0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:45 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:45 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:45 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x8906000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:45 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x9, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x6, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x77aa, 0x7f, 0x4000000000, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x6, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:45 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x9, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x6, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x77aa, 0x7f, 0x4000000000, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x6, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:45 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x9, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x6, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x77aa, 0x7f, 0x4000000000, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x6, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:45 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x8dffffff00000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:45 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:45 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0xe803000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:45 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0xf401000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:45 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:45 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x0, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:45 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:45 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:45 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x9, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x6, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x77aa, 0x7f, 0x4000000000, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x6, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:45 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0xf5ffffff00000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:45 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0xfeffffff00000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:45 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:46 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:46 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x0, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:46 executing program 1:
mkdir(&(0x7f0000000440)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0xb00, 0xffffffffffffffff)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000002c0)={r0, 0x0, 0x0, 0x0, 0x0}, 0x20)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0xffffffffffffffff, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'vet\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbdh\x00', 0x43732e5398416f1a})
r2 = socket$nl_route(0x10, 0x3, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = shmget$private(0x0, 0x2000, 0xfffffffffffffffe, &(0x7f0000ffb000/0x2000)=nil)
shmctl$IPC_STAT(r3, 0x2, &(0x7f0000000400)=""/19)
r4 = socket$inet(0x2, 0x3, 0x2)
r5 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000580)='/dev/snapshot\x00', 0x2, 0x0)
ioctl$KVM_SET_TSC_KHZ(r5, 0xaea2, 0x45bbfbd4)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2000000, 0x10, 0xffffffffffffffff, 0x0)
r6 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x20c0, 0x0)
setsockopt$netlink_NETLINK_PKTINFO(r2, 0x10e, 0x3, &(0x7f0000000440)=0xfbe, 0x4)
getsockname(r6, &(0x7f0000000140)=@ipx, &(0x7f00000001c0)=0x80)
setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r6, 0x28, 0x0, &(0x7f0000000100)=0x1, 0x8)
setsockopt$inet_int(r4, 0x0, 0xca, &(0x7f0000000000)=0x10001, 0x10)
r7 = openat$md(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/md0\x00', 0x40000, 0x0)
bind$tipc(r6, &(0x7f0000000200)=@id={0x1e, 0x3, 0x3, {0x4e22, 0x3}}, 0x10)
dup2(r7, r2)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x100, 0x0, 0x0, 0x0, 0x3e7, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKGETSIZE64(0xffffffffffffffff, 0x80081272, &(0x7f0000000240))
r8 = syz_open_procfs(0x0, &(0x7f00000001c0)='clear_refs\x00')
openat$vnet(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vhost-net\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_GET_EVENT(r6, &(0x7f0000000500)={0xc, 0xfdf2, 0xfa00, {&(0x7f0000000280)}}, 0xd8)
pwritev(r8, &(0x7f0000000180)=[{&(0x7f0000000080)='4', 0x1}], 0x1, 0x0)
name_to_handle_at(r2, &(0x7f0000000480)='./file0\x00', &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0, 0x1400)
accept4$unix(r8, &(0x7f0000000000), &(0x7f00000000c0)=0x6e, 0x800)

01:59:46 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0xfffffffffffff000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:46 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x9, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x6, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x77aa, 0x7f, 0x4000000000, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x6, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:46 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x2]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:46 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:46 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x9, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x6, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x77aa, 0x7f, 0x4000000000, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x6, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:46 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x3]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:46 executing program 1:
mkdir(&(0x7f0000000440)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0xb00, 0xffffffffffffffff)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000002c0)={r0, 0x0, 0x0, 0x0, 0x0}, 0x20)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0xffffffffffffffff, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'vet\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbdh\x00', 0x43732e5398416f1a})
r2 = socket$nl_route(0x10, 0x3, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = shmget$private(0x0, 0x2000, 0xfffffffffffffffe, &(0x7f0000ffb000/0x2000)=nil)
shmctl$IPC_STAT(r3, 0x2, &(0x7f0000000400)=""/19)
r4 = socket$inet(0x2, 0x3, 0x2)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000580)='/dev/snapshot\x00', 0x2, 0x0)
ioctl$KVM_SET_TSC_KHZ(0xffffffffffffffff, 0xaea2, 0x45bbfbd4)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2000000, 0x43130, 0xffffffffffffffff, 0x0)
r5 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x20c0, 0x0)
setsockopt$netlink_NETLINK_PKTINFO(r2, 0x10e, 0x3, &(0x7f0000000440)=0xfbe, 0x4)
getsockname(r5, &(0x7f0000000140)=@ipx, &(0x7f00000001c0)=0x80)
setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r5, 0x28, 0x0, &(0x7f0000000100)=0x1, 0x8)
setsockopt$inet_int(r4, 0x0, 0xca, &(0x7f0000000000)=0x10001, 0x10)
r6 = openat$md(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/md0\x00', 0x40000, 0x0)
bind$tipc(r5, &(0x7f0000000200)=@id={0x1e, 0x3, 0x3, {0x4e22, 0x3}}, 0x10)
dup2(r6, r2)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x100, 0x0, 0x0, 0x0, 0x3e7, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKGETSIZE64(0xffffffffffffffff, 0x80081272, &(0x7f0000000240))
r7 = syz_open_procfs(0x0, &(0x7f00000001c0)='clear_refs\x00')
openat$vnet(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vhost-net\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_GET_EVENT(r5, &(0x7f0000000500)={0xc, 0xfdf2, 0xfa00, {&(0x7f0000000280)}}, 0xd8)
pwritev(r7, &(0x7f0000000180)=[{&(0x7f0000000080)='4', 0x1}], 0x1, 0x0)
name_to_handle_at(r2, &(0x7f0000000480)='./file0\x00', &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0, 0x1400)
accept4$unix(r7, &(0x7f0000000000), &(0x7f00000000c0)=0x6e, 0x800)

01:59:46 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x0, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:46 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:46 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x4]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:46 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:46 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:46 executing program 3:
mkdir(&(0x7f0000000440)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0xb00, 0xffffffffffffffff)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000002c0)={r0, 0x0, 0x0, 0x0, 0x0}, 0x20)
r1 = openat$tun(0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'vet\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbdh\x00', 0x43732e5398416f1a})
r2 = socket$nl_route(0x10, 0x3, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = shmget$private(0x0, 0x2000, 0xfffffffffffffffe, &(0x7f0000ffb000/0x2000)=nil)
shmctl$IPC_STAT(r3, 0x2, &(0x7f0000000400)=""/19)
r4 = socket$inet(0x2, 0x3, 0x2)
r5 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000580)='/dev/snapshot\x00', 0x2, 0x0)
ioctl$KVM_SET_TSC_KHZ(r5, 0xaea2, 0x45bbfbd4)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2000000, 0x43130, 0xffffffffffffffff, 0x0)
r6 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x20c0, 0x0)
setsockopt$netlink_NETLINK_PKTINFO(r2, 0x10e, 0x3, &(0x7f0000000440)=0xfbe, 0x4)
getsockname(r6, &(0x7f0000000140)=@ipx, &(0x7f00000001c0)=0x80)
setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r6, 0x28, 0x0, &(0x7f0000000100)=0x1, 0x8)
setsockopt$inet_int(r4, 0x0, 0xca, &(0x7f0000000000)=0x10001, 0x10)
r7 = openat$md(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/md0\x00', 0x40000, 0x0)
bind$tipc(r6, &(0x7f0000000200)=@id={0x1e, 0x3, 0x3, {0x4e22, 0x3}}, 0x10)
dup2(r7, r2)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x100, 0x0, 0x0, 0x0, 0x3e7, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKGETSIZE64(0xffffffffffffffff, 0x80081272, &(0x7f0000000240))
r8 = syz_open_procfs(0x0, &(0x7f00000001c0)='clear_refs\x00')
openat$vnet(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vhost-net\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_GET_EVENT(r6, &(0x7f0000000500)={0xc, 0xfdf2, 0xfa00, {&(0x7f0000000280)}}, 0xd8)
pwritev(r8, &(0x7f0000000180)=[{&(0x7f0000000080)='4', 0x1}], 0x1, 0x0)
name_to_handle_at(r2, &(0x7f0000000480)='./file0\x00', &(0x7f00000005c0)=ANY=[@ANYBLOB="670000007f000000fc3b60ed64350a35f472dda300100000000000009c0900000000000000c6bdeec403ca74b6563901353f9461f20c2a00f882b993c93f5c0dd26784a3d9568b56018d634ea93a5d000000010000800000000000000000906f00226bf7026fa4c75cad07573d945aea6d960e1669445d7d87c2e721afdc811f2457adf786dd3443aed8929584420f0d675c352ba7f4d175e58105a7ffcfd17eabc12aa9cb62672e1d03a9cfd3f43e634b5f5562464d99c9625fc005196d0d00446f2f87a318731efb16dcaf678421a376128f68e0cf1fc2debc84983c4fdf885433f819db952f7e2115d8aa91a4fcd5f5f1f44e674a34cc904a8872af8ae397555e8c6df0a0520438286f5fc4c5a419d22ecdbe251ada22b7b072ae0eab8a545c3b0c3da3b72ffb302850cefdfa988daf60a58a6a70d951b1ff9a17f1e012eecd14beab97a4a247161e25f579a6cdba5e46a6bd25ac6dc213991f3d8b52f6bc7b964139166273dcb2cffb6a35e80cf9c68ce2a265c405f041b1a3b101e7c3f090bdc2b3e51c1a08e3c0b2668b8d981a04f2631c078471e3734eddc94efd1f68023c89109d2fc3fb725a3874c7ee5b51263a0cdc3fadd7482e3d043b730e2632328752b0e95d3799ab5e5bf6ebc981209468028baa1985b073c2c997d3c78816fcae4aa2b3192dcea4a8f2891f7babf2a02eafc06198a0ae9c6946723059bec225323906bd59f5369edabebb4addd0334e919b7559cc383e777293da0d0b0e668d2de6114e0ec384355b257a27bde534f6434665e9a701ac2abc248674088bd28d4c41e0db31dafcff0f000073f86c853a124ce516c75671eca31a92668d3f0be1cf3733931e15af338eb7ffd90863ace82aabf3f03581fbf3ea1a7316533d80db681c4b9e73aeb27bedf3b0bf00d273301b2e898700000000000034"], 0x0, 0x1400)
accept4$unix(r8, &(0x7f0000000000), &(0x7f00000000c0)=0x6e, 0x800)

01:59:46 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x0, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:46 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x5]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:46 executing program 2 (fault-call:4 fault-nth:0):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x800000c0045005, &(0x7f0000003ff8)=0x42)

01:59:46 executing program 1 (fault-call:0 fault-nth:0):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

01:59:46 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  415.761587] FAULT_INJECTION: forcing a failure.
[  415.761587] name failslab, interval 1, probability 0, space 0, times 0
[  415.783773] FAULT_INJECTION: forcing a failure.
[  415.783773] name failslab, interval 1, probability 0, space 0, times 0
[  415.801871] CPU: 0 PID: 18852 Comm: syz-executor2 Not tainted 5.0.0-rc4+ #58
[  415.809072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  415.818538] Call Trace:
[  415.821146]  dump_stack+0x172/0x1f0
[  415.824793]  should_fail.cold+0xa/0x1b
[  415.828689]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  415.833816]  ? lock_downgrade+0x810/0x810
[  415.837969]  ? ___might_sleep+0x163/0x280
[  415.842133]  __should_failslab+0x121/0x190
[  415.846386]  should_failslab+0x9/0x14
[  415.850185]  kmem_cache_alloc_trace+0x2d1/0x760
[  415.854849]  ? lock_acquire+0x16f/0x3f0
[  415.858822]  ? snd_pcm_oss_change_params+0xa4/0xd0
[  415.863788]  snd_pcm_oss_change_params_locked+0x1a7/0x3750
[  415.869423]  ? __mutex_lock+0x3cd/0x1310
[  415.873500]  ? snd_pcm_oss_change_params+0xa4/0xd0
[  415.878459]  ? _snd_pcm_hw_param_set.constprop.0+0x590/0x590
[  415.884263]  ? lock_downgrade+0x810/0x810
[  415.888437]  ? find_held_lock+0x35/0x130
[  415.892504]  ? __might_fault+0x12b/0x1e0
[  415.896574]  ? kasan_check_write+0x14/0x20
[  415.900817]  snd_pcm_oss_change_params+0x7b/0xd0
[  415.905573]  snd_pcm_oss_get_active_substream+0x136/0x190
[  415.911109]  snd_pcm_oss_ioctl+0x22aa/0x33b0
[  415.915519]  ? __f_unlock_pos+0x19/0x20
[  415.919509]  ? snd_pcm_oss_release+0x290/0x290
[  415.924135]  ? __fget+0x340/0x540
[  415.927599]  ? find_held_lock+0x35/0x130
[  415.931666]  ? __fget+0x340/0x540
[  415.935129]  ? snd_pcm_oss_release+0x290/0x290
[  415.939717]  do_vfs_ioctl+0xd6e/0x1390
[  415.943622]  ? ioctl_preallocate+0x210/0x210
[  415.948025]  ? __fget+0x367/0x540
[  415.951491]  ? iterate_fd+0x360/0x360
[  415.955297]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  415.960895]  ? fput+0x128/0x1a0
[  415.964180]  ? security_file_ioctl+0x93/0xc0
[  415.968603]  ksys_ioctl+0xab/0xd0
[  415.972071]  __x64_sys_ioctl+0x73/0xb0
[  415.975987]  do_syscall_64+0x103/0x610
[  415.979879]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  415.985058] RIP: 0033:0x457e39
[  415.988248] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  416.007147] RSP: 002b:00007f128c070c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  416.014854] RAX: ffffffffffffffda RBX: 00007f128c070c90 RCX: 0000000000457e39
[  416.022130] RDX: 0000000020003ff8 RSI: 00800000c0045005 RDI: 0000000000000005
[  416.029398] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000
[  416.036671] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f128c0716d4
[  416.043941] R13: 00000000004c311e R14: 00000000004d5c00 R15: 0000000000000006
[  416.051241] CPU: 1 PID: 18853 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
01:59:47 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x6]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:47 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x0, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  416.058461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  416.067828] Call Trace:
[  416.070422]  dump_stack+0x172/0x1f0
[  416.074099]  should_fail.cold+0xa/0x1b
[  416.077995]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  416.083111]  ? lock_downgrade+0x810/0x810
[  416.087267]  ? ___might_sleep+0x163/0x280
[  416.091452]  __should_failslab+0x121/0x190
[  416.095708]  should_failslab+0x9/0x14
[  416.099525]  __kmalloc+0x2dc/0x740
[  416.103083]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
01:59:47 executing program 2 (fault-call:4 fault-nth:1):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x800000c0045005, &(0x7f0000003ff8)=0x42)

[  416.108630]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  416.114178]  ? strnlen_user+0x1f0/0x280
[  416.118436]  ? __x64_sys_memfd_create+0x13c/0x470
[  416.123302]  __x64_sys_memfd_create+0x13c/0x470
[  416.127977]  ? memfd_fcntl+0x1550/0x1550
[  416.132040]  ? do_syscall_64+0x26/0x610
[  416.136023]  ? lockdep_hardirqs_on+0x415/0x5d0
[  416.140610]  ? trace_hardirqs_on+0x67/0x230
[  416.144948]  do_syscall_64+0x103/0x610
[  416.148865]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  416.154061] RIP: 0033:0x457e39
[  416.157254] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  416.176163] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  416.183888] RAX: ffffffffffffffda RBX: 0000000020000400 RCX: 0000000000457e39
[  416.183897] RDX: 0000000020000418 RSI: 0000000000000000 RDI: 00000000004bce47
[  416.183905] RBP: 000000000073bf00 R08: 0000000020000418 R09: 00000000fbad8001
[  416.183913] R10: fe03f80fe03f80ff R11: 0000000000000246 R12: 00007f2e78bda6d4
01:59:47 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:47 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x7]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  416.183933] R13: 00000000004c65a1 R14: 00000000004db9a8 R15: 0000000000000003
[  416.201191] FAULT_INJECTION: forcing a failure.
[  416.201191] name failslab, interval 1, probability 0, space 0, times 0
01:59:47 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x0, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:47 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x0, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  416.421255] CPU: 1 PID: 18864 Comm: syz-executor2 Not tainted 5.0.0-rc4+ #58
[  416.428513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  416.437873] Call Trace:
[  416.440489]  dump_stack+0x172/0x1f0
[  416.444122]  should_fail.cold+0xa/0x1b
[  416.448018]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  416.453124]  ? lock_downgrade+0x810/0x810
[  416.453141]  ? ___might_sleep+0x163/0x280
[  416.453162]  __should_failslab+0x121/0x190
[  416.453180]  should_failslab+0x9/0x14
[  416.469518]  kmem_cache_alloc_trace+0x2d1/0x760
[  416.474196]  ? lock_acquire+0x16f/0x3f0
[  416.478189]  ? snd_pcm_oss_change_params+0xa4/0xd0
[  416.483146]  snd_pcm_oss_change_params_locked+0x1df/0x3750
[  416.488784]  ? __mutex_lock+0x3cd/0x1310
[  416.492861]  ? snd_pcm_oss_change_params+0xa4/0xd0
[  416.497808]  ? _snd_pcm_hw_param_set.constprop.0+0x590/0x590
[  416.503619]  ? lock_downgrade+0x810/0x810
[  416.507772]  ? find_held_lock+0x35/0x130
[  416.511853]  ? __might_fault+0x12b/0x1e0
[  416.515925]  ? kasan_check_write+0x14/0x20
01:59:47 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x8]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:47 executing program 1 (fault-call:0 fault-nth:1):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

01:59:47 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x9]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  416.520192]  snd_pcm_oss_change_params+0x7b/0xd0
[  416.524964]  snd_pcm_oss_get_active_substream+0x136/0x190
[  416.530501]  snd_pcm_oss_ioctl+0x22aa/0x33b0
[  416.534911]  ? __f_unlock_pos+0x19/0x20
[  416.538940]  ? snd_pcm_oss_release+0x290/0x290
[  416.538953]  ? __fget+0x340/0x540
[  416.538971]  ? find_held_lock+0x35/0x130
[  416.551054]  ? __fget+0x340/0x540
[  416.554523]  ? snd_pcm_oss_release+0x290/0x290
[  416.554541]  do_vfs_ioctl+0xd6e/0x1390
[  416.554559]  ? ioctl_preallocate+0x210/0x210
[  416.554572]  ? __fget+0x367/0x540
[  416.554588]  ? iterate_fd+0x360/0x360
[  416.574703]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  416.580261]  ? fput+0x128/0x1a0
[  416.583633]  ? security_file_ioctl+0x93/0xc0
[  416.588060]  ksys_ioctl+0xab/0xd0
[  416.591526]  __x64_sys_ioctl+0x73/0xb0
[  416.595435]  do_syscall_64+0x103/0x610
[  416.599337]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  416.604528] RIP: 0033:0x457e39
01:59:47 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xa]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:47 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:47 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x0, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  416.607731] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  416.626633] RSP: 002b:00007f128c070c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  416.634352] RAX: ffffffffffffffda RBX: 00007f128c070c90 RCX: 0000000000457e39
[  416.641621] RDX: 0000000020003ff8 RSI: 00800000c0045005 RDI: 0000000000000005
[  416.648889] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000
[  416.656168] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f128c0716d4
[  416.656179] R13: 00000000004c311e R14: 00000000004d5c00 R15: 0000000000000006
01:59:47 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x0, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  416.695623] FAULT_INJECTION: forcing a failure.
[  416.695623] name failslab, interval 1, probability 0, space 0, times 0
[  416.734611] CPU: 1 PID: 18897 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  416.741840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  416.751194] Call Trace:
[  416.753806]  dump_stack+0x172/0x1f0
[  416.757461]  should_fail.cold+0xa/0x1b
[  416.761365]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  416.766480]  ? lock_downgrade+0x810/0x810
[  416.770686]  ? ___might_sleep+0x163/0x280
[  416.774869]  __should_failslab+0x121/0x190
[  416.779111]  should_failslab+0x9/0x14
[  416.782920]  kmem_cache_alloc+0x2be/0x710
[  416.787076]  ? __alloc_fd+0x430/0x530
[  416.790887]  ? shmem_destroy_callback+0xc0/0xc0
[  416.795572]  shmem_alloc_inode+0x1c/0x50
[  416.799629]  alloc_inode+0x66/0x190
[  416.803290]  new_inode_pseudo+0x19/0xf0
[  416.807267]  new_inode+0x1f/0x40
[  416.810652]  shmem_get_inode+0x84/0x780
[  416.814622]  __shmem_file_setup.part.0+0x7e/0x2b0
[  416.819459]  shmem_file_setup+0x66/0x90
[  416.823445]  __x64_sys_memfd_create+0x2a2/0x470
[  416.828124]  ? memfd_fcntl+0x1550/0x1550
[  416.832201]  ? do_syscall_64+0x26/0x610
[  416.836178]  ? lockdep_hardirqs_on+0x415/0x5d0
[  416.840801]  ? trace_hardirqs_on+0x67/0x230
01:59:48 executing program 2 (fault-call:4 fault-nth:2):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x800000c0045005, &(0x7f0000003ff8)=0x42)

[  416.845140]  do_syscall_64+0x103/0x610
[  416.849050]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  416.854291] RIP: 0033:0x457e39
[  416.857503] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  416.876404] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  416.876418] RAX: ffffffffffffffda RBX: 0000000020000400 RCX: 0000000000457e39
01:59:48 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:48 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xd]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  416.876427] RDX: 0000000020000418 RSI: 0000000000000000 RDI: 00000000004bce47
[  416.876436] RBP: 000000000073bf00 R08: 0000000020000418 R09: 00000000fbad8001
[  416.876444] R10: fe03f80fe03f80ff R11: 0000000000000246 R12: 00007f2e78bda6d4
[  416.876452] R13: 00000000004c65a1 R14: 00000000004db9a8 R15: 0000000000000003
[  416.989018] FAULT_INJECTION: forcing a failure.
[  416.989018] name failslab, interval 1, probability 0, space 0, times 0
01:59:48 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xe]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:48 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x0, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  417.079384] CPU: 0 PID: 18913 Comm: syz-executor2 Not tainted 5.0.0-rc4+ #58
[  417.086621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  417.095969] Call Trace:
[  417.098564]  dump_stack+0x172/0x1f0
[  417.102202]  should_fail.cold+0xa/0x1b
[  417.106122]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  417.111261]  ? lock_downgrade+0x810/0x810
[  417.115425]  ? ___might_sleep+0x163/0x280
[  417.119621]  __should_failslab+0x121/0x190
[  417.123889]  should_failslab+0x9/0x14
[  417.123904]  kmem_cache_alloc_trace+0x2d1/0x760
[  417.123918]  ? lock_acquire+0x16f/0x3f0
[  417.136455]  ? snd_pcm_oss_change_params+0xa4/0xd0
[  417.141406]  snd_pcm_oss_change_params_locked+0x217/0x3750
[  417.147036]  ? __mutex_lock+0x3cd/0x1310
[  417.151166]  ? snd_pcm_oss_change_params+0xa4/0xd0
[  417.156109]  ? _snd_pcm_hw_param_set.constprop.0+0x590/0x590
[  417.161946]  ? lock_downgrade+0x810/0x810
[  417.166144]  ? find_held_lock+0x35/0x130
[  417.170247]  ? __might_fault+0x12b/0x1e0
[  417.174341]  ? kasan_check_write+0x14/0x20
[  417.178604]  snd_pcm_oss_change_params+0x7b/0xd0
[  417.183386]  snd_pcm_oss_get_active_substream+0x136/0x190
[  417.188965]  snd_pcm_oss_ioctl+0x22aa/0x33b0
[  417.193391]  ? __f_unlock_pos+0x19/0x20
[  417.197371]  ? snd_pcm_oss_release+0x290/0x290
[  417.201968]  ? __fget+0x340/0x540
[  417.205432]  ? find_held_lock+0x35/0x130
[  417.209509]  ? __fget+0x340/0x540
[  417.212969]  ? snd_pcm_oss_release+0x290/0x290
[  417.217554]  do_vfs_ioctl+0xd6e/0x1390
[  417.221552]  ? ioctl_preallocate+0x210/0x210
[  417.226254]  ? __fget+0x367/0x540
01:59:48 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:48 executing program 1 (fault-call:0 fault-nth:2):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

01:59:48 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x0)
r0 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r0, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r2, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r1, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  417.229721]  ? iterate_fd+0x360/0x360
[  417.233526]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  417.233535]  ? fput+0x128/0x1a0
[  417.233548]  ? security_file_ioctl+0x93/0xc0
[  417.233557]  ksys_ioctl+0xab/0xd0
[  417.233566]  __x64_sys_ioctl+0x73/0xb0
[  417.233577]  do_syscall_64+0x103/0x610
[  417.233588]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  417.233595] RIP: 0033:0x457e39
[  417.233615] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  417.233620] RSP: 002b:00007f128c070c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  417.233628] RAX: ffffffffffffffda RBX: 00007f128c070c90 RCX: 0000000000457e39
[  417.233632] RDX: 0000000020003ff8 RSI: 00800000c0045005 RDI: 0000000000000005
[  417.233636] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000
[  417.233641] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f128c0716d4
[  417.233646] R13: 00000000004c311e R14: 00000000004d5c00 R15: 0000000000000006
01:59:48 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x0, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  417.253334] FAULT_INJECTION: forcing a failure.
[  417.253334] name failslab, interval 1, probability 0, space 0, times 0
01:59:48 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x11]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:48 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x0, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  417.502134] CPU: 1 PID: 18930 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  417.509385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  417.518751] Call Trace:
[  417.521371]  dump_stack+0x172/0x1f0
[  417.525011]  should_fail.cold+0xa/0x1b
[  417.528905]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  417.534028]  ? lock_downgrade+0x810/0x810
[  417.538205]  ? ___might_sleep+0x163/0x280
[  417.542402]  __should_failslab+0x121/0x190
[  417.546646]  should_failslab+0x9/0x14
01:59:48 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x0)
r0 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r0, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r2, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r1, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:48 executing program 2 (fault-call:4 fault-nth:3):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x800000c0045005, &(0x7f0000003ff8)=0x42)

[  417.550463]  kmem_cache_alloc+0x2be/0x710
[  417.554635]  ? current_time+0x6b/0x140
[  417.558559]  ? ktime_get_coarse_real_ts64+0xf0/0x2b0
[  417.563668]  ? lockdep_hardirqs_on+0x415/0x5d0
[  417.568249]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  417.573804]  ? timespec64_trunc+0xf0/0x180
[  417.578045]  __d_alloc+0x2e/0x8c0
[  417.578065]  d_alloc_pseudo+0x1e/0x30
[  417.578094]  alloc_file_pseudo+0xe2/0x280
[  417.578132]  ? alloc_file+0x4d0/0x4d0
[  417.593329]  ? lockdep_annotate_inode_mutex_key+0x5b/0x70
[  417.598891]  ? kasan_check_write+0x14/0x20
[  417.603141]  __shmem_file_setup.part.0+0x108/0x2b0
[  417.603161]  shmem_file_setup+0x66/0x90
[  417.603180]  __x64_sys_memfd_create+0x2a2/0x470
[  417.603196]  ? memfd_fcntl+0x1550/0x1550
[  417.603212]  ? do_syscall_64+0x26/0x610
[  417.603225]  ? lockdep_hardirqs_on+0x415/0x5d0
[  417.603241]  ? trace_hardirqs_on+0x67/0x230
[  417.603257]  do_syscall_64+0x103/0x610
[  417.620921]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  417.620932] RIP: 0033:0x457e39
[  417.620946] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  417.620954] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  417.620966] RAX: ffffffffffffffda RBX: 0000000020000400 RCX: 0000000000457e39
[  417.620976] RDX: 0000000020000418 RSI: 0000000000000000 RDI: 00000000004bce47
[  417.639229] FAULT_INJECTION: forcing a failure.
[  417.639229] name failslab, interval 1, probability 0, space 0, times 0
01:59:48 executing program 1 (fault-call:0 fault-nth:3):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

[  417.642964] RBP: 000000000073bf00 R08: 0000000020000418 R09: 00000000fbad8001
[  417.642973] R10: fe03f80fe03f80ff R11: 0000000000000246 R12: 00007f2e78bda6d4
[  417.642981] R13: 00000000004c65a1 R14: 00000000004db9a8 R15: 0000000000000003
[  417.721415] CPU: 1 PID: 18954 Comm: syz-executor2 Not tainted 5.0.0-rc4+ #58
[  417.728615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  417.737990] Call Trace:
[  417.740603]  dump_stack+0x172/0x1f0
[  417.744267]  should_fail.cold+0xa/0x1b
[  417.748222]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  417.753347]  ? lock_downgrade+0x810/0x810
[  417.757514]  ? ___might_sleep+0x163/0x280
[  417.761703]  __should_failslab+0x121/0x190
[  417.765960]  should_failslab+0x9/0x14
[  417.769780]  __kmalloc+0x2dc/0x740
[  417.773349]  ? unwind_get_return_address+0x61/0xa0
[  417.778310]  ? __save_stack_trace+0x8a/0xf0
[  417.782656]  ? constrain_params_by_rules+0x118/0x1180
[  417.787865]  constrain_params_by_rules+0x118/0x1180
[  417.792921]  ? save_stack+0xa9/0xd0
[  417.796586]  ? save_stack+0x45/0xd0
[  417.800229]  ? kmem_cache_alloc_trace+0x151/0x760
[  417.805332]  ? snd_pcm_oss_change_params_locked+0x217/0x3750
[  417.811152]  ? snd_pcm_mmap_status_fault+0x240/0x240
[  417.816407]  ? do_vfs_ioctl+0xd6e/0x1390
[  417.820502]  ? ksys_ioctl+0xab/0xd0
[  417.824142]  ? __x64_sys_ioctl+0x73/0xb0
[  417.828218]  ? do_syscall_64+0x103/0x610
[  417.832401]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  417.837817]  ? mark_held_locks+0x100/0x100
[  417.842073]  ? __lock_is_held+0xb6/0x140
[  417.846151]  ? check_preemption_disabled+0x48/0x290
01:59:49 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x0, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:49 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x0)
r0 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r0, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r2, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r1, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  417.851200]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  417.856329]  ? snd_interval_refine+0x42a/0x720
[  417.860948]  snd_pcm_hw_refine+0xbf9/0xf20
[  417.865210]  ? constrain_params_by_rules+0x1180/0x1180
[  417.865231]  ? snd_pcm_oss_change_params_locked+0x217/0x3750
[  417.865249]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  417.865266]  ? rcu_read_lock_sched_held+0x110/0x130
[  417.887363]  ? memset+0x32/0x40
[  417.890665]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  417.896224]  ? _snd_pcm_hw_param_min+0x29d/0x560
[  417.901007]  snd_pcm_oss_change_params_locked+0x6c2/0x3750
[  417.901028]  ? __mutex_lock+0x3cd/0x1310
[  417.901056]  ? _snd_pcm_hw_param_set.constprop.0+0x590/0x590
[  417.901074]  ? lock_downgrade+0x810/0x810
[  417.920856]  ? __might_fault+0x12b/0x1e0
[  417.924947]  ? kasan_check_write+0x14/0x20
[  417.929209]  snd_pcm_oss_change_params+0x7b/0xd0
[  417.934003]  snd_pcm_oss_get_active_substream+0x136/0x190
[  417.939560]  snd_pcm_oss_ioctl+0x22aa/0x33b0
[  417.939608]  ? __f_unlock_pos+0x19/0x20
[  417.939626]  ? snd_pcm_oss_release+0x290/0x290
[  417.939637]  ? __fget+0x340/0x540
[  417.939653]  ? find_held_lock+0x35/0x130
[  417.960167]  ? __fget+0x340/0x540
[  417.963673]  ? snd_pcm_oss_release+0x290/0x290
[  417.968299]  do_vfs_ioctl+0xd6e/0x1390
[  417.972215]  ? ioctl_preallocate+0x210/0x210
[  417.976656]  ? __fget+0x367/0x540
[  417.980148]  ? iterate_fd+0x360/0x360
[  417.983989]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  417.989547]  ? fput+0x128/0x1a0
[  417.992895]  ? security_file_ioctl+0x93/0xc0
[  417.997338]  ksys_ioctl+0xab/0xd0
01:59:49 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x0)
r0 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r0, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r2, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r1, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  418.000810]  __x64_sys_ioctl+0x73/0xb0
[  418.004791]  do_syscall_64+0x103/0x610
[  418.008713]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  418.013917] RIP: 0033:0x457e39
[  418.017121] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  418.017131] RSP: 002b:00007f128c070c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  418.017147] RAX: ffffffffffffffda RBX: 00007f128c070c90 RCX: 0000000000457e39
01:59:49 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x28]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  418.017157] RDX: 0000000020003ff8 RSI: 00800000c0045005 RDI: 0000000000000005
[  418.017165] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000
[  418.017179] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f128c0716d4
[  418.073305] R13: 00000000004c311e R14: 00000000004d5c00 R15: 0000000000000006
[  418.083077] FAULT_INJECTION: forcing a failure.
[  418.083077] name failslab, interval 1, probability 0, space 0, times 0
01:59:49 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r2, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  418.170972] CPU: 1 PID: 18962 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  418.178383] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  418.178391] Call Trace:
[  418.178418]  dump_stack+0x172/0x1f0
[  418.178442]  should_fail.cold+0xa/0x1b
[  418.178462]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  418.178483]  ? lock_downgrade+0x810/0x810
[  418.207341]  ? ___might_sleep+0x163/0x280
[  418.211637]  __should_failslab+0x121/0x190
[  418.215900]  should_failslab+0x9/0x14
[  418.219735]  kmem_cache_alloc+0x2be/0x710
[  418.223935]  __alloc_file+0x27/0x300
[  418.227699]  alloc_empty_file+0x72/0x170
[  418.231781]  alloc_file+0x5e/0x4d0
[  418.235355]  alloc_file_pseudo+0x189/0x280
[  418.239621]  ? alloc_file+0x4d0/0x4d0
[  418.239643]  ? lockdep_annotate_inode_mutex_key+0x5b/0x70
[  418.239660]  ? kasan_check_write+0x14/0x20
[  418.239682]  __shmem_file_setup.part.0+0x108/0x2b0
[  418.239702]  shmem_file_setup+0x66/0x90
[  418.239725]  __x64_sys_memfd_create+0x2a2/0x470
[  418.262309]  ? memfd_fcntl+0x1550/0x1550
[  418.262327]  ? do_syscall_64+0x26/0x610
[  418.262344]  ? lockdep_hardirqs_on+0x415/0x5d0
[  418.262362]  ? trace_hardirqs_on+0x67/0x230
[  418.262382]  do_syscall_64+0x103/0x610
[  418.262404]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  418.262416] RIP: 0033:0x457e39
[  418.262432] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
01:59:49 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x3c]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  418.262441] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  418.262456] RAX: ffffffffffffffda RBX: 0000000020000400 RCX: 0000000000457e39
[  418.262465] RDX: 0000000020000418 RSI: 0000000000000000 RDI: 00000000004bce47
[  418.262475] RBP: 000000000073bf00 R08: 0000000020000418 R09: 00000000fbad8001
[  418.262487] R10: fe03f80fe03f80ff R11: 0000000000000246 R12: 00007f2e78bda6d4
[  418.279777] R13: 00000000004c65a1 R14: 00000000004db9a8 R15: 0000000000000003
01:59:49 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x0)
r0 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r0, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r2, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r1, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:49 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r2, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:49 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x800000c0045005, &(0x7f0000003ff8)=0x42)

