/file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

[ 2186.970768] FAULT_INJECTION: forcing a failure.
[ 2186.970768] name failslab, interval 1, probability 0, space 0, times 0
[ 2186.972178] CPU: 1 PID: 12799 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2186.973039] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2186.974290] Call Trace:
[ 2186.974574]  <TASK>
[ 2186.974814]  dump_stack_lvl+0x8b/0xb3
[ 2186.975241]  should_fail.cold+0x5/0xa
[ 2186.975667]  ? create_object.isra.0+0x3a/0xa20
[ 2186.976169]  should_failslab+0x5/0x10
[ 2186.976591]  kmem_cache_alloc+0x5b/0x480
[ 2186.977046]  create_object.isra.0+0x3a/0xa20
[ 2186.977542]  ? kasan_unpoison+0x23/0x50
[ 2186.977976]  __kmalloc+0x25b/0x440
[ 2186.978377]  alloc_pipe_info+0x1e0/0x580
[ 2186.978816]  ? inode_has_perm+0x1d0/0x1d0
[ 2186.979246]  splice_direct_to_actor+0x700/0x8e0
[ 2186.979759]  ? pipe_to_sendpage+0x380/0x380
[ 2186.980235]  ? selinux_file_permission+0x36/0x510
[ 2186.980767]  ? do_splice_to+0x240/0x240
[ 2186.981236]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2186.981848]  ? security_file_permission+0xb1/0xd0
[ 2186.982383]  do_splice_direct+0x1b8/0x280
[ 2186.982840]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2186.983376]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2186.983975]  ? security_file_permission+0xb1/0xd0
[ 2186.984480]  do_sendfile+0xad7/0x1230
[ 2186.984904]  ? bit_wait_io_timeout+0x160/0x160
[ 2186.985429]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2186.985991]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2186.986593]  ? vfs_write+0x422/0xac0
[ 2186.986999]  __x64_sys_sendfile64+0x1cd/0x210
[ 2186.987488]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2186.988078]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2186.988651]  do_syscall_64+0x3b/0x90
[ 2186.989065]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2186.989616] RIP: 0033:0x7f1455db8b19
[ 2186.990030] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2186.992038] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2186.992868] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2186.993669] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2186.994443] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2186.995204] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[ 2186.995984] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2186.996762]  </TASK>
[ 2186.999023] FAULT_INJECTION: forcing a failure.
[ 2186.999023] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2186.999970] FAULT_INJECTION: forcing a failure.
[ 2186.999970] name failslab, interval 1, probability 0, space 0, times 0
[ 2187.000833] CPU: 1 PID: 12801 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2187.004456] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2187.005643] Call Trace:
[ 2187.005910]  <TASK>
[ 2187.006145]  dump_stack_lvl+0x8b/0xb3
[ 2187.006545]  should_fail.cold+0x5/0xa
[ 2187.006946]  prepare_alloc_pages+0x17b/0x500
[ 2187.007417]  __alloc_pages+0x131/0x4e0
[ 2187.007825]  ? lock_downgrade+0x6d0/0x6d0
[ 2187.008261]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2187.008881]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2187.009474]  ? xa_load+0x158/0x290
[ 2187.009842]  ? xas_find_conflict+0x9e0/0x9e0
[ 2187.010303]  alloc_pages+0x1a0/0x2f0
[ 2187.010699]  filemap_alloc_folio+0x8e/0xb0
[ 2187.011149]  page_cache_ra_unbounded+0x1af/0x540
[ 2187.011663]  ondemand_readahead+0x642/0x1270
[ 2187.012144]  page_cache_sync_ra+0x1c5/0x200
[ 2187.012625]  filemap_get_pages+0x29e/0x1680
[ 2187.013100]  ? lock_downgrade+0x6d0/0x6d0
[ 2187.013568]  ? unwind_next_frame+0xdfe/0x20a0
[ 2187.014059]  ? filemap_add_folio+0x1b0/0x1b0
[ 2187.014522]  ? lock_is_held_type+0xd7/0x130
[ 2187.015003]  filemap_read+0x311/0xba0
[ 2187.015452]  ? filemap_get_pages+0x1680/0x1680
[ 2187.015959]  ? filter_irq_stacks+0x90/0x90
[ 2187.016434]  ? __stack_depot_save+0x35/0x450
[ 2187.016923]  ? kasan_save_stack+0x2e/0x40
[ 2187.017390]  ? kasan_save_stack+0x1e/0x40
[ 2187.017842]  ? __kasan_kmalloc+0x81/0xa0
[ 2187.018290]  ? alloc_pipe_info+0x1e0/0x580
[ 2187.018754]  ? splice_direct_to_actor+0x700/0x8e0
[ 2187.019300]  ? do_splice_direct+0x1b8/0x280
[ 2187.019781]  ? do_sendfile+0xad7/0x1230
[ 2187.020210]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2187.020720]  ? do_syscall_64+0x3b/0x90
[ 2187.021155]  generic_file_read_iter+0x3c9/0x530
[ 2187.021687]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2187.022300]  ? __fsnotify_parent+0x498/0xa60
[ 2187.022780]  ext4_file_read_iter+0x184/0x3f0
[ 2187.023275]  generic_file_splice_read+0x3b9/0x5d0
[ 2187.023815]  ? pipe_to_user+0x170/0x170
[ 2187.024262]  ? security_file_permission+0xb1/0xd0
[ 2187.024802]  ? pipe_to_user+0x170/0x170
[ 2187.025272]  do_splice_to+0x1bc/0x240
[ 2187.025700]  ? inode_has_perm+0x1d0/0x1d0
[ 2187.026152]  splice_direct_to_actor+0x2c7/0x8e0
[ 2187.026635]  ? pipe_to_sendpage+0x380/0x380
[ 2187.027125]  ? do_splice_to+0x240/0x240
[ 2187.027568]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2187.028171]  ? security_file_permission+0xb1/0xd0
[ 2187.028711]  do_splice_direct+0x1b8/0x280
[ 2187.029175]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2187.029686]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2187.030291]  ? security_file_permission+0xb1/0xd0
[ 2187.030831]  do_sendfile+0xad7/0x1230
[ 2187.031271]  ? bit_wait_io_timeout+0x160/0x160
[ 2187.031786]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2187.032369]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2187.032987]  ? vfs_write+0x422/0xac0
[ 2187.033396]  __x64_sys_sendfile64+0x1cd/0x210
[ 2187.033903]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2187.034501]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2187.035068]  do_syscall_64+0x3b/0x90
[ 2187.035482]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2187.036044] RIP: 0033:0x7fdbfaa6cb19
[ 2187.036451] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2187.038473] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2187.039302] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2187.040070] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2187.040801] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2187.041594] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[ 2187.042324] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2187.043126]  </TASK>
[ 2187.043381] CPU: 0 PID: 12808 Comm: syz-executor.6 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2187.045255] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2187.047746] Call Trace:
[ 2187.048308]  <TASK>
[ 2187.048801]  dump_stack_lvl+0x8b/0xb3
[ 2187.049689]  should_fail.cold+0x5/0xa
[ 2187.050540]  ? kvmalloc_node+0x3e/0x130
[ 2187.051421]  should_failslab+0x5/0x10
[ 2187.052262]  __kmalloc_node+0x76/0x470
[ 2187.053140]  kvmalloc_node+0x3e/0x130
[ 2187.054008]  seq_read_iter+0x818/0x12b0
[ 2187.054894]  ? mark_lock.part.0+0xef/0x2f60
[ 2187.055860]  ? lock_is_held_type+0xd7/0x130
[ 2187.056814]  seq_read+0x337/0x4b0
[ 2187.057616]  ? seq_read_iter+0x12b0/0x12b0
[ 2187.058546]  ? lock_is_held_type+0xd7/0x130
[ 2187.059477]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2187.060618]  ? fsnotify_perm.part.0+0x221/0x610
[ 2187.061680]  ? seq_read_iter+0x12b0/0x12b0
[ 2187.062616]  proc_reg_read+0x226/0x300
[ 2187.063461]  do_iter_read+0x4ed/0x750
[ 2187.064424]  ? import_iovec+0x83/0xb0
[ 2187.065305]  vfs_readv+0xe5/0x150
[ 2187.066080]  ? vfs_iter_read+0xa0/0xa0
[ 2187.066933]  ? lock_release+0x3b2/0x750
[ 2187.067809]  ? __fget_files+0x265/0x470
[ 2187.068655]  ? 0xffffffff81000000
[ 2187.069401]  ? find_held_lock+0x2c/0x110
[ 2187.070313]  ? __fget_files+0x287/0x470
[ 2187.071223]  do_preadv+0x1b6/0x270
05:25:54 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 5)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

[ 2187.071923]  ? __ia32_sys_readv+0xb0/0xb0
[ 2187.072939]  ? fput+0x2a/0x50
[ 2187.073687]  __x64_sys_preadv2+0xeb/0x150
[ 2187.074619]  do_syscall_64+0x3b/0x90
[ 2187.075457]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2187.076561] RIP: 0033:0x7ffb6640bb19
[ 2187.077304] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2187.079292] RSP: 002b:00007ffb63981188 EFLAGS: 00000246 ORIG_RAX: 0000000000000147
[ 2187.080104] RAX: ffffffffffffffda RBX: 00007ffb6651ef60 RCX: 00007ffb6640bb19
[ 2187.080888] RDX: 0000000000000001 RSI: 0000000020000340 RDI: 0000000000000003
[ 2187.081699] RBP: 00007ffb639811d0 R08: 0000000000000000 R09: 0000000000000000
[ 2187.082498] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2187.083305] R13: 00007ffdf5c22b2f R14: 00007ffb63981300 R15: 0000000000022000
[ 2187.084120]  </TASK>
05:25:54 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 6)

05:25:54 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$CDROMREADAUDIO(r0, 0x530e, &(0x7f0000000080)={@lba=0x3a4, 0x0, 0x3a, &(0x7f0000000040)=""/58})
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0), 0x4c8200, 0x0)
ioctl$CDROMCLOSETRAY(r1, 0x5319)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)

05:25:54 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x0) (fail_nth: 3)

