12s9dUuTE9Vx+ZrF3f8xQEAAAAAAAAAAAAAAAAAAABwD4dTEX8WKY6/tpLa553P8/+7W9c65v+/GtGeyd+bNuaa5tz+327O7W9d/vjJodeOPXe35Q9j/n85ppSK+FWkeOovP908n357/n//ptqy7vuR4iff+lyu63qirBtob07rHi/Vp6f6y9oXIsW3z7Vro1n7Sq79xHrtQFn7D5Hi6d/bWHsi1z6zXnusrL0TKUbPbl37yfXawbK2L1J88U+q7drDZe2Xc+2z67UvXZybntzp08tHU9n//x4pPj/w1dT+mb9r/3d8/8fyplzzoZ6/9+Xd6v9Kx7Ll3Neruf8Htun/K5Hiz69/Lte1eu9Yvv2p5r/r/f/tSPE7H9tY+3KufXq9dmCnmwX7qez/H0WKldv/svYzn/s/d9Z6h3b2/2e7N2Z7v2DH/f9vu9v/T3Usq+RxDf6GzwV81Cy+/fW3atPTUwsuuLBrF5bjQAzDhQe4sN+vTMDDVu7//2+k+NKVIrWPY/P+/2+1rq0f///fN9b3/09uyjX7dPz/dMeyk/mopac7ondpZr7nUxG9i29//cX6TO3y1OWp2cHBoRO/e3zg2ImBnifaB/frl3b83MGjruz/tyLFD/7mn9Z+j73x+H/r3/8d3pRr7rP/f/nX2wx0m/7/ROc2bTiu+c2eD/goKfv/ryLFv974YO3/N93r93/t3/M9/9zG7GsX7dP7/zMdy6r5n6GOZc8XEad2+lgAAAAAAAAAAPCIOJyK+GGk+NvGP66d837j53/i8+3azs//3c3W5//f4vLKPz+08/8DAPdWvv+PRYofH/5ian+HzE4+/z+5Kdfs0+d/n+1YNrlH85p3/CQDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMB9SlHEoUjxznca6XZRXm/pPVOfvXptfGR069XenYuIriia9eXf3oFjg8dffuXEUDvvvf5u+0y8Pnb+VPX03Mz8wtTi4tRkdXy2fnFucmrH9/Cg6292tPkEVGfeujp56dJi9dhLgxtuvla5c+jJZysnh44MvtmuHR8ZHR3rqOnuue9H/5C0e3fFY+SJKOLHkeK9Fz9I/1GUPX23XljecS9s89rxsPVFd9l/zY0YHxltbsh0vTa7VN6YunJVd0SlY6Xhdo/sQS8+kOGI5fK1txzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGm370P1GJrhhKEfMR0Sj2e/AcND1RxN9Fijs/b6T/LCKKdh+8cHbsjf7B7e+gew8GeZeHrRQRK/EI9CwcUIeiiGcixXcn+uO/ilZfNdvm/YgvlPlqxJUyb6W4nq+n8gViKOJn3k/gkdYdRZyLFHOpkd4vcu839yvPfK362uyluY7a9n7lgx4r7/vxwV6yb8IB1htF/LS5x99IP/V+DgAAAAAAAAAAAAAHXBFfihQ3Z55Pzfmha3NK67OXq+drF6ZbH+tvf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZPicNAAAAAAAAAAAAAAAAAMBD0hVFfCtSfO8XjbRatM4vOxGtvG2eKzzWfh0AAP//5UVOig==") (fail_nth: 47)

17:15:51 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0xe00})

17:15:51 executing program 0:
syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @private=0xa010102}, @info_request}}}}, 0x0)

17:15:51 executing program 1:
syz_clone3(&(0x7f0000001240)={0x8101000, 0x0, 0x0, &(0x7f0000000180), {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

17:15:51 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_GET_MPP(r1, &(0x7f0000000400)={&(0x7f0000000300), 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x2c, r0, 0x1, 0x0, 0x0, {{}, {@void, @void}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x2c}}, 0x0)

17:15:51 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x694f], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400]}, 0x45c)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>r0, {<r4=>0x0}}, './file0\x00'})
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r5, 0x84, 0x81, &(0x7f00000002c0)="1a00000019000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000380)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r5, 0x84, 0x15, &(0x7f00000001c0), 0x1)
sendto$inet6(r5, &(0x7f0000000000)="eb", 0x1, 0x0, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
write$binfmt_script(r5, &(0x7f00000003c0)=ANY=[], 0xb)
ioctl$UI_DEV_SETUP(r3, 0x405c5503, &(0x7f0000000200)={{0x3, 0x0, 0xffff, 0x9}, 'syz1\x00', 0x4f})
write$binfmt_script(r5, &(0x7f00000000c0)=ANY=[@ANYBLOB='c  ./fil\n'], 0xffd0)
setsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f0000000080)={{{@in=@loopback, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4e20, 0x6, 0x4e23, 0x5, 0x2, 0x40, 0x20, 0x8, 0x0, r4}, {0x0, 0x2, 0x6, 0x1, 0x120000000, 0xfffffffffffffff8, 0x7fffffff, 0x4}, {0x0, 0x7, 0x1, 0xff}, 0xffffffe1, 0x6e6bb1, 0x1, 0x1, 0x3, 0x2}, {{@in6=@dev={0xfe, 0x80, '\x00', 0x29}, 0x4d5, 0xff}, 0x2, @in=@broadcast, 0x34ff, 0x4, 0x1, 0x1, 0x6, 0x9, 0x100}}, 0xe8)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

17:15:51 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x1100})

17:15:51 executing program 3:
syz_mount_image$fuse(0x0, &(0x7f0000009b00)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
mount$fuseblk(&(0x7f0000000640), &(0x7f0000000680)='./file0\x00', &(0x7f00000006c0), 0x0, &(0x7f0000000740)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x2000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{}, {@blksize}]}})

17:15:51 executing program 0:
syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @private=0xa010102}, @info_request}}}}, 0x0)

17:15:51 executing program 1:
r0 = add_key(&(0x7f00000000c0)='id_legacy\x00', &(0x7f0000000100)={'syz', 0x0}, &(0x7f0000000140)="a7", 0x1, 0xfffffffffffffffc)
keyctl$link(0x8, 0x0, r0)

17:15:51 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x1200})

17:15:51 executing program 0:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x89b0, &(0x7f0000000040)={'wg0\x00'})

[  861.255669][T19412] FAULT_INJECTION: forcing a failure.
[  861.255669][T19412] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  861.338223][T19412] CPU: 0 PID: 19412 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  861.346842][T19412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  861.356903][T19412] Call Trace:
[  861.360193][T19412]  <TASK>
[  861.363128][T19412]  dump_stack_lvl+0x1e3/0x2cb
[  861.367816][T19412]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  861.373455][T19412]  ? panic+0x84d/0x84d
[  861.377541][T19412]  should_fail+0x38a/0x4c0
[  861.381972][T19412]  prepare_alloc_pages+0x1db/0x5b0
[  861.387193][T19412]  __alloc_pages+0x14f/0x700
[  861.391801][T19412]  ? __rmqueue_pcplist+0x2030/0x2030
[  861.395050][T19407] input: syz1 as /devices/virtual/input/input170
[  861.397099][T19412]  ? __lock_acquire+0x1295/0x1ff0
[  861.397140][T19412]  alloc_pages_vma+0x39a/0x800
[  861.413194][T19412]  ? mpol_shared_policy_lookup+0x144/0x1e0
[  861.419021][T19412]  shmem_alloc_and_acct_page+0x4d1/0xd10
[  861.424674][T19412]  ? shmem_swapin_page+0x22f0/0x22f0
[  861.429996][T19412]  ? xas_descend+0x219/0x3a0
[  861.434605][T19412]  ? xas_load+0x128/0x140
[  861.439417][T19412]  ? pagecache_get_page+0xd23/0x1010
[  861.444723][T19412]  ? page_cache_prev_miss+0x500/0x500
[  861.450293][T19412]  ? do_raw_spin_unlock+0x137/0x8b0
[  861.455594][T19412]  ? _raw_spin_unlock_irq+0x1f/0x40
[  861.460902][T19412]  ? lockdep_hardirqs_on+0x94/0x130
[  861.466105][T19412]  shmem_getpage_gfp+0x17b1/0x3190
[  861.471295][T19412]  ? shmem_getpage+0xa0/0xa0
[  861.475904][T19412]  ? fault_in_safe_writeable+0x250/0x250
[  861.481568][T19412]  shmem_write_begin+0xce/0x1a0
[  861.486535][T19412]  generic_perform_write+0x2bf/0x5b0
[  861.492150][T19412]  ? grab_cache_page_write_begin+0x90/0x90
[  861.497987][T19412]  ? file_remove_privs+0x610/0x610
[  861.503121][T19412]  ? down_write+0x10e/0x170
[  861.507644][T19412]  __generic_file_write_iter+0x243/0x4f0
[  861.513557][T19412]  generic_file_write_iter+0xa7/0x1b0
[  861.518951][T19412]  vfs_write+0xacf/0xe50
[  861.523216][T19412]  ? file_end_write+0x250/0x250
[  861.528083][T19412]  ? __fget_files+0x413/0x480
[  861.532776][T19412]  ? __fdget_pos+0x1eb/0x2b0
[  861.537372][T19412]  ? ksys_write+0x77/0x2c0
[  861.541807][T19412]  ksys_write+0x1a2/0x2c0
[  861.546232][T19412]  ? print_irqtrace_events+0x210/0x210
[  861.551708][T19412]  ? __ia32_sys_read+0x80/0x80
[  861.556492][T19412]  ? syscall_enter_from_user_mode+0x2e/0x230
[  861.562481][T19412]  ? lockdep_hardirqs_on+0x94/0x130
[  861.567695][T19412]  ? syscall_enter_from_user_mode+0x2e/0x230
[  861.573691][T19412]  do_syscall_64+0x3d/0xb0
[  861.578121][T19412]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  861.584027][T19412] RIP: 0033:0x7f768c93682f
[  861.588458][T19412] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  861.608076][T19412] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  861.616486][T19412] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  861.624459][T19412] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  861.632471][T19412] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  861.640436][T19412] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  861.648388][T19412] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  861.656452][T19412]  </TASK>
17:15:52 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 48)

17:15:52 executing program 3:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f00000052c0), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000340)={0x14, r1, 0x1}, 0x14}}, 0x0)

17:15:52 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x1800})

17:15:52 executing program 0:
syz_mount_image$f2fs(&(0x7f00000000c0), &(0x7f0000010280)='./bus\x00', 0x10, &(0x7f0000007f80)=ANY=[], 0x1, 0x7e64, &(0x7f0000000100)="$eJzs3M1uG1UUAODjhEZAS4kQC3aMxI8ciVhjO6mgbCKqqgtIFdGy7MKxHcttYkdx4oSuuuHnIdjBinfgAdix6aJvgMQOiU2FGuSZiYTKTyNinMb5Pml8fI9vzr3XmizOKEoA59Z88tuvpbgcL0XEbERcisjel4ors5KHNyLizYiY+dNVKvKjwZ1RYi4iXo6Iy6Piec1SMffbH768893PH7/zzfc/zqZff/XL6Z0aOE27EfF2RGxt5+P9rTz2O3m8W+Qbw24Wt5aGRcw/2LpXjPt53G+vZxX2G0fzGlmsd/L5/e29wShubDaao9jpbmT57V6+4GDYOaqT/cDdxk42brXXs9gd9LPYuZ/v66CI9we7eZ1WUe/zZn6+3aOY59sH7fw82/ey2OztFvm8br/VPhjFYRGL5aK1/t+/47Pik25v7yAZtncG3X4vWa5U00q6uNO8spim1Q/qi51WY6N5pV1bajU2lpJye2XQ31xIyp1mMynfuHZtIammlVolfS+5cfOzZLOVlEfxo25vb7e7OVhIapX6cqW6kLxVTW6triVrn16/vrp2O1nt95Kb/WFST5Nq/epy7Wr9/WTt1u2kltZS55+o0oTXY8r88w10+OQwM9HtAJwF4+z/Q/8PHNP56v+L8+j//+LE/e+7Z7v/1f/DCbiBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADOrYs/fbiXvZnPxzNF/pUi9VoxLhWfHf6N0lM1Z0d1I+LCMed/UYqYK9Y4ul6IiJXi+v3V//c7AAAAgGn26HH5YSnr1vOX+X+fPnNhMtvihB7k4ckzps1lr6VLD8a0bPZY5xn30PFlD6JeH1e12Wx/4zrpxSieUI1F9mv14riqHcvsRFcDAACeDzoBAAAAmGpP/xk+AAAAMH30/wAAADD9sv7f//8DAACA6fbocfnhae8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD+YOfuTRCGggAAX/xrgihO4Q42juAILuEIDuJGNhaZw05ELXKCiIgQQyB8HxzHJeHyrnzNAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQN+Vx9WuuixPTfvc7s38ZxoAAADgq3mdBllO89Ei6yLffbq7F2+thhFRRsT4x+/3RcQk//GMUUSsM66ztocHAACA/qoO503XZwAAAAAAAAAAAAAAAAAAAABedLH/b1sn+/8AAACgPfb/AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwYHdeTgCAQRiA9rNA95+2CLqB4OU9SMgxAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAH12Zp0aN+pN/wIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDPDhwUAQCAIACjmv2L+LGDPbgNAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC63ST77NcxCoAwEARAk3wglT+z9rd+S5FcIWLtIc7AEtg0214bqWfRR1/jf9m39em9K28N/qo5ewAAAAB/0CLT5VYvPXEQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAwe4cWgEAg0AUa+k+7D9eBQ+PwySGLxAHAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDIG33cE51RCQBAyb65PAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4LMDBwIAAAAAQP6vjVBVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVWFHTgQAAAAABDkb73CAAUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAUwEAAP//bbMf7Q==")
r0 = open(&(0x7f0000008140)='./bus\x00', 0x60142, 0x0)
fallocate(r0, 0x10, 0x800000, 0x8000)

17:15:52 executing program 1:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000001f40)='/proc/sys/net/ipv4/vs/sync_threshold\x00', 0x2, 0x0)
write$cgroup_int(r0, &(0x7f0000000140)=0x557, 0x12)

17:15:52 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x694f], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400]}, 0x45c)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>r0, {<r4=>0x0}}, './file0\x00'}) (async)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r5, 0x84, 0x81, &(0x7f00000002c0)="1a00000019000000", 0x8) (async)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000380)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r5, 0x84, 0x15, &(0x7f00000001c0), 0x1) (async)
sendto$inet6(r5, &(0x7f0000000000)="eb", 0x1, 0x0, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
write$binfmt_script(r5, &(0x7f00000003c0)=ANY=[], 0xb)
ioctl$UI_DEV_SETUP(r3, 0x405c5503, &(0x7f0000000200)={{0x3, 0x0, 0xffff, 0x9}, 'syz1\x00', 0x4f})
write$binfmt_script(r5, &(0x7f00000000c0)=ANY=[@ANYBLOB='c  ./fil\n'], 0xffd0) (async)
setsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f0000000080)={{{@in=@loopback, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4e20, 0x6, 0x4e23, 0x5, 0x2, 0x40, 0x20, 0x8, 0x0, r4}, {0x0, 0x2, 0x6, 0x1, 0x120000000, 0xfffffffffffffff8, 0x7fffffff, 0x4}, {0x0, 0x7, 0x1, 0xff}, 0xffffffe1, 0x6e6bb1, 0x1, 0x1, 0x3, 0x2}, {{@in6=@dev={0xfe, 0x80, '\x00', 0x29}, 0x4d5, 0xff}, 0x2, @in=@broadcast, 0x34ff, 0x4, 0x1, 0x1, 0x6, 0x9, 0x100}}, 0xe8) (async)
ioctl$UI_DEV_CREATE(r1, 0x5501) (async)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

17:15:52 executing program 3:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x89a0, &(0x7f0000000040)={'wg0\x00'})

17:15:52 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000003140), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r0, &(0x7f00000032c0)={0x0, 0x0, &(0x7f0000003280)={&(0x7f00000007c0)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="015d53c60fdb1176a80041000000080001007063690011000200303030302ec929930f6c923a30"], 0x40}}, 0x0)

17:15:52 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x2500})

[  861.824567][T19440] input: syz1 as /devices/virtual/input/input171
[  861.832408][T19438] FAULT_INJECTION: forcing a failure.
[  861.832408][T19438] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  861.845628][T19438] CPU: 0 PID: 19438 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  861.854227][T19438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  861.864290][T19438] Call Trace:
[  861.867750][T19438]  <TASK>
[  861.870690][T19438]  dump_stack_lvl+0x1e3/0x2cb
[  861.875386][T19438]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  861.881035][T19438]  ? panic+0x84d/0x84d
[  861.885115][T19438]  ? shmem_getpage_gfp+0x2b48/0x3190
[  861.890413][T19438]  should_fail+0x38a/0x4c0
[  861.894840][T19438]  copy_page_from_iter_atomic+0x451/0x1230
[  861.900667][T19438]  ? pipe_zero+0x4f0/0x4f0
[  861.905100][T19438]  generic_perform_write+0x33a/0x5b0
[  861.910400][T19438]  ? grab_cache_page_write_begin+0x90/0x90
[  861.916215][T19438]  ? file_remove_privs+0x610/0x610
[  861.921506][T19438]  ? down_write+0x10e/0x170
[  861.926020][T19438]  __generic_file_write_iter+0x243/0x4f0
[  861.931665][T19438]  generic_file_write_iter+0xa7/0x1b0
[  861.937049][T19438]  vfs_write+0xacf/0xe50
[  861.941319][T19438]  ? file_end_write+0x250/0x250
[  861.946182][T19438]  ? __fget_files+0x413/0x480
[  861.950873][T19438]  ? __fdget_pos+0x1eb/0x2b0
[  861.955825][T19438]  ? ksys_write+0x77/0x2c0
[  861.960256][T19438]  ksys_write+0x1a2/0x2c0
[  861.964680][T19438]  ? print_irqtrace_events+0x210/0x210
[  861.970163][T19438]  ? __ia32_sys_read+0x80/0x80
[  861.974939][T19438]  ? syscall_enter_from_user_mode+0x2e/0x230
[  861.980931][T19438]  ? lockdep_hardirqs_on+0x94/0x130
[  861.986241][T19438]  ? syscall_enter_from_user_mode+0x2e/0x230
[  861.992235][T19438]  do_syscall_64+0x3d/0xb0
[  861.996663][T19438]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  862.002569][T19438] RIP: 0033:0x7f768c93682f
[  862.006986][T19438] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  862.026600][T19438] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  862.035031][T19438] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  862.043010][T19438] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  862.050985][T19438] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  862.061046][T19438] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
17:15:52 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x5c00})

[  862.069028][T19438] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  862.077028][T19438]  </TASK>
17:15:52 executing program 1:
add_key(&(0x7f0000000180)='big_key\x00', &(0x7f00000001c0)={'syz', 0x2}, &(0x7f0000000200)='<', 0x1, 0xfffffffffffffffb)

17:15:52 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0xc008ae88, &(0x7f0000000040))

17:15:52 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 49)

17:15:52 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x694f], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400]}, 0x45c) (async)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>r0, {<r4=>0x0}}, './file0\x00'})
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r5, 0x84, 0x81, &(0x7f00000002c0)="1a00000019000000", 0x8) (async)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000380)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r5, 0x84, 0x15, &(0x7f00000001c0), 0x1)
sendto$inet6(r5, &(0x7f0000000000)="eb", 0x1, 0x0, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
write$binfmt_script(r5, &(0x7f00000003c0)=ANY=[], 0xb) (async)
ioctl$UI_DEV_SETUP(r3, 0x405c5503, &(0x7f0000000200)={{0x3, 0x0, 0xffff, 0x9}, 'syz1\x00', 0x4f}) (async)
write$binfmt_script(r5, &(0x7f00000000c0)=ANY=[@ANYBLOB='c  ./fil\n'], 0xffd0)
setsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f0000000080)={{{@in=@loopback, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4e20, 0x6, 0x4e23, 0x5, 0x2, 0x40, 0x20, 0x8, 0x0, r4}, {0x0, 0x2, 0x6, 0x1, 0x120000000, 0xfffffffffffffff8, 0x7fffffff, 0x4}, {0x0, 0x7, 0x1, 0xff}, 0xffffffe1, 0x6e6bb1, 0x1, 0x1, 0x3, 0x2}, {{@in6=@dev={0xfe, 0x80, '\x00', 0x29}, 0x4d5, 0xff}, 0x2, @in=@broadcast, 0x34ff, 0x4, 0x1, 0x1, 0x6, 0x9, 0x100}}, 0xe8) (async, rerun: 32)
ioctl$UI_DEV_CREATE(r1, 0x5501) (rerun: 32)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

17:15:52 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x1000000})

[  862.269553][T19459] FAULT_INJECTION: forcing a failure.
[  862.269553][T19459] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  862.306415][T19461] input: syz1 as /devices/virtual/input/input172
[  862.323967][T19459] CPU: 1 PID: 19459 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  862.332587][T19459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  862.342644][T19459] Call Trace:
[  862.345929][T19459]  <TASK>
[  862.348853][T19459]  dump_stack_lvl+0x1e3/0x2cb
[  862.353543][T19459]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  862.359182][T19459]  ? panic+0x84d/0x84d
[  862.363263][T19459]  should_fail+0x38a/0x4c0
[  862.367689][T19459]  prepare_alloc_pages+0x1db/0x5b0
[  862.373080][T19459]  __alloc_pages+0x14f/0x700
[  862.377682][T19459]  ? __rmqueue_pcplist+0x2030/0x2030
[  862.382983][T19459]  ? __lock_acquire+0x1295/0x1ff0
[  862.388033][T19459]  alloc_pages_vma+0x39a/0x800
[  862.392812][T19459]  ? mpol_shared_policy_lookup+0x144/0x1e0
[  862.398630][T19459]  shmem_alloc_and_acct_page+0x4d1/0xd10
[  862.404281][T19459]  ? shmem_swapin_page+0x22f0/0x22f0
[  862.409594][T19459]  ? xas_descend+0x219/0x3a0
[  862.414197][T19459]  ? xas_load+0x128/0x140
[  862.418539][T19459]  ? pagecache_get_page+0xd23/0x1010
[  862.423838][T19459]  ? page_cache_prev_miss+0x500/0x500
[  862.429233][T19459]  ? do_raw_spin_unlock+0x137/0x8b0
[  862.434449][T19459]  ? _raw_spin_unlock_irq+0x1f/0x40
[  862.439743][T19459]  ? lockdep_hardirqs_on+0x94/0x130
[  862.445039][T19459]  shmem_getpage_gfp+0x17b1/0x3190
[  862.450222][T19459]  ? shmem_getpage+0xa0/0xa0
[  862.454920][T19459]  ? fault_in_safe_writeable+0x250/0x250
[  862.460660][T19459]  shmem_write_begin+0xce/0x1a0
[  862.465536][T19459]  generic_perform_write+0x2bf/0x5b0
[  862.470846][T19459]  ? grab_cache_page_write_begin+0x90/0x90
[  862.476754][T19459]  ? file_remove_privs+0x610/0x610
[  862.482051][T19459]  ? down_write+0x10e/0x170
[  862.486565][T19459]  __generic_file_write_iter+0x243/0x4f0
[  862.492212][T19459]  generic_file_write_iter+0xa7/0x1b0
[  862.497596][T19459]  vfs_write+0xacf/0xe50
[  862.501854][T19459]  ? file_end_write+0x250/0x250
[  862.506725][T19459]  ? __fget_files+0x413/0x480
[  862.511425][T19459]  ? __fdget_pos+0x1eb/0x2b0
[  862.516022][T19459]  ? ksys_write+0x77/0x2c0
[  862.520444][T19459]  ksys_write+0x1a2/0x2c0
[  862.524783][T19459]  ? print_irqtrace_events+0x210/0x210
[  862.530349][T19459]  ? __ia32_sys_read+0x80/0x80
[  862.535115][T19459]  ? syscall_enter_from_user_mode+0x2e/0x230
[  862.541097][T19459]  ? lockdep_hardirqs_on+0x94/0x130
[  862.546300][T19459]  ? syscall_enter_from_user_mode+0x2e/0x230
[  862.552289][T19459]  do_syscall_64+0x3d/0xb0
[  862.556739][T19459]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  862.562642][T19459] RIP: 0033:0x7f768c93682f
[  862.567064][T19459] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  862.586675][T19459] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  862.595107][T19459] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  862.603094][T19459] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  862.611076][T19459] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  862.619050][T19459] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  862.627026][T19459] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  862.635015][T19459]  </TASK>
[  862.638181][    C1] vkms_vblank_simulate: vblank timer overrun
17:15:53 executing program 0:
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)

17:15:53 executing program 1:
r0 = getpid()
syz_open_procfs$namespace(r0, &(0x7f0000000000)='ns/ipc\x00')

17:15:53 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x2000000})

17:15:53 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 50)

17:15:53 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0xc008ae88, &(0x7f0000000040))

[  862.893660][T19469] FAULT_INJECTION: forcing a failure.
[  862.893660][T19469] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  862.907092][T19469] CPU: 1 PID: 19469 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  862.915680][T19469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  862.925742][T19469] Call Trace:
[  862.929010][T19469]  <TASK>
[  862.931930][T19469]  dump_stack_lvl+0x1e3/0x2cb
[  862.936619][T19469]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  862.942243][T19469]  ? panic+0x84d/0x84d
[  862.946329][T19469]  ? shmem_getpage_gfp+0x2b48/0x3190
[  862.951992][T19469]  should_fail+0x38a/0x4c0
[  862.956399][T19469]  copy_page_from_iter_atomic+0x451/0x1230
[  862.962202][T19469]  ? pipe_zero+0x4f0/0x4f0
[  862.966708][T19469]  generic_perform_write+0x33a/0x5b0
[  862.972005][T19469]  ? grab_cache_page_write_begin+0x90/0x90
[  862.977803][T19469]  ? file_remove_privs+0x610/0x610
[  862.982927][T19469]  ? down_write+0x10e/0x170
[  862.987455][T19469]  __generic_file_write_iter+0x243/0x4f0
[  862.993116][T19469]  generic_file_write_iter+0xa7/0x1b0
[  862.998524][T19469]  vfs_write+0xacf/0xe50
[  863.002777][T19469]  ? file_end_write+0x250/0x250
[  863.007644][T19469]  ? __fget_files+0x413/0x480
[  863.012316][T19469]  ? __fdget_pos+0x1eb/0x2b0
[  863.016895][T19469]  ? ksys_write+0x77/0x2c0
[  863.021730][T19469]  ksys_write+0x1a2/0x2c0
[  863.026048][T19469]  ? print_irqtrace_events+0x210/0x210
[  863.031513][T19469]  ? __ia32_sys_read+0x80/0x80
[  863.036260][T19469]  ? syscall_enter_from_user_mode+0x2e/0x230
[  863.042242][T19469]  ? lockdep_hardirqs_on+0x94/0x130
[  863.047446][T19469]  ? syscall_enter_from_user_mode+0x2e/0x230
[  863.053426][T19469]  do_syscall_64+0x3d/0xb0
[  863.057897][T19469]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  863.063827][T19469] RIP: 0033:0x7f768c93682f
[  863.068230][T19469] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  863.088088][T19469] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  863.096503][T19469] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  863.104986][T19469] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  863.112952][T19469] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  863.121432][T19469] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  863.129393][T19469] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  863.137359][T19469]  </TASK>
17:15:53 executing program 1:
r0 = socket$tipc(0x1e, 0x4, 0x0)
sendmmsg$sock(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)=[@txtime={{0x18}}, @mark={{0x14}}], 0x30}}], 0x1, 0x0)

[  863.140477][    C1] vkms_vblank_simulate: vblank timer overrun
17:15:53 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x3000000})

17:15:53 executing program 1:
r0 = socket$tipc(0x1e, 0x4, 0x0)
getsockname$tipc(r0, 0x0, &(0x7f0000000180))

17:15:53 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x8188aea6, &(0x7f0000000040))

17:15:53 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0xc008ae88, &(0x7f0000000040))

17:15:53 executing program 1:
syz_open_dev$dri(&(0x7f0000000140), 0x401, 0x140)

17:15:53 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x4000000})

17:15:53 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
sendmmsg$sock(r0, &(0x7f0000003140)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

17:15:53 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 51)

17:15:53 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x5000000})

17:15:54 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4018aee2, &(0x7f0000000040))

[  863.459094][T19498] FAULT_INJECTION: forcing a failure.
[  863.459094][T19498] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  863.505092][T19498] CPU: 0 PID: 19498 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  863.513906][T19498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  863.524231][T19498] Call Trace:
[  863.527626][T19498]  <TASK>
[  863.530570][T19498]  dump_stack_lvl+0x1e3/0x2cb
[  863.535275][T19498]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  863.540934][T19498]  ? panic+0x84d/0x84d
[  863.545036][T19498]  should_fail+0x38a/0x4c0
[  863.549487][T19498]  prepare_alloc_pages+0x1db/0x5b0
17:15:54 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x6000000})

[  863.554728][T19498]  __alloc_pages+0x14f/0x700
[  863.559446][T19498]  ? __rmqueue_pcplist+0x2030/0x2030
[  863.564778][T19498]  ? __lock_acquire+0x1295/0x1ff0
[  863.569850][T19498]  alloc_pages_vma+0x39a/0x800
[  863.574641][T19498]  ? mpol_shared_policy_lookup+0x144/0x1e0
[  863.580476][T19498]  shmem_alloc_and_acct_page+0x4d1/0xd10
[  863.586140][T19498]  ? shmem_swapin_page+0x22f0/0x22f0
[  863.591467][T19498]  ? xas_descend+0x219/0x3a0
[  863.596078][T19498]  ? xas_load+0x128/0x140
[  863.600417][T19498]  ? pagecache_get_page+0xd23/0x1010
[  863.605697][T19498]  ? page_cache_prev_miss+0x500/0x500
[  863.611061][T19498]  ? do_raw_spin_unlock+0x137/0x8b0
[  863.616247][T19498]  ? _raw_spin_unlock_irq+0x1f/0x40
[  863.621439][T19498]  ? lockdep_hardirqs_on+0x94/0x130
[  863.626803][T19498]  shmem_getpage_gfp+0x17b1/0x3190
[  863.631928][T19498]  ? shmem_getpage+0xa0/0xa0
[  863.636505][T19498]  ? fault_in_safe_writeable+0x250/0x250
[  863.642130][T19498]  shmem_write_begin+0xce/0x1a0
[  863.646970][T19498]  generic_perform_write+0x2bf/0x5b0
[  863.652249][T19498]  ? grab_cache_page_write_begin+0x90/0x90
[  863.658039][T19498]  ? file_remove_privs+0x610/0x610
[  863.663139][T19498]  ? down_write+0x10e/0x170
[  863.667631][T19498]  __generic_file_write_iter+0x243/0x4f0
[  863.673261][T19498]  generic_file_write_iter+0xa7/0x1b0
[  863.678622][T19498]  vfs_write+0xacf/0xe50
[  863.682859][T19498]  ? file_end_write+0x250/0x250
[  863.687720][T19498]  ? __fget_files+0x413/0x480
[  863.692388][T19498]  ? __fdget_pos+0x1eb/0x2b0
[  863.696962][T19498]  ? ksys_write+0x77/0x2c0
[  863.701365][T19498]  ksys_write+0x1a2/0x2c0
[  863.705677][T19498]  ? print_irqtrace_events+0x210/0x210
[  863.711123][T19498]  ? __ia32_sys_read+0x80/0x80
[  863.715869][T19498]  ? syscall_enter_from_user_mode+0x2e/0x230
[  863.721854][T19498]  ? lockdep_hardirqs_on+0x94/0x130
[  863.727051][T19498]  ? syscall_enter_from_user_mode+0x2e/0x230
[  863.733030][T19498]  do_syscall_64+0x3d/0xb0
[  863.737448][T19498]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  863.743335][T19498] RIP: 0033:0x7f768c93682f
[  863.747741][T19498] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  863.767422][T19498] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  863.775910][T19498] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  863.783952][T19498] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  863.791906][T19498] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
17:15:54 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x7000000})

17:15:54 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0xc008ae88, &(0x7f0000000040))

[  863.800208][T19498] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  863.808158][T19498] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  863.816134][T19498]  </TASK>
17:15:54 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 52)

[  863.970279][T19515] FAULT_INJECTION: forcing a failure.
[  863.970279][T19515] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  863.983773][T19515] CPU: 1 PID: 19515 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  863.992899][T19515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  864.003055][T19515] Call Trace:
[  864.006345][T19515]  <TASK>
[  864.009295][T19515]  dump_stack_lvl+0x1e3/0x2cb
[  864.014114][T19515]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  864.019763][T19515]  ? panic+0x84d/0x84d
[  864.023851][T19515]  ? shmem_getpage_gfp+0x2b48/0x3190
[  864.029162][T19515]  should_fail+0x38a/0x4c0
[  864.033589][T19515]  copy_page_from_iter_atomic+0x451/0x1230
[  864.039414][T19515]  ? pipe_zero+0x4f0/0x4f0
[  864.043851][T19515]  generic_perform_write+0x33a/0x5b0
[  864.049130][T19515]  ? grab_cache_page_write_begin+0x90/0x90
[  864.054926][T19515]  ? file_remove_privs+0x610/0x610
[  864.060062][T19515]  ? down_write+0x10e/0x170
[  864.064595][T19515]  __generic_file_write_iter+0x243/0x4f0
[  864.070255][T19515]  generic_file_write_iter+0xa7/0x1b0
[  864.075630][T19515]  vfs_write+0xacf/0xe50
[  864.079891][T19515]  ? file_end_write+0x250/0x250
[  864.085301][T19515]  ? __fget_files+0x413/0x480
[  864.091829][T19515]  ? __fdget_pos+0x1eb/0x2b0
[  864.097237][T19515]  ? ksys_write+0x77/0x2c0
[  864.101869][T19515]  ksys_write+0x1a2/0x2c0
[  864.106379][T19515]  ? print_irqtrace_events+0x210/0x210
[  864.112329][T19515]  ? __ia32_sys_read+0x80/0x80
[  864.117352][T19515]  ? syscall_enter_from_user_mode+0x2e/0x230
[  864.123720][T19515]  ? lockdep_hardirqs_on+0x94/0x130
[  864.129089][T19515]  ? syscall_enter_from_user_mode+0x2e/0x230
[  864.135340][T19515]  do_syscall_64+0x3d/0xb0
[  864.140106][T19515]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  864.146104][T19515] RIP: 0033:0x7f768c93682f
[  864.150784][T19515] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  864.172170][T19515] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  864.180878][T19515] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  864.189405][T19515] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  864.197603][T19515] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  864.205582][T19515] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
17:15:54 executing program 0:
openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000001c0)='./cgroup.net/syz0\x00', 0x200002, 0x0)

17:15:54 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x8000000})

17:15:54 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0x0, 0x0, 0x0, 0x4]}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
io_setup(0x4, &(0x7f0000000000)=<r2=>0x0)
r3 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000b00), 0x4d2703, 0x0)
io_cancel(r2, &(0x7f0000000100)={0x0, 0x0, 0x0, 0xd, 0x1ff, 0xffffffffffffffff, &(0x7f0000000180)="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", 0xffffffdc, 0x4, 0x0, 0x2, r3}, &(0x7f0000000140))
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$int_in(r4, 0x5452, &(0x7f0000000300))
bind$inet6(r4, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
sendto$inet6(r4, 0x0, 0x1e, 0x2200c851, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c)
poll(&(0x7f0000000040)=[{r4}], 0x1, 0x800)
sendto$inet6(r4, &(0x7f0000000080)="44f9b108b1cdc885c9c533d21f474bec8bfef1df1e2da71e578dc6b91d09f7ab15378571d8e27546090011006e75436914ab717528ee4b7a9beaf908d11137c11903064e83b4951f4d433a5404970c85d92d7083fd38844cbb0c6c5eb508ddc2dc7a590aa7941b1e9eeb5a688138dea09b776cbfa784cbf550bf3074fb0d775da4df5a3f48bbdf452eeb6b923da9d0e25b80f76a873664b5753444fe05f33e5f91045540836c3cd6af10f0cd018f0c6f57f926ac959a5628c45088fbe0c87fbe6cbcda4662d2a12f6d00"/215, 0xd0d0c2ac, 0x1, 0x0, 0x0)
shutdown(r4, 0x1)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000001780)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, <r5=>0x0}})
ioctl$BTRFS_IOC_GET_DEV_STATS(r4, 0xc4089434, &(0x7f0000000640)={r5, 0xd, 0x0, [0x10001, 0x77a6, 0x401, 0x400], [0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe141, 0x0, 0x0, 0x1, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc043, 0x0, 0x0, 0x0, 0x1000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb062, 0x0, 0x0, 0x0, 0x10, 0x100000001, 0x0, 0x1, 0x0, 0x9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x8, 0x3, 0x0, 0x0, 0x5, 0x0, 0x800, 0x0, 0xfffffffffffffffd, 0x6, 0x9, 0x0, 0x0, 0x4005]})
ioctl$BTRFS_IOC_BALANCE_V2(r3, 0xc4009420, &(0x7f0000000340)={0x0, 0x5, {0x1aad, @struct={0x7, 0x800}, 0x0, 0x80, 0x5, 0x8, 0x8, 0x8000, 0x49, @usage=0x1, 0x7, 0x4, [0x8, 0x49f, 0xffff, 0x234, 0xfffffffffffffff8, 0xd9]}, {0x2, @struct={0x0, 0x401}, 0x0, 0x2, 0x200, 0xffffffffffff9354, 0xffffffffffffff80, 0x500000, 0x80, @struct={0x48e, 0x3}, 0x7f, 0x5, [0x3ff, 0x800, 0x4, 0x6, 0x5, 0x7f]}, {0x7ff, @struct={0x4, 0x6}, r5, 0x1, 0x6, 0x9, 0x3, 0x7e43b80b, 0x0, @struct={0x5, 0x100}, 0x5, 0xfffffffd, [0x2, 0x3, 0x2, 0x0, 0xdd33, 0x100000001]}, {0x3f, 0x9, 0x9}})
ioctl$BTRFS_IOC_DEV_INFO(r0, 0xd000941e, &(0x7f0000000800)={r5, "98326989783e9447bb8dd325a02ec04f"})
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

[  864.213634][T19515] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  864.221705][T19515]  </TASK>
[  864.224913][    C1] vkms_vblank_simulate: vblank timer overrun
17:15:54 executing program 3:
socketpair(0xa, 0x1, 0x0, &(0x7f0000000100))

17:15:54 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 53)

[  864.270510][T19519] input: syz1 as /devices/virtual/input/input173
17:15:54 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x9000000})

17:15:54 executing program 0:
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000100)=ANY=[@ANYBLOB="12014000246b9f4013206104ecee1b7b2a010902fcff0000000000090400000113ac820009058301"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000f00)={0x2c, &(0x7f0000000cc0)={0x0, 0x0, 0x1, "b6"}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000001100)={0x2c, &(0x7f0000000d80), 0x0, 0x0, 0x0, 0x0})

[  864.415862][T19529] FAULT_INJECTION: forcing a failure.
[  864.415862][T19529] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  864.457137][T19529] CPU: 0 PID: 19529 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  864.465773][T19529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  864.476018][T19529] Call Trace:
[  864.479321][T19529]  <TASK>
[  864.482256][T19529]  dump_stack_lvl+0x1e3/0x2cb
[  864.486965][T19529]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  864.492659][T19529]  ? panic+0x84d/0x84d
[  864.496758][T19529]  should_fail+0x38a/0x4c0
[  864.501187][T19529]  prepare_alloc_pages+0x1db/0x5b0
[  864.506322][T19529]  __alloc_pages+0x14f/0x700
[  864.510927][T19529]  ? __rmqueue_pcplist+0x2030/0x2030
[  864.516209][T19529]  ? __lock_acquire+0x1295/0x1ff0
[  864.521241][T19529]  alloc_pages_vma+0x39a/0x800
[  864.526310][T19529]  ? mpol_shared_policy_lookup+0x144/0x1e0
[  864.534838][T19529]  shmem_alloc_and_acct_page+0x4d1/0xd10
[  864.540567][T19529]  ? shmem_swapin_page+0x22f0/0x22f0
[  864.545945][T19529]  ? xas_descend+0x219/0x3a0
[  864.550667][T19529]  ? xas_load+0x128/0x140
[  864.555114][T19529]  ? pagecache_get_page+0xd23/0x1010
[  864.560417][T19529]  ? page_cache_prev_miss+0x500/0x500
[  864.565849][T19529]  ? do_raw_spin_unlock+0x137/0x8b0
[  864.571071][T19529]  ? _raw_spin_unlock_irq+0x1f/0x40
[  864.576258][T19529]  ? lockdep_hardirqs_on+0x94/0x130
[  864.581449][T19529]  shmem_getpage_gfp+0x17b1/0x3190
[  864.586567][T19529]  ? shmem_getpage+0xa0/0xa0
[  864.591153][T19529]  ? fault_in_safe_writeable+0x250/0x250
[  864.596956][T19529]  shmem_write_begin+0xce/0x1a0
[  864.601812][T19529]  generic_perform_write+0x2bf/0x5b0
[  864.607115][T19529]  ? grab_cache_page_write_begin+0x90/0x90
[  864.613083][T19529]  ? file_remove_privs+0x610/0x610
[  864.618183][T19529]  ? down_write+0x10e/0x170
[  864.622817][T19529]  __generic_file_write_iter+0x243/0x4f0
[  864.628461][T19529]  generic_file_write_iter+0xa7/0x1b0
[  864.634256][T19529]  vfs_write+0xacf/0xe50
[  864.638504][T19529]  ? file_end_write+0x250/0x250
[  864.643365][T19529]  ? __fget_files+0x413/0x480
[  864.648036][T19529]  ? __fdget_pos+0x1eb/0x2b0
[  864.652613][T19529]  ? ksys_write+0x77/0x2c0
[  864.657105][T19529]  ksys_write+0x1a2/0x2c0
[  864.661447][T19529]  ? print_irqtrace_events+0x210/0x210
[  864.666928][T19529]  ? __ia32_sys_read+0x80/0x80
[  864.671702][T19529]  ? syscall_enter_from_user_mode+0x2e/0x230
[  864.677788][T19529]  ? lockdep_hardirqs_on+0x94/0x130
[  864.682990][T19529]  ? syscall_enter_from_user_mode+0x2e/0x230
[  864.689061][T19529]  do_syscall_64+0x3d/0xb0
[  864.693510][T19529]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  864.699445][T19529] RIP: 0033:0x7f768c93682f
[  864.703860][T19529] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  864.711360][ T7940] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  864.723497][T19529] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  864.723526][T19529] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  864.723538][T19529] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  864.723550][T19529] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  864.723561][T19529] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  864.723571][T19529] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  864.723597][T19529]  </TASK>
17:15:55 executing program 1:
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f00000065c0)={0xffffffffffffffff, 0x0, 0x0}, 0x20)

17:15:55 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0xa000000})

17:15:55 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f000000a2c0)={'sit0\x00', &(0x7f000000a200)={'sit0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @dev}}}})

17:15:55 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 54)

[  865.063361][T19538] FAULT_INJECTION: forcing a failure.
[  865.063361][T19538] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  865.076627][T19538] CPU: 1 PID: 19538 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  865.085242][T19538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  865.095305][T19538] Call Trace:
[  865.098600][T19538]  <TASK>
[  865.101637][T19538]  dump_stack_lvl+0x1e3/0x2cb
[  865.107811][T19538]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  865.113462][T19538]  ? panic+0x84d/0x84d
[  865.117563][T19538]  ? shmem_getpage_gfp+0x2b48/0x3190
[  865.122875][T19538]  should_fail+0x38a/0x4c0
[  865.127316][T19538]  copy_page_from_iter_atomic+0x451/0x1230
[  865.133162][T19538]  ? pipe_zero+0x4f0/0x4f0
[  865.137609][T19538]  generic_perform_write+0x33a/0x5b0
[  865.142922][T19538]  ? grab_cache_page_write_begin+0x90/0x90
[  865.148740][T19538]  ? file_remove_privs+0x610/0x610
[  865.153871][T19538]  ? down_write+0x10e/0x170
[  865.158397][T19538]  __generic_file_write_iter+0x243/0x4f0
[  865.164046][T19538]  generic_file_write_iter+0xa7/0x1b0
[  865.169426][T19538]  vfs_write+0xacf/0xe50
[  865.173699][T19538]  ? file_end_write+0x250/0x250
[  865.178572][T19538]  ? __fget_files+0x413/0x480
[  865.183271][T19538]  ? __fdget_pos+0x1eb/0x2b0
[  865.187875][T19538]  ? ksys_write+0x77/0x2c0
[  865.192314][T19538]  ksys_write+0x1a2/0x2c0
[  865.196670][T19538]  ? print_irqtrace_events+0x210/0x210
[  865.202146][T19538]  ? __ia32_sys_read+0x80/0x80
[  865.206898][T19538]  ? syscall_enter_from_user_mode+0x2e/0x230
[  865.212879][T19538]  ? lockdep_hardirqs_on+0x94/0x130
[  865.218060][T19538]  ? syscall_enter_from_user_mode+0x2e/0x230
[  865.224029][T19538]  do_syscall_64+0x3d/0xb0
[  865.228433][T19538]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  865.234309][T19538] RIP: 0033:0x7f768c93682f
[  865.238712][T19538] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  865.258303][T19538] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  865.266792][T19538] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  865.275140][T19538] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  865.283093][T19538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  865.291080][T19538] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  865.299035][T19538] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  865.306997][T19538]  </TASK>
17:15:55 executing program 3:
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0})
sched_setattr(0x0, &(0x7f0000000040)={0x73}, 0x0)

17:15:55 executing program 3:
setsockopt$SO_J1939_SEND_PRIO(0xffffffffffffffff, 0x6b, 0x3, &(0x7f0000000000)=0x4, 0x4)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
ioctl$SNDRV_TIMER_IOCTL_TREAD(0xffffffffffffffff, 0x40045402, &(0x7f0000000040))
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x23, &(0x7f0000000180)={&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, &(0x7f0000000080)=""/81, 0x51, 0x1e551d45daa2608b, 0x0}, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x10, 0x4)

17:15:55 executing program 3:
openat$procfs(0xffffffffffffff9c, &(0x7f0000000580)='/proc/sysvipc/shm\x00', 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/tty/ldiscs\x00', 0x0, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
read$FUSE(r0, &(0x7f0000000bc0)={0x2020}, 0x7ffff000)
r1 = open(&(0x7f0000000780)='./bus\x00', 0x14117e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x4002011, r1, 0x0)
creat(0x0, 0x0)