01:59:49 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x44]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:49 executing program 1 (fault-call:0 fault-nth:4):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

[  418.604723] FAULT_INJECTION: forcing a failure.
[  418.604723] name failslab, interval 1, probability 0, space 0, times 0
[  418.647703] CPU: 1 PID: 18997 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  418.654927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  418.664315] Call Trace:
[  418.666955]  dump_stack+0x172/0x1f0
[  418.670635]  should_fail.cold+0xa/0x1b
[  418.674574]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  418.679700]  ? lock_downgrade+0x810/0x810
[  418.683862]  ? ___might_sleep+0x163/0x280
[  418.688059]  __should_failslab+0x121/0x190
[  418.692330]  should_failslab+0x9/0x14
[  418.696168]  kmem_cache_alloc_trace+0x2d1/0x760
[  418.700953]  ? ___might_sleep+0x163/0x280
[  418.705125]  ? __might_sleep+0x95/0x190
[  418.709127]  apparmor_file_alloc_security+0x112/0x940
[  418.714348]  security_file_alloc+0x69/0xb0
[  418.718620]  __alloc_file+0xac/0x300
[  418.722361]  alloc_empty_file+0x72/0x170
[  418.726444]  alloc_file+0x5e/0x4d0
[  418.730008]  alloc_file_pseudo+0x189/0x280
[  418.734296]  ? alloc_file+0x4d0/0x4d0
[  418.738128]  ? lockdep_annotate_inode_mutex_key+0x5b/0x70
[  418.743694]  ? kasan_check_write+0x14/0x20
[  418.747961]  __shmem_file_setup.part.0+0x108/0x2b0
[  418.752928]  shmem_file_setup+0x66/0x90
[  418.756924]  __x64_sys_memfd_create+0x2a2/0x470
[  418.761715]  ? memfd_fcntl+0x1550/0x1550
[  418.765920]  ? do_syscall_64+0x26/0x610
[  418.769919]  ? lockdep_hardirqs_on+0x415/0x5d0
[  418.774522]  ? trace_hardirqs_on+0x67/0x230
[  418.778878]  do_syscall_64+0x103/0x610
[  418.782810]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  418.788019] RIP: 0033:0x457e39
01:59:49 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x80000000000002, &(0x7f0000003ff8)=0x42)

01:59:49 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x0, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  418.791234] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  418.810178] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  418.818113] RAX: ffffffffffffffda RBX: 0000000020000400 RCX: 0000000000457e39
[  418.825399] RDX: 0000000020000418 RSI: 0000000000000000 RDI: 00000000004bce47
[  418.832682] RBP: 000000000073bf00 R08: 0000000020000418 R09: 00000000fbad8001
[  418.839981] R10: fe03f80fe03f80ff R11: 0000000000000246 R12: 00007f2e78bda6d4
01:59:50 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x6c]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:50 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  418.847297] R13: 00000000004c65a1 R14: 00000000004db9a8 R15: 0000000000000003
01:59:50 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r2, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:50 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xf0]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:50 executing program 1 (fault-call:0 fault-nth:5):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

01:59:50 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:50 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x0, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  419.156868] FAULT_INJECTION: forcing a failure.
[  419.156868] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  419.180706] CPU: 1 PID: 19028 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  419.187919] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  419.197396] Call Trace:
[  419.200012]  dump_stack+0x172/0x1f0
[  419.203669]  should_fail.cold+0xa/0x1b
[  419.207589]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  419.212711]  ? ___might_sleep+0x163/0x280
[  419.216887]  should_fail_alloc_page+0x50/0x60
[  419.221401]  __alloc_pages_nodemask+0x1a1/0x710
[  419.226687]  ? __alloc_pages_slowpath+0x2900/0x2900
[  419.231730]  ? mark_held_locks+0x100/0x100
[  419.236001]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  419.241557]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  419.247121]  alloc_pages_vma+0xdd/0x540
[  419.251119]  shmem_alloc_page+0xc0/0x180
[  419.255203]  ? shmem_swapin+0x1a0/0x1a0
[  419.259199]  ? lock_downgrade+0x810/0x810
[  419.263387]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  419.268598]  ? __vm_enough_memory+0x320/0x5a0
[  419.273121]  shmem_alloc_and_acct_page+0x165/0x970
[  419.278076]  shmem_getpage_gfp+0x449/0x3520
[  419.282438]  ? shmem_add_to_page_cache+0x1200/0x1200
[  419.287558]  ? ktime_get_coarse_real_ts64+0xf0/0x2b0
[  419.292696]  ? current_time+0x6b/0x140
[  419.296632]  ? ktime_get_coarse_real_ts64+0xf0/0x2b0
[  419.301756]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  419.307372]  ? iov_iter_fault_in_readable+0x22c/0x450
[  419.312588]  shmem_write_begin+0x105/0x1e0
[  419.316858]  generic_perform_write+0x231/0x530
[  419.321584]  ? page_endio+0x780/0x780
[  419.325412]  ? current_time+0x140/0x140
[  419.329413]  ? lock_acquire+0x16f/0x3f0
[  419.333416]  __generic_file_write_iter+0x25e/0x630
[  419.338365]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  419.343407]  generic_file_write_iter+0x360/0x610
[  419.348190]  ? __generic_file_write_iter+0x630/0x630
[  419.353335]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  419.358898]  ? iov_iter_init+0xea/0x220
[  419.362896]  __vfs_write+0x613/0x8e0
[  419.366652]  ? kernel_read+0x120/0x120
[  419.370573]  ? rcu_read_lock_sched_held+0x110/0x130
[  419.375621]  ? rcu_sync_lockdep_assert+0x73/0xb0
[  419.380404]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  419.385979]  ? __sb_start_write+0x1ac/0x360
[  419.390337]  vfs_write+0x20c/0x580
[  419.393920]  ksys_pwrite64+0x183/0x1c0
[  419.397839]  ? __ia32_sys_pread64+0xf0/0xf0
[  419.402182]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  419.406957]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  419.411734]  ? do_syscall_64+0x26/0x610
[  419.415730]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  419.421117]  ? do_syscall_64+0x26/0x610
[  419.425118]  __x64_sys_pwrite64+0x97/0xf0
[  419.429310]  do_syscall_64+0x103/0x610
[  419.433228]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  419.438433] RIP: 0033:0x411f87
01:59:50 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:50 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x104]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:50 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r2, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  419.441644] Code: 12 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 51 17 00 00 c3 48 83 ec 08 e8 c7 f9 ff ff 48 89 04 24 49 89 ca b8 12 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 0d fa ff ff 48 89 d0 48 83 c4 08 48 3d 01
[  419.460872] RSP: 002b:00007f2e78bd9a80 EFLAGS: 00000293 ORIG_RAX: 0000000000000012
[  419.468602] RAX: ffffffffffffffda RBX: 0000000020000410 RCX: 0000000000411f87
[  419.475887] RDX: 00000000000000be RSI: 0000000020000140 RDI: 0000000000000004
[  419.483169] RBP: 0000000000000000 R08: 0000000020000418 R09: 00000000fbad8001
[  419.490457] R10: 0000000000010000 R11: 0000000000000293 R12: 0000000000000004
[  419.497757] R13: 0000000000000001 R14: 00000000004db9a8 R15: 0000000000000003
01:59:51 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x80000000005000, &(0x7f0000003ff8)=0x42)

01:59:51 executing program 1 (fault-call:0 fault-nth:6):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

01:59:51 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x0, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:51 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x1f4]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:51 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:51 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  419.937014] FAULT_INJECTION: forcing a failure.
[  419.937014] name failslab, interval 1, probability 0, space 0, times 0
[  419.948611] CPU: 0 PID: 19064 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  419.955835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  419.965200] Call Trace:
[  419.967848]  dump_stack+0x172/0x1f0
[  419.971534]  should_fail.cold+0xa/0x1b
[  419.975459]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  419.980616]  ? __lock_acquire+0x53b/0x4700
[  419.985002]  ? percpu_ref_put_many+0x94/0x190
[  419.989528]  __should_failslab+0x121/0x190
[  419.993786]  should_failslab+0x9/0x14
[  419.997636]  kmem_cache_alloc+0x47/0x710
[  420.001725]  ? __lock_is_held+0xb6/0x140
[  420.005818]  xas_alloc+0x2df/0x3d0
[  420.009386]  xas_create+0x2cd/0xec0
[  420.013047]  xas_create_range+0x198/0x5d0
[  420.017233]  shmem_add_to_page_cache+0x6f3/0x1200
[  420.022129]  ? shmem_writepage+0xe90/0xe90
[  420.026460]  shmem_getpage_gfp+0x6d7/0x3520
[  420.030813]  ? shmem_add_to_page_cache+0x1200/0x1200
[  420.035947]  ? current_time+0x6b/0x140
[  420.039853]  ? ktime_get_coarse_real_ts64+0xf0/0x2b0
[  420.044990]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  420.050551]  ? iov_iter_fault_in_readable+0x22c/0x450
[  420.055775]  shmem_write_begin+0x105/0x1e0
[  420.060036]  generic_perform_write+0x231/0x530
[  420.064643]  ? page_endio+0x780/0x780
[  420.068465]  ? current_time+0x140/0x140
[  420.072467]  ? lock_acquire+0x16f/0x3f0
[  420.076469]  __generic_file_write_iter+0x25e/0x630
[  420.081500]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
01:59:51 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x0, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  420.086547]  generic_file_write_iter+0x360/0x610
[  420.091344]  ? __generic_file_write_iter+0x630/0x630
[  420.096475]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  420.102030]  ? iov_iter_init+0xea/0x220
[  420.106033]  __vfs_write+0x613/0x8e0
[  420.109768]  ? kernel_read+0x120/0x120
[  420.113690]  ? rcu_read_lock_sched_held+0x110/0x130
[  420.119186]  ? rcu_sync_lockdep_assert+0x73/0xb0
[  420.123966]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  420.129545]  ? __sb_start_write+0x1ac/0x360
[  420.133899]  vfs_write+0x20c/0x580
[  420.137489]  ksys_pwrite64+0x183/0x1c0
[  420.141394]  ? __ia32_sys_pread64+0xf0/0xf0
[  420.145794]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  420.150688]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  420.155625]  ? do_syscall_64+0x26/0x610
[  420.155641]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  420.155654]  ? do_syscall_64+0x26/0x610
[  420.155673]  __x64_sys_pwrite64+0x97/0xf0
[  420.155690]  do_syscall_64+0x103/0x610
[  420.155707]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  420.155721] RIP: 0033:0x411f87
01:59:51 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x300]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  420.185488] Code: 12 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 51 17 00 00 c3 48 83 ec 08 e8 c7 f9 ff ff 48 89 04 24 49 89 ca b8 12 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 0d fa ff ff 48 89 d0 48 83 c4 08 48 3d 01
[  420.204414] RSP: 002b:00007f2e78bd9a80 EFLAGS: 00000293 ORIG_RAX: 0000000000000012
[  420.212139] RAX: ffffffffffffffda RBX: 0000000020000410 RCX: 0000000000411f87
[  420.219420] RDX: 00000000000000be RSI: 0000000020000140 RDI: 0000000000000004
[  420.219433] RBP: 0000000000000000 R08: 0000000020000418 R09: 00000000fbad8001
01:59:51 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x0, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:51 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x80000000005001, &(0x7f0000003ff8)=0x42)

[  420.234020] R10: 0000000000010000 R11: 0000000000000293 R12: 0000000000000004
[  420.234030] R13: 0000000000000001 R14: 00000000004db9a8 R15: 0000000000000003
01:59:51 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:51 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x3e8]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:51 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x0, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  420.616589] BTRFS: device fsid ecf6f2a2-2997-48ae-b81e-1b00920efd9a devid 0 transid 5318125732016778760 /dev/loop1
01:59:51 executing program 1 (fault-call:0 fault-nth:7):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

01:59:51 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x500]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:51 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  420.776431] FAULT_INJECTION: forcing a failure.
[  420.776431] name failslab, interval 1, probability 0, space 0, times 0
[  420.791108] CPU: 0 PID: 19113 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  420.798431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  420.807802] Call Trace:
[  420.810427]  dump_stack+0x172/0x1f0
[  420.814142]  should_fail.cold+0xa/0x1b
[  420.818054]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  420.823204]  ? lock_downgrade+0x810/0x810
[  420.827372]  ? ___might_sleep+0x163/0x280
[  420.831672]  __should_failslab+0x121/0x190
[  420.835941]  should_failslab+0x9/0x14
[  420.839851]  kmem_cache_alloc+0x2be/0x710
[  420.844029]  ? lock_downgrade+0x810/0x810
[  420.848198]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  420.853774]  ? check_preemption_disabled+0x48/0x290
[  420.858817]  getname_flags+0xd6/0x5b0
[  420.862664]  getname+0x1a/0x20
[  420.865901]  do_sys_open+0x2c9/0x5d0
[  420.869657]  ? filp_open+0x80/0x80
01:59:52 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:52 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x543]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  420.873232]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  420.878012]  ? do_syscall_64+0x26/0x610
[  420.882003]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  420.887385]  ? do_syscall_64+0x26/0x610
[  420.891385]  __x64_sys_open+0x7e/0xc0
[  420.895210]  do_syscall_64+0x103/0x610
[  420.899122]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  420.904346] RIP: 0033:0x411f21
[  420.907664] Code: 75 14 b8 02 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 b4 17 00 00 c3 48 83 ec 08 e8 2a fa ff ff 48 89 04 24 b8 02 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 73 fa ff ff 48 89 d0 48 83 c4 08 48 3d 01
01:59:52 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:52 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x600]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  420.927064] RSP: 002b:00007f2e78bd9a80 EFLAGS: 00000293 ORIG_RAX: 0000000000000002
[  420.934797] RAX: ffffffffffffffda RBX: 0000000020000428 RCX: 0000000000411f21
[  420.942081] RDX: 00007f2e78bd9afa RSI: 0000000000000002 RDI: 00007f2e78bd9af0
[  420.942091] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a
[  420.942100] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000004
[  420.942109] R13: 0000000000000001 R14: 00000000004db9a8 R15: 0000000000000003
01:59:52 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x0, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:52 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x80000000005008, &(0x7f0000003ff8)=0x42)

01:59:52 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x608]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:52 executing program 1 (fault-call:0 fault-nth:8):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

01:59:52 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r2, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:52 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:52 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x689]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:52 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  421.516650] FAULT_INJECTION: forcing a failure.
[  421.516650] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  421.528512] CPU: 1 PID: 19150 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  421.535705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  421.535714] Call Trace:
[  421.535742]  dump_stack+0x172/0x1f0
[  421.535767]  should_fail.cold+0xa/0x1b
[  421.535788]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  421.535811]  ? mark_held_locks+0x100/0x100
01:59:52 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x700]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  421.535842]  should_fail_alloc_page+0x50/0x60
[  421.535861]  __alloc_pages_nodemask+0x1a1/0x710
[  421.535880]  ? generic_file_write_iter+0x3c3/0x610
[  421.535900]  ? __alloc_pages_slowpath+0x2900/0x2900
[  421.583858]  ? find_held_lock+0x35/0x130
[  421.587967]  cache_grow_begin+0x9c/0x8c0
[  421.592047]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  421.597617]  ? check_preemption_disabled+0x48/0x290
[  421.597638]  kmem_cache_alloc+0x645/0x710
[  421.597655]  ? lock_downgrade+0x810/0x810
[  421.597679]  getname_flags+0xd6/0x5b0
[  421.597698]  getname+0x1a/0x20
[  421.618011]  do_sys_open+0x2c9/0x5d0
[  421.621748]  ? filp_open+0x80/0x80
[  421.625334]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  421.630113]  ? do_syscall_64+0x26/0x610
[  421.634105]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  421.634121]  ? do_syscall_64+0x26/0x610
[  421.634143]  __x64_sys_open+0x7e/0xc0
[  421.634162]  do_syscall_64+0x103/0x610
[  421.634181]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  421.634196] RIP: 0033:0x411f21
[  421.659720] Code: 75 14 b8 02 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 b4 17 00 00 c3 48 83 ec 08 e8 2a fa ff ff 48 89 04 24 b8 02 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 73 fa ff ff 48 89 d0 48 83 c4 08 48 3d 01
[  421.678754] RSP: 002b:00007f2e78bd9a80 EFLAGS: 00000293 ORIG_RAX: 0000000000000002
[  421.686502] RAX: ffffffffffffffda RBX: 0000000020000428 RCX: 0000000000411f21
[  421.693904] RDX: 00007f2e78bd9afa RSI: 0000000000000002 RDI: 00007f2e78bd9af0
[  421.701201] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a
[  421.708482] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000004
01:59:52 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x806]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  421.715790] R13: 0000000000000001 R14: 00000000004db9a8 R15: 0000000000000003
01:59:52 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  421.786508] BTRFS: device fsid ecf6f2a2-2997-48ae-b81e-1b00920efd9a devid 0 transid 5318125732016778760 /dev/loop1
01:59:53 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x0, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:53 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:53 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x8000000000500e, &(0x7f0000003ff8)=0x42)

01:59:53 executing program 1 (fault-call:0 fault-nth:9):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

01:59:53 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x900]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:53 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:53 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  422.316305] FAULT_INJECTION: forcing a failure.
[  422.316305] name failslab, interval 1, probability 0, space 0, times 0
[  422.386710] CPU: 1 PID: 19196 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  422.393966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  422.403333] Call Trace:
[  422.405968]  dump_stack+0x172/0x1f0
[  422.409627]  should_fail.cold+0xa/0x1b
[  422.413542]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  422.418808]  ? lock_downgrade+0x810/0x810
[  422.423010]  ? ___might_sleep+0x163/0x280
[  422.427187]  __should_failslab+0x121/0x190
[  422.431455]  should_failslab+0x9/0x14
[  422.435293]  kmem_cache_alloc+0x2be/0x710
[  422.439464]  ? __save_stack_trace+0x8a/0xf0
[  422.443823]  __alloc_file+0x27/0x300
[  422.447563]  alloc_empty_file+0x72/0x170
[  422.451649]  path_openat+0xef/0x4690
[  422.455383]  ? __lock_acquire+0x53b/0x4700
[  422.459651]  ? getname+0x1a/0x20
[  422.463033]  ? do_sys_open+0x2c9/0x5d0
[  422.467043]  ? __x64_sys_open+0x7e/0xc0
[  422.471036]  ? do_syscall_64+0x103/0x610
[  422.475218]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  422.480630]  ? path_lookupat.isra.0+0x8d0/0x8d0
[  422.485332]  ? __lock_is_held+0xb6/0x140
[  422.489422]  ? __alloc_fd+0x430/0x530
[  422.493253]  do_filp_open+0x1a1/0x280
[  422.497101]  ? may_open_dev+0x100/0x100
[  422.501202]  ? lock_downgrade+0x810/0x810
[  422.505395]  ? kasan_check_read+0x11/0x20
[  422.509569]  ? do_raw_spin_unlock+0x57/0x270
[  422.513998]  ? _raw_spin_unlock+0x2d/0x50
[  422.514013]  ? __alloc_fd+0x430/0x530
[  422.514038]  do_sys_open+0x3fe/0x5d0
[  422.521996]  ? filp_open+0x80/0x80
[  422.522018]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  422.522033]  ? do_syscall_64+0x26/0x610
[  422.522047]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  422.522062]  ? do_syscall_64+0x26/0x610
[  422.522082]  __x64_sys_open+0x7e/0xc0
[  422.522100]  do_syscall_64+0x103/0x610
[  422.522117]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  422.560333] RIP: 0033:0x411f21
[  422.563547] Code: 75 14 b8 02 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 b4 17 00 00 c3 48 83 ec 08 e8 2a fa ff ff 48 89 04 24 b8 02 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 73 fa ff ff 48 89 d0 48 83 c4 08 48 3d 01
01:59:53 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r2, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r1, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:53 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xa00]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:53 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x0, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  422.582566] RSP: 002b:00007f2e78bd9a80 EFLAGS: 00000293 ORIG_RAX: 0000000000000002
[  422.590394] RAX: ffffffffffffffda RBX: 0000000020000428 RCX: 0000000000411f21
[  422.597683] RDX: 00007f2e78bd9afa RSI: 0000000000000002 RDI: 00007f2e78bd9af0
[  422.604968] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a
[  422.612249] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000004
[  422.619569] R13: 0000000000000001 R14: 00000000004db9a8 R15: 0000000000000003
01:59:53 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x0, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:53 executing program 1 (fault-call:0 fault-nth:10):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

01:59:54 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xd00]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  422.814793] FAULT_INJECTION: forcing a failure.
[  422.814793] name failslab, interval 1, probability 0, space 0, times 0
[  422.870070] CPU: 0 PID: 19219 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  422.877326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  422.886698] Call Trace:
[  422.889551]  dump_stack+0x172/0x1f0
[  422.893205]  should_fail.cold+0xa/0x1b
[  422.897114]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  422.902241]  ? lock_downgrade+0x810/0x810
[  422.906442]  ? ___might_sleep+0x163/0x280
[  422.910637]  __should_failslab+0x121/0x190
[  422.914903]  should_failslab+0x9/0x14
01:59:54 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xe00]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  422.918747]  kmem_cache_alloc_trace+0x2d1/0x760
[  422.923450]  ? ___might_sleep+0x163/0x280
[  422.927676]  ? __might_sleep+0x95/0x190
[  422.931676]  apparmor_file_alloc_security+0x112/0x940
[  422.937003]  security_file_alloc+0x69/0xb0
[  422.941401]  __alloc_file+0xac/0x300
[  422.945143]  alloc_empty_file+0x72/0x170
[  422.949233]  path_openat+0xef/0x4690
[  422.952990]  ? __lock_acquire+0x53b/0x4700
[  422.957262]  ? getname+0x1a/0x20
[  422.960670]  ? do_sys_open+0x2c9/0x5d0
[  422.964573]  ? __x64_sys_open+0x7e/0xc0
[  422.968568]  ? do_syscall_64+0x103/0x610
[  422.972653]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  422.978053]  ? path_lookupat.isra.0+0x8d0/0x8d0
[  422.982760]  ? __lock_is_held+0xb6/0x140
[  422.986863]  ? __alloc_fd+0x430/0x530
[  422.990694]  do_filp_open+0x1a1/0x280
[  422.994644]  ? may_open_dev+0x100/0x100
[  422.998637]  ? lock_downgrade+0x810/0x810
[  423.002812]  ? kasan_check_read+0x11/0x20
[  423.006996]  ? do_raw_spin_unlock+0x57/0x270
[  423.011489]  ? _raw_spin_unlock+0x2d/0x50
[  423.015662]  ? __alloc_fd+0x430/0x530
[  423.019487]  do_sys_open+0x3fe/0x5d0
[  423.023199]  ? filp_open+0x80/0x80
[  423.026746]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  423.031634]  ? do_syscall_64+0x26/0x610
[  423.035616]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  423.040999]  ? do_syscall_64+0x26/0x610
[  423.044985]  __x64_sys_open+0x7e/0xc0
[  423.048778]  do_syscall_64+0x103/0x610
[  423.052663]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  423.057848] RIP: 0033:0x411f21
[  423.061047] Code: 75 14 b8 02 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 b4 17 00 00 c3 48 83 ec 08 e8 2a fa ff ff 48 89 04 24 b8 02 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 73 fa ff ff 48 89 d0 48 83 c4 08 48 3d 01
[  423.079966] RSP: 002b:00007f2e78bd9a80 EFLAGS: 00000293 ORIG_RAX: 0000000000000002
[  423.087694] RAX: ffffffffffffffda RBX: 0000000020000428 RCX: 0000000000411f21
[  423.095070] RDX: 00007f2e78bd9afa RSI: 0000000000000002 RDI: 00007f2e78bd9af0
[  423.102543] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a
[  423.109848] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000004
[  423.117124] R13: 0000000000000001 R14: 00000000004db9a8 R15: 0000000000000003
01:59:54 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x80000000005015, &(0x7f0000003ff8)=0x42)

01:59:54 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xe80]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:54 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x0, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:54 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r2, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r1, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:54 executing program 1 (fault-call:0 fault-nth:11):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

01:59:54 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x0, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  423.709370] FAULT_INJECTION: forcing a failure.
[  423.709370] name failslab, interval 1, probability 0, space 0, times 0
[  423.750769] CPU: 0 PID: 19242 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  423.758001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  423.767370] Call Trace:
[  423.769988]  dump_stack+0x172/0x1f0
[  423.773651]  should_fail.cold+0xa/0x1b
[  423.777575]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  423.782855]  ? lock_downgrade+0x810/0x810
[  423.787026]  ? ___might_sleep+0x163/0x280
[  423.791205]  __should_failslab+0x121/0x190
[  423.795464]  ? loop_info64_to_compat+0x6d0/0x6d0
01:59:54 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x1100]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  423.800360]  should_failslab+0x9/0x14
[  423.804180]  kmem_cache_alloc_trace+0x2d1/0x760
[  423.808891]  ? lockdep_init_map+0x10c/0x5b0
[  423.813261]  ? loop_info64_to_compat+0x6d0/0x6d0
[  423.818185]  __kthread_create_on_node+0xf2/0x460
[  423.822960]  ? lock_acquire+0x16f/0x3f0
[  423.827073]  ? kthread_parkme+0xb0/0xb0
[  423.831088]  ? mutex_trylock+0x1e0/0x1e0
[  423.835416]  ? loop_info64_to_compat+0x6d0/0x6d0
[  423.840191]  kthread_create_on_node+0xbb/0xf0
[  423.844708]  ? __kthread_create_on_node+0x460/0x460
[  423.849949]  ? lockdep_init_map+0x10c/0x5b0
[  423.854322]  ? lockdep_init_map+0x10c/0x5b0
[  423.858668]  lo_ioctl+0xafb/0x20d0
[  423.862238]  ? lo_rw_aio+0x1530/0x1530
[  423.866243]  blkdev_ioctl+0xee8/0x1c40
[  423.870165]  ? blkpg_ioctl+0xa90/0xa90
[  423.874078]  ? find_held_lock+0x35/0x130
[  423.878167]  ? debug_check_no_obj_freed+0x200/0x464
[  423.883207]  ? kasan_check_read+0x11/0x20
[  423.887379]  ? __fget+0x340/0x540
[  423.890953]  ? find_held_lock+0x35/0x130
[  423.895149]  ? __fget+0x340/0x540
[  423.898660]  block_ioctl+0xee/0x130
[  423.902328]  ? blkdev_fallocate+0x410/0x410
[  423.906678]  do_vfs_ioctl+0xd6e/0x1390
[  423.910707]  ? ioctl_preallocate+0x210/0x210
[  423.915252]  ? __fget+0x367/0x540
[  423.918909]  ? iterate_fd+0x360/0x360
[  423.922733]  ? do_sys_open+0x31d/0x5d0
[  423.926656]  ? security_file_ioctl+0x93/0xc0
[  423.931083]  ksys_ioctl+0xab/0xd0
[  423.934572]  __x64_sys_ioctl+0x73/0xb0
[  423.938600]  do_syscall_64+0x103/0x610
[  423.942514]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  423.947732] RIP: 0033:0x457ca7
[  423.950968] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  423.970214] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  423.977951] RAX: ffffffffffffffda RBX: 0000000020000428 RCX: 0000000000457ca7
[  423.985235] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  423.992515] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a
01:59:55 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r2, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r1, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  423.999934] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004
[  424.007211] R13: 0000000000000001 R14: 00000000004db9a8 R15: 0000000000000003
01:59:55 executing program 1 (fault-call:0 fault-nth:12):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