[ 2187.154813] FAULT_INJECTION: forcing a failure.
[ 2187.154813] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2187.156167] CPU: 0 PID: 12831 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2187.157027] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2187.158216] Call Trace:
[ 2187.158485]  <TASK>
[ 2187.158721]  dump_stack_lvl+0x8b/0xb3
[ 2187.159139]  should_fail.cold+0x5/0xa
[ 2187.159550]  prepare_alloc_pages+0x17b/0x500
[ 2187.160034]  __alloc_pages+0x131/0x4e0
[ 2187.160460]  ? lock_downgrade+0x6d0/0x6d0
[ 2187.160899]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2187.161564]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2187.162176]  ? xa_load+0x158/0x290
[ 2187.162554]  ? xas_find_conflict+0x9e0/0x9e0
[ 2187.163021]  alloc_pages+0x1a0/0x2f0
[ 2187.163432]  filemap_alloc_folio+0x8e/0xb0
[ 2187.163886]  page_cache_ra_unbounded+0x1af/0x540
[ 2187.164399]  ondemand_readahead+0x642/0x1270
[ 2187.164901]  page_cache_sync_ra+0x1c5/0x200
[ 2187.165378]  filemap_get_pages+0x29e/0x1680
[ 2187.165867]  ? lock_downgrade+0x6d0/0x6d0
[ 2187.166307]  ? unwind_next_frame+0xdfe/0x20a0
[ 2187.166820]  ? filemap_add_folio+0x1b0/0x1b0
[ 2187.167357]  ? lock_is_held_type+0xd7/0x130
[ 2187.167999]  filemap_read+0x311/0xba0
[ 2187.168428]  ? filemap_get_pages+0x1680/0x1680
[ 2187.168939]  ? filter_irq_stacks+0x90/0x90
[ 2187.169402]  ? __stack_depot_save+0x35/0x450
[ 2187.169905]  ? kasan_save_stack+0x2e/0x40
[ 2187.170340]  ? kasan_save_stack+0x1e/0x40
[ 2187.170792]  ? __kasan_kmalloc+0x81/0xa0
[ 2187.171215]  ? alloc_pipe_info+0x1e0/0x580
[ 2187.171692]  ? splice_direct_to_actor+0x700/0x8e0
[ 2187.172214]  ? do_splice_direct+0x1b8/0x280
[ 2187.172695]  ? do_sendfile+0xad7/0x1230
[ 2187.173126]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2187.173664]  ? do_syscall_64+0x3b/0x90
[ 2187.174083]  generic_file_read_iter+0x3c9/0x530
[ 2187.174605]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2187.175224]  ? __fsnotify_parent+0x498/0xa60
[ 2187.175715]  ext4_file_read_iter+0x184/0x3f0
[ 2187.176204]  generic_file_splice_read+0x3b9/0x5d0
[ 2187.176747]  ? pipe_to_user+0x170/0x170
[ 2187.177211]  ? security_file_permission+0xb1/0xd0
[ 2187.177729]  ? pipe_to_user+0x170/0x170
[ 2187.178178]  do_splice_to+0x1bc/0x240
[ 2187.178608]  ? inode_has_perm+0x1d0/0x1d0
[ 2187.179067]  splice_direct_to_actor+0x2c7/0x8e0
[ 2187.179594]  ? pipe_to_sendpage+0x380/0x380
[ 2187.180083]  ? do_splice_to+0x240/0x240
[ 2187.180524]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2187.180802] FAULT_INJECTION: forcing a failure.
[ 2187.180802] name failslab, interval 1, probability 0, space 0, times 0
[ 2187.181130]  ? security_file_permission+0xb1/0xd0
[ 2187.182852]  do_splice_direct+0x1b8/0x280
[ 2187.183307]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2187.183845]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2187.184457]  ? security_file_permission+0xb1/0xd0
[ 2187.184996]  do_sendfile+0xad7/0x1230
[ 2187.185429]  ? bit_wait_io_timeout+0x160/0x160
[ 2187.185942]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2187.186518]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2187.187133]  ? vfs_write+0x422/0xac0
[ 2187.187532]  __x64_sys_sendfile64+0x1cd/0x210
[ 2187.188025]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2187.188581]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2187.189156]  do_syscall_64+0x3b/0x90
[ 2187.189557]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2187.190138] RIP: 0033:0x7f1455db8b19
[ 2187.190521] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2187.192570] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2187.193372] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2187.194153] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2187.194937] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2187.195717] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[ 2187.196494] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2187.197303]  </TASK>
[ 2187.197722] CPU: 1 PID: 12868 Comm: syz-executor.6 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2187.198796] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2187.200150] Call Trace:
[ 2187.200440]  <TASK>
[ 2187.200788]  dump_stack_lvl+0x8b/0xb3
[ 2187.201348]  should_fail.cold+0x5/0xa
[ 2187.201772]  ? create_object.isra.0+0x3a/0xa20
[ 2187.202269]  should_failslab+0x5/0x10
[ 2187.202688]  kmem_cache_alloc+0x5b/0x480
[ 2187.203135]  create_object.isra.0+0x3a/0xa20
[ 2187.203611]  ? kasan_unpoison+0x23/0x50
[ 2187.204041]  __kmalloc_node+0x26f/0x470
[ 2187.204484]  kvmalloc_node+0x3e/0x130
[ 2187.204894]  seq_read_iter+0x818/0x12b0
[ 2187.205344]  ? mark_lock.part.0+0xef/0x2f60
[ 2187.205826]  ? lock_is_held_type+0xd7/0x130
[ 2187.206301]  seq_read+0x337/0x4b0
[ 2187.206684]  ? seq_read_iter+0x12b0/0x12b0
[ 2187.207148]  ? lock_is_held_type+0xd7/0x130
[ 2187.207626]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2187.208229]  ? fsnotify_perm.part.0+0x221/0x610
[ 2187.208742]  ? seq_read_iter+0x12b0/0x12b0
[ 2187.209216]  proc_reg_read+0x226/0x300
[ 2187.209653]  do_iter_read+0x4ed/0x750
[ 2187.210055]  ? import_iovec+0x83/0xb0
[ 2187.210482]  vfs_readv+0xe5/0x150
[ 2187.210860]  ? vfs_iter_read+0xa0/0xa0
[ 2187.211280]  ? lock_release+0x3b2/0x750
[ 2187.211720]  ? __fget_files+0x265/0x470
[ 2187.212155]  ? 0xffffffff81000000
[ 2187.212529]  ? find_held_lock+0x2c/0x110
[ 2187.212973]  ? __fget_files+0x287/0x470
[ 2187.213412]  do_preadv+0x1b6/0x270
[ 2187.213802]  ? __ia32_sys_readv+0xb0/0xb0
[ 2187.214260]  __x64_sys_preadv2+0xeb/0x150
[ 2187.214710]  do_syscall_64+0x3b/0x90
[ 2187.215118]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2187.215668] RIP: 0033:0x7ffb6640bb19
[ 2187.216063] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2187.218050] RSP: 002b:00007ffb63981188 EFLAGS: 00000246 ORIG_RAX: 0000000000000147
[ 2187.218872] RAX: ffffffffffffffda RBX: 00007ffb6651ef60 RCX: 00007ffb6640bb19
[ 2187.219638] RDX: 0000000000000001 RSI: 0000000020000340 RDI: 0000000000000003
[ 2187.220406] RBP: 00007ffb639811d0 R08: 0000000000000000 R09: 0000000000000000
[ 2187.221168] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2187.221947] R13: 00007ffdf5c22b2f R14: 00007ffb63981300 R15: 0000000000022000
[ 2187.222728]  </TASK>
05:25:54 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x4}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

[ 2187.277561] FAULT_INJECTION: forcing a failure.
[ 2187.277561] name failslab, interval 1, probability 0, space 0, times 0
[ 2187.279322] CPU: 0 PID: 12867 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2187.280272] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2187.281473] Call Trace:
[ 2187.281753]  <TASK>
[ 2187.281995]  dump_stack_lvl+0x8b/0xb3
[ 2187.282430]  should_fail.cold+0x5/0xa
[ 2187.282855]  should_failslab+0x5/0x10
[ 2187.283272]  kmem_cache_alloc_lru+0x60/0x7c0
[ 2187.283778]  ? xas_alloc+0x35d/0x480
[ 2187.284184]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 2187.284785]  xas_alloc+0x35d/0x480
[ 2187.285171]  xas_create+0x35b/0x1030
[ 2187.285602]  ? lock_acquire+0x1b2/0x530
[ 2187.286044]  ? lock_is_held_type+0xd7/0x130
[ 2187.286532]  xas_store+0x90/0x1c40
[ 2187.286915]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[ 2187.287485]  ? xas_find_conflict+0x4a6/0x9e0
[ 2187.287990]  __filemap_add_folio+0x3c6/0xf60
[ 2187.288505]  ? filemap_map_pages+0x1350/0x1350
[ 2187.289022]  ? memcg_list_lru_alloc+0xb10/0xb10
[ 2187.289562]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2187.290187]  filemap_add_folio+0x9b/0x1b0
[ 2187.290658]  ? add_to_page_cache_locked+0x160/0x160
[ 2187.291225]  ? alloc_pages+0x1a8/0x2f0
[ 2187.291668]  page_cache_ra_unbounded+0x1d3/0x540
[ 2187.292182]  ondemand_readahead+0x642/0x1270
[ 2187.292693]  page_cache_sync_ra+0x1c5/0x200
[ 2187.293178]  filemap_get_pages+0x29e/0x1680
[ 2187.293657]  ? lock_downgrade+0x6d0/0x6d0
[ 2187.294131]  ? unwind_next_frame+0xdfe/0x20a0
[ 2187.294634]  ? filemap_add_folio+0x1b0/0x1b0
[ 2187.295136]  ? lock_is_held_type+0xd7/0x130
[ 2187.295622]  filemap_read+0x311/0xba0
[ 2187.296057]  ? filemap_get_pages+0x1680/0x1680
[ 2187.296583]  ? filter_irq_stacks+0x90/0x90
[ 2187.297061]  ? __stack_depot_save+0x35/0x450
[ 2187.297580]  ? kasan_save_stack+0x2e/0x40
[ 2187.298029]  ? kasan_save_stack+0x1e/0x40
[ 2187.298471]  ? __kasan_kmalloc+0x81/0xa0
[ 2187.298926]  ? alloc_pipe_info+0x1e0/0x580
[ 2187.299391]  ? splice_direct_to_actor+0x700/0x8e0
[ 2187.299927]  ? do_splice_direct+0x1b8/0x280
[ 2187.300409]  ? do_sendfile+0xad7/0x1230
[ 2187.300855]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2187.301394]  ? do_syscall_64+0x3b/0x90
[ 2187.301832]  generic_file_read_iter+0x3c9/0x530
[ 2187.302360]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2187.302974]  ? __fsnotify_parent+0x498/0xa60
[ 2187.303442]  ext4_file_read_iter+0x184/0x3f0
[ 2187.303947]  generic_file_splice_read+0x3b9/0x5d0
[ 2187.304492]  ? pipe_to_user+0x170/0x170
[ 2187.304955]  ? security_file_permission+0xb1/0xd0
[ 2187.305473]  ? pipe_to_user+0x170/0x170
[ 2187.305929]  do_splice_to+0x1bc/0x240
[ 2187.306363]  ? inode_has_perm+0x1d0/0x1d0
[ 2187.306837]  splice_direct_to_actor+0x2c7/0x8e0
[ 2187.307357]  ? pipe_to_sendpage+0x380/0x380
[ 2187.307848]  ? do_splice_to+0x240/0x240
[ 2187.308304]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2187.308922]  ? security_file_permission+0xb1/0xd0
[ 2187.309494]  do_splice_direct+0x1b8/0x280
[ 2187.309933]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2187.310489]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2187.311106]  ? security_file_permission+0xb1/0xd0
[ 2187.311641]  do_sendfile+0xad7/0x1230
[ 2187.312069]  ? bit_wait_io_timeout+0x160/0x160
[ 2187.312580]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2187.313157]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2187.313788]  ? vfs_write+0x422/0xac0
[ 2187.314205]  __x64_sys_sendfile64+0x1cd/0x210
[ 2187.314688]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2187.315283]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2187.315863]  do_syscall_64+0x3b/0x90
[ 2187.316276]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2187.316849] RIP: 0033:0x7fdbfaa6cb19
[ 2187.317271] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2187.319324] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2187.320167] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2187.320960] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2187.321756] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2187.322562] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[ 2187.323354] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2187.324156]  </TASK>
05:25:54 executing program 3:
r0 = clone3(&(0x7f0000000040)={0x0, &(0x7f0000000000), 0x0, 0x0, {0x1}, 0x0, 0x0, 0x0, 0x0, 0x5f}, 0x58)
r1 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80))
symlinkat(&(0x7f0000000000)='./file0\x00', r1, &(0x7f0000000040)='./file0\x00')
linkat(r1, &(0x7f00000000c0)='./file0\x00', r1, &(0x7f0000000100)='./file1\x00', 0x1000)
finit_module(r1, &(0x7f0000000100)='net/igmp\x00', 0x2)
r2 = syz_open_procfs(r0, &(0x7f00000000c0)='net/igmp\x00')
openat(r2, &(0x7f0000000140)='./file0/file0\x00', 0x282200, 0x80)

05:26:08 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 7)

05:26:08 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x5}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:26:08 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x0) (fail_nth: 4)

05:26:08 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

05:26:08 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 6)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:26:08 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)
r1 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="617f8c050cc8fd3940421020b404e52160083cd16f5bff6f7491952ad7c1a7fd70f88ac4f3621deaaefa9382e4709ae24cd405ae0553b8aa"])
symlinkat(&(0x7f0000000000)='./file0\x00', r1, &(0x7f0000000040)='./file0\x00')
linkat(r1, &(0x7f00000000c0)='./file0\x00', r1, &(0x7f0000000100)='./file1\x00', 0x1000)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r4, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r5, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
ioctl$CDROMPAUSE(r5, 0x5301)
ioctl$AUTOFS_DEV_IOCTL_READY(r4, 0xc0189376, &(0x7f0000000140)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r3, @ANYBLOB="0500bc000000696c65310000000000fc"])
r6 = dup2(r2, r3)
poll(&(0x7f0000000180)=[{r6, 0x3}], 0x1, 0xffffffff)
ioctl$EXT4_IOC_SWAP_BOOT(r1, 0x6611)

05:26:08 executing program 3:
sendmsg$AUDIT_TTY_SET(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x18, 0x3f9, 0x20, 0x70bd2a, 0x25dfdbfd, {0x0, 0x1}, ["", "", "", "", "", "", ""]}, 0x18}, 0x1, 0x0, 0x0, 0x4}, 0x4004850)
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)

05:26:08 executing program 7:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, 0x0, 0x2, 0x0)