[  865.310045][    C1] vkms_vblank_simulate: vblank timer overrun
17:15:55 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
dup(r0) (async)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0x0, 0x0, 0x0, 0x4]}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
io_setup(0x4, &(0x7f0000000000)) (async)
io_setup(0x4, &(0x7f0000000000)=<r2=>0x0)
r3 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000b00), 0x4d2703, 0x0)
io_cancel(r2, &(0x7f0000000100)={0x0, 0x0, 0x0, 0xd, 0x1ff, 0xffffffffffffffff, &(0x7f0000000180)="b32c84fe280474be7c3ea1caba2a1d550500dcc90c0f6d9a15ea4fad0e530be353b45042a326a09c64d64d008847f1c966a737759a32830222a61a1e39d3a5ffc3c766a8e804032cd39428391c4bcab546cf22dc5638e9d5d9d59da9e0e3c3b5b1132dc976473bd3f3107f835dc66dc2fd4606cfcef24ef1de9cf8e69499fe5f6446b299ac0e053592a24a5115f40ab9a09d96992030ec14c8e70fe58d6ebf28b1cd5754d2b38dc079f4380ee7bfde91776802eb951545e9417e596c41a5c9cf8a6f5e3d62b4a192326c3335b6b133fa65207aaf04d9eb6f38387f68d8150807beeb32c7f7dc4b2b657eaa9bbf6e1b8957e6d78c05688b321778fdf185269986e3f2288d0bd1de0076c6e9d8cc2511f99e245b17a5857de61abca086857f3a1385b59448a34880502a5e73e65c8d14da09197b08777e0164aa5976a6328b6ef7e9a21b9753218e696d8a3c801e8ef1f0a58844fc1890c11cba2b239030dbbec4ac91c4a2c318c689f03872259fd5247089041562005aaa7c390329f0c333d1599d42da771c609251cb9f3ce29afee1f24aab17f0363ec91abab485b251f882e305b9add9ff3eaf8d74d5", 0xffffffdc, 0x4, 0x0, 0x2, r3}, &(0x7f0000000140))
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$int_in(r4, 0x5452, &(0x7f0000000300))
bind$inet6(r4, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c) (async)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
sendto$inet6(r4, 0x0, 0x1e, 0x2200c851, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c)
poll(&(0x7f0000000040)=[{r4}], 0x1, 0x800)
sendto$inet6(r4, &(0x7f0000000080)="44f9b108b1cdc885c9c533d21f474bec8bfef1df1e2da71e578dc6b91d09f7ab15378571d8e27546090011006e75436914ab717528ee4b7a9beaf908d11137c11903064e83b4951f4d433a5404970c85d92d7083fd38844cbb0c6c5eb508ddc2dc7a590aa7941b1e9eeb5a688138dea09b776cbfa784cbf550bf3074fb0d775da4df5a3f48bbdf452eeb6b923da9d0e25b80f76a873664b5753444fe05f33e5f91045540836c3cd6af10f0cd018f0c6f57f926ac959a5628c45088fbe0c87fbe6cbcda4662d2a12f6d00"/215, 0xd0d0c2ac, 0x1, 0x0, 0x0) (async)
sendto$inet6(r4, &(0x7f0000000080)="44f9b108b1cdc885c9c533d21f474bec8bfef1df1e2da71e578dc6b91d09f7ab15378571d8e27546090011006e75436914ab717528ee4b7a9beaf908d11137c11903064e83b4951f4d433a5404970c85d92d7083fd38844cbb0c6c5eb508ddc2dc7a590aa7941b1e9eeb5a688138dea09b776cbfa784cbf550bf3074fb0d775da4df5a3f48bbdf452eeb6b923da9d0e25b80f76a873664b5753444fe05f33e5f91045540836c3cd6af10f0cd018f0c6f57f926ac959a5628c45088fbe0c87fbe6cbcda4662d2a12f6d00"/215, 0xd0d0c2ac, 0x1, 0x0, 0x0)
shutdown(r4, 0x1) (async)
shutdown(r4, 0x1)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000001780)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, <r5=>0x0}})
ioctl$BTRFS_IOC_GET_DEV_STATS(r4, 0xc4089434, &(0x7f0000000640)={r5, 0xd, 0x0, [0x10001, 0x77a6, 0x401, 0x400], [0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe141, 0x0, 0x0, 0x1, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc043, 0x0, 0x0, 0x0, 0x1000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb062, 0x0, 0x0, 0x0, 0x10, 0x100000001, 0x0, 0x1, 0x0, 0x9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x8, 0x3, 0x0, 0x0, 0x5, 0x0, 0x800, 0x0, 0xfffffffffffffffd, 0x6, 0x9, 0x0, 0x0, 0x4005]})
ioctl$BTRFS_IOC_BALANCE_V2(r3, 0xc4009420, &(0x7f0000000340)={0x0, 0x5, {0x1aad, @struct={0x7, 0x800}, 0x0, 0x80, 0x5, 0x8, 0x8, 0x8000, 0x49, @usage=0x1, 0x7, 0x4, [0x8, 0x49f, 0xffff, 0x234, 0xfffffffffffffff8, 0xd9]}, {0x2, @struct={0x0, 0x401}, 0x0, 0x2, 0x200, 0xffffffffffff9354, 0xffffffffffffff80, 0x500000, 0x80, @struct={0x48e, 0x3}, 0x7f, 0x5, [0x3ff, 0x800, 0x4, 0x6, 0x5, 0x7f]}, {0x7ff, @struct={0x4, 0x6}, r5, 0x1, 0x6, 0x9, 0x3, 0x7e43b80b, 0x0, @struct={0x5, 0x100}, 0x5, 0xfffffffd, [0x2, 0x3, 0x2, 0x0, 0xdd33, 0x100000001]}, {0x3f, 0x9, 0x9}})
ioctl$BTRFS_IOC_DEV_INFO(r0, 0xd000941e, &(0x7f0000000800)={r5, "98326989783e9447bb8dd325a02ec04f"})
ioctl$UI_DEV_DESTROY(r1, 0x4004556a) (async)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

17:15:55 executing program 1:
syz_open_dev$dri(&(0x7f000000aa00), 0x7fff, 0x0)

17:15:55 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0xb000000})

17:15:55 executing program 3:
openat$procfs(0xffffffffffffff9c, &(0x7f0000000580)='/proc/sysvipc/shm\x00', 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/tty/ldiscs\x00', 0x0, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
read$FUSE(r0, &(0x7f0000000bc0)={0x2020}, 0x7ffff000)
r1 = open(&(0x7f0000000780)='./bus\x00', 0x14117e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x4002011, r1, 0x0)
creat(0x0, 0x0)

[  865.381738][ T7940] usb 1-1: config index 0 descriptor too short (expected 65532, got 27)
[  865.390104][ T7940] usb 1-1: config 0 has an invalid interface number: 0 but max is -1
[  865.399135][ T7940] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 0
[  865.408192][ T7940] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  865.475810][T19554] input: syz1 as /devices/virtual/input/input174
[  865.581624][ T7940] usb 1-1: New USB device found, idVendor=2013, idProduct=0461, bcdDevice=ee.ec
[  865.590686][ T7940] usb 1-1: New USB device strings: Mfr=27, Product=123, SerialNumber=42
[  865.599628][ T7940] usb 1-1: Product: syz
[  865.604088][ T7940] usb 1-1: Manufacturer: syz
[  865.608767][ T7940] usb 1-1: SerialNumber: syz
[  865.615663][ T7940] usb 1-1: config 0 descriptor??
[  865.653978][ T7940] em28xx 1-1:0.0: New device syz syz @ 480 Mbps (2013:0461, interface 0, class 0)
[  865.668037][ T7940] em28xx 1-1:0.0: Audio interface 0 found (Vendor Class)
[  866.294899][ T7940] em28xx 1-1:0.0: unknown em28xx chip ID (0)
[  866.332382][ T7940] em28xx 1-1:0.0: Config register raw data: 0xfffffffb
[  867.021437][ T7940] em28xx 1-1:0.0: Unknown AC97 audio processor detected!
[  867.041519][ T7940] em28xx 1-1:0.0: couldn't setup AC97 register 2
[  867.061478][ T7940] em28xx 1-1:0.0: couldn't setup AC97 register 4
[  867.081518][ T7940] em28xx 1-1:0.0: couldn't setup AC97 register 6
[  867.101504][ T7940] em28xx 1-1:0.0: couldn't setup AC97 register 54
[  867.121813][ T7940] em28xx 1-1:0.0: couldn't setup AC97 register 56
[  867.143883][ T7940] usb 1-1: USB disconnect, device number 17
17:15:58 executing program 0:
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)

17:15:58 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$eJzs3V1oXOl5B/Dn1ZHWkrdpZjebzYdzMbCBbL3ZRbK8axVvQI4VkQXjNSsrFwsFjS3ZHVZfluTiDSVVIaGEtMUlF7msYRNor+qrFpYG3KttCAFRKJRCi9tuzPZuEpq25CIKZ+YdaaSVLcWWJdn7+xn7P3PmOTPvmdUzc4523jkBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAER8+Sun+gfSPQp69nAwAMCeODv2Rv/gvd7/AYDHzvntjv8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAiRRHfjBTvfKeRJprXW3rP1GevXhsfGd16tb4UKbqiaNaXf3sHjg0ef/mVE0PtvPf6u+0z8frY+VPV03Mz8wtTi4tTk9Xx2frFucmpHd/Dg66/2dHmE1Cdeevq5KVLi9VjLw1uuPla5c6hJ5+tnBw6Mvhmu3Z8ZHR0rKOmu+e+H/1D0u7dFY+RJ6KIr0aK9178INUioisevBe2ee142Pqiu+y/5kaMj4w2N2S6XptdKm9MXbmqO6LSsdJwu0f2oBcfyHDEcvnfqRzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGW25PJbpiKEXMR0Sj2O/Bc9D0RBHHI8WdnzfShYgo2n3wwtmxN/oHt7+D7j0Y5BZWV1f/qFJErMQj0LNwQB2KIv4iUnx3oj8u5nZuts37EV8o89WIK2XeSnE9X0/lC8RQxM+8n8AjrTuK+EmkmEuNNNnu/eZ+5ZmvVV+bvTTXUdver3zkjw/2kn0TDrDeKOJCc4+/ke7/l10AAAAAAAAAAAAAwN4o4t1IcXPm+TQfnXNK67OXq+drF6Zbnwpuf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZ5j0BAAAAAAAAAAAAAAAAAACwy/qiiNFIceOdP2ieVzqa56X/+MmhsyPPdJ4z/lPb3E9Z+1JEvBs7OydvTz7XeOoq/+z+dgHb640ivpHP//fH+z0YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgQOiKIr4ZKb73i0aKFBHDERPRytvFfo8OAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACj1piJOR4r//kpv8/pKRHw2In61Wv6J+P/VzfZ7xAAAAAAAAAAAAAAAAAAAAPAYSkVciRTff6+RKhFxrXLn0JPPVk4OHRl8s4giUlnSWf/62PlT1dNzM/MLU4uLU5PV8dn6xbnJqZ0+XO+Z+uzVa+Mjow9lY7bV95DH39d7em7+7YX65d9f2vL2w72nLiwuLdQubn1z9EV3RH/nkqPNAY+PjDYHPV2vzTZXTV13GWB3RHWnGwMAAAAAAAAAAAAAAAAAAMCBcTgVMRIpnvvh8dSeN97dmvP/sda1Yq32B3+4/l0A05uyrfP7A9Yvtyerb14++Gba6UCPNifeV8dHRkfHOhZ393y4tBxTSkV8MlIc+ftPN+fDpzi85dz4su5PI8XQL4/nusqRsm54Q1Xv0fGR0erZudkXT01Pz12s9dUuTE9Vx+ZrF3f8xQEAAAAAAAAAAAAAAAAAAABwD4dTEX8WKY6/tpLa553P8/+7W9c65v+/GtGeyd+bNuaa5tz+327O7W9d/vjJodeOPXe35Q9j/n85ppSK+FWkeOovP908n357/n//ptqy7vuR4iff+lyu63qirBtob07rHi/Vp6f6y9oXIsW3z7Vro1n7Sq79xHrtQFn7D5Hi6d/bWHsi1z6zXnusrL0TKUbPbl37yfXawbK2L1J88U+q7drDZe2Xc+2z67UvXZybntzp08tHU9n//x4pPj/w1dT+mb9r/3d8/8fyplzzoZ6/9+Xd6v9Kx7Ll3Neruf8Htun/K5Hiz69/Lte1eu9Yvv2p5r/r/f/tSPE7H9tY+3KufXq9dmCnmwX7qez/H0WKldv/svYzn/s/d9Z6h3b2/2e7N2Z7v2DH/f9vu9v/T3Usq+RxDf6GzwV81Cy+/fW3atPTUwsuuLBrF5bjQAzDhQe4sN+vTMDDVu7//2+k+NKVIrWPY/P+/2+1rq0f///fN9b3/09uyjX7dPz/dMeyk/mopac7ondpZr7nUxG9i29//cX6TO3y1OWp2cHBoRO/e3zg2ImBnifaB/frl3b83MGjruz/tyLFD/7mn9Z+j73x+H/r3/8d3pRr7rP/f/nX2wx0m/7/ROc2bTiu+c2eD/goKfv/ryLFv974YO3/N93r93/t3/M9/9zG7GsX7dP7/zMdy6r5n6GOZc8XEad2+lgAAAAAAAAAAPCIOJyK+GGk+NvGP66d837j53/i8+3azs//3c3W5//f4vLKPz+08/8DAPdWvv+PRYofH/5ian+HzE4+/z+5Kdfs0+d/n+1YNrlH85p3/CQDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMB9SlHEoUjxznca6XZRXm/pPVOfvXptfGR069XenYuIriia9eXf3oFjg8dffuXEUDvvvf5u+0y8Pnb+VPX03Mz8wtTi4tRkdXy2fnFucmrH9/Cg6292tPkEVGfeujp56dJi9dhLgxtuvla5c+jJZysnh44MvtmuHR8ZHR3rqOnuue9H/5C0e3fFY+SJKOLHkeK9Fz9I/1GUPX23XljecS9s89rxsPVFd9l/zY0YHxltbsh0vTa7VN6YunJVd0SlY6Xhdo/sQS8+kOGI5fK1txzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGm370P1GJrhhKEfMR0Sj2e/AcND1RxN9Fijs/b6T/LCKKdh+8cHbsjf7B7e+gew8GeZeHrRQRK/EI9CwcUIeiiGcixXcn+uO/ilZfNdvm/YgvlPlqxJUyb6W4nq+n8gViKOJn3k/gkdYdRZyLFHOpkd4vcu839yvPfK362uyluY7a9n7lgx4r7/vxwV6yb8IB1htF/LS5x99IP/V+DgAAAAAAAAAAAAAHXBFfihQ3Z55Pzfmha3NK67OXq+drF6ZbH+tvf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZPicNAAAAAAAAAAAAAAAAAMBD0hVFfCtSfO8XjbRatM4vOxGtvG2eKzzWfh0AAP//5UVOig==") (fail_nth: 55)

17:15:58 executing program 1:
syz_mount_image$btrfs(&(0x7f0000005100), &(0x7f0000000000)='./bus\x00', 0x80, &(0x7f0000000040)={[{@ref_verify}, {@nossd}, {@inode_cache}, {@compress_force}, {@space_cache_v2}, {}, {@noacl}]}, 0x5, 0x50ef, &(0x7f0000005140)="$eJzs3U+IVWUfB/Dnzjg6KDjXnbp48QW3wiQKRURDaFaYc82CosVMLYIQYVAwFy3EgpIWDgha4cJgWmR/nFVFC3GVBEEQBcEgzEKQdkIxGC6Ke8957pz7HO+5dyZ1TD+fmDnnOb/zPOeZy1nc783n3AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAhhJNz585V1bdemTm7Y2DP1Us3T+w8NTE6H0KtdbyW1yeeeuaFNw5MPD8cO0zuz7b1erchs67zWWN1x8Fmv86f10IIQ8kAg/l292Bp1OLu4fKAlfZfXNh25NbeXTPHxg9dOLp5qvyn0zS80hNYKfl9dW3xXhpr/R5Izmi3C7dereMWzfqnN9w9+SMAgCUZbbQ27bej+Vvcdvt4Wk/aY0l7OmnHdwjTxcZyZOOu7jbPLWl9heY5lkWFNd3mWU/q+evfbjeSekjbnVFjCfPsPDWPNMPd5jmV1FdqngAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD3k6c/+eJ6VX3rlZmzOwb2XL1088TOUxOj8yHUW8drWbn2xMLcwqa3dj/63e4vP/6zPn5yMO8Xt6sKJ4ff4s5jIyG8Xqhci8P+vj6ERmeh1QwflQtvtnaejQUAAAAeJJtavwfa7SwODnW0a600WWv9F2Vhcf/FhW1Hbu3dNXNs/NCFo5unlj9eo8t4Y7cdr92uL/7UCsE4xt90vMV6PPVwaZxq6Yhpnn959MPtVf1L+b9enf/jKyf/AwAA8G/I/+k41Xrl//nPX91X1b+U/7d0XLKU/+OMY/4fCMvL/wAAAHA/u9v5f6w0TrVe+f/r9/edrupfyv+j/eX/VcVpx4M/xgkfHAlhtNfUAQAAgC7i/3df/Ggh5vXsk4M0r7+49fpQ1Xil/D/WX/6vHBQAAAC4p34488jfVfVS/m/0l//X3NVZAwAAAEvxv/cmD1TVS/l/sr/8vzbf5isfsk7fx3+FcHokhOHmzlRWuBKmn2wXAAAAgDsk5vSXvt18tOq8Uv6fqn7+f3zSQVz/3/H8v9L6/0Ihe+rf4x4MAAAAwMOovJ4/Ph4/++aCbt+/3+/6/09//nVD1fVL+f94f/l/sLi9k9//BwAAAMvwX/v+v1dK41Tr9fz/t9/dsLT8P91f/o/bdcU/73J8fd4ZCWFjcyd/muBn8XIHk8LsUKHQ0kh6HIg98sLsmkKhZSrpsX0khP83d44nhQ2xMJ0UbqzPC+eTwk+xkN8P7cJXSeFyvNPOrM+nmxa+iYV8gcVsXEGxrr0kIunxR7cezcJte8y1Lw4AAPBQieE5z7JDnc2QRtnZWq8T1vY6YaDXCYO9TliVnJCe2O14mOwsxON//TL+XKhQyv/n+8v/8aVYnW26rf8Pcf1//r2G7fX/k7FQTwqzsdBInxjQiNfIwu4H8Rr1Rt7jxsZ2AQAAAB5o8XOBwRWeBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPAPe/ceY8dVHw787PPurte7G4KUhyJiXob8JK/XdhysX0A4qSIQSMlaRP0HhayxN6njDTZ+FBxZqmNQUYoQLrgiCn3YElGdSiCrtOURSiyqBKFaNII2fxji0gJClaAoxXWJgurq3pkzO/fM3ocfa3vD5yN577n3e86ZOefeO54zM/cMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD8drj2azd/pl38Td/+wudu7X3Xi9/89cH1n75/6kchTDde78nCPe84+4OzN3zkrg1fv+uLT5yZuOexwbxcHg/L6n968ycfj7X+ZHkIX+kJoT8NrBrNAgP589FY302jIVwT5gNFidmRrES64PDscAhHwnygqOprwyGMlgL3fu9bz3yqnjg8HMKbQwi1dBkv1rJlDKeBlYNZYCQN7OjPAv9zLlMEvtqbBeCixS9D8aE/Pt2cYWLhci0+fwOXbMWurLR5fTEx0TrfL+5Y5JUqGUxfmL6ot61SHYui8vU44du2BL5tlX4+5G0r70jleyjn5kO10Lt19oHNe+f2xFd6w+RkX6uaFul9PvXS/i3nk14yn8O4AhOX5HP40OHbXhj8wN2nn/jN0/vP1D5/08WuZqvuXWy1kH/mlsz7GG20PVkCX7/KXtIKO10hhDMnTu5vF6+M/yfaj//jxzk+9jbljrW+MpaNzeMrozHxy7FsbA4AAABLxlI4ajq44l9+3K6+yvh/RXfn/+Mp/3wwn7X2RAgbG4mPjYdwfeP1LPBUXNwHx0N4fSM13Ry4IwmcCOGGRuKWoqqkxFAssSIJ/GwsD2xMAs/FwHQSeDIGDiWBj8fA8SSwJQZOJIE7YyBsa27H/xvL29F1YDgGZrJOPB6vQvjVWFxa0lc/KKoCAAC4RPLR4UDz09K1DhebIQ4vjw93yhCvwG6ZoZbUkI5gi2FVyxr6O9XQ26mGot0H2je/UnNPp5orl2H0NGf471PX7QhtVMb/U+3H/7UFVqSncv4/TG1qPMTcvXlkrsgwM92UAQAAALgIv/famc3t4pXx/8burv+Px0T6SpnDyXgYYvt4CFPNgaza26uB7Kz3sjwAAAAAS0FxPr44F74tf8wu0U7H09X80+eZP57437hg/h3f/een261vZfw/3d31/yPNj9lKPBfX4rPjIQyVAt+Oa1kPNKyIgR+9szmQt/+52AGfjFXlFyYUVX0ylpiJgakkcKRVieeLEtc3B/I3q1j4x4p2bMtLlAIAAABw2cXDAfG8fLz+f83f/uGz7cpVxv8z53f9f2McXLm8f25ZCKv7Q+hLfxhwciSbGDAGRnvyxN+PZHX1pVUdHAnh9nrD0qr+PZ//vz+dY/D7w1lVMXD9G469tLKe+MJwCKvLgRfef3R9PbE3CRQL/93hEG6utzZd+N8NZQsfSBf++FAIrysFiqq2DIVQX9hgWtU/1PL7GKRVHa+FcG0pUFT1tloI+wIAS1X8v3Rr+cXd+x7ZvnlubnbXIibiQfzh8MC2udnJLTvmttZarNPWZJ2b5jF6tNqmbm9988M4R9F9x8a7SRc/FJwqLys/kF+5cjB/HneGBhrtXDvQ9HRd2uS3vrG6iFDalWrV5N5FbvJIuZL5N7FSf8w/GJaFob27Z3dNfnTznj271mR/u82+NvsbzzNlfbUm7auRhdati49Hy+myEhfaVyvLlaze8/DO1bv3PbJq28ObH5x9cPZDG6bWrd1w29T6t62uN2oq+9uhpSsXqjlp6bmjXTbrErb0xv5SJZdjoyEhIbHUEoMD95xqt/mpjP93th//x61O3PDn8zO0Ov8/EU/zZ6/Pn+afiYEj3Z7/n2h1Nr+4MGBFEjgQAwec5gcAAODVIR6OjEcz40HpA2958R3tylXG/we6+/3/JZr/v5i6/j2tpvm/JZaYajX/fzrNfzH//4FW8/+n0/wX8/8fuQLz/+8tAkmX/Mr8/wAAwKvB5Zv/v+P0/ukNAioZOk7vn94goJKh4zT+3d4g4Lzn//+bn69ZH9qojP8PdTf+N3E/AAAAXD2uu/Pm77aLV8b/R7ob/1/++f9Cq+v/V7QKTLeaGND8fwAAACxRreb/+977dr6zXbnK+P94d+P/eNlFb1PuWOsrY9mcdiGd0+6XY8VPBgAAAGBp6A2TkwNd5m2aGPWOC1/mqTgVaJt02aFPHDu/3/+f6G783/S7jIcO3/bC4AfuPv3KE795ev+Z2udvmj//DwAAACyebo9LAAAAAAAAAAAAAAAAV96T1355wXkBosrv/8Omxuutfv8f7/vXdNPEs/lkgAfizPqfHjfNHwAAACyux+54+fH478HP/NF/tstbGf9PdDf+j/cXyO+Dl91670S8/9/HxkNo3FpvIgs8FRf3wfEQXt9ITccS2Q313hNLTGWBp+KEibfEEjPTzVUNxcDxJPCzsTxwIgk8FwP5UYpj8caAfzwWwvpGalNziZ2xxEQSuCcGViSByRiYSgLLY2BjEvj58jwwnQT+MQbymw8WffXl5XlfAQAAnI98nDXQ/DSk47zj/Z0y9HTK0HERI50y9HbKUGuRIT7/67gOA+X5+PMM8aWBtNbhpJZKhngzvAtvejFd3/PNOdOClUX3xYITzTljhp3/dOtnQxuV8f+K7sb/F3j//0dPf+d/G4mLuP9/ejf/jTGwIgnsjIGNSWBmUx44cl1zwP3/AQAAuLq1uv//2Ov+6lC7cpXx/1R34/94IOK1TbljrZ3v/58/v/e9X9rXWOWTYyG8sRzYfnD7NfXEk2MhvKUceOa+Wxqj9oNpiW+cvvOn9cT9aeDdq15ztp54exKYiZ10QxqIR1XOLk8CsXu/nwZifxxPA4N54LHlWTt60r76j9Gsr3rSvjo1ml1e0ZP21VdGs2X0pA08nASKBn44DcQG3p0HetO1+tKybK1iYDQW/YtlxUUfAABcneJe4EB4YNvc7FT6E94b+5sfo6Zblj9arbany8X/MN6a/L5j492k+9J90VpR1UCo1ZuwprK7Ws7S02jlpamlQ9e9tkWTO93tvbdFudT5dt1g6xYNZy2a3LJjbutAx4av65xlbX/HLGsqg51ylt5Gl3ZRSxfr0kWLuuybLlY5Pu8Nk5N9Sa7/H4MToUmnT0S39+sr3+e/1aegnOfoJ/7t5Xb1Vcb/G7sb/8f2LAulj/PHY60/WR7CV3rmj0YUgVWjWSA2dzQOj28aDeGaUj8UJWZHshKDyYLDs8PZCHUwreprw9kxhvj83u9965lP1ROHh0N4c+m9KpbxYi1bxnAaWDmYBUbSwI7+LBCv/CgCX+3NAnDRio1C/EDlP3UpTCxcrsXn79VyT9C0eZVroBbIt9A2d7HU0hfya6oK5/e2VapjUVS+Hid825bity34tpV3pPI9lHPzoVro3Tr7wOa9c3viK+U92YpFep/Le6ndpC/B5/DAha9tZ7V0BaaSzcfUwuUW/hz2xOoeOnzbC4MfuPv0E795ev+Z2udv6no1WogDhWf/6zXXlLt3sdVC/plbctuT6YvZngy9WrYnS+5tm/DfQAjh0J8Pf7hdvDL+n+5u/N+fPDa8HDtz93gIby117snY/b8znm0HS4FsK3ltNZBdcv/jsZZbTgAAALjUisMdxfGCbflj9oPwdJxczT99nvnj8YqNC+bvdr33P/v7T7WLV8b/M+3H/0PJajr/7/w/i8T5/wVd7Yeih9IXDlzUoehKdSwK5/8XdLV/25z/X5Dz/87/L8T5/w4u7fn/V8325Gp/2yp7STvtdIUQzt048Hi7eGX8v7O78f9v2fz/6Wz+xfz/6aT9xfz/M63m/9/Zav7/A+b/BwAAFlWLiebTcV5lcv5KhnRy/kqGniTD+d9ioOM0+ub/T+f/P/hnt+8JbVTG/we6G//Hj8Noeemd5/8vpvm/ovP/T2xqUWLjpubVLQKHYmCnOwYAAABwBcUDBPGi925nmAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGBx3f3y2c3t4m/69hc+d2vvu1785q8Prv/0/VM/CmFb4/WeLNzzjrM/OHvDR+7a8PW7vvjEmYl7Hqvl5Qbyx5uacsdaXxkL4UjpldGY+OVY/cl84N73fmlffz1xciyEN5YD2w9uv6aeeHIshLeUA8/cd8t19cTBtMQ3Tt/503ri/jTw7lWvOVtPvD0P9KSr+6fLs9XtSVf3U8tDGC8FitV9aHlzVcUy3pUHetNl/OVotowYGI1FHx/NlhEDc7HEtqEQVveH0JdW9Z1aVlVfWtXXa1lVfWlVf1AL4fYQQn9a1b8OZlX1py1/fjCrKgauf8Oxl1bWE0cHQ1hdDrzw/qPr64ldSaBY+PsGQ7i5/pFJF/7lgWzhA+nC/2QghNeVAkVVMwMh1Bc2mFZ1oj+rajCt6ov9IVxbChRV3dofwr7AlRI3JFvLL+7e98j2zXNzs7sWMTGYL2s4PLBtbnZyy465rbVknVrpKaXPPXrhbf/hS/u3NBL3HRvvJl2s11R5XZ6frrxYft6fPx1otHPtQNPTdUulySPlSubfxEr9Mf9gWBaG9u6e3TX50c179uxak/3tNvva7G9fHs36as1S6auV5UpW73l45+rd+x5Zte3hzQ/OPjj7oQ1T69ZuuG1q/dtW1xs1lf29FC09evlbemN/qZLLsdGQkJBYaonepq3b1NW+Ha/s6M+v6ECoNTbQlWFFOUtPo5WXotF3XEBrc+fb6MqQpNKiNZWBQyXL2s5Z1lXGDPNZhrMsjX3ByuCwXFNvo0vj894wOdnXqh8mmp+Wu/cXF9G9p2LXdZkGAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/o8dOBAAAAAAAPJ/bYSqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqoq7MCBAAAAAACQ/2sjVFVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVWEHjgUAAAAAhPlbh9GzAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcCkAAP//AtvxeQ==")
r0 = open(0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000001840))
ioctl$BTRFS_IOC_INO_LOOKUP(r0, 0xc4009420, &(0x7f00000003c0))
r1 = open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r2 = open(0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_SNAP_CREATE(r2, 0x50009401, &(0x7f0000002180)={{r1}, "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"})
r3 = openat(0xffffffffffffff9c, &(0x7f0000001180)='./file0\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_SNAP_CREATE(0xffffffffffffffff, 0x50009401, &(0x7f0000001380)={{r3}, "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"})

17:15:58 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0xc000000})

17:15:58 executing program 3:
openat$procfs(0xffffffffffffff9c, &(0x7f0000000580)='/proc/sysvipc/shm\x00', 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/tty/ldiscs\x00', 0x0, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
read$FUSE(r0, &(0x7f0000000bc0)={0x2020}, 0x7ffff000)
r1 = open(&(0x7f0000000780)='./bus\x00', 0x14117e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x4002011, r1, 0x0)
creat(0x0, 0x0)

17:15:58 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0x0, 0x0, 0x0, 0x4]}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501) (async)
io_setup(0x4, &(0x7f0000000000)=<r2=>0x0)
r3 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000b00), 0x4d2703, 0x0)
io_cancel(r2, &(0x7f0000000100)={0x0, 0x0, 0x0, 0xd, 0x1ff, 0xffffffffffffffff, &(0x7f0000000180)="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", 0xffffffdc, 0x4, 0x0, 0x2, r3}, &(0x7f0000000140))
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$int_in(r4, 0x5452, &(0x7f0000000300)) (async)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
sendto$inet6(r4, 0x0, 0x1e, 0x2200c851, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c) (async, rerun: 64)
poll(&(0x7f0000000040)=[{r4}], 0x1, 0x800) (async, rerun: 64)
sendto$inet6(r4, &(0x7f0000000080)="44f9b108b1cdc885c9c533d21f474bec8bfef1df1e2da71e578dc6b91d09f7ab15378571d8e27546090011006e75436914ab717528ee4b7a9beaf908d11137c11903064e83b4951f4d433a5404970c85d92d7083fd38844cbb0c6c5eb508ddc2dc7a590aa7941b1e9eeb5a688138dea09b776cbfa784cbf550bf3074fb0d775da4df5a3f48bbdf452eeb6b923da9d0e25b80f76a873664b5753444fe05f33e5f91045540836c3cd6af10f0cd018f0c6f57f926ac959a5628c45088fbe0c87fbe6cbcda4662d2a12f6d00"/215, 0xd0d0c2ac, 0x1, 0x0, 0x0) (async, rerun: 64)
shutdown(r4, 0x1) (rerun: 64)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000001780)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, <r5=>0x0}})
ioctl$BTRFS_IOC_GET_DEV_STATS(r4, 0xc4089434, &(0x7f0000000640)={r5, 0xd, 0x0, [0x10001, 0x77a6, 0x401, 0x400], [0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe141, 0x0, 0x0, 0x1, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc043, 0x0, 0x0, 0x0, 0x1000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb062, 0x0, 0x0, 0x0, 0x10, 0x100000001, 0x0, 0x1, 0x0, 0x9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x8, 0x3, 0x0, 0x0, 0x5, 0x0, 0x800, 0x0, 0xfffffffffffffffd, 0x6, 0x9, 0x0, 0x0, 0x4005]})
ioctl$BTRFS_IOC_BALANCE_V2(r3, 0xc4009420, &(0x7f0000000340)={0x0, 0x5, {0x1aad, @struct={0x7, 0x800}, 0x0, 0x80, 0x5, 0x8, 0x8, 0x8000, 0x49, @usage=0x1, 0x7, 0x4, [0x8, 0x49f, 0xffff, 0x234, 0xfffffffffffffff8, 0xd9]}, {0x2, @struct={0x0, 0x401}, 0x0, 0x2, 0x200, 0xffffffffffff9354, 0xffffffffffffff80, 0x500000, 0x80, @struct={0x48e, 0x3}, 0x7f, 0x5, [0x3ff, 0x800, 0x4, 0x6, 0x5, 0x7f]}, {0x7ff, @struct={0x4, 0x6}, r5, 0x1, 0x6, 0x9, 0x3, 0x7e43b80b, 0x0, @struct={0x5, 0x100}, 0x5, 0xfffffffd, [0x2, 0x3, 0x2, 0x0, 0xdd33, 0x100000001]}, {0x3f, 0x9, 0x9}}) (async)
ioctl$BTRFS_IOC_DEV_INFO(r0, 0xd000941e, &(0x7f0000000800)={r5, "98326989783e9447bb8dd325a02ec04f"}) (async)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

[  867.546539][T19568] FAULT_INJECTION: forcing a failure.
[  867.546539][T19568] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  867.589316][T19565] input: syz1 as /devices/virtual/input/input175
[  867.601455][T19568] CPU: 0 PID: 19568 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  867.610177][T19568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  867.620245][T19568] Call Trace:
[  867.623533][T19568]  <TASK>
[  867.626469][T19568]  dump_stack_lvl+0x1e3/0x2cb
[  867.631162][T19568]  ? io_uring_drop_tctx_refs+0x19d/0x19d
17:15:58 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0xd000000})

[  867.636803][T19568]  ? panic+0x84d/0x84d
[  867.640886][T19568]  should_fail+0x38a/0x4c0
[  867.645314][T19568]  prepare_alloc_pages+0x1db/0x5b0
[  867.650536][T19568]  __alloc_pages+0x14f/0x700
[  867.655153][T19568]  ? __rmqueue_pcplist+0x2030/0x2030
[  867.660459][T19568]  ? __lock_acquire+0x1295/0x1ff0
[  867.665512][T19568]  alloc_pages_vma+0x39a/0x800
[  867.670292][T19568]  ? mpol_shared_policy_lookup+0x144/0x1e0
[  867.676118][T19568]  shmem_alloc_and_acct_page+0x4d1/0xd10
[  867.681769][T19568]  ? shmem_swapin_page+0x22f0/0x22f0
[  867.687085][T19568]  ? xas_descend+0x219/0x3a0
[  867.691693][T19568]  ? xas_load+0x128/0x140
[  867.696053][T19568]  ? pagecache_get_page+0xd23/0x1010
[  867.701352][T19568]  ? page_cache_prev_miss+0x500/0x500
[  867.706748][T19568]  ? do_raw_spin_unlock+0x137/0x8b0
[  867.711958][T19568]  ? _raw_spin_unlock_irq+0x1f/0x40
[  867.717170][T19568]  ? lockdep_hardirqs_on+0x94/0x130
[  867.722377][T19568]  shmem_getpage_gfp+0x17b1/0x3190
[  867.727619][T19568]  ? shmem_getpage+0xa0/0xa0
[  867.732220][T19568]  ? fault_in_safe_writeable+0x250/0x250
[  867.737875][T19568]  shmem_write_begin+0xce/0x1a0
[  867.742738][T19568]  generic_perform_write+0x2bf/0x5b0
[  867.748046][T19568]  ? grab_cache_page_write_begin+0x90/0x90
[  867.753866][T19568]  ? file_remove_privs+0x610/0x610
[  867.758992][T19568]  ? down_write+0x10e/0x170
[  867.763506][T19568]  __generic_file_write_iter+0x243/0x4f0
[  867.769158][T19568]  generic_file_write_iter+0xa7/0x1b0
[  867.774570][T19568]  vfs_write+0xacf/0xe50
[  867.778827][T19568]  ? file_end_write+0x250/0x250
[  867.784041][T19568]  ? __fget_files+0x413/0x480
[  867.788740][T19568]  ? __fdget_pos+0x1eb/0x2b0
[  867.793335][T19568]  ? ksys_write+0x77/0x2c0
[  867.797760][T19568]  ksys_write+0x1a2/0x2c0
[  867.802095][T19568]  ? print_irqtrace_events+0x210/0x210
[  867.807565][T19568]  ? __ia32_sys_read+0x80/0x80
[  867.812338][T19568]  ? syscall_enter_from_user_mode+0x2e/0x230
[  867.818336][T19568]  ? lockdep_hardirqs_on+0x94/0x130
[  867.823546][T19568]  ? syscall_enter_from_user_mode+0x2e/0x230
[  867.829537][T19568]  do_syscall_64+0x3d/0xb0
[  867.833969][T19568]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  867.839872][T19568] RIP: 0033:0x7f768c93682f
[  867.844299][T19568] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  867.864175][T19568] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  867.872613][T19568] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  867.880599][T19568] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
17:15:58 executing program 0:
openat$cachefiles(0xffffffffffffff9c, &(0x7f000000aa40), 0x4842, 0x0)

17:15:58 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0xe000000})

[  867.888597][T19568] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  867.896583][T19568] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  867.904562][T19568] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  867.912571][T19568]  </TASK>
17:15:58 executing program 0:
r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
fsconfig$FSCONFIG_SET_FD(r0, 0x5, &(0x7f0000000380)='[)!-^.(\x00', 0x0, 0xffffffffffffffff)

17:15:58 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 56)

17:15:58 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40800, 0x0)
ioctl$UI_GET_VERSION(r1, 0x8004552d, &(0x7f0000000080))
r2 = dup(r0)
write$uinput_user_dev(r2, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [], [], [], [0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe]}, 0x45c)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), r2)
sendmsg$ETHTOOL_MSG_RINGS_SET(r1, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x60, r3, 0x200, 0x70bd27, 0x25dfdbff, {}, [@ETHTOOL_A_RINGS_RX={0x8, 0x6, 0x1f}, @ETHTOOL_A_RINGS_RX={0x8}, @ETHTOOL_A_RINGS_RX_MINI={0x8, 0x7, 0x3ff}, @ETHTOOL_A_RINGS_RX={0x8, 0x6, 0x81}, @ETHTOOL_A_RINGS_RX={0x8, 0x6, 0x5}, @ETHTOOL_A_RINGS_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @ETHTOOL_A_RINGS_RX={0x8, 0x6, 0xb2f}, @ETHTOOL_A_RINGS_RX_JUMBO={0x8, 0x8, 0x4}]}, 0x60}}, 0x40000)
ioctl$UI_DEV_CREATE(r2, 0x5501)
ioctl$UI_DEV_DESTROY(r2, 0x4004556a)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r4, 0x0)
sendfile(r4, r1, &(0x7f0000000240)=0x3f, 0xff)

17:15:58 executing program 0:
recvfrom(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$can_raw(0x1d, 0x3, 0x1)
sendmsg$sock(0xffffffffffffffff, &(0x7f0000006900)={0x0, 0x0, 0x0}, 0x20040005)
syz_io_uring_submit(0x0, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$bt_hci(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_setup(0x5adc, &(0x7f000000ac80)={0x0, 0x2113, 0x80}, &(0x7f000000ad00), &(0x7f000000ad40))

17:15:58 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x10000000})

[  868.119226][T19587] input: syz1 as /devices/virtual/input/input176
[  868.149498][T19591] FAULT_INJECTION: forcing a failure.
[  868.149498][T19591] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  868.162817][T19591] CPU: 0 PID: 19591 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  868.171426][T19591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  868.181496][T19591] Call Trace:
[  868.184795][T19591]  <TASK>
[  868.187738][T19591]  dump_stack_lvl+0x1e3/0x2cb
[  868.192459][T19591]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  868.198197][T19591]  ? panic+0x84d/0x84d
[  868.202281][T19591]  ? shmem_getpage_gfp+0x2b48/0x3190
[  868.207590][T19591]  should_fail+0x38a/0x4c0
[  868.212027][T19591]  copy_page_from_iter_atomic+0x451/0x1230
[  868.217858][T19591]  ? pipe_zero+0x4f0/0x4f0
[  868.222296][T19591]  generic_perform_write+0x33a/0x5b0
[  868.227602][T19591]  ? grab_cache_page_write_begin+0x90/0x90
[  868.233443][T19591]  ? file_remove_privs+0x610/0x610
[  868.238575][T19591]  ? down_write+0x10e/0x170
[  868.243100][T19591]  __generic_file_write_iter+0x243/0x4f0
[  868.248753][T19591]  generic_file_write_iter+0xa7/0x1b0
[  868.254141][T19591]  vfs_write+0xacf/0xe50
[  868.258408][T19591]  ? file_end_write+0x250/0x250
[  868.263285][T19591]  ? __fget_files+0x413/0x480
[  868.267989][T19591]  ? __fdget_pos+0x1eb/0x2b0
[  868.272601][T19591]  ? ksys_write+0x77/0x2c0
[  868.277033][T19591]  ksys_write+0x1a2/0x2c0
[  868.281374][T19591]  ? print_irqtrace_events+0x210/0x210
[  868.286853][T19591]  ? __ia32_sys_read+0x80/0x80
[  868.291626][T19591]  ? syscall_enter_from_user_mode+0x2e/0x230
[  868.297621][T19591]  ? lockdep_hardirqs_on+0x94/0x130
[  868.302942][T19591]  ? syscall_enter_from_user_mode+0x2e/0x230
[  868.308943][T19591]  do_syscall_64+0x3d/0xb0
[  868.313377][T19591]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  868.319297][T19591] RIP: 0033:0x7f768c93682f
[  868.323720][T19591] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  868.343334][T19591] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  868.351764][T19591] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  868.359749][T19591] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  868.367724][T19591] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  868.375703][T19591] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  868.383681][T19591] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  868.391677][T19591]  </TASK>
17:15:59 executing program 1:
socket(0x2, 0x5, 0x7d)

17:15:59 executing program 3:
openat$procfs(0xffffffffffffff9c, &(0x7f0000000580)='/proc/sysvipc/shm\x00', 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/tty/ldiscs\x00', 0x0, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
read$FUSE(r0, &(0x7f0000000bc0)={0x2020}, 0x7ffff000)
r1 = open(&(0x7f0000000780)='./bus\x00', 0x14117e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x4002011, r1, 0x0)
creat(0x0, 0x0)

17:15:59 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x11000000})