01:59:55 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r2, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r1, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:55 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x2800]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:55 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x0, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  424.306404] FAULT_INJECTION: forcing a failure.
[  424.306404] name failslab, interval 1, probability 0, space 0, times 0
[  424.343234] CPU: 0 PID: 19274 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  424.350490] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  424.359977] Call Trace:
[  424.362603]  dump_stack+0x172/0x1f0
[  424.366254]  should_fail.cold+0xa/0x1b
[  424.370193]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  424.375370]  ? lock_downgrade+0x810/0x810
[  424.379663]  ? ___might_sleep+0x163/0x280
[  424.383959]  __should_failslab+0x121/0x190
[  424.388217]  should_failslab+0x9/0x14
[  424.392151]  kmem_cache_alloc+0x2be/0x710
[  424.396343]  ? __lock_acquire+0x53b/0x4700
[  424.400683]  __kernfs_new_node+0xef/0x690
[  424.404857]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[  424.409773]  ? __lock_acquire+0x53b/0x4700
[  424.414046]  kernfs_new_node+0x99/0x130
[  424.418041]  kernfs_create_dir_ns+0x52/0x160
[  424.422661]  internal_create_group+0x7f8/0xc40
[  424.427269]  ? bd_set_size+0x89/0xb0
[  424.431044]  ? remove_files.isra.0+0x190/0x190
[  424.435669]  sysfs_create_group+0x20/0x30
[  424.439840]  lo_ioctl+0xf8f/0x20d0
[  424.443412]  ? lo_rw_aio+0x1530/0x1530
[  424.447348]  blkdev_ioctl+0xee8/0x1c40
[  424.451262]  ? blkpg_ioctl+0xa90/0xa90
[  424.455198]  ? find_held_lock+0x35/0x130
[  424.459304]  ? debug_check_no_obj_freed+0x200/0x464
[  424.464357]  ? kasan_check_read+0x11/0x20
[  424.468530]  ? __fget+0x340/0x540
[  424.472001]  ? find_held_lock+0x35/0x130
[  424.476080]  ? __fget+0x340/0x540
[  424.479554]  block_ioctl+0xee/0x130
[  424.483195]  ? blkdev_fallocate+0x410/0x410
[  424.487535]  do_vfs_ioctl+0xd6e/0x1390
[  424.491573]  ? ioctl_preallocate+0x210/0x210
[  424.496003]  ? __fget+0x367/0x540
[  424.499483]  ? iterate_fd+0x360/0x360
[  424.503360]  ? do_sys_open+0x31d/0x5d0
[  424.507385]  ? security_file_ioctl+0x93/0xc0
[  424.511812]  ksys_ioctl+0xab/0xd0
[  424.515305]  __x64_sys_ioctl+0x73/0xb0
[  424.519221]  do_syscall_64+0x103/0x610
[  424.523244]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  424.528467] RIP: 0033:0x457ca7
[  424.531674] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  424.550746] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  424.558605] RAX: ffffffffffffffda RBX: 0000000020000428 RCX: 0000000000457ca7
[  424.565869] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  424.573143] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a
[  424.580434] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004
[  424.587708] R13: 0000000000000001 R14: 00000000004db9a8 R15: 0000000000000003
[  424.613516] BTRFS: device fsid ecf6f2a2-2997-48ae-b81e-1b00920efd9a devid 0 transid 5318125732016778760 /dev/loop1
01:59:56 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x80000000005016, &(0x7f0000003ff8)=0x42)

01:59:56 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x3580]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:56 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r0, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r2, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r1, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:56 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x0, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:56 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x0, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:56 executing program 1 (fault-call:0 fault-nth:13):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

[  425.172084] FAULT_INJECTION: forcing a failure.
[  425.172084] name failslab, interval 1, probability 0, space 0, times 0
[  425.183784] CPU: 0 PID: 19295 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  425.190989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  425.200470] Call Trace:
[  425.203226]  dump_stack+0x172/0x1f0
[  425.206881]  should_fail.cold+0xa/0x1b
[  425.210876]  ? kernel_text_address+0x73/0xf0
[  425.215350]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  425.220600]  ? __lock_is_held+0xb6/0x140
[  425.224997]  ? check_preemption_disabled+0x48/0x290
[  425.230047]  __should_failslab+0x121/0x190
[  425.234341]  should_failslab+0x9/0x14
[  425.238242]  kmem_cache_alloc+0x47/0x710
[  425.242354]  ? save_stack+0xa9/0xd0
[  425.246003]  ? save_stack+0x45/0xd0
[  425.249648]  ? __kasan_kmalloc.constprop.0+0xcf/0xe0
[  425.254779]  radix_tree_node_alloc.constprop.0+0x1eb/0x340
[  425.260442]  idr_get_free+0x425/0x8d0
[  425.264298]  idr_alloc_u32+0x19e/0x330
[  425.268215]  ? __fprop_inc_percpu_max+0x230/0x230
[  425.273085]  ? __lock_is_held+0xb6/0x140
[  425.277169]  ? check_preemption_disabled+0x48/0x290
[  425.282212]  idr_alloc_cyclic+0x132/0x270
[  425.286390]  ? idr_alloc+0x150/0x150
[  425.290140]  __kernfs_new_node+0x171/0x690
[  425.294409]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[  425.299187]  ? __lock_acquire+0x53b/0x4700
[  425.303442]  ? _raw_spin_unlock_irq+0x5e/0x90
[  425.307982]  ? __schedule+0x1387/0x1cc0
[  425.312100]  kernfs_new_node+0x99/0x130
[  425.316096]  kernfs_create_dir_ns+0x52/0x160
[  425.320530]  internal_create_group+0x7f8/0xc40
[  425.325170]  ? bd_set_size+0x89/0xb0
[  425.328911]  ? remove_files.isra.0+0x190/0x190
[  425.333529]  sysfs_create_group+0x20/0x30
[  425.337701]  lo_ioctl+0xf8f/0x20d0
[  425.341292]  ? lo_rw_aio+0x1530/0x1530
[  425.345210]  blkdev_ioctl+0xee8/0x1c40
[  425.349121]  ? blkpg_ioctl+0xa90/0xa90
[  425.353031]  ? find_held_lock+0x35/0x130
[  425.357231]  ? debug_check_no_obj_freed+0x200/0x464
[  425.362319]  ? kasan_check_read+0x11/0x20
[  425.366572]  ? __fget+0x340/0x540
[  425.370050]  ? find_held_lock+0x35/0x130
[  425.374135]  ? __fget+0x340/0x540
[  425.377621]  block_ioctl+0xee/0x130
[  425.381266]  ? blkdev_fallocate+0x410/0x410
[  425.385644]  do_vfs_ioctl+0xd6e/0x1390
[  425.389558]  ? ioctl_preallocate+0x210/0x210
[  425.394010]  ? __fget+0x367/0x540
[  425.397485]  ? iterate_fd+0x360/0x360
[  425.401340]  ? do_sys_open+0x31d/0x5d0
[  425.405365]  ? security_file_ioctl+0x93/0xc0
[  425.409799]  ksys_ioctl+0xab/0xd0
[  425.413384]  __x64_sys_ioctl+0x73/0xb0
[  425.417320]  do_syscall_64+0x103/0x610
01:59:56 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r0, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r2, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r1, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:56 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x3c00]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  425.421246]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  425.426696] RIP: 0033:0x457ca7
[  425.429913] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  425.448955] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  425.456793] RAX: ffffffffffffffda RBX: 0000000020000428 RCX: 0000000000457ca7
[  425.464210] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  425.471494] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a
[  425.478776] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004
[  425.486047] R13: 0000000000000001 R14: 00000000004db9a8 R15: 0000000000000003
[  425.510026] BTRFS: device fsid ecf6f2a2-2997-48ae-b81e-1b00920efd9a devid 0 transid 5318125732016778760 /dev/loop1
01:59:56 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x0, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:56 executing program 1 (fault-call:0 fault-nth:14):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

01:59:56 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r0, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r2, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r1, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:56 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x4000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  425.785173] FAULT_INJECTION: forcing a failure.
[  425.785173] name failslab, interval 1, probability 0, space 0, times 0
[  425.796625] CPU: 0 PID: 19322 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  425.803830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  425.813228] Call Trace:
[  425.815847]  dump_stack+0x172/0x1f0
[  425.819505]  should_fail.cold+0xa/0x1b
[  425.823503]  ? kernel_text_address+0x73/0xf0
[  425.827970]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  425.833096]  ? __lock_is_held+0xb6/0x140
[  425.837183]  ? check_preemption_disabled+0x48/0x290
[  425.842233]  __should_failslab+0x121/0x190
[  425.846517]  should_failslab+0x9/0x14
[  425.850349]  kmem_cache_alloc+0x47/0x710
[  425.854655]  ? save_stack+0xa9/0xd0
[  425.858411]  ? save_stack+0x45/0xd0
[  425.862060]  ? __kasan_kmalloc.constprop.0+0xcf/0xe0
[  425.867210]  radix_tree_node_alloc.constprop.0+0x1eb/0x340
[  425.872977]  idr_get_free+0x425/0x8d0
[  425.876816]  idr_alloc_u32+0x19e/0x330
[  425.880736]  ? __fprop_inc_percpu_max+0x230/0x230
[  425.885620]  ? __lock_is_held+0xb6/0x140
[  425.889707]  ? check_preemption_disabled+0x48/0x290
[  425.894863]  idr_alloc_cyclic+0x132/0x270
[  425.899032]  ? idr_alloc+0x150/0x150
[  425.902796]  __kernfs_new_node+0x171/0x690
[  425.907055]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[  425.911910]  ? __lock_acquire+0x53b/0x4700
[  425.916156]  ? _raw_spin_unlock_irq+0x5e/0x90
[  425.920677]  ? __schedule+0x1387/0x1cc0
[  425.924688]  kernfs_new_node+0x99/0x130
[  425.928686]  kernfs_create_dir_ns+0x52/0x160
[  425.933122]  internal_create_group+0x7f8/0xc40
[  425.937747]  ? bd_set_size+0x89/0xb0
[  425.941489]  ? remove_files.isra.0+0x190/0x190
[  425.946118]  sysfs_create_group+0x20/0x30
[  425.950296]  lo_ioctl+0xf8f/0x20d0
[  425.953979]  ? lo_rw_aio+0x1530/0x1530
[  425.957891]  blkdev_ioctl+0xee8/0x1c40
[  425.961965]  ? blkpg_ioctl+0xa90/0xa90
[  425.965864]  ? find_held_lock+0x35/0x130
[  425.969968]  ? debug_check_no_obj_freed+0x200/0x464
[  425.975010]  ? kasan_check_read+0x11/0x20
[  425.979176]  ? __fget+0x340/0x540
[  425.982646]  ? find_held_lock+0x35/0x130
[  425.986877]  ? __fget+0x340/0x540
[  425.990383]  block_ioctl+0xee/0x130
[  425.994063]  ? blkdev_fallocate+0x410/0x410
[  425.998387]  do_vfs_ioctl+0xd6e/0x1390
[  426.002270]  ? ioctl_preallocate+0x210/0x210
[  426.006700]  ? __fget+0x367/0x540
[  426.010165]  ? iterate_fd+0x360/0x360
[  426.013971]  ? do_sys_open+0x31d/0x5d0
[  426.017880]  ? security_file_ioctl+0x93/0xc0
[  426.022346]  ksys_ioctl+0xab/0xd0
[  426.025843]  __x64_sys_ioctl+0x73/0xb0
[  426.029743]  do_syscall_64+0x103/0x610
[  426.033629]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  426.038838] RIP: 0033:0x457ca7
[  426.042059] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  426.061081] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  426.068807] RAX: ffffffffffffffda RBX: 0000000020000428 RCX: 0000000000457ca7
[  426.076093] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  426.083425] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a
[  426.090697] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004
[  426.097974] R13: 0000000000000001 R14: 00000000004db9a8 R15: 0000000000000003
[  426.113679] BTRFS: device fsid ecf6f2a2-2997-48ae-b81e-1b00920efd9a devid 0 transid 5318125732016778760 /dev/loop1
01:59:57 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x80000000005421, &(0x7f0000003ff8)=0x42)

01:59:57 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x0, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:57 executing program 5:
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:57 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x4305]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:57 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r0, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r2, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r1, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:57 executing program 1 (fault-call:0 fault-nth:15):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

[  426.377201] FAULT_INJECTION: forcing a failure.
[  426.377201] name failslab, interval 1, probability 0, space 0, times 0
[  426.407214] CPU: 1 PID: 19344 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  426.414471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  426.423848] Call Trace:
[  426.426467]  dump_stack+0x172/0x1f0
[  426.430122]  should_fail.cold+0xa/0x1b
[  426.434039]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  426.439172]  ? lock_downgrade+0x810/0x810
[  426.443348]  ? ___might_sleep+0x163/0x280
[  426.447526]  __should_failslab+0x121/0x190
[  426.451780]  should_failslab+0x9/0x14
[  426.455634]  kmem_cache_alloc+0x2be/0x710
[  426.459823]  ? find_held_lock+0x35/0x130
[  426.463940]  ? kernfs_activate+0x192/0x1f0
[  426.468239]  __kernfs_new_node+0xef/0x690
[  426.472550]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[  426.477353]  ? lock_downgrade+0x810/0x810
[  426.481529]  ? kasan_check_write+0x14/0x20
[  426.485941]  ? __mutex_unlock_slowpath+0xf8/0x6b0
[  426.490810]  ? wait_for_completion+0x440/0x440
[  426.495539]  kernfs_new_node+0x99/0x130
[  426.499542]  __kernfs_create_file+0x51/0x340
[  426.504004]  sysfs_add_file_mode_ns+0x222/0x560
[  426.508699]  internal_create_group+0x35b/0xc40
[  426.513336]  ? bd_set_size+0x89/0xb0
[  426.517076]  ? remove_files.isra.0+0x190/0x190
[  426.521716]  sysfs_create_group+0x20/0x30
01:59:57 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x4400]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:57 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x0, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  426.525897]  lo_ioctl+0xf8f/0x20d0
[  426.529564]  ? lo_rw_aio+0x1530/0x1530
[  426.533485]  blkdev_ioctl+0xee8/0x1c40
[  426.537525]  ? blkpg_ioctl+0xa90/0xa90
[  426.541431]  ? find_held_lock+0x35/0x130
[  426.545523]  ? debug_check_no_obj_freed+0x200/0x464
[  426.550559]  ? kasan_check_read+0x11/0x20
[  426.554738]  ? __fget+0x340/0x540
[  426.558213]  ? find_held_lock+0x35/0x130
[  426.562315]  ? __fget+0x340/0x540
[  426.565801]  block_ioctl+0xee/0x130
[  426.569451]  ? blkdev_fallocate+0x410/0x410
[  426.573793]  do_vfs_ioctl+0xd6e/0x1390
[  426.577691]  ? ioctl_preallocate+0x210/0x210
[  426.582108]  ? __fget+0x367/0x540
[  426.585621]  ? iterate_fd+0x360/0x360
[  426.589435]  ? do_sys_open+0x31d/0x5d0
[  426.593444]  ? security_file_ioctl+0x93/0xc0
[  426.597846]  ksys_ioctl+0xab/0xd0
[  426.601313]  __x64_sys_ioctl+0x73/0xb0
[  426.605215]  do_syscall_64+0x103/0x610
[  426.609109]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  426.614325] RIP: 0033:0x457ca7
[  426.617528] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  426.636425] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  426.644263] RAX: ffffffffffffffda RBX: 0000000020000428 RCX: 0000000000457ca7
[  426.651546] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  426.658844] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a
[  426.666152] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004
01:59:57 executing program 5:
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  426.673416] R13: 0000000000000001 R14: 00000000004db9a8 R15: 0000000000000003
[  426.704425] BTRFS: device fsid ecf6f2a2-2997-48ae-b81e-1b00920efd9a devid 0 transid 5318125732016778760 /dev/loop1
01:59:57 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x0, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:58 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x4788]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:58 executing program 5:
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:58 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x80000000005450, &(0x7f0000003ff8)=0x42)

01:59:58 executing program 1 (fault-call:0 fault-nth:16):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

01:59:58 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x4888]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:58 executing program 5:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:58 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r0, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r2, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r1, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  427.482113] FAULT_INJECTION: forcing a failure.
[  427.482113] name failslab, interval 1, probability 0, space 0, times 0
[  427.535826] CPU: 1 PID: 19389 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  427.543058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  427.552421] Call Trace:
[  427.555032]  dump_stack+0x172/0x1f0
[  427.558681]  should_fail.cold+0xa/0x1b
[  427.562590]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  427.567726]  ? lock_downgrade+0x810/0x810
[  427.571899]  ? ___might_sleep+0x163/0x280
[  427.576197]  __should_failslab+0x121/0x190
[  427.580479]  should_failslab+0x9/0x14
[  427.584317]  kmem_cache_alloc+0x2be/0x710
[  427.588490]  ? lock_downgrade+0x810/0x810
[  427.592656]  ? kasan_check_read+0x11/0x20
[  427.596853]  __kernfs_new_node+0xef/0x690
[  427.601054]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[  427.605846]  ? wait_for_completion+0x440/0x440
[  427.610464]  ? mutex_unlock+0xd/0x10
[  427.614199]  ? kernfs_activate+0x192/0x1f0
[  427.618461]  kernfs_new_node+0x99/0x130
[  427.622518]  __kernfs_create_file+0x51/0x340
[  427.626974]  sysfs_add_file_mode_ns+0x222/0x560
[  427.631669]  internal_create_group+0x35b/0xc40
01:59:58 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x0, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:58 executing program 5:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  427.636269]  ? bd_set_size+0x89/0xb0
[  427.640034]  ? remove_files.isra.0+0x190/0x190
[  427.644714]  sysfs_create_group+0x20/0x30
[  427.649023]  lo_ioctl+0xf8f/0x20d0
[  427.652626]  ? lo_rw_aio+0x1530/0x1530
[  427.656536]  blkdev_ioctl+0xee8/0x1c40
[  427.660467]  ? blkpg_ioctl+0xa90/0xa90
[  427.664375]  ? find_held_lock+0x35/0x130
[  427.668461]  ? debug_check_no_obj_freed+0x200/0x464
[  427.673528]  ? kasan_check_read+0x11/0x20
[  427.677713]  ? __fget+0x340/0x540
[  427.681183]  ? find_held_lock+0x35/0x130
[  427.685252]  ? __fget+0x340/0x540
[  427.688726]  block_ioctl+0xee/0x130
[  427.692349]  ? blkdev_fallocate+0x410/0x410
[  427.696759]  do_vfs_ioctl+0xd6e/0x1390
[  427.700811]  ? ioctl_preallocate+0x210/0x210
[  427.705221]  ? __fget+0x367/0x540
[  427.708918]  ? iterate_fd+0x360/0x360
[  427.712731]  ? do_sys_open+0x31d/0x5d0
[  427.716667]  ? security_file_ioctl+0x93/0xc0
[  427.721071]  ksys_ioctl+0xab/0xd0
[  427.724524]  __x64_sys_ioctl+0x73/0xb0
[  427.728451]  do_syscall_64+0x103/0x610
[  427.732354]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  427.737555] RIP: 0033:0x457ca7
[  427.740763] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  427.759719] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  427.767462] RAX: ffffffffffffffda RBX: 0000000020000428 RCX: 0000000000457ca7
[  427.774729] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
01:59:59 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x6488]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:59 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x0, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  427.782087] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a
[  427.789506] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004
[  427.796772] R13: 0000000000000001 R14: 00000000004db9a8 R15: 0000000000000003
[  427.811422] BTRFS: device fsid ecf6f2a2-2997-48ae-b81e-1b00920efd9a devid 0 transid 5318125732016778760 /dev/loop1
01:59:59 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x6c00]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

01:59:59 executing program 5:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

01:59:59 executing program 1 (fault-call:0 fault-nth:17):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

[  428.076429] FAULT_INJECTION: forcing a failure.
[  428.076429] name failslab, interval 1, probability 0, space 0, times 0
[  428.103662] CPU: 0 PID: 19424 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  428.110888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  428.120283] Call Trace:
[  428.122860]  dump_stack+0x172/0x1f0
[  428.126474]  should_fail.cold+0xa/0x1b
[  428.130352]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  428.135439]  ? lock_downgrade+0x810/0x810
[  428.139573]  ? ___might_sleep+0x163/0x280
[  428.143709]  __should_failslab+0x121/0x190
[  428.147942]  should_failslab+0x9/0x14
[  428.151791]  kmem_cache_alloc+0x2be/0x710
[  428.155959]  ? lock_downgrade+0x810/0x810
[  428.160143]  ? kasan_check_read+0x11/0x20
[  428.164355]  __kernfs_new_node+0xef/0x690
[  428.168528]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[  428.173281]  ? wait_for_completion+0x440/0x440
[  428.177845]  ? mutex_unlock+0xd/0x10
[  428.181539]  ? kernfs_activate+0x192/0x1f0
[  428.185763]  kernfs_new_node+0x99/0x130
[  428.189735]  __kernfs_create_file+0x51/0x340
[  428.194142]  sysfs_add_file_mode_ns+0x222/0x560
[  428.198793]  internal_create_group+0x35b/0xc40
[  428.203362]  ? bd_set_size+0x89/0xb0
[  428.207087]  ? remove_files.isra.0+0x190/0x190
[  428.211690]  sysfs_create_group+0x20/0x30
[  428.215845]  lo_ioctl+0xf8f/0x20d0
[  428.219388]  ? lo_rw_aio+0x1530/0x1530
[  428.223306]  blkdev_ioctl+0xee8/0x1c40
[  428.227208]  ? blkpg_ioctl+0xa90/0xa90
[  428.231111]  ? find_held_lock+0x35/0x130
[  428.235192]  ? debug_check_no_obj_freed+0x200/0x464
[  428.240195]  ? kasan_check_read+0x11/0x20
[  428.244342]  ? __fget+0x340/0x540
[  428.247793]  ? find_held_lock+0x35/0x130
[  428.251836]  ? __fget+0x340/0x540
[  428.255271]  block_ioctl+0xee/0x130
[  428.258880]  ? blkdev_fallocate+0x410/0x410
[  428.263191]  do_vfs_ioctl+0xd6e/0x1390
[  428.267064]  ? ioctl_preallocate+0x210/0x210
[  428.271481]  ? __fget+0x367/0x540
[  428.274916]  ? iterate_fd+0x360/0x360
[  428.278702]  ? do_sys_open+0x31d/0x5d0
[  428.282576]  ? security_file_ioctl+0x93/0xc0
[  428.286985]  ksys_ioctl+0xab/0xd0
[  428.290454]  __x64_sys_ioctl+0x73/0xb0
[  428.294331]  do_syscall_64+0x103/0x610
[  428.298212]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  428.303411] RIP: 0033:0x457ca7
[  428.306587] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  428.325468] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  428.333159] RAX: ffffffffffffffda RBX: 0000000020000428 RCX: 0000000000457ca7
[  428.340411] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  428.347681] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a
[  428.354938] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004
[  428.362218] R13: 0000000000000001 R14: 00000000004db9a8 R15: 0000000000000003
[  428.386631] BTRFS: device fsid ecf6f2a2-2997-48ae-b81e-1b00920efd9a devid 0 transid 5318125732016778760 /dev/loop1
02:00:00 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x80000000005451, &(0x7f0000003ff8)=0x42)

02:00:00 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x800e]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:00 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:00 executing program 5:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:00 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x0, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:00 executing program 1 (fault-call:0 fault-nth:18):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

[  428.942179] FAULT_INJECTION: forcing a failure.
[  428.942179] name failslab, interval 1, probability 0, space 0, times 0
[  428.977183] CPU: 1 PID: 19442 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  428.984386] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  428.993735] Call Trace:
[  428.996345]  dump_stack+0x172/0x1f0
[  428.999987]  should_fail.cold+0xa/0x1b
[  429.003889]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  429.008998]  ? lock_downgrade+0x810/0x810
[  429.013159]  ? ___might_sleep+0x163/0x280
[  429.017334]  __should_failslab+0x121/0x190
[  429.021615]  should_failslab+0x9/0x14
[  429.025427]  kmem_cache_alloc+0x2be/0x710
[  429.029598]  ? lock_downgrade+0x810/0x810
[  429.033787]  ? kasan_check_read+0x11/0x20
[  429.037969]  __kernfs_new_node+0xef/0x690
02:00:00 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x0, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:00 executing program 5:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  429.042151]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[  429.047644]  ? wait_for_completion+0x440/0x440
[  429.052249]  ? mutex_unlock+0xd/0x10
[  429.055976]  ? kernfs_activate+0x192/0x1f0
[  429.060201]  kernfs_new_node+0x99/0x130
[  429.064171]  __kernfs_create_file+0x51/0x340
[  429.068589]  sysfs_add_file_mode_ns+0x222/0x560
[  429.073263]  internal_create_group+0x35b/0xc40
[  429.077988]  ? bd_set_size+0x89/0xb0
[  429.081713]  ? remove_files.isra.0+0x190/0x190
[  429.086315]  sysfs_create_group+0x20/0x30
[  429.090475]  lo_ioctl+0xf8f/0x20d0
[  429.094009]  ? lo_rw_aio+0x1530/0x1530
[  429.097879]  blkdev_ioctl+0xee8/0x1c40
[  429.101781]  ? blkpg_ioctl+0xa90/0xa90
[  429.105684]  ? find_held_lock+0x35/0x130
[  429.109739]  ? debug_check_no_obj_freed+0x200/0x464
[  429.114753]  ? kasan_check_read+0x11/0x20
[  429.118884]  ? __fget+0x340/0x540
[  429.122335]  ? find_held_lock+0x35/0x130
[  429.126389]  ? __fget+0x340/0x540
[  429.129870]  block_ioctl+0xee/0x130
[  429.133516]  ? blkdev_fallocate+0x410/0x410
[  429.137843]  do_vfs_ioctl+0xd6e/0x1390
[  429.141745]  ? ioctl_preallocate+0x210/0x210
[  429.146136]  ? __fget+0x367/0x540
[  429.149588]  ? iterate_fd+0x360/0x360
[  429.153402]  ? do_sys_open+0x31d/0x5d0
[  429.157300]  ? security_file_ioctl+0x93/0xc0
[  429.161729]  ksys_ioctl+0xab/0xd0
[  429.165188]  __x64_sys_ioctl+0x73/0xb0
[  429.169063]  do_syscall_64+0x103/0x610
[  429.172936]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  429.178118] RIP: 0033:0x457ca7
[  429.181322] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  429.200207] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  429.207896] RAX: ffffffffffffffda RBX: 0000000020000428 RCX: 0000000000457ca7
[  429.215151] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  429.222423] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a
[  429.229933] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004
02:00:00 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x8035]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  429.237194] R13: 0000000000000001 R14: 00000000004db9a8 R15: 0000000000000003
[  429.279541] BTRFS: device fsid ecf6f2a2-2997-48ae-b81e-1b00920efd9a devid 0 transid 5318125732016778760 /dev/loop1
02:00:00 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x0, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:00 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x8100]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:00 executing program 1 (fault-call:0 fault-nth:19):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

[  429.531475] FAULT_INJECTION: forcing a failure.
[  429.531475] name failslab, interval 1, probability 0, space 0, times 0
[  429.547907] CPU: 1 PID: 19476 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  429.555110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  429.564458] Call Trace:
[  429.567065]  dump_stack+0x172/0x1f0
[  429.570682]  should_fail.cold+0xa/0x1b
[  429.574556]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  429.579655]  ? lock_downgrade+0x810/0x810
[  429.583806]  ? ___might_sleep+0x163/0x280
[  429.587975]  __should_failslab+0x121/0x190
[  429.592204]  should_failslab+0x9/0x14
[  429.596034]  kmem_cache_alloc+0x2be/0x710
[  429.600165]  ? lock_downgrade+0x810/0x810
[  429.604309]  ? kasan_check_read+0x11/0x20
[  429.608451]  __kernfs_new_node+0xef/0x690
[  429.612615]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[  429.617386]  ? wait_for_completion+0x440/0x440
[  429.621983]  ? mutex_unlock+0xd/0x10
[  429.625679]  ? kernfs_activate+0x192/0x1f0
[  429.629899]  kernfs_new_node+0x99/0x130
[  429.633895]  __kernfs_create_file+0x51/0x340
[  429.638320]  sysfs_add_file_mode_ns+0x222/0x560
[  429.642994]  internal_create_group+0x35b/0xc40
[  429.647577]  ? bd_set_size+0x89/0xb0
[  429.651310]  ? remove_files.isra.0+0x190/0x190
[  429.655888]  sysfs_create_group+0x20/0x30
[  429.660021]  lo_ioctl+0xf8f/0x20d0
[  429.663593]  ? lo_rw_aio+0x1530/0x1530
[  429.667498]  blkdev_ioctl+0xee8/0x1c40
[  429.671392]  ? blkpg_ioctl+0xa90/0xa90
[  429.675278]  ? find_held_lock+0x35/0x130
[  429.679336]  ? debug_check_no_obj_freed+0x200/0x464
[  429.684368]  ? kasan_check_read+0x11/0x20
[  429.688531]  ? __fget+0x340/0x540
[  429.691965]  ? find_held_lock+0x35/0x130
[  429.696004]  ? __fget+0x340/0x540
[  429.699445]  block_ioctl+0xee/0x130
[  429.703070]  ? blkdev_fallocate+0x410/0x410
[  429.707407]  do_vfs_ioctl+0xd6e/0x1390
[  429.711305]  ? ioctl_preallocate+0x210/0x210
[  429.715695]  ? __fget+0x367/0x540
[  429.719134]  ? iterate_fd+0x360/0x360
[  429.722918]  ? do_sys_open+0x31d/0x5d0
[  429.726823]  ? security_file_ioctl+0x93/0xc0
[  429.731227]  ksys_ioctl+0xab/0xd0
[  429.734671]  __x64_sys_ioctl+0x73/0xb0
[  429.738541]  do_syscall_64+0x103/0x610
[  429.742420]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  429.747591] RIP: 0033:0x457ca7
[  429.750769] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  429.769652] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  429.777357] RAX: ffffffffffffffda RBX: 0000000020000428 RCX: 0000000000457ca7
[  429.784607] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  429.791864] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a
[  429.799131] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004
[  429.806379] R13: 0000000000000001 R14: 00000000004db9a8 R15: 0000000000000003
[  429.823901] BTRFS: device fsid ecf6f2a2-2997-48ae-b81e-1b00920efd9a devid 0 transid 5318125732016778760 /dev/loop1
02:00:01 executing program 3 (fault-call:10 fault-nth:0):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

02:00:01 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x80000000005452, &(0x7f0000003ff8)=0x42)

02:00:01 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x8847]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:01 executing program 5:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:01 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x0, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:01 executing program 1 (fault-call:0 fault-nth:20):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