[ 2201.450160] FAULT_INJECTION: forcing a failure.
[ 2201.450160] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2201.452667] CPU: 0 PID: 13051 Comm: syz-executor.6 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2201.454428] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2201.456808] Call Trace:
[ 2201.456832] FAULT_INJECTION: forcing a failure.
[ 2201.456832] name failslab, interval 1, probability 0, space 0, times 0
[ 2201.457341]  <TASK>
[ 2201.458943]  dump_stack_lvl+0x8b/0xb3
[ 2201.459770]  should_fail.cold+0x5/0xa
[ 2201.460596]  _copy_to_iter+0x393/0x1820
[ 2201.461462]  ? lock_is_held_type+0xd7/0x130
[ 2201.462380]  ? copy_page_from_iter+0x9f0/0x9f0
[ 2201.463356]  ? lock_release+0x3b2/0x750
[ 2201.464203]  ? seq_read_iter+0xd49/0x12b0
[ 2201.465089]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2201.466275]  ? __virt_addr_valid+0xe9/0x350
[ 2201.467200]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[ 2201.468244]  ? is_vmalloc_addr+0x7b/0xb0
[ 2201.469105]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2201.470295]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[ 2201.471361]  ? __check_object_size+0x1b5/0x890
[ 2201.472350]  seq_read_iter+0xdc7/0x12b0
[ 2201.473217]  seq_read+0x337/0x4b0
[ 2201.473967]  ? seq_read_iter+0x12b0/0x12b0
[ 2201.474872]  ? lock_is_held_type+0xd7/0x130
[ 2201.475806]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2201.476976]  ? fsnotify_perm.part.0+0x221/0x610
[ 2201.478023]  ? seq_read_iter+0x12b0/0x12b0
[ 2201.478926]  proc_reg_read+0x226/0x300
[ 2201.479768]  do_iter_read+0x4ed/0x750
[ 2201.480584]  ? import_iovec+0x83/0xb0
[ 2201.481403]  vfs_readv+0xe5/0x150
[ 2201.482135]  ? vfs_iter_read+0xa0/0xa0
[ 2201.482961]  ? lock_release+0x3b2/0x750
[ 2201.483802]  ? __fget_files+0x265/0x470
[ 2201.484652]  ? 0xffffffff81000000
[ 2201.485382]  ? find_held_lock+0x2c/0x110
[ 2201.486259]  ? __fget_files+0x287/0x470
[ 2201.487130]  do_preadv+0x1b6/0x270
[ 2201.487872]  ? __ia32_sys_readv+0xb0/0xb0
[ 2201.488745]  ? fput+0x2a/0x50
[ 2201.489445]  __x64_sys_preadv2+0xeb/0x150
[ 2201.490336]  do_syscall_64+0x3b/0x90
[ 2201.491130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2201.492212] RIP: 0033:0x7ffb6640bb19
[ 2201.492984] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2201.496857] RSP: 002b:00007ffb63981188 EFLAGS: 00000246 ORIG_RAX: 0000000000000147
[ 2201.498456] RAX: ffffffffffffffda RBX: 00007ffb6651ef60 RCX: 00007ffb6640bb19
[ 2201.499956] RDX: 0000000000000001 RSI: 0000000020000340 RDI: 0000000000000003
[ 2201.501464] RBP: 00007ffb639811d0 R08: 0000000000000000 R09: 0000000000000000
[ 2201.502949] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2201.504434] R13: 00007ffdf5c22b2f R14: 00007ffb63981300 R15: 0000000000022000
[ 2201.505955]  </TASK>
[ 2201.506439] CPU: 1 PID: 13049 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2201.507386] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2201.508590] Call Trace:
[ 2201.508868]  <TASK>
[ 2201.509107]  dump_stack_lvl+0x8b/0xb3
[ 2201.509531]  should_fail.cold+0x5/0xa
[ 2201.509942]  ? create_object.isra.0+0x3a/0xa20
[ 2201.510438]  should_failslab+0x5/0x10
[ 2201.510849]  kmem_cache_alloc+0x5b/0x480
[ 2201.511298]  create_object.isra.0+0x3a/0xa20
[ 2201.511770]  ? kasan_unpoison+0x23/0x50
[ 2201.512201]  kmem_cache_alloc_lru+0x2d3/0x7c0
[ 2201.512685]  ? xas_alloc+0x35d/0x480
[ 2201.513084]  xas_alloc+0x35d/0x480
[ 2201.513463]  xas_create+0x35b/0x1030
[ 2201.513865]  ? lock_acquire+0x1b2/0x530
[ 2201.514300]  ? lock_is_held_type+0xd7/0x130
[ 2201.514774]  xas_store+0x90/0x1c40
[ 2201.515163]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[ 2201.515697]  ? xas_find_conflict+0x4a6/0x9e0
[ 2201.516167]  __filemap_add_folio+0x3c6/0xf60
[ 2201.516654]  ? filemap_map_pages+0x1350/0x1350
[ 2201.517153]  ? memcg_list_lru_alloc+0xb10/0xb10
[ 2201.517653]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2201.518255]  filemap_add_folio+0x9b/0x1b0
[ 2201.518698]  ? add_to_page_cache_locked+0x160/0x160
[ 2201.519238]  ? alloc_pages+0x1a8/0x2f0
[ 2201.519657]  page_cache_ra_unbounded+0x1d3/0x540
[ 2201.520173]  ondemand_readahead+0x642/0x1270
[ 2201.520651]  page_cache_sync_ra+0x1c5/0x200
[ 2201.521119]  filemap_get_pages+0x29e/0x1680
[ 2201.521590]  ? lock_downgrade+0x6d0/0x6d0
[ 2201.522045]  ? unwind_next_frame+0xdfe/0x20a0
[ 2201.522523]  ? filemap_add_folio+0x1b0/0x1b0
[ 2201.523009]  ? lock_is_held_type+0xd7/0x130
[ 2201.523475]  filemap_read+0x311/0xba0
[ 2201.523900]  ? filemap_get_pages+0x1680/0x1680
[ 2201.524379]  ? filter_irq_stacks+0x90/0x90
[ 2201.524834]  ? __stack_depot_save+0x35/0x450
[ 2201.525311]  ? kasan_save_stack+0x2e/0x40
[ 2201.525761]  ? kasan_save_stack+0x1e/0x40
[ 2201.526207]  ? __kasan_kmalloc+0x81/0xa0
[ 2201.526636]  ? alloc_pipe_info+0x1e0/0x580
[ 2201.527088]  ? splice_direct_to_actor+0x700/0x8e0
[ 2201.527593]  ? do_splice_direct+0x1b8/0x280
[ 2201.528064]  ? do_sendfile+0xad7/0x1230
[ 2201.528481]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2201.528975]  ? do_syscall_64+0x3b/0x90
[ 2201.529391]  generic_file_read_iter+0x3c9/0x530
[ 2201.529915]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2201.530484]  ? __fsnotify_parent+0x498/0xa60
[ 2201.530956]  ext4_file_read_iter+0x184/0x3f0
[ 2201.531433]  generic_file_splice_read+0x3b9/0x5d0
[ 2201.531958]  ? pipe_to_user+0x170/0x170
[ 2201.532390]  ? security_file_permission+0xb1/0xd0
[ 2201.532914]  ? pipe_to_user+0x170/0x170
[ 2201.533339]  do_splice_to+0x1bc/0x240
[ 2201.533765]  ? inode_has_perm+0x1d0/0x1d0
[ 2201.534212]  splice_direct_to_actor+0x2c7/0x8e0
[ 2201.534709]  ? pipe_to_sendpage+0x380/0x380
[ 2201.535182]  ? do_splice_to+0x240/0x240
[ 2201.535606]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2201.536197]  ? security_file_permission+0xb1/0xd0
[ 2201.536708]  do_splice_direct+0x1b8/0x280
[ 2201.537160]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2201.537684]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2201.538283]  ? security_file_permission+0xb1/0xd0
[ 2201.538805]  do_sendfile+0xad7/0x1230
[ 2201.539218]  ? bit_wait_io_timeout+0x160/0x160
[ 2201.539703]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2201.540266]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2201.540836]  ? vfs_write+0x422/0xac0
[ 2201.541243]  __x64_sys_sendfile64+0x1cd/0x210
[ 2201.541732]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2201.542308]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2201.542856]  do_syscall_64+0x3b/0x90
[ 2201.543261]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2201.543804] RIP: 0033:0x7fdbfaa6cb19
[ 2201.544206] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2201.546098] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2201.546919] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2201.547691] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2201.548459] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2201.549231] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[ 2201.550010] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2201.550788]  </TASK>
[ 2201.559240] FAULT_INJECTION: forcing a failure.
[ 2201.559240] name failslab, interval 1, probability 0, space 0, times 0
[ 2201.561599] CPU: 0 PID: 13048 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2201.563335] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2201.565720] Call Trace:
[ 2201.566255]  <TASK>
[ 2201.566726]  dump_stack_lvl+0x8b/0xb3
[ 2201.567547]  should_fail.cold+0x5/0xa
[ 2201.568369]  should_failslab+0x5/0x10
[ 2201.569178]  kmem_cache_alloc_lru+0x60/0x7c0
[ 2201.570135]  ? xas_alloc+0x35d/0x480
[ 2201.570924]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 2201.572039]  xas_alloc+0x35d/0x480
[ 2201.572803]  xas_create+0x35b/0x1030
[ 2201.573602]  ? lock_acquire+0x1b2/0x530
[ 2201.574457]  ? lock_is_held_type+0xd7/0x130
[ 2201.575374]  xas_store+0x90/0x1c40
[ 2201.576128]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[ 2201.577196]  ? xas_find_conflict+0x4a6/0x9e0
[ 2201.578146]  __filemap_add_folio+0x3c6/0xf60
[ 2201.579094]  ? filemap_map_pages+0x1350/0x1350
[ 2201.580072]  ? memcg_list_lru_alloc+0xb10/0xb10
[ 2201.581053]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2201.582238]  filemap_add_folio+0x9b/0x1b0
[ 2201.583121]  ? add_to_page_cache_locked+0x160/0x160
[ 2201.584179]  ? alloc_pages+0x1a8/0x2f0
[ 2201.585008]  page_cache_ra_unbounded+0x1d3/0x540
[ 2201.586032]  ondemand_readahead+0x642/0x1270
[ 2201.586982]  page_cache_sync_ra+0x1c5/0x200
[ 2201.587896]  filemap_get_pages+0x29e/0x1680
[ 2201.588818]  ? lock_downgrade+0x6d0/0x6d0
[ 2201.589718]  ? unwind_next_frame+0xdfe/0x20a0
[ 2201.590662]  ? filemap_add_folio+0x1b0/0x1b0
[ 2201.591598]  ? lock_is_held_type+0xd7/0x130
[ 2201.592513]  filemap_read+0x311/0xba0
[ 2201.593346]  ? filemap_get_pages+0x1680/0x1680
[ 2201.594318]  ? filter_irq_stacks+0x90/0x90
[ 2201.595213]  ? __stack_depot_save+0x35/0x450
[ 2201.596151]  ? kasan_save_stack+0x2e/0x40
[ 2201.597017]  ? kasan_save_stack+0x1e/0x40
[ 2201.597899]  ? __kasan_kmalloc+0x81/0xa0
[ 2201.598742]  ? alloc_pipe_info+0x1e0/0x580
[ 2201.599633]  ? splice_direct_to_actor+0x700/0x8e0
[ 2201.600648]  ? do_splice_direct+0x1b8/0x280
[ 2201.601715]  ? do_sendfile+0xad7/0x1230
[ 2201.602551]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2201.603530]  ? do_syscall_64+0x3b/0x90
[ 2201.604363]  generic_file_read_iter+0x3c9/0x530
[ 2201.605350]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2201.606536]  ? __fsnotify_parent+0x498/0xa60
[ 2201.607463]  ext4_file_read_iter+0x184/0x3f0
[ 2201.608397]  generic_file_splice_read+0x3b9/0x5d0
[ 2201.609428]  ? pipe_to_user+0x170/0x170
[ 2201.610298]  ? security_file_permission+0xb1/0xd0
[ 2201.611318]  ? pipe_to_user+0x170/0x170
[ 2201.612169]  do_splice_to+0x1bc/0x240
[ 2201.612977]  ? inode_has_perm+0x1d0/0x1d0
[ 2201.613843]  splice_direct_to_actor+0x2c7/0x8e0
[ 2201.614839]  ? pipe_to_sendpage+0x380/0x380
[ 2201.615733]  ? do_splice_to+0x240/0x240
[ 2201.616569]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2201.617749]  ? security_file_permission+0xb1/0xd0
[ 2201.618778]  do_splice_direct+0x1b8/0x280
[ 2201.619661]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2201.620694]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2201.621863]  ? security_file_permission+0xb1/0xd0
[ 2201.622890]  do_sendfile+0xad7/0x1230
[ 2201.623701]  ? bit_wait_io_timeout+0x160/0x160
[ 2201.624666]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2201.625771]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2201.626892]  ? vfs_write+0x422/0xac0
[ 2201.627686]  __x64_sys_sendfile64+0x1cd/0x210
[ 2201.628624]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2201.629750]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2201.630838]  do_syscall_64+0x3b/0x90
[ 2201.631629]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2201.632705] RIP: 0033:0x7f1455db8b19
[ 2201.633486] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2201.637315] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2201.638921] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2201.640405] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2201.641898] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2201.643381] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[ 2201.644863] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2201.646382]  </TASK>
05:26:09 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x6}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:26:09 executing program 3:
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000040)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r1=>r0, @ANYBLOB="ffff0000004a3978125baed1b5a89b1a"])
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000080)=<r3=>0x0)
capset(&(0x7f0000000340)={0x20080522, r3}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
r4 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)={[], [{@smackfsroot={'smackfsroot', 0x3d, 'cgroup.type\x00'}}]})
symlinkat(&(0x7f0000000000)='./file0\x00', r4, &(0x7f0000000040)='./file0\x00')
linkat(r4, &(0x7f00000000c0)='./file0\x00', r4, &(0x7f0000000100)='./file1\x00', 0x1000)
symlinkat(&(0x7f0000000000)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000040)='./file0\x00')
linkat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000100)='./file1\x00', 0x1000)
ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0)
write$binfmt_elf64(r4, &(0x7f0000000740)=ANY=[@ANYBLOB="7f454c462007407f0800000000000000030000000000000088010000000000004000000000000000090100000000000006000000060038000100f002ae00f8ff01000000000000e0020000000000000008000000000000000500000000000000ed0e00000000000000000000000000000000000000000000a841f299a980d8cb3c2a93417fd43850a39e91faf5e8b57505763127bceb37cb545c84a9f8530f361f0992aa284860e30f751c456c557500610afb873a011f8502c06e02eed11fbc4f4c1b0042dd8eec133132504106c5d6c2a84e7a2ce91ef148ac319c6b8a43a1d6a54e24cad0368b64611db1c38de59e323fd37ecbee423032cdb445ae88eae410aec83dffe6e968ebfad9d900e90000000000008a0b663f0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000600"/1050], 0x41a)
clone3(&(0x7f00000002c0)={0x109028200, &(0x7f0000000080), &(0x7f0000000140), &(0x7f0000000180), {0x14}, &(0x7f0000000bc0)=""/4096, 0x1000, &(0x7f00000001c0)=""/132, &(0x7f0000000280)=[r3], 0x1, {r1}}, 0x58)
r5 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="006d022de084428df65af974f3dca23d16379e2b077ce0122d353291f74759d782e8ef2da257e0eefd84b6a5e410bea59c3b8729ced9c615d33b"])
symlinkat(&(0x7f0000000000)='./file0\x00', r5, &(0x7f0000000040)='./file0\x00')
linkat(r4, &(0x7f00000000c0)='./file1\x00', r1, &(0x7f0000000100)='./file1\x00', 0x1400)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r1, 0xc0189378, &(0x7f0000000400)={{0x1, 0x1, 0x18, <r6=>r5, {r5}}, './file0\x00'})
ioctl$TIOCL_SETSEL(r6, 0x541c, &(0x7f0000000440)={0x2, {0x2, 0xa093, 0xac, 0x4, 0x6, 0x3}})
pidfd_getfd(r1, r5, 0x0)
openat$cgroup_type(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0)

