program:
r0 = perf_event_open(&(0x7f0000002bc0)={0x2, 0x80, 0x49, 0x1, 0x0, 0x0, 0x0, 0x1, 0x8096, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}, 0x402d, 0xc844, 0x410, 0x0, 0x7, 0x400002, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000008, 0x13, r0, 0x0) (fail_nth: 13)

[   77.575476][ T4665] Bluetooth: hci0: command tx timeout
[   77.674605][ T5319] FAULT_INJECTION: forcing a failure.
[   77.674605][ T5319] name failslab, interval 1, probability 0, space 0, times 1
[   77.700571][ T5319] CPU: 0 UID: 0 PID: 5319 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   77.700591][ T5319] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   77.700597][ T5319] Call Trace:
[   77.700602][ T5319]  <TASK>
[   77.700607][ T5319]  dump_stack_lvl+0xe8/0x150
[   77.700727][ T5319]  should_fail_ex+0x412/0x560
[   77.700792][ T5319]  should_failslab+0xa8/0x100
[   77.700807][ T5319]  ? ptlock_alloc+0x20/0x70
[   77.700821][ T5319]  kmem_cache_alloc_noprof+0x87/0x650
[   77.700840][ T5319]  ptlock_alloc+0x20/0x70
[   77.700853][ T5319]  pte_alloc_one+0x7a/0x370
[   77.700869][ T5319]  __pte_alloc+0x25/0x1a0
[   77.700878][ T5319]  ? pfnmap_setup_cachemode+0xb1/0xf0
[   77.700889][ T5319]  do_remap_pfn_range+0xbe6/0x1250
[   77.700915][ T5319]  ? __pfx_do_remap_pfn_range+0x10/0x10
[   77.700930][ T5319]  ? __lock_acquire+0x6b5/0x2cf0
[   77.700953][ T5319]  ? perf_event_update_userpage+0x33/0x6a0
[   77.700977][ T5319]  ? __pfx___vma_start_exclude_readers+0x10/0x10
[   77.700999][ T5319]  ? perf_mmap_rb+0xaf4/0xd30
[   77.701012][ T5319]  ? __pfx___mutex_lock+0x10/0x10
[   77.701056][ T5319]  ? remap_pfn_range+0x148/0x1b0
[   77.701068][ T5319]  ? perf_mmap_to_page+0x181/0x1e0
[   77.701082][ T5319]  map_range+0x199/0x230
[   77.701097][ T5319]  perf_mmap+0x3f9/0x4b0
[   77.701108][ T5319]  mmap_region+0x1951/0x22a0
[   77.701129][ T5319]  ? __pfx_mmap_region+0x10/0x10
[   77.701150][ T5319]  ? perf_event_output_forward+0x3a6/0x480
[   77.701188][ T5319]  ? perf_swevent_event+0x714/0x7e0
[   77.701220][ T5319]  ? bpf_lsm_mmap_addr+0x9/0x50
[   77.701231][ T5319]  ? security_mmap_addr+0x71/0x240
[   77.701244][ T5319]  ? shmem_mapping+0xd/0x50
[   77.701256][ T5319]  ? memfd_check_seals_mmap+0xc5/0x200
[   77.701270][ T5319]  do_mmap+0xc39/0x10c0
[   77.701295][ T5319]  ? __pfx_do_mmap+0x10/0x10
[   77.701306][ T5319]  ? down_write_killable+0x180/0x240
[   77.701323][ T5319]  ? __pfx_down_write_killable+0x10/0x10
[   77.701338][ T5319]  ? apparmor_mmap_file+0x2da/0x3e0
[   77.701360][ T5319]  vm_mmap_pgoff+0x2c9/0x4f0
[   77.701381][ T5319]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[   77.701395][ T5319]  ? __fget_files+0x2a/0x420
[   77.701410][ T5319]  ? __fget_files+0x3a0/0x420
[   77.701422][ T5319]  ? __fget_files+0x2a/0x420
[   77.701436][ T5319]  ksys_mmap_pgoff+0x51e/0x760
[   77.701451][ T5319]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.701462][ T5319]  do_syscall_64+0x15f/0xf80
[   77.701471][ T5319]  ? trace_irq_disable+0x3b/0x150
[   77.701486][ T5319]  ? clear_bhb_loop+0x40/0x90