[  430.156722] FAULT_INJECTION: forcing a failure.
[  430.156722] name failslab, interval 1, probability 0, space 0, times 0
[  430.159243] FAULT_INJECTION: forcing a failure.
[  430.159243] name failslab, interval 1, probability 0, space 0, times 0
[  430.173133] CPU: 0 PID: 19487 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  430.186445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  430.195806] Call Trace:
[  430.198419]  dump_stack+0x172/0x1f0
[  430.202070]  should_fail.cold+0xa/0x1b
[  430.206006]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  430.211115]  ? lock_downgrade+0x810/0x810
[  430.215262]  ? ___might_sleep+0x163/0x280
[  430.219428]  __should_failslab+0x121/0x190
[  430.223662]  should_failslab+0x9/0x14
[  430.227469]  kmem_cache_alloc+0x2be/0x710
[  430.231621]  ? lock_downgrade+0x810/0x810
[  430.235769]  ? kasan_check_read+0x11/0x20
[  430.239931]  __kernfs_new_node+0xef/0x690
[  430.244076]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[  430.248847]  ? wait_for_completion+0x440/0x440
[  430.253462]  ? mutex_unlock+0xd/0x10
[  430.257197]  ? kernfs_activate+0x192/0x1f0
[  430.261476]  kernfs_new_node+0x99/0x130
[  430.265454]  __kernfs_create_file+0x51/0x340
[  430.269887]  sysfs_add_file_mode_ns+0x222/0x560
[  430.274573]  internal_create_group+0x35b/0xc40
[  430.279167]  ? bd_set_size+0x89/0xb0
[  430.282885]  ? remove_files.isra.0+0x190/0x190
[  430.287492]  sysfs_create_group+0x20/0x30
[  430.291660]  lo_ioctl+0xf8f/0x20d0
[  430.296525]  ? lo_rw_aio+0x1530/0x1530
[  430.300416]  blkdev_ioctl+0xee8/0x1c40
[  430.304309]  ? blkpg_ioctl+0xa90/0xa90
[  430.308197]  ? find_held_lock+0x35/0x130
[  430.312307]  ? debug_check_no_obj_freed+0x200/0x464
[  430.317367]  ? kasan_check_read+0x11/0x20
[  430.321551]  ? __fget+0x340/0x540
[  430.325054]  ? find_held_lock+0x35/0x130
[  430.329117]  ? __fget+0x340/0x540
[  430.332577]  block_ioctl+0xee/0x130
[  430.336204]  ? blkdev_fallocate+0x410/0x410
[  430.340525]  do_vfs_ioctl+0xd6e/0x1390
[  430.344426]  ? ioctl_preallocate+0x210/0x210
[  430.348840]  ? __fget+0x367/0x540
[  430.352352]  ? iterate_fd+0x360/0x360
[  430.356182]  ? do_sys_open+0x31d/0x5d0
[  430.360082]  ? security_file_ioctl+0x93/0xc0
[  430.364492]  ksys_ioctl+0xab/0xd0
[  430.367983]  __x64_sys_ioctl+0x73/0xb0
[  430.371876]  do_syscall_64+0x103/0x610
[  430.375771]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  430.380953] RIP: 0033:0x457ca7
[  430.384143] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00
02:00:01 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x0, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:01 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:01 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x8848]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  430.403035] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  430.410772] RAX: ffffffffffffffda RBX: 0000000020000428 RCX: 0000000000457ca7
[  430.418051] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  430.425320] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a
[  430.432585] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004
[  430.439855] R13: 0000000000000001 R14: 00000000004db9a8 R15: 0000000000000003
[  430.447141] CPU: 1 PID: 19492 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #58
[  430.454344] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  430.463710] Call Trace:
[  430.466338]  dump_stack+0x172/0x1f0
[  430.466369]  should_fail.cold+0xa/0x1b
[  430.466385]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  430.466401]  ? lock_downgrade+0x810/0x810
[  430.473914]  ? ___might_sleep+0x163/0x280
[  430.473948]  __should_failslab+0x121/0x190
[  430.473965]  should_failslab+0x9/0x14
[  430.473979]  kmem_cache_alloc_trace+0x2d1/0x760
[  430.473992]  ? lock_acquire+0x16f/0x3f0
[  430.491604]  ? snd_pcm_oss_change_params+0xa4/0xd0
[  430.491624]  snd_pcm_oss_change_params_locked+0x1a7/0x3750
[  430.491643]  ? __mutex_lock+0x3cd/0x1310
[  430.491660]  ? __lock_acquire+0x53b/0x4700
[  430.514622]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  430.514640]  ? mutex_trylock+0x185/0x1e0
[  430.514656]  ? _snd_pcm_hw_param_set.constprop.0+0x590/0x590
[  430.528474]  ? mark_held_locks+0x100/0x100
[  430.528488]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  430.528503]  ? kstrtouint+0x142/0x1a0
[  430.528517]  ? _kstrtoul+0x170/0x170
[  430.528536]  snd_pcm_oss_change_params+0x7b/0xd0
[  430.533258] BTRFS: device fsid ecf6f2a2-2997-48ae-b81e-1b00920efd9a devid 0 transid 5318125732016778760 /dev/loop1
[  430.538376]  snd_pcm_oss_get_active_substream+0x136/0x190
[  430.538394]  snd_pcm_oss_get_formats+0x7b/0x340
[  430.538422]  ? snd_pcm_oss_set_channels+0x310/0x310
[  430.538454]  snd_pcm_oss_ioctl+0x12fd/0x33b0
[  430.551539]  ? __f_unlock_pos+0x19/0x20
[  430.551559]  ? snd_pcm_oss_release+0x290/0x290
[  430.551571]  ? __fget+0x340/0x540
[  430.551585]  ? find_held_lock+0x35/0x130
[  430.551600]  ? __fget+0x340/0x540
[  430.570556]  ? snd_pcm_oss_release+0x290/0x290
[  430.570585]  do_vfs_ioctl+0xd6e/0x1390
[  430.570603]  ? ioctl_preallocate+0x210/0x210
[  430.570617]  ? __fget+0x367/0x540
[  430.570633]  ? iterate_fd+0x360/0x360
[  430.629736]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  430.635303]  ? fput+0x128/0x1a0
[  430.638633]  ? security_file_ioctl+0x93/0xc0
[  430.643035]  ksys_ioctl+0xab/0xd0
[  430.646486]  __x64_sys_ioctl+0x73/0xb0
[  430.650376]  do_syscall_64+0x103/0x610
[  430.654265]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  430.659482] RIP: 0033:0x457e39
[  430.662669] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  430.681563] RSP: 002b:00007f56f02fdc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  430.689279] RAX: ffffffffffffffda RBX: 00007f56f02fdc90 RCX: 0000000000457e39
[  430.696542] RDX: 0000000020003ff8 RSI: 00800000c0045005 RDI: 0000000000000004
[  430.703821] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000
[  430.711103] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f56f02fe6d4
[  430.718368] R13: 00000000004c311e R14: 00000000004d5c00 R15: 0000000000000005
02:00:01 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:02 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x8864]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:02 executing program 3 (fault-call:10 fault-nth:1):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

02:00:02 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  431.010048] FAULT_INJECTION: forcing a failure.
[  431.010048] name failslab, interval 1, probability 0, space 0, times 0
[  431.037580] CPU: 0 PID: 19528 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #58
[  431.044796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  431.054156] Call Trace:
[  431.056755]  dump_stack+0x172/0x1f0
[  431.060394]  should_fail.cold+0xa/0x1b
[  431.064304]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  431.069431]  ? lock_downgrade+0x810/0x810
[  431.073585]  ? ___might_sleep+0x163/0x280
[  431.077744]  __should_failslab+0x121/0x190
[  431.081981]  should_failslab+0x9/0x14
[  431.085779]  kmem_cache_alloc_trace+0x2d1/0x760
[  431.090449]  ? lock_acquire+0x16f/0x3f0
[  431.094432]  ? snd_pcm_oss_change_params+0xa4/0xd0
[  431.099362]  snd_pcm_oss_change_params_locked+0x1df/0x3750
[  431.105005]  ? __mutex_lock+0x3cd/0x1310
[  431.109070]  ? __lock_acquire+0x53b/0x4700
[  431.113330]  ? mutex_trylock+0x185/0x1e0
[  431.117393]  ? _snd_pcm_hw_param_set.constprop.0+0x590/0x590
[  431.123193]  ? mark_held_locks+0x100/0x100
[  431.127427]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  431.132465]  ? kstrtouint+0x142/0x1a0
[  431.136283]  ? _kstrtoul+0x170/0x170
[  431.140004]  snd_pcm_oss_change_params+0x7b/0xd0
[  431.144756]  snd_pcm_oss_get_active_substream+0x136/0x190
[  431.150299]  snd_pcm_oss_get_formats+0x7b/0x340
[  431.154969]  ? snd_pcm_oss_set_channels+0x310/0x310
[  431.159993]  snd_pcm_oss_ioctl+0x12fd/0x33b0
[  431.164404]  ? __f_unlock_pos+0x19/0x20
[  431.168377]  ? snd_pcm_oss_release+0x290/0x290
[  431.172953]  ? __fget+0x340/0x540
[  431.176401]  ? find_held_lock+0x35/0x130
[  431.180451]  ? __fget+0x340/0x540
[  431.183901]  ? snd_pcm_oss_release+0x290/0x290
[  431.188483]  do_vfs_ioctl+0xd6e/0x1390
[  431.192384]  ? ioctl_preallocate+0x210/0x210
[  431.196798]  ? __fget+0x367/0x540
[  431.200247]  ? iterate_fd+0x360/0x360
[  431.204049]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  431.209585]  ? fput+0x128/0x1a0
[  431.212864]  ? security_file_ioctl+0x93/0xc0
[  431.217268]  ksys_ioctl+0xab/0xd0
[  431.220730]  __x64_sys_ioctl+0x73/0xb0
[  431.224839]  do_syscall_64+0x103/0x610
[  431.228727]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  431.233932] RIP: 0033:0x457e39
[  431.237117] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  431.256009] RSP: 002b:00007f56f02fdc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  431.263718] RAX: ffffffffffffffda RBX: 00007f56f02fdc90 RCX: 0000000000457e39
[  431.270976] RDX: 0000000020003ff8 RSI: 00800000c0045005 RDI: 0000000000000004
[  431.278236] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000
[  431.285496] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f56f02fe6d4
[  431.292759] R13: 00000000004c311e R14: 00000000004d5c00 R15: 0000000000000005
02:00:03 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x80000000005460, &(0x7f0000003ff8)=0x42)

02:00:03 executing program 1 (fault-call:0 fault-nth:21):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

02:00:03 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x8906]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:03 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:03 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x0, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:03 executing program 3 (fault-call:10 fault-nth:2):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

[  431.895081] FAULT_INJECTION: forcing a failure.
[  431.895081] name failslab, interval 1, probability 0, space 0, times 0
[  431.919419] CPU: 1 PID: 19540 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  431.926662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  431.928520] FAULT_INJECTION: forcing a failure.
[  431.928520] name failslab, interval 1, probability 0, space 0, times 0
[  431.936015] Call Trace:
[  431.936041]  dump_stack+0x172/0x1f0
[  431.936062]  should_fail.cold+0xa/0x1b
[  431.936080]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  431.936097]  ? lock_downgrade+0x810/0x810
[  431.936118]  ? ___might_sleep+0x163/0x280
[  431.970783]  __should_failslab+0x121/0x190
[  431.975034]  should_failslab+0x9/0x14
[  431.978840]  __kmalloc+0x2dc/0x740
[  431.982389]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  431.987861]  ? rcu_read_lock_sched_held+0x110/0x130
[  431.992893]  ? kobject_get_path+0xc4/0x1b0
[  431.997130]  kobject_get_path+0xc4/0x1b0
[  432.001198]  kobject_uevent_env+0x31f/0x1030
[  432.005629]  kobject_uevent+0x20/0x26
[  432.009434]  lo_ioctl+0x100b/0x20d0
[  432.013069]  ? lo_rw_aio+0x1530/0x1530
[  432.016964]  blkdev_ioctl+0xee8/0x1c40
[  432.020873]  ? blkpg_ioctl+0xa90/0xa90
[  432.024783]  ? find_held_lock+0x35/0x130
[  432.028865]  ? debug_check_no_obj_freed+0x200/0x464
[  432.033888]  ? kasan_check_read+0x11/0x20
[  432.038043]  ? __fget+0x340/0x540
[  432.041498]  ? find_held_lock+0x35/0x130
[  432.045589]  ? __fget+0x340/0x540
[  432.049044]  block_ioctl+0xee/0x130
[  432.052683]  ? blkdev_fallocate+0x410/0x410
[  432.057005]  do_vfs_ioctl+0xd6e/0x1390
[  432.060931]  ? ioctl_preallocate+0x210/0x210
[  432.065350]  ? __fget+0x367/0x540
[  432.068840]  ? iterate_fd+0x360/0x360
[  432.072643]  ? do_sys_open+0x31d/0x5d0
[  432.076577]  ? security_file_ioctl+0x93/0xc0
[  432.081002]  ksys_ioctl+0xab/0xd0
[  432.084477]  __x64_sys_ioctl+0x73/0xb0
[  432.088382]  do_syscall_64+0x103/0x610
[  432.092308]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  432.097537] RIP: 0033:0x457ca7
[  432.100745] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  432.119979] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  432.127698] RAX: ffffffffffffffda RBX: 0000000020000428 RCX: 0000000000457ca7
[  432.134976] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
02:00:03 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:03 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xe803]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  432.142257] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a
[  432.149559] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004
[  432.156867] R13: 0000000000000001 R14: 00000000004db9a8 R15: 0000000000000003
[  432.164261] CPU: 0 PID: 19543 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #58
[  432.171507] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  432.180855] Call Trace:
[  432.183478]  dump_stack+0x172/0x1f0
[  432.187151]  should_fail.cold+0xa/0x1b
[  432.191042]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  432.196149]  ? lock_downgrade+0x810/0x810
[  432.200320]  ? ___might_sleep+0x163/0x280
[  432.204493]  __should_failslab+0x121/0x190
[  432.208771]  should_failslab+0x9/0x14
[  432.212577]  kmem_cache_alloc_trace+0x2d1/0x760
[  432.217261]  ? lock_acquire+0x16f/0x3f0
[  432.221293]  ? snd_pcm_oss_change_params+0xa4/0xd0
[  432.226238]  snd_pcm_oss_change_params_locked+0x217/0x3750
[  432.226257]  ? __mutex_lock+0x3cd/0x1310
[  432.226281]  ? __lock_acquire+0x53b/0x4700
[  432.226299]  ? mutex_trylock+0x185/0x1e0
[  432.226321]  ? _snd_pcm_hw_param_set.constprop.0+0x590/0x590
[  432.226336]  ? mark_held_locks+0x100/0x100
[  432.236463] BTRFS: device fsid ecf6f2a2-2997-48ae-b81e-1b00920efd9a devid 0 transid 5318125732016778760 /dev/loop1
[  432.240259]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  432.240281]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  432.240298]  ? lockdep_hardirqs_on+0x415/0x5d0
[  432.278878]  snd_pcm_oss_change_params+0x7b/0xd0
[  432.283630]  snd_pcm_oss_get_active_substream+0x136/0x190
[  432.289164]  snd_pcm_oss_get_formats+0x7b/0x340
[  432.293838]  ? snd_pcm_oss_set_channels+0x310/0x310
[  432.298845]  ? snd_pcm_oss_ioctl+0x12f5/0x33b0
[  432.303431]  ? snd_pcm_oss_get_formats+0xf/0x340
[  432.308187]  snd_pcm_oss_ioctl+0x12fd/0x33b0
[  432.312600]  ? __f_unlock_pos+0x19/0x20
[  432.316589]  ? snd_pcm_oss_release+0x290/0x290
[  432.321159]  ? __fget+0x340/0x540
[  432.324617]  ? find_held_lock+0x35/0x130
[  432.328674]  ? __fget+0x340/0x540
[  432.332130]  ? snd_pcm_oss_release+0x290/0x290
[  432.336704]  do_vfs_ioctl+0xd6e/0x1390
[  432.340587]  ? ioctl_preallocate+0x210/0x210
[  432.345006]  ? __fget+0x367/0x540
[  432.348488]  ? iterate_fd+0x360/0x360
[  432.352305]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  432.357085]  ? security_file_ioctl+0x93/0xc0
[  432.361493]  ksys_ioctl+0xab/0xd0
[  432.364939]  __x64_sys_ioctl+0x73/0xb0
[  432.368820]  do_syscall_64+0x103/0x610
[  432.372706]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  432.377892] RIP: 0033:0x457e39
[  432.381091] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  432.400026] RSP: 002b:00007f56f02fdc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  432.407731] RAX: ffffffffffffffda RBX: 00007f56f02fdc90 RCX: 0000000000457e39
[  432.414991] RDX: 0000000020003ff8 RSI: 00800000c0045005 RDI: 0000000000000004
[  432.422281] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000
[  432.429600] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f56f02fe6d4
[  432.436873] R13: 00000000004c311e R14: 00000000004d5c00 R15: 0000000000000005
02:00:03 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xf000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:03 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x0, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:03 executing program 1 (fault-call:0 fault-nth:22):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

02:00:03 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  432.687373] FAULT_INJECTION: forcing a failure.
[  432.687373] name failslab, interval 1, probability 0, space 0, times 0
[  432.716546] CPU: 1 PID: 19575 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  432.723758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  432.733103] Call Trace:
[  432.735683]  dump_stack+0x172/0x1f0
[  432.739315]  should_fail.cold+0xa/0x1b
[  432.743245]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  432.748363]  ? lock_downgrade+0x810/0x810
[  432.752498]  ? ___might_sleep+0x163/0x280
[  432.756634]  __should_failslab+0x121/0x190
[  432.760857]  should_failslab+0x9/0x14
[  432.764651]  kmem_cache_alloc_trace+0x2d1/0x760
[  432.769331]  kobject_uevent_env+0x2fb/0x1030
[  432.773727]  kobject_uevent+0x20/0x26
[  432.777530]  lo_ioctl+0x100b/0x20d0
[  432.781165]  ? lo_rw_aio+0x1530/0x1530
[  432.785065]  blkdev_ioctl+0xee8/0x1c40
[  432.788934]  ? blkpg_ioctl+0xa90/0xa90
[  432.792800]  ? find_held_lock+0x35/0x130
[  432.796860]  ? debug_check_no_obj_freed+0x200/0x464
[  432.801858]  ? kasan_check_read+0x11/0x20
[  432.806004]  ? __fget+0x340/0x540
[  432.809438]  ? find_held_lock+0x35/0x130
[  432.813479]  ? __fget+0x340/0x540
[  432.816914]  block_ioctl+0xee/0x130
[  432.820533]  ? blkdev_fallocate+0x410/0x410
[  432.824846]  do_vfs_ioctl+0xd6e/0x1390
[  432.828745]  ? ioctl_preallocate+0x210/0x210
[  432.833139]  ? __fget+0x367/0x540
[  432.836592]  ? iterate_fd+0x360/0x360
[  432.840387]  ? do_sys_open+0x31d/0x5d0
[  432.844268]  ? security_file_ioctl+0x93/0xc0
[  432.848666]  ksys_ioctl+0xab/0xd0
[  432.852108]  __x64_sys_ioctl+0x73/0xb0
[  432.856002]  do_syscall_64+0x103/0x610
[  432.859902]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  432.865069] RIP: 0033:0x457ca7
[  432.868252] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  432.887163] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  432.894862] RAX: ffffffffffffffda RBX: 0000000020000428 RCX: 0000000000457ca7
[  432.902135] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  432.909384] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a
[  432.916640] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004
[  432.923924] R13: 0000000000000001 R14: 00000000004db9a8 R15: 0000000000000003
[  432.958783] BTRFS: device fsid ecf6f2a2-2997-48ae-b81e-1b00920efd9a devid 0 transid 5318125732016778760 /dev/loop1
02:00:04 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x80000040045010, &(0x7f0000003ff8)=0x42)

02:00:04 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:04 executing program 3 (fault-call:10 fault-nth:3):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

02:00:04 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xf401]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:04 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x0, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:04 executing program 1 (fault-call:0 fault-nth:23):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

[  433.543004] FAULT_INJECTION: forcing a failure.
[  433.543004] name failslab, interval 1, probability 0, space 0, times 0
[  433.569146] FAULT_INJECTION: forcing a failure.
[  433.569146] name failslab, interval 1, probability 0, space 0, times 0
[  433.575939] CPU: 1 PID: 19592 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #58
[  433.587963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  433.597319] Call Trace:
[  433.599931]  dump_stack+0x172/0x1f0
[  433.603623]  should_fail.cold+0xa/0x1b
[  433.607540]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  433.612646]  ? lock_downgrade+0x810/0x810
[  433.616829]  ? ___might_sleep+0x163/0x280
[  433.620987]  __should_failslab+0x121/0x190
[  433.625227]  should_failslab+0x9/0x14
[  433.629037]  __kmalloc+0x2dc/0x740
[  433.632614]  ? unwind_get_return_address+0x61/0xa0
[  433.637585]  ? __save_stack_trace+0x8a/0xf0
[  433.641916]  ? constrain_params_by_rules+0x118/0x1180
[  433.647122]  constrain_params_by_rules+0x118/0x1180
[  433.652150]  ? save_stack+0xa9/0xd0
[  433.655785]  ? save_stack+0x45/0xd0
[  433.659450]  ? kmem_cache_alloc_trace+0x151/0x760
[  433.664314]  ? snd_pcm_oss_change_params_locked+0x217/0x3750
[  433.670151]  ? snd_pcm_mmap_status_fault+0x240/0x240
[  433.675283]  ? snd_pcm_oss_ioctl+0x12fd/0x33b0
[  433.679873]  ? do_vfs_ioctl+0xd6e/0x1390
[  433.683941]  ? ksys_ioctl+0xab/0xd0
[  433.687578]  ? __x64_sys_ioctl+0x73/0xb0
[  433.691653]  ? do_syscall_64+0x103/0x610
[  433.695733]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  433.701118]  ? mark_held_locks+0x100/0x100
[  433.705393]  ? __lock_acquire+0x53b/0x4700
[  433.709627]  ? lock_downgrade+0x810/0x810
[  433.713799]  ? __lock_is_held+0xb6/0x140
[  433.717888]  ? check_preemption_disabled+0x48/0x290
[  433.722907]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  433.727938]  ? snd_interval_refine+0x42a/0x720
[  433.732556]  snd_pcm_hw_refine+0xbf9/0xf20
[  433.736797]  ? constrain_params_by_rules+0x1180/0x1180
[  433.742088]  ? snd_pcm_oss_change_params_locked+0x217/0x3750
[  433.747885]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  433.753332]  ? rcu_read_lock_sched_held+0x110/0x130
[  433.758357]  ? memset+0x32/0x40
[  433.761692]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  433.767270]  ? _snd_pcm_hw_param_min+0x29d/0x560
[  433.772062]  snd_pcm_oss_change_params_locked+0x6c2/0x3750
[  433.777708]  ? __lock_acquire+0x53b/0x4700
[  433.781962]  ? mutex_trylock+0x180/0x1e0
[  433.786049]  ? _snd_pcm_hw_param_set.constprop.0+0x590/0x590
[  433.791855]  ? mark_held_locks+0x100/0x100
[  433.796092]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  433.801107]  ? _kstrtoul+0x170/0x170
[  433.804846]  snd_pcm_oss_change_params+0x7b/0xd0
[  433.809615]  snd_pcm_oss_get_active_substream+0x136/0x190
[  433.815174]  snd_pcm_oss_get_formats+0x7b/0x340
[  433.819845]  ? snd_pcm_oss_set_channels+0x310/0x310
[  433.824867]  snd_pcm_oss_ioctl+0x12fd/0x33b0
[  433.829308]  ? __f_unlock_pos+0x19/0x20
[  433.833346]  ? snd_pcm_oss_release+0x290/0x290
[  433.837923]  ? __fget+0x340/0x540
[  433.841385]  ? find_held_lock+0x35/0x130
[  433.845443]  ? __fget+0x340/0x540
[  433.848901]  ? snd_pcm_oss_release+0x290/0x290
[  433.853500]  do_vfs_ioctl+0xd6e/0x1390
[  433.857405]  ? ioctl_preallocate+0x210/0x210
[  433.861809]  ? __fget+0x367/0x540
[  433.865302]  ? iterate_fd+0x360/0x360
[  433.869114]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  433.874683]  ? fput+0x128/0x1a0
[  433.877975]  ? security_file_ioctl+0x93/0xc0
[  433.882392]  ksys_ioctl+0xab/0xd0
[  433.885859]  __x64_sys_ioctl+0x73/0xb0
[  433.889765]  do_syscall_64+0x103/0x610
[  433.893669]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  433.898857] RIP: 0033:0x457e39
[  433.902047] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  433.920941] RSP: 002b:00007f56f02fdc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  433.928647] RAX: ffffffffffffffda RBX: 00007f56f02fdc90 RCX: 0000000000457e39
[  433.935928] RDX: 0000000020003ff8 RSI: 00800000c0045005 RDI: 0000000000000004
02:00:05 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:05 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x20480]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  433.943198] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000
[  433.950462] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f56f02fe6d4
[  433.957725] R13: 00000000004c311e R14: 00000000004d5c00 R15: 0000000000000005
[  433.965018] CPU: 0 PID: 19596 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  433.972231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  433.981581] Call Trace:
[  433.984177]  dump_stack+0x172/0x1f0
[  433.987810]  should_fail.cold+0xa/0x1b
[  433.991698]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  433.996793]  ? lock_downgrade+0x810/0x810
[  434.000923]  ? ___might_sleep+0x163/0x280
[  434.005069]  __should_failslab+0x121/0x190
[  434.009341]  should_failslab+0x9/0x14
[  434.013133]  kmem_cache_alloc_node+0x265/0x710
[  434.017697]  ? find_held_lock+0x35/0x130
[  434.021776]  __alloc_skb+0xd5/0x5e0
[  434.025437]  ? skb_scrub_packet+0x440/0x440
[  434.029753]  ? kasan_check_read+0x11/0x20
[  434.033888]  alloc_uevent_skb+0x83/0x1e2
[  434.037961]  kobject_uevent_env+0xa63/0x1030
[  434.042413]  kobject_uevent+0x20/0x26
[  434.046227]  lo_ioctl+0x100b/0x20d0
[  434.049850]  ? lo_rw_aio+0x1530/0x1530
[  434.053743]  blkdev_ioctl+0xee8/0x1c40
[  434.057645]  ? blkpg_ioctl+0xa90/0xa90
[  434.061529]  ? find_held_lock+0x35/0x130
[  434.065612]  ? debug_check_no_obj_freed+0x200/0x464
[  434.070622]  ? kasan_check_read+0x11/0x20
[  434.074809]  ? __fget+0x340/0x540
[  434.078268]  ? find_held_lock+0x35/0x130
[  434.082337]  ? __fget+0x340/0x540
[  434.085794]  block_ioctl+0xee/0x130
[  434.089410]  ? blkdev_fallocate+0x410/0x410
[  434.093722]  do_vfs_ioctl+0xd6e/0x1390
[  434.097602]  ? ioctl_preallocate+0x210/0x210
[  434.102017]  ? __fget+0x367/0x540
[  434.105482]  ? iterate_fd+0x360/0x360
[  434.109347]  ? do_sys_open+0x31d/0x5d0
[  434.113238]  ? security_file_ioctl+0x93/0xc0
[  434.117654]  ksys_ioctl+0xab/0xd0
[  434.121102]  __x64_sys_ioctl+0x73/0xb0
[  434.124984]  do_syscall_64+0x103/0x610
[  434.129141]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  434.134319] RIP: 0033:0x457ca7
[  434.137522] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  434.156417] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  434.164122] RAX: ffffffffffffffda RBX: 0000000020000428 RCX: 0000000000457ca7
[  434.171659] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  434.178937] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a
[  434.186207] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004
[  434.193470] R13: 0000000000000001 R14: 00000000004db9a8 R15: 0000000000000003
02:00:05 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x0, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  434.242001] BTRFS: device fsid ecf6f2a2-2997-48ae-b81e-1b00920efd9a devid 0 transid 5318125732016778760 /dev/loop1
02:00:05 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xf0ffff]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:05 executing program 3 (fault-call:10 fault-nth:4):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

02:00:05 executing program 1 (fault-call:0 fault-nth:24):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

[  434.467880] FAULT_INJECTION: forcing a failure.
[  434.467880] name failslab, interval 1, probability 0, space 0, times 0
[  434.499907] FAULT_INJECTION: forcing a failure.
[  434.499907] name failslab, interval 1, probability 0, space 0, times 0
[  434.509905] CPU: 1 PID: 19623 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #58
[  434.518306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  434.527656] Call Trace:
[  434.530240]  dump_stack+0x172/0x1f0
[  434.533869]  should_fail.cold+0xa/0x1b
[  434.537763]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  434.542873]  ? lock_downgrade+0x810/0x810
[  434.547019]  ? ___might_sleep+0x163/0x280
[  434.551184]  __should_failslab+0x121/0x190
[  434.555418]  should_failslab+0x9/0x14
[  434.559217]  kmem_cache_alloc_trace+0x2d1/0x760
[  434.563884]  ? snd_pcm_oss_change_params_locked+0x4ab/0x3750
[  434.569688]  snd_pcm_oss_change_params_locked+0x75c/0x3750
[  434.575320]  ? __lock_acquire+0x53b/0x4700
[  434.579561]  ? _snd_pcm_hw_param_set.constprop.0+0x590/0x590
[  434.585365]  ? mark_held_locks+0x100/0x100
[  434.589621]  ? trace_hardirqs_on_caller+0x6a/0x220
[  434.594542]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  434.599574]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  434.604348]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  434.609134]  snd_pcm_oss_change_params+0x7b/0xd0
[  434.613883]  snd_pcm_oss_get_active_substream+0x136/0x190
[  434.619429]  snd_pcm_oss_get_formats+0x7b/0x340
[  434.624091]  ? snd_pcm_oss_set_channels+0x310/0x310
[  434.629107]  snd_pcm_oss_ioctl+0x12fd/0x33b0
[  434.633509]  ? retint_kernel+0x2d/0x2d
[  434.637399]  ? trace_hardirqs_on_caller+0x6a/0x220
[  434.642336]  ? snd_pcm_oss_release+0x290/0x290
[  434.646908]  ? __fget+0x340/0x540
[  434.650367]  ? find_held_lock+0x35/0x130
[  434.654438]  ? __fget+0x340/0x540
[  434.657911]  ? snd_pcm_oss_release+0x290/0x290
[  434.662486]  do_vfs_ioctl+0xd6e/0x1390
[  434.666381]  ? ioctl_preallocate+0x210/0x210
[  434.670795]  ? __fget+0x367/0x540
[  434.674253]  ? iterate_fd+0x360/0x360
[  434.678070]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  434.682836]  ? security_file_ioctl+0x93/0xc0
[  434.687240]  ksys_ioctl+0xab/0xd0
[  434.690707]  __x64_sys_ioctl+0x73/0xb0
[  434.694628]  do_syscall_64+0x103/0x610
[  434.698514]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  434.703694] RIP: 0033:0x457e39
[  434.706901] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  434.725806] RSP: 002b:00007f56f02fdc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  434.733515] RAX: ffffffffffffffda RBX: 00007f56f02fdc90 RCX: 0000000000457e39
[  434.740772] RDX: 0000000020003ff8 RSI: 00800000c0045005 RDI: 0000000000000004
[  434.748035] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000
[  434.755297] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f56f02fe6d4
02:00:05 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x80000040045017, &(0x7f0000003ff8)=0x42)

02:00:05 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x1000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:05 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x0, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:05 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  434.762576] R13: 00000000004c311e R14: 00000000004d5c00 R15: 0000000000000005
[  434.769967] CPU: 0 PID: 19626 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  434.777171] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  434.786561] Call Trace:
[  434.789163]  dump_stack+0x172/0x1f0
[  434.792793]  should_fail.cold+0xa/0x1b
[  434.796696]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  434.801825]  ? lock_downgrade+0x810/0x810
[  434.805983]  ? ___might_sleep+0x163/0x280
[  434.810149]  __should_failslab+0x121/0x190
[  434.814390]  should_failslab+0x9/0x14
02:00:06 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x2000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  434.818201]  kmem_cache_alloc_node_trace+0x270/0x720
[  434.823342]  ? __alloc_skb+0xd5/0x5e0
[  434.827155]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  434.832622]  __kmalloc_node_track_caller+0x3d/0x70
[  434.837562]  __kmalloc_reserve.isra.0+0x40/0xf0
[  434.842251]  __alloc_skb+0x10b/0x5e0
[  434.845974]  ? skb_scrub_packet+0x440/0x440
[  434.850310]  ? kasan_check_read+0x11/0x20
[  434.854479]  alloc_uevent_skb+0x83/0x1e2
[  434.858546]  kobject_uevent_env+0xa63/0x1030
[  434.862960]  kobject_uevent+0x20/0x26
[  434.866759]  lo_ioctl+0x100b/0x20d0
[  434.870373]  ? lo_rw_aio+0x1530/0x1530
[  434.874281]  blkdev_ioctl+0xee8/0x1c40
[  434.878188]  ? blkpg_ioctl+0xa90/0xa90
[  434.882068]  ? find_held_lock+0x35/0x130
[  434.886127]  ? debug_check_no_obj_freed+0x200/0x464
[  434.891132]  ? kasan_check_read+0x11/0x20
[  434.895267]  ? __fget+0x340/0x540
[  434.898710]  ? find_held_lock+0x35/0x130
[  434.902760]  ? __fget+0x340/0x540
[  434.906214]  block_ioctl+0xee/0x130
[  434.909834]  ? blkdev_fallocate+0x410/0x410
[  434.914149]  do_vfs_ioctl+0xd6e/0x1390
02:00:06 executing program 3 (fault-call:10 fault-nth:5):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

[  434.918036]  ? ioctl_preallocate+0x210/0x210
[  434.922437]  ? __fget+0x367/0x540
[  434.925899]  ? iterate_fd+0x360/0x360
[  434.929684]  ? do_sys_open+0x31d/0x5d0
[  434.933585]  ? security_file_ioctl+0x93/0xc0
[  434.937993]  ksys_ioctl+0xab/0xd0
[  434.941443]  __x64_sys_ioctl+0x73/0xb0
[  434.945338]  do_syscall_64+0x103/0x610
[  434.949226]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  434.954413] RIP: 0033:0x457ca7
[  434.957619] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  434.976505] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  434.984215] RAX: ffffffffffffffda RBX: 0000000020000428 RCX: 0000000000457ca7
[  434.991508] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  434.998758] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a
[  435.006027] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004
[  435.013308] R13: 0000000000000001 R14: 00000000004db9a8 R15: 0000000000000003
[  435.048023] BTRFS: device fsid ecf6f2a2-2997-48ae-b81e-1b00920efd9a devid 0 transid 5318125732016778760 /dev/loop1
02:00:06 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x3000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:06 executing program 1 (fault-call:0 fault-nth:25):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