[ 2201.656522] tmpfs: Unknown parameter 'a���9@B ��!`<�o[�ot��*����p����b�����p��L��S��'
05:26:09 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x0) (fail_nth: 5)

05:26:09 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 8)

[ 2201.720289] tmpfs: Unknown parameter 'a���9@B ��!`<�o[�ot��*����p����b�����p��L��S��'
05:26:09 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x8}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

[ 2201.748469] FAULT_INJECTION: forcing a failure.
[ 2201.748469] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2201.749757] CPU: 1 PID: 13068 Comm: syz-executor.6 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2201.750683] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2201.751891] Call Trace:
[ 2201.752181]  <TASK>
[ 2201.752431]  dump_stack_lvl+0x8b/0xb3
[ 2201.752866]  should_fail.cold+0x5/0xa
[ 2201.753303]  _copy_to_user+0x2a/0x140
[ 2201.753730]  simple_read_from_buffer+0xcc/0x160
[ 2201.754250]  proc_fail_nth_read+0x194/0x220
[ 2201.754721]  ? proc_exe_link+0x1d0/0x1d0
[ 2201.755186]  ? security_file_permission+0xb1/0xd0
[ 2201.755711]  ? proc_exe_link+0x1d0/0x1d0
[ 2201.756166]  vfs_read+0x1ea/0x5d0
[ 2201.756544]  ksys_read+0x127/0x250
[ 2201.756943]  ? __ia32_sys_pwrite64+0x220/0x220
[ 2201.757449]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2201.758030]  do_syscall_64+0x3b/0x90
[ 2201.758433]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2201.759021] RIP: 0033:0x7ffb663be69c
[ 2201.759415] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 2201.761454] RSP: 002b:00007ffb63981170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2201.762260] RAX: ffffffffffffffda RBX: 0000000000000080 RCX: 00007ffb663be69c
[ 2201.763048] RDX: 000000000000000f RSI: 00007ffb639811e0 RDI: 0000000000000004
[ 2201.763835] RBP: 00007ffb639811d0 R08: 0000000000000000 R09: 0000000000000000
[ 2201.764597] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2201.765402] R13: 00007ffdf5c22b2f R14: 00007ffb63981300 R15: 0000000000022000
[ 2201.766212]  </TASK>
05:26:09 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 7)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

[ 2201.831028] FAULT_INJECTION: forcing a failure.
[ 2201.831028] name failslab, interval 1, probability 0, space 0, times 0
[ 2201.833422] CPU: 0 PID: 13080 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2201.835179] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2201.837622] Call Trace:
[ 2201.838165]  <TASK>
[ 2201.838635]  dump_stack_lvl+0x8b/0xb3
[ 2201.839454]  should_fail.cold+0x5/0xa
[ 2201.840274]  should_failslab+0x5/0x10
[ 2201.841083]  kmem_cache_alloc_lru+0x60/0x7c0
[ 2201.842030]  ? xas_alloc+0x35d/0x480
[ 2201.842830]  xas_alloc+0x35d/0x480
[ 2201.843585]  xas_create+0x35b/0x1030
[ 2201.844377]  ? lock_acquire+0x1b2/0x530
[ 2201.845229]  ? lock_is_held_type+0xd7/0x130
[ 2201.846150]  xas_store+0x90/0x1c40
[ 2201.846910]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[ 2201.847970]  ? xas_find_conflict+0x4a6/0x9e0
[ 2201.848912]  __filemap_add_folio+0x3c6/0xf60
[ 2201.849883]  ? filemap_map_pages+0x1350/0x1350
[ 2201.850876]  ? memcg_list_lru_alloc+0xb10/0xb10
[ 2201.851850]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2201.853036]  filemap_add_folio+0x9b/0x1b0
[ 2201.853925]  ? add_to_page_cache_locked+0x160/0x160
[ 2201.854996]  ? alloc_pages+0x1a8/0x2f0
[ 2201.855831]  page_cache_ra_unbounded+0x1d3/0x540
[ 2201.856862]  ondemand_readahead+0x642/0x1270
[ 2201.857820]  page_cache_sync_ra+0x1c5/0x200
[ 2201.858740]  filemap_get_pages+0x29e/0x1680
[ 2201.859669]  ? lock_downgrade+0x6d0/0x6d0
[ 2201.860557]  ? unwind_next_frame+0xdfe/0x20a0
[ 2201.861524]  ? filemap_add_folio+0x1b0/0x1b0
[ 2201.862478]  ? lock_is_held_type+0xd7/0x130
[ 2201.863400]  filemap_read+0x311/0xba0
[ 2201.864241]  ? filemap_get_pages+0x1680/0x1680
[ 2201.865211]  ? filter_irq_stacks+0x90/0x90
[ 2201.866117]  ? __stack_depot_save+0x35/0x450
[ 2201.867061]  ? kasan_save_stack+0x2e/0x40
[ 2201.867930]  ? kasan_save_stack+0x1e/0x40
[ 2201.868795]  ? __kasan_kmalloc+0x81/0xa0
[ 2201.869653]  ? alloc_pipe_info+0x1e0/0x580
[ 2201.870549]  ? splice_direct_to_actor+0x700/0x8e0
[ 2201.871570]  ? do_splice_direct+0x1b8/0x280
[ 2201.872484]  ? do_sendfile+0xad7/0x1230
[ 2201.873319]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2201.874326]  ? do_syscall_64+0x3b/0x90
[ 2201.875168]  generic_file_read_iter+0x3c9/0x530
[ 2201.876168]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2201.877336]  ? __fsnotify_parent+0x498/0xa60
[ 2201.878300]  ext4_file_read_iter+0x184/0x3f0
[ 2201.879241]  generic_file_splice_read+0x3b9/0x5d0
[ 2201.880269]  ? pipe_to_user+0x170/0x170
[ 2201.881136]  ? security_file_permission+0xb1/0xd0
[ 2201.882178]  ? pipe_to_user+0x170/0x170
[ 2201.883026]  do_splice_to+0x1bc/0x240
[ 2201.883835]  ? inode_has_perm+0x1d0/0x1d0
[ 2201.884706]  splice_direct_to_actor+0x2c7/0x8e0
[ 2201.885717]  ? pipe_to_sendpage+0x380/0x380
[ 2201.886648]  ? do_splice_to+0x240/0x240
[ 2201.887494]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2201.888659]  ? security_file_permission+0xb1/0xd0
[ 2201.889704]  do_splice_direct+0x1b8/0x280
[ 2201.890602]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2201.891639]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2201.892802]  ? security_file_permission+0xb1/0xd0
[ 2201.893849]  do_sendfile+0xad7/0x1230
[ 2201.894669]  ? bit_wait_io_timeout+0x160/0x160
[ 2201.895642]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2201.896740]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2201.897913]  ? vfs_write+0x422/0xac0
[ 2201.898707]  __x64_sys_sendfile64+0x1cd/0x210
[ 2201.899649]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2201.900779]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2201.901887]  do_syscall_64+0x3b/0x90
[ 2201.902689]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2201.903777] RIP: 0033:0x7fdbfaa6cb19
[ 2201.904554] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2201.908439] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2201.910052] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2201.911553] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2201.913038] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2201.914547] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[ 2201.916037] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2201.917574]  </TASK>
[ 2201.934810] FAULT_INJECTION: forcing a failure.
[ 2201.934810] name failslab, interval 1, probability 0, space 0, times 0
[ 2201.935977] CPU: 1 PID: 13124 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2201.936832] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2201.938029] Call Trace:
[ 2201.938292]  <TASK>
[ 2201.938523]  dump_stack_lvl+0x8b/0xb3
[ 2201.938931]  should_fail.cold+0x5/0xa
[ 2201.939332]  ? create_object.isra.0+0x3a/0xa20
[ 2201.939809]  should_failslab+0x5/0x10
[ 2201.940210]  kmem_cache_alloc+0x5b/0x480
[ 2201.940649]  create_object.isra.0+0x3a/0xa20
[ 2201.941111]  ? kasan_unpoison+0x23/0x50
[ 2201.941545]  kmem_cache_alloc_lru+0x2d3/0x7c0
[ 2201.942016]  ? xas_alloc+0x35d/0x480
[ 2201.942414]  xas_alloc+0x35d/0x480
[ 2201.942787]  xas_create+0x35b/0x1030
[ 2201.943179]  ? lock_acquire+0x1b2/0x530
[ 2201.943596]  ? lock_is_held_type+0xd7/0x130
[ 2201.944050]  xas_store+0x90/0x1c40
[ 2201.944423]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[ 2201.944945]  ? xas_find_conflict+0x4a6/0x9e0
[ 2201.945411]  __filemap_add_folio+0x3c6/0xf60
[ 2201.945893]  ? filemap_map_pages+0x1350/0x1350
[ 2201.946377]  ? memcg_list_lru_alloc+0xb10/0xb10
[ 2201.946862]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2201.947449]  filemap_add_folio+0x9b/0x1b0
[ 2201.947883]  ? add_to_page_cache_locked+0x160/0x160
[ 2201.948407]  ? alloc_pages+0x1a8/0x2f0
[ 2201.948820]  page_cache_ra_unbounded+0x1d3/0x540
[ 2201.949328]  ondemand_readahead+0x642/0x1270
[ 2201.949815]  page_cache_sync_ra+0x1c5/0x200
[ 2201.950272]  filemap_get_pages+0x29e/0x1680
[ 2201.950734]  ? lock_downgrade+0x6d0/0x6d0
[ 2201.951174]  ? unwind_next_frame+0xdfe/0x20a0
[ 2201.951648]  ? filemap_add_folio+0x1b0/0x1b0
[ 2201.952112]  ? lock_is_held_type+0xd7/0x130
[ 2201.952573]  filemap_read+0x311/0xba0
[ 2201.952990]  ? filemap_get_pages+0x1680/0x1680
[ 2201.953483]  ? filter_irq_stacks+0x90/0x90
[ 2201.953925]  ? __stack_depot_save+0x35/0x450
[ 2201.954392]  ? kasan_save_stack+0x2e/0x40
[ 2201.954821]  ? kasan_save_stack+0x1e/0x40
[ 2201.955250]  ? __kasan_kmalloc+0x81/0xa0
[ 2201.955671]  ? alloc_pipe_info+0x1e0/0x580
[ 2201.956107]  ? splice_direct_to_actor+0x700/0x8e0
[ 2201.956614]  ? do_splice_direct+0x1b8/0x280
[ 2201.957064]  ? do_sendfile+0xad7/0x1230
[ 2201.957486]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2201.957978]  ? do_syscall_64+0x3b/0x90
[ 2201.958391]  generic_file_read_iter+0x3c9/0x530
[ 2201.958885]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2201.959461]  ? __fsnotify_parent+0x498/0xa60
[ 2201.959920]  ext4_file_read_iter+0x184/0x3f0
[ 2201.960380]  generic_file_splice_read+0x3b9/0x5d0
[ 2201.960888]  ? pipe_to_user+0x170/0x170
[ 2201.961315]  ? security_file_permission+0xb1/0xd0
[ 2201.961839]  ? pipe_to_user+0x170/0x170
[ 2201.962259]  do_splice_to+0x1bc/0x240
[ 2201.962661]  ? inode_has_perm+0x1d0/0x1d0
[ 2201.963096]  splice_direct_to_actor+0x2c7/0x8e0
[ 2201.963590]  ? pipe_to_sendpage+0x380/0x380
[ 2201.964045]  ? do_splice_to+0x240/0x240
[ 2201.964465]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2201.965044]  ? security_file_permission+0xb1/0xd0
[ 2201.965563]  do_splice_direct+0x1b8/0x280
[ 2201.966010]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2201.966524]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2201.967099]  ? security_file_permission+0xb1/0xd0
[ 2201.967609]  do_sendfile+0xad7/0x1230
[ 2201.968016]  ? bit_wait_io_timeout+0x160/0x160
05:26:09 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x9}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:26:09 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x0)

[ 2201.968632]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2201.969218]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2201.969804]  ? vfs_write+0x422/0xac0
[ 2201.970201]  __x64_sys_sendfile64+0x1cd/0x210
[ 2201.970670]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2201.971226]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2201.971768]  do_syscall_64+0x3b/0x90
[ 2201.972164]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2201.972702] RIP: 0033:0x7f1455db8b19
[ 2201.973084] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2201.974997] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2201.975777] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2201.976512] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2201.977245] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2201.977990] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[ 2201.978739] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2201.979482]  </TASK>
05:26:09 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 8)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:26:09 executing program 7:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, 0x0, 0x2, 0x0)