17:15:59 executing program 0:
syz_mount_image$btrfs(&(0x7f0000005100), &(0x7f0000005140)='./bus\x00', 0x0, &(0x7f0000001180)={[{@user_subvol_rm}, {@noinode_cache}, {@inode_cache}, {@usebackuproot}, {@compress}, {@nodatacow}, {@nodatacow}]}, 0x1, 0x50ef, &(0x7f000000a2c0)="$eJzs3U+IVWUfB/Dnzjg6KDjXnbp48QW3wiQKRURDaFaYc82CosVMLYIQYVAwFy3EgpIWDgha4cJgWmR/nFVFC3GVBEEQBcEgzEKQdkIxGC6Ke8957pz7HO+5dyZ1TD+fmDnnOb/zPOeZy1nc783n3AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAhhJNz585V1bdemTm7Y2DP1Us3T+w8NTE6H0KtdbyW1yeeeuaFNw5MPD8cO0zuz7b1erchs67zWWN1x8Fmv86f10IIQ8kAg/l292Bp1OLu4fKAlfZfXNh25NbeXTPHxg9dOLp5qvyn0zS80hNYKfl9dW3xXhpr/R5Izmi3C7dereMWzfqnN9w9+SMAgCUZbbQ27bej+Vvcdvt4Wk/aY0l7OmnHdwjTxcZyZOOu7jbPLWl9heY5lkWFNd3mWU/q+evfbjeSekjbnVFjCfPsPDWPNMPd5jmV1FdqngAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD3k6c/+eJ6VX3rlZmzOwb2XL1088TOUxOj8yHUW8drWbn2xMLcwqa3dj/63e4vP/6zPn5yMO8Xt6sKJ4ff4s5jIyG8Xqhci8P+vj6ERmeh1QwflQtvtnaejQUAAAAeJJtavwfa7SwODnW0a600WWv9F2Vhcf/FhW1Hbu3dNXNs/NCFo5unlj9eo8t4Y7cdr92uL/7UCsE4xt90vMV6PPVwaZxq6Yhpnn959MPtVf1L+b9enf/jKyf/AwAA8G/I/+k41Xrl//nPX91X1b+U/7d0XLKU/+OMY/4fCMvL/wAAAHA/u9v5f6w0TrVe+f/r9/edrupfyv+j/eX/VcVpx4M/xgkfHAlhtNfUAQAAgC7i/3df/Ggh5vXsk4M0r7+49fpQ1Xil/D/WX/6vHBQAAAC4p34488jfVfVS/m/0l//X3NVZAwAAAEvxv/cmD1TVS/l/sr/8vzbf5isfsk7fx3+FcHokhOHmzlRWuBKmn2wXAAAAgDsk5vSXvt18tOq8Uv6fqn7+f3zSQVz/3/H8v9L6/0Ihe+rf4x4MAAAAwMOovJ4/Ph4/++aCbt+/3+/6/09//nVD1fVL+f94f/l/sLi9k9//BwAAAMvwX/v+v1dK41Tr9fz/t9/dsLT8P91f/o/bdcU/73J8fd4ZCWFjcyd/muBn8XIHk8LsUKHQ0kh6HIg98sLsmkKhZSrpsX0khP83d44nhQ2xMJ0UbqzPC+eTwk+xkN8P7cJXSeFyvNPOrM+nmxa+iYV8gcVsXEGxrr0kIunxR7cezcJte8y1Lw4AAPBQieE5z7JDnc2QRtnZWq8T1vY6YaDXCYO9TliVnJCe2O14mOwsxON//TL+XKhQyv/n+8v/8aVYnW26rf8Pcf1//r2G7fX/k7FQTwqzsdBInxjQiNfIwu4H8Rr1Rt7jxsZ2AQAAAB5o8XOBwRWeBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPAPe/ceY8dVHw787PPurte7G4KUhyJiXob8JK/XdhysX0A4qSIQSMlaRP0HhayxN6njDTZ+FBxZqmNQUYoQLrgiCn3YElGdSiCrtOURSiyqBKFaNII2fxji0gJClaAoxXWJgurq3pkzO/fM3ocfa3vD5yN577n3e86ZOefeO54zM/cMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD8drj2azd/pl38Td/+wudu7X3Xi9/89cH1n75/6kchTDde78nCPe84+4OzN3zkrg1fv+uLT5yZuOexwbxcHg/L6n968ycfj7X+ZHkIX+kJoT8NrBrNAgP589FY302jIVwT5gNFidmRrES64PDscAhHwnygqOprwyGMlgL3fu9bz3yqnjg8HMKbQwi1dBkv1rJlDKeBlYNZYCQN7OjPAv9zLlMEvtqbBeCixS9D8aE/Pt2cYWLhci0+fwOXbMWurLR5fTEx0TrfL+5Y5JUqGUxfmL6ot61SHYui8vU44du2BL5tlX4+5G0r70jleyjn5kO10Lt19oHNe+f2xFd6w+RkX6uaFul9PvXS/i3nk14yn8O4AhOX5HP40OHbXhj8wN2nn/jN0/vP1D5/08WuZqvuXWy1kH/mlsz7GG20PVkCX7/KXtIKO10hhDMnTu5vF6+M/yfaj//jxzk+9jbljrW+MpaNzeMrozHxy7FsbA4AAABLxlI4ajq44l9+3K6+yvh/RXfn/+Mp/3wwn7X2RAgbG4mPjYdwfeP1LPBUXNwHx0N4fSM13Ry4IwmcCOGGRuKWoqqkxFAssSIJ/GwsD2xMAs/FwHQSeDIGDiWBj8fA8SSwJQZOJIE7YyBsa27H/xvL29F1YDgGZrJOPB6vQvjVWFxa0lc/KKoCAAC4RPLR4UDz09K1DhebIQ4vjw93yhCvwG6ZoZbUkI5gi2FVyxr6O9XQ26mGot0H2je/UnNPp5orl2H0NGf471PX7QhtVMb/U+3H/7UFVqSncv4/TG1qPMTcvXlkrsgwM92UAQAAALgIv/famc3t4pXx/8burv+Px0T6SpnDyXgYYvt4CFPNgaza26uB7Kz3sjwAAAAAS0FxPr44F74tf8wu0U7H09X80+eZP57437hg/h3f/een261vZfw/3d31/yPNj9lKPBfX4rPjIQyVAt+Oa1kPNKyIgR+9szmQt/+52AGfjFXlFyYUVX0ylpiJgakkcKRVieeLEtc3B/I3q1j4x4p2bMtLlAIAAABw2cXDAfG8fLz+f83f/uGz7cpVxv8z53f9f2McXLm8f25ZCKv7Q+hLfxhwciSbGDAGRnvyxN+PZHX1pVUdHAnh9nrD0qr+PZ//vz+dY/D7w1lVMXD9G469tLKe+MJwCKvLgRfef3R9PbE3CRQL/93hEG6utzZd+N8NZQsfSBf++FAIrysFiqq2DIVQX9hgWtU/1PL7GKRVHa+FcG0pUFT1tloI+wIAS1X8v3Rr+cXd+x7ZvnlubnbXIibiQfzh8MC2udnJLTvmttZarNPWZJ2b5jF6tNqmbm9988M4R9F9x8a7SRc/FJwqLys/kF+5cjB/HneGBhrtXDvQ9HRd2uS3vrG6iFDalWrV5N5FbvJIuZL5N7FSf8w/GJaFob27Z3dNfnTznj271mR/u82+NvsbzzNlfbUm7auRhdati49Hy+myEhfaVyvLlaze8/DO1bv3PbJq28ObH5x9cPZDG6bWrd1w29T6t62uN2oq+9uhpSsXqjlp6bmjXTbrErb0xv5SJZdjoyEhIbHUEoMD95xqt/mpjP93th//x61O3PDn8zO0Ov8/EU/zZ6/Pn+afiYEj3Z7/n2h1Nr+4MGBFEjgQAwec5gcAAODVIR6OjEcz40HpA2958R3tylXG/we6+/3/JZr/v5i6/j2tpvm/JZaYajX/fzrNfzH//4FW8/+n0/wX8/8fuQLz/+8tAkmX/Mr8/wAAwKvB5Zv/v+P0/ukNAioZOk7vn94goJKh4zT+3d4g4Lzn//+bn69ZH9qojP8PdTf+N3E/AAAAXD2uu/Pm77aLV8b/R7ob/1/++f9Cq+v/V7QKTLeaGND8fwAAACxRreb/+977dr6zXbnK+P94d+P/eNlFb1PuWOsrY9mcdiGd0+6XY8VPBgAAAGBp6A2TkwNd5m2aGPWOC1/mqTgVaJt02aFPHDu/3/+f6G783/S7jIcO3/bC4AfuPv3KE795ev+Z2udvmj//DwAAACyebo9LAAAAAAAAAAAAAAAAV96T1355wXkBosrv/8Omxuutfv8f7/vXdNPEs/lkgAfizPqfHjfNHwAAACyux+54+fH478HP/NF/tstbGf9PdDf+j/cXyO+Dl91670S8/9/HxkNo3FpvIgs8FRf3wfEQXt9ITccS2Q313hNLTGWBp+KEibfEEjPTzVUNxcDxJPCzsTxwIgk8FwP5UYpj8caAfzwWwvpGalNziZ2xxEQSuCcGViSByRiYSgLLY2BjEvj58jwwnQT+MQbymw8WffXl5XlfAQAAnI98nDXQ/DSk47zj/Z0y9HTK0HERI50y9HbKUGuRIT7/67gOA+X5+PMM8aWBtNbhpJZKhngzvAtvejFd3/PNOdOClUX3xYITzTljhp3/dOtnQxuV8f+K7sb/F3j//0dPf+d/G4mLuP9/ejf/jTGwIgnsjIGNSWBmUx44cl1zwP3/AQAAuLq1uv//2Ov+6lC7cpXx/1R34/94IOK1TbljrZ3v/58/v/e9X9rXWOWTYyG8sRzYfnD7NfXEk2MhvKUceOa+Wxqj9oNpiW+cvvOn9cT9aeDdq15ztp54exKYiZ10QxqIR1XOLk8CsXu/nwZifxxPA4N54LHlWTt60r76j9Gsr3rSvjo1ml1e0ZP21VdGs2X0pA08nASKBn44DcQG3p0HetO1+tKybK1iYDQW/YtlxUUfAABcneJe4EB4YNvc7FT6E94b+5sfo6Zblj9arbany8X/MN6a/L5j492k+9J90VpR1UCo1ZuwprK7Ws7S02jlpamlQ9e9tkWTO93tvbdFudT5dt1g6xYNZy2a3LJjbutAx4av65xlbX/HLGsqg51ylt5Gl3ZRSxfr0kWLuuybLlY5Pu8Nk5N9Sa7/H4MToUmnT0S39+sr3+e/1aegnOfoJ/7t5Xb1Vcb/G7sb/8f2LAulj/PHY60/WR7CV3rmj0YUgVWjWSA2dzQOj28aDeGaUj8UJWZHshKDyYLDs8PZCHUwreprw9kxhvj83u9965lP1ROHh0N4c+m9KpbxYi1bxnAaWDmYBUbSwI7+LBCv/CgCX+3NAnDRio1C/EDlP3UpTCxcrsXn79VyT9C0eZVroBbIt9A2d7HU0hfya6oK5/e2VapjUVS+Hid825bity34tpV3pPI9lHPzoVro3Tr7wOa9c3viK+U92YpFep/Le6ndpC/B5/DAha9tZ7V0BaaSzcfUwuUW/hz2xOoeOnzbC4MfuPv0E795ev+Z2udv6no1WogDhWf/6zXXlLt3sdVC/plbctuT6YvZngy9WrYnS+5tm/DfQAjh0J8Pf7hdvDL+n+5u/N+fPDa8HDtz93gIby117snY/b8znm0HS4FsK3ltNZBdcv/jsZZbTgAAALjUisMdxfGCbflj9oPwdJxczT99nvnj8YqNC+bvdr33P/v7T7WLV8b/M+3H/0PJajr/7/w/i8T5/wVd7Yeih9IXDlzUoehKdSwK5/8XdLV/25z/X5Dz/87/L8T5/w4u7fn/V8325Gp/2yp7STvtdIUQzt048Hi7eGX8v7O78f9v2fz/6Wz+xfz/6aT9xfz/M63m/9/Zav7/A+b/BwAAFlWLiebTcV5lcv5KhnRy/kqGniTD+d9ioOM0+ub/T+f/P/hnt+8JbVTG/we6G//Hj8Noeemd5/8vpvm/ovP/T2xqUWLjpubVLQKHYmCnOwYAAABwBcUDBPGi925nmAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGBx3f3y2c3t4m/69hc+d2vvu1785q8Prv/0/VM/CmFb4/WeLNzzjrM/OHvDR+7a8PW7vvjEmYl7Hqvl5Qbyx5uacsdaXxkL4UjpldGY+OVY/cl84N73fmlffz1xciyEN5YD2w9uv6aeeHIshLeUA8/cd8t19cTBtMQ3Tt/503ri/jTw7lWvOVtPvD0P9KSr+6fLs9XtSVf3U8tDGC8FitV9aHlzVcUy3pUHetNl/OVotowYGI1FHx/NlhEDc7HEtqEQVveH0JdW9Z1aVlVfWtXXa1lVfWlVf1AL4fYQQn9a1b8OZlX1py1/fjCrKgauf8Oxl1bWE0cHQ1hdDrzw/qPr64ldSaBY+PsGQ7i5/pFJF/7lgWzhA+nC/2QghNeVAkVVMwMh1Bc2mFZ1oj+rajCt6ov9IVxbChRV3dofwr7AlRI3JFvLL+7e98j2zXNzs7sWMTGYL2s4PLBtbnZyy465rbVknVrpKaXPPXrhbf/hS/u3NBL3HRvvJl2s11R5XZ6frrxYft6fPx1otHPtQNPTdUulySPlSubfxEr9Mf9gWBaG9u6e3TX50c179uxak/3tNvva7G9fHs36as1S6auV5UpW73l45+rd+x5Zte3hzQ/OPjj7oQ1T69ZuuG1q/dtW1xs1lf29FC09evlbemN/qZLLsdGQkJBYaonepq3b1NW+Ha/s6M+v6ECoNTbQlWFFOUtPo5WXotF3XEBrc+fb6MqQpNKiNZWBQyXL2s5Z1lXGDPNZhrMsjX3ByuCwXFNvo0vj894wOdnXqh8mmp+Wu/cXF9G9p2LXdZkGAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/o8dOBAAAAAAAPJ/bYSqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqoq7MCBAAAAAACQ/2sjVFVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVWEHjgUAAAAAhPlbh9GzAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcCkAAP//AtvxeQ==")
open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)

17:15:59 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40800, 0x0)
ioctl$UI_GET_VERSION(r1, 0x8004552d, &(0x7f0000000080)) (async)
ioctl$UI_GET_VERSION(r1, 0x8004552d, &(0x7f0000000080))
r2 = dup(r0)
write$uinput_user_dev(r2, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [], [], [], [0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe]}, 0x45c)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), r2) (async)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), r2)
sendmsg$ETHTOOL_MSG_RINGS_SET(r1, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x60, r3, 0x200, 0x70bd27, 0x25dfdbff, {}, [@ETHTOOL_A_RINGS_RX={0x8, 0x6, 0x1f}, @ETHTOOL_A_RINGS_RX={0x8}, @ETHTOOL_A_RINGS_RX_MINI={0x8, 0x7, 0x3ff}, @ETHTOOL_A_RINGS_RX={0x8, 0x6, 0x81}, @ETHTOOL_A_RINGS_RX={0x8, 0x6, 0x5}, @ETHTOOL_A_RINGS_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @ETHTOOL_A_RINGS_RX={0x8, 0x6, 0xb2f}, @ETHTOOL_A_RINGS_RX_JUMBO={0x8, 0x8, 0x4}]}, 0x60}}, 0x40000) (async)
sendmsg$ETHTOOL_MSG_RINGS_SET(r1, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x60, r3, 0x200, 0x70bd27, 0x25dfdbff, {}, [@ETHTOOL_A_RINGS_RX={0x8, 0x6, 0x1f}, @ETHTOOL_A_RINGS_RX={0x8}, @ETHTOOL_A_RINGS_RX_MINI={0x8, 0x7, 0x3ff}, @ETHTOOL_A_RINGS_RX={0x8, 0x6, 0x81}, @ETHTOOL_A_RINGS_RX={0x8, 0x6, 0x5}, @ETHTOOL_A_RINGS_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @ETHTOOL_A_RINGS_RX={0x8, 0x6, 0xb2f}, @ETHTOOL_A_RINGS_RX_JUMBO={0x8, 0x8, 0x4}]}, 0x60}}, 0x40000)
ioctl$UI_DEV_CREATE(r2, 0x5501)
ioctl$UI_DEV_DESTROY(r2, 0x4004556a)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r4, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r4, 0x0)
sendfile(r4, r1, &(0x7f0000000240)=0x3f, 0xff)

17:15:59 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 57)

17:15:59 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x12000000})

[  868.726015][T19602] input: syz1 as /devices/virtual/input/input177
17:15:59 executing program 3:
r0 = socket$can_raw(0x1d, 0x3, 0x1)
sendmsg$sock(r0, &(0x7f0000006900)={0x0, 0x0, 0x0, 0x0, &(0x7f0000006880)=[@mark={{0x14}}, @mark={{0x14}}], 0x30}, 0x0)

[  868.799381][T19607] FAULT_INJECTION: forcing a failure.
[  868.799381][T19607] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  868.866179][T19607] CPU: 0 PID: 19607 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  868.874803][T19607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  868.884902][T19607] Call Trace:
[  868.888193][T19607]  <TASK>
[  868.891134][T19607]  dump_stack_lvl+0x1e3/0x2cb
[  868.895829][T19607]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  868.901823][T19607]  ? panic+0x84d/0x84d
[  868.911061][T19607]  should_fail+0x38a/0x4c0
[  868.915596][T19607]  prepare_alloc_pages+0x1db/0x5b0
[  868.920739][T19607]  __alloc_pages+0x14f/0x700
[  868.925353][T19607]  ? __rmqueue_pcplist+0x2030/0x2030
[  868.930661][T19607]  ? __lock_acquire+0x1295/0x1ff0
[  868.935719][T19607]  alloc_pages_vma+0x39a/0x800
[  868.940506][T19607]  ? mpol_shared_policy_lookup+0x144/0x1e0
[  868.946339][T19607]  shmem_alloc_and_acct_page+0x4d1/0xd10
[  868.952003][T19607]  ? shmem_swapin_page+0x22f0/0x22f0
[  868.957416][T19607]  ? xas_descend+0x219/0x3a0
[  868.962132][T19607]  ? xas_load+0x128/0x140
[  868.966508][T19607]  ? pagecache_get_page+0xd23/0x1010
[  868.971913][T19607]  ? page_cache_prev_miss+0x500/0x500
[  868.977499][T19607]  ? do_raw_spin_unlock+0x137/0x8b0
[  868.982718][T19607]  ? _raw_spin_unlock_irq+0x1f/0x40
[  868.987938][T19607]  ? lockdep_hardirqs_on+0x94/0x130
[  868.993154][T19607]  shmem_getpage_gfp+0x17b1/0x3190
[  868.998320][T19607]  ? shmem_getpage+0xa0/0xa0
[  869.002942][T19607]  ? fault_in_safe_writeable+0x250/0x250
[  869.008605][T19607]  shmem_write_begin+0xce/0x1a0
[  869.013483][T19607]  generic_perform_write+0x2bf/0x5b0
[  869.018886][T19607]  ? grab_cache_page_write_begin+0x90/0x90
[  869.024714][T19607]  ? file_remove_privs+0x610/0x610
[  869.029973][T19607]  ? down_write+0x10e/0x170
[  869.034938][T19607]  __generic_file_write_iter+0x243/0x4f0
[  869.040599][T19607]  generic_file_write_iter+0xa7/0x1b0
[  869.046006][T19607]  vfs_write+0xacf/0xe50
[  869.050289][T19607]  ? file_end_write+0x250/0x250
[  869.055165][T19607]  ? __fget_files+0x413/0x480
[  869.059875][T19607]  ? __fdget_pos+0x1eb/0x2b0
[  869.064562][T19607]  ? ksys_write+0x77/0x2c0
[  869.069008][T19607]  ksys_write+0x1a2/0x2c0
[  869.073371][T19607]  ? print_irqtrace_events+0x210/0x210
[  869.078854][T19607]  ? __ia32_sys_read+0x80/0x80
[  869.083637][T19607]  ? syscall_enter_from_user_mode+0x2e/0x230
[  869.089633][T19607]  ? lockdep_hardirqs_on+0x94/0x130
[  869.094934][T19607]  ? syscall_enter_from_user_mode+0x2e/0x230
[  869.100939][T19607]  do_syscall_64+0x3d/0xb0
[  869.105385][T19607]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  869.111299][T19607] RIP: 0033:0x7f768c93682f
[  869.115742][T19607] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  869.135353][T19607] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  869.143779][T19607] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  869.153157][T19607] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  869.161144][T19607] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  869.169134][T19607] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  869.177121][T19607] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  869.185121][T19607]  </TASK>
17:15:59 executing program 3:
syz_mount_image$btrfs(&(0x7f00000051c0), &(0x7f0000005200)='./file0\x00', 0x1000008, &(0x7f0000000280)={[{@datacow}, {@clear_cache}, {@nodatasum}, {@rescan_uuid_tree}, {}, {@space_cache_v1}]}, 0xfe, 0x51ab, &(0x7f0000005280)="$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")
open(0x0, 0x0, 0x0)
r0 = open(&(0x7f00000025c0)='./file0\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000001840)={<r1=>0x0})
ioctl$BTRFS_IOC_INO_LOOKUP(r0, 0xc4009420, &(0x7f00000003c0)={r1})
r2 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_QUOTA_CTL(r2, 0xc0109428, &(0x7f00000013c0)={0x1})
ioctl$BTRFS_IOC_SNAP_CREATE(0xffffffffffffffff, 0x50009401, 0x0)
ioctl$BTRFS_IOC_SNAP_CREATE(0xffffffffffffffff, 0x50009401, 0x0)

17:15:59 executing program 1:
sendmsg$sock(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$can_raw(0x1d, 0x3, 0x1)
sendmsg(0xffffffffffffffff, 0x0, 0x0)
sendmsg$sock(r0, &(0x7f0000006900)={0x0, 0x0, 0x0, 0x0, &(0x7f0000006880)=[@mark={{0x14}}, @mark={{0x14}}], 0x30}, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r2, 0x89f3, &(0x7f000000a2c0)={'sit0\x00', &(0x7f000000a200)={'sit0\x00', 0x0, 0x8000, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x68, 0x0, 0x0, 0x2f, 0x0, @dev, @dev={0xac, 0x14, 0x14, 0x2d}}}}})
getsockopt$bt_hci(r1, 0x0, 0x0, &(0x7f000000a300)=""/213, &(0x7f000000a400)=0xd5)
sendmsg$sock(0xffffffffffffffff, &(0x7f000000a9c0)={0x0, 0x0, 0x0, 0x0, &(0x7f000000a940)=[@timestamping={{0x14}}], 0x18}, 0x20000000)
syz_open_dev$dri(&(0x7f000000aa00), 0x7fff, 0x0)
r3 = openat$cachefiles(0xffffffffffffff9c, &(0x7f000000aa40), 0x4842, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f000000aac0), 0xffffffffffffffff)
r4 = syz_io_uring_setup(0x5adc, 0x0, &(0x7f000000ad00), &(0x7f000000ad40)=<r5=>0x0)
syz_io_uring_submit(0x0, r5, 0x0)
syz_io_uring_setup(0x696f, &(0x7f000000ae80)={0x0, 0x3c21, 0x10, 0x2, 0x33a, 0x0, r4}, &(0x7f000000af00)=<r6=>0x0, &(0x7f000000af40))
syz_io_uring_submit(r6, 0x0, &(0x7f000000b080)=@IORING_OP_ASYNC_CANCEL={0xe, 0x48})
syz_genetlink_get_family_id$ethtool(&(0x7f000000b100), r3)

17:15:59 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x18000000})

17:15:59 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) (async)
r1 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40800, 0x0)
ioctl$UI_GET_VERSION(r1, 0x8004552d, &(0x7f0000000080)) (async)
r2 = dup(r0)
write$uinput_user_dev(r2, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [], [], [], [0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe]}, 0x45c)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), r2)
sendmsg$ETHTOOL_MSG_RINGS_SET(r1, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x60, r3, 0x200, 0x70bd27, 0x25dfdbff, {}, [@ETHTOOL_A_RINGS_RX={0x8, 0x6, 0x1f}, @ETHTOOL_A_RINGS_RX={0x8}, @ETHTOOL_A_RINGS_RX_MINI={0x8, 0x7, 0x3ff}, @ETHTOOL_A_RINGS_RX={0x8, 0x6, 0x81}, @ETHTOOL_A_RINGS_RX={0x8, 0x6, 0x5}, @ETHTOOL_A_RINGS_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @ETHTOOL_A_RINGS_RX={0x8, 0x6, 0xb2f}, @ETHTOOL_A_RINGS_RX_JUMBO={0x8, 0x8, 0x4}]}, 0x60}}, 0x40000) (async)
ioctl$UI_DEV_CREATE(r2, 0x5501) (async)
ioctl$UI_DEV_DESTROY(r2, 0x4004556a) (async)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r4, 0x0) (async)
sendfile(r4, r1, &(0x7f0000000240)=0x3f, 0xff)

17:15:59 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x25000000})

[  869.344577][T19621] input: syz1 as /devices/virtual/input/input178
17:15:59 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f0000000440)={&(0x7f0000000100), 0xc, &(0x7f0000000400)={0x0}}, 0x0)

17:16:00 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x0, 0x5c000000})

17:16:00 executing program 0:
prctl$PR_SET_SECCOMP(0x3e, 0x0, &(0x7f0000000040)={0x0, 0x0})

17:16:00 executing program 1:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$sock_inet_tcp_SIOCINQ(r0, 0x5452, &(0x7f0000000000))

17:16:00 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 58)

17:16:00 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0)
ioctl$BTRFS_IOC_SCRUB_CANCEL(r2, 0x941c, 0x0)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

17:16:00 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000180)=ANY=[@ANYBLOB="9894e9d2e5f241a3b4c3fad666d7b8a2a3b551b7b71c67556c2932809ad6cead2fc6326ac67b0e8e83ff6edc708a391fa490505ceb10acd380affc6ef8478e235c8408cbc5ae8d192eb60d45167be88f5a31e40ab1348c506a0806bb9e08bc388e93eac1409eef32665f857d6e2733479e91dae9a907786ea787da89f6ee1883daeff66c622ef8d1e060adeb1f24e45dc2d43554c32ba7b17cad95665fe80f504fb607e8d1da9b0c972c13bc66415fcef6d2a64cd55ddabda0bec749534f04f14ced4407f47b38e83391fd6c58eaf65390d46da8e6b79c0fc0fec491029d"])
ftruncate(r0, 0x1000)

[  870.013309][ T1377] ieee802154 phy0 wpan0: encryption failed: -22
[  870.019771][ T1377] ieee802154 phy1 wpan1: encryption failed: -22
17:16:00 executing program 3:
bpf$MAP_CREATE(0x0, &(0x7f0000001280)=@base={0x5, 0xff03, 0x400, 0xeb, 0x0, 0x1}, 0x48)

17:16:00 executing program 1:
syz_open_procfs$userns(0xffffffffffffffff, &(0x7f0000000100))
pselect6(0x40, &(0x7f0000000040), 0x0, &(0x7f00000000c0)={0xd}, &(0x7f0000000100)={0x0, 0x989680}, 0x0)

17:16:00 executing program 0:
linkat(0xffffffffffffffff, 0x0, 0xffffffffffffffff, &(0x7f0000000280)='./file0\x00', 0x0)

[  870.071424][T19641] input: syz1 as /devices/virtual/input/input179
[  870.085809][T19642] FAULT_INJECTION: forcing a failure.
[  870.085809][T19642] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  870.099098][T19642] CPU: 0 PID: 19642 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  870.107705][T19642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  870.117776][T19642] Call Trace:
17:16:00 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000180)=ANY=[@ANYBLOB="9894e9d2e5f241a3b4c3fad666d7b8a2a3b551b7b71c67556c2932809ad6cead2fc6326ac67b0e8e83ff6edc708a391fa490505ceb10acd380affc6ef8478e235c8408cbc5ae8d192eb60d45167be88f5a31e40ab1348c506a0806bb9e08bc388e93eac1409eef32665f857d6e2733479e91dae9a907786ea787da89f6ee1883daeff66c622ef8d1e060adeb1f24e45dc2d43554c32ba7b17cad95665fe80f504fb607e8d1da9b0c972c13bc66415fcef6d2a64cd55ddabda0bec749534f04f14ced4407f47b38e83391fd6c58eaf65390d46da8e6b79c0fc0fec491029d"]) (async)
ftruncate(r0, 0x1000)

17:16:00 executing program 0:
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_open_dev$video4linux(&(0x7f0000000f80), 0x0, 0x0)

[  870.121068][T19642]  <TASK>
[  870.124014][T19642]  dump_stack_lvl+0x1e3/0x2cb
[  870.128713][T19642]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  870.134447][T19642]  ? panic+0x84d/0x84d
[  870.138533][T19642]  ? shmem_getpage_gfp+0x2b48/0x3190
[  870.144017][T19642]  should_fail+0x38a/0x4c0
[  870.148494][T19642]  copy_page_from_iter_atomic+0x451/0x1230
[  870.154337][T19642]  ? pipe_zero+0x4f0/0x4f0
[  870.158793][T19642]  generic_perform_write+0x33a/0x5b0
[  870.164106][T19642]  ? grab_cache_page_write_begin+0x90/0x90
[  870.169928][T19642]  ? file_remove_privs+0x610/0x610
[  870.175154][T19642]  ? down_write+0x10e/0x170
[  870.179676][T19642]  __generic_file_write_iter+0x243/0x4f0
[  870.185331][T19642]  generic_file_write_iter+0xa7/0x1b0
[  870.190742][T19642]  vfs_write+0xacf/0xe50
[  870.195015][T19642]  ? file_end_write+0x250/0x250
[  870.199895][T19642]  ? __fget_files+0x413/0x480
[  870.205128][T19642]  ? __fdget_pos+0x1eb/0x2b0
[  870.209795][T19642]  ? ksys_write+0x77/0x2c0
[  870.214336][T19642]  ksys_write+0x1a2/0x2c0
[  870.219469][T19642]  ? print_irqtrace_events+0x210/0x210
[  870.224952][T19642]  ? __ia32_sys_read+0x80/0x80
[  870.229736][T19642]  ? syscall_enter_from_user_mode+0x2e/0x230
[  870.235729][T19642]  ? lockdep_hardirqs_on+0x94/0x130
[  870.240945][T19642]  ? syscall_enter_from_user_mode+0x2e/0x230
[  870.246950][T19642]  do_syscall_64+0x3d/0xb0
[  870.251438][T19642]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  870.257364][T19642] RIP: 0033:0x7f768c93682f
[  870.261793][T19642] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  870.281514][T19642] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  870.289944][T19642] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  870.297930][T19642] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  870.305910][T19642] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  870.313892][T19642] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  870.321875][T19642] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  870.329881][T19642]  </TASK>
17:16:00 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000180)=ANY=[@ANYBLOB="9894e9d2e5f241a3b4c3fad666d7b8a2a3b551b7b71c67556c2932809ad6cead2fc6326ac67b0e8e83ff6edc708a391fa490505ceb10acd380affc6ef8478e235c8408cbc5ae8d192eb60d45167be88f5a31e40ab1348c506a0806bb9e08bc388e93eac1409eef32665f857d6e2733479e91dae9a907786ea787da89f6ee1883daeff66c622ef8d1e060adeb1f24e45dc2d43554c32ba7b17cad95665fe80f504fb607e8d1da9b0c972c13bc66415fcef6d2a64cd55ddabda0bec749534f04f14ced4407f47b38e83391fd6c58eaf65390d46da8e6b79c0fc0fec491029d"]) (async)
ftruncate(r0, 0x1000)

17:16:00 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000001280)=@base={0x5, 0x3, 0xeb00, 0xeb, 0x11, 0x1}, 0x48)

17:16:00 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0xa, 0x0, 0x0, 0x0, 0x4, 0x1}, 0x48)

17:16:00 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
dup(r0) (async)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0) (async)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0)
ioctl$BTRFS_IOC_SCRUB_CANCEL(r2, 0x941c, 0x0) (async)
ioctl$BTRFS_IOC_SCRUB_CANCEL(r2, 0x941c, 0x0)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

17:16:01 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 59)

17:16:01 executing program 1:
syz_emit_ethernet(0x2e, &(0x7f0000000000)={@remote, @remote, @val={@void}, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0xa, @remote, @multicast2, @local, @multicast1}}}}, &(0x7f0000000040)={0x1, 0x4, [0xbe9, 0x5a, 0xb3c, 0xf33]})
openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
write$tun(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_open_dev$vcsa(&(0x7f0000000180), 0xcb, 0x4000)
ioctl$TUNSETDEBUG(r0, 0x400454c9, &(0x7f00000001c0))
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000240)={0x0, 0x0, 0x800})
syz_open_dev$vcsa(&(0x7f0000001280), 0xfffffffffffffffb, 0x0)
ioctl$SIOCGSKNS(0xffffffffffffffff, 0x894c, &(0x7f00000012c0)={'veth0_to_bridge\x00', 0x200})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000001300), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = syz_usb_connect$hid(0x6, 0x36, &(0x7f0000001340)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x5ac, 0x29a, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0xa, 0xb0, 0x7f, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x7, {0x9, 0x21, 0x199, 0x0, 0x1, {0x22, 0x73a}}}}]}}]}}, &(0x7f00000014c0)={0xa, &(0x7f0000001380)={0xa, 0x6, 0x310, 0x38, 0x81, 0x80, 0x8, 0x7}, 0x0, 0x0})
syz_usb_control_io$hid(r2, &(0x7f0000001600)={0x24, &(0x7f0000001500)={0x40, 0x2d, 0x2, {0x2, 0xb}}, &(0x7f0000001540)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x40d}}, &(0x7f0000001580), 0x0}, 0x0)

[  870.515930][T19664] input: syz1 as /devices/virtual/input/input180
17:16:01 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)=ANY=[@ANYBLOB="0000006162f9d8f7"])

[  870.644104][T19670] FAULT_INJECTION: forcing a failure.
[  870.644104][T19670] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  870.735361][T19670] CPU: 0 PID: 19670 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  870.743998][T19670] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  870.754153][T19670] Call Trace:
[  870.757444][T19670]  <TASK>
[  870.760387][T19670]  dump_stack_lvl+0x1e3/0x2cb
[  870.765079][T19670]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  870.770700][T19670]  ? panic+0x84d/0x84d
[  870.774761][T19670]  should_fail+0x38a/0x4c0
[  870.779602][T19670]  prepare_alloc_pages+0x1db/0x5b0
[  870.784708][T19670]  __alloc_pages+0x14f/0x700
[  870.789285][T19670]  ? __rmqueue_pcplist+0x2030/0x2030
[  870.794561][T19670]  ? __lock_acquire+0x1295/0x1ff0
[  870.799585][T19670]  alloc_pages_vma+0x39a/0x800
[  870.804338][T19670]  ? mpol_shared_policy_lookup+0x144/0x1e0
[  870.810131][T19670]  shmem_alloc_and_acct_page+0x4d1/0xd10
[  870.815752][T19670]  ? shmem_swapin_page+0x22f0/0x22f0
[  870.821034][T19670]  ? xas_descend+0x219/0x3a0
[  870.825609][T19670]  ? xas_load+0x128/0x140
[  870.829922][T19670]  ? pagecache_get_page+0xd23/0x1010
[  870.835295][T19670]  ? page_cache_prev_miss+0x500/0x500
[  870.840824][T19670]  ? do_raw_spin_unlock+0x137/0x8b0
[  870.846004][T19670]  ? _raw_spin_unlock_irq+0x1f/0x40
[  870.851184][T19670]  ? lockdep_hardirqs_on+0x94/0x130
[  870.856458][T19670]  shmem_getpage_gfp+0x17b1/0x3190
[  870.861662][T19670]  ? shmem_getpage+0xa0/0xa0
[  870.866245][T19670]  ? fault_in_safe_writeable+0x250/0x250
[  870.871864][T19670]  shmem_write_begin+0xce/0x1a0
[  870.876704][T19670]  generic_perform_write+0x2bf/0x5b0
[  870.881982][T19670]  ? grab_cache_page_write_begin+0x90/0x90
[  870.887776][T19670]  ? file_remove_privs+0x610/0x610
[  870.892873][T19670]  ? down_write+0x10e/0x170
[  870.897368][T19670]  __generic_file_write_iter+0x243/0x4f0
[  870.902991][T19670]  generic_file_write_iter+0xa7/0x1b0
[  870.908347][T19670]  vfs_write+0xacf/0xe50
[  870.912576][T19670]  ? file_end_write+0x250/0x250
[  870.917415][T19670]  ? __fget_files+0x413/0x480
[  870.922079][T19670]  ? __fdget_pos+0x1eb/0x2b0
[  870.926649][T19670]  ? ksys_write+0x77/0x2c0
[  870.931060][T19670]  ksys_write+0x1a2/0x2c0
[  870.935373][T19670]  ? print_irqtrace_events+0x210/0x210
[  870.940827][T19670]  ? __ia32_sys_read+0x80/0x80
[  870.945572][T19670]  ? syscall_enter_from_user_mode+0x2e/0x230
[  870.951715][T19670]  ? lockdep_hardirqs_on+0x94/0x130
[  870.956896][T19670]  ? syscall_enter_from_user_mode+0x2e/0x230
[  870.962982][T19670]  do_syscall_64+0x3d/0xb0
[  870.967471][T19670]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  870.973781][T19670] RIP: 0033:0x7f768c93682f
[  870.978199][T19670] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  870.998261][T19670] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  871.006799][T19670] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  871.015437][T19670] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  871.024121][T19670] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  871.033964][T19670] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  871.042580][T19670] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  871.051285][T19670]  </TASK>
17:16:01 executing program 3:
bpf$MAP_CREATE(0x0, &(0x7f0000001280)=@base={0x5, 0xff03, 0x400, 0xeb, 0x0, 0x1}, 0x48)

17:16:01 executing program 0:
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x29, 0x0, 0x0, 0x4e)

17:16:01 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)=ANY=[@ANYBLOB="0000006162f9d8f7"])

17:16:01 executing program 5:
openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) (async)
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0)
ioctl$BTRFS_IOC_SCRUB_CANCEL(r2, 0x941c, 0x0) (async)
ioctl$BTRFS_IOC_SCRUB_CANCEL(r2, 0x941c, 0x0)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a) (async)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

17:16:01 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x1, 0x0, 0x0, 0x1, 0x0, 0x1}, 0x48)

17:16:01 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)=ANY=[@ANYBLOB="0000006162f9d8f7"])

[  871.214864][T19682] input: syz1 as /devices/virtual/input/input181
17:16:01 executing program 0:
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/timers\x00', 0x0, 0x0)
openat$nvram(0xffffffffffffff9c, &(0x7f00000003c0), 0x80, 0x0)

17:16:01 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)={0x30, r1, 0x401, 0x0, 0x0, {0xf}, [@TIPC_NLA_NET={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0x4}, @TIPC_NLA_NET_NODEID={0xc}]}]}, 0x30}}, 0x0)

17:16:01 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x440)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0)
ftruncate(r2, 0xed)
write$binfmt_script(r1, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r1, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000140)=ANY=[], 0x208e24b)
r4 = dup2(r1, r1)
epoll_ctl$EPOLL_CTL_MOD(r4, 0x3, r1, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r3, 0x0)
clock_gettime(0x0, &(0x7f00000020c0)={<r5=>0x0, <r6=>0x0})
recvmmsg$unix(r3, &(0x7f0000001fc0)=[{{&(0x7f0000000100)=@abs, 0x6e, &(0x7f0000000280)=[{&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f0000000180)=""/165, 0xa5}, {}, {&(0x7f0000000240)=""/7, 0x7}], 0x4}}, {{&(0x7f0000001300)=@abs, 0x6e, &(0x7f0000001640)=[{&(0x7f0000001380)=""/82, 0x52}, {&(0x7f0000001400)=""/232, 0xe8}, {&(0x7f0000001500)=""/62, 0x3e}, {&(0x7f0000001540)=""/185, 0xb9}, {&(0x7f0000001600)=""/20, 0x14}], 0x5, &(0x7f00000021c0)=ANY=[@ANYBLOB="18000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="0000000028000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="1c00000000000000f6f79e34bce0491b66396961ca25343c6baa94e5a8b783ad5b89a46ea89b88cfee25c8a5c3cd59fc138426e17f0740947412654f8af1c3131ce7345a3e4dfafefe74734358dd44dde6adf5869fd3a2a68fb9052f", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000002c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000020000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32], 0x108}}, {{&(0x7f0000001800)=@abs, 0x6e, &(0x7f0000001c80)=[{&(0x7f0000001880)=""/84, 0x54}, {&(0x7f0000001900)}, {&(0x7f0000001940)=""/126, 0x7e}, {&(0x7f00000019c0)=""/238, 0xee}, {&(0x7f0000001ac0)=""/46, 0x2e}, {&(0x7f0000001b00)=""/98, 0x62}, {&(0x7f0000001b80)=""/230, 0xe6}], 0x7, &(0x7f0000001d00)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x30}}, {{&(0x7f0000001d40)=@abs, 0x6e, &(0x7f0000001ec0)=[{&(0x7f0000001dc0)=""/210, 0xd2}], 0x1, &(0x7f0000001f00)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}], 0xa8}}], 0x4, 0x2000, &(0x7f0000002100)={r5, r6+60000000})
ioctl$SNDRV_CTL_IOCTL_CARD_INFO(r1, 0x81785501, &(0x7f0000000040)=""/2)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000002140)=ANY=[@ANYBLOB="0000000000000000e515222a297f161a4f03f91c6f09857f5837a5c6e6eb72f933b72eb75b0a0e4f295055dcfbbf3e1a0540a1f1e89065e86c2b3fa73f4c0d7f1518d0c3bbe32a4635af8561f344c2bdfc1a1d81f6ed99dc0d198519ba2b9a3037587cdb5332ed18ec1c5dd53d556dd7"])

[  871.437600][T19692] netlink: 'syz-executor.0': attribute type 4 has an invalid length.
17:16:02 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 60)

17:16:02 executing program 1:
syz_emit_ethernet(0x2e, &(0x7f0000000000)={@remote, @remote, @val={@void}, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0xa, @remote, @multicast2, @local, @multicast1}}}}, &(0x7f0000000040)={0x1, 0x4, [0xbe9, 0x5a, 0xb3c, 0xf33]})
openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
write$tun(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_open_dev$vcsa(&(0x7f0000000180), 0xcb, 0x4000)
ioctl$TUNSETDEBUG(r0, 0x400454c9, &(0x7f00000001c0))
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000240)={0x0, 0x0, 0x800})
syz_open_dev$vcsa(&(0x7f0000001280), 0xfffffffffffffffb, 0x0)
ioctl$SIOCGSKNS(0xffffffffffffffff, 0x894c, &(0x7f00000012c0)={'veth0_to_bridge\x00', 0x200})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000001300), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = syz_usb_connect$hid(0x6, 0x36, &(0x7f0000001340)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x5ac, 0x29a, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0xa, 0xb0, 0x7f, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x7, {0x9, 0x21, 0x199, 0x0, 0x1, {0x22, 0x73a}}}}]}}]}}, &(0x7f00000014c0)={0xa, &(0x7f0000001380)={0xa, 0x6, 0x310, 0x38, 0x81, 0x80, 0x8, 0x7}, 0x0, 0x0})
syz_usb_control_io$hid(r2, &(0x7f0000001600)={0x24, &(0x7f0000001500)={0x40, 0x2d, 0x2, {0x2, 0xb}}, &(0x7f0000001540)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x40d}}, &(0x7f0000001580), 0x0}, 0x0)

17:16:02 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b)
r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x781400, 0x0)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r3, 0x8983, &(0x7f0000000100)={0x0, 'wg2\x00', {0x1}, 0x800})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0)
ioctl$UI_DEV_SETUP(r2, 0x405c5503, &(0x7f0000000080)={{0x80, 0x7ff, 0x100, 0x1f}, 'syz0\x00', 0x34})
r4 = openat$zero(0xffffffffffffff9c, &(0x7f0000000140), 0x2240, 0x0)
getsockopt$inet6_tcp_buf(r4, 0x6, 0x1f, &(0x7f0000000180)=""/150, &(0x7f0000000240)=0x96)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

[  871.570277][T19698] input: syz1 as /devices/virtual/input/input182
[  871.587582][T19702] FAULT_INJECTION: forcing a failure.
[  871.587582][T19702] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  871.600899][T19702] CPU: 1 PID: 19702 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  871.609504][T19702] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  871.619577][T19702] Call Trace:
[  871.622868][T19702]  <TASK>
[  871.625807][T19702]  dump_stack_lvl+0x1e3/0x2cb
[  871.630512][T19702]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  871.636162][T19702]  ? panic+0x84d/0x84d
[  871.640246][T19702]  ? shmem_getpage_gfp+0x2b48/0x3190
[  871.645565][T19702]  should_fail+0x38a/0x4c0
[  871.650002][T19702]  copy_page_from_iter_atomic+0x451/0x1230
[  871.655834][T19702]  ? pipe_zero+0x4f0/0x4f0
[  871.660293][T19702]  generic_perform_write+0x33a/0x5b0
[  871.665598][T19702]  ? grab_cache_page_write_begin+0x90/0x90
[  871.671412][T19702]  ? file_remove_privs+0x610/0x610
[  871.676533][T19702]  ? down_write+0x10e/0x170
[  871.681050][T19702]  __generic_file_write_iter+0x243/0x4f0
[  871.686701][T19702]  generic_file_write_iter+0xa7/0x1b0
[  871.692087][T19702]  vfs_write+0xacf/0xe50
[  871.696355][T19702]  ? file_end_write+0x250/0x250
[  871.701225][T19702]  ? __fget_files+0x413/0x480
[  871.705928][T19702]  ? __fdget_pos+0x1eb/0x2b0
[  871.710537][T19702]  ? ksys_write+0x77/0x2c0
[  871.714966][T19702]  ksys_write+0x1a2/0x2c0
[  871.719596][T19702]  ? print_irqtrace_events+0x210/0x210
[  871.725084][T19702]  ? __ia32_sys_read+0x80/0x80
[  871.729870][T19702]  ? syscall_enter_from_user_mode+0x2e/0x230
[  871.735874][T19702]  ? lockdep_hardirqs_on+0x94/0x130
[  871.741277][T19702]  ? syscall_enter_from_user_mode+0x2e/0x230
[  871.747289][T19702]  do_syscall_64+0x3d/0xb0
[  871.751735][T19702]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  871.757653][T19702] RIP: 0033:0x7f768c93682f
[  871.762091][T19702] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  871.781710][T19702] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  871.790227][T19702] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  871.799601][T19702] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  871.807587][T19702] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
17:16:02 executing program 3:
bpf$MAP_CREATE(0x0, &(0x7f0000001280)=@base={0x5, 0xff03, 0x400, 0xeb, 0x0, 0x1}, 0x48)

17:16:02 executing program 0:
setresuid(0x0, 0xee00, 0x0)
bpf$PROG_LOAD_XDP(0xb, 0x0, 0x0)

17:16:02 executing program 3:
bpf$MAP_CREATE(0x0, &(0x7f0000001280)=@base={0x5, 0xff03, 0x400, 0xeb, 0x0, 0x1}, 0x48)

[  871.815573][T19702] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  871.823642][T19702] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  871.831645][T19702]  </TASK>
17:16:02 executing program 0:
pipe(&(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
mkdir(&(0x7f0000000540)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r1 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
fchdir(r1)
symlink(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./file1\x00')
r2 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x14e24}, 0x1c)
connect$inet6(r2, &(0x7f0000000280)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c)
recvmmsg(r2, &(0x7f0000000200), 0x38c, 0x0, 0x0)
connect$inet6(r2, &(0x7f00000002c0)={0xa, 0x4e24}, 0x1c)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x25, &(0x7f0000000240)=0x740, 0x4)
sendmmsg(r2, &(0x7f00000092c0), 0x4ff, 0x0)
write$P9_RWRITE(r0, &(0x7f0000000040)={0xb}, 0x11000)
writev(r0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="de", 0x1}, {0x0}], 0x2)

17:16:02 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x440)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0) (async)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0) (async)
ftruncate(r2, 0xed) (async)
write$binfmt_script(r1, &(0x7f0000000140)=ANY=[], 0x208e24b) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r1, 0x0) (async)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000140)=ANY=[], 0x208e24b) (async)
r4 = dup2(r1, r1)
epoll_ctl$EPOLL_CTL_MOD(r4, 0x3, r1, &(0x7f0000000000)) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r3, 0x0)
clock_gettime(0x0, &(0x7f00000020c0)={<r5=>0x0, <r6=>0x0})
recvmmsg$unix(r3, &(0x7f0000001fc0)=[{{&(0x7f0000000100)=@abs, 0x6e, &(0x7f0000000280)=[{&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f0000000180)=""/165, 0xa5}, {}, {&(0x7f0000000240)=""/7, 0x7}], 0x4}}, {{&(0x7f0000001300)=@abs, 0x6e, &(0x7f0000001640)=[{&(0x7f0000001380)=""/82, 0x52}, {&(0x7f0000001400)=""/232, 0xe8}, {&(0x7f0000001500)=""/62, 0x3e}, {&(0x7f0000001540)=""/185, 0xb9}, {&(0x7f0000001600)=""/20, 0x14}], 0x5, &(0x7f00000021c0)=ANY=[@ANYBLOB="18000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="0000000028000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="1c00000000000000f6f79e34bce0491b66396961ca25343c6baa94e5a8b783ad5b89a46ea89b88cfee25c8a5c3cd59fc138426e17f0740947412654f8af1c3131ce7345a3e4dfafefe74734358dd44dde6adf5869fd3a2a68fb9052f", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000002c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000020000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32], 0x108}}, {{&(0x7f0000001800)=@abs, 0x6e, &(0x7f0000001c80)=[{&(0x7f0000001880)=""/84, 0x54}, {&(0x7f0000001900)}, {&(0x7f0000001940)=""/126, 0x7e}, {&(0x7f00000019c0)=""/238, 0xee}, {&(0x7f0000001ac0)=""/46, 0x2e}, {&(0x7f0000001b00)=""/98, 0x62}, {&(0x7f0000001b80)=""/230, 0xe6}], 0x7, &(0x7f0000001d00)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x30}}, {{&(0x7f0000001d40)=@abs, 0x6e, &(0x7f0000001ec0)=[{&(0x7f0000001dc0)=""/210, 0xd2}], 0x1, &(0x7f0000001f00)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}], 0xa8}}], 0x4, 0x2000, &(0x7f0000002100)={r5, r6+60000000}) (async)
ioctl$SNDRV_CTL_IOCTL_CARD_INFO(r1, 0x81785501, &(0x7f0000000040)=""/2) (async)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000002140)=ANY=[@ANYBLOB="0000000000000000e515222a297f161a4f03f91c6f09857f5837a5c6e6eb72f933b72eb75b0a0e4f295055dcfbbf3e1a0540a1f1e89065e86c2b3fa73f4c0d7f1518d0c3bbe32a4635af8561f344c2bdfc1a1d81f6ed99dc0d198519ba2b9a3037587cdb5332ed18ec1c5dd53d556dd7"])