[  435.163336] FAULT_INJECTION: forcing a failure.
[  435.163336] name failslab, interval 1, probability 0, space 0, times 0
[  435.212934] CPU: 0 PID: 19648 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #58
[  435.220154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  435.229767] Call Trace:
[  435.232394]  dump_stack+0x172/0x1f0
[  435.236031]  should_fail.cold+0xa/0x1b
[  435.239931]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  435.245034]  ? lock_downgrade+0x810/0x810
[  435.249184]  ? ___might_sleep+0x163/0x280
[  435.253362]  __should_failslab+0x121/0x190
[  435.257594]  should_failslab+0x9/0x14
[  435.261420]  __kmalloc+0x2dc/0x740
[  435.264959]  ? unwind_get_return_address+0x61/0xa0
[  435.269892]  ? __save_stack_trace+0x8a/0xf0
[  435.274224]  ? constrain_params_by_rules+0x118/0x1180
[  435.279415]  constrain_params_by_rules+0x118/0x1180
[  435.284431]  ? save_stack+0xa9/0xd0
[  435.288051]  ? save_stack+0x45/0xd0
[  435.291670]  ? kmem_cache_alloc_trace+0x151/0x760
[  435.296522]  ? snd_pcm_oss_change_params_locked+0x75c/0x3750
[  435.302325]  ? snd_pcm_mmap_status_fault+0x240/0x240
[  435.307421]  ? snd_pcm_oss_ioctl+0x12fd/0x33b0
[  435.312004]  ? do_vfs_ioctl+0xd6e/0x1390
[  435.316066]  ? ksys_ioctl+0xab/0xd0
[  435.319755]  ? __x64_sys_ioctl+0x73/0xb0
[  435.323812]  ? do_syscall_64+0x103/0x610
[  435.327877]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  435.333257]  ? mark_held_locks+0x100/0x100
[  435.337503]  ? __lock_acquire+0x53b/0x4700
[  435.341773]  ? lock_downgrade+0x810/0x810
[  435.345953]  ? fs_reclaim_acquire+0x20/0x20
[  435.350267]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  435.355807]  ? snd_interval_refine+0x42a/0x720
[  435.360382]  snd_pcm_hw_refine+0xbf9/0xf20
[  435.364612]  ? constrain_params_by_rules+0x1180/0x1180
[  435.369879]  ? snd_interval_refine+0x42a/0x720
[  435.374458]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  435.379985]  ? _snd_pcm_hw_param_set.constprop.0+0x282/0x590
[  435.385802]  ? rcu_read_lock_sched_held+0x110/0x130
[  435.390824]  ? snd_pcm_oss_open+0x60/0x60
[  435.394975]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  435.400506]  ? _snd_pcm_hw_param_min+0x29d/0x560
[  435.405289]  snd_pcm_oss_change_params_locked+0xc99/0x3750
[  435.410978]  ? _snd_pcm_hw_param_set.constprop.0+0x590/0x590
[  435.416773]  ? mark_held_locks+0x100/0x100
[  435.421003]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  435.426038]  ? _kstrtoul+0x170/0x170
[  435.429770]  snd_pcm_oss_change_params+0x7b/0xd0
[  435.434529]  snd_pcm_oss_get_active_substream+0x136/0x190
[  435.440060]  snd_pcm_oss_get_formats+0x7b/0x340
[  435.444743]  ? snd_pcm_oss_set_channels+0x310/0x310
[  435.449768]  snd_pcm_oss_ioctl+0x12fd/0x33b0
[  435.454176]  ? __f_unlock_pos+0x19/0x20
[  435.458143]  ? snd_pcm_oss_release+0x290/0x290
[  435.462715]  ? __fget+0x340/0x540
[  435.466161]  ? find_held_lock+0x35/0x130
[  435.470226]  ? __fget+0x340/0x540
[  435.473673]  ? snd_pcm_oss_release+0x290/0x290
[  435.478256]  do_vfs_ioctl+0xd6e/0x1390
[  435.482149]  ? ioctl_preallocate+0x210/0x210
[  435.486558]  ? __fget+0x367/0x540
[  435.490004]  ? iterate_fd+0x360/0x360
[  435.493811]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  435.499359]  ? fput+0x128/0x1a0
[  435.502680]  ? security_file_ioctl+0x93/0xc0
[  435.507079]  ksys_ioctl+0xab/0xd0
[  435.510543]  __x64_sys_ioctl+0x73/0xb0
[  435.514440]  do_syscall_64+0x103/0x610
[  435.518326]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  435.523505] RIP: 0033:0x457e39
[  435.526702] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  435.545593] RSP: 002b:00007f56f02fdc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  435.553303] RAX: ffffffffffffffda RBX: 00007f56f02fdc90 RCX: 0000000000457e39
02:00:06 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x0, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  435.560602] RDX: 0000000020003ff8 RSI: 00800000c0045005 RDI: 0000000000000004
[  435.567872] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000
[  435.575141] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f56f02fe6d4
[  435.582408] R13: 00000000004c311e R14: 00000000004d5c00 R15: 0000000000000005
[  435.643229] FAULT_INJECTION: forcing a failure.
[  435.643229] name failslab, interval 1, probability 0, space 0, times 0
[  435.659900] CPU: 1 PID: 19656 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  435.667123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  435.676494] Call Trace:
[  435.679102]  dump_stack+0x172/0x1f0
[  435.682760]  should_fail.cold+0xa/0x1b
[  435.686661]  ? fault_create_debugfs_attr+0x1e0/0x1e0
02:00:06 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:06 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x4000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  435.691783]  ? lock_downgrade+0x810/0x810
[  435.695986]  ? ___might_sleep+0x163/0x280
[  435.700187]  __should_failslab+0x121/0x190
[  435.704446]  should_failslab+0x9/0x14
[  435.708267]  kmem_cache_alloc+0x2be/0x710
[  435.712434]  ? refcount_add_not_zero_checked+0x240/0x240
[  435.717909]  ? lock_downgrade+0x810/0x810
[  435.722067]  skb_clone+0x150/0x3b0
[  435.725622]  netlink_broadcast_filtered+0x870/0xb20
[  435.730659]  netlink_broadcast+0x3a/0x50
[  435.734719]  kobject_uevent_env+0xa94/0x1030
[  435.739111]  kobject_uevent+0x20/0x26
[  435.742897]  lo_ioctl+0x100b/0x20d0
[  435.746526]  ? lo_rw_aio+0x1530/0x1530
[  435.750420]  blkdev_ioctl+0xee8/0x1c40
[  435.754349]  ? blkpg_ioctl+0xa90/0xa90
[  435.758249]  ? find_held_lock+0x35/0x130
[  435.762328]  ? debug_check_no_obj_freed+0x200/0x464
[  435.767341]  ? kasan_check_read+0x11/0x20
[  435.771479]  ? __fget+0x340/0x540
[  435.774918]  ? find_held_lock+0x35/0x130
[  435.778976]  ? __fget+0x340/0x540
[  435.782423]  block_ioctl+0xee/0x130
[  435.786063]  ? blkdev_fallocate+0x410/0x410
[  435.790384]  do_vfs_ioctl+0xd6e/0x1390
[  435.794267]  ? ioctl_preallocate+0x210/0x210
[  435.798681]  ? __fget+0x367/0x540
[  435.802123]  ? iterate_fd+0x360/0x360
[  435.805924]  ? do_sys_open+0x31d/0x5d0
[  435.809802]  ? security_file_ioctl+0x93/0xc0
[  435.814213]  ksys_ioctl+0xab/0xd0
[  435.817661]  __x64_sys_ioctl+0x73/0xb0
[  435.821559]  do_syscall_64+0x103/0x610
[  435.825459]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  435.830651] RIP: 0033:0x457ca7
[  435.833843] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  435.852722] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  435.860422] RAX: ffffffffffffffda RBX: 0000000020000428 RCX: 0000000000457ca7
[  435.867679] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  435.874978] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a
[  435.882247] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004
02:00:07 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  435.889525] R13: 0000000000000001 R14: 00000000004db9a8 R15: 0000000000000003
[  435.905707] BTRFS: device fsid ecf6f2a2-2997-48ae-b81e-1b00920efd9a devid 0 transid 5318125732016778760 /dev/loop1
02:00:07 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x80000040049409, &(0x7f0000003ff8)=0x42)

02:00:07 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

02:00:07 executing program 1 (fault-call:0 fault-nth:26):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

02:00:07 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x4010000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:07 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:07 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:07 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x5000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  436.222248] FAULT_INJECTION: forcing a failure.
[  436.222248] name failslab, interval 1, probability 0, space 0, times 0
[  436.272034] CPU: 1 PID: 19680 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  436.279282] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  436.288635] Call Trace:
[  436.291234]  dump_stack+0x172/0x1f0
[  436.294873]  should_fail.cold+0xa/0x1b
[  436.298784]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  436.303914]  ? lock_downgrade+0x810/0x810
[  436.308087]  ? ___might_sleep+0x163/0x280
[  436.312258]  __should_failslab+0x121/0x190
[  436.316546]  should_failslab+0x9/0x14
02:00:07 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  436.320369]  kmem_cache_alloc+0x2be/0x710
[  436.324528]  ? __fget+0x367/0x540
[  436.327998]  getname_flags+0xd6/0x5b0
[  436.331807]  do_mkdirat+0xa0/0x2a0
[  436.335378]  ? __ia32_sys_mknod+0xb0/0xb0
[  436.339548]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  436.344442]  ? do_syscall_64+0x26/0x610
[  436.348456]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  436.353848]  ? do_syscall_64+0x26/0x610
[  436.357831]  ? lockdep_hardirqs_on+0x415/0x5d0
[  436.362466]  __x64_sys_mkdir+0x5c/0x80
[  436.366394]  do_syscall_64+0x103/0x610
02:00:07 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x6000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  436.370293]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  436.375504] RIP: 0033:0x457257
[  436.378699] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  436.397623] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  436.405339] RAX: ffffffffffffffda RBX: 0000000020000428 RCX: 0000000000457257
[  436.412626] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100
[  436.419901] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a
[  436.427173] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004
[  436.434441] R13: 0000000000000001 R14: 00000000004db9a8 R15: 0000000000000003
02:00:07 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x80000000000002, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

02:00:07 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:07 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x7000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:08 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x8000004020940d, &(0x7f0000003ff8)=0x42)

02:00:08 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x8000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:08 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:08 executing program 1 (fault-call:0 fault-nth:27):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

02:00:08 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x0, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:08 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x80000000005000, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

[  437.556445] FAULT_INJECTION: forcing a failure.
[  437.556445] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  437.568297] CPU: 0 PID: 19716 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  437.575531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  437.584888] Call Trace:
[  437.587502]  dump_stack+0x172/0x1f0
[  437.591152]  should_fail.cold+0xa/0x1b
[  437.595055]  ? lo_ioctl+0x188/0x20d0
[  437.598781]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  437.603897]  should_fail_alloc_page+0x50/0x60
[  437.608409]  __alloc_pages_nodemask+0x1a1/0x710
[  437.613088]  ? debug_check_no_obj_freed+0x200/0x464
[  437.618112]  ? __alloc_pages_slowpath+0x2900/0x2900
[  437.623128]  ? find_held_lock+0x35/0x130
[  437.627224]  cache_grow_begin+0x9c/0x8c0
[  437.631305]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  437.636850]  ? check_preemption_disabled+0x48/0x290
[  437.641897]  kmem_cache_alloc+0x645/0x710
[  437.646069]  ? __fget+0x367/0x540
[  437.649541]  getname_flags+0xd6/0x5b0
[  437.653358]  do_mkdirat+0xa0/0x2a0
[  437.656904]  ? __ia32_sys_mknod+0xb0/0xb0
[  437.661054]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  437.665810]  ? do_syscall_64+0x26/0x610
[  437.669786]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  437.675161]  ? do_syscall_64+0x26/0x610
[  437.679160]  ? lockdep_hardirqs_on+0x415/0x5d0
[  437.683753]  __x64_sys_mkdir+0x5c/0x80
[  437.687647]  do_syscall_64+0x103/0x610
[  437.691541]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  437.696735] RIP: 0033:0x457257
[  437.699940] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  437.718844] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  437.726563] RAX: ffffffffffffffda RBX: 0000000020000428 RCX: 0000000000457257
[  437.733828] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100
[  437.741107] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a
[  437.748387] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004
02:00:08 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:08 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x8060000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:08 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x0, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  437.755661] R13: 0000000000000001 R14: 00000000004db9a8 R15: 0000000000000003
[  437.794601] BTRFS: device fsid ecf6f2a2-2997-48ae-b81e-1b00920efd9a devid 0 transid 5318125732016778760 /dev/loop1
02:00:09 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x9000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:09 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:09 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xa000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:09 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x80000080044d76, &(0x7f0000003ff8)=0x42)

02:00:09 executing program 1 (fault-call:0 fault-nth:28):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

02:00:09 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xd000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:09 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:09 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x80000000005001, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

02:00:09 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x0, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  438.682199] FAULT_INJECTION: forcing a failure.
[  438.682199] name failslab, interval 1, probability 0, space 0, times 0
[  438.726211] CPU: 1 PID: 19741 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  438.733435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  438.742789] Call Trace:
[  438.745401]  dump_stack+0x172/0x1f0
[  438.749064]  should_fail.cold+0xa/0x1b
[  438.752963]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  438.758110]  ? lock_downgrade+0x810/0x810
[  438.762271]  ? ___might_sleep+0x163/0x280
[  438.766447]  __should_failslab+0x121/0x190
[  438.770703]  should_failslab+0x9/0x14
02:00:09 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xe000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  438.774501]  kmem_cache_alloc+0x2be/0x710
[  438.778686]  ? __d_lookup+0x433/0x760
[  438.782498]  ? lookup_dcache+0x23/0x140
[  438.786476]  ? d_lookup+0xf9/0x260
[  438.790017]  ? lockdep_hardirqs_on+0x415/0x5d0
[  438.794601]  __d_alloc+0x2e/0x8c0
[  438.798065]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  438.803086]  d_alloc+0x4d/0x2b0
[  438.806383]  __lookup_hash+0xcd/0x190
[  438.810200]  filename_create+0x1a7/0x4f0
[  438.814270]  ? kern_path_mountpoint+0x40/0x40
[  438.818798]  ? strncpy_from_user+0x2a8/0x380
02:00:10 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x11000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:10 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x28000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  438.823255]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  438.828803]  ? getname_flags+0x277/0x5b0
[  438.832887]  do_mkdirat+0xb5/0x2a0
[  438.836437]  ? __ia32_sys_mknod+0xb0/0xb0
[  438.840592]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  438.845355]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  438.850739]  ? do_syscall_64+0x26/0x610
[  438.854726]  ? lockdep_hardirqs_on+0x415/0x5d0
[  438.859333]  __x64_sys_mkdir+0x5c/0x80
[  438.863226]  do_syscall_64+0x103/0x610
[  438.867140]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  438.872329] RIP: 0033:0x457257
02:00:10 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x3c000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  438.875552] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  438.894466] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  438.902171] RAX: ffffffffffffffda RBX: 0000000020000428 RCX: 0000000000457257
[  438.909444] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100
[  438.916723] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a
02:00:10 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x0, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:10 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  438.923995] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004
[  438.931286] R13: 0000000000000001 R14: 00000000004db9a8 R15: 0000000000000003
02:00:10 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x80000080044df9, &(0x7f0000003ff8)=0x42)

02:00:10 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x40000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:10 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, 0x0, 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:10 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x0, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:10 executing program 1 (fault-call:0 fault-nth:29):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

02:00:10 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x80000000005008, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

[  439.869342] FAULT_INJECTION: forcing a failure.
[  439.869342] name failslab, interval 1, probability 0, space 0, times 0
02:00:11 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, 0x0, 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  439.911739] CPU: 1 PID: 19781 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  439.918966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  439.928338] Call Trace:
[  439.930954]  dump_stack+0x172/0x1f0
[  439.934598]  should_fail.cold+0xa/0x1b
[  439.938501]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  439.943629]  ? ___might_sleep+0x163/0x280
[  439.947810]  __should_failslab+0x121/0x190
[  439.952067]  should_failslab+0x9/0x14
[  439.955876]  kmem_cache_alloc+0x2be/0x710
02:00:11 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x43050000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  439.960038]  ? unwind_get_return_address+0x61/0xa0
[  439.964969]  ? __save_stack_trace+0x8a/0xf0
[  439.969322]  ? ratelimit_state_init+0xb0/0xb0
[  439.973850]  ext4_alloc_inode+0x1f/0x640
[  439.977952]  ? ratelimit_state_init+0xb0/0xb0
[  439.982472]  alloc_inode+0x66/0x190
[  439.986102]  new_inode_pseudo+0x19/0xf0
[  439.990107]  new_inode+0x1f/0x40
[  439.993479]  __ext4_new_inode+0x3cb/0x52c0
[  439.997718]  ? putname+0xef/0x130
[  440.001206]  ? do_syscall_64+0x103/0x610
[  440.005271]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
02:00:11 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, 0x0, 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  440.010656]  ? d_splice_alias+0x6c1/0xcc0
[  440.014824]  ? find_held_lock+0x35/0x130
[  440.018901]  ? debug_check_no_obj_freed+0x200/0x464
[  440.023928]  ? ext4_free_inode+0x1470/0x1470
[  440.028340]  ? lock_downgrade+0x810/0x810
[  440.032537]  ? dquot_get_next_dqblk+0x180/0x180
[  440.037258]  ? __lock_is_held+0xb6/0x140
[  440.041336]  ? check_preemption_disabled+0x48/0x290
[  440.046361]  ext4_mkdir+0x3d5/0xdf0
[  440.050000]  ? ext4_init_dot_dotdot+0x520/0x520
[  440.054671]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
02:00:11 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x44000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  440.060210]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  440.065755]  ? security_inode_permission+0xd5/0x110
[  440.070792]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  440.076341]  ? security_inode_mkdir+0xee/0x120
[  440.080939]  vfs_mkdir+0x433/0x690
[  440.084525]  do_mkdirat+0x234/0x2a0
[  440.088167]  ? __ia32_sys_mknod+0xb0/0xb0
[  440.092323]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  440.097137]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  440.102500]  ? do_syscall_64+0x26/0x610
[  440.106526]  ? lockdep_hardirqs_on+0x415/0x5d0
02:00:11 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x0, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  440.111114]  __x64_sys_mkdir+0x5c/0x80
[  440.115004]  do_syscall_64+0x103/0x610
[  440.119065]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  440.124249] RIP: 0033:0x457257
[  440.127455] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  440.146380] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  440.154087] RAX: ffffffffffffffda RBX: 0000000020000428 RCX: 0000000000457257
02:00:11 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  440.161366] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100
[  440.168686] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a
[  440.175951] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004
[  440.183233] R13: 0000000000000001 R14: 00000000004db9a8 R15: 0000000000000003
02:00:12 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x80000080045002, &(0x7f0000003ff8)=0x42)

02:00:12 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x6c000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:12 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:12 executing program 1 (fault-call:0 fault-nth:30):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

02:00:12 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x0, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:12 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x8000000000500e, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

[  441.043980] FAULT_INJECTION: forcing a failure.
[  441.043980] name failslab, interval 1, probability 0, space 0, times 0
[  441.071695] CPU: 1 PID: 19816 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  441.078894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  441.088243] Call Trace:
[  441.090855]  dump_stack+0x172/0x1f0
02:00:12 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x80040200]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  441.094490]  should_fail.cold+0xa/0x1b
[  441.098405]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  441.103544]  ? ___might_sleep+0x163/0x280
[  441.107704]  __should_failslab+0x121/0x190
[  441.111945]  should_failslab+0x9/0x14
[  441.115748]  __kmalloc+0x2dc/0x740
[  441.119329]  ? ext4_find_extent+0x76e/0x9d0
[  441.123655]  ext4_find_extent+0x76e/0x9d0
[  441.127822]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  441.133287]  ext4_ext_map_blocks+0x1cc/0x4e50
[  441.137794]  ? ext4_ext_release+0x10/0x10
02:00:12 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  441.141979]  ? __lock_is_held+0xb6/0x140
[  441.146074]  ? lock_acquire+0x16f/0x3f0
[  441.150103]  ? ext4_map_blocks+0x424/0x1a20
[  441.154445]  ext4_map_blocks+0xecb/0x1a20
[  441.158615]  ? ext4_issue_zeroout+0x170/0x170
[  441.163121]  ? kasan_check_write+0x14/0x20
[  441.167370]  ? __brelse+0x95/0xb0
[  441.170861]  ext4_getblk+0xc4/0x510
[  441.174511]  ? ext4_iomap_begin+0xfe0/0xfe0
[  441.178860]  ? ext4_free_inode+0x1470/0x1470
[  441.183289]  ext4_bread+0x8f/0x230
[  441.186872]  ? ext4_getblk+0x510/0x510
[  441.190798]  ext4_append+0x155/0x370
02:00:12 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x800e0000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  441.194541]  ext4_mkdir+0x61b/0xdf0
[  441.198193]  ? ext4_init_dot_dotdot+0x520/0x520
[  441.202872]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  441.208420]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  441.213967]  ? security_inode_permission+0xd5/0x110
[  441.218984]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  441.225024]  ? security_inode_mkdir+0xee/0x120
[  441.229629]  vfs_mkdir+0x433/0x690
[  441.233183]  do_mkdirat+0x234/0x2a0
[  441.236827]  ? __ia32_sys_mknod+0xb0/0xb0
02:00:12 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x0, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  441.240984]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  441.245745]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  441.251132]  ? do_syscall_64+0x26/0x610
[  441.255124]  ? lockdep_hardirqs_on+0x415/0x5d0
[  441.259717]  __x64_sys_mkdir+0x5c/0x80
[  441.263609]  do_syscall_64+0x103/0x610
[  441.267511]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  441.272712] RIP: 0033:0x457257
[  441.275912] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  441.294831] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  441.302550] RAX: ffffffffffffffda RBX: 0000000020000428 RCX: 0000000000457257
[  441.309866] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100
[  441.317154] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a
[  441.324445] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004
[  441.331756] R13: 0000000000000001 R14: 00000000004db9a8 R15: 0000000000000003
02:00:12 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:12 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x80000000005015, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

[  441.545488] BTRFS: device fsid ecf6f2a2-2997-48ae-b81e-1b00920efd9a devid 0 transid 5318125732016778760 /dev/loop1
02:00:13 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x80000080045005, &(0x7f0000003ff8)=0x42)

02:00:13 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x80350000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:13 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x0)
r0 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r0, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r2, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r1, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:13 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x0, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:13 executing program 1 (fault-call:0 fault-nth:31):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

02:00:13 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x80000000005016, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

02:00:13 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x81000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  442.465103] FAULT_INJECTION: forcing a failure.
[  442.465103] name failslab, interval 1, probability 0, space 0, times 0
[  442.501771] CPU: 1 PID: 19852 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
02:00:13 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x0)
r0 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r0, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r2, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r1, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  442.508998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  442.518360] Call Trace:
[  442.520975]  dump_stack+0x172/0x1f0
[  442.524633]  should_fail.cold+0xa/0x1b
[  442.528569]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  442.533691]  ? ___might_sleep+0x163/0x280
[  442.537870]  __should_failslab+0x121/0x190
[  442.542130]  should_failslab+0x9/0x14
[  442.545950]  __kmalloc+0x2dc/0x740
[  442.549501]  ? ext4_find_extent+0x76e/0x9d0
[  442.553841]  ext4_find_extent+0x76e/0x9d0
[  442.558011]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  442.563525]  ext4_ext_map_blocks+0x1cc/0x4e50
[  442.568039]  ? ext4_ext_release+0x10/0x10
[  442.572190]  ? __lock_is_held+0xb6/0x140
[  442.572213]  ? lock_acquire+0x16f/0x3f0
[  442.572230]  ? ext4_map_blocks+0x424/0x1a20
[  442.572254]  ext4_map_blocks+0xecb/0x1a20
[  442.572300]  ? ext4_issue_zeroout+0x170/0x170
[  442.572320]  ? kasan_check_write+0x14/0x20
[  442.597666]  ? __brelse+0x95/0xb0
[  442.601135]  ext4_getblk+0xc4/0x510
[  442.604854]  ? ext4_iomap_begin+0xfe0/0xfe0
[  442.609184]  ? ext4_free_inode+0x1470/0x1470
[  442.613602]  ext4_bread+0x8f/0x230
[  442.617162]  ? ext4_getblk+0x510/0x510
[  442.621061]  ext4_append+0x155/0x370
[  442.624894]  ext4_mkdir+0x61b/0xdf0
[  442.628548]  ? ext4_init_dot_dotdot+0x520/0x520
[  442.633222]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  442.638791]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  442.644351]  ? security_inode_permission+0xd5/0x110
[  442.649381]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  442.654929]  ? security_inode_mkdir+0xee/0x120
[  442.659533]  vfs_mkdir+0x433/0x690
02:00:13 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x0, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  442.663080]  do_mkdirat+0x234/0x2a0
[  442.666719]  ? __ia32_sys_mknod+0xb0/0xb0
[  442.670899]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  442.675659]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  442.681035]  ? do_syscall_64+0x26/0x610
[  442.685029]  ? lockdep_hardirqs_on+0x415/0x5d0
[  442.689625]  __x64_sys_mkdir+0x5c/0x80
[  442.693547]  do_syscall_64+0x103/0x610
[  442.697449]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  442.702637] RIP: 0033:0x457257
[  442.702653] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  442.702661] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  442.702675] RAX: ffffffffffffffda RBX: 0000000020000428 RCX: 0000000000457257
[  442.702683] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100
[  442.702691] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a
[  442.702699] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004
02:00:13 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x0)
r0 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r0, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r2, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r1, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:13 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x86ddffff]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:13 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x88470000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  442.702706] R13: 0000000000000001 R14: 00000000004db9a8 R15: 0000000000000003
[  442.768384] BTRFS: device fsid ecf6f2a2-2997-48ae-b81e-1b00920efd9a devid 0 transid 5318125732016778760 /dev/loop1
02:00:14 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x80000080045006, &(0x7f0000003ff8)=0x42)

02:00:14 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:14 executing program 1 (fault-call:0 fault-nth:32):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

02:00:14 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x88480000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:14 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x80000000005421, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

02:00:14 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x0, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  443.833709] FAULT_INJECTION: forcing a failure.
[  443.833709] name failslab, interval 1, probability 0, space 0, times 0
[  443.874657] CPU: 1 PID: 19886 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  443.881862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  443.891230] Call Trace:
[  443.893860]  dump_stack+0x172/0x1f0
[  443.897490]  should_fail.cold+0xa/0x1b
[  443.901384]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  443.906495]  ? ___might_sleep+0x163/0x280
[  443.910671]  __should_failslab+0x121/0x190
[  443.914929]  should_failslab+0x9/0x14
[  443.918732]  __kmalloc+0x2dc/0x740
[  443.922292]  ? ext4_find_extent+0x76e/0x9d0
[  443.926631]  ext4_find_extent+0x76e/0x9d0
[  443.930811]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  443.936305]  ext4_ext_map_blocks+0x1cc/0x4e50
[  443.940807]  ? ext4_ext_release+0x10/0x10
[  443.944972]  ? __lock_is_held+0xb6/0x140
[  443.949040]  ? lock_acquire+0x16f/0x3f0
[  443.953021]  ? ext4_map_blocks+0x884/0x1a20
[  443.957376]  ext4_map_blocks+0x8ec/0x1a20
[  443.961548]  ? ext4_issue_zeroout+0x170/0x170
[  443.966070]  ? kasan_check_write+0x14/0x20
[  443.970316]  ? __brelse+0x95/0xb0
[  443.973790]  ext4_getblk+0xc4/0x510
[  443.977435]  ? ext4_iomap_begin+0xfe0/0xfe0
[  443.981797]  ? ext4_free_inode+0x1470/0x1470
[  443.986214]  ext4_bread+0x8f/0x230
[  443.989789]  ? ext4_getblk+0x510/0x510
[  443.993701]  ext4_append+0x155/0x370
[  443.997441]  ext4_mkdir+0x61b/0xdf0
[  444.001101]  ? ext4_init_dot_dotdot+0x520/0x520
[  444.005808]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  444.011367]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  444.016919]  ? security_inode_permission+0xd5/0x110
[  444.021939]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  444.027505]  ? security_inode_mkdir+0xee/0x120
[  444.032136]  vfs_mkdir+0x433/0x690
[  444.035684]  do_mkdirat+0x234/0x2a0
[  444.039345]  ? __ia32_sys_mknod+0xb0/0xb0
[  444.043498]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  444.048251]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  444.053626]  ? do_syscall_64+0x26/0x610
[  444.057601]  ? lockdep_hardirqs_on+0x415/0x5d0
[  444.057622]  __x64_sys_mkdir+0x5c/0x80
[  444.057663]  do_syscall_64+0x103/0x610
[  444.070017]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  444.070029] RIP: 0033:0x457257
[  444.070044] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  444.070055] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  444.105010] RAX: ffffffffffffffda RBX: 0000000020000428 RCX: 0000000000457257
[  444.112282] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100
02:00:15 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x88640000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:15 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x80000000005450, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

02:00:15 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:15 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x0, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  444.119783] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a
[  444.127064] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004
[  444.134371] R13: 0000000000000001 R14: 00000000004db9a8 R15: 0000000000000003
02:00:15 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x88a8ffff]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:15 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:16 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x80000080045007, &(0x7f0000003ff8)=0x42)

02:00:16 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x88caffff]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:16 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r2, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r1, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:16 executing program 1 (fault-call:0 fault-nth:33):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

02:00:16 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x0, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:16 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x80000000005451, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

02:00:16 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x89060000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:16 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r2, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r1, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  445.250904] FAULT_INJECTION: forcing a failure.
[  445.250904] name failslab, interval 1, probability 0, space 0, times 0
[  445.325149] CPU: 0 PID: 19920 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  445.332402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  445.341749] Call Trace:
[  445.344348]  dump_stack+0x172/0x1f0
[  445.347985]  should_fail.cold+0xa/0x1b
[  445.351906]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  445.357046]  ? ___might_sleep+0x163/0x280
[  445.361209]  __should_failslab+0x121/0x190
[  445.365447]  should_failslab+0x9/0x14
[  445.369299]  kmem_cache_alloc+0x2be/0x710
[  445.373464]  ? rcu_read_lock_sched_held+0x110/0x130
[  445.378489]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  445.384029]  ? __mark_inode_dirty+0x241/0x1290
[  445.388667]  ext4_mb_new_blocks+0x5a8/0x3c70
[  445.393079]  ? ext4_find_extent+0x76e/0x9d0
[  445.397435]  ext4_ext_map_blocks+0x3094/0x4e50
[  445.402043]  ? ext4_ext_release+0x10/0x10
[  445.406193]  ? __lock_is_held+0xb6/0x140
[  445.410288]  ext4_map_blocks+0x8ec/0x1a20
[  445.414464]  ? ext4_issue_zeroout+0x170/0x170
[  445.418972]  ? kasan_check_write+0x14/0x20
[  445.423224]  ? __brelse+0x95/0xb0
[  445.426696]  ext4_getblk+0xc4/0x510
[  445.430336]  ? ext4_iomap_begin+0xfe0/0xfe0
[  445.434677]  ? ext4_free_inode+0x1470/0x1470
[  445.439091]  ext4_bread+0x8f/0x230
[  445.442635]  ? ext4_getblk+0x510/0x510
[  445.446539]  ext4_append+0x155/0x370
[  445.450265]  ext4_mkdir+0x61b/0xdf0
[  445.453912]  ? ext4_init_dot_dotdot+0x520/0x520
[  445.458583]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  445.464118]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  445.469657]  ? security_inode_permission+0xd5/0x110
[  445.474683]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  445.480262]  ? security_inode_mkdir+0xee/0x120
[  445.484867]  vfs_mkdir+0x433/0x690
[  445.488426]  do_mkdirat+0x234/0x2a0
[  445.492071]  ? __ia32_sys_mknod+0xb0/0xb0
[  445.496229]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  445.500991]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  445.506352]  ? do_syscall_64+0x26/0x610
[  445.510339]  ? lockdep_hardirqs_on+0x415/0x5d0
[  445.514938]  __x64_sys_mkdir+0x5c/0x80
[  445.518841]  do_syscall_64+0x103/0x610
[  445.522735]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  445.527925] RIP: 0033:0x457257
[  445.531118] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  445.550015] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  445.557718] RAX: ffffffffffffffda RBX: 0000000020000428 RCX: 0000000000457257
[  445.564992] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100
02:00:16 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r2, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r1, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  445.572259] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a
[  445.579551] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004
[  445.586829] R13: 0000000000000001 R14: 00000000004db9a8 R15: 0000000000000003
02:00:16 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x0, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:16 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x8dffffff]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:16 executing program 1 (fault-call:0 fault-nth:34):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