05:26:09 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0x7ffff000}], 0x1, 0x0, 0x0, 0x0)

05:26:09 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

05:26:09 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$CDROM_SEND_PACKET(r0, 0x5393, &(0x7f0000000140)={"e37a47dbcdd55f63e459e971", &(0x7f0000000040)="d33ecdb1271800f191e67cf1d297c0ab397bea630eec56ec1c6c92b6e624024f0a35d18fa9cc63c0cd4e6307f21ea4eca2cb7e82e2530bcdb275e6ce522b38a2d4969883be6560fc250c7bca898e8ea6bb4843c6031df021457c5a61ddbe4ff04e9844c3", 0x64, 0x80000001, &(0x7f00000000c0)={0x6, 0x0, 0x1f, 0x2, 0x0, 0x0, 0x0, "1e3afb20", 0x3f, "60b5a21b", 0x5f, 0xb1, 0x1f, "3777e3", "d4c3c22b129e1e89292eef4dced301305b7e3f1af5cee4c223709523122edff13f3b7095ec72eae18330d3a7c62e"}, 0x0, 0x5, 0xece0, &(0x7f0000000100)})
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)

[ 2202.063753] FAULT_INJECTION: forcing a failure.
[ 2202.063753] name failslab, interval 1, probability 0, space 0, times 0
[ 2202.064936] CPU: 1 PID: 13190 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2202.065799] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2202.066971] Call Trace:
[ 2202.067245]  <TASK>
[ 2202.067480]  dump_stack_lvl+0x8b/0xb3
[ 2202.067893]  should_fail.cold+0x5/0xa
[ 2202.068310]  should_failslab+0x5/0x10
[ 2202.068709]  kmem_cache_alloc_lru+0x60/0x7c0
[ 2202.069181]  ? xas_alloc+0x35d/0x480
[ 2202.069590]  xas_alloc+0x35d/0x480
[ 2202.069967]  xas_create+0x35b/0x1030
[ 2202.070361]  ? lock_acquire+0x1b2/0x530
[ 2202.070785]  ? lock_is_held_type+0xd7/0x130
[ 2202.071245]  xas_store+0x90/0x1c40
[ 2202.071621]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[ 2202.072145]  ? xas_find_conflict+0x4a6/0x9e0
[ 2202.072626]  __filemap_add_folio+0x3c6/0xf60
[ 2202.073095]  ? filemap_map_pages+0x1350/0x1350
[ 2202.073611]  ? memcg_list_lru_alloc+0xb10/0xb10
[ 2202.074093]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2202.074684]  filemap_add_folio+0x9b/0x1b0
[ 2202.075120]  ? add_to_page_cache_locked+0x160/0x160
[ 2202.075643]  ? alloc_pages+0x1a8/0x2f0
[ 2202.076058]  page_cache_ra_unbounded+0x1d3/0x540
[ 2202.076565]  ondemand_readahead+0x642/0x1270
[ 2202.077034]  page_cache_sync_ra+0x1c5/0x200
[ 2202.077498]  filemap_get_pages+0x29e/0x1680
[ 2202.077956]  ? lock_downgrade+0x6d0/0x6d0
[ 2202.078392]  ? unwind_next_frame+0xdfe/0x20a0
[ 2202.078863]  ? filemap_add_folio+0x1b0/0x1b0
[ 2202.079329]  ? lock_is_held_type+0xd7/0x130
[ 2202.079785]  filemap_read+0x311/0xba0
[ 2202.080200]  ? filemap_get_pages+0x1680/0x1680
[ 2202.080675]  ? filter_irq_stacks+0x90/0x90
[ 2202.081123]  ? __stack_depot_save+0x35/0x450
[ 2202.081616]  ? kasan_save_stack+0x2e/0x40
[ 2202.082048]  ? kasan_save_stack+0x1e/0x40
[ 2202.082484]  ? __kasan_kmalloc+0x81/0xa0
[ 2202.082908]  ? alloc_pipe_info+0x1e0/0x580
[ 2202.083344]  ? splice_direct_to_actor+0x700/0x8e0
[ 2202.083847]  ? do_splice_direct+0x1b8/0x280
[ 2202.084299]  ? do_sendfile+0xad7/0x1230
[ 2202.084712]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2202.085191]  ? do_syscall_64+0x3b/0x90
[ 2202.085614]  generic_file_read_iter+0x3c9/0x530
[ 2202.086101]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2202.086678]  ? __fsnotify_parent+0x498/0xa60
[ 2202.087136]  ext4_file_read_iter+0x184/0x3f0
[ 2202.087602]  generic_file_splice_read+0x3b9/0x5d0
[ 2202.088111]  ? pipe_to_user+0x170/0x170
[ 2202.088543]  ? security_file_permission+0xb1/0xd0
[ 2202.089053]  ? pipe_to_user+0x170/0x170
[ 2202.089481]  do_splice_to+0x1bc/0x240
[ 2202.089884]  ? inode_has_perm+0x1d0/0x1d0
[ 2202.090319]  splice_direct_to_actor+0x2c7/0x8e0
[ 2202.090809]  ? pipe_to_sendpage+0x380/0x380
[ 2202.091267]  ? do_splice_to+0x240/0x240
05:26:09 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 9)

[ 2202.091685]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2202.092409]  ? security_file_permission+0xb1/0xd0
[ 2202.092943]  do_splice_direct+0x1b8/0x280
[ 2202.093380]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2202.093899]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2202.094470]  ? security_file_permission+0xb1/0xd0
[ 2202.094980]  do_sendfile+0xad7/0x1230
[ 2202.095384]  ? bit_wait_io_timeout+0x160/0x160
[ 2202.095867]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2202.096404]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2202.096975]  ? vfs_write+0x422/0xac0
[ 2202.097365]  __x64_sys_sendfile64+0x1cd/0x210
[ 2202.097841]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2202.098394]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2202.098936]  do_syscall_64+0x3b/0x90
[ 2202.099331]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2202.099860] RIP: 0033:0x7f1455db8b19
[ 2202.100244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2202.102162] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2202.102942] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2202.103671] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2202.104398] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2202.105125] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[ 2202.105866] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2202.106611]  </TASK>
[ 2202.176022] FAULT_INJECTION: forcing a failure.
[ 2202.176022] name failslab, interval 1, probability 0, space 0, times 0
[ 2202.177190] CPU: 1 PID: 13199 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2202.178057] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2202.179221] Call Trace:
[ 2202.179490]  <TASK>
[ 2202.179720]  dump_stack_lvl+0x8b/0xb3
[ 2202.180129]  should_fail.cold+0x5/0xa
[ 2202.180527]  ? xas_alloc+0x35d/0x480
[ 2202.180917]  ? create_object.isra.0+0x3a/0xa20
[ 2202.181401]  should_failslab+0x5/0x10
[ 2202.181824]  kmem_cache_alloc+0x5b/0x480
[ 2202.182259]  create_object.isra.0+0x3a/0xa20
[ 2202.182720]  ? kasan_unpoison+0x23/0x50
[ 2202.183138]  kmem_cache_alloc_lru+0x2d3/0x7c0
[ 2202.183621]  ? xas_alloc+0x35d/0x480
[ 2202.184010]  xas_alloc+0x35d/0x480
[ 2202.184384]  xas_create+0x35b/0x1030
[ 2202.184774]  ? lock_acquire+0x1b2/0x530
[ 2202.185196]  ? lock_is_held_type+0xd7/0x130
[ 2202.185666]  xas_store+0x90/0x1c40
[ 2202.186036]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[ 2202.186558]  ? xas_find_conflict+0x4a6/0x9e0
[ 2202.187019]  __filemap_add_folio+0x3c6/0xf60
[ 2202.187491]  ? filemap_map_pages+0x1350/0x1350
[ 2202.187971]  ? memcg_list_lru_alloc+0xb10/0xb10
[ 2202.188458]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2202.189038]  filemap_add_folio+0x9b/0x1b0
[ 2202.189480]  ? add_to_page_cache_locked+0x160/0x160
[ 2202.190000]  ? alloc_pages+0x1a8/0x2f0
[ 2202.190416]  page_cache_ra_unbounded+0x1d3/0x540
[ 2202.190918]  ondemand_readahead+0x642/0x1270
[ 2202.191394]  page_cache_sync_ra+0x1c5/0x200
[ 2202.191845]  filemap_get_pages+0x29e/0x1680
[ 2202.192305]  ? lock_downgrade+0x6d0/0x6d0
[ 2202.192739]  ? unwind_next_frame+0xdfe/0x20a0
[ 2202.193210]  ? filemap_add_folio+0x1b0/0x1b0
[ 2202.193691]  ? lock_is_held_type+0xd7/0x130
[ 2202.194156]  filemap_read+0x311/0xba0
[ 2202.194572]  ? filemap_get_pages+0x1680/0x1680
[ 2202.195062]  ? filter_irq_stacks+0x90/0x90
[ 2202.195506]  ? __stack_depot_save+0x35/0x450
[ 2202.195981]  ? kasan_save_stack+0x2e/0x40
[ 2202.196410]  ? kasan_save_stack+0x1e/0x40
[ 2202.196849]  ? __kasan_kmalloc+0x81/0xa0
[ 2202.197267]  ? alloc_pipe_info+0x1e0/0x580
[ 2202.197720]  ? splice_direct_to_actor+0x700/0x8e0
[ 2202.198222]  ? do_splice_direct+0x1b8/0x280
[ 2202.198682]  ? do_sendfile+0xad7/0x1230
[ 2202.199092]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2202.199577]  ? do_syscall_64+0x3b/0x90
[ 2202.199989]  generic_file_read_iter+0x3c9/0x530
[ 2202.200494]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2202.201068]  ? __fsnotify_parent+0x498/0xa60
[ 2202.201543]  ext4_file_read_iter+0x184/0x3f0
[ 2202.202006]  generic_file_splice_read+0x3b9/0x5d0
[ 2202.202516]  ? pipe_to_user+0x170/0x170
[ 2202.202944]  ? security_file_permission+0xb1/0xd0
[ 2202.203454]  ? pipe_to_user+0x170/0x170
[ 2202.203876]  do_splice_to+0x1bc/0x240
[ 2202.204281]  ? inode_has_perm+0x1d0/0x1d0
[ 2202.204723]  splice_direct_to_actor+0x2c7/0x8e0
[ 2202.205213]  ? pipe_to_sendpage+0x380/0x380
[ 2202.205684]  ? do_splice_to+0x240/0x240
[ 2202.206100]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2202.206680]  ? security_file_permission+0xb1/0xd0
[ 2202.207191]  do_splice_direct+0x1b8/0x280
[ 2202.207634]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2202.208146]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2202.208729]  ? security_file_permission+0xb1/0xd0
[ 2202.209233]  do_sendfile+0xad7/0x1230
[ 2202.209663]  ? bit_wait_io_timeout+0x160/0x160
[ 2202.210149]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2202.210686]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2202.211266]  ? vfs_write+0x422/0xac0
[ 2202.211656]  __x64_sys_sendfile64+0x1cd/0x210
[ 2202.212141]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2202.212697]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2202.213257]  do_syscall_64+0x3b/0x90
[ 2202.213661]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2202.214199] RIP: 0033:0x7fdbfaa6cb19
[ 2202.214582] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2202.216508] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2202.217287] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2202.218049] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2202.218788] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2202.219547] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[ 2202.220289] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2202.221051]  </TASK>
05:26:22 executing program 7:
ioctl$DVD_AUTH(0xffffffffffffffff, 0x80041284, 0x0)
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0}, './file0\x00'})
ioctl$CDROMEJECT(r1, 0x5309)
r2 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r2, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
ioctl$CDROM_LOCKDOOR(r2, 0x5329, 0x1)
r3 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80))
symlinkat(&(0x7f0000000000)='./file0\x00', r3, &(0x7f0000000040)='./file0\x00')
linkat(r3, &(0x7f00000000c0)='./file0\x00', r3, &(0x7f0000000100)='./file1\x00', 0x1000)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r4=>r0, {0x0, 0x80000001}}, './file1\x00'})
unlinkat(r4, &(0x7f0000000180)='./file1\x00', 0x200)
ioctl$FS_IOC_SETFLAGS(r3, 0x40086602, &(0x7f00000000c0)=0x200000)

05:26:22 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0xa}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:26:22 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

05:26:22 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 9)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:26:22 executing program 3:
clone3(&(0x7f0000000640)={0x0, &(0x7f0000000000), 0x0, 0x0, {0x7}, 0x0, 0x0, 0x0, 0x0}, 0x58)

05:26:22 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0x7ffffffff000}], 0x1, 0x0, 0x0, 0x0)

05:26:22 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 10)

05:26:22 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000380)={<r1=>0x0}, &(0x7f0000000680)=0xc)
getpgrp(r1)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000080)=<r3=>0x0)
capset(&(0x7f0000000340)={0x20080522, r3}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
r4 = syz_open_procfs(r3, &(0x7f00000000c0)='net/softnet_stat\x00')
preadv2(r4, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
ioctl$CDROM_GET_CAPABILITY(r4, 0x5331)