17:16:02 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x440)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0)
ftruncate(r2, 0xed) (async)
ftruncate(r2, 0xed)
write$binfmt_script(r1, &(0x7f0000000140)=ANY=[], 0x208e24b) (async)
write$binfmt_script(r1, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r1, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000140)=ANY=[], 0x208e24b) (async)
write$binfmt_script(r3, &(0x7f0000000140)=ANY=[], 0x208e24b)
r4 = dup2(r1, r1)
epoll_ctl$EPOLL_CTL_MOD(r4, 0x3, r1, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r3, 0x0)
clock_gettime(0x0, &(0x7f00000020c0)={<r5=>0x0, <r6=>0x0})
recvmmsg$unix(r3, &(0x7f0000001fc0)=[{{&(0x7f0000000100)=@abs, 0x6e, &(0x7f0000000280)=[{&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f0000000180)=""/165, 0xa5}, {}, {&(0x7f0000000240)=""/7, 0x7}], 0x4}}, {{&(0x7f0000001300)=@abs, 0x6e, &(0x7f0000001640)=[{&(0x7f0000001380)=""/82, 0x52}, {&(0x7f0000001400)=""/232, 0xe8}, {&(0x7f0000001500)=""/62, 0x3e}, {&(0x7f0000001540)=""/185, 0xb9}, {&(0x7f0000001600)=""/20, 0x14}], 0x5, &(0x7f00000021c0)=ANY=[@ANYBLOB="18000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="0000000028000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="1c00000000000000f6f79e34bce0491b66396961ca25343c6baa94e5a8b783ad5b89a46ea89b88cfee25c8a5c3cd59fc138426e17f0740947412654f8af1c3131ce7345a3e4dfafefe74734358dd44dde6adf5869fd3a2a68fb9052f", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000002c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000020000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32], 0x108}}, {{&(0x7f0000001800)=@abs, 0x6e, &(0x7f0000001c80)=[{&(0x7f0000001880)=""/84, 0x54}, {&(0x7f0000001900)}, {&(0x7f0000001940)=""/126, 0x7e}, {&(0x7f00000019c0)=""/238, 0xee}, {&(0x7f0000001ac0)=""/46, 0x2e}, {&(0x7f0000001b00)=""/98, 0x62}, {&(0x7f0000001b80)=""/230, 0xe6}], 0x7, &(0x7f0000001d00)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x30}}, {{&(0x7f0000001d40)=@abs, 0x6e, &(0x7f0000001ec0)=[{&(0x7f0000001dc0)=""/210, 0xd2}], 0x1, &(0x7f0000001f00)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}], 0xa8}}], 0x4, 0x2000, &(0x7f0000002100)={r5, r6+60000000})
ioctl$SNDRV_CTL_IOCTL_CARD_INFO(r1, 0x81785501, &(0x7f0000000040)=""/2) (async)
ioctl$SNDRV_CTL_IOCTL_CARD_INFO(r1, 0x81785501, &(0x7f0000000040)=""/2)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000002140)=ANY=[@ANYBLOB="0000000000000000e515222a297f161a4f03f91c6f09857f5837a5c6e6eb72f933b72eb75b0a0e4f295055dcfbbf3e1a0540a1f1e89065e86c2b3fa73f4c0d7f1518d0c3bbe32a4635af8561f344c2bdfc1a1d81f6ed99dc0d198519ba2b9a3037587cdb5332ed18ec1c5dd53d556dd7"])

17:16:02 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
dup(r0) (async)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0) (async)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b)
r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x781400, 0x0)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r3, 0x8983, &(0x7f0000000100)={0x0, 'wg2\x00', {0x1}, 0x800})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0)
ioctl$UI_DEV_SETUP(r2, 0x405c5503, &(0x7f0000000080)={{0x80, 0x7ff, 0x100, 0x1f}, 'syz0\x00', 0x34}) (async)
ioctl$UI_DEV_SETUP(r2, 0x405c5503, &(0x7f0000000080)={{0x80, 0x7ff, 0x100, 0x1f}, 'syz0\x00', 0x34})
r4 = openat$zero(0xffffffffffffff9c, &(0x7f0000000140), 0x2240, 0x0)
getsockopt$inet6_tcp_buf(r4, 0x6, 0x1f, &(0x7f0000000180)=""/150, &(0x7f0000000240)=0x96) (async)
getsockopt$inet6_tcp_buf(r4, 0x6, 0x1f, &(0x7f0000000180)=""/150, &(0x7f0000000240)=0x96)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

17:16:02 executing program 3:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x9, [@func={0x7, 0x0, 0x0, 0x12}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e]}}, 0x0, 0x2d}, 0x20)

[  872.261934][T19727] input: syz1 as /devices/virtual/input/input183
17:16:02 executing program 3:
setresuid(0xee00, 0x0, 0xee00)
r0 = getuid()
r1 = getuid()
setresuid(r0, r0, r1)

17:16:02 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 61)

17:16:03 executing program 1:
syz_emit_ethernet(0x2e, &(0x7f0000000000)={@remote, @remote, @val={@void}, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0xa, @remote, @multicast2, @local, @multicast1}}}}, &(0x7f0000000040)={0x1, 0x4, [0xbe9, 0x5a, 0xb3c, 0xf33]})
openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
write$tun(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_open_dev$vcsa(&(0x7f0000000180), 0xcb, 0x4000)
ioctl$TUNSETDEBUG(r0, 0x400454c9, &(0x7f00000001c0))
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000240)={0x0, 0x0, 0x800})
syz_open_dev$vcsa(&(0x7f0000001280), 0xfffffffffffffffb, 0x0)
ioctl$SIOCGSKNS(0xffffffffffffffff, 0x894c, &(0x7f00000012c0)={'veth0_to_bridge\x00', 0x200})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000001300), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = syz_usb_connect$hid(0x6, 0x36, &(0x7f0000001340)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x5ac, 0x29a, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0xa, 0xb0, 0x7f, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x7, {0x9, 0x21, 0x199, 0x0, 0x1, {0x22, 0x73a}}}}]}}]}}, &(0x7f00000014c0)={0xa, &(0x7f0000001380)={0xa, 0x6, 0x310, 0x38, 0x81, 0x80, 0x8, 0x7}, 0x0, 0x0})
syz_usb_control_io$hid(r2, &(0x7f0000001600)={0x24, &(0x7f0000001500)={0x40, 0x2d, 0x2, {0x2, 0xb}}, &(0x7f0000001540)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x40d}}, &(0x7f0000001580), 0x0}, 0x0)

17:16:03 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x400)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000))

17:16:03 executing program 3:
r0 = socket(0x25, 0x5, 0x0)
accept$phonet_pipe(r0, 0x0, 0x0)

17:16:03 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501) (async)
ioctl$UI_DEV_CREATE(r1, 0x5501)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b) (async)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b)
r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x781400, 0x0)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r3, 0x8983, &(0x7f0000000100)={0x0, 'wg2\x00', {0x1}, 0x800})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0)
ioctl$UI_DEV_SETUP(r2, 0x405c5503, &(0x7f0000000080)={{0x80, 0x7ff, 0x100, 0x1f}, 'syz0\x00', 0x34})
r4 = openat$zero(0xffffffffffffff9c, &(0x7f0000000140), 0x2240, 0x0)
getsockopt$inet6_tcp_buf(r4, 0x6, 0x1f, &(0x7f0000000180)=""/150, &(0x7f0000000240)=0x96)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a) (async)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

17:16:03 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x400) (async)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000))

[  872.582069][T19743] input: syz1 as /devices/virtual/input/input184
[  872.740870][T19752] FAULT_INJECTION: forcing a failure.
[  872.740870][T19752] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  872.760868][T19752] CPU: 1 PID: 19752 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  872.769758][T19752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  872.779824][T19752] Call Trace:
[  872.783116][T19752]  <TASK>
[  872.786059][T19752]  dump_stack_lvl+0x1e3/0x2cb
[  872.790760][T19752]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  872.796409][T19752]  ? panic+0x84d/0x84d
[  872.800507][T19752]  should_fail+0x38a/0x4c0
[  872.804943][T19752]  prepare_alloc_pages+0x1db/0x5b0
[  872.810081][T19752]  __alloc_pages+0x14f/0x700
[  872.814693][T19752]  ? __rmqueue_pcplist+0x2030/0x2030
[  872.819998][T19752]  ? __lock_acquire+0x1295/0x1ff0
[  872.825047][T19752]  alloc_pages_vma+0x39a/0x800
[  872.829826][T19752]  ? mpol_shared_policy_lookup+0x144/0x1e0
[  872.835646][T19752]  shmem_alloc_and_acct_page+0x4d1/0xd10
[  872.841302][T19752]  ? shmem_swapin_page+0x22f0/0x22f0
[  872.846625][T19752]  ? xas_descend+0x219/0x3a0
[  872.851230][T19752]  ? xas_load+0x128/0x140
[  872.855750][T19752]  ? pagecache_get_page+0xd23/0x1010
[  872.861146][T19752]  ? page_cache_prev_miss+0x500/0x500
[  872.866535][T19752]  ? do_raw_spin_unlock+0x137/0x8b0
[  872.871754][T19752]  ? _raw_spin_unlock_irq+0x1f/0x40
[  872.876978][T19752]  ? lockdep_hardirqs_on+0x94/0x130
[  872.882193][T19752]  shmem_getpage_gfp+0x17b1/0x3190
[  872.887359][T19752]  ? shmem_getpage+0xa0/0xa0
[  872.891967][T19752]  ? fault_in_safe_writeable+0x250/0x250
[  872.897633][T19752]  shmem_write_begin+0xce/0x1a0
[  872.903299][T19752]  generic_perform_write+0x2bf/0x5b0
[  872.908707][T19752]  ? grab_cache_page_write_begin+0x90/0x90
[  872.914628][T19752]  ? file_remove_privs+0x610/0x610
[  872.919759][T19752]  ? down_write+0x10e/0x170
[  872.924276][T19752]  __generic_file_write_iter+0x243/0x4f0
[  872.930016][T19752]  generic_file_write_iter+0xa7/0x1b0
[  872.935404][T19752]  vfs_write+0xacf/0xe50
[  872.939670][T19752]  ? file_end_write+0x250/0x250
[  872.944536][T19752]  ? __fget_files+0x413/0x480
[  872.949236][T19752]  ? __fdget_pos+0x1eb/0x2b0
[  872.953832][T19752]  ? ksys_write+0x77/0x2c0
[  872.958265][T19752]  ksys_write+0x1a2/0x2c0
[  872.962610][T19752]  ? print_irqtrace_events+0x210/0x210
[  872.968100][T19752]  ? __ia32_sys_read+0x80/0x80
[  872.972883][T19752]  ? syscall_enter_from_user_mode+0x2e/0x230
[  872.978882][T19752]  ? lockdep_hardirqs_on+0x94/0x130
[  872.984102][T19752]  ? syscall_enter_from_user_mode+0x2e/0x230
[  872.990104][T19752]  do_syscall_64+0x3d/0xb0
[  872.994540][T19752]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  873.000447][T19752] RIP: 0033:0x7f768c93682f
[  873.004874][T19752] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  873.024490][T19752] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  873.032926][T19752] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
17:16:03 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x18, r1, 0x401, 0x0, 0x0, {0xf}, [@TIPC_NLA_NET={0x4}]}, 0x18}}, 0x0)

17:16:03 executing program 3:
r0 = socket(0x28, 0x80805, 0x0)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3, 0x2e)

17:16:03 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x400)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000))

17:16:03 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 62)

[  873.040923][T19752] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  873.048931][T19752] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  873.056921][T19752] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  873.064907][T19752] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  873.072910][T19752]  </TASK>
17:16:03 executing program 3:
setresuid(0x0, 0xee00, 0x0)
add_key$fscrypt_v1(&(0x7f0000000000), 0x0, 0x0, 0x0, 0xffffffffffffffff)
syz_io_uring_setup(0x722c, &(0x7f0000000080)={0x0, 0x0, 0x2}, &(0x7f0000000100), &(0x7f0000000180))

17:16:03 executing program 0:
r0 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_BEARER_ADD(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000540)={0x18, r0, 0x1, 0x0, 0x0, {0x2}, [@TIPC_NLA_BEARER={0x4}]}, 0x18}}, 0x0)

[  873.149986][T19756] FAULT_INJECTION: forcing a failure.
[  873.149986][T19756] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  873.163138][T19756] CPU: 0 PID: 19756 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  873.171744][T19756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  873.181813][T19756] Call Trace:
[  873.185105][T19756]  <TASK>
[  873.188048][T19756]  dump_stack_lvl+0x1e3/0x2cb
[  873.192756][T19756]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  873.198432][T19756]  ? panic+0x84d/0x84d
[  873.202525][T19756]  ? shmem_getpage_gfp+0x2b48/0x3190
[  873.207839][T19756]  should_fail+0x38a/0x4c0
[  873.212371][T19756]  copy_page_from_iter_atomic+0x451/0x1230
[  873.218215][T19756]  ? pipe_zero+0x4f0/0x4f0
[  873.222670][T19756]  generic_perform_write+0x33a/0x5b0
[  873.227988][T19756]  ? grab_cache_page_write_begin+0x90/0x90
[  873.233810][T19756]  ? file_remove_privs+0x610/0x610
[  873.238943][T19756]  ? down_write+0x10e/0x170
[  873.243470][T19756]  __generic_file_write_iter+0x243/0x4f0
17:16:03 executing program 0:
setresuid(0xee01, 0xee00, 0x0)
setresuid(0xee00, 0xee00, 0x0)

[  873.249217][T19756]  generic_file_write_iter+0xa7/0x1b0
[  873.254612][T19756]  vfs_write+0xacf/0xe50
[  873.258875][T19756]  ? file_end_write+0x250/0x250
[  873.263763][T19756]  ? __fget_files+0x413/0x480
[  873.268462][T19756]  ? __fdget_pos+0x1eb/0x2b0
[  873.273077][T19756]  ? ksys_write+0x77/0x2c0
[  873.277520][T19756]  ksys_write+0x1a2/0x2c0
[  873.281864][T19756]  ? print_irqtrace_events+0x210/0x210
[  873.287343][T19756]  ? __ia32_sys_read+0x80/0x80
[  873.292123][T19756]  ? syscall_enter_from_user_mode+0x2e/0x230
[  873.298120][T19756]  ? lockdep_hardirqs_on+0x94/0x130
[  873.303351][T19756]  ? syscall_enter_from_user_mode+0x2e/0x230
[  873.309357][T19756]  do_syscall_64+0x3d/0xb0
[  873.313800][T19756]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  873.319800][T19756] RIP: 0033:0x7f768c93682f
[  873.324224][T19756] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  873.343841][T19756] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  873.352276][T19756] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  873.360266][T19756] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  873.368343][T19756] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  873.376328][T19756] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  873.384313][T19756] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  873.392315][T19756]  </TASK>
17:16:04 executing program 1:
syz_emit_ethernet(0x2e, &(0x7f0000000000)={@remote, @remote, @val={@void}, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0xa, @remote, @multicast2, @local, @multicast1}}}}, &(0x7f0000000040)={0x1, 0x4, [0xbe9, 0x5a, 0xb3c, 0xf33]})
openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
write$tun(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_open_dev$vcsa(&(0x7f0000000180), 0xcb, 0x4000)
ioctl$TUNSETDEBUG(r0, 0x400454c9, &(0x7f00000001c0))
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000240)={0x0, 0x0, 0x800})
syz_open_dev$vcsa(&(0x7f0000001280), 0xfffffffffffffffb, 0x0)
ioctl$SIOCGSKNS(0xffffffffffffffff, 0x894c, &(0x7f00000012c0)={'veth0_to_bridge\x00', 0x200})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000001300), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = syz_usb_connect$hid(0x6, 0x36, &(0x7f0000001340)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x5ac, 0x29a, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0xa, 0xb0, 0x7f, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x7, {0x9, 0x21, 0x199, 0x0, 0x1, {0x22, 0x73a}}}}]}}]}}, &(0x7f00000014c0)={0xa, &(0x7f0000001380)={0xa, 0x6, 0x310, 0x38, 0x81, 0x80, 0x8, 0x7}, 0x0, 0x0})
syz_usb_control_io$hid(r2, &(0x7f0000001600)={0x24, &(0x7f0000001500)={0x40, 0x2d, 0x2, {0x2, 0xb}}, &(0x7f0000001540)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x40d}}, &(0x7f0000001580), 0x0}, 0x0)

17:16:04 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)={0x2c, r1, 0x401, 0x0, 0x0, {0xf}, [@TIPC_NLA_NET={0x18, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x3}]}]}, 0x2c}}, 0x0)

17:16:04 executing program 4:
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000)={[0xcf]}, 0x8, 0x80000)
write$FUSE_NOTIFY_RETRIEVE(r0, &(0x7f0000000040)={0x30, 0x5, 0x0, {0x0, 0x6, 0x9, 0x5}}, 0x30)
r1 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r1, 0xc008551a, &(0x7f0000000080)=ANY=[@ANYBLOB="00000000000000003b429d0f0bf1b25f2ccea04aa5a3495743996a2e4f0d47cbab6b7e468d8aefe4f909b877249ba75455b49c680e249080876f38c704bc518936c8f43cda6adc8448234c0ce599fad814bff667bd4928bf9b10048019188edcc65f7da506a7ea80567ea7d971502a83958523216ec8b02bcc22801df43b4c6fd4613305121776839a"])

17:16:04 executing program 3:
syz_clone(0x0, 0x0, 0x0, &(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)='y')

17:16:04 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0)
fspick(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x1)
ioctl$AUTOFS_IOC_FAIL(r2, 0x9361, 0x9)
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x90200, 0x0)
bind$inet6(r3, &(0x7f0000000080)={0xa, 0x4e22, 0x6, @local, 0x1}, 0x1c)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {0xfffe}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe], [0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe5]}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)
ioctl$UI_DEV_CREATE(r0, 0x5501)

17:16:04 executing program 0:
r0 = socket(0x1e, 0x1, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000040), r0)

17:16:04 executing program 3:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x1c, 0x1c, 0x7, [@var={0x2, 0x0, 0x0, 0xe, 0x2}, @fwd={0x5}]}, {0x0, [0x0, 0x5f, 0x30, 0x0, 0x61]}}, 0x0, 0x3b}, 0x20)

17:16:04 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 63)

17:16:04 executing program 4:
signalfd4(0xffffffffffffffff, &(0x7f0000000000)={[0xcf]}, 0x8, 0x80000) (async)
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000)={[0xcf]}, 0x8, 0x80000)
write$FUSE_NOTIFY_RETRIEVE(r0, &(0x7f0000000040)={0x30, 0x5, 0x0, {0x0, 0x6, 0x9, 0x5}}, 0x30)
r1 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r1, 0xc008551a, &(0x7f0000000080)=ANY=[@ANYBLOB="00000000000000003b429d0f0bf1b25f2ccea04aa5a3495743996a2e4f0d47cbab6b7e468d8aefe4f909b877249ba75455b49c680e249080876f38c704bc518936c8f43cda6adc8448234c0ce599fad814bff667bd4928bf9b10048019188edcc65f7da506a7ea80567ea7d971502a83958523216ec8b02bcc22801df43b4c6fd4613305121776839a"])

17:16:04 executing program 3:
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x6, 0x1, &(0x7f0000000040)=ANY=[@ANYBLOB="9e"], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

17:16:04 executing program 4:
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000)={[0xcf]}, 0x8, 0x80000)
write$FUSE_NOTIFY_RETRIEVE(r0, &(0x7f0000000040)={0x30, 0x5, 0x0, {0x0, 0x6, 0x9, 0x5}}, 0x30)
r1 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r1, 0xc008551a, &(0x7f0000000080)=ANY=[@ANYBLOB="00000000000000003b429d0f0bf1b25f2ccea04aa5a3495743996a2e4f0d47cbab6b7e468d8aefe4f909b877249ba75455b49c680e249080876f38c704bc518936c8f43cda6adc8448234c0ce599fad814bff667bd4928bf9b10048019188edcc65f7da506a7ea80567ea7d971502a83958523216ec8b02bcc22801df43b4c6fd4613305121776839a"])

17:16:04 executing program 0:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x8, [@fwd={0x5}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x2e, 0x2e]}}, 0x0, 0x2c, 0x0, 0x1}, 0x20)

[  873.666819][T19789] FAULT_INJECTION: forcing a failure.
[  873.666819][T19789] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  873.697919][T19789] CPU: 1 PID: 19789 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  873.706629][T19789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  873.716690][T19789] Call Trace:
[  873.719966][T19789]  <TASK>
[  873.722880][T19789]  dump_stack_lvl+0x1e3/0x2cb
[  873.727555][T19789]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  873.733200][T19789]  ? panic+0x84d/0x84d
[  873.737269][T19789]  should_fail+0x38a/0x4c0
[  873.741680][T19789]  prepare_alloc_pages+0x1db/0x5b0
[  873.746783][T19789]  __alloc_pages+0x14f/0x700
[  873.751363][T19789]  ? __rmqueue_pcplist+0x2030/0x2030
[  873.756644][T19789]  ? finish_lock_switch+0x8f/0x100
[  873.761750][T19789]  ? finish_task_switch+0x134/0x630
[  873.767013][T19789]  alloc_pages_vma+0x39a/0x800
[  873.771764][T19789]  ? mpol_shared_policy_lookup+0x144/0x1e0
[  873.777556][T19789]  shmem_alloc_and_acct_page+0x4d1/0xd10
[  873.783186][T19789]  ? shmem_swapin_page+0x22f0/0x22f0
[  873.788467][T19789]  ? xas_descend+0x219/0x3a0
[  873.793040][T19789]  ? xas_load+0x128/0x140
[  873.797355][T19789]  ? pagecache_get_page+0xd23/0x1010
[  873.802626][T19789]  ? page_cache_prev_miss+0x500/0x500
[  873.807983][T19789]  ? do_raw_spin_unlock+0x137/0x8b0
[  873.813165][T19789]  ? _raw_spin_unlock_irq+0x1f/0x40
[  873.818347][T19789]  ? lockdep_hardirqs_on+0x94/0x130
[  873.823528][T19789]  shmem_getpage_gfp+0x17b1/0x3190
[  873.828650][T19789]  ? shmem_getpage+0xa0/0xa0
[  873.833346][T19789]  ? fault_in_safe_writeable+0x250/0x250
[  873.838994][T19789]  shmem_write_begin+0xce/0x1a0
[  873.843844][T19789]  generic_perform_write+0x2bf/0x5b0
[  873.849131][T19789]  ? grab_cache_page_write_begin+0x90/0x90
[  873.854924][T19789]  ? file_remove_privs+0x610/0x610
[  873.860032][T19789]  ? down_write+0x10e/0x170
[  873.864523][T19789]  __generic_file_write_iter+0x243/0x4f0
[  873.870147][T19789]  generic_file_write_iter+0xa7/0x1b0
[  873.875502][T19789]  vfs_write+0xacf/0xe50
[  873.879821][T19789]  ? file_end_write+0x250/0x250
[  873.884659][T19789]  ? __fget_files+0x413/0x480
[  873.889324][T19789]  ? __fdget_pos+0x1eb/0x2b0
[  873.893897][T19789]  ? ksys_write+0x77/0x2c0
[  873.898298][T19789]  ksys_write+0x1a2/0x2c0
[  873.902610][T19789]  ? print_irqtrace_events+0x210/0x210
[  873.908057][T19789]  ? __ia32_sys_read+0x80/0x80
[  873.912805][T19789]  ? syscall_enter_from_user_mode+0x2e/0x230
[  873.918769][T19789]  ? lockdep_hardirqs_on+0x94/0x130
[  873.923948][T19789]  ? syscall_enter_from_user_mode+0x2e/0x230
[  873.929910][T19789]  do_syscall_64+0x3d/0xb0
[  873.934312][T19789]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  873.940189][T19789] RIP: 0033:0x7f768c93682f
[  873.944598][T19789] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  873.964274][T19789] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  873.972673][T19789] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  873.980652][T19789] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  873.988628][T19789] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  873.997313][T19789] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  874.005266][T19789] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  874.013233][T19789]  </TASK>
[  874.204690][T19797] input: syz1 as /devices/virtual/input/input185
17:16:05 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0)
fspick(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x1)
ioctl$AUTOFS_IOC_FAIL(r2, 0x9361, 0x9)
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x90200, 0x0)
bind$inet6(r3, &(0x7f0000000080)={0xa, 0x4e22, 0x6, @local, 0x1}, 0x1c)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {0xfffe}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe], [0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe5]}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)
ioctl$UI_DEV_CREATE(r0, 0x5501)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) (async)
dup(r0) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0) (async)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0) (async)
fspick(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x1) (async)
ioctl$AUTOFS_IOC_FAIL(r2, 0x9361, 0x9) (async)
openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x90200, 0x0) (async)
bind$inet6(r3, &(0x7f0000000080)={0xa, 0x4e22, 0x6, @local, 0x1}, 0x1c) (async)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {0xfffe}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe], [0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe5]}, 0x45c) (async)
ioctl$UI_DEV_CREATE(r1, 0x5501) (async)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a) (async)
ioctl$UI_DEV_CREATE(r0, 0x5501) (async)

17:16:05 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000480)={0x20, r1, 0x3a38bf0b69d25fe5, 0x0, 0x0, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x20}}, 0x0)

17:16:05 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 64)

17:16:05 executing program 3:
setresuid(0xffffffffffffffff, 0x0, 0xee00)

17:16:05 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00~@'])

17:16:05 executing program 0:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0xa, [@func={0x7, 0x2}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e, 0x61]}}, 0x0, 0x2e}, 0x20)

17:16:05 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00~@'])

17:16:05 executing program 3:
setresuid(0x0, 0xee00, 0x0)
socketpair(0x1a, 0x0, 0x0, &(0x7f0000000000))

17:16:05 executing program 0:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0xa, [@func={0x7, 0x0, 0x0, 0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e, 0x61]}}, 0x0, 0x2e}, 0x20)

17:16:05 executing program 1:
sysinfo(0xfffffffffffffffc)

17:16:05 executing program 3:
r0 = socket(0x18, 0x0, 0x2)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)

17:16:05 executing program 1:
setresuid(0x0, 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, 0x0)

[  874.694724][T19811] input: syz1 as /devices/virtual/input/input186
[  874.822646][T19807] FAULT_INJECTION: forcing a failure.
[  874.822646][T19807] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  874.835811][T19807] CPU: 0 PID: 19807 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  874.844385][T19807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  874.854440][T19807] Call Trace:
[  874.857719][T19807]  <TASK>
[  874.860638][T19807]  dump_stack_lvl+0x1e3/0x2cb
[  874.865314][T19807]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  874.870933][T19807]  ? panic+0x84d/0x84d
[  874.874996][T19807]  ? shmem_getpage_gfp+0x2b48/0x3190
[  874.880291][T19807]  should_fail+0x38a/0x4c0
[  874.884731][T19807]  copy_page_from_iter_atomic+0x451/0x1230
[  874.890537][T19807]  ? pipe_zero+0x4f0/0x4f0
[  874.894973][T19807]  generic_perform_write+0x33a/0x5b0
[  874.900307][T19807]  ? grab_cache_page_write_begin+0x90/0x90
[  874.906123][T19807]  ? file_remove_privs+0x610/0x610
[  874.911244][T19807]  ? down_write+0x10e/0x170
[  874.915757][T19807]  __generic_file_write_iter+0x243/0x4f0
[  874.921408][T19807]  generic_file_write_iter+0xa7/0x1b0
[  874.926783][T19807]  vfs_write+0xacf/0xe50
[  874.931030][T19807]  ? file_end_write+0x250/0x250
[  874.935890][T19807]  ? __fget_files+0x413/0x480
[  874.940644][T19807]  ? __fdget_pos+0x1eb/0x2b0
[  874.945213][T19807]  ? ksys_write+0x77/0x2c0
[  874.949628][T19807]  ksys_write+0x1a2/0x2c0
[  874.953947][T19807]  ? print_irqtrace_events+0x210/0x210
[  874.959415][T19807]  ? __ia32_sys_read+0x80/0x80
[  874.964170][T19807]  ? syscall_enter_from_user_mode+0x2e/0x230
[  874.970133][T19807]  ? lockdep_hardirqs_on+0x94/0x130
[  874.975327][T19807]  ? syscall_enter_from_user_mode+0x2e/0x230
[  874.981322][T19807]  do_syscall_64+0x3d/0xb0
[  874.985746][T19807]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  874.991629][T19807] RIP: 0033:0x7f768c93682f
[  874.996043][T19807] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
17:16:05 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0)
fspick(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x1)
ioctl$AUTOFS_IOC_FAIL(r2, 0x9361, 0x9)
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x90200, 0x0)
bind$inet6(r3, &(0x7f0000000080)={0xa, 0x4e22, 0x6, @local, 0x1}, 0x1c)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {0xfffe}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe], [0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe5]}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)
ioctl$UI_DEV_CREATE(r0, 0x5501)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) (async)
dup(r0) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0) (async)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0) (async)
fspick(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x1) (async)
ioctl$AUTOFS_IOC_FAIL(r2, 0x9361, 0x9) (async)
openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x90200, 0x0) (async)
bind$inet6(r3, &(0x7f0000000080)={0xa, 0x4e22, 0x6, @local, 0x1}, 0x1c) (async)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {0xfffe}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe], [0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe5]}, 0x45c) (async)
ioctl$UI_DEV_CREATE(r1, 0x5501) (async)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a) (async)
ioctl$UI_DEV_CREATE(r0, 0x5501) (async)

17:16:05 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00~@'])

17:16:05 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 65)

17:16:05 executing program 0:
socket$inet6_udplite(0x5, 0x2, 0x88)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
capget(0x0, 0x0)

[  875.015642][T19807] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  875.024059][T19807] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  875.032025][T19807] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  875.040003][T19807] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  875.047970][T19807] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  875.055929][T19807] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  875.063918][T19807]  </TASK>
17:16:05 executing program 1:
syz_io_uring_setup(0x351, &(0x7f0000000000)={0x0, 0x0, 0x2000}, 0x0, 0x0)

17:16:05 executing program 3:
setresuid(0x0, 0xee00, 0x0)
socket$inet6(0xa, 0x3, 0x5)

17:16:05 executing program 1:
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, 0x0}, 0x0)
r0 = socket(0x11, 0x2, 0x0)
setsockopt$pppl2tp_PPPOL2TP_SO_DEBUG(r0, 0x107, 0x14, 0x20000000, 0x4)

17:16:05 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)=<r1=>0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f00000000c0)={{0x7, 0x2, 0x6, 0x3f, 'syz1\x00', 0x10000}, 0x4, 0x3, 0x8001, r1, 0x2, 0xb6c1, 'syz0\x00', &(0x7f0000000080)=['/dev/snd/controlC#\x00', ']%.-)\x00'], 0x19})
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000))

17:16:05 executing program 3:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f0000000040)={{}, {0x6a}})

17:16:05 executing program 0:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$sock_SIOCETHTOOL(r0, 0x8922, &(0x7f0000000040)={'vlan0\x00', 0x0})

[  875.187450][T19847] FAULT_INJECTION: forcing a failure.
[  875.187450][T19847] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  875.208973][T19840] input: syz1 as /devices/virtual/input/input187
[  875.257216][T19847] CPU: 0 PID: 19847 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  875.265844][T19847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  875.275919][T19847] Call Trace:
[  875.279194][T19847]  <TASK>
[  875.282208][T19847]  dump_stack_lvl+0x1e3/0x2cb
[  875.286891][T19847]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  875.292521][T19847]  ? panic+0x84d/0x84d
[  875.296627][T19847]  should_fail+0x38a/0x4c0
[  875.301208][T19847]  prepare_alloc_pages+0x1db/0x5b0
[  875.306349][T19847]  __alloc_pages+0x14f/0x700
[  875.310965][T19847]  ? __rmqueue_pcplist+0x2030/0x2030
[  875.316262][T19847]  ? __lock_acquire+0x1295/0x1ff0
[  875.321295][T19847]  alloc_pages_vma+0x39a/0x800
[  875.326101][T19847]  ? mpol_shared_policy_lookup+0x144/0x1e0
[  875.331994][T19847]  shmem_alloc_and_acct_page+0x4d1/0xd10
[  875.337733][T19847]  ? shmem_swapin_page+0x22f0/0x22f0
[  875.343138][T19847]  ? xas_descend+0x219/0x3a0
[  875.347765][T19847]  ? xas_load+0x128/0x140
[  875.352124][T19847]  ? pagecache_get_page+0xd23/0x1010
17:16:05 executing program 3:
setresuid(0xee00, 0x0, 0xee00)
r0 = getuid()
setresuid(0x0, r0, 0x0)
syz_io_uring_setup(0x351, &(0x7f0000000000)={0x0, 0x0, 0xb00}, 0x0, 0x0)

[  875.357437][T19847]  ? page_cache_prev_miss+0x500/0x500
[  875.362923][T19847]  ? do_raw_spin_unlock+0x137/0x8b0
[  875.368228][T19847]  ? _raw_spin_unlock_irq+0x1f/0x40
[  875.373463][T19847]  ? lockdep_hardirqs_on+0x94/0x130
[  875.378695][T19847]  shmem_getpage_gfp+0x17b1/0x3190
[  875.383860][T19847]  ? shmem_getpage+0xa0/0xa0
[  875.388466][T19847]  ? fault_in_safe_writeable+0x250/0x250
[  875.394105][T19847]  shmem_write_begin+0xce/0x1a0
[  875.399021][T19847]  generic_perform_write+0x2bf/0x5b0
[  875.404381][T19847]  ? grab_cache_page_write_begin+0x90/0x90
[  875.410195][T19847]  ? file_remove_privs+0x610/0x610
[  875.415304][T19847]  ? down_write+0x10e/0x170
[  875.419822][T19847]  __generic_file_write_iter+0x243/0x4f0
[  875.425481][T19847]  generic_file_write_iter+0xa7/0x1b0
[  875.430884][T19847]  vfs_write+0xacf/0xe50
[  875.435147][T19847]  ? file_end_write+0x250/0x250
[  875.440065][T19847]  ? __fget_files+0x413/0x480
[  875.444945][T19847]  ? __fdget_pos+0x1eb/0x2b0
[  875.449532][T19847]  ? ksys_write+0x77/0x2c0
[  875.453950][T19847]  ksys_write+0x1a2/0x2c0
[  875.458295][T19847]  ? print_irqtrace_events+0x210/0x210
[  875.463779][T19847]  ? __ia32_sys_read+0x80/0x80
[  875.468578][T19847]  ? syscall_enter_from_user_mode+0x2e/0x230
[  875.474650][T19847]  ? lockdep_hardirqs_on+0x94/0x130
[  875.479895][T19847]  ? syscall_enter_from_user_mode+0x2e/0x230
[  875.485864][T19847]  do_syscall_64+0x3d/0xb0
[  875.490277][T19847]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  875.496176][T19847] RIP: 0033:0x7f768c93682f
[  875.500607][T19847] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  875.520196][T19847] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  875.528634][T19847] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  875.536643][T19847] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  875.544624][T19847] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
17:16:06 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)=<r1=>0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f00000000c0)={{0x7, 0x2, 0x6, 0x3f, 'syz1\x00', 0x10000}, 0x4, 0x3, 0x8001, r1, 0x2, 0xb6c1, 'syz0\x00', &(0x7f0000000080)=['/dev/snd/controlC#\x00', ']%.-)\x00'], 0x19})
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000))
syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0) (async)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) (async)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f00000000c0)={{0x7, 0x2, 0x6, 0x3f, 'syz1\x00', 0x10000}, 0x4, 0x3, 0x8001, r1, 0x2, 0xb6c1, 'syz0\x00', &(0x7f0000000080)=['/dev/snd/controlC#\x00', ']%.-)\x00'], 0x19}) (async)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)) (async)

17:16:06 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f00000013c0)=0x80000000001, 0x4)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c)
recvmmsg(r1, &(0x7f0000001600)=[{{0x0, 0xfd06, 0x0}}], 0x300, 0x10102, 0x0)
sendto$inet6(r1, &(0x7f00000001c0)="a6e2976b5c4383036d32dadd2e144d8645ca8d1b230e105614396838da83c754887e7bea2f35d4ea667817d90d532af065f2e398dd9081ea16f8b371a202a6f9e505bbc964a0d3880bf0104a0a0a2f0d311efee1637e85a0125b38f961918f99bf9c2c146e42327f178dc2b3d4936e7f7f0a79f74ba464d83ab41742d1186776dc1779b5c50ac82d0fa8f9e42074b5b6079207fb21e718080907964669be539791e3e98687ee059853", 0xfffffffffffffcc1, 0x840, 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f0000000140)={&(0x7f0000ffc000/0x1000)=nil, 0x3000, 0x0, 0x0, 0x0, &(0x7f0000000380)=""/4096, 0xfffffffffffffeea, 0x0, 0x0}, &(0x7f0000000280)=0x40)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0)
getsockname$packet(r2, &(0x7f0000000000), &(0x7f0000000080)=0x14)
r3 = dup(r0)
write$uinput_user_dev(r3, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r3, 0x5501)
ioctl$UI_DEV_DESTROY(r3, 0x4004556a)

[  875.552595][T19847] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  875.560570][T19847] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  875.568815][T19847]  </TASK>
17:16:06 executing program 1:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x7, [@typedef={0x5, 0x0, 0x0, 0x8, 0x3}, @func_proto, @fwd={0x5}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x61]}}, &(0x7f0000000040)=""/83, 0x43, 0x53, 0x1}, 0x20)

17:16:06 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 66)

17:16:06 executing program 3:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0xa, [@func={0x7}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e, 0x61]}}, 0x0, 0x2e}, 0x20)

17:16:06 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)=<r1=>0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f00000000c0)={{0x7, 0x2, 0x6, 0x3f, 'syz1\x00', 0x10000}, 0x4, 0x3, 0x8001, r1, 0x2, 0xb6c1, 'syz0\x00', &(0x7f0000000080)=['/dev/snd/controlC#\x00', ']%.-)\x00'], 0x19}) (async)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000))

17:16:06 executing program 0:
r0 = socket(0x11, 0x2, 0x0)
setsockopt$pppl2tp_PPPOL2TP_SO_DEBUG(r0, 0x107, 0xa, 0x0, 0x4)

17:16:06 executing program 1:
r0 = socket(0x2c, 0x3, 0x0)
accept4$phonet_pipe(r0, 0x0, 0x0, 0x0)

[  875.753861][T19891] FAULT_INJECTION: forcing a failure.
[  875.753861][T19891] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  875.767527][T19891] CPU: 1 PID: 19891 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  875.776135][T19891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  875.786372][T19891] Call Trace:
[  875.789672][T19891]  <TASK>
[  875.792611][T19891]  dump_stack_lvl+0x1e3/0x2cb
[  875.793455][T19877] input: syz1 as /devices/virtual/input/input188
[  875.797705][T19891]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  875.797737][T19891]  ? panic+0x84d/0x84d
[  875.797758][T19891]  ? shmem_getpage_gfp+0x2b48/0x3190
[  875.819803][T19891]  should_fail+0x38a/0x4c0
[  875.824255][T19891]  copy_page_from_iter_atomic+0x451/0x1230
[  875.830105][T19891]  ? pipe_zero+0x4f0/0x4f0
[  875.834650][T19891]  generic_perform_write+0x33a/0x5b0
[  875.840319][T19891]  ? grab_cache_page_write_begin+0x90/0x90
[  875.846145][T19891]  ? file_remove_privs+0x610/0x610
[  875.851285][T19891]  ? down_write+0x10e/0x170
[  875.855808][T19891]  __generic_file_write_iter+0x243/0x4f0
[  875.861482][T19891]  generic_file_write_iter+0xa7/0x1b0
[  875.866906][T19891]  vfs_write+0xacf/0xe50
[  875.871177][T19891]  ? file_end_write+0x250/0x250
[  875.876053][T19891]  ? __fget_files+0x413/0x480
[  875.880846][T19891]  ? __fdget_pos+0x1eb/0x2b0
[  875.885448][T19891]  ? ksys_write+0x77/0x2c0
[  875.889888][T19891]  ksys_write+0x1a2/0x2c0
[  875.894229][T19891]  ? print_irqtrace_events+0x210/0x210
[  875.899708][T19891]  ? __ia32_sys_read+0x80/0x80
[  875.904488][T19891]  ? syscall_enter_from_user_mode+0x2e/0x230
[  875.910486][T19891]  ? lockdep_hardirqs_on+0x94/0x130
[  875.915701][T19891]  ? syscall_enter_from_user_mode+0x2e/0x230
[  875.921701][T19891]  do_syscall_64+0x3d/0xb0
[  875.926136][T19891]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  875.932044][T19891] RIP: 0033:0x7f768c93682f
[  875.936470][T19891] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  875.956086][T19891] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  875.964525][T19891] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  875.972596][T19891] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  875.980584][T19891] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  875.988565][T19891] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
17:16:06 executing program 3:
openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x0)
syz_usb_connect$hid(0x0, 0x3f, &(0x7f0000000140)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x4e7, 0x9, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x1, 0x30, 0x0, [{{0x9, 0x4, 0x0, 0x7, 0x0, 0x3, 0x1, 0x3, 0x88, {0x9, 0x21, 0xff, 0x3c, 0x1, {0x22, 0x6aa}}, {{{0x9, 0x5, 0x81, 0x3, 0x40, 0x0, 0x0, 0x1}}, [{{0x9, 0x5, 0x2, 0x3, 0x0, 0x3f, 0x6, 0xa1}}]}}}]}}]}}, 0x0)

17:16:06 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000080), 0x106, 0x2}}, 0x20)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)=ANY=[@ANYBLOB="3fc8861fc32e08518ea5f3f9ab660040240000000500000005000000000000000100000080000000ff0300000600000006000000f52fd64d8de21a64b50300000006da7fe1a79ddae2c9441166327095257bf5ee66d323baafb5c592848b11c970a09608333102b28000460000000000000000"])

17:16:06 executing program 0:
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x0)

17:16:06 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000080), 0x106, 0x2}}, 0x20)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)=ANY=[@ANYBLOB="3fc8861fc32e08518ea5f3f9ab660040240000000500000005000000000000000100000080000000ff0300000600000006000000f52fd64d8de21a64b50300000006da7fe1a79ddae2c9441166327095257bf5ee66d323baafb5c592848b11c970a09608333102b28000460000000000000000"])
syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0) (async)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000080), 0x106, 0x2}}, 0x20) (async)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)=ANY=[@ANYBLOB="3fc8861fc32e08518ea5f3f9ab660040240000000500000005000000000000000100000080000000ff0300000600000006000000f52fd64d8de21a64b50300000006da7fe1a79ddae2c9441166327095257bf5ee66d323baafb5c592848b11c970a09608333102b28000460000000000000000"]) (async)

17:16:06 executing program 0:
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000140)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x4e7, 0x9, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x0, {0x9}}}]}}]}}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})

17:16:06 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) (async)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4) (async, rerun: 32)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f00000013c0)=0x80000000001, 0x4) (async, rerun: 32)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) (async)
recvmmsg(r1, &(0x7f0000001600)=[{{0x0, 0xfd06, 0x0}}], 0x300, 0x10102, 0x0)
sendto$inet6(r1, &(0x7f00000001c0)="a6e2976b5c4383036d32dadd2e144d8645ca8d1b230e105614396838da83c754887e7bea2f35d4ea667817d90d532af065f2e398dd9081ea16f8b371a202a6f9e505bbc964a0d3880bf0104a0a0a2f0d311efee1637e85a0125b38f961918f99bf9c2c146e42327f178dc2b3d4936e7f7f0a79f74ba464d83ab41742d1186776dc1779b5c50ac82d0fa8f9e42074b5b6079207fb21e718080907964669be539791e3e98687ee059853", 0xfffffffffffffcc1, 0x840, 0x0, 0x0) (async)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f0000000140)={&(0x7f0000ffc000/0x1000)=nil, 0x3000, 0x0, 0x0, 0x0, &(0x7f0000000380)=""/4096, 0xfffffffffffffeea, 0x0, 0x0}, &(0x7f0000000280)=0x40) (async)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0)
getsockname$packet(r2, &(0x7f0000000000), &(0x7f0000000080)=0x14)
r3 = dup(r0)
write$uinput_user_dev(r3, &(0x7f0000000380)={'syz1\x00'}, 0x45c) (async, rerun: 32)
ioctl$UI_DEV_CREATE(r3, 0x5501) (async, rerun: 32)
ioctl$UI_DEV_DESTROY(r3, 0x4004556a)

17:16:06 executing program 1:
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)