[   77.701499][ T5319]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.701509][ T5319] RIP: 0033:0x7fa6d299c819
[   77.701519][ T5319] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   77.701528][ T5319] RSP: 002b:00007fa6d3838fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[   77.701540][ T5319] RAX: ffffffffffffffda RBX: 00007fa6d2c15fa0 RCX: 00007fa6d299c819
[   77.701547][ T5319] RDX: 0000000001000008 RSI: 0000000000002000 RDI: 0000200000ffe000
[   77.701554][ T5319] RBP: 00007fa6d3839050 R08: 0000000000000003 R09: 0000000000000000
[   77.701561][ T5319] R10: 0000000000000013 R11: 0000000000000246 R12: 0000000000000002
[   77.701570][ T5319] R13: 00007fa6d2c16038 R14: 00007fa6d2c15fa0 R15: 00007ffd78999688
[   77.701614][ T5319]  </TASK>
[   77.936384][ T5319] 
[   77.937566][ T5319] ============================================
[   77.940748][ T5319] WARNING: possible recursive locking detected
[   77.944487][ T5319] syzkaller #0 Not tainted
[   77.946894][ T5319] --------------------------------------------
[   77.949689][ T5319] syz.0.0/5319 is trying to acquire lock:
[   77.952068][ T5319] ffff888042a4c9e0 (&event->mmap_mutex){+.+.}-{4:4}, at: refcount_dec_and_mutex_lock+0x30/0xa0
[   77.957977][ T5319] 
[   77.957977][ T5319] but task is already holding lock:
[   77.962437][ T5319] ffff888042a4c9e0 (&event->mmap_mutex){+.+.}-{4:4}, at: perf_mmap+0x1bb/0x4b0
[   77.966558][ T5319] 
[   77.966558][ T5319] other info that might help us debug this:
[   77.970545][ T5319]  Possible unsafe locking scenario:
[   77.970545][ T5319] 
[   77.974962][ T5319]        CPU0
[   77.976879][ T5319]        ----
[   77.978517][ T5319]   lock(&event->mmap_mutex);
[   77.980530][ T5319]   lock(&event->mmap_mutex);
[   77.982560][ T5319] 
[   77.982560][ T5319]  *** DEADLOCK ***
[   77.982560][ T5319] 
[   77.986074][ T5319]  May be due to missing lock nesting notation
[   77.986074][ T5319] 
[   77.989865][ T5319] 2 locks held by syz.0.0/5319:
[   77.992572][ T5319]  #0: ffff88801269a800 (&mm->mmap_lock){++++}-{4:4}, at: vm_mmap_pgoff+0x234/0x4f0
[   77.997196][ T5319]  #1: ffff888042a4c9e0 (&event->mmap_mutex){+.+.}-{4:4}, at: perf_mmap+0x1bb/0x4b0
[   78.001277][ T5319] 
[   78.001277][ T5319] stack backtrace:
[   78.004252][ T5319] CPU: 0 UID: 0 PID: 5319 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   78.004272][ T5319] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   78.004281][ T5319] Call Trace:
[   78.004290][ T5319]  <TASK>
[   78.004298][ T5319]  dump_stack_lvl+0xe8/0x150
[   78.004323][ T5319]  print_deadlock_bug+0x279/0x290
[   78.004345][ T5319]  __lock_acquire+0x253f/0x2cf0
[   78.004373][ T5319]  ? zap_page_range_single_batched+0x5b7/0x740
[   78.004389][ T5319]  ? __pfx_unmap_page_range+0x10/0x10
[   78.004401][ T5319]  lock_acquire+0xf0/0x2e0
[   78.004416][ T5319]  ? refcount_dec_and_mutex_lock+0x30/0xa0
[   78.004434][ T5319]  __mutex_lock+0x19f/0x1300
[   78.004448][ T5319]  ? refcount_dec_and_mutex_lock+0x30/0xa0
[   78.004462][ T5319]  ? __lock_acquire+0x6b5/0x2cf0
[   78.004476][ T5319]  ? ring_buffer_get+0xa1/0x420