[ 2214.813232] FAULT_INJECTION: forcing a failure.
[ 2214.813232] name failslab, interval 1, probability 0, space 0, times 0
[ 2214.815551] CPU: 0 PID: 13215 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2214.817350] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2214.819655] Call Trace:
[ 2214.820190]  <TASK>
[ 2214.820660]  dump_stack_lvl+0x8b/0xb3
[ 2214.821450]  should_fail.cold+0x5/0xa
[ 2214.822280]  ? memcg_alloc_slab_cgroups+0x7a/0x120
[ 2214.823308]  should_failslab+0x5/0x10
[ 2214.824112]  __kmalloc_node+0x76/0x470
[ 2214.824923]  ? lock_downgrade+0x6d0/0x6d0
[ 2214.825814]  memcg_alloc_slab_cgroups+0x7a/0x120
[ 2214.826806]  memcg_slab_post_alloc_hook+0xb9/0x440
[ 2214.827858]  kmem_cache_alloc_lru+0x273/0x7c0
[ 2214.828803]  ? xas_alloc+0x35d/0x480
[ 2214.829508] debugfs: Directory 'loop0' with parent 'block' already present!
[ 2214.831025]  xas_alloc+0x35d/0x480
[ 2214.831775]  xas_create+0x35b/0x1030
[ 2214.832559]  ? lock_acquire+0x1b2/0x530
[ 2214.833392]  ? lock_is_held_type+0xd7/0x130
[ 2214.834307]  xas_store+0x90/0x1c40
[ 2214.835061]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[ 2214.836105]  ? xas_find_conflict+0x4a6/0x9e0
[ 2214.837030]  __filemap_add_folio+0x3c6/0xf60
[ 2214.837985]  ? filemap_map_pages+0x1350/0x1350
[ 2214.838957]  ? memcg_list_lru_alloc+0xb10/0xb10
[ 2214.839905]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2214.841086]  filemap_add_folio+0x9b/0x1b0
[ 2214.841965]  ? add_to_page_cache_locked+0x160/0x160
[ 2214.842998]  ? alloc_pages+0x1a8/0x2f0
[ 2214.843825]  page_cache_ra_unbounded+0x1d3/0x540
[ 2214.844838]  ondemand_readahead+0x642/0x1270
[ 2214.845783]  page_cache_sync_ra+0x1c5/0x200
[ 2214.846693]  filemap_get_pages+0x29e/0x1680
[ 2214.847612]  ? lock_downgrade+0x6d0/0x6d0
[ 2214.848487]  ? unwind_next_frame+0xdfe/0x20a0
[ 2214.849422]  ? filemap_add_folio+0x1b0/0x1b0
[ 2214.850363]  ? lock_is_held_type+0xd7/0x130
[ 2214.851273]  filemap_read+0x311/0xba0
[ 2214.852101]  ? filemap_get_pages+0x1680/0x1680
[ 2214.853063]  ? filter_irq_stacks+0x90/0x90
[ 2214.853943]  ? __stack_depot_save+0x35/0x450
[ 2214.854884]  ? kasan_save_stack+0x2e/0x40
[ 2214.855741]  ? kasan_save_stack+0x1e/0x40
[ 2214.856604]  ? __kasan_kmalloc+0x81/0xa0
[ 2214.857445]  ? alloc_pipe_info+0x1e0/0x580
[ 2214.858315]  ? splice_direct_to_actor+0x700/0x8e0
[ 2214.859317]  ? do_splice_direct+0x1b8/0x280
[ 2214.860206]  ? do_sendfile+0xad7/0x1230
[ 2214.861022]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2214.862001]  ? do_syscall_64+0x3b/0x90
[ 2214.862818]  generic_file_read_iter+0x3c9/0x530
[ 2214.863788]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2214.864926]  ? __fsnotify_parent+0x498/0xa60
[ 2214.865851]  ext4_file_read_iter+0x184/0x3f0
[ 2214.866783]  generic_file_splice_read+0x3b9/0x5d0
[ 2214.867785]  ? pipe_to_user+0x170/0x170
[ 2214.868648]  ? security_file_permission+0xb1/0xd0
[ 2214.869653]  ? pipe_to_user+0x170/0x170
[ 2214.870501]  do_splice_to+0x1bc/0x240
[ 2214.871291]  ? inode_has_perm+0x1d0/0x1d0
[ 2214.872161]  splice_direct_to_actor+0x2c7/0x8e0
[ 2214.873154]  ? pipe_to_sendpage+0x380/0x380
[ 2214.874082]  ? do_splice_to+0x240/0x240
[ 2214.874922]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2214.876065]  ? security_file_permission+0xb1/0xd0
[ 2214.877075]  do_splice_direct+0x1b8/0x280
[ 2214.877952]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2214.878974]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2214.880106]  ? security_file_permission+0xb1/0xd0
[ 2214.881125]  do_sendfile+0xad7/0x1230
[ 2214.881948]  ? bit_wait_io_timeout+0x160/0x160
[ 2214.882905]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2214.883981]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2214.885129]  ? vfs_write+0x422/0xac0
[ 2214.885918]  __x64_sys_sendfile64+0x1cd/0x210
[ 2214.886848]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2214.887962]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2214.889044]  do_syscall_64+0x3b/0x90
[ 2214.889845]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2214.890924] RIP: 0033:0x7fdbfaa6cb19
[ 2214.891671] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2214.895625] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2214.897200] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2214.898689] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2214.900160] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2214.901650] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2214.903127] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2214.904636]  </TASK>
[ 2214.929794] FAULT_INJECTION: forcing a failure.
[ 2214.929794] name failslab, interval 1, probability 0, space 0, times 0
[ 2214.930985] CPU: 1 PID: 13218 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2214.931859] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2214.933039] Call Trace:
[ 2214.933313]  <TASK>
[ 2214.933547]  dump_stack_lvl+0x8b/0xb3
[ 2214.933968]  should_fail.cold+0x5/0xa
[ 2214.934369]  ? create_object.isra.0+0x3a/0xa20
[ 2214.934852]  should_failslab+0x5/0x10
[ 2214.935268]  kmem_cache_alloc+0x5b/0x480
[ 2214.935706]  create_object.isra.0+0x3a/0xa20
[ 2214.936165]  ? kasan_unpoison+0x23/0x50
[ 2214.936587]  kmem_cache_alloc_lru+0x2d3/0x7c0
[ 2214.937055]  ? xas_alloc+0x35d/0x480
[ 2214.937454]  xas_alloc+0x35d/0x480
[ 2214.937836]  xas_create+0x35b/0x1030
[ 2214.938228]  ? lock_acquire+0x1b2/0x530
[ 2214.938647]  ? lock_is_held_type+0xd7/0x130
[ 2214.939114]  xas_store+0x90/0x1c40
[ 2214.939490]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[ 2214.940019]  ? xas_find_conflict+0x4a6/0x9e0
[ 2214.940493]  __filemap_add_folio+0x3c6/0xf60
[ 2214.940976]  ? filemap_map_pages+0x1350/0x1350
[ 2214.941474]  ? memcg_list_lru_alloc+0xb10/0xb10
[ 2214.942017]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2214.942630]  filemap_add_folio+0x9b/0x1b0
[ 2214.943083]  ? add_to_page_cache_locked+0x160/0x160
[ 2214.943628]  ? alloc_pages+0x1a8/0x2f0
[ 2214.944057]  page_cache_ra_unbounded+0x1d3/0x540
[ 2214.944583]  ondemand_readahead+0x642/0x1270
[ 2214.945065]  page_cache_sync_ra+0x1c5/0x200
[ 2214.945533]  filemap_get_pages+0x29e/0x1680
[ 2214.946026]  ? lock_downgrade+0x6d0/0x6d0
[ 2214.946479]  ? unwind_next_frame+0xdfe/0x20a0
[ 2214.946970]  ? filemap_add_folio+0x1b0/0x1b0
[ 2214.947451]  ? lock_is_held_type+0xd7/0x130
[ 2214.947923]  filemap_read+0x311/0xba0
[ 2214.948350]  ? filemap_get_pages+0x1680/0x1680
[ 2214.948846]  ? filter_irq_stacks+0x90/0x90
[ 2214.949303]  ? __stack_depot_save+0x35/0x450
[ 2214.949798]  ? kasan_save_stack+0x2e/0x40
[ 2214.950255]  ? kasan_save_stack+0x1e/0x40
[ 2214.950713]  ? __kasan_kmalloc+0x81/0xa0
[ 2214.951170]  ? alloc_pipe_info+0x1e0/0x580
[ 2214.951642]  ? splice_direct_to_actor+0x700/0x8e0
[ 2214.952183]  ? do_splice_direct+0x1b8/0x280
[ 2214.952664]  ? do_sendfile+0xad7/0x1230
[ 2214.953107]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2214.953633]  ? do_syscall_64+0x3b/0x90
[ 2214.954072]  generic_file_read_iter+0x3c9/0x530
[ 2214.954595]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2214.955209]  ? __fsnotify_parent+0x498/0xa60
[ 2214.955699]  ext4_file_read_iter+0x184/0x3f0
[ 2214.956196]  generic_file_splice_read+0x3b9/0x5d0
[ 2214.956739]  ? pipe_to_user+0x170/0x170
[ 2214.957196]  ? security_file_permission+0xb1/0xd0
[ 2214.957758]  ? pipe_to_user+0x170/0x170
[ 2214.958194]  do_splice_to+0x1bc/0x240
[ 2214.958608]  ? inode_has_perm+0x1d0/0x1d0
[ 2214.959065]  splice_direct_to_actor+0x2c7/0x8e0
[ 2214.959573]  ? pipe_to_sendpage+0x380/0x380
[ 2214.960051]  ? do_splice_to+0x240/0x240
[ 2214.960486]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2214.961083]  ? security_file_permission+0xb1/0xd0
[ 2214.961621]  do_splice_direct+0x1b8/0x280
[ 2214.962079]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2214.962607]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2214.963205]  ? security_file_permission+0xb1/0xd0
[ 2214.963749]  do_sendfile+0xad7/0x1230
[ 2214.964172]  ? bit_wait_io_timeout+0x160/0x160
[ 2214.964680]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2214.965247]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2214.965872]  ? vfs_write+0x422/0xac0
[ 2214.966294]  __x64_sys_sendfile64+0x1cd/0x210
[ 2214.966794]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2214.967390]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2214.967972]  do_syscall_64+0x3b/0x90
[ 2214.968388]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2214.968962] RIP: 0033:0x7f1455db8b19
05:26:22 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0xc}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:26:22 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
process_mrelease(r0, 0x0)
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
read(r1, &(0x7f0000000000)=""/117, 0x75)

05:26:22 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x2, 0x0, 0x0, 0x0)