[  875.996550][T19891] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  876.005506][T19891]  </TASK>
17:16:06 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$eJzs3V1oXOl5B/Dn1ZHWkrdpZjebzYdzMbCBbL3ZRbK8axVvQI4VkQXjNSsrFwsFjS3ZHVZfluTiDSVVIaGEtMUlF7msYRNor+qrFpYG3KttCAFRKJRCi9tuzPZuEpq25CIKZ+YdaaSVLcWWJdn7+xn7P3PmOTPvmdUzc4523jkBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAER8+Sun+gfSPQp69nAwAMCeODv2Rv/gvd7/AYDHzvntjv8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAiRRHfjBTvfKeRJprXW3rP1GevXhsfGd16tb4UKbqiaNaXf3sHjg0ef/mVE0PtvPf6u+0z8frY+VPV03Mz8wtTi4tTk9Xx2frFucmpHd/Dg66/2dHmE1Cdeevq5KVLi9VjLw1uuPla5c6hJ5+tnBw6Mvhmu3Z8ZHR0rKOmu+e+H/1D0u7dFY+RJ6KIr0aK9178INUioisevBe2ee142Pqiu+y/5kaMj4w2N2S6XptdKm9MXbmqO6LSsdJwu0f2oBcfyHDEcvnfqRzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGW25PJbpiKEXMR0Sj2O/Bc9D0RBHHI8WdnzfShYgo2n3wwtmxN/oHt7+D7j0Y5BZWV1f/qFJErMQj0LNwQB2KIv4iUnx3oj8u5nZuts37EV8o89WIK2XeSnE9X0/lC8RQxM+8n8AjrTuK+EmkmEuNNNnu/eZ+5ZmvVV+bvTTXUdver3zkjw/2kn0TDrDeKOJCc4+/ke7/l10AAAAAAAAAAAAAwN4o4t1IcXPm+TQfnXNK67OXq+drF6Zbnwpuf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZ5j0BAAAAAAAAAAAAAAAAAACwy/qiiNFIceOdP2ieVzqa56X/+MmhsyPPdJ4z/lPb3E9Z+1JEvBs7OydvTz7XeOoq/+z+dgHb640ivpHP//fH+z0YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgQOiKIr4ZKb73i0aKFBHDERPRytvFfo8OAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACj1piJOR4r//kpv8/pKRHw2In61Wv6J+P/VzfZ7xAAAAAAAAAAAAAAAAAAAAPAYSkVciRTff6+RKhFxrXLn0JPPVk4OHRl8s4giUlnSWf/62PlT1dNzM/MLU4uLU5PV8dn6xbnJqZ0+XO+Z+uzVa+Mjow9lY7bV95DH39d7em7+7YX65d9f2vL2w72nLiwuLdQubn1z9EV3RH/nkqPNAY+PjDYHPV2vzTZXTV13GWB3RHWnGwMAAAAAAAAAAAAAAAAAAMCBcTgVMRIpnvvh8dSeN97dmvP/sda1Yq32B3+4/l0A05uyrfP7A9Yvtyerb14++Gba6UCPNifeV8dHRkfHOhZ393y4tBxTSkV8MlIc+ftPN+fDpzi85dz4su5PI8XQL4/nusqRsm54Q1Xv0fGR0erZudkXT01Pz12s9dUuTE9Vx+ZrF3f8xQEAAAAAAAAAAAAAAAAAAABwD4dTEX8WKY6/tpLa553P8/+7W9c65v+/GtGeyd+bNuaa5tz+327O7W9d/vjJodeOPXe35Q9j/n85ppSK+FWkeOovP908n357/n//ptqy7vuR4iff+lyu63qirBtob07rHi/Vp6f6y9oXIsW3z7Vro1n7Sq79xHrtQFn7D5Hi6d/bWHsi1z6zXnusrL0TKUbPbl37yfXawbK2L1J88U+q7drDZe2Xc+2z67UvXZybntzp08tHU9n//x4pPj/w1dT+mb9r/3d8/8fyplzzoZ6/9+Xd6v9Kx7Ll3Neruf8Htun/K5Hiz69/Lte1eu9Yvv2p5r/r/f/tSPE7H9tY+3KufXq9dmCnmwX7qez/H0WKldv/svYzn/s/d9Z6h3b2/2e7N2Z7v2DH/f9vu9v/T3Usq+RxDf6GzwV81Cy+/fW3atPTUwsuuLBrF5bjQAzDhQe4sN+vTMDDVu7//2+k+NKVIrWPY/P+/2+1rq0f///fN9b3/09uyjX7dPz/dMeyk/mopac7ondpZr7nUxG9i29//cX6TO3y1OWp2cHBoRO/e3zg2ImBnifaB/frl3b83MGjruz/tyLFD/7mn9Z+j73x+H/r3/8d3pRr7rP/f/nX2wx0m/7/ROc2bTiu+c2eD/goKfv/ryLFv974YO3/N93r93/t3/M9/9zG7GsX7dP7/zMdy6r5n6GOZc8XEad2+lgAAAAAAAAAAPCIOJyK+GGk+NvGP66d837j53/i8+3azs//3c3W5//f4vLKPz+08/8DAPdWvv+PRYofH/5ian+HzE4+/z+5Kdfs0+d/n+1YNrlH85p3/CQDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMB9SlHEoUjxznca6XZRXm/pPVOfvXptfGR069XenYuIriia9eXf3oFjg8dffuXEUDvvvf5u+0y8Pnb+VPX03Mz8wtTi4tRkdXy2fnFucmrH9/Cg6292tPkEVGfeujp56dJi9dhLgxtuvla5c+jJZysnh44MvtmuHR8ZHR3rqOnuue9H/5C0e3fFY+SJKOLHkeK9Fz9I/1GUPX23XljecS9s89rxsPVFd9l/zY0YHxltbsh0vTa7VN6YunJVd0SlY6Xhdo/sQS8+kOGI5fK1txzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGm370P1GJrhhKEfMR0Sj2e/AcND1RxN9Fijs/b6T/LCKKdh+8cHbsjf7B7e+gew8GeZeHrRQRK/EI9CwcUIeiiGcixXcn+uO/ilZfNdvm/YgvlPlqxJUyb6W4nq+n8gViKOJn3k/gkdYdRZyLFHOpkd4vcu839yvPfK362uyluY7a9n7lgx4r7/vxwV6yb8IB1htF/LS5x99IP/V+DgAAAAAAAAAAAAAHXBFfihQ3Z55Pzfmha3NK67OXq+drF6ZbH+tvf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZPicNAAAAAAAAAAAAAAAAAMBD0hVFfCtSfO8XjbRatM4vOxGtvG2eKzzWfh0AAP//5UVOig==") (fail_nth: 67)

17:16:06 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000080), 0x106, 0x2}}, 0x20)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)=ANY=[@ANYBLOB="3fc8861fc32e08518ea5f3f9ab660040240000000500000005000000000000000100000080000000ff0300000600000006000000f52fd64d8de21a64b50300000006da7fe1a79ddae2c9441166327095257bf5ee66d323baafb5c592848b11c970a09608333102b28000460000000000000000"]) (async)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)=ANY=[@ANYBLOB="3fc8861fc32e08518ea5f3f9ab660040240000000500000005000000000000000100000080000000ff0300000600000006000000f52fd64d8de21a64b50300000006da7fe1a79ddae2c9441166327095257bf5ee66d323baafb5c592848b11c970a09608333102b28000460000000000000000"])

17:16:06 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x50d, 0x3201, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000001ac0)={0x24, &(0x7f0000001980)={0x0, 0x0, 0x2, {0x2}}, 0x0, &(0x7f0000001a40)={0x0, 0x22, 0x6, {[@local, @global=@item_4={0x3, 0x1, 0x0, "744759fb"}]}}, 0x0}, 0x0)

17:16:06 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r1, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r1, 0xc008551a, &(0x7f0000000040)={0x7, 0x24, [0x2, 0x1000, 0x1, 0x200, 0x3f, 0x5, 0x400, 0x5, 0x6]})
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000))

[  876.125992][T19918] FAULT_INJECTION: forcing a failure.
[  876.125992][T19918] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  876.154098][T19918] CPU: 1 PID: 19918 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  876.162725][T19918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  876.173238][T19918] Call Trace:
[  876.176532][T19918]  <TASK>
[  876.179475][T19918]  dump_stack_lvl+0x1e3/0x2cb
[  876.184176][T19918]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  876.189940][T19918]  ? panic+0x84d/0x84d
[  876.194046][T19918]  should_fail+0x38a/0x4c0
[  876.198490][T19918]  prepare_alloc_pages+0x1db/0x5b0
[  876.203632][T19918]  __alloc_pages+0x14f/0x700
[  876.208254][T19918]  ? __rmqueue_pcplist+0x2030/0x2030
[  876.213588][T19918]  ? __lock_acquire+0x1295/0x1ff0
[  876.218732][T19918]  alloc_pages_vma+0x39a/0x800
[  876.223523][T19918]  ? mpol_shared_policy_lookup+0x144/0x1e0
[  876.229351][T19918]  shmem_alloc_and_acct_page+0x4d1/0xd10
[  876.235015][T19918]  ? shmem_swapin_page+0x22f0/0x22f0
[  876.240423][T19918]  ? xas_descend+0x219/0x3a0
[  876.245031][T19918]  ? xas_load+0x128/0x140
[  876.249380][T19918]  ? pagecache_get_page+0xd23/0x1010
[  876.254684][T19918]  ? page_cache_prev_miss+0x500/0x500
[  876.260072][T19918]  ? do_raw_spin_unlock+0x137/0x8b0
[  876.265288][T19918]  ? _raw_spin_unlock_irq+0x1f/0x40
[  876.270514][T19918]  ? lockdep_hardirqs_on+0x94/0x130
[  876.275736][T19918]  shmem_getpage_gfp+0x17b1/0x3190
[  876.280900][T19918]  ? shmem_getpage+0xa0/0xa0
[  876.285600][T19918]  ? fault_in_safe_writeable+0x250/0x250
[  876.291269][T19918]  shmem_write_begin+0xce/0x1a0
[  876.296149][T19918]  generic_perform_write+0x2bf/0x5b0
[  876.301548][T19918]  ? grab_cache_page_write_begin+0x90/0x90
[  876.307367][T19918]  ? file_remove_privs+0x610/0x610
[  876.312658][T19918]  ? down_write+0x10e/0x170
[  876.317439][T19918]  __generic_file_write_iter+0x243/0x4f0
[  876.323101][T19918]  generic_file_write_iter+0xa7/0x1b0
[  876.328511][T19918]  vfs_write+0xacf/0xe50
[  876.332775][T19918]  ? file_end_write+0x250/0x250
[  876.337671][T19918]  ? __fget_files+0x413/0x480
[  876.342372][T19918]  ? __fdget_pos+0x1eb/0x2b0
[  876.347059][T19918]  ? ksys_write+0x77/0x2c0
[  876.351492][T19918]  ksys_write+0x1a2/0x2c0
[  876.355835][T19918]  ? print_irqtrace_events+0x210/0x210
[  876.361443][T19918]  ? __ia32_sys_read+0x80/0x80
[  876.366236][T19918]  ? syscall_enter_from_user_mode+0x2e/0x230
[  876.372239][T19918]  ? lockdep_hardirqs_on+0x94/0x130
[  876.377464][T19918]  ? syscall_enter_from_user_mode+0x2e/0x230
[  876.383480][T19918]  do_syscall_64+0x3d/0xb0
[  876.387915][T19918]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  876.393822][T19918] RIP: 0033:0x7f768c93682f
[  876.398251][T19918] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  876.418562][T19918] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  876.427088][T19918] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  876.435072][T19918] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  876.443933][T19918] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  876.451955][T19918] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  876.459942][T19918] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  876.467951][T19918]  </TASK>
17:16:07 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 68)

[  876.472078][ T4512] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  876.479773][ T4514] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  876.549431][T19926] FAULT_INJECTION: forcing a failure.
[  876.549431][T19926] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  876.562833][T19926] CPU: 0 PID: 19926 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  876.571446][T19926] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  876.581516][T19926] Call Trace:
[  876.584804][T19926]  <TASK>
[  876.587754][T19926]  dump_stack_lvl+0x1e3/0x2cb
[  876.592452][T19926]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  876.598100][T19926]  ? panic+0x84d/0x84d
[  876.602174][T19926]  ? shmem_getpage_gfp+0x2b48/0x3190
[  876.607579][T19926]  should_fail+0x38a/0x4c0
[  876.612097][T19926]  copy_page_from_iter_atomic+0x451/0x1230
[  876.617930][T19926]  ? pipe_zero+0x4f0/0x4f0
[  876.622377][T19926]  generic_perform_write+0x33a/0x5b0
[  876.627699][T19926]  ? grab_cache_page_write_begin+0x90/0x90
[  876.633513][T19926]  ? file_remove_privs+0x610/0x610
[  876.638638][T19926]  ? down_write+0x10e/0x170
[  876.643151][T19926]  __generic_file_write_iter+0x243/0x4f0
[  876.648801][T19926]  generic_file_write_iter+0xa7/0x1b0
[  876.654191][T19926]  vfs_write+0xacf/0xe50
[  876.658620][T19926]  ? file_end_write+0x250/0x250
[  876.663484][T19926]  ? __fget_files+0x413/0x480
[  876.668189][T19926]  ? __fdget_pos+0x1eb/0x2b0
[  876.672807][T19926]  ? ksys_write+0x77/0x2c0
[  876.677238][T19926]  ksys_write+0x1a2/0x2c0
[  876.681569][T19926]  ? print_irqtrace_events+0x210/0x210
[  876.687042][T19926]  ? __ia32_sys_read+0x80/0x80
[  876.691822][T19926]  ? syscall_enter_from_user_mode+0x2e/0x230
[  876.697808][T19926]  ? lockdep_hardirqs_on+0x94/0x130
[  876.703104][T19926]  ? syscall_enter_from_user_mode+0x2e/0x230
[  876.709184][T19926]  do_syscall_64+0x3d/0xb0
[  876.713718][T19926]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  876.719627][T19926] RIP: 0033:0x7f768c93682f
[  876.724054][T19926] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  876.743664][T19926] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  876.752093][T19926] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  876.760069][T19926] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  876.768132][T19926] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  876.776296][T19926] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  876.784303][T19926] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  876.792305][T19926]  </TASK>
[  876.881537][ T3614] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[  877.011358][ T4512] usb 1-1: Using ep0 maxpacket: 8
[  877.016481][ T4514] usb 4-1: Using ep0 maxpacket: 8
[  877.151420][ T3614] usb 2-1: Using ep0 maxpacket: 32
[  877.171806][ T4512] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  877.182938][ T4514] usb 4-1: config 1 interface 0 altsetting 7 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  877.196170][ T4512] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  877.206098][ T4514] usb 4-1: config 1 interface 0 has no altsetting 0
[  877.291551][ T3614] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  877.306264][ T3614] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  877.316437][ T3614] usb 2-1: New USB device found, idVendor=050d, idProduct=3201, bcdDevice= 0.00
[  877.329225][ T3614] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  877.343505][ T3614] usb 2-1: config 0 descriptor??
[  877.391618][ T4514] usb 4-1: New USB device found, idVendor=04e7, idProduct=0009, bcdDevice= 0.40
[  877.400681][ T4514] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  877.415073][ T4514] usb 4-1: Product: syz
[  877.419252][ T4514] usb 4-1: Manufacturer: syz
[  877.423967][ T4514] usb 4-1: SerialNumber: syz
[  877.491466][ T4512] usb 1-1: string descriptor 0 read error: -22
[  877.497863][ T4512] usb 1-1: New USB device found, idVendor=04e7, idProduct=0009, bcdDevice= 0.40
[  877.507166][ T4512] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  877.580520][ T4512] usbhid 1-1:1.0: can't add hid device: -22
[  877.586522][ T4512] usbhid: probe of 1-1:1.0 failed with error -22
[  877.763698][ T4514] usbhid 4-1:1.0: couldn't find an input interrupt endpoint
[  877.773076][ T4514] usb 4-1: USB disconnect, device number 15
[  877.790605][ T4512] usb 1-1: USB disconnect, device number 18
[  877.834129][ T3614] belkin 0003:050D:3201.0012: item fetching failed at offset 1/5
[  877.842619][ T3614] belkin 0003:050D:3201.0012: parse failed
[  877.849170][ T3614] belkin: probe of 0003:050D:3201.0012 failed with error -22
[  878.035876][ T4512] usb 2-1: USB disconnect, device number 25
17:16:08 executing program 3:
getuid()
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, 0x0)
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
syz_genetlink_get_family_id$team(&(0x7f0000000640), 0xffffffffffffffff)

17:16:08 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0) (async)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r1, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r1, 0xc008551a, &(0x7f0000000040)={0x7, 0x24, [0x2, 0x1000, 0x1, 0x200, 0x3f, 0x5, 0x400, 0x5, 0x6]}) (async)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000))

17:16:08 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 69)

17:16:08 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) (async)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f00000013c0)=0x80000000001, 0x4) (async)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c)
recvmmsg(r1, &(0x7f0000001600)=[{{0x0, 0xfd06, 0x0}}], 0x300, 0x10102, 0x0)
sendto$inet6(r1, &(0x7f00000001c0)="a6e2976b5c4383036d32dadd2e144d8645ca8d1b230e105614396838da83c754887e7bea2f35d4ea667817d90d532af065f2e398dd9081ea16f8b371a202a6f9e505bbc964a0d3880bf0104a0a0a2f0d311efee1637e85a0125b38f961918f99bf9c2c146e42327f178dc2b3d4936e7f7f0a79f74ba464d83ab41742d1186776dc1779b5c50ac82d0fa8f9e42074b5b6079207fb21e718080907964669be539791e3e98687ee059853", 0xfffffffffffffcc1, 0x840, 0x0, 0x0) (async)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) (async)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f0000000140)={&(0x7f0000ffc000/0x1000)=nil, 0x3000, 0x0, 0x0, 0x0, &(0x7f0000000380)=""/4096, 0xfffffffffffffeea, 0x0, 0x0}, &(0x7f0000000280)=0x40) (async)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0)
getsockname$packet(r2, &(0x7f0000000000), &(0x7f0000000080)=0x14) (async)
r3 = dup(r0)
write$uinput_user_dev(r3, &(0x7f0000000380)={'syz1\x00'}, 0x45c) (async)
ioctl$UI_DEV_CREATE(r3, 0x5501) (async)
ioctl$UI_DEV_DESTROY(r3, 0x4004556a)

[  878.220272][T19930] FAULT_INJECTION: forcing a failure.
[  878.220272][T19930] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  878.249000][T19930] CPU: 0 PID: 19930 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  878.257626][T19930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  878.267693][T19930] Call Trace:
[  878.270986][T19930]  <TASK>
[  878.273925][T19930]  dump_stack_lvl+0x1e3/0x2cb
[  878.278639][T19930]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  878.284298][T19930]  ? panic+0x84d/0x84d
[  878.288397][T19930]  should_fail+0x38a/0x4c0
[  878.292833][T19930]  prepare_alloc_pages+0x1db/0x5b0
[  878.297973][T19930]  __alloc_pages+0x14f/0x700
[  878.302582][T19930]  ? __rmqueue_pcplist+0x2030/0x2030
[  878.307887][T19930]  ? __lock_acquire+0x1295/0x1ff0
[  878.312939][T19930]  alloc_pages_vma+0x39a/0x800
[  878.317732][T19930]  ? mpol_shared_policy_lookup+0x144/0x1e0
[  878.323530][T19930]  shmem_alloc_and_acct_page+0x4d1/0xd10
[  878.329151][T19930]  ? shmem_swapin_page+0x22f0/0x22f0
[  878.334446][T19930]  ? xas_descend+0x219/0x3a0
[  878.339130][T19930]  ? xas_load+0x128/0x140
[  878.343454][T19930]  ? pagecache_get_page+0xd23/0x1010
[  878.348761][T19930]  ? page_cache_prev_miss+0x500/0x500
[  878.354141][T19930]  ? do_raw_spin_unlock+0x137/0x8b0
[  878.359327][T19930]  ? _raw_spin_unlock_irq+0x1f/0x40
[  878.364512][T19930]  ? lockdep_hardirqs_on+0x94/0x130
[  878.369718][T19930]  shmem_getpage_gfp+0x17b1/0x3190
[  878.374834][T19930]  ? shmem_getpage+0xa0/0xa0
[  878.379429][T19930]  ? fault_in_safe_writeable+0x250/0x250
[  878.385051][T19930]  shmem_write_begin+0xce/0x1a0
[  878.389905][T19930]  generic_perform_write+0x2bf/0x5b0
[  878.395182][T19930]  ? grab_cache_page_write_begin+0x90/0x90
[  878.400974][T19930]  ? file_remove_privs+0x610/0x610
[  878.406078][T19930]  ? down_write+0x10e/0x170
[  878.410566][T19930]  __generic_file_write_iter+0x243/0x4f0
[  878.416217][T19930]  generic_file_write_iter+0xa7/0x1b0
[  878.421573][T19930]  vfs_write+0xacf/0xe50
[  878.425808][T19930]  ? file_end_write+0x250/0x250
[  878.430652][T19930]  ? __fget_files+0x413/0x480
[  878.435402][T19930]  ? __fdget_pos+0x1eb/0x2b0
[  878.440058][T19930]  ? ksys_write+0x77/0x2c0
[  878.444552][T19930]  ksys_write+0x1a2/0x2c0
[  878.448874][T19930]  ? print_irqtrace_events+0x210/0x210
[  878.454329][T19930]  ? __ia32_sys_read+0x80/0x80
[  878.459100][T19930]  ? syscall_enter_from_user_mode+0x2e/0x230
[  878.465070][T19930]  ? lockdep_hardirqs_on+0x94/0x130
[  878.470535][T19930]  ? syscall_enter_from_user_mode+0x2e/0x230
[  878.476498][T19930]  do_syscall_64+0x3d/0xb0
[  878.480914][T19930]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  878.486812][T19930] RIP: 0033:0x7f768c93682f
[  878.491221][T19930] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  878.510825][T19930] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
17:16:09 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x8947, &(0x7f00000005c0)={'sit0\x00', 0x0})

17:16:09 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89a0, &(0x7f00000005c0)={'sit0\x00', 0x0})

17:16:09 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r1, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r1, 0xc008551a, &(0x7f0000000040)={0x7, 0x24, [0x2, 0x1000, 0x1, 0x200, 0x3f, 0x5, 0x400, 0x5, 0x6]})
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000))

17:16:09 executing program 1:
r0 = syz_open_dev$loop(&(0x7f0000000180), 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat$binder_debug(0xffffffffffffff9c, &(0x7f0000004340)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)

[  878.519228][T19930] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  878.527190][T19930] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  878.535156][T19930] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  878.543120][T19930] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  878.551088][T19930] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  878.559689][T19930]  </TASK>
17:16:09 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$eJzs3V1oXOl5B/Dn1ZHWkrdpZjebzYdzMbCBbL3ZRbK8axVvQI4VkQXjNSsrFwsFjS3ZHVZfluTiDSVVIaGEtMUlF7msYRNor+qrFpYG3KttCAFRKJRCi9tuzPZuEpq25CIKZ+YdaaSVLcWWJdn7+xn7P3PmOTPvmdUzc4523jkBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAER8+Sun+gfSPQp69nAwAMCeODv2Rv/gvd7/AYDHzvntjv8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAiRRHfjBTvfKeRJprXW3rP1GevXhsfGd16tb4UKbqiaNaXf3sHjg0ef/mVE0PtvPf6u+0z8frY+VPV03Mz8wtTi4tTk9Xx2frFucmpHd/Dg66/2dHmE1Cdeevq5KVLi9VjLw1uuPla5c6hJ5+tnBw6Mvhmu3Z8ZHR0rKOmu+e+H/1D0u7dFY+RJ6KIr0aK9178INUioisevBe2ee142Pqiu+y/5kaMj4w2N2S6XptdKm9MXbmqO6LSsdJwu0f2oBcfyHDEcvnfqRzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGW25PJbpiKEXMR0Sj2O/Bc9D0RBHHI8WdnzfShYgo2n3wwtmxN/oHt7+D7j0Y5BZWV1f/qFJErMQj0LNwQB2KIv4iUnx3oj8u5nZuts37EV8o89WIK2XeSnE9X0/lC8RQxM+8n8AjrTuK+EmkmEuNNNnu/eZ+5ZmvVV+bvTTXUdver3zkjw/2kn0TDrDeKOJCc4+/ke7/l10AAAAAAAAAAAAAwN4o4t1IcXPm+TQfnXNK67OXq+drF6Zbnwpuf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZ5j0BAAAAAAAAAAAAAAAAAACwy/qiiNFIceOdP2ieVzqa56X/+MmhsyPPdJ4z/lPb3E9Z+1JEvBs7OydvTz7XeOoq/+z+dgHb640ivpHP//fH+z0YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgQOiKIr4ZKb73i0aKFBHDERPRytvFfo8OAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACj1piJOR4r//kpv8/pKRHw2In61Wv6J+P/VzfZ7xAAAAAAAAAAAAAAAAAAAAPAYSkVciRTff6+RKhFxrXLn0JPPVk4OHRl8s4giUlnSWf/62PlT1dNzM/MLU4uLU5PV8dn6xbnJqZ0+XO+Z+uzVa+Mjow9lY7bV95DH39d7em7+7YX65d9f2vL2w72nLiwuLdQubn1z9EV3RH/nkqPNAY+PjDYHPV2vzTZXTV13GWB3RHWnGwMAAAAAAAAAAAAAAAAAAMCBcTgVMRIpnvvh8dSeN97dmvP/sda1Yq32B3+4/l0A05uyrfP7A9Yvtyerb14++Gba6UCPNifeV8dHRkfHOhZ393y4tBxTSkV8MlIc+ftPN+fDpzi85dz4su5PI8XQL4/nusqRsm54Q1Xv0fGR0erZudkXT01Pz12s9dUuTE9Vx+ZrF3f8xQEAAAAAAAAAAAAAAAAAAABwD4dTEX8WKY6/tpLa553P8/+7W9c65v+/GtGeyd+bNuaa5tz+327O7W9d/vjJodeOPXe35Q9j/n85ppSK+FWkeOovP908n357/n//ptqy7vuR4iff+lyu63qirBtob07rHi/Vp6f6y9oXIsW3z7Vro1n7Sq79xHrtQFn7D5Hi6d/bWHsi1z6zXnusrL0TKUbPbl37yfXawbK2L1J88U+q7drDZe2Xc+2z67UvXZybntzp08tHU9n//x4pPj/w1dT+mb9r/3d8/8fyplzzoZ6/9+Xd6v9Kx7Ll3Neruf8Htun/K5Hiz69/Lte1eu9Yvv2p5r/r/f/tSPE7H9tY+3KufXq9dmCnmwX7qez/H0WKldv/svYzn/s/d9Z6h3b2/2e7N2Z7v2DH/f9vu9v/T3Usq+RxDf6GzwV81Cy+/fW3atPTUwsuuLBrF5bjQAzDhQe4sN+vTMDDVu7//2+k+NKVIrWPY/P+/2+1rq0f///fN9b3/09uyjX7dPz/dMeyk/mopac7ondpZr7nUxG9i29//cX6TO3y1OWp2cHBoRO/e3zg2ImBnifaB/frl3b83MGjruz/tyLFD/7mn9Z+j73x+H/r3/8d3pRr7rP/f/nX2wx0m/7/ROc2bTiu+c2eD/goKfv/ryLFv974YO3/N93r93/t3/M9/9zG7GsX7dP7/zMdy6r5n6GOZc8XEad2+lgAAAAAAAAAAPCIOJyK+GGk+NvGP66d837j53/i8+3azs//3c3W5//f4vLKPz+08/8DAPdWvv+PRYofH/5ian+HzE4+/z+5Kdfs0+d/n+1YNrlH85p3/CQDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMB9SlHEoUjxznca6XZRXm/pPVOfvXptfGR069XenYuIriia9eXf3oFjg8dffuXEUDvvvf5u+0y8Pnb+VPX03Mz8wtTi4tRkdXy2fnFucmrH9/Cg6292tPkEVGfeujp56dJi9dhLgxtuvla5c+jJZysnh44MvtmuHR8ZHR3rqOnuue9H/5C0e3fFY+SJKOLHkeK9Fz9I/1GUPX23XljecS9s89rxsPVFd9l/zY0YHxltbsh0vTa7VN6YunJVd0SlY6Xhdo/sQS8+kOGI5fK1txzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGm370P1GJrhhKEfMR0Sj2e/AcND1RxN9Fijs/b6T/LCKKdh+8cHbsjf7B7e+gew8GeZeHrRQRK/EI9CwcUIeiiGcixXcn+uO/ilZfNdvm/YgvlPlqxJUyb6W4nq+n8gViKOJn3k/gkdYdRZyLFHOpkd4vcu839yvPfK362uyluY7a9n7lgx4r7/vxwV6yb8IB1htF/LS5x99IP/V+DgAAAAAAAAAAAAAHXBFfihQ3Z55Pzfmha3NK67OXq+drF6ZbH+tvf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZPicNAAAAAAAAAAAAAAAAAMBD0hVFfCtSfO8XjbRatM4vOxGtvG2eKzzWfh0AAP//5UVOig==") (fail_nth: 70)

17:16:09 executing program 3:
symlink(&(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='./file0\x00')
readlink(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)=""/129, 0x81)

17:16:09 executing program 1:
memfd_create(&(0x7f0000008ac0)='erspan0\x00', 0x9)

17:16:09 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf7a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xae], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb07c]}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0)
ioctl$UI_DEV_CREATE(r2, 0x5501)

17:16:09 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000004340)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
syz_genetlink_get_family_id$fou(&(0x7f00000044c0), r1)
setsockopt$netlink_NETLINK_CAP_ACK(r1, 0x10e, 0xa, &(0x7f0000000000)=0xfff, 0x4)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f00000005c0)={'sit0\x00', &(0x7f0000000580)={'ip_vti0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast2, @dev={0xac, 0x14, 0x14, 0x2d}}}}})

17:16:09 executing program 0:
r0 = syz_mount_image$udf(&(0x7f0000000480), &(0x7f0000000180)='./bus\x00', 0x40, &(0x7f00000007c0)=ANY=[@ANYBLOB="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", @ANYRES32], 0x1, 0xbee, &(0x7f0000000cc0)="$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")
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x5, 0x6, &(0x7f0000000580)=ANY=[@ANYBLOB="af78c61254cabf2596b3", @ANYRES64=r0, @ANYRESDEC], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001380)={0xffffffffffffffff, 0xfe, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff3c, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, 0x0, 0x0}}, 0x10)
r1 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
r2 = open(&(0x7f0000000a40)='./bus\x00', 0x141a42, 0x0)
sendfile(r2, r1, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_GET_BTF_INFO(0xf, 0x0, 0x0)
bpf$OBJ_GET_PROG(0x7, 0x0, 0x0)
socket(0x0, 0x0, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback}, 0x1c)
sendto$inet6(r3, &(0x7f00000000c0)="044aac2f202c5feda71e039a57a93088fdcce4afe28aac61837792741a190670ccbe1a2b00aa77a87d56a3f12c7920ad02928a5d1014e5b896f000fcf6521928480be9af82613a5c661f4110adba358afd8b5b4ef1702051e393ede2698112a1f1bdf1d0f568546ed322ab4c53545bd2cd6e48522f0c154cb3c6864dc30ae921db100f1ee97a234503338f8fdf356472da0c7ab62f274f34", 0xadf29f33fb903ae1, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)
ioctl$int_in(r3, 0x5452, &(0x7f00000002c0)=0x1)
recvmsg(r3, &(0x7f00000008c0)={0x0, 0x4, &(0x7f0000000840)=[{&(0x7f0000000040)=""/50, 0xfffffe72}, {&(0x7f0000000240)=""/48, 0x1b}, {&(0x7f0000000780)=""/129, 0x80}, {&(0x7f0000000300)=""/68, 0x44}, {&(0x7f0000000380)=""/124, 0x79}, {&(0x7f0000000400)=""/168, 0xb7}], 0x6, 0x0, 0x0, 0xb7}, 0x40000110)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000001780)={&(0x7f0000000040), 0xc, &(0x7f00000001c0)=[{0x0, 0xb0}], 0x1, 0x0, 0x28}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0)

[  878.740796][T19957] input: syz1 as /devices/virtual/input/input190
[  878.750597][T19955] FAULT_INJECTION: forcing a failure.
[  878.750597][T19955] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  878.764024][T19955] CPU: 1 PID: 19955 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  878.772656][T19955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  878.782981][T19955] Call Trace:
[  878.786604][T19955]  <TASK>
[  878.789661][T19955]  dump_stack_lvl+0x1e3/0x2cb
[  878.794360][T19955]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  878.800009][T19955]  ? panic+0x84d/0x84d
[  878.804094][T19955]  ? shmem_getpage_gfp+0x2b48/0x3190
[  878.809408][T19955]  should_fail+0x38a/0x4c0
[  878.813866][T19955]  copy_page_from_iter_atomic+0x451/0x1230
[  878.819735][T19955]  ? pipe_zero+0x4f0/0x4f0
[  878.824180][T19955]  generic_perform_write+0x33a/0x5b0
[  878.829488][T19955]  ? grab_cache_page_write_begin+0x90/0x90
[  878.835316][T19955]  ? file_remove_privs+0x610/0x610
[  878.840449][T19955]  ? down_write+0x10e/0x170
[  878.844969][T19955]  __generic_file_write_iter+0x243/0x4f0
[  878.850717][T19955]  generic_file_write_iter+0xa7/0x1b0
[  878.856121][T19955]  vfs_write+0xacf/0xe50
[  878.860392][T19955]  ? file_end_write+0x250/0x250
[  878.865263][T19955]  ? __fget_files+0x413/0x480
[  878.869961][T19955]  ? __fdget_pos+0x1eb/0x2b0
[  878.874661][T19955]  ? ksys_write+0x77/0x2c0
[  878.881101][T19955]  ksys_write+0x1a2/0x2c0
[  878.885448][T19955]  ? print_irqtrace_events+0x210/0x210
[  878.890932][T19955]  ? __ia32_sys_read+0x80/0x80
[  878.895711][T19955]  ? syscall_enter_from_user_mode+0x2e/0x230
[  878.901704][T19955]  ? lockdep_hardirqs_on+0x94/0x130
[  878.906919][T19955]  ? syscall_enter_from_user_mode+0x2e/0x230
[  878.912916][T19955]  do_syscall_64+0x3d/0xb0
[  878.917351][T19955]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  878.923252][T19955] RIP: 0033:0x7f768c93682f
[  878.927672][T19955] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  878.947286][T19955] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  878.955722][T19955] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  878.963810][T19955] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  878.971799][T19955] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  878.979784][T19955] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
17:16:09 executing program 4:
syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000040), 0x101c0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0xffffffff, 0x46})

17:16:09 executing program 3:
syz_mount_image$udf(&(0x7f0000000480), &(0x7f0000000180)='./bus\x00', 0x40, &(0x7f00000004c0)=ANY=[@ANYBLOB="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", @ANYRES32], 0x1, 0xbee, &(0x7f0000000cc0)="$eJzs3UFsHNd5B/DvDUmTkotk61iykxrB2gUcVWlUkootGwxQq2aJplFs1hSTtu7BK3GlbkUtFyTlyEabuCcfWqBsCvTSFChQpDB6CNhDDu0pBQr0ShS5FQXUNHVdFAX2ECOXwixm9i25kmiLEEVRkn8/QPoPZ7+3O/Peema4b8cKAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACDiV3719PhEOuitAADuppfmXhmfdP4HgI+Vs37/BwAAAAAAAAAAAACAe12KIt6LFN94opteq37uGTvTal+5Oj89s3OzQ6lqOVTVl3/GJiZPfvGZZ08918+Pbn+nfTpenjt7uv7i0uXOcnNlpblQn2+3zi8tNHf9DHttf6PjVQfUL1+6snDhwkp98sTJ6x6+Wnt39OGjtalTE68e6dfOT8/MzA3UDI/c9qvf5MPu8HgoirgQKS69815qREQRe++LW7x39tuhaieOVzsxPz1T7chiq9FeLR+c7XdEEVEbaPRCv4/uwljsST3irXLzyw0+Xu7eXKex3Di32KzPNpZXW6utpfZs6m1tqsqLeC5FdCKiO3rz041EEd+MFG9/p5vORcRQvx8+X90YfOvtKfZhH3dhOCJqIxEbxX0wZvew0Sjie5Hi298aj/O5X6tuezriq2UejbhS5rWItTI/G5HKN8ijEe/v8H7i/jIcRfxRpPjJVDct9Me+Oq6c+Vr9y+0LSwO1/ePKfX9+uJvu8WPTWBTRqI743XT7FzsAAAAAANx7ivjTSPHkD4+lTgzOKbbaF+tnG+cWe58K9z/7r+dWm5ubm7XUy/Gcszk7OddyrufcyNnNWSty+5yzOTs513Ku59zI2c1ZG8rtc87m7ORcy7mecyNnN2dtOLfPOZuzk3Mt53rOjZzd4QMcLgAAAAAAAADYwaEo4uuR4ulfer26rziq+9I/OXXqlRO/PnjP+OO3eJ6y9kRErBe7uyf3oXzr8GyaTemA7iGmd//fH+T7//7woDcGAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4UEUU8VSkeP373RQpIuoRr0Uvr40e9NYBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB3wlgq4v1I8edfGat+3igifjsiPtj8YDMirn2weacd9B4DAAAAAAAAwAMoFfFGpHjqlW6qRcTV2rujDx+tTZ2aePXIUAxFKksG61+eO3u6/uLS5c5yc2WluVCfb7fOLy00d/tyY2da7StX56dn9mVnbunQPm//obEXlzpvLLcu/u7qjo8fHjt9bmV1uXF+54fjUBQR9cE1x6sNnp+eqTZ6sdVoV01n0263GAAAAAAAAICPg5FUxAeR4u2/eWdr3nm4N+c/fGPtd78UUeTl6Tz/vDUNXX1v4BPV9wZ6y5+cOvUbk58ZXN5xyvp4NaFen5+emZkbWD08cnPpWH7d8b3tMgPK8V+NFH/8l/X0ZF53/fgPbdV+9/e3x/utG5/oQ8Z8r+P/swPrytdMqYi/ixQ/95uPx5PVdh6Om74zkeu+Eil+a/2JXBcPlXVP5ccfqf4eu9BabI6XtVcjxT9eub726Vz7qe3aiV137H2iHP+nIsX//M76Vt/k8c8jsD1qg+P/mRvfHfs0/o8MrKvl1/35O7PrRMTKG29eaiwuNpctWLBgYWvhoI9M3A3l+f/rkeIf/uxft6538vn/Z3o/bV///fSb2+f/qRufaJ/O/58aWDeVr0ZGhiPGVi93Rh6LGFt5480vtC43LjYvNtsnTz3/7OT48xPjJ0ce6l/cbS/tua8eROX4/16k+N6P/jY+l9ddf/238/X/4RufaJ/G/9GBdYevu17Z866Tx///IsU/T/8gjuV1H3X93//9/1i+CN+6Pt+n8T8ysK76He8TEb8wsO7YkYgH7pcyAAAAuMNSKuIHeT51/Bbzqf8UKd7871/MdeloWfdCfrxW/T320lL7C6cXF5fON1Yb5xab9blO43yzbPvjSNH96ydy26KaX+3PN/fmeLfnYv8lUjz/a/3a3lxs/7OpR7drJ8raE5HiT166vrb/OcaR7drJsvbfIsXEqzvXHt2uPVnW/lek+Olf1Pu1h8vaL+Xax7ZrT5xfWlzYh2EBAAAAAIA9GUlFPBsp/v7kcOp/vr2b73/e9KH3Pn3/77GBdQt36X6VPXcqANzjyvP/sfKs/st/tTWXf/35f/v/AzB4/r/R4L8b8GHLt3P+r92Z3QQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD42ElRxFKk+MYT3XRttPy5Z+xMq33l6vz0zM7NDqWq5VBVX/4Zm5g8+cVnnj31XD8/uv2d9ul4ee7s6fqLS5c7y82VleZCfb7dOr+00Nz1M+y1/Y2OVx1Qv3zpysKFCyv1yRMnr3v4au3d0YeP1qZOTbx6pF87Pz0zMzdQMzxy269+k/Qh6x+KIv43Ulx6573076MRRey9L27x3tlvh6qdOF7txPz0TLUji61Ge7V8cLbfEUVEbaDRC/0+ugtjcfve2loqyg0+Xu7eXKex3Di32KzPNpZXW6utpfZs6m1tuT/1KOK5FNGJiO7ozc84EkWMRIq3v9NNPxqNGOr3w+dfmntlfPLWm1Tc0R3cteGIqI1EbBT3+pjd20ajiGcixbe/NR7/Mdrr16rbno74aplHI66UeS1irczPRqTyDfJoxPs7vJ+4vwxHEY9Eip9MddOPR/PYV8eVM1+rf7l9YWmgtn9cue/PD3fTPX5sGosi3quO+N30n/57BgAAAAB4gBTxeKR48ofHUjU/uDWn2GpfrJ9tnFvsfazf/+y/nlttbm5u1lIvx3PO5uzkXMu5nnMjZzdnrcjtc87m7ORcy7mecyNnN2dtKLfPOZuzk3Mt53rOjZzdnLXh3D7nbM5OzrWc6zk3cnaHD3K8AAAAAAAAAHZWRBGfixSvf7+bNkd7E7yvRS+vuR/ogff/AQAA///PjVta")
setrlimit(0x1, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff})
r0 = open(&(0x7f00000002c0)='./bus\x00', 0x1c1042, 0x0)
pwrite64(r0, &(0x7f0000000180)="13", 0x1, 0x4010040bffd)
write$binfmt_script(r0, &(0x7f0000000040)={'#! ', './file0'}, 0xb)
read$FUSE(r0, &(0x7f0000004900)={0x2020}, 0x2020)

17:16:09 executing program 4:
syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000040), 0x101c0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0xffffffff, 0x46})
syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0) (async)
openat$vcsu(0xffffffffffffff9c, &(0x7f0000000040), 0x101c0, 0x0) (async)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0xffffffff, 0x46}) (async)

17:16:09 executing program 4:
syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000040), 0x101c0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0xffffffff, 0x46})
syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0) (async)
openat$vcsu(0xffffffffffffff9c, &(0x7f0000000040), 0x101c0, 0x0) (async)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0xffffffff, 0x46}) (async)

17:16:09 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x428000)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000))

17:16:09 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x428000)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000))
syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x428000) (async)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)) (async)

[  878.987766][T19955] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  878.995763][T19955]  </TASK>
17:16:09 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 71)

17:16:09 executing program 1:
r0 = syz_open_dev$loop(&(0x7f0000000180), 0x0, 0x80000)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, 0xffffffffffffffff, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000001c0)={'\x00', 0x0, 0x0, 0x3, 0x2})
socket$netlink(0x10, 0x3, 0x0)

17:16:09 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0xc0189436, &(0x7f00000005c0)={'sit0\x00', &(0x7f0000000580)={'sit0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast2, @local}}}})

17:16:09 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
dup(r0) (async)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf7a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xae], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb07c]}, 0x45c) (async)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf7a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xae], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb07c]}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b) (async)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0)
ioctl$UI_DEV_CREATE(r2, 0x5501)

17:16:09 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x428000)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)) (async)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000))

17:16:09 executing program 0:
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000300)='./file0\x00', 0x0, &(0x7f0000000ac0)=ANY=[], 0x5, 0x2b7, &(0x7f0000000800)="$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")
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000440)={'syztnl0\x00', 0x0})
r5 = open(0x0, 0x0, 0x0)
sendmsg$AUDIT_SIGNAL_INFO(r5, 0x0, 0x0)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000200)=ANY=[], 0x116)
r6 = open(&(0x7f00000005c0)='./bus\x00', 0x147b42, 0x0)
pwritev2(r6, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x307e00}], 0x1, 0x2000, 0x0, 0x3)
sendfile(r5, r5, 0x0, 0x7fff)
open$dir(&(0x7f0000000280)='./bus\x00', 0x0, 0x30)
fsync(0xffffffffffffffff)

17:16:09 executing program 3:
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000032c0), 0xffffffffffffffff)
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000500)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000003c0)=0xae)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000300)={'syztnl2\x00', &(0x7f0000000280)={'ip_vti0\x00', 0x0, 0x20, 0x8000, 0x7, 0xaf3, {{0x6, 0x4, 0x3, 0x4, 0x18, 0x67, 0x0, 0x40, 0x0, 0x0, @empty, @private=0xa010101, {[@ra={0x94, 0x4, 0x2991}]}}}}})
sendmsg$nl_route(r0, &(0x7f00000004c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, 0x0}, 0x4811)
r3 = socket(0x0, 0x803, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_SEND(0xffffffffffffffff, 0xc0182101, &(0x7f0000000800)={0x0, 0x8001, 0x3f})
ioctl$F2FS_IOC_GET_PIN_FILE(r3, 0x8004f50e, &(0x7f0000000540))
sendmsg$nl_route_sched(r3, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={0x0, 0x24}}, 0x0)
getsockname$packet(r3, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000000)=0x14)
syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000000)='./file1\x00', 0x844, &(0x7f0000000480), 0x1, 0x23b, &(0x7f00000005c0)="$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")

17:16:09 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x8971, &(0x7f00000005c0)={'sit0\x00', 0x0})

17:16:09 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs2/binder1\x00', 0x801, 0x0)
fcntl$setflags(r1, 0x2, 0x1)

17:16:09 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x891d, &(0x7f00000005c0)={'sit0\x00', 0x0})

[  879.251731][T19991] FAULT_INJECTION: forcing a failure.
[  879.251731][T19991] name fail_page_alloc, interval 1, probability 0, space 0, times 0
17:16:09 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000001c0)={0x0, {0x2, 0x4e20, @remote}, {0x2, 0x4e22, @empty}, {0x2, 0x4e21, @loopback}, 0x4, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)='wg2\x00', 0x80, 0x4b72, 0x6})
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000080)={0x0, {0x2, 0x4e21}, {0x2, 0x4e23, @empty}, {0x2, 0x4e23, @broadcast}, 0x100, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)='xfrm0\x00', 0x5, 0x8001})
open(&(0x7f0000000000)='./file0\x00', 0x404280, 0x84)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000100)={0x0, {0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x37}}, {0x2, 0x0, @multicast2}, {0x2, 0x0, @loopback}, 0x0, 0x0, 0x0, 0x0, 0xfd, 0x0, 0x0, 0xfd000000})

[  879.323653][T19991] CPU: 0 PID: 19991 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  879.332276][T19991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  879.342344][T19991] Call Trace:
[  879.345637][T19991]  <TASK>
[  879.348581][T19991]  dump_stack_lvl+0x1e3/0x2cb
[  879.353288][T19991]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  879.353382][   T26] audit: type=1800 audit(1691082969.866:223): pid=20009 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1958 res=0 errno=0
[  879.358925][T19991]  ? panic+0x84d/0x84d
[  879.358957][T19991]  should_fail+0x38a/0x4c0
[  879.388162][T19991]  prepare_alloc_pages+0x1db/0x5b0
[  879.393302][T19991]  __alloc_pages+0x14f/0x700
[  879.397912][T19991]  ? __rmqueue_pcplist+0x2030/0x2030
[  879.403218][T19991]  ? __lock_acquire+0x1295/0x1ff0
[  879.408268][T19991]  alloc_pages_vma+0x39a/0x800
[  879.413047][T19991]  ? mpol_shared_policy_lookup+0x144/0x1e0
[  879.418874][T19991]  shmem_alloc_and_acct_page+0x4d1/0xd10
[  879.424528][T19991]  ? shmem_swapin_page+0x22f0/0x22f0
[  879.429842][T19991]  ? xas_descend+0x219/0x3a0
[  879.434449][T19991]  ? xas_load+0x128/0x140
[  879.438801][T19991]  ? pagecache_get_page+0xd23/0x1010
[  879.444105][T19991]  ? page_cache_prev_miss+0x500/0x500
[  879.449509][T19991]  ? do_raw_spin_unlock+0x137/0x8b0
[  879.454735][T19991]  ? _raw_spin_unlock_irq+0x1f/0x40
[  879.459979][T19991]  ? lockdep_hardirqs_on+0x94/0x130
[  879.465200][T19991]  shmem_getpage_gfp+0x17b1/0x3190
17:16:09 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)) (async)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs2/binder1\x00', 0x801, 0x0)
fcntl$setflags(r1, 0x2, 0x1)

[  879.467434][   T26] audit: type=1804 audit(1691082969.956:224): pid=20009 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3167581681/syzkaller.sn1LVw/1229/bus" dev="sda1" ino=1958 res=1 errno=0
[  879.470528][T19991]  ? shmem_getpage+0xa0/0xa0
[  879.500348][T19991]  ? fault_in_safe_writeable+0x250/0x250
[  879.506008][T19991]  shmem_write_begin+0xce/0x1a0
[  879.510879][T19991]  generic_perform_write+0x2bf/0x5b0
[  879.516188][T19991]  ? grab_cache_page_write_begin+0x90/0x90
[  879.522008][T19991]  ? file_remove_privs+0x610/0x610
[  879.527130][T19991]  ? down_write+0x10e/0x170
[  879.531648][T19991]  __generic_file_write_iter+0x243/0x4f0
[  879.537299][T19991]  generic_file_write_iter+0xa7/0x1b0
[  879.542688][T19991]  vfs_write+0xacf/0xe50
[  879.546946][T19991]  ? file_end_write+0x250/0x250
[  879.552023][T19991]  ? __fget_files+0x413/0x480
[  879.556720][T19991]  ? __fdget_pos+0x1eb/0x2b0
[  879.561332][T19991]  ? ksys_write+0x77/0x2c0
[  879.565760][T19991]  ksys_write+0x1a2/0x2c0
[  879.570107][T19991]  ? print_irqtrace_events+0x210/0x210
[  879.575586][T19991]  ? __ia32_sys_read+0x80/0x80
[  879.580373][T19991]  ? syscall_enter_from_user_mode+0x2e/0x230
[  879.586363][T19991]  ? lockdep_hardirqs_on+0x94/0x130
[  879.591571][T19991]  ? syscall_enter_from_user_mode+0x2e/0x230
[  879.597573][T19991]  do_syscall_64+0x3d/0xb0
[  879.602008][T19991]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  879.607913][T19991] RIP: 0033:0x7f768c93682f
[  879.612331][T19991] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  879.631940][T19991] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  879.640370][T19991] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  879.642926][T20007] input: syz1 as /devices/virtual/input/input191
[  879.648351][T19991] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  879.662875][T19991] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  879.670855][T19991] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  879.678830][T19991] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  879.686827][T19991]  </TASK>
17:16:10 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 72)