[  445.774662] FAULT_INJECTION: forcing a failure.
[  445.774662] name failslab, interval 1, probability 0, space 0, times 0
[  445.786460] CPU: 1 PID: 19941 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  445.793661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  445.803060] Call Trace:
[  445.805652]  dump_stack+0x172/0x1f0
[  445.809296]  should_fail.cold+0xa/0x1b
[  445.809348]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  445.809363]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  445.809383]  ? __es_tree_search.isra.0+0x1bf/0x230
[  445.828322]  __should_failslab+0x121/0x190
[  445.828343]  should_failslab+0x9/0x14
[  445.828358]  kmem_cache_alloc+0x47/0x710
[  445.828373]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  445.828390]  ? ext4_es_can_be_merged+0x1a3/0x2a0
[  445.840446]  ? ext4_es_scan+0x6f0/0x6f0
[  445.840463]  ? do_raw_write_lock+0x124/0x290
[  445.840493]  __es_insert_extent+0x2cc/0xf20
[  445.840514]  ext4_es_insert_extent+0x2b7/0xa40
[  445.867549]  ? ext4_es_scan_clu+0x50/0x50
[  445.871778]  ext4_map_blocks+0xba2/0x1a20
[  445.875957]  ? ext4_issue_zeroout+0x170/0x170
[  445.880457]  ? kasan_check_write+0x14/0x20
[  445.884724]  ? __brelse+0x95/0xb0
[  445.888219]  ext4_getblk+0xc4/0x510
[  445.891857]  ? ext4_iomap_begin+0xfe0/0xfe0
[  445.896208]  ? ext4_free_inode+0x1470/0x1470
[  445.900624]  ext4_bread+0x8f/0x230
[  445.904186]  ? ext4_getblk+0x510/0x510
[  445.908127]  ext4_append+0x155/0x370
[  445.911852]  ext4_mkdir+0x61b/0xdf0
[  445.915488]  ? ext4_init_dot_dotdot+0x520/0x520
[  445.920151]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  445.925688]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  445.931235]  ? security_inode_permission+0xd5/0x110
[  445.936254]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  445.941842]  ? security_inode_mkdir+0xee/0x120
[  445.946429]  vfs_mkdir+0x433/0x690
[  445.949981]  do_mkdirat+0x234/0x2a0
[  445.953620]  ? __ia32_sys_mknod+0xb0/0xb0
[  445.957776]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  445.962546]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  445.967911]  ? do_syscall_64+0x26/0x610
[  445.971887]  ? lockdep_hardirqs_on+0x415/0x5d0
[  445.976473]  __x64_sys_mkdir+0x5c/0x80
[  445.980379]  do_syscall_64+0x103/0x610
[  445.984327]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  445.989557] RIP: 0033:0x457257
[  445.992791] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  446.011716] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  446.019425] RAX: ffffffffffffffda RBX: 0000000020000428 RCX: 0000000000457257
[  446.026704] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100
[  446.033998] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a
[  446.041267] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004
[  446.048543] R13: 0000000000000001 R14: 00000000004db9a8 R15: 0000000000000003
[  446.089163] BTRFS: device fsid ecf6f2a2-2997-48ae-b81e-1b00920efd9a devid 0 transid 5318125732016778760 /dev/loop1
02:00:17 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x8000008004500b, &(0x7f0000003ff8)=0x42)

02:00:17 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:17 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xe8030000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:17 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x0, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:17 executing program 1 (fault-call:0 fault-nth:35):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

02:00:17 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x80000000005452, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

[  446.454123] FAULT_INJECTION: forcing a failure.
[  446.454123] name failslab, interval 1, probability 0, space 0, times 0
[  446.465440] CPU: 0 PID: 19951 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  446.472626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  446.481978] Call Trace:
[  446.484571]  dump_stack+0x172/0x1f0
[  446.488233]  should_fail.cold+0xa/0x1b
[  446.492134]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  446.497256]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
02:00:17 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xf4010000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  446.502347]  ? __es_tree_search.isra.0+0x1bf/0x230
[  446.507340]  __should_failslab+0x121/0x190
[  446.511592]  should_failslab+0x9/0x14
[  446.515399]  kmem_cache_alloc+0x47/0x710
[  446.519469]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  446.524485]  ? ext4_es_can_be_merged+0x1a3/0x2a0
[  446.529252]  ? ext4_es_scan+0x6f0/0x6f0
[  446.533239]  ? do_raw_write_lock+0x124/0x290
[  446.537670]  __es_insert_extent+0x2cc/0xf20
[  446.542012]  ext4_es_insert_extent+0x2b7/0xa40
[  446.546613]  ? ext4_es_scan_clu+0x50/0x50
02:00:17 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xf5ffffff]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:17 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xfeffffff]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  446.550818]  ext4_map_blocks+0xba2/0x1a20
[  446.555000]  ? ext4_issue_zeroout+0x170/0x170
[  446.559521]  ? kasan_check_write+0x14/0x20
[  446.563758]  ? __brelse+0x95/0xb0
[  446.567226]  ext4_getblk+0xc4/0x510
[  446.570880]  ? ext4_iomap_begin+0xfe0/0xfe0
[  446.575209]  ? ext4_free_inode+0x1470/0x1470
[  446.579647]  ext4_bread+0x8f/0x230
[  446.583195]  ? ext4_getblk+0x510/0x510
[  446.587136]  ext4_append+0x155/0x370
[  446.590866]  ext4_mkdir+0x61b/0xdf0
[  446.594533]  ? ext4_init_dot_dotdot+0x520/0x520
[  446.599225]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  446.599238]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  446.599255]  ? security_inode_permission+0xd5/0x110
[  446.599270]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  446.599293]  ? security_inode_mkdir+0xee/0x120
[  446.599310]  vfs_mkdir+0x433/0x690
[  446.620967]  do_mkdirat+0x234/0x2a0
[  446.620987]  ? __ia32_sys_mknod+0xb0/0xb0
[  446.621003]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  446.621030]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  446.621056]  ? do_syscall_64+0x26/0x610
[  446.641755]  ? lockdep_hardirqs_on+0x415/0x5d0
[  446.641774]  __x64_sys_mkdir+0x5c/0x80
[  446.641790]  do_syscall_64+0x103/0x610
[  446.641808]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  446.641818] RIP: 0033:0x457257
[  446.641831] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  446.641838] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
02:00:17 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:17 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  446.641854] RAX: ffffffffffffffda RBX: 0000000020000428 RCX: 0000000000457257
[  446.655777] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100
[  446.655785] RBP: 0000000000000001 R08: 0000000000000000 R09: 000000000000000a
[  446.655793] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004
[  446.655801] R13: 0000000000000001 R14: 00000000004db9a8 R15: 0000000000000003
02:00:17 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xffffa888]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  446.758354] BTRFS: device fsid ecf6f2a2-2997-48ae-b81e-1b00920efd9a devid 0 transid 5318125732016778760 /dev/loop1
02:00:18 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, 0x0)
r3 = openat$audio(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:18 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x8000008004500f, &(0x7f0000003ff8)=0x42)

02:00:18 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xffffca88]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:18 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0x0, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:18 executing program 1 (fault-call:0 fault-nth:36):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

02:00:18 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x80000000005460, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

[  447.594143] FAULT_INJECTION: forcing a failure.
[  447.594143] name failslab, interval 1, probability 0, space 0, times 0
[  447.649689] CPU: 1 PID: 19985 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  447.656923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  447.666304] Call Trace:
[  447.668907]  dump_stack+0x172/0x1f0
[  447.672571]  should_fail.cold+0xa/0x1b
[  447.676480]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  447.681600]  ? lock_downgrade+0x810/0x810
[  447.685755]  ? ___might_sleep+0x163/0x280
[  447.689914]  __should_failslab+0x121/0x190
[  447.694192]  should_failslab+0x9/0x14
[  447.698003]  __kmalloc_track_caller+0x2d8/0x740
[  447.702684]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  447.708226]  ? strndup_user+0x77/0xd0
[  447.712081]  memdup_user+0x26/0xb0
[  447.715651]  strndup_user+0x77/0xd0
[  447.719301]  ksys_mount+0x7b/0x150
[  447.722855]  __x64_sys_mount+0xbe/0x150
[  447.726881]  do_syscall_64+0x103/0x610
[  447.730787]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  447.735988] RIP: 0033:0x45a8aa
[  447.739235] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00
[  447.758135] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  447.765847] RAX: ffffffffffffffda RBX: 00007f2e78bd9b30 RCX: 000000000045a8aa
[  447.773115] RDX: 00007f2e78bd9ad0 RSI: 0000000020000100 RDI: 00007f2e78bd9af0
[  447.780388] RBP: 0000000020000100 R08: 00007f2e78bd9b30 R09: 00007f2e78bd9ad0
[  447.787656] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004
02:00:18 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, 0x0)
r3 = openat$audio(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:18 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xffffdd86]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:18 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, 0x0)
r3 = openat$audio(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  447.794929] R13: 0000000000000000 R14: 00000000004db9a8 R15: 0000000000000003
02:00:19 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xfffff000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:19 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0x0, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:19 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x0, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:19 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xffffff8d]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:19 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x80000080045010, &(0x7f0000003ff8)=0x42)

02:00:19 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x0, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:19 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xfffffff5]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:19 executing program 1 (fault-call:0 fault-nth:37):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

02:00:19 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0x0, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:19 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x80000040045010, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

[  448.741231] FAULT_INJECTION: forcing a failure.
[  448.741231] name failslab, interval 1, probability 0, space 0, times 0
[  448.776768] CPU: 1 PID: 20020 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
02:00:19 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xfffffffe]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  448.783976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  448.793369] Call Trace:
[  448.795969]  dump_stack+0x172/0x1f0
[  448.799610]  should_fail.cold+0xa/0x1b
[  448.803515]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  448.808641]  ? lock_downgrade+0x810/0x810
[  448.812797]  ? ___might_sleep+0x163/0x280
[  448.816961]  __should_failslab+0x121/0x190
[  448.821202]  should_failslab+0x9/0x14
[  448.825004]  kmem_cache_alloc+0x2be/0x710
[  448.829174]  ? fs_reclaim_acquire+0x20/0x20
[  448.833584]  ? find_held_lock+0x35/0x130
[  448.837687]  getname_flags+0xd6/0x5b0
02:00:20 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x0, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  448.841506]  user_path_at_empty+0x2f/0x50
[  448.845685]  do_mount+0x15e/0x2d30
[  448.849247]  ? copy_mount_options+0x5c/0x440
[  448.853678]  ? copy_mount_string+0x40/0x40
[  448.857915]  ? kmem_cache_alloc_trace+0x354/0x760
[  448.862768]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  448.868315]  ? _copy_from_user+0xdd/0x150
[  448.872492]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  448.878042]  ? copy_mount_options+0x30e/0x440
[  448.882546]  ksys_mount+0xdb/0x150
[  448.886111]  __x64_sys_mount+0xbe/0x150
[  448.890095]  do_syscall_64+0x103/0x610
[  448.894011]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  448.894023] RIP: 0033:0x45a8aa
[  448.894038] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00
[  448.921303] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  448.929006] RAX: ffffffffffffffda RBX: 00007f2e78bd9b30 RCX: 000000000045a8aa
02:00:20 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:20 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x10000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:20 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x0, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  448.929015] RDX: 00007f2e78bd9ad0 RSI: 0000000020000100 RDI: 00007f2e78bd9af0
[  448.929024] RBP: 0000000020000100 R08: 00007f2e78bd9b30 R09: 00007f2e78bd9ad0
[  448.929032] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004
[  448.929040] R13: 0000000000000000 R14: 00000000004db9a8 R15: 0000000000000003
02:00:20 executing program 1 (fault-call:0 fault-nth:38):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

[  449.154283] FAULT_INJECTION: forcing a failure.
[  449.154283] name failslab, interval 1, probability 0, space 0, times 0
[  449.166757] CPU: 0 PID: 20045 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  449.173950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  449.183318] Call Trace:
[  449.185930]  dump_stack+0x172/0x1f0
[  449.189578]  should_fail.cold+0xa/0x1b
[  449.193496]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  449.198635]  ? lock_downgrade+0x810/0x810
[  449.202795]  ? ___might_sleep+0x163/0x280
[  449.206952]  __should_failslab+0x121/0x190
[  449.211194]  should_failslab+0x9/0x14
[  449.215011]  kmem_cache_alloc_trace+0x2d1/0x760
[  449.219720]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  449.225456]  ? _copy_from_user+0xdd/0x150
[  449.229628]  copy_mount_options+0x5c/0x440
[  449.233867]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  449.239421]  ksys_mount+0xa7/0x150
[  449.242969]  __x64_sys_mount+0xbe/0x150
[  449.246952]  do_syscall_64+0x103/0x610
[  449.250846]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  449.256040] RIP: 0033:0x45a8aa
[  449.259291] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00
[  449.278199] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  449.285930] RAX: ffffffffffffffda RBX: 00007f2e78bd9b30 RCX: 000000000045a8aa
[  449.293195] RDX: 00007f2e78bd9ad0 RSI: 0000000020000100 RDI: 00007f2e78bd9af0
[  449.300475] RBP: 0000000020000100 R08: 00007f2e78bd9b30 R09: 00007f2e78bd9ad0
[  449.307741] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004
[  449.315019] R13: 0000000000000000 R14: 00000000004db9a8 R15: 0000000000000003
02:00:21 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x80000080045017, &(0x7f0000003ff8)=0x42)

02:00:21 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:21 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xf0ffffffffffff]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:21 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x0, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:21 executing program 1 (fault-call:0 fault-nth:39):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

02:00:21 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x80000040045017, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

[  450.082247] FAULT_INJECTION: forcing a failure.
[  450.082247] name failslab, interval 1, probability 0, space 0, times 0
[  450.111365] CPU: 1 PID: 20055 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  450.118699] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  450.128062] Call Trace:
[  450.130736]  dump_stack+0x172/0x1f0
[  450.134371]  should_fail.cold+0xa/0x1b
[  450.138306]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  450.143422]  ? lock_downgrade+0x810/0x810
[  450.147598]  ? ___might_sleep+0x163/0x280
[  450.151775]  __should_failslab+0x121/0x190
[  450.156061]  should_failslab+0x9/0x14
[  450.159863]  kmem_cache_alloc+0x2be/0x710
[  450.164042]  ? fs_reclaim_acquire+0x20/0x20
[  450.168380]  ? find_held_lock+0x35/0x130
[  450.172453]  getname_flags+0xd6/0x5b0
[  450.176263]  user_path_at_empty+0x2f/0x50
[  450.180440]  do_mount+0x15e/0x2d30
[  450.183986]  ? copy_mount_options+0x5c/0x440
[  450.188415]  ? copy_mount_string+0x40/0x40
[  450.192651]  ? kmem_cache_alloc_trace+0x354/0x760
[  450.197505]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  450.203048]  ? _copy_from_user+0xdd/0x150
[  450.207198]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  450.212739]  ? copy_mount_options+0x30e/0x440
[  450.217248]  ksys_mount+0xdb/0x150
[  450.220803]  __x64_sys_mount+0xbe/0x150
[  450.224793]  do_syscall_64+0x103/0x610
[  450.228702]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  450.233887] RIP: 0033:0x45a8aa
[  450.237076] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00
[  450.255972] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  450.263708] RAX: ffffffffffffffda RBX: 00007f2e78bd9b30 RCX: 000000000045a8aa
[  450.270975] RDX: 00007f2e78bd9ad0 RSI: 0000000020000100 RDI: 00007f2e78bd9af0
02:00:21 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:21 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x100000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  450.278265] RBP: 0000000020000100 R08: 00007f2e78bd9b30 R09: 00007f2e78bd9ad0
[  450.285556] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004
[  450.292829] R13: 0000000000000000 R14: 00000000004db9a8 R15: 0000000000000003
02:00:21 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x0, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:21 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x200000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:21 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x0, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:21 executing program 1 (fault-call:0 fault-nth:40):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

[  450.522425] FAULT_INJECTION: forcing a failure.
[  450.522425] name failslab, interval 1, probability 0, space 0, times 0
[  450.537674] CPU: 1 PID: 20081 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  450.544885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  450.554292] Call Trace:
[  450.556906]  dump_stack+0x172/0x1f0
[  450.560539]  should_fail.cold+0xa/0x1b
[  450.564469]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  450.569581]  ? lock_downgrade+0x810/0x810
[  450.573729]  ? ___might_sleep+0x163/0x280
[  450.577925]  __should_failslab+0x121/0x190
[  450.582190]  should_failslab+0x9/0x14
[  450.585989]  __kmalloc_track_caller+0x2d8/0x740
[  450.590679]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  450.596228]  ? strndup_user+0x77/0xd0
[  450.600027]  memdup_user+0x26/0xb0
[  450.603584]  strndup_user+0x77/0xd0
[  450.607214]  ksys_mount+0x7b/0x150
[  450.610769]  __x64_sys_mount+0xbe/0x150
[  450.614747]  do_syscall_64+0x103/0x610
[  450.618649]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  450.623841] RIP: 0033:0x45a8aa
[  450.627170] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00
[  450.646114] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  450.653853] RAX: ffffffffffffffda RBX: 00007f2e78bd9b30 RCX: 000000000045a8aa
[  450.661125] RDX: 00007f2e78bd9ad0 RSI: 0000000020000100 RDI: 00007f2e78bd9af0
[  450.668394] RBP: 0000000020000100 R08: 00007f2e78bd9b30 R09: 00007f2e78bd9ad0
[  450.675670] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004
[  450.682969] R13: 0000000000000000 R14: 00000000004db9a8 R15: 0000000000000003
02:00:22 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x800000800c5011, &(0x7f0000003ff8)=0x42)

02:00:22 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x300000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:22 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x0, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:22 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x0, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:22 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x80000040049409, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

02:00:22 executing program 1 (fault-call:0 fault-nth:41):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

[  450.900252] FAULT_INJECTION: forcing a failure.
[  450.900252] name failslab, interval 1, probability 0, space 0, times 0
[  450.971398] CPU: 1 PID: 20088 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  450.978626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  450.987972] Call Trace:
[  450.990571]  dump_stack+0x172/0x1f0
[  450.994212]  should_fail.cold+0xa/0x1b
[  450.998136]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  451.003254]  ? lock_downgrade+0x810/0x810
[  451.007417]  ? ___might_sleep+0x163/0x280
[  451.011604]  __should_failslab+0x121/0x190
[  451.015849]  should_failslab+0x9/0x14
[  451.019653]  kmem_cache_alloc+0x2be/0x710
[  451.023805]  ? lock_downgrade+0x810/0x810
[  451.027970]  alloc_vfsmnt+0x28/0x780
[  451.031708]  vfs_kern_mount.part.0+0x2a/0x410
[  451.036230]  do_mount+0x581/0x2d30
[  451.039770]  ? copy_mount_options+0x21/0x440
[  451.044188]  ? copy_mount_string+0x40/0x40
[  451.048457]  ? kmem_cache_alloc_trace+0x354/0x760
[  451.053330]  ? _copy_from_user+0xdd/0x150
[  451.057497]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  451.063045]  ? copy_mount_options+0x30e/0x440
[  451.067548]  ksys_mount+0xdb/0x150
[  451.071112]  __x64_sys_mount+0xbe/0x150
[  451.075099]  do_syscall_64+0x103/0x610
[  451.078997]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  451.084189] RIP: 0033:0x45a8aa
[  451.087391] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00
[  451.106314] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  451.114038] RAX: ffffffffffffffda RBX: 00007f2e78bd9b30 RCX: 000000000045a8aa
02:00:22 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x400000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:22 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x0, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  451.121348] RDX: 00007f2e78bd9ad0 RSI: 0000000020000100 RDI: 00007f2e78bd9af0
[  451.128644] RBP: 0000000020000100 R08: 00007f2e78bd9b30 R09: 00007f2e78bd9ad0
[  451.135909] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004
[  451.143180] R13: 0000000000000000 R14: 00000000004db9a8 R15: 0000000000000003
02:00:22 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x0, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:22 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, 0x0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:22 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x401000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:22 executing program 1 (fault-call:0 fault-nth:42):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

[  451.430126] FAULT_INJECTION: forcing a failure.
[  451.430126] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  451.441962] CPU: 0 PID: 20114 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  451.449156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  451.458517] Call Trace:
[  451.461145]  dump_stack+0x172/0x1f0
[  451.464786]  should_fail.cold+0xa/0x1b
[  451.468696]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  451.473836]  should_fail_alloc_page+0x50/0x60
[  451.478338]  __alloc_pages_nodemask+0x1a1/0x710
[  451.483015]  ? __alloc_pages_slowpath+0x2900/0x2900
[  451.488068]  ? find_held_lock+0x35/0x130
[  451.492139]  cache_grow_begin+0x9c/0x8c0
[  451.496210]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  451.501747]  ? check_preemption_disabled+0x48/0x290
[  451.506779]  kmem_cache_alloc+0x645/0x710
[  451.510939]  ? find_held_lock+0x35/0x130
[  451.515000]  ? cache_grow_end+0xa4/0x190
[  451.519078]  getname_flags+0xd6/0x5b0
[  451.522885]  user_path_at_empty+0x2f/0x50
[  451.527047]  do_mount+0x15e/0x2d30
[  451.530585]  ? copy_mount_options+0x5c/0x440
[  451.535011]  ? copy_mount_string+0x40/0x40
[  451.539244]  ? kmem_cache_alloc_trace+0x354/0x760
[  451.544101]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  451.549649]  ? copy_mount_options+0x30e/0x440
[  451.554162]  ksys_mount+0xdb/0x150
[  451.557714]  __x64_sys_mount+0xbe/0x150
[  451.561705]  do_syscall_64+0x103/0x610
[  451.561730]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  451.561741] RIP: 0033:0x45a8aa
[  451.561756] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00
[  451.561763] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  451.561776] RAX: ffffffffffffffda RBX: 00007f2e78bd9b30 RCX: 000000000045a8aa
[  451.561786] RDX: 00007f2e78bd9ad0 RSI: 0000000020000100 RDI: 00007f2e78bd9af0
[  451.570853] RBP: 0000000020000100 R08: 00007f2e78bd9b30 R09: 00007f2e78bd9ad0
[  451.570861] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004
[  451.570869] R13: 0000000000000000 R14: 00000000004db9a8 R15: 0000000000000003
[  451.608174] BTRFS: device fsid ecf6f2a2-2997-48ae-b81e-1b00920efd9a devid 0 transid 5318125732016778760 /dev/loop1
02:00:23 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x800000800c5012, &(0x7f0000003ff8)=0x42)

02:00:23 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, 0x0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:23 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x500000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:23 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x0, 0x0, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:23 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x8000004020940d, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

02:00:23 executing program 1 (fault-call:0 fault-nth:43):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

[  452.080147] FAULT_INJECTION: forcing a failure.
[  452.080147] name failslab, interval 1, probability 0, space 0, times 0
[  452.138010] CPU: 0 PID: 20124 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  452.145219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  452.154565] Call Trace:
[  452.154603]  dump_stack+0x172/0x1f0
[  452.154625]  should_fail.cold+0xa/0x1b
[  452.154645]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  452.154662]  ? lock_downgrade+0x810/0x810
[  452.160861]  ? ___might_sleep+0x163/0x280
[  452.160882]  __should_failslab+0x121/0x190
[  452.160898]  should_failslab+0x9/0x14
[  452.186172]  __kmalloc_track_caller+0x2d8/0x740
[  452.190861]  ? pcpu_alloc+0xf92/0x12e0
[  452.194757]  ? find_held_lock+0x35/0x130
[  452.198834]  ? btrfs_mount+0xdc/0x15b6
[  452.202731]  kstrdup+0x3a/0x70
[  452.205933]  btrfs_mount+0xdc/0x15b6
[  452.209644]  ? pcpu_alloc+0x49a/0x12e0
[  452.213531]  ? find_held_lock+0x35/0x130
[  452.217603]  ? kasan_check_write+0x14/0x20
[  452.221869]  ? __mutex_unlock_slowpath+0xf8/0x6b0
[  452.226735]  ? mark_held_locks+0xb1/0x100
[  452.230897]  ? btrfs_remount+0x11f0/0x11f0
02:00:23 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x600000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  452.235138]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  452.240675]  ? check_preemption_disabled+0x48/0x290
[  452.245702]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  452.251165]  ? rcu_read_lock_sched_held+0x110/0x130
[  452.256198]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  452.261735]  ? pcpu_alloc+0x144/0x12e0
[  452.265632]  ? pcpu_balance_workfn+0x12a0/0x12a0
[  452.270407]  mount_fs+0x106/0x3ff
[  452.273870]  ? mount_fs+0x106/0x3ff
[  452.277502]  ? emergency_thaw_all+0x1a0/0x1a0
[  452.282017]  ? __init_waitqueue_head+0x36/0x90
[  452.286623]  vfs_kern_mount.part.0+0x6f/0x410
[  452.291151]  do_mount+0x581/0x2d30
[  452.294692]  ? copy_mount_options+0x21/0x440
[  452.299106]  ? copy_mount_string+0x40/0x40
[  452.303363]  ? kmem_cache_alloc_trace+0x354/0x760
[  452.308227]  ? _copy_from_user+0xdd/0x150
[  452.312381]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  452.317918]  ? copy_mount_options+0x30e/0x440
[  452.322430]  ksys_mount+0xdb/0x150
[  452.325982]  __x64_sys_mount+0xbe/0x150
[  452.329960]  do_syscall_64+0x103/0x610
[  452.333864]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  452.339055] RIP: 0033:0x45a8aa
[  452.342261] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00
[  452.361256] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  452.368971] RAX: ffffffffffffffda RBX: 00007f2e78bd9b30 RCX: 000000000045a8aa
[  452.376246] RDX: 00007f2e78bd9ad0 RSI: 0000000020000100 RDI: 00007f2e78bd9af0
02:00:23 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x0, 0x0, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:23 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, 0x0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  452.383524] RBP: 0000000020000100 R08: 00007f2e78bd9b30 R09: 00007f2e78bd9ad0
[  452.390921] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004
[  452.398215] R13: 0000000000000000 R14: 00000000004db9a8 R15: 0000000000000003
02:00:23 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x700000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:23 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8))
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:23 executing program 1 (fault-call:0 fault-nth:44):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

[  452.641057] FAULT_INJECTION: forcing a failure.
[  452.641057] name failslab, interval 1, probability 0, space 0, times 0
[  452.668985] CPU: 0 PID: 20147 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  452.676194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  452.685569] Call Trace:
[  452.688175]  dump_stack+0x172/0x1f0
[  452.691812]  should_fail.cold+0xa/0x1b
[  452.695712]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  452.700838]  ? lock_downgrade+0x810/0x810
[  452.704988]  ? ___might_sleep+0x163/0x280
[  452.709144]  __should_failslab+0x121/0x190
[  452.713389]  should_failslab+0x9/0x14
[  452.717208]  kmem_cache_alloc+0x2be/0x710
[  452.721370]  ? trace_hardirqs_off+0x62/0x220
[  452.725780]  alloc_vfsmnt+0x28/0x780
[  452.729504]  ? kfree+0x173/0x230
[  452.732885]  vfs_kern_mount.part.0+0x2a/0x410
[  452.737383]  ? trace_hardirqs_on+0x67/0x230
[  452.741703]  vfs_kern_mount+0x40/0x60
[  452.745513]  btrfs_mount+0x2b5/0x15b6
[  452.749323]  ? pcpu_alloc+0x49a/0x12e0
[  452.753238]  ? find_held_lock+0x35/0x130
[  452.757309]  ? kasan_check_write+0x14/0x20
[  452.761585]  ? btrfs_remount+0x11f0/0x11f0
[  452.765838]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  452.771390]  ? check_preemption_disabled+0x48/0x290
[  452.776411]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  452.781861]  ? rcu_read_lock_sched_held+0x110/0x130
[  452.786877]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  452.792410]  ? pcpu_alloc+0x144/0x12e0
[  452.796323]  ? pcpu_balance_workfn+0x12a0/0x12a0
[  452.801089]  mount_fs+0x106/0x3ff
[  452.804568]  ? mount_fs+0x106/0x3ff
[  452.808211]  ? emergency_thaw_all+0x1a0/0x1a0
[  452.812707]  ? __init_waitqueue_head+0x36/0x90
[  452.817320]  vfs_kern_mount.part.0+0x6f/0x410
[  452.821823]  do_mount+0x581/0x2d30
[  452.825369]  ? copy_mount_options+0x21/0x440
[  452.829804]  ? copy_mount_string+0x40/0x40
[  452.834036]  ? kmem_cache_alloc_trace+0x354/0x760
[  452.838887]  ? _copy_from_user+0xdd/0x150
[  452.843037]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  452.848581]  ? copy_mount_options+0x30e/0x440
[  452.853090]  ksys_mount+0xdb/0x150
[  452.856642]  __x64_sys_mount+0xbe/0x150
[  452.860644]  do_syscall_64+0x103/0x610
[  452.864557]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  452.869758] RIP: 0033:0x45a8aa
[  452.872953] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00
[  452.891854] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  452.899559] RAX: ffffffffffffffda RBX: 00007f2e78bd9b30 RCX: 000000000045a8aa
[  452.906822] RDX: 00007f2e78bd9ad0 RSI: 0000000020000100 RDI: 00007f2e78bd9af0
[  452.914088] RBP: 0000000020000100 R08: 00007f2e78bd9b30 R09: 00007f2e78bd9ad0
[  452.921365] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004
[  452.928627] R13: 0000000000000000 R14: 00000000004db9a8 R15: 0000000000000003
02:00:24 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8))
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:24 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x8000008010500c, &(0x7f0000003ff8)=0x42)

02:00:24 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x80000080044d76, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

02:00:24 executing program 1 (fault-call:0 fault-nth:45):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

02:00:24 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x800000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:24 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x0, 0x0, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:24 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8))
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:24 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x806000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  453.303056] FAULT_INJECTION: forcing a failure.
[  453.303056] name failslab, interval 1, probability 0, space 0, times 0
[  453.386009] CPU: 1 PID: 20161 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  453.393293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  453.402660] Call Trace:
[  453.405255]  dump_stack+0x172/0x1f0
[  453.408913]  should_fail.cold+0xa/0x1b
[  453.412822]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  453.417944]  ? lock_downgrade+0x810/0x810
[  453.422101]  ? ___might_sleep+0x163/0x280
[  453.426256]  __should_failslab+0x121/0x190
[  453.430536]  should_failslab+0x9/0x14
[  453.434366]  __kmalloc_track_caller+0x2d8/0x740
[  453.439075]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  453.444571]  ? alloc_vfsmnt+0x28/0x780
[  453.448502]  ? kstrdup_const+0x66/0x80
[  453.452434]  kstrdup+0x3a/0x70
[  453.455650]  kstrdup_const+0x66/0x80
[  453.459409]  alloc_vfsmnt+0xba/0x780
[  453.463130]  vfs_kern_mount.part.0+0x2a/0x410
[  453.467659]  do_mount+0x581/0x2d30
[  453.471204]  ? copy_mount_options+0x21/0x440
[  453.475613]  ? copy_mount_string+0x40/0x40
[  453.479874]  ? kmem_cache_alloc_trace+0x354/0x760
[  453.484737]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  453.490324]  ? copy_mount_options+0x30e/0x440
[  453.494859]  ksys_mount+0xdb/0x150
[  453.498430]  __x64_sys_mount+0xbe/0x150
[  453.502427]  do_syscall_64+0x103/0x610
[  453.506355]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  453.511638] RIP: 0033:0x45a8aa
[  453.514854] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00
02:00:24 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  453.533765] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  453.541522] RAX: ffffffffffffffda RBX: 00007f2e78bd9b30 RCX: 000000000045a8aa
[  453.548802] RDX: 00007f2e78bd9ad0 RSI: 0000000020000100 RDI: 00007f2e78bd9af0
[  453.556086] RBP: 0000000020000100 R08: 00007f2e78bd9b30 R09: 00007f2e78bd9ad0
[  453.563350] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004
[  453.570623] R13: 0000000000000000 R14: 00000000004db9a8 R15: 0000000000000003
02:00:24 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x0, 0x8000, 0x0, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:24 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x900000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:24 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