[ 2214.969371] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2214.971482] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2214.972326] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2214.973119] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2214.973923] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2214.974708] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[ 2214.975472] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2214.976257]  </TASK>
05:26:22 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x9}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:26:22 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000040)={[0x40]}, 0x8, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
linkat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000100)='./file1\x00', 0x1000)
r3 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80))
symlinkat(&(0x7f0000000000)='./file0\x00', r3, &(0x7f0000000040)='./file0\x00')
linkat(r3, &(0x7f00000000c0)='./file0\x00', r3, &(0x7f0000000100)='./file1\x00', 0x1000)
r4 = syz_open_dev$vcsa(&(0x7f0000000180), 0x8, 0x200)
r5 = accept4$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @empty}, &(0x7f0000000200)=0x10, 0x100000)
r6 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80))
symlinkat(&(0x7f0000000000)='./file0\x00', r6, &(0x7f0000000040)='./file0\x00')
linkat(r6, &(0x7f00000000c0)='./file0\x00', r6, &(0x7f0000000100)='./file1\x00', 0x1000)
r7 = inotify_init()
r8 = fork()
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000004c0)={0x23fc, 0x1b, 0x300, 0x70bd29, 0x25dfdbfe, "", [@typed={0x7, 0x59, 0x0, 0x0, @str=')\xd6\x00'}, @nested={0x1b5, 0x29, 0x0, 0x1, [@typed={0x8, 0x71, 0x0, 0x0, @u32=0x80000000}, @generic="29fcda1c6e943d13bebc3232af03bf87df810eb156a98e65b1d70cffe5035eade25bf57db6cb967a02922e7258f265ed1a426d9fb1c55900f23fc3aeed0f17f530f75c27f841fb57ed828a980f2a6861feab42610460a58ffbfb58d8adb83757706c9d2b1a5cd78b7b2abcc00ba77289273b4ba64c244078c6c4ed0ff995438ea254d62a348155854f28c080eb12d8fb2f5047fa0ad1922655012e54a14bb766cff2bc6b831a55632b0b563713e85f69e09ffa8844c34030e0ec78e74183240eca6328b5ae5173a77876", @generic="59284fe24ef58170", @generic="d178f452f68f878bdf473739bfa78024743d087ac54113d8387fd1bcf29b51d16c9bde520a1a30d3d260f88b5af7ae063c4bf8596fa4b742af313eb8a626cc1b3acbe64fe08d23602a511b26e0701249ce9c962278004917af2390ec50e73b69a465be64c737371d7a97efd94dd4c007be65c408afb22278d5940492db26406694f3987e8b0443e9e7439abb18386bb653dedda95253986ca1b6e69d65158d4a826c33259674c4578e3484b18d72d1a6b2d6223f067b6ac7829c67d6573ac44fdc9e1eb686e44c3280be5e811f29814e2931cc194b733e"]}, @nested={0x1093, 0x58, 0x0, 0x1, [@generic="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", @generic, @typed={0x7, 0x1e, 0x0, 0x0, @str=':!\x00'}, @generic="9adef0cac20d9f", @typed={0x8, 0x5c, 0x0, 0x0, @uid}, @typed={0x8, 0x72, 0x0, 0x0, @uid}, @typed={0x70, 0x3, 0x0, 0x0, @binary="4693d2ecc66a2b6209e4cf69feddafdd9f70e8e59a6c370ae2847987edda1286dc9f00e4eb99294240b868ab4e5ee40a3eacebedf0d80c17bb137e6e4e4b35c00d2e6db38b024db2f6dacb245673b4e84859f8b971f4909f9a58064cba95cb2f667a33e41962b61836fe2f63"}]}, @typed={0x14, 0x46, 0x0, 0x0, @ipv6=@private0={0xfc, 0x0, '\x00', 0x1}}, @nested={0x18, 0x5, 0x0, 0x1, [@typed={0x4, 0x59}, @typed={0x8, 0x25, 0x0, 0x0, @uid=0xee00}, @typed={0x8, 0x33, 0x0, 0x0, @ipv4=@remote}]}, @nested={0x1163, 0x5e, 0x0, 0x1, [@typed={0x8, 0x92, 0x0, 0x0, @u32=0x5}, @typed={0x8, 0x95, 0x0, 0x0, @uid}, @generic="fb589c6502b69c0071527b1fe4780c0dd3242e7c55df3fde87587db6cd86624951", @generic="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", @generic="3030e90db8b52ae8b2dfb1741e9a2f531b0509811cedd94f9d8ce58d0245a7fc8da38678aa4e2057b6675eb7bd10757b65d27a74b216dabb64053355583daa374bf5e5246f4a8b5872349779616c38e2ada98eb0dcff1f8aa9e873aebef5692fa737ab98ed659f0ac8dfc42d143a59c609b6d616418921bcb31e3c665ea472d878f806469674ad857f333dbfdac62ef16a00ec4a7e86ed7d20c85c2673a7d38b2b86d95b1e0daa13807b069ef3a896f323bb732b538001a4821d6a80e53e998db7d27df0c8bd0ba05f3930558317379376eea5540f87a388ec67175447ac22d7", @typed={0x8, 0x30, 0x0, 0x0, @fd=r2}, @typed={0x8, 0x13, 0x0, 0x0, @fd=r2}, @typed={0x8, 0x3d, 0x0, 0x0, @uid}, @generic="98dba9290d736aead7530ccb0b54f3a51316238deb01cf690eca015c081141dbbf7a9f830bf6eaf469585b34017461edb128bf1cf0e7", @generic]}, @typed={0x8, 0x55, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x14}}]}, 0x23fc}, {&(0x7f00000028c0)={0x1304, 0x30, 0x0, 0x70bd25, 0x25dfdbfb, "", [@nested={0x28, 0x5d, 0x0, 0x1, [@typed={0xe, 0x4a, 0x0, 0x0, @str=')^\\:(\'-\'-\x00'}, @typed={0x14, 0x64, 0x0, 0x0, @ipv6=@private2}]}, @generic="6adec99a0bddaf67006f2482b64475b93656af63a6ff1b5eb31e6d729c15e4d676112329429cbd79f12860b116118938bdd9727d514b91899f17e1a02fd6caca1d8cfedff153e55c174cc271f7c3fea778ab6939e488c2edc4b5e940afc8f281605d32", @nested={0x10b8, 0x44, 0x0, 0x1, [@typed={0xa0, 0xa, 0x0, 0x0, @binary="213e7fd03f41ca806a0711ac0921abd3becf2705f658d0323012b032ba68bec79bfa151402a856905dd193a43627071e3199945d3f474c35efd25da50746bf38d10cb967677bfe3477a4242b866427f0888906a9540d580c593913a5ff04e1653dfa760aea1d0893ee792715a01963d74d9a07dcf42cc1de9ad1719c95dcc8f1975f1b0922c2de68b5ff81b5c79ae291e584d8c5bf7355d620dc52a9"}, @generic="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", @typed={0x14, 0x13, 0x0, 0x0, @ipv6=@local}]}, @nested={0x1af, 0x6b, 0x0, 0x1, [@generic="b06152fddefc8872c5816ff84a01c8c8d4e9daf7b4e2c02df1fa0afd609ba2ba3e3acebebd07ee517c7c035194687c3ccaa275cc82e38bbf4f570fae31113d36a854a45af131a1e5246ff9cf25014522737c1aa8fc20c98044fdbe68ee1de56d7f3fde6634c389f924955a8032a59a3e91ff056f", @generic="ffabf77cac3b03ef19c72c12482db7edf08a2f5d9271f8b9809c21fd3531730f91d942f906f82d11829912c51bc24267299d3bffeb34ad8567ad993f117f90bca50b80dcc4cbe5078383", @generic="b0d0baf29aa98b07469640ce9ba06a20e954", @typed={0x8, 0xe, 0x0, 0x0, @pid}, @generic="94d400936d1bf2c7aaff57ee80414e56b6611d5a97d11746a06db44b91ae275dc73e", @generic="8c69a70b20ed4e4750876e6fc3b4172cf0bddbeeb08042c6284f276ac80b37c5161cc5eb901905a80d51f52fa15fae71ef6558e9cf00d527bc1bdc204689daddfecd8aa2eb27286b983c2ea2974cd9e18d9a66774b941fac690c24bae9a500493483be30140c807ac45dd40b97e498d48f47e10ebef9892f", @typed={0x8, 0x30, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x1, 0x0}}, @generic="4fb5d51e1109884fdb9a227856bfc1e89371b1b9799d07c28616ea7c2d5714fa63383b3495", @typed={0xc, 0x6b, 0x0, 0x0, @u64=0x1}]}]}, 0x1304}], 0x2, &(0x7f0000000240)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r1]}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, r0, r1, r0, r2, r0, 0xffffffffffffffff, r1, r3, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [r4, r0, r2]}}, @rights={{0x30, 0x1, 0x1, [r2, r2, r0, r0, r5, r6, 0xffffffffffffffff, r7]}}, @cred={{0x1c, 0x1, 0x2, {r8, 0xffffffffffffffff}}}], 0xc8, 0x48000}, 0x0)
preadv2(r2, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
ioctl$CDROM_LOCKDOOR(r2, 0x5329, 0x0)
ioctl$CDROMPAUSE(r0, 0x5301)
ioctl$CDROM_LOCKDOOR(r0, 0x5329, 0x0)

05:26:22 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 11)

05:26:22 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 10)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:26:22 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x8, 0x0, 0x0, 0x0)

[ 2215.212768] FAULT_INJECTION: forcing a failure.
[ 2215.212768] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2215.215497] CPU: 1 PID: 13244 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2215.217258] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2215.219718] Call Trace:
[ 2215.220276]  <TASK>
[ 2215.220760]  dump_stack_lvl+0x8b/0xb3
[ 2215.221782]  should_fail.cold+0x5/0xa
[ 2215.222617]  prepare_alloc_pages+0x17b/0x500
[ 2215.223600]  __alloc_pages+0x131/0x4e0
[ 2215.224423]  ? lock_downgrade+0x6d0/0x6d0
[ 2215.225321]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2215.226632]  ? xa_load+0x158/0x290
[ 2215.227483]  ? xas_find_conflict+0x9e0/0x9e0
[ 2215.228450]  alloc_pages+0x1a0/0x2f0
[ 2215.229292]  filemap_alloc_folio+0x8e/0xb0
[ 2215.230340]  page_cache_ra_unbounded+0x1af/0x540
[ 2215.231435]  ondemand_readahead+0x642/0x1270
[ 2215.232414]  page_cache_sync_ra+0x1c5/0x200
[ 2215.233394]  filemap_get_pages+0x29e/0x1680
[ 2215.234406]  ? lock_downgrade+0x6d0/0x6d0
[ 2215.235404]  ? unwind_next_frame+0xdfe/0x20a0
[ 2215.236415]  ? filemap_add_folio+0x1b0/0x1b0
[ 2215.237436]  ? lock_is_held_type+0xd7/0x130
[ 2215.238423]  filemap_read+0x311/0xba0
[ 2215.239338]  ? filemap_get_pages+0x1680/0x1680
[ 2215.240230]  ? filter_irq_stacks+0x90/0x90
[ 2215.241213]  ? __stack_depot_save+0x35/0x450
[ 2215.242242]  ? kasan_save_stack+0x2e/0x40
[ 2215.243197]  ? kasan_save_stack+0x1e/0x40
[ 2215.244029]  ? __kasan_kmalloc+0x81/0xa0
[ 2215.244927]  ? alloc_pipe_info+0x1e0/0x580
[ 2215.245925]  ? splice_direct_to_actor+0x700/0x8e0
[ 2215.247016]  ? do_splice_direct+0x1b8/0x280
[ 2215.247988]  ? do_sendfile+0xad7/0x1230
[ 2215.248909]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2215.249997]  ? do_syscall_64+0x3b/0x90
[ 2215.250917]  generic_file_read_iter+0x3c9/0x530
[ 2215.251991]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2215.253269]  ? __fsnotify_parent+0x498/0xa60
[ 2215.254305]  ext4_file_read_iter+0x184/0x3f0
[ 2215.255349]  generic_file_splice_read+0x3b9/0x5d0
[ 2215.256298]  ? pipe_to_user+0x170/0x170
[ 2215.257223]  ? security_file_permission+0xb1/0xd0
[ 2215.258344]  ? pipe_to_user+0x170/0x170
[ 2215.259247]  do_splice_to+0x1bc/0x240
[ 2215.260133]  ? inode_has_perm+0x1d0/0x1d0
[ 2215.260980]  splice_direct_to_actor+0x2c7/0x8e0
[ 2215.262014]  ? pipe_to_sendpage+0x380/0x380
[ 2215.263010]  ? do_splice_to+0x240/0x240
[ 2215.263842]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2215.265031]  ? security_file_permission+0xb1/0xd0
[ 2215.266163]  do_splice_direct+0x1b8/0x280
[ 2215.267122]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2215.268110]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2215.269333]  ? security_file_permission+0xb1/0xd0
[ 2215.270461]  do_sendfile+0xad7/0x1230
[ 2215.271333]  ? bit_wait_io_timeout+0x160/0x160
[ 2215.272361]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2215.273377]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2215.274479]  ? vfs_write+0x422/0xac0
[ 2215.275201]  __x64_sys_sendfile64+0x1cd/0x210
[ 2215.276067]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2215.277106]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2215.278115]  do_syscall_64+0x3b/0x90
[ 2215.278840]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2215.279831] RIP: 0033:0x7f1455db8b19
[ 2215.280556] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2215.284107] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2215.285583] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2215.286993] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2215.288382] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2215.289780] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2215.291148] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2215.292591]  </TASK>
[ 2215.382007] FAULT_INJECTION: forcing a failure.
[ 2215.382007] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2215.384744] CPU: 0 PID: 13249 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2215.386384] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2215.389118] Call Trace:
[ 2215.389645]  <TASK>
[ 2215.390197]  dump_stack_lvl+0x8b/0xb3
[ 2215.390969]  should_fail.cold+0x5/0xa
[ 2215.391803]  prepare_alloc_pages+0x17b/0x500
[ 2215.392734]  __alloc_pages+0x131/0x4e0
[ 2215.393671]  ? lock_downgrade+0x6d0/0x6d0
[ 2215.394650]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2215.396069]  ? xa_load+0x158/0x290
[ 2215.396896]  ? xas_find_conflict+0x9e0/0x9e0
[ 2215.397950]  alloc_pages+0x1a0/0x2f0
[ 2215.398833]  filemap_alloc_folio+0x8e/0xb0
[ 2215.399836]  page_cache_ra_unbounded+0x1af/0x540
[ 2215.400994]  ondemand_readahead+0x642/0x1270
[ 2215.402086]  page_cache_sync_ra+0x1c5/0x200
[ 2215.403100]  filemap_get_pages+0x29e/0x1680
[ 2215.404030]  ? lock_downgrade+0x6d0/0x6d0
[ 2215.404914]  ? unwind_next_frame+0xdfe/0x20a0
[ 2215.405876]  ? filemap_add_folio+0x1b0/0x1b0
[ 2215.406821]  ? lock_is_held_type+0xd7/0x130
[ 2215.407738]  filemap_read+0x311/0xba0
[ 2215.408573]  ? filemap_get_pages+0x1680/0x1680
[ 2215.409542]  ? filter_irq_stacks+0x90/0x90
[ 2215.410444]  ? __stack_depot_save+0x35/0x450
[ 2215.411392]  ? kasan_save_stack+0x2e/0x40
[ 2215.412255]  ? kasan_save_stack+0x1e/0x40
[ 2215.413123]  ? __kasan_kmalloc+0x81/0xa0
[ 2215.413991]  ? alloc_pipe_info+0x1e0/0x580
[ 2215.414880]  ? splice_direct_to_actor+0x700/0x8e0
[ 2215.415895]  ? do_splice_direct+0x1b8/0x280
[ 2215.416810]  ? do_sendfile+0xad7/0x1230
[ 2215.417650]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2215.418632]  ? do_syscall_64+0x3b/0x90
[ 2215.419602]  generic_file_read_iter+0x3c9/0x530
[ 2215.420756]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2215.422120]  ? __fsnotify_parent+0x498/0xa60
[ 2215.423213]  ext4_file_read_iter+0x184/0x3f0
[ 2215.424317]  generic_file_splice_read+0x3b9/0x5d0
[ 2215.425526]  ? pipe_to_user+0x170/0x170
[ 2215.426563]  ? security_file_permission+0xb1/0xd0
[ 2215.427770]  ? pipe_to_user+0x170/0x170
[ 2215.428748]  do_splice_to+0x1bc/0x240
[ 2215.429557]  ? inode_has_perm+0x1d0/0x1d0
[ 2215.430452]  splice_direct_to_actor+0x2c7/0x8e0
[ 2215.431446]  ? pipe_to_sendpage+0x380/0x380
[ 2215.432369]  ? do_splice_to+0x240/0x240
[ 2215.433212]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2215.434394]  ? security_file_permission+0xb1/0xd0
[ 2215.435423]  do_splice_direct+0x1b8/0x280
[ 2215.436317]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2215.437359]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2215.438529]  ? security_file_permission+0xb1/0xd0
[ 2215.439557]  do_sendfile+0xad7/0x1230
[ 2215.440374]  ? bit_wait_io_timeout+0x160/0x160
[ 2215.441341]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2215.442452]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2215.443613]  ? vfs_write+0x422/0xac0
[ 2215.444401]  __x64_sys_sendfile64+0x1cd/0x210
[ 2215.445341]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2215.446472]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2215.447563]  do_syscall_64+0x3b/0x90
[ 2215.448353]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2215.449435] RIP: 0033:0x7fdbfaa6cb19
[ 2215.450228] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2215.453806] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2215.455624] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2215.457177] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2215.458687] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2215.460170] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2215.461657] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2215.463170]  </TASK>
05:26:39 executing program 3:
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)
r0 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80))
symlinkat(&(0x7f0000000000)='./file0\x00', r0, &(0x7f0000000040)='./file0\x00')
linkat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000000100)='./file1\x00', 0x1000)
read(r0, &(0x7f0000000100)=""/236, 0xec)