17:16:10 executing program 1:
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000032c0), 0xffffffffffffffff)
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000500)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r3=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000003c0)=0xae)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000300)={'syztnl2\x00', &(0x7f0000000280)={'ip_vti0\x00', <r4=>0x0, 0x20, 0x8000, 0x7, 0xaf3, {{0x6, 0x4, 0x3, 0x4, 0x18, 0x67, 0x0, 0x40, 0x0, 0x0, @empty, @private=0xa010101, {[@ra={0x94, 0x4, 0x2991}]}}}}})
sendmsg$nl_route(r0, &(0x7f00000004c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)=@ipv4_newroute={0x38, 0x18, 0x200, 0x70bd28, 0x25dfdbfe, {0x2, 0x20, 0x80, 0x8, 0xfc, 0x0, 0x0, 0x1, 0x300}, [@RTA_DST={0x8, 0x1, @broadcast}, @RTA_SPORT={0x6, 0x1c, 0x4e22}, @RTA_MULTIPATH={0xc, 0x9, {0x80, 0x4, 0x1, r4}}]}, 0x38}}, 0x4811)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_SEND(0xffffffffffffffff, 0xc0182101, &(0x7f0000000800)={0x0, 0x8001, 0x3f})
syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000000)='./file1\x00', 0x844, &(0x7f0000000480), 0x1, 0x23b, &(0x7f00000005c0)="$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")

17:16:10 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs2/binder1\x00', 0x801, 0x0)
fcntl$setflags(r1, 0x2, 0x1)

17:16:10 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf7a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xae], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb07c]}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0)
ioctl$UI_DEV_CREATE(r2, 0x5501)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) (async)
dup(r0) (async)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf7a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xae], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb07c]}, 0x45c) (async)
ioctl$UI_DEV_CREATE(r1, 0x5501) (async)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0) (async)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r2, 0x0) (async)
ioctl$UI_DEV_CREATE(r2, 0x5501) (async)

17:16:10 executing program 3:
r0 = syz_open_dev$loop(&(0x7f0000000180), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f00000001c0)={'\x00', 0x0, 0x400, 0x3, 0x2, 0x81})

[  880.189167][T20025] FAULT_INJECTION: forcing a failure.
[  880.189167][T20025] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  880.202455][T20025] CPU: 1 PID: 20025 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  880.211149][T20025] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  880.221222][T20025] Call Trace:
[  880.224511][T20025]  <TASK>
[  880.227443][T20025]  dump_stack_lvl+0x1e3/0x2cb
[  880.232142][T20025]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  880.237880][T20025]  ? panic+0x84d/0x84d
[  880.241963][T20025]  ? shmem_getpage_gfp+0x2b48/0x3190
[  880.247271][T20025]  should_fail+0x38a/0x4c0
[  880.251808][T20025]  copy_page_from_iter_atomic+0x451/0x1230
[  880.257825][T20025]  ? pipe_zero+0x4f0/0x4f0
[  880.262276][T20025]  generic_perform_write+0x33a/0x5b0
[  880.267590][T20025]  ? grab_cache_page_write_begin+0x90/0x90
[  880.273410][T20025]  ? file_remove_privs+0x610/0x610
[  880.278540][T20025]  ? down_write+0x10e/0x170
[  880.283064][T20025]  __generic_file_write_iter+0x243/0x4f0
[  880.288715][T20025]  generic_file_write_iter+0xa7/0x1b0
[  880.294097][T20025]  vfs_write+0xacf/0xe50
[  880.298360][T20025]  ? file_end_write+0x250/0x250
[  880.303226][T20025]  ? __fget_files+0x413/0x480
[  880.307922][T20025]  ? __fdget_pos+0x1eb/0x2b0
[  880.312545][T20025]  ? ksys_write+0x77/0x2c0
[  880.316972][T20025]  ksys_write+0x1a2/0x2c0
[  880.321312][T20025]  ? print_irqtrace_events+0x210/0x210
[  880.326787][T20025]  ? __ia32_sys_read+0x80/0x80
[  880.331567][T20025]  ? syscall_enter_from_user_mode+0x2e/0x230
[  880.337562][T20025]  ? lockdep_hardirqs_on+0x94/0x130
[  880.342776][T20025]  ? syscall_enter_from_user_mode+0x2e/0x230
[  880.348773][T20025]  do_syscall_64+0x3d/0xb0
[  880.353208][T20025]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  880.353864][T20030] input: syz1 as /devices/virtual/input/input192
[  880.359106][T20025] RIP: 0033:0x7f768c93682f
[  880.359128][T20025] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  880.359145][T20025] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  880.359167][T20025] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  880.405904][T20025] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  880.413922][T20025] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  880.421905][T20025] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  880.429902][T20025] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  880.437899][T20025]  </TASK>
17:16:11 executing program 0:
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000300)='./file0\x00', 0x0, &(0x7f0000000ac0)=ANY=[], 0x5, 0x2b7, &(0x7f0000000800)="$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")
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000440)={'syztnl0\x00', 0x0})
r5 = open(0x0, 0x0, 0x0)
sendmsg$AUDIT_SIGNAL_INFO(r5, 0x0, 0x0)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000200)=ANY=[], 0x116)
r6 = open(&(0x7f00000005c0)='./bus\x00', 0x147b42, 0x0)
pwritev2(r6, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x307e00}], 0x1, 0x2000, 0x0, 0x3)
sendfile(r5, r5, 0x0, 0x7fff)
open$dir(&(0x7f0000000280)='./bus\x00', 0x0, 0x30)
fsync(0xffffffffffffffff)

17:16:11 executing program 4:
ioctl$SNDRV_CTL_IOCTL_TLV_READ(0xffffffffffffffff, 0xc008551a, &(0x7f0000000000))
ioctl$SNDRV_CTL_IOCTL_ELEM_REMOVE(0xffffffffffffffff, 0xc0405519, &(0x7f0000000040)={0x1, 0x3, 0x1, 0x40, 'syz0\x00', 0x80})
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r0, 0x0)
dup2(0xffffffffffffffff, r0)
ioctl$SNDRV_CTL_IOCTL_TLV_WRITE(0xffffffffffffffff, 0xc008551b, &(0x7f0000000080)={0x0, 0x18, [0x7f, 0x100, 0x7fffffff, 0xf007, 0x3, 0xdad]})

17:16:11 executing program 3:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict]}}, &(0x7f0000000040)=""/241, 0x26, 0xf1, 0x1}, 0x20)

17:16:11 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000]}, 0x45c)
close(r1)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

17:16:11 executing program 3:
r0 = syz_open_dev$loop(&(0x7f0000000180), 0x0, 0x80000)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f00000001c0)={'\x00', 0x0, 0x400, 0x3, 0x2})

17:16:11 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000]}, 0x45c) (async, rerun: 32)
close(r1) (async, rerun: 32)
ioctl$UI_DEV_CREATE(r1, 0x5501) (async, rerun: 32)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a) (rerun: 32)

17:16:11 executing program 4:
ioctl$SNDRV_CTL_IOCTL_TLV_READ(0xffffffffffffffff, 0xc008551a, &(0x7f0000000000))
ioctl$SNDRV_CTL_IOCTL_ELEM_REMOVE(0xffffffffffffffff, 0xc0405519, &(0x7f0000000040)={0x1, 0x3, 0x1, 0x40, 'syz0\x00', 0x80}) (async)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000140)=ANY=[], 0x208e24b) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r0, 0x0) (async)
dup2(0xffffffffffffffff, r0) (async)
ioctl$SNDRV_CTL_IOCTL_TLV_WRITE(0xffffffffffffffff, 0xc008551b, &(0x7f0000000080)={0x0, 0x18, [0x7f, 0x100, 0x7fffffff, 0xf007, 0x3, 0xdad]})

17:16:11 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 73)

17:16:11 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000003dc0)={0x0, 0x0, &(0x7f0000003d00)=[{&(0x7f0000003cc0)={0x24, 0x1c, 0x1, 0x0, 0x0, "", [@typed={0x14, 0x0, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @empty}}]}, 0x24}], 0x1}, 0x0)

17:16:11 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000]}, 0x45c) (async)
close(r1)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

17:16:11 executing program 3:
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000300)='./file0\x00', 0x0, &(0x7f0000000ac0)=ANY=[], 0x5, 0x2b7, &(0x7f0000000800)="$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")
open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)

17:16:11 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x4003}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@ipv6_getaddr={0x18, 0x16, 0x3c2be10bca706f15, 0x0, 0x0, {0x5}}, 0x18}}, 0x0)

[  880.778290][T20054] FAULT_INJECTION: forcing a failure.
[  880.778290][T20054] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  880.795338][   T26] audit: type=1800 audit(1691082971.306:225): pid=20058 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1973 res=0 errno=0
[  880.807077][T20066] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  880.867403][T20054] CPU: 1 PID: 20054 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  880.876031][T20054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  880.886096][T20054] Call Trace:
[  880.889386][T20054]  <TASK>
[  880.892329][T20054]  dump_stack_lvl+0x1e3/0x2cb
[  880.897021][T20054]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  880.902662][T20054]  ? panic+0x84d/0x84d
[  880.906751][T20054]  should_fail+0x38a/0x4c0
[  880.911187][T20054]  prepare_alloc_pages+0x1db/0x5b0
[  880.916325][T20054]  __alloc_pages+0x14f/0x700
[  880.920930][T20054]  ? __rmqueue_pcplist+0x2030/0x2030
[  880.926236][T20054]  ? __lock_acquire+0x1295/0x1ff0
[  880.931284][T20054]  alloc_pages_vma+0x39a/0x800
[  880.936060][T20054]  ? mpol_shared_policy_lookup+0x144/0x1e0
[  880.941887][T20054]  shmem_alloc_and_acct_page+0x4d1/0xd10
[  880.947541][T20054]  ? shmem_swapin_page+0x22f0/0x22f0
[  880.952951][T20054]  ? xas_descend+0x219/0x3a0
[  880.957568][T20054]  ? xas_load+0x128/0x140
[  880.961911][T20054]  ? pagecache_get_page+0xd23/0x1010
[  880.967207][T20054]  ? page_cache_prev_miss+0x500/0x500
[  880.972595][T20054]  ? do_raw_spin_unlock+0x137/0x8b0
[  880.977804][T20054]  ? _raw_spin_unlock_irq+0x1f/0x40
[  880.983006][T20054]  ? lockdep_hardirqs_on+0x94/0x130
[  880.988217][T20054]  shmem_getpage_gfp+0x17b1/0x3190
[  880.994150][T20054]  ? shmem_getpage+0xa0/0xa0
[  880.998753][T20054]  ? fault_in_safe_writeable+0x250/0x250
[  881.004412][T20054]  shmem_write_begin+0xce/0x1a0
[  881.009277][T20054]  generic_perform_write+0x2bf/0x5b0
[  881.014579][T20054]  ? grab_cache_page_write_begin+0x90/0x90
[  881.020391][T20054]  ? file_remove_privs+0x610/0x610
[  881.025524][T20054]  ? down_write+0x10e/0x170
[  881.030125][T20054]  __generic_file_write_iter+0x243/0x4f0
[  881.035772][T20054]  generic_file_write_iter+0xa7/0x1b0
[  881.041148][T20054]  vfs_write+0xacf/0xe50
[  881.045488][T20054]  ? file_end_write+0x250/0x250
[  881.050381][T20054]  ? __fget_files+0x413/0x480
[  881.055076][T20054]  ? __fdget_pos+0x1eb/0x2b0
[  881.059669][T20054]  ? ksys_write+0x77/0x2c0
[  881.064090][T20054]  ksys_write+0x1a2/0x2c0
[  881.068422][T20054]  ? print_irqtrace_events+0x210/0x210
[  881.073903][T20054]  ? __ia32_sys_read+0x80/0x80
[  881.078675][T20054]  ? syscall_enter_from_user_mode+0x2e/0x230
[  881.084666][T20054]  ? lockdep_hardirqs_on+0x94/0x130
[  881.089870][T20054]  ? syscall_enter_from_user_mode+0x2e/0x230
[  881.095858][T20054]  do_syscall_64+0x3d/0xb0
[  881.100317][T20054]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  881.106324][T20054] RIP: 0033:0x7f768c93682f
[  881.110744][T20054] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  881.130638][T20054] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  881.139382][T20054] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  881.148271][T20054] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  881.156334][T20054] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  881.164310][T20054] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  881.172285][T20054] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  881.180280][T20054]  </TASK>
[  881.261348][   T26] audit: type=1804 audit(1691082971.746:226): pid=20058 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3167581681/syzkaller.sn1LVw/1230/bus" dev="sda1" ino=1973 res=1 errno=0
17:16:12 executing program 0:
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000300)='./file0\x00', 0x0, &(0x7f0000000ac0)=ANY=[], 0x5, 0x2b7, &(0x7f0000000800)="$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")
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000440)={'syztnl0\x00', 0x0})
r5 = open(0x0, 0x0, 0x0)
sendmsg$AUDIT_SIGNAL_INFO(r5, 0x0, 0x0)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000200)=ANY=[], 0x116)
r6 = open(&(0x7f00000005c0)='./bus\x00', 0x147b42, 0x0)
pwritev2(r6, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x307e00}], 0x1, 0x2000, 0x0, 0x3)
sendfile(r5, r5, 0x0, 0x7fff)
open$dir(&(0x7f0000000280)='./bus\x00', 0x0, 0x30)
fsync(0xffffffffffffffff)

17:16:12 executing program 5:
getsockopt$inet_sctp_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000000)=@sack_info={0x0, 0xff, 0x36d}, &(0x7f0000000080)=0xc)
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)
ioctl$UI_SET_FFBIT(0xffffffffffffffff, 0x4004556b, 0x8)

17:16:12 executing program 1:
syz_mount_image$udf(&(0x7f0000000480), &(0x7f0000000180)='./bus\x00', 0x40, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYRES32], 0x1, 0xbee, &(0x7f0000000cc0)="$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")
r0 = open(&(0x7f00000002c0)='./bus\x00', 0x1c1042, 0x0)
pwrite64(r0, &(0x7f0000000180)="13", 0x1, 0xd34d)

17:16:12 executing program 4:
ioctl$SNDRV_CTL_IOCTL_TLV_READ(0xffffffffffffffff, 0xc008551a, &(0x7f0000000000))
ioctl$SNDRV_CTL_IOCTL_ELEM_REMOVE(0xffffffffffffffff, 0xc0405519, &(0x7f0000000040)={0x1, 0x3, 0x1, 0x40, 'syz0\x00', 0x80}) (async, rerun: 32)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0) (rerun: 32)
write$binfmt_script(r0, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r0, 0x0) (async)
dup2(0xffffffffffffffff, r0) (async)
ioctl$SNDRV_CTL_IOCTL_TLV_WRITE(0xffffffffffffffff, 0xc008551b, &(0x7f0000000080)={0x0, 0x18, [0x7f, 0x100, 0x7fffffff, 0xf007, 0x3, 0xdad]})

17:16:12 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x9)
bind$netlink(r0, &(0x7f0000000000)={0x10, 0x0, 0x0, 0x20808900}, 0xc)

17:16:12 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 74)

17:16:12 executing program 3:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
ioctl$sock_ifreq(r0, 0x894c, 0x0)

[  881.708017][T20077] FAULT_INJECTION: forcing a failure.
[  881.708017][T20077] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  881.721149][T20077] CPU: 0 PID: 20077 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  881.729755][T20077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  881.740000][T20077] Call Trace:
[  881.743294][T20077]  <TASK>
[  881.746234][T20077]  dump_stack_lvl+0x1e3/0x2cb
[  881.750934][T20077]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  881.756673][T20077]  ? panic+0x84d/0x84d
[  881.760768][T20077]  ? shmem_getpage_gfp+0x2b48/0x3190
[  881.766158][T20077]  should_fail+0x38a/0x4c0
[  881.770879][T20077]  copy_page_from_iter_atomic+0x451/0x1230
[  881.776732][T20077]  ? pipe_zero+0x4f0/0x4f0
[  881.781194][T20077]  generic_perform_write+0x33a/0x5b0
[  881.786510][T20077]  ? grab_cache_page_write_begin+0x90/0x90
[  881.792338][T20077]  ? file_remove_privs+0x610/0x610
[  881.797473][T20077]  ? down_write+0x10e/0x170
17:16:12 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
ioctl$sock_ifreq(r0, 0x5411, &(0x7f0000000180)={'bridge_slave_1\x00', @ifru_addrs=@generic={0x0, "62fdceb304249dbfb845ae55c17b"}})

[  881.800742][T20082] input: syz1 as /devices/virtual/input/input195
[  881.802112][T20077]  __generic_file_write_iter+0x243/0x4f0
[  881.802150][T20077]  generic_file_write_iter+0xa7/0x1b0
[  881.802172][T20077]  vfs_write+0xacf/0xe50
[  881.802198][T20077]  ? file_end_write+0x250/0x250
[  881.802222][T20077]  ? __fget_files+0x413/0x480
[  881.802251][T20077]  ? __fdget_pos+0x1eb/0x2b0
[  881.802268][T20077]  ? ksys_write+0x77/0x2c0
[  881.802287][T20077]  ksys_write+0x1a2/0x2c0
[  881.802304][T20077]  ? print_irqtrace_events+0x210/0x210
[  881.802327][T20077]  ? __ia32_sys_read+0x80/0x80
17:16:12 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, &(0x7f0000000040)={0x0, 0x0, "d5d409", 0x5, 0x4})

[  881.802345][T20077]  ? syscall_enter_from_user_mode+0x2e/0x230
[  881.865287][T20077]  ? lockdep_hardirqs_on+0x94/0x130
[  881.870515][T20077]  ? syscall_enter_from_user_mode+0x2e/0x230
[  881.876521][T20077]  do_syscall_64+0x3d/0xb0
[  881.880965][T20077]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  881.886879][T20077] RIP: 0033:0x7f768c93682f
[  881.891325][T20077] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  881.911296][T20077] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  881.919730][T20077] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  881.927717][T20077] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  881.935876][T20077] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  881.943870][T20077] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
17:16:12 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ifreq(r0, 0x891a, 0x0)

[  881.952051][T20077] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  881.960672][T20077]  </TASK>
17:16:12 executing program 5:
getsockopt$inet_sctp_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000000)=@sack_info={0x0, 0xff, 0x36d}, &(0x7f0000000080)=0xc)
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c) (async)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501) (async)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)
ioctl$UI_SET_FFBIT(0xffffffffffffffff, 0x4004556b, 0x8)

17:16:12 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x6c, 0x2, 0x6, 0x1, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0xe, 0x3, 'bitmap:ip\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0x24, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast1}}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast1}}, @IPSET_ATTR_NETMASK={0x5, 0x14, 0x60}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x6c}}, 0x0)
r1 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x4, 0x60040)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r1, 0xc008551a, &(0x7f0000000000))

[  882.062028][T20098] input: syz1 as /devices/virtual/input/input196
[  882.145378][   T26] audit: type=1800 audit(1691082972.656:227): pid=20103 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1944 res=0 errno=0
[  882.213566][   T26] audit: type=1804 audit(1691082972.726:228): pid=20103 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3167581681/syzkaller.sn1LVw/1231/bus" dev="sda1" ino=1944 res=1 errno=0
17:16:13 executing program 0:
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000300)='./file0\x00', 0x0, &(0x7f0000000ac0)=ANY=[], 0x5, 0x2b7, &(0x7f0000000800)="$eJzs3MtrE18UwPHT9JWmtMnix08UpAfd6GZoo2sxSAtiwFIb8QHCtJ1oyJiUTKhExOrKrfhHuChddlfQ/gPduNONG3fdCC7sQhzJPPpMaWmbTNt8PxDuTe49M/dOJuHcIZO1B++fF/OOkTerEourdIiIrIukJCahjqCMefUe2eqNXO3/9fXivYeP7mSy2dEJ1bHM5LW0qg4OfXrxqi/ottwrq6knaz/TP1b/Xz2/9nfyWcHRgqOlclVNnSp/r5pTtqUzBadoqI7blulYWig5VsVvL/vtebs8O1tTszQzkJitWI6jZqmmRaum1bJWKzU1n5qFkhqGoQMJwX5yCxMTZuaQwdPHPBg0SaWSMTtFpG9XS24hkgEBAIBI7cz/Y/WU/vjy/8VLK9X++0uDQf6/3NMo/7/+zd/Wtvw/LiJNz/93Z0Tt5Uj5P06Jev6fCD6/nrePF4e9Cvk/AAAAAAAAAAAAAAAAAAAAAACnwbrrJl3XTYZl+OgVkbiIhM+jHieag/e/vW3euNc1KGK/m8vN5fwy6LAiIrZYMixJ+eOdD4F6PbwXUOtS8tmeD+Ln53KdXksmLwUvfkSSktoZ77pjt7OjI+rbHt8tia3xaUnKf43j0w3je+TK5S3xhiTly7SUxZYZ77zejH89onrrbnZHfJ/XDwAAAACAs8DQDQ3X74axV7sfv7G+bnh9wF9fDzdcn3fJha5o5w4AAAAAQLtwai+Lpm1blTNXCWd40KjwtwyRjDnc+ck4dAeoxA411CERsfWoew8vG+3VR8ajOiznPnz8fXwbvLEU32emTat0t/ZbCAAAAEArbCb94Ss3ox0QAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABtqBV/Jxb1HAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICT4l8AAAD//3uREoU=")
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000440)={'syztnl0\x00', 0x0})
r5 = open(0x0, 0x0, 0x0)
sendmsg$AUDIT_SIGNAL_INFO(r5, 0x0, 0x0)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000200)=ANY=[], 0x116)
r6 = open(&(0x7f00000005c0)='./bus\x00', 0x147b42, 0x0)
pwritev2(r6, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x307e00}], 0x1, 0x2000, 0x0, 0x3)
sendfile(r5, r5, 0x0, 0x7fff)
open$dir(&(0x7f0000000280)='./bus\x00', 0x0, 0x30)
fsync(0xffffffffffffffff)

17:16:13 executing program 3:
syz_mount_image$minix(&(0x7f0000000100), &(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000000200)=ANY=[@ANYRES8, @ANYRES64, @ANYRES16=0x0, @ANYRESDEC=0x0, @ANYRESOCT, @ANYRES16=0x0], 0x54, 0x1d4, &(0x7f0000000300)="$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")
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000100)='.\x00', 0x1a404ac, &(0x7f00000030c0)=ANY=[@ANYBLOB="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", @ANYRES8, @ANYRESHEX, @ANYRES64, @ANYRESOCT, @ANYRESHEX, @ANYRESHEX, @ANYRESOCT, @ANYBLOB="6c587b81896b2350369ee8d83f977b696703527759a674c6d61cd929ebc6e5004d4c47f0144ed8a532c6b3cb877bdfee3e2d4e5ce1f0dd5b5239d7edeb457c8419b1e22974eafe8e727b9a2445a370734209a6e4a8445fa348b9dd7ff9706a2536df371fa6b263533bf021bb179509a910966d4474218e874dba3b22ff70deda308f5903f85b1eab3ec4e539dc3b71462b66785ec2cd88d2150c445cb1968939219a3dceea5fdfb222114769468721f21fd9e7e1de2af80add0700000052a639b041d51d239be0fd1e176150e52139d4823706e8639b457cac96121685c22f843fce087365ec1bfcdafe631dc7031fdb30c55a9ec5e9e7c62817f7387369fc2719a3c653294e291000f9d4c370285b31ed2708d5ac069a21", @ANYRES64], 0xfe, 0x0, &(0x7f0000000000))

17:16:13 executing program 5:
getsockopt$inet_sctp_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000000)=@sack_info={0x0, 0xff, 0x36d}, &(0x7f0000000080)=0xc) (async)
getsockopt$inet_sctp_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000000)=@sack_info={0x0, 0xff, 0x36d}, &(0x7f0000000080)=0xc)
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501) (async)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)
ioctl$UI_SET_FFBIT(0xffffffffffffffff, 0x4004556b, 0x8)

17:16:13 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x6c, 0x2, 0x6, 0x1, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0xe, 0x3, 'bitmap:ip\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0x24, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast1}}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast1}}, @IPSET_ATTR_NETMASK={0x5, 0x14, 0x60}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x6c}}, 0x0) (async)
r1 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x4, 0x60040)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r1, 0xc008551a, &(0x7f0000000000))

17:16:13 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$eJzs3V1oXOl5B/Dn1ZHWkrdpZjebzYdzMbCBbL3ZRbK8axVvQI4VkQXjNSsrFwsFjS3ZHVZfluTiDSVVIaGEtMUlF7msYRNor+qrFpYG3KttCAFRKJRCi9tuzPZuEpq25CIKZ+YdaaSVLcWWJdn7+xn7P3PmOTPvmdUzc4523jkBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAER8+Sun+gfSPQp69nAwAMCeODv2Rv/gvd7/AYDHzvntjv8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAiRRHfjBTvfKeRJprXW3rP1GevXhsfGd16tb4UKbqiaNaXf3sHjg0ef/mVE0PtvPf6u+0z8frY+VPV03Mz8wtTi4tTk9Xx2frFucmpHd/Dg66/2dHmE1Cdeevq5KVLi9VjLw1uuPla5c6hJ5+tnBw6Mvhmu3Z8ZHR0rKOmu+e+H/1D0u7dFY+RJ6KIr0aK9178INUioisevBe2ee142Pqiu+y/5kaMj4w2N2S6XptdKm9MXbmqO6LSsdJwu0f2oBcfyHDEcvnfqRzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGW25PJbpiKEXMR0Sj2O/Bc9D0RBHHI8WdnzfShYgo2n3wwtmxN/oHt7+D7j0Y5BZWV1f/qFJErMQj0LNwQB2KIv4iUnx3oj8u5nZuts37EV8o89WIK2XeSnE9X0/lC8RQxM+8n8AjrTuK+EmkmEuNNNnu/eZ+5ZmvVV+bvTTXUdver3zkjw/2kn0TDrDeKOJCc4+/ke7/l10AAAAAAAAAAAAAwN4o4t1IcXPm+TQfnXNK67OXq+drF6Zbnwpuf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZ5j0BAAAAAAAAAAAAAAAAAACwy/qiiNFIceOdP2ieVzqa56X/+MmhsyPPdJ4z/lPb3E9Z+1JEvBs7OydvTz7XeOoq/+z+dgHb640ivpHP//fH+z0YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgQOiKIr4ZKb73i0aKFBHDERPRytvFfo8OAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACj1piJOR4r//kpv8/pKRHw2In61Wv6J+P/VzfZ7xAAAAAAAAAAAAAAAAAAAAPAYSkVciRTff6+RKhFxrXLn0JPPVk4OHRl8s4giUlnSWf/62PlT1dNzM/MLU4uLU5PV8dn6xbnJqZ0+XO+Z+uzVa+Mjow9lY7bV95DH39d7em7+7YX65d9f2vL2w72nLiwuLdQubn1z9EV3RH/nkqPNAY+PjDYHPV2vzTZXTV13GWB3RHWnGwMAAAAAAAAAAAAAAAAAAMCBcTgVMRIpnvvh8dSeN97dmvP/sda1Yq32B3+4/l0A05uyrfP7A9Yvtyerb14++Gba6UCPNifeV8dHRkfHOhZ393y4tBxTSkV8MlIc+ftPN+fDpzi85dz4su5PI8XQL4/nusqRsm54Q1Xv0fGR0erZudkXT01Pz12s9dUuTE9Vx+ZrF3f8xQEAAAAAAAAAAAAAAAAAAABwD4dTEX8WKY6/tpLa553P8/+7W9c65v+/GtGeyd+bNuaa5tz+327O7W9d/vjJodeOPXe35Q9j/n85ppSK+FWkeOovP908n357/n//ptqy7vuR4iff+lyu63qirBtob07rHi/Vp6f6y9oXIsW3z7Vro1n7Sq79xHrtQFn7D5Hi6d/bWHsi1z6zXnusrL0TKUbPbl37yfXawbK2L1J88U+q7drDZe2Xc+2z67UvXZybntzp08tHU9n//x4pPj/w1dT+mb9r/3d8/8fyplzzoZ6/9+Xd6v9Kx7Ll3Neruf8Htun/K5Hiz69/Lte1eu9Yvv2p5r/r/f/tSPE7H9tY+3KufXq9dmCnmwX7qez/H0WKldv/svYzn/s/d9Z6h3b2/2e7N2Z7v2DH/f9vu9v/T3Usq+RxDf6GzwV81Cy+/fW3atPTUwsuuLBrF5bjQAzDhQe4sN+vTMDDVu7//2+k+NKVIrWPY/P+/2+1rq0f///fN9b3/09uyjX7dPz/dMeyk/mopac7ondpZr7nUxG9i29//cX6TO3y1OWp2cHBoRO/e3zg2ImBnifaB/frl3b83MGjruz/tyLFD/7mn9Z+j73x+H/r3/8d3pRr7rP/f/nX2wx0m/7/ROc2bTiu+c2eD/goKfv/ryLFv974YO3/N93r93/t3/M9/9zG7GsX7dP7/zMdy6r5n6GOZc8XEad2+lgAAAAAAAAAAPCIOJyK+GGk+NvGP66d837j53/i8+3azs//3c3W5//f4vLKPz+08/8DAPdWvv+PRYofH/5ian+HzE4+/z+5Kdfs0+d/n+1YNrlH85p3/CQDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMB9SlHEoUjxznca6XZRXm/pPVOfvXptfGR069XenYuIriia9eXf3oFjg8dffuXEUDvvvf5u+0y8Pnb+VPX03Mz8wtTi4tRkdXy2fnFucmrH9/Cg6292tPkEVGfeujp56dJi9dhLgxtuvla5c+jJZysnh44MvtmuHR8ZHR3rqOnuue9H/5C0e3fFY+SJKOLHkeK9Fz9I/1GUPX23XljecS9s89rxsPVFd9l/zY0YHxltbsh0vTa7VN6YunJVd0SlY6Xhdo/sQS8+kOGI5fK1txzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGm370P1GJrhhKEfMR0Sj2e/AcND1RxN9Fijs/b6T/LCKKdh+8cHbsjf7B7e+gew8GeZeHrRQRK/EI9CwcUIeiiGcixXcn+uO/ilZfNdvm/YgvlPlqxJUyb6W4nq+n8gViKOJn3k/gkdYdRZyLFHOpkd4vcu839yvPfK362uyluY7a9n7lgx4r7/vxwV6yb8IB1htF/LS5x99IP/V+DgAAAAAAAAAAAAAHXBFfihQ3Z55Pzfmha3NK67OXq+drF6ZbH+tvf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZPicNAAAAAAAAAAAAAAAAAMBD0hVFfCtSfO8XjbRatM4vOxGtvG2eKzzWfh0AAP//5UVOig==") (fail_nth: 75)

17:16:13 executing program 1:
r0 = syz_open_dev$sndpcmp(&(0x7f0000001080), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r0, 0xc2604110, &(0x7f0000000000)={0x0, [[0x0, 0xfff], [0xfffffffc], [0xef3]], '\x00', [], '\x00', 0x2d62})

17:16:13 executing program 3:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_ifreq(r0, 0x8911, &(0x7f0000000000)={'wlan0\x00', @ifru_hwaddr})

17:16:13 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
ioctl$sock_ifreq(r0, 0x541b, 0x0)

17:16:13 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x6c, 0x2, 0x6, 0x1, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0xe, 0x3, 'bitmap:ip\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0x24, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast1}}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast1}}, @IPSET_ATTR_NETMASK={0x5, 0x14, 0x60}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x6c}}, 0x0) (async)
r1 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x4, 0x60040)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r1, 0xc008551a, &(0x7f0000000000))

[  882.941107][T20111] input: syz1 as /devices/virtual/input/input197
[  882.960149][T20114] FAULT_INJECTION: forcing a failure.
[  882.960149][T20114] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  882.994528][T20114] CPU: 1 PID: 20114 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  883.003162][T20114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  883.013229][T20114] Call Trace:
[  883.016522][T20114]  <TASK>
[  883.019465][T20114]  dump_stack_lvl+0x1e3/0x2cb
[  883.024160][T20114]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  883.029808][T20114]  ? panic+0x84d/0x84d
[  883.033917][T20114]  should_fail+0x38a/0x4c0
[  883.038370][T20114]  prepare_alloc_pages+0x1db/0x5b0
[  883.043511][T20114]  __alloc_pages+0x14f/0x700
[  883.048133][T20114]  ? __rmqueue_pcplist+0x2030/0x2030
[  883.053452][T20114]  ? __lock_acquire+0x1295/0x1ff0
[  883.058597][T20114]  alloc_pages_vma+0x39a/0x800
[  883.063387][T20114]  ? mpol_shared_policy_lookup+0x144/0x1e0
[  883.069217][T20114]  shmem_alloc_and_acct_page+0x4d1/0xd10
[  883.074888][T20114]  ? shmem_swapin_page+0x22f0/0x22f0
[  883.080211][T20114]  ? xas_descend+0x219/0x3a0
[  883.084823][T20114]  ? xas_load+0x128/0x140
[  883.089171][T20114]  ? pagecache_get_page+0xd23/0x1010
[  883.094478][T20114]  ? page_cache_prev_miss+0x500/0x500
[  883.099879][T20114]  ? do_raw_spin_unlock+0x137/0x8b0
[  883.105159][T20114]  ? _raw_spin_unlock_irq+0x1f/0x40
[  883.110377][T20114]  ? lockdep_hardirqs_on+0x94/0x130
[  883.115606][T20114]  shmem_getpage_gfp+0x17b1/0x3190
[  883.120774][T20114]  ? shmem_getpage+0xa0/0xa0
[  883.125386][T20114]  ? fault_in_safe_writeable+0x250/0x250
[  883.129551][   T26] audit: type=1800 audit(1691082973.506:229): pid=20129 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1956 res=0 errno=0
[  883.131039][T20114]  shmem_write_begin+0xce/0x1a0
[  883.131078][T20114]  generic_perform_write+0x2bf/0x5b0
[  883.162653][T20114]  ? grab_cache_page_write_begin+0x90/0x90
[  883.168481][T20114]  ? file_remove_privs+0x610/0x610
[  883.173716][T20114]  ? down_write+0x10e/0x170
[  883.179553][T20114]  __generic_file_write_iter+0x243/0x4f0
[  883.185825][T20114]  generic_file_write_iter+0xa7/0x1b0
[  883.191308][T20114]  vfs_write+0xacf/0xe50
[  883.195667][T20114]  ? file_end_write+0x250/0x250
[  883.200571][T20114]  ? __fget_files+0x413/0x480
[  883.205273][T20114]  ? __fdget_pos+0x1eb/0x2b0
[  883.209874][T20114]  ? ksys_write+0x77/0x2c0
[  883.214314][T20114]  ksys_write+0x1a2/0x2c0
[  883.218658][T20114]  ? print_irqtrace_events+0x210/0x210
[  883.224135][T20114]  ? __ia32_sys_read+0x80/0x80
[  883.228915][T20114]  ? syscall_enter_from_user_mode+0x2e/0x230
[  883.234913][T20114]  ? lockdep_hardirqs_on+0x94/0x130
[  883.240224][T20114]  ? syscall_enter_from_user_mode+0x2e/0x230
[  883.246308][T20114]  do_syscall_64+0x3d/0xb0
[  883.250738][T20114]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  883.256647][T20114] RIP: 0033:0x7f768c93682f
[  883.261070][T20114] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  883.280877][T20114] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
17:16:13 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCDELRT(r0, 0x890c, &(0x7f0000000080)={0x0, @in={0x2, 0x0, @private}, @hci, @phonet})

17:16:13 executing program 3:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000001340)={0x1, &(0x7f0000000000)=[{0x8}]})

17:16:13 executing program 3:
syz_io_uring_setup(0x1f0a, &(0x7f00000002c0)={0x0, 0xd2d9, 0x8}, &(0x7f0000000340), &(0x7f0000000380))

[  883.289481][T20114] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  883.297463][T20114] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  883.305449][T20114] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  883.313426][T20114] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  883.321406][T20114] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  883.329410][T20114]  </TASK>
[  883.362528][   T26] audit: type=1804 audit(1691082973.876:230): pid=20131 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3167581681/syzkaller.sn1LVw/1232/bus" dev="sda1" ino=1956 res=1 errno=0
17:16:14 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$eJzs3V1oXOl5B/Dn1ZHWkrdpZjebzYdzMbCBbL3ZRbK8axVvQI4VkQXjNSsrFwsFjS3ZHVZfluTiDSVVIaGEtMUlF7msYRNor+qrFpYG3KttCAFRKJRCi9tuzPZuEpq25CIKZ+YdaaSVLcWWJdn7+xn7P3PmOTPvmdUzc4523jkBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAER8+Sun+gfSPQp69nAwAMCeODv2Rv/gvd7/AYDHzvntjv8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAiRRHfjBTvfKeRJprXW3rP1GevXhsfGd16tb4UKbqiaNaXf3sHjg0ef/mVE0PtvPf6u+0z8frY+VPV03Mz8wtTi4tTk9Xx2frFucmpHd/Dg66/2dHmE1Cdeevq5KVLi9VjLw1uuPla5c6hJ5+tnBw6Mvhmu3Z8ZHR0rKOmu+e+H/1D0u7dFY+RJ6KIr0aK9178INUioisevBe2ee142Pqiu+y/5kaMj4w2N2S6XptdKm9MXbmqO6LSsdJwu0f2oBcfyHDEcvnfqRzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGW25PJbpiKEXMR0Sj2O/Bc9D0RBHHI8WdnzfShYgo2n3wwtmxN/oHt7+D7j0Y5BZWV1f/qFJErMQj0LNwQB2KIv4iUnx3oj8u5nZuts37EV8o89WIK2XeSnE9X0/lC8RQxM+8n8AjrTuK+EmkmEuNNNnu/eZ+5ZmvVV+bvTTXUdver3zkjw/2kn0TDrDeKOJCc4+/ke7/l10AAAAAAAAAAAAAwN4o4t1IcXPm+TQfnXNK67OXq+drF6Zbnwpuf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZ5j0BAAAAAAAAAAAAAAAAAACwy/qiiNFIceOdP2ieVzqa56X/+MmhsyPPdJ4z/lPb3E9Z+1JEvBs7OydvTz7XeOoq/+z+dgHb640ivpHP//fH+z0YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgQOiKIr4ZKb73i0aKFBHDERPRytvFfo8OAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACj1piJOR4r//kpv8/pKRHw2In61Wv6J+P/VzfZ7xAAAAAAAAAAAAAAAAAAAAPAYSkVciRTff6+RKhFxrXLn0JPPVk4OHRl8s4giUlnSWf/62PlT1dNzM/MLU4uLU5PV8dn6xbnJqZ0+XO+Z+uzVa+Mjow9lY7bV95DH39d7em7+7YX65d9f2vL2w72nLiwuLdQubn1z9EV3RH/nkqPNAY+PjDYHPV2vzTZXTV13GWB3RHWnGwMAAAAAAAAAAAAAAAAAAMCBcTgVMRIpnvvh8dSeN97dmvP/sda1Yq32B3+4/l0A05uyrfP7A9Yvtyerb14++Gba6UCPNifeV8dHRkfHOhZ393y4tBxTSkV8MlIc+ftPN+fDpzi85dz4su5PI8XQL4/nusqRsm54Q1Xv0fGR0erZudkXT01Pz12s9dUuTE9Vx+ZrF3f8xQEAAAAAAAAAAAAAAAAAAABwD4dTEX8WKY6/tpLa553P8/+7W9c65v+/GtGeyd+bNuaa5tz+327O7W9d/vjJodeOPXe35Q9j/n85ppSK+FWkeOovP908n357/n//ptqy7vuR4iff+lyu63qirBtob07rHi/Vp6f6y9oXIsW3z7Vro1n7Sq79xHrtQFn7D5Hi6d/bWHsi1z6zXnusrL0TKUbPbl37yfXawbK2L1J88U+q7drDZe2Xc+2z67UvXZybntzp08tHU9n//x4pPj/w1dT+mb9r/3d8/8fyplzzoZ6/9+Xd6v9Kx7Ll3Neruf8Htun/K5Hiz69/Lte1eu9Yvv2p5r/r/f/tSPE7H9tY+3KufXq9dmCnmwX7qez/H0WKldv/svYzn/s/d9Z6h3b2/2e7N2Z7v2DH/f9vu9v/T3Usq+RxDf6GzwV81Cy+/fW3atPTUwsuuLBrF5bjQAzDhQe4sN+vTMDDVu7//2+k+NKVIrWPY/P+/2+1rq0f///fN9b3/09uyjX7dPz/dMeyk/mopac7ondpZr7nUxG9i29//cX6TO3y1OWp2cHBoRO/e3zg2ImBnifaB/frl3b83MGjruz/tyLFD/7mn9Z+j73x+H/r3/8d3pRr7rP/f/nX2wx0m/7/ROc2bTiu+c2eD/goKfv/ryLFv974YO3/N93r93/t3/M9/9zG7GsX7dP7/zMdy6r5n6GOZc8XEad2+lgAAAAAAAAAAPCIOJyK+GGk+NvGP66d837j53/i8+3azs//3c3W5//f4vLKPz+08/8DAPdWvv+PRYofH/5ian+HzE4+/z+5Kdfs0+d/n+1YNrlH85p3/CQDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMB9SlHEoUjxznca6XZRXm/pPVOfvXptfGR069XenYuIriia9eXf3oFjg8dffuXEUDvvvf5u+0y8Pnb+VPX03Mz8wtTi4tRkdXy2fnFucmrH9/Cg6292tPkEVGfeujp56dJi9dhLgxtuvla5c+jJZysnh44MvtmuHR8ZHR3rqOnuue9H/5C0e3fFY+SJKOLHkeK9Fz9I/1GUPX23XljecS9s89rxsPVFd9l/zY0YHxltbsh0vTa7VN6YunJVd0SlY6Xhdo/sQS8+kOGI5fK1txzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGm370P1GJrhhKEfMR0Sj2e/AcND1RxN9Fijs/b6T/LCKKdh+8cHbsjf7B7e+gew8GeZeHrRQRK/EI9CwcUIeiiGcixXcn+uO/ilZfNdvm/YgvlPlqxJUyb6W4nq+n8gViKOJn3k/gkdYdRZyLFHOpkd4vcu839yvPfK362uyluY7a9n7lgx4r7/vxwV6yb8IB1htF/LS5x99IP/V+DgAAAAAAAAAAAAAHXBFfihQ3Z55Pzfmha3NK67OXq+drF6ZbH+tvf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZPicNAAAAAAAAAAAAAAAAAMBD0hVFfCtSfO8XjbRatM4vOxGtvG2eKzzWfh0AAP//5UVOig==") (fail_nth: 76)

17:16:14 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000180)=ANY=[@ANYBLOB="ffffeffffefffffff41942d3f48c292d1f9f1f2ed38725ea08df3915435a7ea55933e31e3e2ec19140bea740d63e83b2e368febe65ff0ad93563927efc1e1aa81c9cd38a3a941a5c4275f6a141838ee1d30014ab2bfd53cb6073bf1704ca3d505b7bc583d334101805a18b3a3b0ac7b64bba456fcae12f26d43534da44d418076a7e2b510f48d90000000000000080f7bbf14dcdee3593e03ae76dba30deadf35f776b115ac195ef919e07e06b7a3eda7835f61d9e2bb506fed4dec9f256c48706636d0c0879661024aed1aa13e4e267c1d1c86c479928657bbe541f6f594aced0cb7be2fdd334e882f9922400709c8f19450ffb59e0897c0ed3a2e5ae47897f2c478555926dfb06925c85b46a23b9122fc4a20139"])

17:16:14 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000080)={'tunl0\x00'})

17:16:14 executing program 3:
setresuid(0x0, 0xee00, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000600), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r0, &(0x7f00000006c0)={&(0x7f00000005c0), 0xc, &(0x7f0000000680)={&(0x7f0000000640)={0x14, r1, 0x1}, 0x14}}, 0x0)

17:16:14 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa2], [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe]}, 0x45c)
r2 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x43, 0x0)
sendmsg$ETHTOOL_MSG_RINGS_SET(r2, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="200026bd7000ffdbdf2510000000280001800800030003000000080003000300000014ff0f0076657468305f746f5f7465616d00000008000900080000000800070009000000080008003c8b000008000900060000000800060024030000080006408a000000"], 0x6c}, 0x1, 0x0, 0x0, 0x44800}, 0x80)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r3, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000800)={'syz0\x00', {0x4, 0x9, 0x80, 0x3f}, 0x5, [0xffffffff, 0xfffffff8, 0xfffffffb, 0x2, 0x7f, 0x7, 0x6, 0x7, 0x82ad, 0x4, 0x6, 0x7, 0x200, 0xad53, 0x7ef5, 0x5, 0x4cad269d, 0x9, 0x2, 0x3ff, 0xffff387f, 0x9, 0xffffffff, 0x101, 0x8, 0x10000, 0xfffffff9, 0x0, 0x7, 0x0, 0x8001, 0x8, 0x3, 0x1, 0x558b, 0x4, 0x7fffffff, 0x7f, 0x400, 0xd75, 0x0, 0x2, 0x5dae, 0x0, 0x100, 0x0, 0x0, 0x4, 0x80, 0x3961, 0x7, 0x6, 0xffffff7a, 0x2, 0x3, 0x1, 0x0, 0xac40, 0xca68, 0x7, 0x8, 0xffffff61, 0x2, 0x7], [0x2, 0x671, 0x8, 0x3, 0x20, 0x6ac9, 0x79c9, 0xd75f, 0x3, 0x942, 0x2, 0x9827, 0x5, 0xfffff2e3, 0x2, 0x7fffffff, 0x7f, 0x147, 0x1000, 0x8, 0x4, 0x3, 0x7, 0x5000, 0x0, 0x5, 0x4, 0x0, 0x4, 0x7ff, 0x7ff, 0x2, 0x100020, 0x0, 0xff, 0xffff, 0x800, 0x18000, 0x400, 0x9, 0x2, 0x4, 0xffff0001, 0x5, 0x1, 0x8, 0x7fffffff, 0x20, 0x0, 0x0, 0x1, 0xffff, 0x0, 0x200, 0x3, 0x1f, 0x4aec, 0xc5, 0xfffffffc, 0x80, 0x1, 0x1, 0xfffffffe, 0x7], [0x800, 0xae5, 0x401, 0x5, 0x7, 0x9, 0x2, 0x3f, 0x1d3, 0x401, 0x2, 0x1, 0xffffffc1, 0x4, 0x1, 0x20, 0x7, 0x80, 0xfa2, 0x8, 0x247, 0x10000, 0x2, 0x9, 0x2, 0x16, 0x6, 0x4, 0xfffff57a, 0x7, 0x7ff, 0x2b, 0x3ff, 0xd52a, 0x5, 0x1f, 0x92, 0x8, 0x0, 0x1, 0xcca5, 0x4, 0x10001, 0x1c000, 0xc4e, 0x2, 0x2, 0x2, 0x200, 0x2, 0x8, 0xfffffffb, 0xe06, 0x23, 0x2, 0xffff, 0x8000, 0x3, 0x401, 0x9, 0xffff, 0x200, 0x7f, 0x9], [0x0, 0xe7, 0x9, 0x5, 0xffff, 0x6, 0xffff, 0x80000000, 0x7, 0x10000, 0x0, 0x26f6, 0x745, 0x56, 0x1, 0x7fffffff, 0x10, 0x937b, 0x80000000, 0x5, 0x2, 0x2, 0x800, 0x8, 0x6, 0x2, 0x1, 0x0, 0x0, 0x7ff, 0x7, 0xa3d, 0x7, 0x1000, 0x3ff, 0x6, 0x3, 0x0, 0x3, 0x7, 0x0, 0x7, 0x4, 0x0, 0x40, 0x3, 0x6, 0x9, 0x7, 0x9, 0x6, 0x2, 0x9, 0xf040, 0x4, 0x1, 0x2, 0x1, 0x7, 0x6595, 0x10000, 0xffffffff, 0x3, 0x5]}, 0x45c)