[   78.004487][ T5319]  ? refcount_dec_and_mutex_lock+0x30/0xa0
[   78.004497][ T5319]  ? __pfx___mutex_lock+0x10/0x10
[   78.004504][ T5319]  ? refcount_dec_not_one+0x11a/0x1a0
[   78.004514][ T5319]  ? __pfx_refcount_dec_not_one+0x10/0x10
[   78.004522][ T5319]  ? ring_buffer_get+0xa1/0x420
[   78.004531][ T5319]  ? __pfx_ring_buffer_get+0x10/0x10
[   78.004542][ T5319]  ? perf_mmap_close+0xc9/0xf90
[   78.004552][ T5319]  refcount_dec_and_mutex_lock+0x30/0xa0
[   78.004562][ T5319]  perf_mmap_close+0x953/0xf90
[   78.004570][ T5319]  ? perf_mmap_close+0xc9/0xf90
[   78.004578][ T5319]  ? __pfx___mutex_lock+0x10/0x10
[   78.004586][ T5319]  ? remap_pfn_range+0x148/0x1b0
[   78.004595][ T5319]  ? __pfx_perf_mmap_close+0x10/0x10
[   78.004604][ T5319]  ? map_range+0x20c/0x230
[   78.004615][ T5319]  perf_mmap+0x418/0x4b0
[   78.004625][ T5319]  mmap_region+0x1951/0x22a0
[   78.004641][ T5319]  ? __pfx_mmap_region+0x10/0x10
[   78.004657][ T5319]  ? perf_event_output_forward+0x3a6/0x480
[   78.004681][ T5319]  ? perf_swevent_event+0x714/0x7e0
[   78.004708][ T5319]  ? bpf_lsm_mmap_addr+0x9/0x50
[   78.004723][ T5319]  ? security_mmap_addr+0x71/0x240
[   78.004740][ T5319]  ? shmem_mapping+0xd/0x50
[   78.004757][ T5319]  ? memfd_check_seals_mmap+0xc5/0x200
[   78.004773][ T5319]  do_mmap+0xc39/0x10c0
[   78.004788][ T5319]  ? __pfx_do_mmap+0x10/0x10
[   78.004802][ T5319]  ? down_write_killable+0x180/0x240
[   78.004818][ T5319]  ? __pfx_down_write_killable+0x10/0x10
[   78.004832][ T5319]  ? apparmor_mmap_file+0x2da/0x3e0
[   78.004852][ T5319]  vm_mmap_pgoff+0x2c9/0x4f0
[   78.004872][ T5319]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[   78.004884][ T5319]  ? __fget_files+0x2a/0x420
[   78.004898][ T5319]  ? __fget_files+0x3a0/0x420
[   78.004911][ T5319]  ? __fget_files+0x2a/0x420
[   78.004924][ T5319]  ksys_mmap_pgoff+0x51e/0x760
[   78.004938][ T5319]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.004949][ T5319]  do_syscall_64+0x15f/0xf80
[   78.004958][ T5319]  ? trace_irq_disable+0x3b/0x150
[   78.004973][ T5319]  ? clear_bhb_loop+0x40/0x90
[   78.004984][ T5319]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.004995][ T5319] RIP: 0033:0x7fa6d299c819
[   78.005008][ T5319] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   78.005017][ T5319] RSP: 002b:00007fa6d3838fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[   78.005030][ T5319] RAX: ffffffffffffffda RBX: 00007fa6d2c15fa0 RCX: 00007fa6d299c819
[   78.005038][ T5319] RDX: 0000000001000008 RSI: 0000000000002000 RDI: 0000200000ffe000
[   78.005045][ T5319] RBP: 00007fa6d3839050 R08: 0000000000000003 R09: 0000000000000000
[   78.005051][ T5319] R10: 0000000000000013 R11: 0000000000000246 R12: 0000000000000002
[   78.005057][ T5319] R13: 00007fa6d2c16038 R14: 00007fa6d2c15fa0 R15: 00007ffd78999688
[   78.005068][ T5319]  </TASK>
[   79.641895][ T4665] Bluetooth: hci0: command tx timeout
[   81.483941][ T1314] ieee802154 phy0 wpan0: encryption failed: -22
[   81.486717][ T1314] ieee802154 phy1 wpan1: encryption failed: -22
[   81.722273][ T4665] Bluetooth: hci0: command tx timeout