02:00:24 executing program 1 (fault-call:0 fault-nth:46):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

02:00:24 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xa00000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  453.813212] FAULT_INJECTION: forcing a failure.
[  453.813212] name failslab, interval 1, probability 0, space 0, times 0
[  453.873656] CPU: 0 PID: 20186 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  453.880877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  453.890229] Call Trace:
[  453.892831]  dump_stack+0x172/0x1f0
[  453.896476]  should_fail.cold+0xa/0x1b
[  453.900379]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  453.905486]  ? lock_downgrade+0x810/0x810
[  453.909639]  ? ___might_sleep+0x163/0x280
[  453.913797]  __should_failslab+0x121/0x190
[  453.918034]  should_failslab+0x9/0x14
[  453.921893]  kmem_cache_alloc_node_trace+0x270/0x720
[  453.927036]  __kmalloc_node+0x3d/0x70
[  453.930890]  kvmalloc_node+0xbd/0x100
[  453.934715]  btrfs_mount_root+0x12b/0x1220
[  453.938952]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  453.944493]  ? btrfs_decode_error+0x70/0x70
[  453.948838]  ? rcu_read_lock_sched_held+0x110/0x130
[  453.953863]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  453.959418]  ? pcpu_alloc+0x144/0x12e0
[  453.963330]  ? pcpu_balance_workfn+0x12a0/0x12a0
[  453.968098]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  453.973560]  ? alloc_vfsmnt+0x28/0x780
[  453.977449]  mount_fs+0x106/0x3ff
[  453.980906]  ? emergency_thaw_all+0x1a0/0x1a0
[  453.985400]  ? __init_waitqueue_head+0x36/0x90
[  453.990002]  vfs_kern_mount.part.0+0x6f/0x410
[  453.994550]  vfs_kern_mount+0x40/0x60
[  453.998377]  btrfs_mount+0x2b5/0x15b6
[  454.002209]  ? pcpu_alloc+0x49a/0x12e0
[  454.006126]  ? find_held_lock+0x35/0x130
[  454.010202]  ? kasan_check_write+0x14/0x20
[  454.014440]  ? btrfs_remount+0x11f0/0x11f0
[  454.018672]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  454.024207]  ? check_preemption_disabled+0x48/0x290
[  454.029240]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  454.034738]  ? rcu_read_lock_sched_held+0x110/0x130
[  454.039787]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  454.045326]  ? pcpu_alloc+0x144/0x12e0
[  454.049225]  ? pcpu_balance_workfn+0x12a0/0x12a0
[  454.054007]  mount_fs+0x106/0x3ff
[  454.057459]  ? mount_fs+0x106/0x3ff
[  454.061098]  ? emergency_thaw_all+0x1a0/0x1a0
[  454.065605]  ? __init_waitqueue_head+0x36/0x90
[  454.070207]  vfs_kern_mount.part.0+0x6f/0x410
[  454.074706]  do_mount+0x581/0x2d30
[  454.078248]  ? copy_mount_options+0x21/0x440
[  454.082674]  ? copy_mount_string+0x40/0x40
[  454.086922]  ? kmem_cache_alloc_trace+0x354/0x760
[  454.091778]  ? _copy_from_user+0xdd/0x150
[  454.095942]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  454.101513]  ? copy_mount_options+0x30e/0x440
[  454.106017]  ksys_mount+0xdb/0x150
[  454.109560]  __x64_sys_mount+0xbe/0x150
[  454.113556]  do_syscall_64+0x103/0x610
[  454.117929]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  454.123112] RIP: 0033:0x45a8aa
[  454.126325] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00
[  454.145224] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  454.152967] RAX: ffffffffffffffda RBX: 00007f2e78bd9b30 RCX: 000000000045a8aa
[  454.160240] RDX: 00007f2e78bd9ad0 RSI: 0000000020000100 RDI: 00007f2e78bd9af0
[  454.167509] RBP: 0000000020000100 R08: 00007f2e78bd9b30 R09: 00007f2e78bd9ad0
[  454.174773] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004
[  454.182039] R13: 0000000000000000 R14: 00000000004db9a8 R15: 0000000000000003
[  454.195627] BTRFS: device fsid ecf6f2a2-2997-48ae-b81e-1b00920efd9a devid 0 transid 5318125732016778760 /dev/loop1
02:00:25 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x8000008010500d, &(0x7f0000003ff8)=0x42)

02:00:25 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

02:00:25 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xd00000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:25 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x0, 0x8000, 0x0, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:25 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x80000080044df9, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

02:00:25 executing program 1 (fault-call:0 fault-nth:47):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

[  454.444682] FAULT_INJECTION: forcing a failure.
[  454.444682] name failslab, interval 1, probability 0, space 0, times 0
[  454.462506] CPU: 0 PID: 20196 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  454.469741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  454.479091] Call Trace:
[  454.481687]  dump_stack+0x172/0x1f0
[  454.485378]  should_fail.cold+0xa/0x1b
[  454.489285]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  454.494433]  ? lock_downgrade+0x810/0x810
[  454.498585]  ? ___might_sleep+0x163/0x280
[  454.502752]  __should_failslab+0x121/0x190
[  454.506989]  should_failslab+0x9/0x14
[  454.510787]  kmem_cache_alloc_trace+0x2d1/0x760
[  454.515468]  ? kasan_kmalloc+0x9/0x10
[  454.519300]  ? __kmalloc_node+0x4e/0x70
[  454.523311]  btrfs_mount_root+0x174/0x1220
[  454.527572]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  454.533115]  ? btrfs_decode_error+0x70/0x70
[  454.537449]  ? rcu_read_lock_sched_held+0x110/0x130
[  454.542470]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  454.548008]  ? pcpu_alloc+0x144/0x12e0
[  454.551915]  ? pcpu_balance_workfn+0x12a0/0x12a0
[  454.556668]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  454.562116]  ? alloc_vfsmnt+0x28/0x780
[  454.566015]  mount_fs+0x106/0x3ff
[  454.569480]  ? emergency_thaw_all+0x1a0/0x1a0
[  454.573981]  ? __init_waitqueue_head+0x36/0x90
[  454.578577]  vfs_kern_mount.part.0+0x6f/0x410
[  454.583087]  vfs_kern_mount+0x40/0x60
[  454.586919]  btrfs_mount+0x2b5/0x15b6
[  454.590723]  ? pcpu_alloc+0x49a/0x12e0
[  454.594644]  ? find_held_lock+0x35/0x130
[  454.598710]  ? kasan_check_write+0x14/0x20
[  454.602970]  ? btrfs_remount+0x11f0/0x11f0
[  454.607208]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  454.612800]  ? check_preemption_disabled+0x48/0x290
[  454.617831]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  454.623293]  ? rcu_read_lock_sched_held+0x110/0x130
[  454.628318]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  454.633855]  ? pcpu_alloc+0x144/0x12e0
[  454.637762]  ? pcpu_balance_workfn+0x12a0/0x12a0
[  454.642546]  mount_fs+0x106/0x3ff
[  454.646003]  ? mount_fs+0x106/0x3ff
[  454.649634]  ? emergency_thaw_all+0x1a0/0x1a0
[  454.654154]  ? __init_waitqueue_head+0x36/0x90
[  454.658748]  vfs_kern_mount.part.0+0x6f/0x410
[  454.663248]  do_mount+0x581/0x2d30
[  454.666796]  ? copy_mount_options+0x21/0x440
[  454.671232]  ? copy_mount_string+0x40/0x40
[  454.675517]  ? kmem_cache_alloc_trace+0x354/0x760
[  454.680373]  ? _copy_from_user+0xdd/0x150
[  454.684541]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  454.690113]  ? copy_mount_options+0x30e/0x440
[  454.694614]  ksys_mount+0xdb/0x150
[  454.698158]  __x64_sys_mount+0xbe/0x150
[  454.702142]  do_syscall_64+0x103/0x610
[  454.706066]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  454.711286] RIP: 0033:0x45a8aa
[  454.714500] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00
[  454.733408] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
02:00:25 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

02:00:25 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x0, 0x8000, 0x0, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:25 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xe00000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  454.741131] RAX: ffffffffffffffda RBX: 00007f2e78bd9b30 RCX: 000000000045a8aa
[  454.748401] RDX: 00007f2e78bd9ad0 RSI: 0000000020000100 RDI: 00007f2e78bd9af0
[  454.755669] RBP: 0000000020000100 R08: 00007f2e78bd9b30 R09: 00007f2e78bd9ad0
[  454.762934] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004
[  454.770226] R13: 0000000000000000 R14: 00000000004db9a8 R15: 0000000000000003
02:00:26 executing program 1 (fault-call:0 fault-nth:48):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

02:00:26 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x1100000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:26 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x80000000, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x5, 0x5, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x7, 0x9, 0x2, 0x8, 0x0, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  454.981567] FAULT_INJECTION: forcing a failure.
[  454.981567] name failslab, interval 1, probability 0, space 0, times 0
[  455.034459] CPU: 1 PID: 20216 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  455.041683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  455.051039] Call Trace:
[  455.053647]  dump_stack+0x172/0x1f0
[  455.057299]  should_fail.cold+0xa/0x1b
[  455.061191]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  455.066317]  ? lock_downgrade+0x810/0x810
[  455.070483]  ? ___might_sleep+0x163/0x280
[  455.074640]  __should_failslab+0x121/0x190
[  455.078897]  should_failslab+0x9/0x14
[  455.082698]  kmem_cache_alloc_trace+0x2d1/0x760
[  455.087367]  ? kasan_kmalloc+0x9/0x10
[  455.091186]  ? __kmalloc_node+0x4e/0x70
[  455.095176]  btrfs_mount_root+0x1d0/0x1220
[  455.099416]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  455.105050]  ? btrfs_decode_error+0x70/0x70
[  455.109380]  ? rcu_read_lock_sched_held+0x110/0x130
[  455.114402]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  455.119935]  ? pcpu_alloc+0x144/0x12e0
[  455.119959]  ? pcpu_balance_workfn+0x12a0/0x12a0
[  455.119984]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  455.128613]  ? alloc_vfsmnt+0x28/0x780
[  455.128632]  mount_fs+0x106/0x3ff
[  455.128649]  ? emergency_thaw_all+0x1a0/0x1a0
[  455.145876]  ? __init_waitqueue_head+0x36/0x90
[  455.150513]  vfs_kern_mount.part.0+0x6f/0x410
[  455.155008]  vfs_kern_mount+0x40/0x60
[  455.158822]  btrfs_mount+0x2b5/0x15b6
[  455.162620]  ? pcpu_alloc+0x49a/0x12e0
[  455.166527]  ? find_held_lock+0x35/0x130
[  455.170593]  ? kasan_check_write+0x14/0x20
[  455.174835]  ? btrfs_remount+0x11f0/0x11f0
[  455.179104]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  455.184668]  ? check_preemption_disabled+0x48/0x290
[  455.189719]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  455.195185]  ? rcu_read_lock_sched_held+0x110/0x130
[  455.200197]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  455.205756]  ? pcpu_alloc+0x144/0x12e0
[  455.209649]  ? pcpu_balance_workfn+0x12a0/0x12a0
[  455.214411]  mount_fs+0x106/0x3ff
[  455.217876]  ? mount_fs+0x106/0x3ff
[  455.221503]  ? emergency_thaw_all+0x1a0/0x1a0
[  455.226496]  ? __init_waitqueue_head+0x36/0x90
[  455.231084]  vfs_kern_mount.part.0+0x6f/0x410
[  455.235605]  do_mount+0x581/0x2d30
[  455.239157]  ? copy_mount_options+0x21/0x440
[  455.243602]  ? copy_mount_string+0x40/0x40
[  455.247844]  ? kmem_cache_alloc_trace+0x354/0x760
[  455.252700]  ? _copy_from_user+0xdd/0x150
[  455.256893]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  455.262431]  ? copy_mount_options+0x30e/0x440
[  455.266939]  ksys_mount+0xdb/0x150
[  455.270495]  __x64_sys_mount+0xbe/0x150
[  455.274514]  do_syscall_64+0x103/0x610
[  455.278407]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  455.283612] RIP: 0033:0x45a8aa
[  455.286802] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00
[  455.305718] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  455.313424] RAX: ffffffffffffffda RBX: 00007f2e78bd9b30 RCX: 000000000045a8aa
[  455.320699] RDX: 00007f2e78bd9ad0 RSI: 0000000020000100 RDI: 00007f2e78bd9af0
[  455.327987] RBP: 0000000020000100 R08: 00007f2e78bd9b30 R09: 00007f2e78bd9ad0
[  455.335258] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004
[  455.342548] R13: 0000000000000000 R14: 00000000004db9a8 R15: 0000000000000003
02:00:27 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x800000c0045002, &(0x7f0000003ff8)=0x42)

02:00:27 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x8000004020940d, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

02:00:27 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x80000080045002, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

02:00:27 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x0, 0x800, 0x8000, 0x0, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:27 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x2800000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:27 executing program 1 (fault-call:0 fault-nth:49):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

02:00:27 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x3c00000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  455.931477] FAULT_INJECTION: forcing a failure.
[  455.931477] name failslab, interval 1, probability 0, space 0, times 0
02:00:27 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x800000c0045003, &(0x7f0000003ff8)=0x42)

[  456.001125] CPU: 0 PID: 20233 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  456.008406] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  456.017781] Call Trace:
[  456.020384]  dump_stack+0x172/0x1f0
[  456.024039]  should_fail.cold+0xa/0x1b
[  456.027940]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  456.033044]  ? lock_downgrade+0x810/0x810
[  456.037200]  ? ___might_sleep+0x163/0x280
[  456.041395]  __should_failslab+0x121/0x190
[  456.045669]  should_failslab+0x9/0x14
[  456.049468]  __kmalloc_track_caller+0x2d8/0x740
[  456.054157]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  456.059623]  ? alloc_vfsmnt+0x28/0x780
[  456.063524]  ? kstrdup_const+0x66/0x80
[  456.067426]  kstrdup+0x3a/0x70
[  456.070647]  kstrdup_const+0x66/0x80
[  456.074373]  alloc_vfsmnt+0xba/0x780
[  456.078096]  ? kfree+0x173/0x230
[  456.081482]  vfs_kern_mount.part.0+0x2a/0x410
[  456.086031]  ? trace_hardirqs_on+0x67/0x230
[  456.090369]  vfs_kern_mount+0x40/0x60
[  456.094187]  btrfs_mount+0x2b5/0x15b6
[  456.097979]  ? pcpu_alloc+0x49a/0x12e0
[  456.101863]  ? find_held_lock+0x35/0x130
[  456.105928]  ? kasan_check_write+0x14/0x20
[  456.110180]  ? btrfs_remount+0x11f0/0x11f0
[  456.114417]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  456.120435]  ? check_preemption_disabled+0x48/0x290
[  456.125470]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  456.130935]  ? rcu_read_lock_sched_held+0x110/0x130
[  456.135954]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  456.141500]  ? pcpu_alloc+0x144/0x12e0
[  456.145405]  ? pcpu_balance_workfn+0x12a0/0x12a0
[  456.150166]  mount_fs+0x106/0x3ff
[  456.153618]  ? mount_fs+0x106/0x3ff
[  456.157248]  ? emergency_thaw_all+0x1a0/0x1a0
[  456.161753]  ? __init_waitqueue_head+0x36/0x90
[  456.166361]  vfs_kern_mount.part.0+0x6f/0x410
[  456.170863]  do_mount+0x581/0x2d30
[  456.174418]  ? copy_mount_options+0x21/0x440
[  456.178833]  ? copy_mount_string+0x40/0x40
[  456.183106]  ? kmem_cache_alloc_trace+0x354/0x760
[  456.187962]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  456.193499]  ? copy_mount_options+0x30e/0x440
[  456.198024]  ksys_mount+0xdb/0x150
[  456.201568]  __x64_sys_mount+0xbe/0x150
[  456.205579]  do_syscall_64+0x103/0x610
[  456.209483]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  456.214680] RIP: 0033:0x45a8aa
[  456.217911] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00
[  456.236807] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  456.244513] RAX: ffffffffffffffda RBX: 00007f2e78bd9b30 RCX: 000000000045a8aa
02:00:27 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x4000000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  456.251799] RDX: 00007f2e78bd9ad0 RSI: 0000000020000100 RDI: 00007f2e78bd9af0
[  456.259078] RBP: 0000000020000100 R08: 00007f2e78bd9b30 R09: 00007f2e78bd9ad0
[  456.266343] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004
[  456.273626] R13: 0000000000000000 R14: 00000000004db9a8 R15: 0000000000000003
02:00:27 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x0, 0x800, 0x8000, 0x0, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:27 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x4305000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:27 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x4400000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:27 executing program 5:
mkdir(&(0x7f0000000480)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000380)='sysfs\x00*\x86OK\xc0\v\xce\x1b\xdb cr\x13\xb1\xe8\x94\xd1 q_\x9d\xc1\x12[\x04,r&\xeb\x016\xd9bN\xa1\xd23t\xa6`\xfeZ\xc1sr/\xd3g\xad\"\xe8U0%\xa2\xe8\xbe\v\xc5QCy\xafr\x13\xd3+\x8d]\x06\xdc\x8f\xbf,\x84\x9e\xd9\xcd\xef\xc7K\x03\xdf\xa9\xcbZ\x90\xb2\x8bK$\xd7\x86,=f\xfc\xa51g\xd5BB5CZ=\xbbv\xbc}<B\xfc.\x9cia\x14\xa6\xf8\x88\xf0\xda\x85\'v\x83\xcf\xc1\xc4\xd2\xbfq\xc2U\xa3\x13Md\xcc?\xed\x8e\x97y\x8d\xeb\x861\xcb\xf7h,\x9f\xa2\xed\x03\x14e\xaa\x19\x1d\xf9\"\xf7d)|\xba\"\xa8I\x9d\x17\x7fI\xfb\xa9@\xf5[\xbc\x8br?\xd3t\xf1\xfe\xd7\x8c\x8a\xee\xc6\x81\x1d\x9bXyHs\x87\xd5e\x94\xa1L%\x88\'M\xe8O\xa2v\x100+?\xb5Ar\xa8\xc9\x10\xa0~|v\xeaFZ\xa6\x84\x02', 0x0, 0x0)
umount2(&(0x7f0000000040)='./file0\x00', 0x0)

02:00:27 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x80000080045005, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

02:00:27 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x6c00000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:27 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x9, 0x0, 0x800, 0x8000, 0x0, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:27 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000200)="0af51f023c123f3188a070")
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000cd0fc8)={0x0, 0x0, &(0x7f0000ca6000)={&(0x7f0000000000)=ANY=[@ANYBLOB="020d0000140000000000000000000000080012000000030000000000000000000600000000000000000000000000000000000000000000000000000000000000ff02000000000000000000000000000105000500000000000a0000000000000000000000000000000000ffffac141400000000000000000005000600000000000a00000000020000008000000000000000000000000000ff0000000000000000"], 0xa0}}, 0x0)

02:00:27 executing program 1 (fault-call:0 fault-nth:50):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

02:00:27 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x8004020000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  456.827654] FAULT_INJECTION: forcing a failure.
[  456.827654] name failslab, interval 1, probability 0, space 0, times 0
[  456.848683] CPU: 1 PID: 20281 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  456.855899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  456.865303] Call Trace:
[  456.867937]  dump_stack+0x172/0x1f0
[  456.871627]  should_fail.cold+0xa/0x1b
[  456.875548]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  456.880665]  ? lock_downgrade+0x810/0x810
[  456.884852]  ? ___might_sleep+0x163/0x280
[  456.889014]  __should_failslab+0x121/0x190
[  456.893269]  should_failslab+0x9/0x14
[  456.897103]  __kmalloc_track_caller+0x2d8/0x740
[  456.901783]  ? __lock_is_held+0xb6/0x140
[  456.905864]  ? btrfs_mount_root+0x2b8/0x1220
[  456.910288]  kstrdup+0x3a/0x70
[  456.913508]  btrfs_mount_root+0x2b8/0x1220
[  456.917756]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  456.923304]  ? btrfs_decode_error+0x70/0x70
[  456.927633]  ? rcu_read_lock_sched_held+0x110/0x130
[  456.932660]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  456.938197]  ? pcpu_alloc+0x144/0x12e0
[  456.942093]  ? pcpu_balance_workfn+0x12a0/0x12a0
[  456.946869]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  456.952333]  ? alloc_vfsmnt+0x28/0x780
[  456.956239]  mount_fs+0x106/0x3ff
[  456.959693]  ? emergency_thaw_all+0x1a0/0x1a0
[  456.964192]  ? __init_waitqueue_head+0x36/0x90
[  456.968788]  vfs_kern_mount.part.0+0x6f/0x410
[  456.973302]  vfs_kern_mount+0x40/0x60
[  456.977127]  btrfs_mount+0x2b5/0x15b6
[  456.980951]  ? pcpu_alloc+0x49a/0x12e0
[  456.984847]  ? find_held_lock+0x35/0x130
[  456.988960]  ? kasan_check_write+0x14/0x20
[  456.993213]  ? btrfs_remount+0x11f0/0x11f0
[  456.997469]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  457.003011]  ? check_preemption_disabled+0x48/0x290
[  457.008062]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  457.013524]  ? rcu_read_lock_sched_held+0x110/0x130
[  457.018580]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  457.024127]  ? pcpu_alloc+0x144/0x12e0
[  457.028066]  ? pcpu_balance_workfn+0x12a0/0x12a0
[  457.032864]  mount_fs+0x106/0x3ff
[  457.036337]  ? mount_fs+0x106/0x3ff
[  457.039975]  ? emergency_thaw_all+0x1a0/0x1a0
[  457.044474]  ? __init_waitqueue_head+0x36/0x90
[  457.049066]  vfs_kern_mount.part.0+0x6f/0x410
[  457.053565]  do_mount+0x581/0x2d30
[  457.057113]  ? copy_mount_options+0x21/0x440
[  457.061540]  ? copy_mount_string+0x40/0x40
[  457.065778]  ? kmem_cache_alloc_trace+0x354/0x760
[  457.070627]  ? _copy_from_user+0xdd/0x150
[  457.074926]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  457.080464]  ? copy_mount_options+0x30e/0x440
[  457.084965]  ksys_mount+0xdb/0x150
[  457.088507]  __x64_sys_mount+0xbe/0x150
[  457.092486]  do_syscall_64+0x103/0x610
[  457.096381]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  457.101579] RIP: 0033:0x45a8aa
[  457.104772] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00
[  457.123732] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  457.131460] RAX: ffffffffffffffda RBX: 00007f2e78bd9b30 RCX: 000000000045a8aa
[  457.138741] RDX: 00007f2e78bd9ad0 RSI: 0000000020000100 RDI: 00007f2e78bd9af0
[  457.146021] RBP: 0000000020000100 R08: 00007f2e78bd9b30 R09: 00007f2e78bd9ad0
[  457.153292] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004
[  457.160559] R13: 0000000000000000 R14: 00000000004db9a8 R15: 0000000000000003
02:00:28 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x800000c0045004, &(0x7f0000003ff8)=0x42)

02:00:28 executing program 5:
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000000200)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0xffffffa5}}, 0x0, 0x1, 0xc3, &(0x7f0000000300)=""/195, 0x0, 0x0, [0x42]}, 0x48)

02:00:28 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x800e000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:28 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x0, 0x6, 0x800, 0x8000, 0x0, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:28 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x80000080045006, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

02:00:28 executing program 1 (fault-call:0 fault-nth:51):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

02:00:28 executing program 5:
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000000200)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x2e, 0x5}}, &(0x7f0000000240)='EP\xd4\x00\x1f\x91\xeb/W\xb72$C0%\x03\x9c0\x96\xb2\fkC\x93H\xbfh\x9c\b`\x857\xd6\">c\xad\xc0bO\xba\xe2\xe1\t5\x9d\xcei\"2L\xcc\x13\x16\vh\xca\xe6C\x06\x97%\x9d\xd5-\x1fs\xe1j\xdc5\x92\xd0)%\xdf\xfa\xe8^\x9c\xd29\x8clg\xc8\x7f\xb5\xb1&\x02\xf1E\xb4\x84\xbeE\x91)f\xe8\xb7\xe2\xf6`i\xc5m\xd7l\x1d\xc1\x12\x01<:kM\xe9\x99\xcd\xcd\xc8\x85Z\xee47\xdc\xc8u\x80\xcf\xbeTo\xbb\xfb\xc0\xebV\xd8\xbb\xbe\xa2\x90J|s\xc2', 0x1, 0xc3, &(0x7f0000000300)=""/195, 0x0, 0x0, [0x42]}, 0x48)

02:00:28 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x8035000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  457.372518] FAULT_INJECTION: forcing a failure.
[  457.372518] name failslab, interval 1, probability 0, space 0, times 0
[  457.390016] CPU: 1 PID: 20297 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  457.397240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  457.406602] Call Trace:
[  457.409194]  dump_stack+0x172/0x1f0
[  457.412840]  should_fail.cold+0xa/0x1b
[  457.416722]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  457.421844]  ? lock_downgrade+0x810/0x810
[  457.426043]  ? ___might_sleep+0x163/0x280
[  457.430195]  __should_failslab+0x121/0x190
[  457.434428]  should_failslab+0x9/0x14
[  457.438222]  kmem_cache_alloc_node_trace+0x270/0x720
[  457.443327]  __kmalloc_node+0x3d/0x70
[  457.447173]  kvmalloc_node+0xbd/0x100
[  457.450973]  btrfs_mount_root+0x12b/0x1220
[  457.455201]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  457.460756]  ? btrfs_decode_error+0x70/0x70
[  457.465097]  ? rcu_read_lock_sched_held+0x110/0x130
[  457.470103]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  457.475639]  ? pcpu_alloc+0x144/0x12e0
[  457.479554]  ? pcpu_balance_workfn+0x12a0/0x12a0
[  457.484315]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  457.489777]  ? alloc_vfsmnt+0x28/0x780
[  457.493668]  mount_fs+0x106/0x3ff
[  457.497127]  ? emergency_thaw_all+0x1a0/0x1a0
[  457.501639]  ? __init_waitqueue_head+0x36/0x90
[  457.506237]  vfs_kern_mount.part.0+0x6f/0x410
[  457.510758]  vfs_kern_mount+0x40/0x60
[  457.514554]  btrfs_mount+0x2b5/0x15b6
[  457.518363]  ? pcpu_alloc+0x49a/0x12e0
[  457.522256]  ? find_held_lock+0x35/0x130
[  457.526327]  ? kasan_check_write+0x14/0x20
[  457.530558]  ? btrfs_remount+0x11f0/0x11f0
[  457.534793]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  457.540332]  ? check_preemption_disabled+0x48/0x290
[  457.545352]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  457.550798]  ? rcu_read_lock_sched_held+0x110/0x130
[  457.555807]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  457.561364]  ? pcpu_alloc+0x144/0x12e0
[  457.565284]  ? pcpu_balance_workfn+0x12a0/0x12a0
[  457.570043]  mount_fs+0x106/0x3ff
[  457.573488]  ? mount_fs+0x106/0x3ff
[  457.577110]  ? emergency_thaw_all+0x1a0/0x1a0
[  457.581611]  ? __init_waitqueue_head+0x36/0x90
[  457.586203]  vfs_kern_mount.part.0+0x6f/0x410
[  457.590709]  do_mount+0x581/0x2d30
[  457.594240]  ? copy_mount_options+0x21/0x440
[  457.598647]  ? copy_mount_string+0x40/0x40
[  457.602888]  ? kmem_cache_alloc_trace+0x354/0x760
[  457.607773]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  457.613323]  ? copy_mount_options+0x30e/0x440
[  457.617824]  ksys_mount+0xdb/0x150
[  457.621397]  __x64_sys_mount+0xbe/0x150
[  457.625411]  do_syscall_64+0x103/0x610
[  457.629305]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  457.634507] RIP: 0033:0x45a8aa
[  457.637691] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00
[  457.656610] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  457.664323] RAX: ffffffffffffffda RBX: 00007f2e78bd9b30 RCX: 000000000045a8aa
[  457.671605] RDX: 00007f2e78bd9ad0 RSI: 0000000020000100 RDI: 00007f2e78bd9af0
[  457.678885] RBP: 0000000020000100 R08: 00007f2e78bd9b30 R09: 00007f2e78bd9ad0
[  457.686161] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004
[  457.693418] R13: 0000000000000000 R14: 00000000004db9a8 R15: 0000000000000003
02:00:28 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x0, 0x6, 0x800, 0x8000, 0x0, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:28 executing program 5:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001a80)={0x2, 0x4, 0x8000, 0x20000000000001, 0x0, 0x0}, 0x615)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={r0, &(0x7f0000000000), 0x0}, 0x20)

02:00:28 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x8100000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  457.721238] BTRFS: device fsid ecf6f2a2-2997-48ae-b81e-1b00920efd9a devid 0 transid 5318125732016778760 /dev/loop1
02:00:29 executing program 1 (fault-call:0 fault-nth:52):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

[  457.923521] FAULT_INJECTION: forcing a failure.
[  457.923521] name failslab, interval 1, probability 0, space 0, times 0
[  457.936368] CPU: 0 PID: 20314 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  457.943604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  457.952970] Call Trace:
[  457.955582]  dump_stack+0x172/0x1f0
[  457.959236]  should_fail.cold+0xa/0x1b
[  457.963138]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  457.968281]  ? lock_downgrade+0x810/0x810
[  457.972437]  ? ___might_sleep+0x163/0x280
[  457.976605]  __should_failslab+0x121/0x190
[  457.980856]  should_failslab+0x9/0x14
[  457.984656]  __kmalloc_track_caller+0x2d8/0x740
[  457.989345]  ? __lock_is_held+0xb6/0x140
[  457.993411]  ? btrfs_mount_root+0x2b8/0x1220
[  457.997819]  kstrdup+0x3a/0x70
[  458.001014]  btrfs_mount_root+0x2b8/0x1220
[  458.005268]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  458.010854]  ? btrfs_decode_error+0x70/0x70
[  458.015198]  ? rcu_read_lock_sched_held+0x110/0x130
[  458.020213]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  458.025810]  ? pcpu_alloc+0x144/0x12e0
[  458.029731]  ? pcpu_balance_workfn+0x12a0/0x12a0
[  458.034505]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  458.039957]  ? alloc_vfsmnt+0x28/0x780
[  458.043844]  mount_fs+0x106/0x3ff
[  458.047339]  ? emergency_thaw_all+0x1a0/0x1a0
[  458.051838]  ? __init_waitqueue_head+0x36/0x90
[  458.056446]  vfs_kern_mount.part.0+0x6f/0x410
[  458.060942]  vfs_kern_mount+0x40/0x60
[  458.064744]  btrfs_mount+0x2b5/0x15b6
[  458.068544]  ? pcpu_alloc+0x49a/0x12e0
[  458.072464]  ? find_held_lock+0x35/0x130
[  458.076527]  ? kasan_check_write+0x14/0x20
[  458.080802]  ? btrfs_remount+0x11f0/0x11f0
[  458.085073]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  458.090612]  ? check_preemption_disabled+0x48/0x290
[  458.095640]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  458.101097]  ? rcu_read_lock_sched_held+0x110/0x130
[  458.106116]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  458.111650]  ? pcpu_alloc+0x144/0x12e0
[  458.115571]  ? pcpu_balance_workfn+0x12a0/0x12a0
[  458.120805]  mount_fs+0x106/0x3ff
[  458.124283]  ? mount_fs+0x106/0x3ff
[  458.127927]  ? emergency_thaw_all+0x1a0/0x1a0
[  458.132422]  ? __init_waitqueue_head+0x36/0x90
[  458.137023]  vfs_kern_mount.part.0+0x6f/0x410
[  458.141539]  do_mount+0x581/0x2d30
[  458.145081]  ? copy_mount_options+0x21/0x440
[  458.149499]  ? copy_mount_string+0x40/0x40
[  458.153746]  ? kmem_cache_alloc_trace+0x354/0x760
[  458.158594]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  458.164130]  ? copy_mount_options+0x30e/0x440
[  458.168632]  ksys_mount+0xdb/0x150
[  458.172176]  __x64_sys_mount+0xbe/0x150
[  458.176152]  do_syscall_64+0x103/0x610
[  458.180041]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  458.185235] RIP: 0033:0x45a8aa
[  458.188426] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00
[  458.207361] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  458.215076] RAX: ffffffffffffffda RBX: 00007f2e78bd9b30 RCX: 000000000045a8aa
[  458.222353] RDX: 00007f2e78bd9ad0 RSI: 0000000020000100 RDI: 00007f2e78bd9af0
[  458.229671] RBP: 0000000020000100 R08: 00007f2e78bd9b30 R09: 00007f2e78bd9ad0
[  458.237754] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004
[  458.245038] R13: 0000000000000000 R14: 00000000004db9a8 R15: 0000000000000003
02:00:29 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x800000c0045006, &(0x7f0000003ff8)=0x42)