17:16:14 executing program 0:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
sendmsg$inet(r0, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x1)

17:16:14 executing program 3:
syz_io_uring_setup(0x3a7, &(0x7f0000000100)={0x0, 0x0, 0x6}, &(0x7f0000000180), &(0x7f0000000200))

17:16:14 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000180)=ANY=[@ANYBLOB="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"]) (async)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000180)=ANY=[@ANYBLOB="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"])

17:16:14 executing program 1:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$UI_BEGIN_FF_UPLOAD(r0, 0xc06855c8, 0x0)

[  884.004331][T20144] input: syz1 as /devices/virtual/input/input198
17:16:14 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000180)=ANY=[@ANYBLOB="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"])

17:16:14 executing program 0:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
sendmsg$inet(r0, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x1)

17:16:14 executing program 3:
select(0x40, &(0x7f00000002c0), &(0x7f00000000c0), &(0x7f00000001c0)={0x8}, &(0x7f0000000240))

[  884.211396][T20160] FAULT_INJECTION: forcing a failure.
[  884.211396][T20160] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  884.224642][T20160] CPU: 1 PID: 20160 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  884.233287][T20160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  884.243349][T20160] Call Trace:
[  884.246630][T20160]  <TASK>
[  884.249550][T20160]  dump_stack_lvl+0x1e3/0x2cb
[  884.254213][T20160]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  884.259851][T20160]  ? panic+0x84d/0x84d
[  884.263909][T20160]  ? shmem_getpage_gfp+0x2b48/0x3190
[  884.269209][T20160]  should_fail+0x38a/0x4c0
[  884.273742][T20160]  copy_page_from_iter_atomic+0x451/0x1230
[  884.279586][T20160]  ? pipe_zero+0x4f0/0x4f0
[  884.284036][T20160]  generic_perform_write+0x33a/0x5b0
[  884.289336][T20160]  ? grab_cache_page_write_begin+0x90/0x90
[  884.295149][T20160]  ? file_remove_privs+0x610/0x610
[  884.300246][T20160]  ? down_write+0x10e/0x170
[  884.304746][T20160]  __generic_file_write_iter+0x243/0x4f0
[  884.310461][T20160]  generic_file_write_iter+0xa7/0x1b0
[  884.315822][T20160]  vfs_write+0xacf/0xe50
[  884.320057][T20160]  ? file_end_write+0x250/0x250
[  884.324896][T20160]  ? __fget_files+0x413/0x480
[  884.329561][T20160]  ? __fdget_pos+0x1eb/0x2b0
[  884.334253][T20160]  ? ksys_write+0x77/0x2c0
[  884.338679][T20160]  ksys_write+0x1a2/0x2c0
[  884.342995][T20160]  ? print_irqtrace_events+0x210/0x210
[  884.348468][T20160]  ? __ia32_sys_read+0x80/0x80
[  884.353213][T20160]  ? syscall_enter_from_user_mode+0x2e/0x230
[  884.359177][T20160]  ? lockdep_hardirqs_on+0x94/0x130
[  884.364371][T20160]  ? syscall_enter_from_user_mode+0x2e/0x230
[  884.370351][T20160]  do_syscall_64+0x3d/0xb0
[  884.374753][T20160]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  884.380640][T20160] RIP: 0033:0x7f768c93682f
[  884.385037][T20160] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
17:16:15 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 77)

17:16:15 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x3ff, @none, 0x1}, 0xe)

17:16:15 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000))
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r1, 0x0)
ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r1, 0x80dc5521, &(0x7f0000000040)=""/84)

17:16:15 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa2], [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe]}, 0x45c)
openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x43, 0x0) (async)
r2 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x43, 0x0)
sendmsg$ETHTOOL_MSG_RINGS_SET(r2, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="200026bd7000ffdbdf2510000000280001800800030003000000080003000300000014ff0f0076657468305f746f5f7465616d00000008000900080000000800070009000000080008003c8b000008000900060000000800060024030000080006408a000000"], 0x6c}, 0x1, 0x0, 0x0, 0x44800}, 0x80)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a) (async)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0) (async)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r3, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000800)={'syz0\x00', {0x4, 0x9, 0x80, 0x3f}, 0x5, [0xffffffff, 0xfffffff8, 0xfffffffb, 0x2, 0x7f, 0x7, 0x6, 0x7, 0x82ad, 0x4, 0x6, 0x7, 0x200, 0xad53, 0x7ef5, 0x5, 0x4cad269d, 0x9, 0x2, 0x3ff, 0xffff387f, 0x9, 0xffffffff, 0x101, 0x8, 0x10000, 0xfffffff9, 0x0, 0x7, 0x0, 0x8001, 0x8, 0x3, 0x1, 0x558b, 0x4, 0x7fffffff, 0x7f, 0x400, 0xd75, 0x0, 0x2, 0x5dae, 0x0, 0x100, 0x0, 0x0, 0x4, 0x80, 0x3961, 0x7, 0x6, 0xffffff7a, 0x2, 0x3, 0x1, 0x0, 0xac40, 0xca68, 0x7, 0x8, 0xffffff61, 0x2, 0x7], [0x2, 0x671, 0x8, 0x3, 0x20, 0x6ac9, 0x79c9, 0xd75f, 0x3, 0x942, 0x2, 0x9827, 0x5, 0xfffff2e3, 0x2, 0x7fffffff, 0x7f, 0x147, 0x1000, 0x8, 0x4, 0x3, 0x7, 0x5000, 0x0, 0x5, 0x4, 0x0, 0x4, 0x7ff, 0x7ff, 0x2, 0x100020, 0x0, 0xff, 0xffff, 0x800, 0x18000, 0x400, 0x9, 0x2, 0x4, 0xffff0001, 0x5, 0x1, 0x8, 0x7fffffff, 0x20, 0x0, 0x0, 0x1, 0xffff, 0x0, 0x200, 0x3, 0x1f, 0x4aec, 0xc5, 0xfffffffc, 0x80, 0x1, 0x1, 0xfffffffe, 0x7], [0x800, 0xae5, 0x401, 0x5, 0x7, 0x9, 0x2, 0x3f, 0x1d3, 0x401, 0x2, 0x1, 0xffffffc1, 0x4, 0x1, 0x20, 0x7, 0x80, 0xfa2, 0x8, 0x247, 0x10000, 0x2, 0x9, 0x2, 0x16, 0x6, 0x4, 0xfffff57a, 0x7, 0x7ff, 0x2b, 0x3ff, 0xd52a, 0x5, 0x1f, 0x92, 0x8, 0x0, 0x1, 0xcca5, 0x4, 0x10001, 0x1c000, 0xc4e, 0x2, 0x2, 0x2, 0x200, 0x2, 0x8, 0xfffffffb, 0xe06, 0x23, 0x2, 0xffff, 0x8000, 0x3, 0x401, 0x9, 0xffff, 0x200, 0x7f, 0x9], [0x0, 0xe7, 0x9, 0x5, 0xffff, 0x6, 0xffff, 0x80000000, 0x7, 0x10000, 0x0, 0x26f6, 0x745, 0x56, 0x1, 0x7fffffff, 0x10, 0x937b, 0x80000000, 0x5, 0x2, 0x2, 0x800, 0x8, 0x6, 0x2, 0x1, 0x0, 0x0, 0x7ff, 0x7, 0xa3d, 0x7, 0x1000, 0x3ff, 0x6, 0x3, 0x0, 0x3, 0x7, 0x0, 0x7, 0x4, 0x0, 0x40, 0x3, 0x6, 0x9, 0x7, 0x9, 0x6, 0x2, 0x9, 0xf040, 0x4, 0x1, 0x2, 0x1, 0x7, 0x6595, 0x10000, 0xffffffff, 0x3, 0x5]}, 0x45c)

17:16:15 executing program 3:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000012b40), 0x0, 0x0)
ioctl$UI_SET_KEYBIT(r0, 0x40045565, 0x0)

17:16:15 executing program 0:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
sendmsg$inet(r0, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x1)

[  884.404623][T20160] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  884.413022][T20160] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  884.420978][T20160] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  884.428932][T20160] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  884.436909][T20160] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  884.444869][T20160] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  884.452937][T20160]  </TASK>
17:16:15 executing program 3:
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x2000480, &(0x7f0000002880)=ANY=[@ANYRES64=0x0, @ANYBLOB="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"], 0x1, 0x75b, &(0x7f0000000840)="$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")
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
lseek(r0, 0x7fff, 0x0)
r1 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
write$FUSE_ATTR(r0, &(0x7f0000000240)={0x78}, 0x78)
write$cgroup_type(r1, &(0x7f0000000200), 0x175d9003)

17:16:15 executing program 1:
r0 = epoll_create1(0x0)
r1 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040))
epoll_ctl$EPOLL_CTL_ADD(r0, 0x3, r1, &(0x7f00000010c0))

17:16:15 executing program 0:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
sendmsg$inet(r0, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x1)

[  884.525925][T20172] input: syz1 as /devices/virtual/input/input201
[  884.547154][T20176] FAULT_INJECTION: forcing a failure.
[  884.547154][T20176] name fail_page_alloc, interval 1, probability 0, space 0, times 0
17:16:15 executing program 1:
syz_emit_vhci(&(0x7f0000001640)=ANY=[], 0x22)

17:16:15 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000))
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0) (async)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r1, 0x0)
ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r1, 0x80dc5521, &(0x7f0000000040)=""/84) (async)
ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r1, 0x80dc5521, &(0x7f0000000040)=""/84)

17:16:15 executing program 0:
r0 = socket$packet(0x11, 0x2, 0x300)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000080)={'team0\x00', <r2=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)

[  884.663679][T20176] CPU: 0 PID: 20176 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  884.672303][T20176] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  884.682370][T20176] Call Trace:
[  884.685660][T20176]  <TASK>
[  884.688597][T20176]  dump_stack_lvl+0x1e3/0x2cb
[  884.693656][T20176]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  884.699308][T20176]  ? panic+0x84d/0x84d
[  884.703419][T20176]  should_fail+0x38a/0x4c0
[  884.707855][T20176]  prepare_alloc_pages+0x1db/0x5b0
[  884.712990][T20176]  __alloc_pages+0x14f/0x700
[  884.717602][T20176]  ? __rmqueue_pcplist+0x2030/0x2030
[  884.722906][T20176]  ? __lock_acquire+0x1295/0x1ff0
[  884.727956][T20176]  alloc_pages_vma+0x39a/0x800
[  884.732739][T20176]  ? mpol_shared_policy_lookup+0x144/0x1e0
[  884.738740][T20176]  shmem_alloc_and_acct_page+0x4d1/0xd10
[  884.744399][T20176]  ? shmem_swapin_page+0x22f0/0x22f0
[  884.749724][T20176]  ? xas_descend+0x219/0x3a0
[  884.754329][T20176]  ? xas_load+0x128/0x140
[  884.758704][T20176]  ? pagecache_get_page+0xd23/0x1010
[  884.764009][T20176]  ? page_cache_prev_miss+0x500/0x500
[  884.769403][T20176]  ? do_raw_spin_unlock+0x137/0x8b0
[  884.774625][T20176]  ? _raw_spin_unlock_irq+0x1f/0x40
[  884.779841][T20176]  ? lockdep_hardirqs_on+0x94/0x130
[  884.785055][T20176]  shmem_getpage_gfp+0x17b1/0x3190
[  884.790214][T20176]  ? shmem_getpage+0xa0/0xa0
[  884.794829][T20176]  ? fault_in_safe_writeable+0x250/0x250
[  884.800481][T20176]  shmem_write_begin+0xce/0x1a0
[  884.805353][T20176]  generic_perform_write+0x2bf/0x5b0
[  884.810663][T20176]  ? grab_cache_page_write_begin+0x90/0x90
[  884.816482][T20176]  ? file_remove_privs+0x610/0x610
[  884.821606][T20176]  ? down_write+0x10e/0x170
[  884.826125][T20176]  __generic_file_write_iter+0x243/0x4f0
[  884.831776][T20176]  generic_file_write_iter+0xa7/0x1b0
[  884.837163][T20176]  vfs_write+0xacf/0xe50
[  884.841427][T20176]  ? file_end_write+0x250/0x250
[  884.846299][T20176]  ? __fget_files+0x413/0x480
[  884.850994][T20176]  ? __fdget_pos+0x1eb/0x2b0
[  884.855588][T20176]  ? ksys_write+0x77/0x2c0
[  884.860014][T20176]  ksys_write+0x1a2/0x2c0
[  884.864346][T20176]  ? print_irqtrace_events+0x210/0x210
[  884.869819][T20176]  ? __ia32_sys_read+0x80/0x80
[  884.874595][T20176]  ? syscall_enter_from_user_mode+0x2e/0x230
[  884.880596][T20176]  ? lockdep_hardirqs_on+0x94/0x130
[  884.885803][T20176]  ? syscall_enter_from_user_mode+0x2e/0x230
[  884.891794][T20176]  do_syscall_64+0x3d/0xb0
[  884.896222][T20176]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  884.902125][T20176] RIP: 0033:0x7f768c93682f
[  884.906546][T20176] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  884.926154][T20176] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  884.934582][T20176] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  884.942566][T20176] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  884.950544][T20176] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  884.958615][T20176] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  884.966598][T20176] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  884.974599][T20176]  </TASK>
17:16:15 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 78)

17:16:15 executing program 1:
r0 = timerfd_create(0x9, 0x0)
timerfd_settime(r0, 0x1, &(0x7f00000000c0)={{0x0, 0x989680}, {0x77359400}}, &(0x7f0000000780))

17:16:15 executing program 0:
syz_mount_image$minix(&(0x7f0000000100), &(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000000200)=ANY=[@ANYRES8, @ANYRES64, @ANYRES16=0x0, @ANYRESDEC=0x0, @ANYRESOCT, @ANYRES16=0x0], 0x54, 0x1d4, &(0x7f0000000300)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000380)='./bus\x00', 0x141842, 0x0)

17:16:15 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa2], [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe]}, 0x45c) (async)
r2 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x43, 0x0)
sendmsg$ETHTOOL_MSG_RINGS_SET(r2, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="200026bd7000ffdbdf2510000000280001800800030003000000080003000300000014ff0f0076657468305f746f5f7465616d00000008000900080000000800070009000000080008003c8b000008000900060000000800060024030000080006408a000000"], 0x6c}, 0x1, 0x0, 0x0, 0x44800}, 0x80) (async)
ioctl$UI_DEV_CREATE(r1, 0x5501) (async)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r3, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000800)={'syz0\x00', {0x4, 0x9, 0x80, 0x3f}, 0x5, [0xffffffff, 0xfffffff8, 0xfffffffb, 0x2, 0x7f, 0x7, 0x6, 0x7, 0x82ad, 0x4, 0x6, 0x7, 0x200, 0xad53, 0x7ef5, 0x5, 0x4cad269d, 0x9, 0x2, 0x3ff, 0xffff387f, 0x9, 0xffffffff, 0x101, 0x8, 0x10000, 0xfffffff9, 0x0, 0x7, 0x0, 0x8001, 0x8, 0x3, 0x1, 0x558b, 0x4, 0x7fffffff, 0x7f, 0x400, 0xd75, 0x0, 0x2, 0x5dae, 0x0, 0x100, 0x0, 0x0, 0x4, 0x80, 0x3961, 0x7, 0x6, 0xffffff7a, 0x2, 0x3, 0x1, 0x0, 0xac40, 0xca68, 0x7, 0x8, 0xffffff61, 0x2, 0x7], [0x2, 0x671, 0x8, 0x3, 0x20, 0x6ac9, 0x79c9, 0xd75f, 0x3, 0x942, 0x2, 0x9827, 0x5, 0xfffff2e3, 0x2, 0x7fffffff, 0x7f, 0x147, 0x1000, 0x8, 0x4, 0x3, 0x7, 0x5000, 0x0, 0x5, 0x4, 0x0, 0x4, 0x7ff, 0x7ff, 0x2, 0x100020, 0x0, 0xff, 0xffff, 0x800, 0x18000, 0x400, 0x9, 0x2, 0x4, 0xffff0001, 0x5, 0x1, 0x8, 0x7fffffff, 0x20, 0x0, 0x0, 0x1, 0xffff, 0x0, 0x200, 0x3, 0x1f, 0x4aec, 0xc5, 0xfffffffc, 0x80, 0x1, 0x1, 0xfffffffe, 0x7], [0x800, 0xae5, 0x401, 0x5, 0x7, 0x9, 0x2, 0x3f, 0x1d3, 0x401, 0x2, 0x1, 0xffffffc1, 0x4, 0x1, 0x20, 0x7, 0x80, 0xfa2, 0x8, 0x247, 0x10000, 0x2, 0x9, 0x2, 0x16, 0x6, 0x4, 0xfffff57a, 0x7, 0x7ff, 0x2b, 0x3ff, 0xd52a, 0x5, 0x1f, 0x92, 0x8, 0x0, 0x1, 0xcca5, 0x4, 0x10001, 0x1c000, 0xc4e, 0x2, 0x2, 0x2, 0x200, 0x2, 0x8, 0xfffffffb, 0xe06, 0x23, 0x2, 0xffff, 0x8000, 0x3, 0x401, 0x9, 0xffff, 0x200, 0x7f, 0x9], [0x0, 0xe7, 0x9, 0x5, 0xffff, 0x6, 0xffff, 0x80000000, 0x7, 0x10000, 0x0, 0x26f6, 0x745, 0x56, 0x1, 0x7fffffff, 0x10, 0x937b, 0x80000000, 0x5, 0x2, 0x2, 0x800, 0x8, 0x6, 0x2, 0x1, 0x0, 0x0, 0x7ff, 0x7, 0xa3d, 0x7, 0x1000, 0x3ff, 0x6, 0x3, 0x0, 0x3, 0x7, 0x0, 0x7, 0x4, 0x0, 0x40, 0x3, 0x6, 0x9, 0x7, 0x9, 0x6, 0x2, 0x9, 0xf040, 0x4, 0x1, 0x2, 0x1, 0x7, 0x6595, 0x10000, 0xffffffff, 0x3, 0x5]}, 0x45c)

17:16:15 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000))
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000140)=ANY=[], 0x208e24b) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r1, 0x0) (async, rerun: 64)
ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r1, 0x80dc5521, &(0x7f0000000040)=""/84) (rerun: 64)

17:16:15 executing program 1:
quotactl$Q_SYNC(0xffffffff80000100, 0x0, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
ioctl$DRM_IOCTL_SWITCH_CTX(0xffffffffffffffff, 0x40086424, &(0x7f0000000000)={0x0, 0x1})

[  885.159413][T20202] input: syz1 as /devices/virtual/input/input202
[  885.191303][T20201] FAULT_INJECTION: forcing a failure.
[  885.191303][T20201] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  885.204417][T20201] CPU: 1 PID: 20201 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  885.212999][T20201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  885.223063][T20201] Call Trace:
[  885.226338][T20201]  <TASK>
[  885.229263][T20201]  dump_stack_lvl+0x1e3/0x2cb
[  885.233937][T20201]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  885.239585][T20201]  ? panic+0x84d/0x84d
[  885.243732][T20201]  ? shmem_getpage_gfp+0x2b48/0x3190
[  885.249101][T20201]  should_fail+0x38a/0x4c0
[  885.253520][T20201]  copy_page_from_iter_atomic+0x451/0x1230
[  885.259327][T20201]  ? pipe_zero+0x4f0/0x4f0
[  885.263764][T20201]  generic_perform_write+0x33a/0x5b0
[  885.269228][T20201]  ? grab_cache_page_write_begin+0x90/0x90
[  885.275030][T20201]  ? file_remove_privs+0x610/0x610
[  885.280139][T20201]  ? down_write+0x10e/0x170
[  885.284651][T20201]  __generic_file_write_iter+0x243/0x4f0
[  885.290278][T20201]  generic_file_write_iter+0xa7/0x1b0
[  885.295667][T20201]  vfs_write+0xacf/0xe50
[  885.299915][T20201]  ? file_end_write+0x250/0x250
[  885.304753][T20201]  ? __fget_files+0x413/0x480
[  885.309433][T20201]  ? __fdget_pos+0x1eb/0x2b0
[  885.314031][T20201]  ? ksys_write+0x77/0x2c0
[  885.318460][T20201]  ksys_write+0x1a2/0x2c0
[  885.322800][T20201]  ? print_irqtrace_events+0x210/0x210
[  885.328286][T20201]  ? __ia32_sys_read+0x80/0x80
[  885.333045][T20201]  ? syscall_enter_from_user_mode+0x2e/0x230
[  885.339031][T20201]  ? lockdep_hardirqs_on+0x94/0x130
[  885.344212][T20201]  ? syscall_enter_from_user_mode+0x2e/0x230
[  885.350241][T20201]  do_syscall_64+0x3d/0xb0
[  885.354751][T20201]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  885.360647][T20201] RIP: 0033:0x7f768c93682f
[  885.365061][T20201] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  885.384648][T20201] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  885.393054][T20201] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  885.401093][T20201] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  885.409051][T20201] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  885.417025][T20201] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  885.424996][T20201] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  885.432972][T20201]  </TASK>
17:16:16 executing program 3:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
ioctl$sock_ifreq(r0, 0x80108906, 0x0)

17:16:16 executing program 0:
r0 = openat$drirender128(0xffffffffffffff9c, &(0x7f0000003180), 0x0, 0x0)
ioctl$DRM_IOCTL_UNLOCK(r0, 0x5411, 0x0)

17:16:16 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$eJzs3V1oXOl5B/Dn1ZHWkrdpZjebzYdzMbCBbL3ZRbK8axVvQI4VkQXjNSsrFwsFjS3ZHVZfluTiDSVVIaGEtMUlF7msYRNor+qrFpYG3KttCAFRKJRCi9tuzPZuEpq25CIKZ+YdaaSVLcWWJdn7+xn7P3PmOTPvmdUzc4523jkBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAER8+Sun+gfSPQp69nAwAMCeODv2Rv/gvd7/AYDHzvntjv8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAiRRHfjBTvfKeRJprXW3rP1GevXhsfGd16tb4UKbqiaNaXf3sHjg0ef/mVE0PtvPf6u+0z8frY+VPV03Mz8wtTi4tTk9Xx2frFucmpHd/Dg66/2dHmE1Cdeevq5KVLi9VjLw1uuPla5c6hJ5+tnBw6Mvhmu3Z8ZHR0rKOmu+e+H/1D0u7dFY+RJ6KIr0aK9178INUioisevBe2ee142Pqiu+y/5kaMj4w2N2S6XptdKm9MXbmqO6LSsdJwu0f2oBcfyHDEcvnfqRzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGW25PJbpiKEXMR0Sj2O/Bc9D0RBHHI8WdnzfShYgo2n3wwtmxN/oHt7+D7j0Y5BZWV1f/qFJErMQj0LNwQB2KIv4iUnx3oj8u5nZuts37EV8o89WIK2XeSnE9X0/lC8RQxM+8n8AjrTuK+EmkmEuNNNnu/eZ+5ZmvVV+bvTTXUdver3zkjw/2kn0TDrDeKOJCc4+/ke7/l10AAAAAAAAAAAAAwN4o4t1IcXPm+TQfnXNK67OXq+drF6Zbnwpuf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZ5j0BAAAAAAAAAAAAAAAAAACwy/qiiNFIceOdP2ieVzqa56X/+MmhsyPPdJ4z/lPb3E9Z+1JEvBs7OydvTz7XeOoq/+z+dgHb640ivpHP//fH+z0YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgQOiKIr4ZKb73i0aKFBHDERPRytvFfo8OAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACj1piJOR4r//kpv8/pKRHw2In61Wv6J+P/VzfZ7xAAAAAAAAAAAAAAAAAAAAPAYSkVciRTff6+RKhFxrXLn0JPPVk4OHRl8s4giUlnSWf/62PlT1dNzM/MLU4uLU5PV8dn6xbnJqZ0+XO+Z+uzVa+Mjow9lY7bV95DH39d7em7+7YX65d9f2vL2w72nLiwuLdQubn1z9EV3RH/nkqPNAY+PjDYHPV2vzTZXTV13GWB3RHWnGwMAAAAAAAAAAAAAAAAAAMCBcTgVMRIpnvvh8dSeN97dmvP/sda1Yq32B3+4/l0A05uyrfP7A9Yvtyerb14++Gba6UCPNifeV8dHRkfHOhZ393y4tBxTSkV8MlIc+ftPN+fDpzi85dz4su5PI8XQL4/nusqRsm54Q1Xv0fGR0erZudkXT01Pz12s9dUuTE9Vx+ZrF3f8xQEAAAAAAAAAAAAAAAAAAABwD4dTEX8WKY6/tpLa553P8/+7W9c65v+/GtGeyd+bNuaa5tz+327O7W9d/vjJodeOPXe35Q9j/n85ppSK+FWkeOovP908n357/n//ptqy7vuR4iff+lyu63qirBtob07rHi/Vp6f6y9oXIsW3z7Vro1n7Sq79xHrtQFn7D5Hi6d/bWHsi1z6zXnusrL0TKUbPbl37yfXawbK2L1J88U+q7drDZe2Xc+2z67UvXZybntzp08tHU9n//x4pPj/w1dT+mb9r/3d8/8fyplzzoZ6/9+Xd6v9Kx7Ll3Neruf8Htun/K5Hiz69/Lte1eu9Yvv2p5r/r/f/tSPE7H9tY+3KufXq9dmCnmwX7qez/H0WKldv/svYzn/s/d9Z6h3b2/2e7N2Z7v2DH/f9vu9v/T3Usq+RxDf6GzwV81Cy+/fW3atPTUwsuuLBrF5bjQAzDhQe4sN+vTMDDVu7//2+k+NKVIrWPY/P+/2+1rq0f///fN9b3/09uyjX7dPz/dMeyk/mopac7ondpZr7nUxG9i29//cX6TO3y1OWp2cHBoRO/e3zg2ImBnifaB/frl3b83MGjruz/tyLFD/7mn9Z+j73x+H/r3/8d3pRr7rP/f/nX2wx0m/7/ROc2bTiu+c2eD/goKfv/ryLFv974YO3/N93r93/t3/M9/9zG7GsX7dP7/zMdy6r5n6GOZc8XEad2+lgAAAAAAAAAAPCIOJyK+GGk+NvGP66d837j53/i8+3azs//3c3W5//f4vLKPz+08/8DAPdWvv+PRYofH/5ian+HzE4+/z+5Kdfs0+d/n+1YNrlH85p3/CQDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMB9SlHEoUjxznca6XZRXm/pPVOfvXptfGR069XenYuIriia9eXf3oFjg8dffuXEUDvvvf5u+0y8Pnb+VPX03Mz8wtTi4tRkdXy2fnFucmrH9/Cg6292tPkEVGfeujp56dJi9dhLgxtuvla5c+jJZysnh44MvtmuHR8ZHR3rqOnuue9H/5C0e3fFY+SJKOLHkeK9Fz9I/1GUPX23XljecS9s89rxsPVFd9l/zY0YHxltbsh0vTa7VN6YunJVd0SlY6Xhdo/sQS8+kOGI5fK1txzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGm370P1GJrhhKEfMR0Sj2e/AcND1RxN9Fijs/b6T/LCKKdh+8cHbsjf7B7e+gew8GeZeHrRQRK/EI9CwcUIeiiGcixXcn+uO/ilZfNdvm/YgvlPlqxJUyb6W4nq+n8gViKOJn3k/gkdYdRZyLFHOpkd4vcu839yvPfK362uyluY7a9n7lgx4r7/vxwV6yb8IB1htF/LS5x99IP/V+DgAAAAAAAAAAAAAHXBFfihQ3Z55Pzfmha3NK67OXq+drF6ZbH+tvf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZPicNAAAAAAAAAAAAAAAAAMBD0hVFfCtSfO8XjbRatM4vOxGtvG2eKzzWfh0AAP//5UVOig==") (fail_nth: 79)

17:16:16 executing program 1:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$UI_SET_PROPBIT(r0, 0x4004556e, 0x0)
ioctl$UI_SET_SNDBIT(r0, 0x4004556a, 0x0)

17:16:16 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_CREATE(r0, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

17:16:16 executing program 0:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000002940)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendto$unix(r0, &(0x7f0000002980)="e0cb4f1ebdf4d5c364ee718b8e73d3d5c6e10713655b8b2b2a9e1ac64f82e849123db90a34af0d7deb67f88dabcccc9d5f33a835233252acf13a432aa1ca12122c1d17d65891bb045bae73c24d839f8071a1d58030245b3a31515b744d7bf8b8b7d90389d72f2d79efb07c823d50f6d83c1e63ef750faa9e0ad658201f35aed44a6f423bfa302953df67a6ff125b653dd9", 0x91, 0x0, &(0x7f0000002a40)=@file={0x0, './file0\x00'}, 0xa)

17:16:16 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000140)=ANY=[@ANYBLOB="00000000000000002152958989a9072edeb77e0ec8b89bd3dd58b316971314dc977699d87249adecf388f723826336d97e0e98546c9f0a027588c4b90770ad0c342b3022bd2b736b01fa1200398cdf65"])
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x4ce6}}, './file0\x00'})
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r1, 0xc0505510, &(0x7f00000000c0)={0x101, 0x2, 0x7fff, 0x5, &(0x7f0000000040)=[{}, {}]})

17:16:16 executing program 1:
socket$packet(0x11, 0x2, 0x300)
syz_genetlink_get_family_id$nbd(&(0x7f0000000bc0), 0xffffffffffffffff)

17:16:16 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ifreq(r0, 0x891a, &(0x7f0000000180)={'veth1_macvtap\x00', @ifru_settings={0x0, 0x0, @fr_pvc=0x0}})

[  885.667185][T20214] FAULT_INJECTION: forcing a failure.
[  885.667185][T20214] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  885.691501][T20219] input: syz1 as /devices/virtual/input/input204
[  885.720799][T20214] CPU: 0 PID: 20214 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  885.729424][T20214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  885.739576][T20214] Call Trace:
[  885.742865][T20214]  <TASK>
[  885.745817][T20214]  dump_stack_lvl+0x1e3/0x2cb
[  885.750517][T20214]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  885.756176][T20214]  ? panic+0x84d/0x84d
[  885.760278][T20214]  should_fail+0x38a/0x4c0
[  885.764729][T20214]  prepare_alloc_pages+0x1db/0x5b0
[  885.769881][T20214]  __alloc_pages+0x14f/0x700
[  885.774491][T20214]  ? __rmqueue_pcplist+0x2030/0x2030
[  885.779800][T20214]  ? __lock_acquire+0x1295/0x1ff0
[  885.784849][T20214]  alloc_pages_vma+0x39a/0x800
[  885.789623][T20214]  ? mpol_shared_policy_lookup+0x144/0x1e0
[  885.795446][T20214]  shmem_alloc_and_acct_page+0x4d1/0xd10
[  885.801102][T20214]  ? shmem_swapin_page+0x22f0/0x22f0
[  885.806425][T20214]  ? xas_descend+0x219/0x3a0
[  885.811033][T20214]  ? xas_load+0x128/0x140
[  885.815377][T20214]  ? pagecache_get_page+0xd23/0x1010
[  885.820682][T20214]  ? page_cache_prev_miss+0x500/0x500
[  885.826073][T20214]  ? do_raw_spin_unlock+0x137/0x8b0
[  885.831286][T20214]  ? _raw_spin_unlock_irq+0x1f/0x40
[  885.836585][T20214]  ? lockdep_hardirqs_on+0x94/0x130
[  885.841807][T20214]  shmem_getpage_gfp+0x17b1/0x3190
[  885.846967][T20214]  ? shmem_getpage+0xa0/0xa0
[  885.851680][T20214]  ? fault_in_safe_writeable+0x250/0x250
[  885.857336][T20214]  shmem_write_begin+0xce/0x1a0
[  885.862212][T20214]  generic_perform_write+0x2bf/0x5b0
17:16:16 executing program 3:
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x2000480, &(0x7f0000002880)=ANY=[@ANYRES64=0x0, @ANYBLOB="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"], 0x1, 0x75b, &(0x7f0000000840)="$eJzs3c1rHOUfAPDvbJKmv7Q/E0HQegoIGijdmBpbBQ8VDyJYKOjZdtlsQ81utmQ3pQkBLSJ4EVQ8CHrp2Zd68+rLVf8LD9JSNS1WPEhkNrPpttlNN22SRffzgad9npnZPPOdZ2aeZ3eGmQD61nj6Ty7iUER8kESMZtOTiBhq5AYjTqwvd2t1pZimJNbWXvstaSxzc3WlGC2fSR3ICo9FxPfvRhzOba63trQ8VyiXSwtZebJeOT9ZW1o+cq5SmC3NluaPTU1PHz3+7PFjOxfrHz8tH7z24ctPfXXir3cevfL+D0mciIPZvNY4dsp4jGfbZCjdhHd4aacr67Gk1yvAfUkPzYH1ozwOxWgMNHIAwH/ZWxGxBgD0mUT/DwB9pvk7wM3VlWIz9fYXib11/cWI2L8ef/P65vqcweya3f7GddCRm8kdV0aSiBjbgfrHI+Kzb974Ik2xS9chAdp5+1JEnBkb33z+Tzbds7BdT3exzPhdZec/2DvfpuOf59qN/3Ib459oM/4ZbnPs3o97H/+5qztQTUfp+O+FlnvbbrXEnxkbyEr/b4z5hpKz58ql9Nz2UERMxNBwWp7aoo6JG3/f6DSvdfz3+0dvfp7Wn/5/e4nc1cHhOz8zU6gXHiTmVtcvRTw+2C7+ZKP9kw7j31Nd1vHK8+992mleGn8abzNtjn93rV2OeLJt+9++oy3Z8v7EycbuMNncKdr4+udPRjrV39r+aUrrb34X2Atp+49sHf9Y0nq/Zm37dfx4efS7TvPuHX/7/X9f8nojvy+bdrFQry9MRexLXt08/ejtzzbLzeXT+CeeaH/8b7X/p98Jz3QZ/+C1X7+8//h3Vxr/zLbaf/uZK7fmBjrV3137TzdyE9mUbs5/3a7gg2w7AAAAAAAAAAAAAAAAAAAAAAAAAOhWLiIORpLLb+RzuXx+/R3ej8RIrlyt1Q+frS7Oz0TjXdljMZRrPupytOV5qFPZ8/Cb5aN3lZ+JiIcj4uPh/zXK+WK1PNPr4AEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgc6DD+/9Tvwz3eu0AgF2zv9crAADsOf0/APQf/T8A9B/9PwD0H/0/APQf/T8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC77NTJk2la+3N1pZiWZy4sLc5VLxyZKdXm8pXFYr5YXTifn61WZ8ulfLFaudffK1er56djfvHiZL1Uq0/WlpZPV6qL8/XT5yqF2dLp0tCeRAUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA21NbWp4rlMulBRkZGZmNTK/PTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/Dv8EAAD//z4HKi8=")
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
lseek(r0, 0x7fff, 0x0)
r1 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
fcntl$setstatus(r1, 0x4, 0x6100)
write$FUSE_ATTR(r0, &(0x7f0000000240)={0x78}, 0x78)
write$cgroup_type(r1, &(0x7f0000000200), 0x175d9003)

17:16:16 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)={0x24, r1, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0)

17:16:16 executing program 0:
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_RINGS_GET(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000440)={0x2c, r0, 0x3b8bcb22dfd852b, 0x0, 0x0, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0\x00'}]}]}, 0x2c}}, 0x0)

[  885.867526][T20214]  ? grab_cache_page_write_begin+0x90/0x90
[  885.873348][T20214]  ? file_remove_privs+0x610/0x610
[  885.878505][T20214]  ? down_write+0x10e/0x170
[  885.883026][T20214]  __generic_file_write_iter+0x243/0x4f0
[  885.888680][T20214]  generic_file_write_iter+0xa7/0x1b0
[  885.894070][T20214]  vfs_write+0xacf/0xe50
[  885.898337][T20214]  ? file_end_write+0x250/0x250
[  885.903206][T20214]  ? __fget_files+0x413/0x480
[  885.907905][T20214]  ? __fdget_pos+0x1eb/0x2b0
[  885.912502][T20214]  ? ksys_write+0x77/0x2c0
[  885.916930][T20214]  ksys_write+0x1a2/0x2c0
[  885.921269][T20214]  ? print_irqtrace_events+0x210/0x210
[  885.926829][T20214]  ? __ia32_sys_read+0x80/0x80
[  885.931604][T20214]  ? syscall_enter_from_user_mode+0x2e/0x230
[  885.937598][T20214]  ? lockdep_hardirqs_on+0x94/0x130
[  885.942810][T20214]  ? syscall_enter_from_user_mode+0x2e/0x230
[  885.948977][T20214]  do_syscall_64+0x3d/0xb0
[  885.953415][T20214]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  885.959327][T20214] RIP: 0033:0x7f768c93682f
[  885.963761][T20214] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  885.983470][T20214] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  885.991904][T20214] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  885.999895][T20214] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  886.007884][T20214] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
17:16:16 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c) (async)
ioctl$UI_DEV_CREATE(r1, 0x5501) (async)
ioctl$UI_DEV_CREATE(r0, 0x5501) (async)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

17:16:16 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
ioctl$sock_ifreq(r0, 0x8937, &(0x7f0000000180)={'bridge_slave_1\x00', @ifru_addrs=@generic={0x0, "62fdceb304249dbfb845ae55c17b"}})

[  886.015870][T20214] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  886.023859][T20214] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  886.031899][T20214]  </TASK>
17:16:16 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
recvmmsg(r0, &(0x7f00000016c0), 0x10, 0x0, &(0x7f0000001700)={0x0, 0x4})

17:16:16 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$eJzs3V1oXOl5B/Dn1ZHWkrdpZjebzYdzMbCBbL3ZRbK8axVvQI4VkQXjNSsrFwsFjS3ZHVZfluTiDSVVIaGEtMUlF7msYRNor+qrFpYG3KttCAFRKJRCi9tuzPZuEpq25CIKZ+YdaaSVLcWWJdn7+xn7P3PmOTPvmdUzc4523jkBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAER8+Sun+gfSPQp69nAwAMCeODv2Rv/gvd7/AYDHzvntjv8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAiRRHfjBTvfKeRJprXW3rP1GevXhsfGd16tb4UKbqiaNaXf3sHjg0ef/mVE0PtvPf6u+0z8frY+VPV03Mz8wtTi4tTk9Xx2frFucmpHd/Dg66/2dHmE1Cdeevq5KVLi9VjLw1uuPla5c6hJ5+tnBw6Mvhmu3Z8ZHR0rKOmu+e+H/1D0u7dFY+RJ6KIr0aK9178INUioisevBe2ee142Pqiu+y/5kaMj4w2N2S6XptdKm9MXbmqO6LSsdJwu0f2oBcfyHDEcvnfqRzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGW25PJbpiKEXMR0Sj2O/Bc9D0RBHHI8WdnzfShYgo2n3wwtmxN/oHt7+D7j0Y5BZWV1f/qFJErMQj0LNwQB2KIv4iUnx3oj8u5nZuts37EV8o89WIK2XeSnE9X0/lC8RQxM+8n8AjrTuK+EmkmEuNNNnu/eZ+5ZmvVV+bvTTXUdver3zkjw/2kn0TDrDeKOJCc4+/ke7/l10AAAAAAAAAAAAAwN4o4t1IcXPm+TQfnXNK67OXq+drF6Zbnwpuf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZ5j0BAAAAAAAAAAAAAAAAAACwy/qiiNFIceOdP2ieVzqa56X/+MmhsyPPdJ4z/lPb3E9Z+1JEvBs7OydvTz7XeOoq/+z+dgHb640ivpHP//fH+z0YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgQOiKIr4ZKb73i0aKFBHDERPRytvFfo8OAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACj1piJOR4r//kpv8/pKRHw2In61Wv6J+P/VzfZ7xAAAAAAAAAAAAAAAAAAAAPAYSkVciRTff6+RKhFxrXLn0JPPVk4OHRl8s4giUlnSWf/62PlT1dNzM/MLU4uLU5PV8dn6xbnJqZ0+XO+Z+uzVa+Mjow9lY7bV95DH39d7em7+7YX65d9f2vL2w72nLiwuLdQubn1z9EV3RH/nkqPNAY+PjDYHPV2vzTZXTV13GWB3RHWnGwMAAAAAAAAAAAAAAAAAAMCBcTgVMRIpnvvh8dSeN97dmvP/sda1Yq32B3+4/l0A05uyrfP7A9Yvtyerb14++Gba6UCPNifeV8dHRkfHOhZ393y4tBxTSkV8MlIc+ftPN+fDpzi85dz4su5PI8XQL4/nusqRsm54Q1Xv0fGR0erZudkXT01Pz12s9dUuTE9Vx+ZrF3f8xQEAAAAAAAAAAAAAAAAAAABwD4dTEX8WKY6/tpLa553P8/+7W9c65v+/GtGeyd+bNuaa5tz+327O7W9d/vjJodeOPXe35Q9j/n85ppSK+FWkeOovP908n357/n//ptqy7vuR4iff+lyu63qirBtob07rHi/Vp6f6y9oXIsW3z7Vro1n7Sq79xHrtQFn7D5Hi6d/bWHsi1z6zXnusrL0TKUbPbl37yfXawbK2L1J88U+q7drDZe2Xc+2z67UvXZybntzp08tHU9n//x4pPj/w1dT+mb9r/3d8/8fyplzzoZ6/9+Xd6v9Kx7Ll3Neruf8Htun/K5Hiz69/Lte1eu9Yvv2p5r/r/f/tSPE7H9tY+3KufXq9dmCnmwX7qez/H0WKldv/svYzn/s/d9Z6h3b2/2e7N2Z7v2DH/f9vu9v/T3Usq+RxDf6GzwV81Cy+/fW3atPTUwsuuLBrF5bjQAzDhQe4sN+vTMDDVu7//2+k+NKVIrWPY/P+/2+1rq0f///fN9b3/09uyjX7dPz/dMeyk/mopac7ondpZr7nUxG9i29//cX6TO3y1OWp2cHBoRO/e3zg2ImBnifaB/frl3b83MGjruz/tyLFD/7mn9Z+j73x+H/r3/8d3pRr7rP/f/nX2wx0m/7/ROc2bTiu+c2eD/goKfv/ryLFv974YO3/N93r93/t3/M9/9zG7GsX7dP7/zMdy6r5n6GOZc8XEad2+lgAAAAAAAAAAPCIOJyK+GGk+NvGP66d837j53/i8+3azs//3c3W5//f4vLKPz+08/8DAPdWvv+PRYofH/5ian+HzE4+/z+5Kdfs0+d/n+1YNrlH85p3/CQDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMB9SlHEoUjxznca6XZRXm/pPVOfvXptfGR069XenYuIriia9eXf3oFjg8dffuXEUDvvvf5u+0y8Pnb+VPX03Mz8wtTi4tRkdXy2fnFucmrH9/Cg6292tPkEVGfeujp56dJi9dhLgxtuvla5c+jJZysnh44MvtmuHR8ZHR3rqOnuue9H/5C0e3fFY+SJKOLHkeK9Fz9I/1GUPX23XljecS9s89rxsPVFd9l/zY0YHxltbsh0vTa7VN6YunJVd0SlY6Xhdo/sQS8+kOGI5fK1txzw0XLzxuZrC7UL01PVc7WFpfpSfW42dbVGm370P1GJrhhKEfMR0Sj2e/AcND1RxN9Fijs/b6T/LCKKdh+8cHbsjf7B7e+gew8GeZeHrRQRK/EI9CwcUIeiiGcixXcn+uO/ilZfNdvm/YgvlPlqxJUyb6W4nq+n8gViKOJn3k/gkdYdRZyLFHOpkd4vcu839yvPfK362uyluY7a9n7lgx4r7/vxwV6yb8IB1htF/LS5x99IP/V+DgAAAAAAAAAAAAAHXBFfihQ3Z55Pzfmha3NK67OXq+drF6ZbH+tvf/a/mtdaXV1draRWVnP25xzOeS7nRM75nMs5r+e8kfNmzls5V3LeztnIGV358XNWc/bnHM55LudEzvmcyzmv57yR82bOWzlXct7O2cgZPicNAAAAAAAAAAAAAAAAAMBD0hVFfCtSfO8XjbRatM4vOxGtvG2eKzzWfh0AAP//5UVOig==") (fail_nth: 80)

17:16:16 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f00000000c0)={0x1, 0x0, [{0xd, 0x6, 0x5}]})

17:16:16 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000140)=ANY=[@ANYBLOB="00000000000000002152958989a9072edeb77e0ec8b89bd3dd58b316971314dc977699d87249adecf388f723826336d97e0e98546c9f0a027588c4b90770ad0c342b3022bd2b736b01fa1200398cdf65"])
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x4ce6}}, './file0\x00'})
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r1, 0xc0505510, &(0x7f00000000c0)={0x101, 0x2, 0x7fff, 0x5, &(0x7f0000000040)=[{}, {}]})
syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0) (async)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000140)=ANY=[@ANYBLOB="00000000000000002152958989a9072edeb77e0ec8b89bd3dd58b316971314dc977699d87249adecf388f723826336d97e0e98546c9f0a027588c4b90770ad0c342b3022bd2b736b01fa1200398cdf65"]) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0) (async)
write$binfmt_script(r1, &(0x7f0000000140)=ANY=[], 0x208e24b) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r1, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x4ce6}}, './file0\x00'}) (async)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r1, 0xc0505510, &(0x7f00000000c0)={0x101, 0x2, 0x7fff, 0x5, &(0x7f0000000040)=[{}, {}]}) (async)