02:00:29 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x80000080045007, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

02:00:29 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x3102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
wait4(0x0, 0x0, 0x80000000, 0x0)
exit_group(0x0)
ioctl$TCSETSF(0xffffffffffffffff, 0x5404, &(0x7f0000000000)={0xc3, 0x9, 0x4, 0x0, 0x5, 0x3ff, 0xfffffffffffffa88, 0xed, 0x40, 0x2, 0x3ff})
lgetxattr(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000140)=@known='user.syz\x00', &(0x7f00000001c0)=""/209, 0xfffffffffffffffc)
syz_open_dev$usb(0x0, 0x201, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000080)=[{0x0, 0x0, 0x400}], 0x0, 0x0)

02:00:29 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x86ddffff00000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:29 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x10000000000, 0x0, 0x0, 0x6, 0x800, 0x8000, 0x0, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:29 executing program 1 (fault-call:0 fault-nth:53):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

[  458.449925] FAULT_INJECTION: forcing a failure.
[  458.449925] name failslab, interval 1, probability 0, space 0, times 0
[  458.461474] CPU: 1 PID: 20322 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  458.468665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  458.478018] Call Trace:
[  458.480621]  dump_stack+0x172/0x1f0
[  458.484258]  should_fail.cold+0xa/0x1b
[  458.488198]  ? __lock_acquire+0x53b/0x4700
[  458.492444]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  458.497751]  ? __lock_acquire+0x53b/0x4700
[  458.502014]  ? refill_stock+0x14b/0x1f0
[  458.502036]  __should_failslab+0x121/0x190
[  458.502053]  should_failslab+0x9/0x14
[  458.502065]  kmem_cache_alloc+0x47/0x710
[  458.502079]  ? __lock_is_held+0xb6/0x140
[  458.510297]  xas_alloc+0x2df/0x3d0
[  458.510324]  xas_create+0x2cd/0xec0
[  458.510338]  ? __lock_is_held+0xb6/0x140
[  458.518187]  xas_store+0x9c/0x15c0
[  458.518202]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  458.518215]  ? xas_start+0x166/0x560
[  458.518230]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  458.551953]  ? xas_load+0x67/0x150
[  458.555515]  __add_to_page_cache_locked+0x5b7/0xe70
[  458.560537]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  458.566006]  ? file_check_and_advance_wb_err+0x3a0/0x3a0
[  458.571474]  ? count_shadow_nodes+0x500/0x500
[  458.575978]  add_to_page_cache_lru+0x1f1/0x780
[  458.580558]  ? add_to_page_cache_locked+0x40/0x40
[  458.585415]  ? __page_cache_alloc+0x131/0x460
[  458.589919]  do_read_cache_page+0xc2e/0x14c0
[  458.594343]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  458.599912]  ? blkdev_writepages+0x30/0x30
[  458.604180]  ? blkdev_get+0xcc/0x990
[  458.607906]  ? wait_on_page_bit+0x9e0/0x9e0
[  458.612227]  ? bd_may_claim+0xd0/0xd0
[  458.616027]  ? lookup_bdev.part.0+0x10e/0x1b0
[  458.620530]  ? blkdev_open+0x290/0x290
[  458.624417]  ? __lock_is_held+0xb6/0x140
[  458.628484]  read_cache_page_gfp+0x6e/0x90
[  458.632730]  btrfs_scan_one_device+0x1b1/0x1000
[  458.637406]  ? mark_held_locks+0xb1/0x100
[  458.641588]  ? btrfs_mount_root+0xb36/0x1220
[  458.646002]  ? kfree+0x173/0x230
[  458.649388]  ? device_list_add+0x14c0/0x14c0
[  458.653837]  ? trace_hardirqs_on+0x40/0x230
[  458.658162]  ? btrfs_mount_root+0xb36/0x1220
[  458.662573]  btrfs_mount_root+0x718/0x1220
[  458.666832]  ? btrfs_decode_error+0x70/0x70
[  458.671171]  ? rcu_read_lock_sched_held+0x110/0x130
[  458.676198]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  458.681750]  ? pcpu_alloc+0x144/0x12e0
[  458.685650]  ? pcpu_balance_workfn+0x12a0/0x12a0
[  458.690403]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  458.695854]  ? alloc_vfsmnt+0x28/0x780
[  458.699743]  mount_fs+0x106/0x3ff
[  458.703215]  ? emergency_thaw_all+0x1a0/0x1a0
[  458.707762]  ? __init_waitqueue_head+0x36/0x90
[  458.712372]  vfs_kern_mount.part.0+0x6f/0x410
[  458.716873]  vfs_kern_mount+0x40/0x60
[  458.720676]  btrfs_mount+0x2b5/0x15b6
[  458.724485]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  458.729242]  ? kasan_check_write+0x14/0x20
[  458.733484]  ? btrfs_remount+0x11f0/0x11f0
[  458.737724]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  458.743281]  ? check_preemption_disabled+0x48/0x290
[  458.748363]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  458.753823]  ? rcu_read_lock_sched_held+0x110/0x130
[  458.758851]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  458.764414]  ? pcpu_alloc+0x144/0x12e0
[  458.768327]  ? pcpu_balance_workfn+0x12a0/0x12a0
[  458.773110]  mount_fs+0x106/0x3ff
[  458.776561]  ? mount_fs+0x106/0x3ff
[  458.780193]  ? emergency_thaw_all+0x1a0/0x1a0
[  458.784690]  ? __init_waitqueue_head+0x36/0x90
[  458.789312]  vfs_kern_mount.part.0+0x6f/0x410
[  458.793819]  do_mount+0x581/0x2d30
[  458.797357]  ? copy_mount_options+0x21/0x440
[  458.801769]  ? copy_mount_string+0x40/0x40
[  458.806003]  ? kmem_cache_alloc_trace+0x354/0x760
[  458.810877]  ? _copy_from_user+0xdd/0x150
[  458.815028]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  458.820592]  ? copy_mount_options+0x30e/0x440
[  458.825099]  ksys_mount+0xdb/0x150
[  458.828776]  __x64_sys_mount+0xbe/0x150
[  458.832788]  do_syscall_64+0x103/0x610
[  458.836703]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  458.841896] RIP: 0033:0x45a8aa
[  458.845094] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00
[  458.863988] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  458.871704] RAX: ffffffffffffffda RBX: 00007f2e78bd9b30 RCX: 000000000045a8aa
[  458.878983] RDX: 00007f2e78bd9ad0 RSI: 0000000020000100 RDI: 00007f2e78bd9af0
[  458.886247] RBP: 0000000020000100 R08: 00007f2e78bd9b30 R09: 00007f2e78bd9ad0
[  458.893538] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004
02:00:30 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x8847000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:30 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x0, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x0, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  458.900848] R13: 0000000000000000 R14: 00000000004db9a8 R15: 0000000000000003
02:00:30 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x8848000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:30 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x8000008004500b, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

02:00:30 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x800000c0045007, &(0x7f0000003ff8)=0x42)

02:00:30 executing program 5:
pipe(&(0x7f0000000140)={<r0=>0xffffffffffffffff})
getsockopt$IP6T_SO_GET_ENTRIES(0xffffffffffffffff, 0x29, 0x41, 0x0, 0x0)
close(r0)
setsockopt$IP_VS_SO_SET_STARTDAEMON(0xffffffffffffffff, 0x0, 0x48b, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000001140))
pipe2$9p(0x0, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x0, 0x0, 0x0)

02:00:30 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x8864000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:30 executing program 5:

[  459.142162] BTRFS: device fsid ecf6f2a2-2997-48ae-b81e-1b00920efd9a devid 0 transid 5318125732016778760 /dev/loop1
02:00:30 executing program 1 (fault-call:0 fault-nth:54):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

02:00:30 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x0, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x0, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:30 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x88a8ffff00000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:30 executing program 5:

[  459.307034] FAULT_INJECTION: forcing a failure.
[  459.307034] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  459.318885] CPU: 1 PID: 20358 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  459.318895] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  459.318900] Call Trace:
[  459.318923]  dump_stack+0x172/0x1f0
[  459.318943]  should_fail.cold+0xa/0x1b
[  459.318959]  ? mount_fs+0x106/0x3ff
[  459.318975]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  459.318993]  ? mark_held_locks+0x100/0x100
[  459.319010]  should_fail_alloc_page+0x50/0x60
[  459.319024]  __alloc_pages_nodemask+0x1a1/0x710
[  459.319039]  ? find_held_lock+0x35/0x130
[  459.358607]  ? __alloc_pages_slowpath+0x2900/0x2900
[  459.376852]  ? find_held_lock+0x35/0x130
[  459.380931]  cache_grow_begin+0x9c/0x8c0
[  459.385005]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  459.390545]  ? check_preemption_disabled+0x48/0x290
[  459.390565]  kmem_cache_alloc_trace+0x67f/0x760
[  459.390579]  ? kasan_kmalloc+0x9/0x10
[  459.400248]  btrfs_mount_root+0x1d0/0x1220
[  459.400267]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  459.413821]  ? btrfs_decode_error+0x70/0x70
[  459.418178]  ? rcu_read_lock_sched_held+0x110/0x130
[  459.423220]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  459.428757]  ? pcpu_alloc+0x144/0x12e0
[  459.432666]  ? pcpu_balance_workfn+0x12a0/0x12a0
[  459.437429]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  459.442883]  ? alloc_vfsmnt+0x28/0x780
[  459.446801]  mount_fs+0x106/0x3ff
[  459.450294]  ? emergency_thaw_all+0x1a0/0x1a0
[  459.454805]  ? __init_waitqueue_head+0x36/0x90
[  459.459416]  vfs_kern_mount.part.0+0x6f/0x410
[  459.463955]  vfs_kern_mount+0x40/0x60
[  459.467773]  btrfs_mount+0x2b5/0x15b6
[  459.471599]  ? pcpu_alloc+0x49a/0x12e0
[  459.475503]  ? find_held_lock+0x35/0x130
[  459.479584]  ? kasan_check_write+0x14/0x20
[  459.483830]  ? btrfs_remount+0x11f0/0x11f0
[  459.488071]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  459.493618]  ? check_preemption_disabled+0x48/0x290
[  459.498649]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  459.504108]  ? rcu_read_lock_sched_held+0x110/0x130
[  459.509128]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  459.514676]  ? pcpu_alloc+0x144/0x12e0
[  459.518605]  ? pcpu_balance_workfn+0x12a0/0x12a0
[  459.523365]  mount_fs+0x106/0x3ff
[  459.526855]  ? mount_fs+0x106/0x3ff
[  459.530489]  ? emergency_thaw_all+0x1a0/0x1a0
[  459.535004]  ? __init_waitqueue_head+0x36/0x90
[  459.539604]  vfs_kern_mount.part.0+0x6f/0x410
[  459.544117]  do_mount+0x581/0x2d30
[  459.547668]  ? copy_mount_options+0x21/0x440
[  459.552080]  ? copy_mount_string+0x40/0x40
[  459.556316]  ? kmem_cache_alloc_trace+0x354/0x760
[  459.561178]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  459.566729]  ? copy_mount_options+0x30e/0x440
[  459.571252]  ksys_mount+0xdb/0x150
[  459.574834]  __x64_sys_mount+0xbe/0x150
[  459.578823]  do_syscall_64+0x103/0x610
[  459.582716]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  459.587940] RIP: 0033:0x45a8aa
02:00:30 executing program 5:

[  459.591131] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00
[  459.610024] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  459.617725] RAX: ffffffffffffffda RBX: 00007f2e78bd9b30 RCX: 000000000045a8aa
[  459.624995] RDX: 00007f2e78bd9ad0 RSI: 0000000020000100 RDI: 00007f2e78bd9af0
[  459.632266] RBP: 0000000020000100 R08: 00007f2e78bd9b30 R09: 00007f2e78bd9ad0
[  459.639546] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004
[  459.646811] R13: 0000000000000000 R14: 00000000004db9a8 R15: 0000000000000003
02:00:30 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x8000008004500f, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

02:00:30 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x88caffff00000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:30 executing program 5:

[  459.794801] BTRFS: device fsid ecf6f2a2-2997-48ae-b81e-1b00920efd9a devid 0 transid 5318125732016778760 /dev/loop1
02:00:31 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x42801, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$int_in(r1, 0x800000c0045008, &(0x7f0000003ff8)=0x42)

02:00:31 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x8906000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:31 executing program 5:

02:00:31 executing program 1 (fault-call:0 fault-nth:55):
syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="8da4363ac0ed0048000000000000004d01000000000100000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000001000000100000005f42485266535f4d086eb9372dc7cd4934931c37d10f1d6eb62a0ee4398d91db8c8d3949b0db5162321156025ff8588b6e41ea0a368a2a2b3e3a7b5760f58a30203f06dc7c20b37face72c3d459b2d79084be24a4d9a6f3ae42742508560cd0000bf2bf446e27a57d5ace893353016e48e5f238f35f092da8f524d04eb56", 0xbe, 0x10000}], 0x0, 0x0)

02:00:31 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x10000, 0x0, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x0, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

02:00:31 executing program 5:

02:00:31 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000240)={0x4, 0x0, 0x0, 0x0, 0xb1, 0x5})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r1, 0x80000080045010, &(0x7f0000003ff8)=0x8000)
read(r1, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

[  460.292215] FAULT_INJECTION: forcing a failure.
[  460.292215] name failslab, interval 1, probability 0, space 0, times 0
[  460.326342] CPU: 1 PID: 20382 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  460.333585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  460.342936] Call Trace:
[  460.342983]  dump_stack+0x172/0x1f0
[  460.343006]  should_fail.cold+0xa/0x1b
[  460.343025]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  460.343044]  ? lock_downgrade+0x810/0x810
[  460.343062]  ? ___might_sleep+0x163/0x280
[  460.343083]  __should_failslab+0x121/0x190
[  460.343102]  should_failslab+0x9/0x14
[  460.370892]  kmem_cache_alloc_trace+0x2d1/0x760
[  460.370911]  ? blkdev_writepages+0x30/0x30
[  460.370935]  alloc_fs_devices+0x51/0x3f0
[  460.370949]  ? wait_on_page_bit+0x9e0/0x9e0
[  460.370965]  device_list_add+0xc44/0x14c0
[  460.387723]  ? bd_may_claim+0xd0/0xd0
[  460.387746]  ? btrfs_rm_dev_replace_free_srcdev+0x300/0x300
[  460.387762]  ? ___might_sleep+0x163/0x280
[  460.387784]  btrfs_scan_one_device+0x36f/0x1000
[  460.387799]  ? btrfs_scan_one_device+0x36f/0x1000
[  460.419358]  ? mark_held_locks+0xb1/0x100
[  460.423523]  ? btrfs_mount_root+0xb36/0x1220
[  460.427959]  ? kfree+0x173/0x230
[  460.431332]  ? device_list_add+0x14c0/0x14c0
[  460.435750]  ? trace_hardirqs_on+0x40/0x230
[  460.440081]  ? btrfs_mount_root+0xb36/0x1220
[  460.444493]  btrfs_mount_root+0x718/0x1220
[  460.448767]  ? btrfs_decode_error+0x70/0x70
[  460.453138]  ? rcu_read_lock_sched_held+0x110/0x130
[  460.458155]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  460.463699]  ? pcpu_alloc+0x144/0x12e0
[  460.467625]  ? pcpu_balance_workfn+0x12a0/0x12a0
[  460.472427]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  460.477900]  ? alloc_vfsmnt+0x28/0x780
[  460.481823]  mount_fs+0x106/0x3ff
[  460.485296]  ? emergency_thaw_all+0x1a0/0x1a0
[  460.489820]  ? __init_waitqueue_head+0x36/0x90
[  460.494432]  vfs_kern_mount.part.0+0x6f/0x410
[  460.498939]  vfs_kern_mount+0x40/0x60
[  460.502741]  btrfs_mount+0x2b5/0x15b6
[  460.506542]  ? pcpu_alloc+0x49a/0x12e0
[  460.510458]  ? find_held_lock+0x35/0x130
[  460.514536]  ? kasan_check_write+0x14/0x20
[  460.518784]  ? btrfs_remount+0x11f0/0x11f0
[  460.518798]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  460.518818]  ? check_preemption_disabled+0x48/0x290
[  460.518839]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  460.539109]  ? rcu_read_lock_sched_held+0x110/0x130
[  460.544130]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  460.549670]  ? pcpu_alloc+0x144/0x12e0
[  460.549696]  ? pcpu_balance_workfn+0x12a0/0x12a0
[  460.549715]  mount_fs+0x106/0x3ff
[  460.549730]  ? mount_fs+0x106/0x3ff
[  460.565450]  ? emergency_thaw_all+0x1a0/0x1a0
[  460.569945]  ? __init_waitqueue_head+0x36/0x90
[  460.569967]  vfs_kern_mount.part.0+0x6f/0x410
[  460.569987]  do_mount+0x581/0x2d30
[  460.570001]  ? copy_mount_options+0x21/0x440
[  460.570018]  ? copy_mount_string+0x40/0x40
[  460.591226]  ? kmem_cache_alloc_trace+0x354/0x760
[  460.591245]  ? _copy_from_user+0xdd/0x150
[  460.591263]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  460.591298]  ? copy_mount_options+0x30e/0x440
[  460.591331]  ksys_mount+0xdb/0x150
[  460.613949]  __x64_sys_mount+0xbe/0x150
[  460.617928]  do_syscall_64+0x103/0x610
[  460.617947]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  460.617958] RIP: 0033:0x45a8aa
02:00:31 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x8dffffff00000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:31 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xe803000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

02:00:31 executing program 5:
syz_mount_image$nfs4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='rpc_pipefs\x00', 0x0, 0x0)
umount2(&(0x7f0000000040)='./file0\x00', 0x0)

02:00:31 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80000, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000200)=0x20, 0x4)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x10000, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0)
bind$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @rose, @bcast, @bcast]}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000240)={0x4, 0x4c1, 0x3, 0x0, 0xb1, 0x5})
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2, 0x0)
ioctl$int_in(r3, 0x800000c0045005, &(0x7f0000003ff8)=0x8000)
read(r3, &(0x7f0000000080)=""/192, 0xc0)
write$uinput_user_dev(r2, &(0x7f0000000300)={'syz0\x00', {0x6d58, 0x0, 0x6, 0x7}, 0x3, [0x1, 0x9, 0x3c21d68f, 0x100, 0x8, 0xffffffffffffffff, 0x4, 0x7fff, 0x0, 0x10000000000, 0x0, 0x9, 0x6, 0x800, 0x8000, 0x0, 0x5, 0xfff, 0x3, 0x10001, 0x100, 0x400, 0x7, 0x0, 0x0, 0x0, 0x5, 0x4, 0x3, 0x3f8e, 0x200, 0x5, 0x3, 0x1, 0x100, 0x7fffffff, 0x0, 0x9, 0x2, 0x8, 0x9c, 0x5, 0xfffffffffffff390, 0x0, 0x7f, 0x0, 0x9, 0x1, 0x1, 0x8, 0x576f00000000, 0x6, 0x428, 0x1, 0xffffffffffffffff, 0x10000, 0x0, 0x8001, 0x9, 0xfffffffffffffffa, 0x9, 0x8, 0x9, 0x6], [0x0, 0x7fff, 0xffff, 0x8, 0x40, 0x81, 0x1, 0x6, 0x800, 0x100000001, 0x7ff, 0x79ae1822, 0x8, 0x9, 0x1, 0xfffffffffffffff8, 0x6, 0x8, 0x2, 0x900000, 0x2, 0x5, 0x2, 0x6, 0xffff, 0x4, 0x8001, 0x8, 0x80000000, 0x8, 0x1ff, 0x8, 0x2, 0x6, 0x3, 0x3, 0x10001, 0x3, 0x9, 0x8000, 0x5, 0xffffffff, 0x8, 0x400, 0x3ff, 0xe118, 0x5, 0x3, 0x4, 0x7e3, 0xea4, 0x8, 0x3, 0x2, 0x80000000, 0x40, 0xb71, 0x3, 0xffffffff, 0x0, 0xe035, 0x2, 0x0, 0xe11], [0x5ed, 0x1, 0x9, 0x7, 0x2, 0x13d, 0xfff, 0x1, 0x81, 0x6000000000, 0x5, 0x100, 0x80, 0x100, 0xdd, 0x1, 0xb689, 0xb9c, 0x6, 0x8, 0x5, 0xffff, 0xffff, 0x8, 0xde18, 0x7ff, 0x7, 0x79d, 0x400, 0x10c, 0x200, 0x7f0f, 0x3, 0xbe0e, 0x9, 0x5, 0x101, 0x2, 0x766a, 0x6, 0x49, 0x5, 0x401, 0x3, 0x8000, 0x400, 0xb0d, 0x4f4, 0x4, 0x1ff, 0xf9b7, 0x1, 0x4, 0x80000000, 0x4, 0x7fff, 0x0, 0x3, 0x8, 0xa4, 0x3, 0x3, 0x1, 0x5], [0xef3879a, 0x101, 0x1ff, 0x3, 0xe1, 0xdc34, 0x7, 0x4f46, 0x6, 0x80, 0x7, 0x8, 0x8, 0x40b, 0x10001, 0x7, 0x8, 0xfffffffffffffffd, 0x3, 0x10001, 0x800, 0xffffffff, 0x6, 0x7fff, 0x401, 0x1000, 0x0, 0x7, 0x8, 0x3e, 0x1f, 0x7, 0xffffffffffffff00, 0x81, 0x3, 0x1000, 0x3, 0x8001, 0x10001, 0x3, 0x3ff, 0xb4a9, 0xfffffffffffffeff, 0x10000, 0x1, 0x5, 0x20, 0x40, 0x20, 0x1, 0x4, 0x8, 0x3b28d3de, 0x9, 0xf40b, 0x3, 0x3, 0x9, 0x8cc, 0x2, 0x120000000, 0x5, 0x6, 0x2]}, 0x45c)

[  460.617971] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00
[  460.617981] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  460.649116] RAX: ffffffffffffffda RBX: 00007f2e78bd9b30 RCX: 000000000045a8aa
[  460.649124] RDX: 00007f2e78bd9ad0 RSI: 0000000020000100 RDI: 00007f2e78bd9af0
[  460.649133] RBP: 0000000020000100 R08: 00007f2e78bd9b30 R09: 00007f2e78bd9ad0
[  460.649140] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004
[  460.649148] R13: 0000000000000000 R14: 00000000004db9a8 R15: 0000000000000003
[  460.679149] kasan: CONFIG_KASAN_INLINE enabled
[  460.707268] kasan: GPF could be caused by NULL-ptr deref or user memory access
[  460.727253] general protection fault: 0000 [#1] PREEMPT SMP KASAN
[  460.733556] CPU: 0 PID: 20382 Comm: syz-executor1 Not tainted 5.0.0-rc4+ #58
[  460.740740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  460.750101] RIP: 0010:device_list_add+0x3fc/0x14c0
[  460.755061] Code: 3a e5 ca fe 31 ff 4c 89 ee e8 d0 e6 ca fe 48 8d 7b 20 4d 85 ed 48 b8 00 00 00 00 00 fc ff df 48 89 fa 41 0f 95 c5 48 c1 ea 03 <0f> b6 04 02 84 c0 74 06 0f 8e 1c 0f 00 00 44 88 6b 20 48 89 de 48
[  460.774000] RSP: 0018:ffff888059a37560 EFLAGS: 00010203
[  460.779374] RAX: dffffc0000000000 RBX: fffffffffffffff4 RCX: ffffffff82a4f6e0
[  460.786639] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000014
[  460.793917] RBP: ffff888059a37640 R08: ffff88809ebb4480 R09: ffffed1015d05bd0
[  460.801177] R10: ffffed1015d05bcf R11: ffff8880ae82de7b R12: ffff888090ed6000
[  460.808464] R13: 0000001000000001 R14: ffff888091dea0d0 R15: ffff888090ed623b
[  460.815730] FS:  00007f2e78bda700(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000
[  460.823947] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  460.829824] CR2: 00007ffc8c389f68 CR3: 0000000090808000 CR4: 00000000001406f0
[  460.837091] Call Trace:
[  460.839678]  ? bd_may_claim+0xd0/0xd0
[  460.843500]  ? btrfs_rm_dev_replace_free_srcdev+0x300/0x300
[  460.849240]  ? ___might_sleep+0x163/0x280
[  460.853389]  btrfs_scan_one_device+0x36f/0x1000
[  460.858055]  ? btrfs_scan_one_device+0x36f/0x1000
[  460.862907]  ? mark_held_locks+0xb1/0x100
[  460.867065]  ? btrfs_mount_root+0xb36/0x1220
[  460.871466]  ? kfree+0x173/0x230
[  460.874828]  ? device_list_add+0x14c0/0x14c0
[  460.879233]  ? trace_hardirqs_on+0x40/0x230
[  460.883574]  ? btrfs_mount_root+0xb36/0x1220
[  460.887980]  btrfs_mount_root+0x718/0x1220
[  460.892229]  ? btrfs_decode_error+0x70/0x70
[  460.896554]  ? rcu_read_lock_sched_held+0x110/0x130
[  460.901577]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  460.907119]  ? pcpu_alloc+0x144/0x12e0
[  460.911023]  ? pcpu_balance_workfn+0x12a0/0x12a0
[  460.915784]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  460.921238]  ? alloc_vfsmnt+0x28/0x780
[  460.925123]  mount_fs+0x106/0x3ff
[  460.928588]  ? emergency_thaw_all+0x1a0/0x1a0
[  460.933102]  ? __init_waitqueue_head+0x36/0x90
[  460.937711]  vfs_kern_mount.part.0+0x6f/0x410
[  460.942218]  vfs_kern_mount+0x40/0x60
[  460.946024]  btrfs_mount+0x2b5/0x15b6
[  460.949823]  ? pcpu_alloc+0x49a/0x12e0
[  460.953719]  ? find_held_lock+0x35/0x130
[  460.957804]  ? kasan_check_write+0x14/0x20
[  460.962054]  ? btrfs_remount+0x11f0/0x11f0
[  460.966311]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  460.971870]  ? check_preemption_disabled+0x48/0x290
[  460.976887]  ? rcu_lockdep_current_cpu_online+0xe3/0x130
[  460.982357]  ? rcu_read_lock_sched_held+0x110/0x130
[  460.987389]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  460.992944]  ? pcpu_alloc+0x144/0x12e0
[  460.996841]  ? pcpu_balance_workfn+0x12a0/0x12a0
[  461.001613]  mount_fs+0x106/0x3ff
[  461.005064]  ? mount_fs+0x106/0x3ff
[  461.008692]  ? emergency_thaw_all+0x1a0/0x1a0
[  461.013188]  ? __init_waitqueue_head+0x36/0x90
[  461.017772]  vfs_kern_mount.part.0+0x6f/0x410
[  461.022287]  do_mount+0x581/0x2d30
[  461.025829]  ? copy_mount_options+0x21/0x440
[  461.030245]  ? copy_mount_string+0x40/0x40
[  461.034479]  ? kmem_cache_alloc_trace+0x354/0x760
[  461.039348]  ? _copy_from_user+0xdd/0x150
[  461.043503]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  461.049081]  ? copy_mount_options+0x30e/0x440
[  461.053590]  ksys_mount+0xdb/0x150
[  461.057133]  __x64_sys_mount+0xbe/0x150
[  461.061122]  do_syscall_64+0x103/0x610
[  461.065039]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  461.070221] RIP: 0033:0x45a8aa
[  461.073563] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00
02:00:32 executing program 0:
r0 = socket$nl_xfrm(0xa, 0x3, 0x87)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0xf401000000000000]}, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  461.092467] RSP: 002b:00007f2e78bd9a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  461.100171] RAX: ffffffffffffffda RBX: 00007f2e78bd9b30 RCX: 000000000045a8aa
[  461.107443] RDX: 00007f2e78bd9ad0 RSI: 0000000020000100 RDI: 00007f2e78bd9af0
[  461.114726] RBP: 0000000020000100 R08: 00007f2e78bd9b30 R09: 00007f2e78bd9ad0
[  461.121987] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004
[  461.129250] R13: 0000000000000000 R14: 00000000004db9a8 R15: 0000000000000003
[  461.136527] Modules linked in:
[  461.155284] kobject: 'loop0' (000000005c77a710): kobject_uevent_env
[  461.168355] ---[ end trace 3f2ff4a5df63d056 ]---
[  461.173522] kobject: 'loop0' (000000005c77a710): fill_kobj_path: path = '/devices/virtual/block/loop0'
[  461.174885] RIP: 0010:device_list_add+0x3fc/0x14c0
[  461.191161] kobject: 'loop1' (000000001dca1e81): kobject_uevent_env
[  461.199009] kobject: 'loop1' (000000001dca1e81): fill_kobj_path: path = '/devices/virtual/block/loop1'
[  461.200122] Code: 3a e5 ca fe 31 ff 4c 89 ee e8 d0 e6 ca fe 48 8d 7b 20 4d 85 ed 48 b8 00 00 00 00 00 fc ff df 48 89 fa 41 0f 95 c5 48 c1 ea 03 <0f> b6 04 02 84 c0 74 06 0f 8e 1c 0f 00 00 44 88 6b 20 48 89 de 48
[  461.211453] kobject: 'loop5' (00000000f67dcc62): kobject_uevent_env
[  461.228463] RSP: 0018:ffff888059a37560 EFLAGS: 00010203
[  461.240246] RAX: dffffc0000000000 RBX: fffffffffffffff4 RCX: ffffffff82a4f6e0
[  461.247863] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000014
[  461.255211] RBP: ffff888059a37640 R08: ffff88809ebb4480 R09: ffffed1015d05bd0
[  461.256579] kobject: 'loop5' (00000000f67dcc62): fill_kobj_path: path = '/devices/virtual/block/loop5'
[  461.262738] R10: ffffed1015d05bcf R11: ffff8880ae82de7b R12: ffff888090ed6000
[  461.280037] R13: 0000001000000001 R14: ffff888091dea0d0 R15: ffff888090ed623b
[  461.287523] FS:  00007f2e78bda700(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000
[  461.295937] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  461.296606] kobject: 'loop5' (00000000f67dcc62): kobject_uevent_env
[  461.308820] CR2: 000000c41f2c9f00 CR3: 0000000090808000 CR4: 00000000001406f0
[  461.311206] kobject: 'loop5' (00000000f67dcc62): fill_kobj_path: path = '/devices/virtual/block/loop5'
[  461.316383] Kernel panic - not syncing: Fatal exception
[  461.325791] kobject: 'loop5' (00000000f67dcc62): kobject_uevent_env
[  461.332002] Kernel Offset: disabled
[  461.342005] Rebooting in 86400 seconds..