[  886.117137][T20237] input: syz1 as /devices/virtual/input/input205
[  886.189666][T20249] FAULT_INJECTION: forcing a failure.
[  886.189666][T20249] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  886.203036][T20249] CPU: 1 PID: 20249 Comm: syz-executor.2 Not tainted 5.15.124-syzkaller #0
[  886.212170][T20249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  886.222235][T20249] Call Trace:
[  886.225546][T20249]  <TASK>
[  886.228485][T20249]  dump_stack_lvl+0x1e3/0x2cb
[  886.233186][T20249]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  886.238835][T20249]  ? panic+0x84d/0x84d
[  886.242925][T20249]  ? shmem_getpage_gfp+0x2b48/0x3190
[  886.248239][T20249]  should_fail+0x38a/0x4c0
[  886.252836][T20249]  copy_page_from_iter_atomic+0x451/0x1230
[  886.259113][T20249]  ? pipe_zero+0x4f0/0x4f0
[  886.262285][T20252] input: syz1 as /devices/virtual/input/input206
[  886.263652][T20249]  generic_perform_write+0x33a/0x5b0
[  886.263691][T20249]  ? grab_cache_page_write_begin+0x90/0x90
[  886.281048][T20249]  ? file_remove_privs+0x610/0x610
[  886.286178][T20249]  ? down_write+0x10e/0x170
[  886.290701][T20249]  __generic_file_write_iter+0x243/0x4f0
[  886.296360][T20249]  generic_file_write_iter+0xa7/0x1b0
[  886.301746][T20249]  vfs_write+0xacf/0xe50
[  886.306105][T20249]  ? file_end_write+0x250/0x250
[  886.310968][T20249]  ? __fget_files+0x413/0x480
[  886.315667][T20249]  ? __fdget_pos+0x1eb/0x2b0
[  886.320268][T20249]  ? ksys_write+0x77/0x2c0
[  886.324698][T20249]  ksys_write+0x1a2/0x2c0
[  886.329042][T20249]  ? print_irqtrace_events+0x210/0x210
[  886.334511][T20249]  ? __ia32_sys_read+0x80/0x80
[  886.339293][T20249]  ? syscall_enter_from_user_mode+0x2e/0x230
[  886.345285][T20249]  ? lockdep_hardirqs_on+0x94/0x130
[  886.350494][T20249]  ? syscall_enter_from_user_mode+0x2e/0x230
[  886.356493][T20249]  do_syscall_64+0x3d/0xb0
[  886.360925][T20249]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  886.366832][T20249] RIP: 0033:0x7f768c93682f
[  886.371257][T20249] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  886.390960][T20249] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  886.399391][T20249] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  886.407463][T20249] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  886.415542][T20249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  886.423611][T20249] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  886.431679][T20249] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
17:16:16 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501) (async)
ioctl$UI_DEV_CREATE(r0, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)

17:16:16 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000140)=ANY=[@ANYBLOB="00000000000000002152958989a9072edeb77e0ec8b89bd3dd58b316971314dc977699d87249adecf388f723826336d97e0e98546c9f0a027588c4b90770ad0c342b3022bd2b736b01fa1200398cdf65"])
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000140)=ANY=[], 0x208e24b) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r1, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x4ce6}}, './file0\x00'}) (async)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r1, 0xc0505510, &(0x7f00000000c0)={0x101, 0x2, 0x7fff, 0x5, &(0x7f0000000040)=[{}, {}]})

17:16:17 executing program 1:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000100)={0x0, 0xeea}, 0x14)

[  886.439683][T20249]  </TASK>
17:16:17 executing program 4:
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000100)=<r0=>0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r1, 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r3, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r4, 0x0)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r6=>0x0}, &(0x7f0000cab000)=0xc)
setreuid(0x0, r6)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000940)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000080)="dbf4f127368d3647", 0x8}], 0x1, &(0x7f0000000140)=[@cred={{0x1c, 0x1, 0x2, {r0, 0xee01}}}], 0x20, 0x24008804}}, {{&(0x7f0000000180)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f0000000800)=[{&(0x7f0000000200)="e23905675cef20219dd3b98f426f82786bd63a887460d331a51c0bc4a75b8ebb53c4ad", 0x23}, {&(0x7f0000000300)="572d542c5b536aace5d22c1643127837a650d2c73fcfffc08d80e303e3a2d150a678ef5db7a38536c86a4b8c4941cc215febe7d3c4b56f5c0c5281e5365f7e0378ac19e1496226e75a1daa5567fb74170aee73e56e6e1f8c5d44a914ef48900ec8681873de54da45cc7722bf34876c3239ec2357ec15746af88c5782c31f34803b7dbecbedb6b88d09", 0x89}, {&(0x7f00000003c0)="026c7885b679fdb0c6280de9a485f0f54e60084e973ad9d025bba825724e9671926bc65da73874e20820a055ea49836fd9e2fac056c3b7c28d8b4ac63653e275c8c640690255e84d4fabf8a922a9485cfffa5e9969cb8a436fb1480f2ae51d373e34be0ddf66225b22e7519ae4793385c7c5d06fcb27f43917589f1bccafe8394a7707c3dea9b64feef66b51ef09c0f0a28b56bd48940b050ecb6f6a4ec762f58decb75a16810b2f1bb439f5fcd4422240e622ed74f474707dcbe44d138b614a9dd2325c5c5444907a21d56f954610334d8b7ed74de46c81fdc32826fd0b51", 0xdf}, {&(0x7f0000000240)="6b4e393c941a6df05413d1acdd40ea8a15688e24e29b20ec5c5bb329207635", 0x1f}, {&(0x7f00000004c0)="947e8b91d1542358980b9110a45c182480bfb54e68059c4969902aa25658eb4568dc81023f83548d95f968648a6576b599aa82bbd98a9b8bab09bcf88c3f8d7449195e3a0017a9", 0x47}, {&(0x7f0000000540)="e6e78dce4e03b9ba34e809b1ab4f166a51b29714e433a0b03d091448f453c133c11229666b4c44275462731904124a9be1811f045bc2937edc6b1620a134ecbdd7db19e9049701fdbcb3d187e04034529bfc29c2dd474384f4e583ac43d78e3101675deadbd87cb455c4bf5d23bb6e68aa7daab546f51f1a117f3525277209674f0e84025c8a8ab1819fe3e5ceba42c15c5446c5c2242820abac51fd84b6a6e10e3580116f11c629994bbdf3261c7d1d392682b6ab745475f7a7518f4968ad340e57d5b4dd2ff4ae5fd4f4f73c7d754361f80c18732212f4a424bc8792fa8d12a519eae667b4ae814f5f5619c821", 0xee}, {&(0x7f0000000640)="9decf697afa1bd016ed04ef49418028b7f18c0bfc9f207e44cf1b9a5b3093dcee9530554047db76afb11169a4fd4075f9f13a0637b6e798063c5bc6e67a258a4537defc31284b9095c82136fee5ccd0abb631ac4b1864a4169f661e7d887cf339fa2595206ece94a0b5fc93103e97caf9bf7885b4713cdc76496ccbb6dbdab68409c1cf7bb3f9e0f77ac10f80735a1ee71427a24121c135328d7d440f321f1a09a858bc63b3340006f954f37bdc402b1ffe09d830bb93325", 0xb8}, {&(0x7f0000000700)="67d27e09d79c22376c8692d259b5fff6e923f0c03f790da4a31f69c8e6757235dc5df40f7eac2a08103984383edaf5ca67d1c48677ae848af0c1067f75a1e7e4ae8f05dff0e5385534a1f0429bbd50aa2d9acde2f8a327015f25d38359225b2ca9a7be3979c159cf0754477d99b6a014113dbf9a4d72456b29d4c43305d201ad5f04e0ffa9b5f7ffe6cb58f07cc0e6194a04610bbd2fb8f4a45dbd0674e3e61e9f1bf818c696fbf08e0ecbe5854181a04e9cc76eb6c06ef15d0cc021d253bd0a19", 0xc1}, {&(0x7f0000000280)="2f47afdcbbfbf750d7dcac8b207ca17ebe91a607683ce293008291b02242a217230d759e3db891f97f694979092db0f9cdba838a23c838f0f4d2f7", 0x3b}], 0x9, &(0x7f00000008c0)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r1, r2, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [r3, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [r4]}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, r6, 0xffffffffffffffff}}}], 0x78, 0x840}}], 0x2, 0x20000000)
r7 = socket$inet_sctp(0x2, 0x1, 0x84)
fcntl$getownex(r7, 0x10, &(0x7f0000000000))
r8 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r8, 0xc008551a, &(0x7f0000000040)={0x0, 0xfffffffffffffdd7})

17:16:17 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x92}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffffff000000", @ANYRES32=r2, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)=@newqdisc={0x60, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x30, 0x2, {{0x0, 0x80000001}, [@TCA_NETEM_JITTER64={0xc, 0xb, 0x5}, @TCA_NETEM_DELAY_DIST={0x6, 0x2, "eef1"}]}}}]}, 0x60}}, 0x0)
unshare(0x6c060000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={0x0, 0x128}}, 0x0)
getsockname$packet(r4, &(0x7f0000000180)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
bind$packet(r3, &(0x7f00000000c0)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @multicast}, 0x14)
sendto$inet6(r3, &(0x7f0000000400)="0503460008003e00000002000800", 0xe, 0x0, 0x0, 0x0)

17:16:17 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f00000000c0)={0x1, 0x0, [{0xd, 0x6, 0x5}]})

17:16:17 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = dup(r0)
faccessat2(r1, &(0x7f0000000280)='./file0\x00', 0x90, 0x0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$UI_DEV_DESTROY(r1, 0x4004556a)
r2 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f00000002c0), 0x8800, 0x0)
ioctl$UI_DEV_CREATE(r2, 0x5501)
r3 = socket(0x10, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r3, 0x89f2, &(0x7f0000000100)={'syztnl1\x00', 0x0})
ioctl$ifreq_SIOCGIFINDEX_wireguard(r3, 0x8933, &(0x7f0000000080)={'wg2\x00', <r4=>0x0})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r3, 0x89f1, &(0x7f00000000c0)={'ip6tnl0\x00', &(0x7f0000000140)={'syztnl1\x00', r4, 0x0, 0x0, 0x0, 0x0, 0x0, @dev, @loopback={0x2, 0x460c6}}})
r5 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
write$uinput_user_dev(r5, &(0x7f0000000800)={'syz0\x00', {0xee5, 0xfffc, 0xa, 0x6}, 0x21, [0xffffffa4, 0x3f, 0x4, 0x33d, 0x3a, 0x100, 0x2, 0x8001, 0x1ff, 0x1, 0x3b, 0x8, 0x200, 0x2, 0x7ff, 0x6, 0x1, 0x2, 0x2, 0x509, 0x7, 0x8000, 0x0, 0x8, 0x31e, 0x3f, 0xa, 0x8, 0x9, 0x1000, 0x0, 0x7, 0x101, 0x4, 0xc6, 0x1, 0x5, 0x9, 0x2, 0x4, 0x81, 0xcca2, 0x5, 0x48, 0x2, 0x4, 0x6, 0x20, 0x4, 0x1, 0xfffffff8, 0x3ff, 0xfff, 0x7, 0x1, 0x1, 0x5, 0x2, 0x0, 0x40, 0x4, 0x80, 0x8, 0xffffffff], [0x6, 0x0, 0x79, 0x1, 0x7fffffff, 0x1, 0x4, 0xc000000, 0x8, 0x7f, 0x8, 0x7, 0x200, 0xf903, 0x1, 0x4, 0x4, 0x8, 0x48, 0x68, 0x5, 0x8, 0x81, 0xffffffff, 0x0, 0x100, 0x6, 0x81f, 0x9, 0x80, 0x6, 0x0, 0x0, 0x977, 0x8b, 0x1, 0x8, 0x2, 0x8, 0x6, 0x2, 0x7fff, 0x5, 0x1ff, 0x20, 0xff, 0x1b, 0x101, 0x81, 0x3, 0x3, 0x7, 0x9d, 0x4, 0x2, 0x8, 0x20, 0x6, 0x1, 0x5, 0x8a2b, 0x0, 0xffffff01, 0x3], [0x200, 0x401, 0x2, 0x9, 0x3f, 0x20, 0x3f, 0xf8, 0x9, 0x40, 0x9, 0x9, 0x80000001, 0x6, 0xfb0b, 0x3, 0x0, 0x8, 0x2, 0x8, 0x13b, 0x200, 0x1, 0x80000001, 0x400, 0x1df4, 0x4, 0x4, 0x5, 0xf907, 0xffff, 0xb9c, 0xc, 0x7f, 0x5, 0xdc23, 0x3, 0x8, 0x8, 0xff, 0x4, 0x20, 0x401, 0x3, 0xe0a, 0x7fff, 0x5, 0x8001, 0x68bf74dd, 0x1, 0x8, 0x1, 0x935e, 0x3, 0x3, 0x10000, 0x6, 0x80000001, 0x3, 0xffff, 0x8, 0x8, 0x1, 0x1], [0x2, 0x7, 0x2, 0xfffffffc, 0x7fff, 0xfffffff9, 0xc65, 0xffffffff, 0x101, 0x400, 0x6, 0x6, 0x6, 0x4, 0x0, 0x10000, 0x18ac0000, 0x5, 0x0, 0x9, 0xffff0001, 0x0, 0xffffffff, 0x7, 0x757, 0x400, 0x80000000, 0x7, 0x7, 0x3ff, 0x2, 0x0, 0x8001, 0x7, 0x7fffffff, 0x2, 0x5, 0xb05, 0x80000000, 0x800, 0x4, 0x1, 0x1, 0x9e, 0x6, 0x0, 0x7f, 0x4, 0xc892, 0x3f, 0x0, 0x8de, 0x1, 0x8001, 0x6, 0x3, 0x200, 0x7, 0x2, 0xa00, 0xffff, 0x4, 0x3, 0x7f]}, 0x45c)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r6, 0x0)
r7 = fcntl$dupfd(r1, 0x0, r1)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r9, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r9, 0x0)
syz_genetlink_get_family_id$tipc(&(0x7f0000000000), r9)
write$binfmt_script(r8, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r8, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x4, 0x0, &(0x7f0000000000), &(0x7f0000000080)='syzkaller\x00', 0x9, 0x14, &(0x7f00000000c0)=""/20, 0x41100, 0x10, '\x00', r4, 0x1d, r6, 0x8, &(0x7f0000000100)={0x0, 0x3}, 0x8, 0x10, &(0x7f0000000140)={0x2, 0x1, 0x2, 0x2}, 0x10, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, &(0x7f0000000180)=[r7, r8]}, 0x80)

[  886.563310][T20271] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[  886.614903][T20275] BUG: sleeping function called from invalid context at include/linux/sched/mm.h:209
[  886.616440][T20276] input: syz1 as /devices/virtual/input/input207
[  886.625387][T20275] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 20275, name: syz-executor.1
[  886.625447][T20275] 2 locks held by syz-executor.1/20275:
[  886.625458][T20275]  #0: ffffffff8d9e0748 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x94c/0xee0
[  886.656307][T20275]  #1: ffff888021616108 (&sch->q.lock){+...}-{2:2}, at: netem_change+0x257/0x20c0
[  886.665671][T20275] Preemption disabled at:
[  886.665686][T20275] [<0000000000000000>] 0x0
[  886.674469][T20275] CPU: 1 PID: 20275 Comm: syz-executor.1 Not tainted 5.15.124-syzkaller #0
[  886.683071][T20275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  886.693137][T20275] Call Trace:
[  886.696430][T20275]  <TASK>
[  886.699369][T20275]  dump_stack_lvl+0x1e3/0x2cb
[  886.704064][T20275]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  886.709710][T20275]  ? panic+0x84d/0x84d
[  886.713806][T20275]  ___might_sleep+0x547/0x6a0
[  886.718501][T20275]  ? __might_sleep+0xc0/0xc0
[  886.723116][T20275]  slab_pre_alloc_hook+0x44/0xc0
[  886.728066][T20275]  __kmalloc_node+0x71/0x390
[  886.732669][T20275]  ? kvmalloc_node+0x80/0x140
[  886.737354][T20275]  ? __bpf_trace_softirq+0x10/0x10
[  886.742550][T20275]  kvmalloc_node+0x80/0x140
[  886.747074][T20275]  get_dist_table+0x83/0x2c0
[  886.751686][T20275]  netem_change+0xa05/0x20c0
[  886.756304][T20275]  ? netem_destroy+0xb0/0xb0
[  886.760907][T20275]  ? debug_object_init+0x10/0x10
[  886.765914][T20275]  ? memset+0x1f/0x40
[  886.769910][T20275]  ? lockdep_init_map_type+0x9d/0x8d0
[  886.775326][T20275]  ? memset+0x1f/0x40
[  886.779323][T20275]  ? __hrtimer_init+0x181/0x260
[  886.784196][T20275]  netem_init+0x58/0xb0
[  886.788356][T20275]  ? qdisc_peek_dequeued+0x220/0x220
[  886.793656][T20275]  qdisc_create+0x8ae/0x1390
[  886.798332][T20275]  ? qdisc_notify+0x380/0x380
[  886.803014][T20275]  ? apparmor_capable+0x12e/0x190
[  886.808110][T20275]  tc_modify_qdisc+0xac5/0x1710
[  886.813049][T20275]  ? rcu_lock_release+0x20/0x20
[  886.817937][T20275]  ? rcu_lock_release+0x20/0x20
[  886.822808][T20275]  rtnetlink_rcv_msg+0x993/0xee0
[  886.827853][T20275]  ? rtnetlink_bind+0x80/0x80
[  886.832540][T20275]  ? __local_bh_enable_ip+0x164/0x1f0
[  886.838021][T20275]  ? lockdep_hardirqs_on+0x94/0x130
[  886.843234][T20275]  ? __local_bh_enable_ip+0x164/0x1f0
[  886.848708][T20275]  ? local_bh_enable+0x5/0x20
[  886.853434][T20275]  ? _local_bh_enable+0xa0/0xa0
[  886.858305][T20275]  ? __dev_queue_xmit+0x1c56/0x3230
[  886.863539][T20275]  ? __copy_skb_header+0x47b/0x600
[  886.868665][T20275]  ? dev_queue_xmit+0x20/0x20
[  886.873351][T20275]  ? memcpy+0x3c/0x60
[  886.877346][T20275]  ? __copy_skb_header+0x47b/0x600
[  886.882483][T20275]  netlink_rcv_skb+0x1cf/0x410
[  886.887355][T20275]  ? rtnetlink_bind+0x80/0x80
[  886.892066][T20275]  ? netlink_ack+0xb10/0xb10
[  886.896685][T20275]  netlink_unicast+0x7b6/0x980
[  886.901469][T20275]  ? netlink_detachskb+0x90/0x90
[  886.906421][T20275]  ? 0xffffffff81000000
[  886.910585][T20275]  ? __check_object_size+0x300/0x410
[  886.916000][T20275]  ? bpf_lsm_netlink_send+0x5/0x10
[  886.921139][T20275]  netlink_sendmsg+0xa30/0xd60
[  886.926020][T20275]  ? netlink_getsockopt+0x5b0/0x5b0
[  886.931236][T20275]  ? aa_sock_msg_perm+0x91/0x150
[  886.936264][T20275]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  886.941563][T20275]  ? security_socket_sendmsg+0x7d/0xa0
[  886.947042][T20275]  ? netlink_getsockopt+0x5b0/0x5b0
[  886.952290][T20275]  ____sys_sendmsg+0x59e/0x8f0
[  886.957132][T20275]  ? iovec_from_user+0x300/0x390
[  886.962211][T20275]  ? __sys_sendmsg_sock+0x30/0x30
[  886.967359][T20275]  ___sys_sendmsg+0x252/0x2e0
[  886.972198][T20275]  ? __sys_sendmsg+0x260/0x260
[  886.977021][T20275]  ? __fdget+0x191/0x220
[  886.981287][T20275]  __se_sys_sendmsg+0x19a/0x260
[  886.986159][T20275]  ? __x64_sys_sendmsg+0x80/0x80
[  886.991126][T20275]  ? syscall_enter_from_user_mode+0x2e/0x230
[  886.997130][T20275]  ? lockdep_hardirqs_on+0x94/0x130
[  887.002344][T20275]  ? syscall_enter_from_user_mode+0x2e/0x230
[  887.008340][T20275]  do_syscall_64+0x3d/0xb0
[  887.012773][T20275]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  887.018677][T20275] RIP: 0033:0x7f878acabae9
[  887.023104][T20275] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  887.042726][T20275] RSP: 002b:00007f878920c0c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  887.051158][T20275] RAX: ffffffffffffffda RBX: 00007f878adcb050 RCX: 00007f878acabae9
[  887.059143][T20275] RDX: 0000000000000000 RSI: 0000000020000440 RDI: 0000000000000003
[  887.067127][T20275] RBP: 00007f878acf747a R08: 0000000000000000 R09: 0000000000000000
[  887.075113][T20275] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  887.083098][T20275] R13: 000000000000006e R14: 00007f878adcb050 R15: 00007ffcc67189d8
[  887.091098][T20275]  </TASK>
[  887.094291][T20275] 
[  887.096618][T20275] ============================================
[  887.102756][T20275] WARNING: possible recursive locking detected
[  887.108904][T20275] 5.15.124-syzkaller #0 Tainted: G        W        
[  887.115494][T20275] --------------------------------------------
[  887.121649][T20275] syz-executor.1/20275 is trying to acquire lock:
[  887.128233][T20275] ffff888021616108 (&sch->q.lock){+...}-{2:2}, at: get_dist_table+0x1fa/0x2c0
[  887.137129][T20275] 
[  887.137129][T20275] but task is already holding lock:
[  887.144487][T20275] ffff888021616108 (&sch->q.lock){+...}-{2:2}, at: netem_change+0x257/0x20c0
[  887.153292][T20275] 
[  887.153292][T20275] other info that might help us debug this:
[  887.161347][T20275]  Possible unsafe locking scenario:
[  887.161347][T20275] 
[  887.168795][T20275]        CPU0
[  887.172065][T20275]        ----
[  887.175322][T20275]   lock(&sch->q.lock);
[  887.179463][T20275]   lock(&sch->q.lock);
[  887.183595][T20275] 
[  887.183595][T20275]  *** DEADLOCK ***
[  887.183595][T20275] 
[  887.191971][T20275]  May be due to missing lock nesting notation
[  887.191971][T20275] 
[  887.200268][T20275] 2 locks held by syz-executor.1/20275:
[  887.205798][T20275]  #0: ffffffff8d9e0748 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x94c/0xee0
[  887.215187][T20275]  #1: ffff888021616108 (&sch->q.lock){+...}-{2:2}, at: netem_change+0x257/0x20c0
[  887.224387][T20275] 
[  887.224387][T20275] stack backtrace:
[  887.230403][T20275] CPU: 1 PID: 20275 Comm: syz-executor.1 Tainted: G        W         5.15.124-syzkaller #0
[  887.240363][T20275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  887.250397][T20275] Call Trace:
[  887.253656][T20275]  <TASK>
[  887.256567][T20275]  dump_stack_lvl+0x1e3/0x2cb
[  887.261233][T20275]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  887.266845][T20275]  ? panic+0x84d/0x84d
[  887.270897][T20275]  validate_chain+0x46cf/0x58b0
[  887.275732][T20275]  ? do_raw_spin_unlock+0x137/0x8b0
[  887.281086][T20275]  ? reacquire_held_locks+0x660/0x660
[  887.286436][T20275]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[  887.292307][T20275]  ? _raw_spin_unlock+0x40/0x40
[  887.297136][T20275]  ? stack_trace_save+0x113/0x1c0
[  887.302141][T20275]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  887.308275][T20275]  ? stack_trace_snprint+0xe0/0xe0
[  887.313366][T20275]  ? stack_depot_save+0x3db/0x440
[  887.318371][T20275]  ? ____kasan_kmalloc+0xd1/0xf0
[  887.323286][T20275]  ? mark_lock+0x98/0x340
[  887.327591][T20275]  ? qdisc_create+0x8ae/0x1390
[  887.332333][T20275]  __lock_acquire+0x1295/0x1ff0
[  887.337177][T20275]  lock_acquire+0x1db/0x4f0
[  887.341666][T20275]  ? get_dist_table+0x1fa/0x2c0
[  887.346498][T20275]  ? read_lock_is_recursive+0x10/0x10
[  887.351852][T20275]  ? get_dist_table+0x1fa/0x2c0
[  887.356683][T20275]  ? __bpf_trace_softirq+0x10/0x10
[  887.361785][T20275]  ? __kmalloc_node+0x199/0x390
[  887.366618][T20275]  ? kvmalloc_node+0x80/0x140
[  887.371273][T20275]  ? __bpf_trace_softirq+0x10/0x10
[  887.376361][T20275]  ? get_dist_table+0x1fa/0x2c0
[  887.381191][T20275]  _raw_spin_lock_bh+0x31/0x40
[  887.385941][T20275]  ? get_dist_table+0x1fa/0x2c0
[  887.390773][T20275]  get_dist_table+0x1fa/0x2c0
[  887.395431][T20275]  netem_change+0xa05/0x20c0
[  887.400006][T20275]  ? netem_destroy+0xb0/0xb0
[  887.404574][T20275]  ? debug_object_init+0x10/0x10
[  887.409577][T20275]  ? memset+0x1f/0x40
[  887.413541][T20275]  ? lockdep_init_map_type+0x9d/0x8d0
[  887.418899][T20275]  ? memset+0x1f/0x40
[  887.422859][T20275]  ? __hrtimer_init+0x181/0x260
[  887.427690][T20275]  netem_init+0x58/0xb0
[  887.431823][T20275]  ? qdisc_peek_dequeued+0x220/0x220
[  887.437086][T20275]  qdisc_create+0x8ae/0x1390
[  887.441767][T20275]  ? qdisc_notify+0x380/0x380
[  887.446418][T20275]  ? apparmor_capable+0x12e/0x190
[  887.451437][T20275]  tc_modify_qdisc+0xac5/0x1710
[  887.456273][T20275]  ? rcu_lock_release+0x20/0x20
[  887.461109][T20275]  ? rcu_lock_release+0x20/0x20
[  887.466028][T20275]  rtnetlink_rcv_msg+0x993/0xee0
[  887.470948][T20275]  ? rtnetlink_bind+0x80/0x80
[  887.475605][T20275]  ? __local_bh_enable_ip+0x164/0x1f0
[  887.480954][T20275]  ? lockdep_hardirqs_on+0x94/0x130
[  887.486132][T20275]  ? __local_bh_enable_ip+0x164/0x1f0
[  887.491480][T20275]  ? local_bh_enable+0x5/0x20
[  887.496139][T20275]  ? _local_bh_enable+0xa0/0xa0
[  887.501143][T20275]  ? __dev_queue_xmit+0x1c56/0x3230
[  887.506321][T20275]  ? __copy_skb_header+0x47b/0x600
[  887.511408][T20275]  ? dev_queue_xmit+0x20/0x20
[  887.516064][T20275]  ? memcpy+0x3c/0x60
[  887.520023][T20275]  ? __copy_skb_header+0x47b/0x600
[  887.525123][T20275]  netlink_rcv_skb+0x1cf/0x410
[  887.529889][T20275]  ? rtnetlink_bind+0x80/0x80
[  887.534559][T20275]  ? netlink_ack+0xb10/0xb10
[  887.539154][T20275]  netlink_unicast+0x7b6/0x980
[  887.543925][T20275]  ? netlink_detachskb+0x90/0x90
[  887.548854][T20275]  ? 0xffffffff81000000
[  887.552991][T20275]  ? __check_object_size+0x300/0x410
[  887.558268][T20275]  ? bpf_lsm_netlink_send+0x5/0x10
[  887.563382][T20275]  netlink_sendmsg+0xa30/0xd60
[  887.568148][T20275]  ? netlink_getsockopt+0x5b0/0x5b0
[  887.573336][T20275]  ? aa_sock_msg_perm+0x91/0x150
[  887.578259][T20275]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  887.583524][T20275]  ? security_socket_sendmsg+0x7d/0xa0
[  887.588968][T20275]  ? netlink_getsockopt+0x5b0/0x5b0
[  887.594149][T20275]  ____sys_sendmsg+0x59e/0x8f0
[  887.598895][T20275]  ? iovec_from_user+0x300/0x390
[  887.604618][T20275]  ? __sys_sendmsg_sock+0x30/0x30
[  887.609859][T20275]  ___sys_sendmsg+0x252/0x2e0
[  887.614545][T20275]  ? __sys_sendmsg+0x260/0x260
[  887.619308][T20275]  ? __fdget+0x191/0x220
[  887.623537][T20275]  __se_sys_sendmsg+0x19a/0x260
[  887.628368][T20275]  ? __x64_sys_sendmsg+0x80/0x80
[  887.633375][T20275]  ? syscall_enter_from_user_mode+0x2e/0x230
[  887.639341][T20275]  ? lockdep_hardirqs_on+0x94/0x130
[  887.644909][T20275]  ? syscall_enter_from_user_mode+0x2e/0x230
[  887.650916][T20275]  do_syscall_64+0x3d/0xb0
[  887.655340][T20275]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  887.661344][T20275] RIP: 0033:0x7f878acabae9
[  887.665746][T20275] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  887.685468][T20275] RSP: 002b:00007f878920c0c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  887.693983][T20275] RAX: ffffffffffffffda RBX: 00007f878adcb050 RCX: 00007f878acabae9
[  887.701940][T20275] RDX: 0000000000000000 RSI: 0000000020000440 RDI: 0000000000000003
[  887.709893][T20275] RBP: 00007f878acf747a R08: 0000000000000000 R09: 0000000000000000
[  887.718257][T20275] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  887.726574][T20275] R13: 000000000000006e R14: 00007f878adcb050 R15: 00007ffcc67189d8
[  887.734820][T20275]  </TASK>
17:16:17 executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x2008046, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0xfe, 0xc58, &(0x7f0000000280)="$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") (fail_nth: 81)

17:16:17 executing program 3:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x100004, 0x220104, 0xb, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000380), &(0x7f0000000380), 0x2, r0}, 0x38)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x100004, 0x220104, 0xb, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x2, r1}, 0x38)

17:16:18 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f00000000c0)={0x1, 0x0, [{0xd, 0x6, 0x5}]})

[  887.995800][T20293] FAULT_INJECTION: forcing a failure.
[  887.995800][T20293] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  888.013008][T20293] CPU: 0 PID: 20293 Comm: syz-executor.2 Tainted: G        W         5.15.124-syzkaller #0
[  888.022997][T20293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  888.033811][T20293] Call Trace:
[  888.037081][T20293]  <TASK>
[  888.039993][T20293]  dump_stack_lvl+0x1e3/0x2cb
[  888.044651][T20293]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  888.050258][T20293]  ? panic+0x84d/0x84d
[  888.054300][T20293]  ? __kasan_slab_alloc+0x8e/0xc0
[  888.059307][T20293]  should_fail+0x38a/0x4c0
[  888.063706][T20293]  prepare_alloc_pages+0x1db/0x5b0
[  888.068805][T20293]  __alloc_pages+0x14f/0x700
[  888.073373][T20293]  ? __rmqueue_pcplist+0x2030/0x2030
[  888.078635][T20293]  ? lock_acquire+0xdd/0x4f0
[  888.083290][T20293]  ? rcu_is_watching+0x11/0xa0
[  888.088042][T20293]  ? lock_acquire+0xdd/0x4f0
[  888.092626][T20293]  alloc_pages_vma+0x39a/0x800
[  888.097378][T20293]  ? mpol_shared_policy_lookup+0x144/0x1e0
[  888.103174][T20293]  shmem_alloc_and_acct_page+0x4d1/0xd10
[  888.108871][T20293]  ? shmem_swapin_page+0x22f0/0x22f0
[  888.114172][T20293]  ? xas_descend+0x219/0x3a0
[  888.118753][T20293]  ? xas_load+0x128/0x140
[  888.123066][T20293]  ? pagecache_get_page+0xd23/0x1010
[  888.128515][T20293]  ? page_cache_prev_miss+0x500/0x500
[  888.133975][T20293]  ? do_raw_spin_unlock+0x137/0x8b0
[  888.139186][T20293]  shmem_getpage_gfp+0x17b1/0x3190
[  888.144286][T20293]  ? copy_page_from_iter_atomic+0x6fc/0x1230
[  888.150256][T20293]  ? shmem_getpage+0xa0/0xa0
[  888.154914][T20293]  ? fault_in_safe_writeable+0x250/0x250
[  888.160614][T20293]  shmem_write_begin+0xce/0x1a0
[  888.165448][T20293]  generic_perform_write+0x2bf/0x5b0
[  888.170801][T20293]  ? grab_cache_page_write_begin+0x90/0x90
[  888.176595][T20293]  ? file_remove_privs+0x610/0x610
[  888.181683][T20293]  ? down_write+0x10e/0x170
[  888.186169][T20293]  __generic_file_write_iter+0x243/0x4f0
[  888.191780][T20293]  generic_file_write_iter+0xa7/0x1b0
[  888.197153][T20293]  vfs_write+0xacf/0xe50
[  888.201372][T20293]  ? file_end_write+0x250/0x250
[  888.206198][T20293]  ? rcu_is_watching+0x11/0xa0
[  888.210943][T20293]  ? __fget_files+0x413/0x480
[  888.215626][T20293]  ? __fdget_pos+0x1eb/0x2b0
[  888.220228][T20293]  ? ksys_write+0x77/0x2c0
[  888.224632][T20293]  ksys_write+0x1a2/0x2c0
[  888.228943][T20293]  ? print_irqtrace_events+0x210/0x210
[  888.234386][T20293]  ? __ia32_sys_read+0x80/0x80
[  888.239127][T20293]  ? syscall_enter_from_user_mode+0x2e/0x230
[  888.245082][T20293]  do_syscall_64+0x3d/0xb0
[  888.249479][T20293]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  888.255346][T20293] RIP: 0033:0x7f768c93682f
[  888.259736][T20293] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  888.279313][T20293] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  888.287986][T20293] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  888.296242][T20293] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  888.304264][T20293] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  888.312226][T20293] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  888.320195][T20293] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  888.328171][T20293]  </TASK>
[  888.398681][T20302] FAULT_INJECTION: forcing a failure.
[  888.398681][T20302] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  888.411888][T20302] CPU: 0 PID: 20302 Comm: syz-executor.2 Tainted: G        W         5.15.124-syzkaller #0
[  888.421944][T20302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  888.432007][T20302] Call Trace:
[  888.435271][T20302]  <TASK>
[  888.438180][T20302]  dump_stack_lvl+0x1e3/0x2cb
[  888.442864][T20302]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  888.448485][T20302]  ? panic+0x84d/0x84d
[  888.452547][T20302]  ? shmem_getpage_gfp+0x2b48/0x3190
[  888.457954][T20302]  should_fail+0x38a/0x4c0
[  888.462359][T20302]  copy_page_from_iter_atomic+0x451/0x1230
[  888.468155][T20302]  ? pipe_zero+0x4f0/0x4f0
[  888.472726][T20302]  generic_perform_write+0x33a/0x5b0
[  888.478011][T20302]  ? grab_cache_page_write_begin+0x90/0x90
[  888.483803][T20302]  ? file_remove_privs+0x610/0x610
[  888.488978][T20302]  ? down_write+0x10e/0x170
[  888.493551][T20302]  __generic_file_write_iter+0x243/0x4f0
[  888.499202][T20302]  generic_file_write_iter+0xa7/0x1b0
[  888.504570][T20302]  vfs_write+0xacf/0xe50
[  888.508802][T20302]  ? file_end_write+0x250/0x250
[  888.513634][T20302]  ? rcu_is_watching+0x11/0xa0
[  888.518395][T20302]  ? __fget_files+0x413/0x480
[  888.523055][T20302]  ? __fdget_pos+0x1eb/0x2b0
[  888.527738][T20302]  ? ksys_write+0x77/0x2c0
[  888.532127][T20302]  ksys_write+0x1a2/0x2c0
[  888.536430][T20302]  ? print_irqtrace_events+0x210/0x210
[  888.541863][T20302]  ? __ia32_sys_read+0x80/0x80
[  888.546606][T20302]  ? syscall_enter_from_user_mode+0x2e/0x230
[  888.552564][T20302]  do_syscall_64+0x3d/0xb0
[  888.557001][T20302]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  888.562869][T20302] RIP: 0033:0x7f768c93682f
[  888.567259][T20302] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  888.586833][T20302] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  888.595237][T20302] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  888.603195][T20302] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  888.611139][T20302] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  888.619084][T20302] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  888.627027][T20302] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  888.634991][T20302]  </TASK>
[  888.685484][T20304] FAULT_INJECTION: forcing a failure.
[  888.685484][T20304] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  888.698994][T20304] CPU: 0 PID: 20304 Comm: syz-executor.2 Tainted: G        W         5.15.124-syzkaller #0
[  888.708958][T20304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  888.718994][T20304] Call Trace:
[  888.722253][T20304]  <TASK>
[  888.725160][T20304]  dump_stack_lvl+0x1e3/0x2cb
[  888.729817][T20304]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  888.735424][T20304]  ? panic+0x84d/0x84d
[  888.740853][T20304]  ? __kasan_slab_alloc+0x8e/0xc0
[  888.745877][T20304]  should_fail+0x38a/0x4c0
[  888.750269][T20304]  prepare_alloc_pages+0x1db/0x5b0
[  888.755355][T20304]  __alloc_pages+0x14f/0x700
[  888.759924][T20304]  ? __rmqueue_pcplist+0x2030/0x2030
[  888.765192][T20304]  ? lock_acquire+0xdd/0x4f0
[  888.769762][T20304]  ? rcu_is_watching+0x11/0xa0
[  888.774496][T20304]  ? lock_acquire+0xdd/0x4f0
[  888.779061][T20304]  alloc_pages_vma+0x39a/0x800
[  888.783798][T20304]  ? mpol_shared_policy_lookup+0x144/0x1e0
[  888.789575][T20304]  shmem_alloc_and_acct_page+0x4d1/0xd10
[  888.795180][T20304]  ? shmem_swapin_page+0x22f0/0x22f0
[  888.800460][T20304]  ? xas_descend+0x219/0x3a0
[  888.805024][T20304]  ? xas_load+0x128/0x140
[  888.809324][T20304]  ? pagecache_get_page+0xd23/0x1010
[  888.814580][T20304]  ? page_cache_prev_miss+0x500/0x500
[  888.819924][T20304]  ? do_raw_spin_unlock+0x137/0x8b0
[  888.825095][T20304]  shmem_getpage_gfp+0x17b1/0x3190
[  888.830187][T20304]  ? copy_page_from_iter_atomic+0x6fc/0x1230
[  888.836150][T20304]  ? shmem_getpage+0xa0/0xa0
[  888.840711][T20304]  ? fault_in_safe_writeable+0x250/0x250
[  888.846369][T20304]  shmem_write_begin+0xce/0x1a0
[  888.851211][T20304]  generic_perform_write+0x2bf/0x5b0
[  888.856490][T20304]  ? grab_cache_page_write_begin+0x90/0x90
[  888.862279][T20304]  ? file_remove_privs+0x610/0x610
[  888.867386][T20304]  ? down_write+0x10e/0x170
[  888.871866][T20304]  __generic_file_write_iter+0x243/0x4f0
[  888.877491][T20304]  generic_file_write_iter+0xa7/0x1b0
[  888.882839][T20304]  vfs_write+0xacf/0xe50
[  888.887058][T20304]  ? file_end_write+0x250/0x250
[  888.891881][T20304]  ? rcu_is_watching+0x11/0xa0
[  888.896641][T20304]  ? __fget_files+0x413/0x480
[  888.901308][T20304]  ? __fdget_pos+0x1eb/0x2b0
[  888.905872][T20304]  ? ksys_write+0x77/0x2c0
[  888.910258][T20304]  ksys_write+0x1a2/0x2c0
[  888.914575][T20304]  ? print_irqtrace_events+0x210/0x210
[  888.920022][T20304]  ? __ia32_sys_read+0x80/0x80
[  888.924758][T20304]  ? syscall_enter_from_user_mode+0x2e/0x230
[  888.930709][T20304]  do_syscall_64+0x3d/0xb0
[  888.935106][T20304]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  888.940973][T20304] RIP: 0033:0x7f768c93682f
[  888.945451][T20304] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  888.965383][T20304] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  888.973794][T20304] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  888.981745][T20304] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  888.989693][T20304] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  888.997645][T20304] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  889.005605][T20304] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  889.013559][T20304]  </TASK>
[  889.044787][T20307] FAULT_INJECTION: forcing a failure.
[  889.044787][T20307] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  889.057969][T20307] CPU: 0 PID: 20307 Comm: syz-executor.2 Tainted: G        W         5.15.124-syzkaller #0
[  889.067939][T20307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  889.078070][T20307] Call Trace:
[  889.081334][T20307]  <TASK>
[  889.084271][T20307]  dump_stack_lvl+0x1e3/0x2cb
[  889.088929][T20307]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  889.094664][T20307]  ? panic+0x84d/0x84d
[  889.098784][T20307]  ? shmem_getpage_gfp+0x2b48/0x3190
[  889.104149][T20307]  should_fail+0x38a/0x4c0
[  889.108643][T20307]  copy_page_from_iter_atomic+0x451/0x1230
[  889.114553][T20307]  ? pipe_zero+0x4f0/0x4f0
[  889.119040][T20307]  generic_perform_write+0x33a/0x5b0
[  889.124302][T20307]  ? grab_cache_page_write_begin+0x90/0x90
[  889.130118][T20307]  ? file_remove_privs+0x610/0x610
[  889.135211][T20307]  ? down_write+0x10e/0x170
[  889.139704][T20307]  __generic_file_write_iter+0x243/0x4f0
[  889.145315][T20307]  generic_file_write_iter+0xa7/0x1b0
[  889.150674][T20307]  vfs_write+0xacf/0xe50
[  889.155049][T20307]  ? file_end_write+0x250/0x250
[  889.159893][T20307]  ? rcu_is_watching+0x11/0xa0
[  889.164650][T20307]  ? __fget_files+0x413/0x480
[  889.169328][T20307]  ? __fdget_pos+0x1eb/0x2b0
[  889.173926][T20307]  ? ksys_write+0x77/0x2c0
[  889.178413][T20307]  ksys_write+0x1a2/0x2c0
[  889.182720][T20307]  ? print_irqtrace_events+0x210/0x210
[  889.188155][T20307]  ? __ia32_sys_read+0x80/0x80
[  889.192894][T20307]  ? syscall_enter_from_user_mode+0x2e/0x230
[  889.198951][T20307]  do_syscall_64+0x3d/0xb0
[  889.203356][T20307]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  889.209347][T20307] RIP: 0033:0x7f768c93682f
[  889.213749][T20307] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  889.233420][T20307] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  889.241816][T20307] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  889.249779][T20307] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  889.257832][T20307] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  889.265851][T20307] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  889.273811][T20307] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  889.282018][T20307]  </TASK>
[  889.309803][T20309] FAULT_INJECTION: forcing a failure.
[  889.309803][T20309] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  889.324864][T20309] CPU: 0 PID: 20309 Comm: syz-executor.2 Tainted: G        W         5.15.124-syzkaller #0
[  889.334841][T20309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  889.344878][T20309] Call Trace:
[  889.348138][T20309]  <TASK>
[  889.351045][T20309]  dump_stack_lvl+0x1e3/0x2cb
[  889.355706][T20309]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[  889.361320][T20309]  ? panic+0x84d/0x84d
[  889.365380][T20309]  ? __kasan_slab_alloc+0x8e/0xc0
[  889.370381][T20309]  ? xas_create+0x654/0x1620
[  889.374946][T20309]  ? xas_create_range+0x1ee/0x7e0
[  889.379960][T20309]  ? shmem_add_to_page_cache+0xdb5/0x17c0
[  889.385674][T20309]  should_fail+0x38a/0x4c0
[  889.390151][T20309]  prepare_alloc_pages+0x1db/0x5b0
[  889.395275][T20309]  __alloc_pages+0x14f/0x700
[  889.399848][T20309]  ? __rmqueue_pcplist+0x2030/0x2030
[  889.405182][T20309]  ? rcu_is_watching+0x11/0xa0
[  889.409923][T20309]  ? lock_acquire+0xdd/0x4f0
[  889.414490][T20309]  alloc_pages_vma+0x39a/0x800
[  889.419232][T20309]  ? mpol_shared_policy_lookup+0x144/0x1e0
[  889.425022][T20309]  shmem_alloc_and_acct_page+0x4d1/0xd10
[  889.430634][T20309]  ? shmem_swapin_page+0x22f0/0x22f0
[  889.435981][T20309]  ? xas_descend+0x219/0x3a0
[  889.440657][T20309]  ? xas_load+0x128/0x140
[  889.444980][T20309]  ? pagecache_get_page+0xd23/0x1010
[  889.450278][T20309]  ? page_cache_prev_miss+0x500/0x500
[  889.455657][T20309]  ? do_raw_spin_unlock+0x137/0x8b0
[  889.460848][T20309]  shmem_getpage_gfp+0x17b1/0x3190
[  889.465947][T20309]  ? copy_page_from_iter_atomic+0x6fc/0x1230
[  889.471937][T20309]  ? shmem_getpage+0xa0/0xa0
[  889.476511][T20309]  ? fault_in_safe_writeable+0x250/0x250
[  889.482128][T20309]  shmem_write_begin+0xce/0x1a0
[  889.486989][T20309]  generic_perform_write+0x2bf/0x5b0
[  889.492353][T20309]  ? grab_cache_page_write_begin+0x90/0x90
[  889.498135][T20309]  ? file_remove_privs+0x610/0x610
[  889.503225][T20309]  ? down_write+0x10e/0x170
[  889.507721][T20309]  __generic_file_write_iter+0x243/0x4f0
[  889.513330][T20309]  generic_file_write_iter+0xa7/0x1b0
[  889.518677][T20309]  vfs_write+0xacf/0xe50
[  889.522909][T20309]  ? file_end_write+0x250/0x250
[  889.527739][T20309]  ? rcu_is_watching+0x11/0xa0
[  889.532593][T20309]  ? __fget_files+0x413/0x480
[  889.537679][T20309]  ? __fdget_pos+0x1eb/0x2b0
[  889.542258][T20309]  ? ksys_write+0x77/0x2c0
[  889.546654][T20309]  ksys_write+0x1a2/0x2c0
[  889.550958][T20309]  ? print_irqtrace_events+0x210/0x210
[  889.556405][T20309]  ? __ia32_sys_read+0x80/0x80
[  889.561151][T20309]  ? syscall_enter_from_user_mode+0x2e/0x230
[  889.567104][T20309]  do_syscall_64+0x3d/0xb0
[  889.571498][T20309]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  889.577387][T20309] RIP: 0033:0x7f768c93682f
[  889.581790][T20309] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48
[  889.601392][T20309] RSP: 002b:00007f768aeb8e70 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  889.609799][T20309] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f768c93682f
[  889.617834][T20309] RDX: 0000000000100000 RSI: 00007f7682a99000 RDI: 0000000000000004
[  889.625778][T20309] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000c55
[  889.633722][T20309] R10: 00000000000007c6 R11: 0000000000000293 R12: 0000000000000004
[  889.641668][T20309] R13: 00007f768aeb8f3c R14: 00007f768aeb8f40 R15: 00007f7682a99000
[  889.649626][T20309]  </TASK>