05:26:39 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0xd}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:26:39 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 12)

05:26:39 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r1, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000080)=<r3=>0x0)
capset(&(0x7f0000000340)={0x20080522, r3}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
r4 = syz_open_procfs(r3, &(0x7f0000000240)='net/ptype\x00')
ioctl$CDROM_GET_MCN(r4, 0x5311, &(0x7f0000000280))
r5 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80))
symlinkat(&(0x7f0000000000)='./file0\x00', r5, &(0x7f0000000040)='./file0\x00')
linkat(r5, &(0x7f00000000c0)='./file0\x00', r5, &(0x7f0000000100)='./file1\x00', 0x1000)
r6 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80))
symlinkat(&(0x7f0000000000)='./file0\x00', r6, &(0x7f0000000040)='./file0\x00')
linkat(r6, &(0x7f00000000c0)='./file0\x00', r6, &(0x7f0000000100)='./file1\x00', 0x1000)
sendmmsg$unix(r4, &(0x7f0000000b80)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000004c0)="3e0240b41614ccf257a9b7a51c65227106085b695c6fd0d92fa62c995c043ca8fb7b6c0613c75ef358ea4d2ac43066a8f0349f9a12cc4fe37f6ae6e039b9cfe27af64aa72d8f9dac120bf40a81592d614f2213b9aa565d11060bea8a228ca6145689278d3b09e6add635d461432f790b0458eccb0c3c8763341ee27fe14984c6248e485fa94b2c9670343d6406f80546a6e5ef3815f827b0a45ad665d942ed79ed96b5d0f8bd7edfaa302f7d12c46534", 0xb0}, {&(0x7f0000000580)="b825baddd48ab2bc2ed258d07f37ff0bd4baf5a1c573ed69c9b5209d7cea6f40512eb3903669f6a0eb0cd3787e0a51631bb6b9ca017d5e5b06d16d8331662dfd82b3bf9da1e4c5dabdd04701b1039a050bea53e807b3e176b364450df7ee7d71ff6ef8d88d3abc1a5ca1c1787e735e30dc4dac58b79ef47bacc4befaf1ae63e16b01513bb69b7694e059a50d0864a8cc9a0170f59c1cc0688896baf852c44c16cf1713d001c442adce0a9d5d3a23f533d0c0735628d3", 0xb6}], 0x2, &(0x7f0000000640)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee00, 0xffffffffffffffff}}}, @rights={{0x14, 0x1, 0x1, [r4]}}], 0x50, 0x40014}}, {{&(0x7f00000006c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000ac0)=[{&(0x7f0000000740)="a63833afd9e60d14e4420e7e3aff83cc49289a96d9e71bb239e2a387aa6efa05ef25d903f637ab47428d58e28f81cc2969896731535196804b99dfa6fedb8e74d6b669465f55a5ed7f57054307ed433990625162b65c923a5d705befd31e18610be42f9174d8a19629bac7cc39a12b87fed65f596afb77df", 0x78}, {&(0x7f00000007c0)="f300db66cf678774d666d1bfa312656b68ceef4440446b365404012ce4e30627aa7be7ca342c0e64437f5f8f40904c86ceff2b08d4ae03debf672d4bad74f9b209", 0x41}, {&(0x7f0000000840)="c0d880759fcd56fcf1d8533b8af3cfd1a82b7255bbae02a208c2507087cb78d46669e2a6bb255caace4fa4f2dcef7477589b345b92220a4da90b5884c9ebee87b04978ab61f62737c3d29f7cd35df2c0cafd6d5cc1f8399058407bb243bc9f067cd290ce808611fd13d9e986fe5e10483cf268126fb8c62f69c5223889110c93918f9e6c0be70c77515d202392622dade64555", 0x93}, {&(0x7f0000000900)="330f9b8f44cbf2add0a263d60c4cc0a2078b46cb93da528fbf2aebda89ef81f4908e5a602a3725284072980b2f3c8c56ecae367db8a806cebeacadd1188a0edc71bc128b1a194ddf81548a4e3b59b3c60370", 0x52}, {&(0x7f0000000980)="40e4c5d7898cadab81c2745bac3b9848ea7a4aacefc6ce9fb141a1d22f9ce82b95299d690f39cee1e51d6c67586ce77570fcf27b658ca07d37a1d17d19b6d8c314b235998371c3a3069ceef61d1d2578778489c0e6d23ade3082c9082153032a9410987b5f5e34b4a5674b1cb1a87ff2ac", 0x71}, {&(0x7f0000000a00)="4e50a5c2d0b737715d34b6bc512096c9db87d36ba2717ffe039000aaee71532a046942fb648f8159ebdb185938c4cd92db003797a8c8366f56b299129b9770e3a5541e7805c74f5f48f4dd", 0x4b}, {&(0x7f0000000a80)="f2309dec8c71", 0x6}], 0x7, &(0x7f0000000b40)=[@rights={{0x20, 0x1, 0x1, [r5, r4, r1, r4]}}, @rights={{0x20, 0x1, 0x1, [r6, r2, r2, r1]}}], 0x40, 0xa81e5cf2949a0943}}], 0x2, 0x80)
ioctl$CDROM_SEND_PACKET(r1, 0x5393, &(0x7f00000001c0)={"041b3cc3c65e5c2d71b15af7", &(0x7f00000000c0)="9e45e969b686a9210ad997cc3e742284fbc9dfa1622fb5c6148ca4742872db25a6132bd562e41103a04d994c8f1d5f7a08141ae8e51d09576ea4e7021b964771524709722c3726910cb94012e13db88dfecc69bf71a714b3081f198ac3242c0bc076c6a9b0b0d9a3de2115a4f2148bfb7767864a7a236ab3935af3b2d79ac655263a3116b536ade60d", 0x89, 0x8, &(0x7f0000000040)={0x5, 0x1, 0x2, 0x4, 0x0, 0x1, 0x0, "4b412cb6", 0x81, '|MW0', 0xe6, 0xfd, 0x1f, "526911", "7c66d73ba526b6287a0ececcb8a1aebb00c5b8941897bbc8ce7349e0fdaa9980b5206e27eb51dae163894cc9ce32"}, 0x2, 0xcd7, 0x4, &(0x7f0000000180)})
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r7, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
ioctl$CDROM_GET_CAPABILITY(r7, 0x5331)

05:26:39 executing program 7:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

05:26:39 executing program 2:
ioctl$DVD_AUTH(0xffffffffffffffff, 0x80041284, 0x0)
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0}, './file0\x00'})
ioctl$CDROMEJECT(r1, 0x5309)
r2 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r2, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
ioctl$CDROM_LOCKDOOR(r2, 0x5329, 0x1)
r3 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80))
symlinkat(&(0x7f0000000000)='./file0\x00', r3, &(0x7f0000000040)='./file0\x00')
linkat(r3, &(0x7f00000000c0)='./file0\x00', r3, &(0x7f0000000100)='./file1\x00', 0x1000)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r4=>r0, {0x0, 0x80000001}}, './file1\x00'})
unlinkat(r4, &(0x7f0000000180)='./file1\x00', 0x200)
ioctl$FS_IOC_SETFLAGS(r3, 0x40086602, &(0x7f00000000c0)=0x200000)

05:26:39 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x300, 0x0, 0x0, 0x0)

05:26:39 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 11)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

[ 2232.301473] FAULT_INJECTION: forcing a failure.
[ 2232.301473] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2232.304180] CPU: 0 PID: 13364 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2232.305988] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2232.308435] Call Trace:
[ 2232.308986]  <TASK>
[ 2232.309469]  dump_stack_lvl+0x8b/0xb3
[ 2232.310313]  should_fail.cold+0x5/0xa
[ 2232.311150]  prepare_alloc_pages+0x17b/0x500
[ 2232.312134]  __alloc_pages+0x131/0x4e0
[ 2232.312969]  ? lock_downgrade+0x6d0/0x6d0
[ 2232.313880]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2232.315186]  ? xa_load+0x158/0x290
[ 2232.315952]  ? xas_find_conflict+0x9e0/0x9e0
[ 2232.316908]  alloc_pages+0x1a0/0x2f0
[ 2232.317721]  filemap_alloc_folio+0x8e/0xb0
[ 2232.318676]  page_cache_ra_unbounded+0x1af/0x540
[ 2232.319716]  ondemand_readahead+0x642/0x1270
[ 2232.320654]  page_cache_sync_ra+0x1c5/0x200
[ 2232.321577]  filemap_get_pages+0x29e/0x1680
[ 2232.322517]  ? lock_downgrade+0x6d0/0x6d0
[ 2232.323421]  ? unwind_next_frame+0xdfe/0x20a0
[ 2232.324373]  ? filemap_add_folio+0x1b0/0x1b0
[ 2232.325327]  ? lock_is_held_type+0xd7/0x130
[ 2232.326262]  filemap_read+0x311/0xba0
[ 2232.327108]  ? filemap_get_pages+0x1680/0x1680
[ 2232.328088]  ? filter_irq_stacks+0x90/0x90
[ 2232.328980]  ? __stack_depot_save+0x35/0x450
[ 2232.329940]  ? kasan_save_stack+0x2e/0x40
[ 2232.330812]  ? kasan_save_stack+0x1e/0x40
[ 2232.331671]  ? __kasan_kmalloc+0x81/0xa0
[ 2232.332517]  ? alloc_pipe_info+0x1e0/0x580
[ 2232.333412]  ? splice_direct_to_actor+0x700/0x8e0
[ 2232.334433]  ? do_splice_direct+0x1b8/0x280
[ 2232.335358]  ? do_sendfile+0xad7/0x1230
[ 2232.336197]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2232.337177]  ? do_syscall_64+0x3b/0x90
[ 2232.338036]  generic_file_read_iter+0x3c9/0x530
[ 2232.339032]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2232.340205]  ? __fsnotify_parent+0x498/0xa60
[ 2232.341130]  ext4_file_read_iter+0x184/0x3f0
[ 2232.342075]  generic_file_splice_read+0x3b9/0x5d0
[ 2232.343120]  ? pipe_to_user+0x170/0x170
[ 2232.343991]  ? security_file_permission+0xb1/0xd0
[ 2232.345017]  ? pipe_to_user+0x170/0x170
[ 2232.345841]  do_splice_to+0x1bc/0x240
[ 2232.346672]  ? inode_has_perm+0x1d0/0x1d0
[ 2232.347536]  splice_direct_to_actor+0x2c7/0x8e0
[ 2232.348511]  ? pipe_to_sendpage+0x380/0x380
[ 2232.349417]  ? do_splice_to+0x240/0x240
[ 2232.350257]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2232.351399]  ? security_file_permission+0xb1/0xd0
[ 2232.352414]  do_splice_direct+0x1b8/0x280
[ 2232.353279]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2232.354299]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2232.355453]  ? security_file_permission+0xb1/0xd0
[ 2232.356463]  do_sendfile+0xad7/0x1230
[ 2232.357281]  ? bit_wait_io_timeout+0x160/0x160
[ 2232.358254]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2232.359352]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2232.360521]  ? vfs_write+0x422/0xac0
[ 2232.361315]  __x64_sys_sendfile64+0x1cd/0x210
[ 2232.362261]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2232.363359]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2232.364421]  do_syscall_64+0x3b/0x90
[ 2232.365204]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2232.366279] RIP: 0033:0x7f1455db8b19
[ 2232.367040] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2232.370852] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2232.372415] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2232.373909] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2232.375382] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2232.376864] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2232.378342] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2232.379838]  </TASK>
[ 2232.395922] FAULT_INJECTION: forcing a failure.
[ 2232.395922] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2232.398722] CPU: 0 PID: 13359 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2232.398752] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2232.398769] Call Trace:
[ 2232.398777]  <TASK>
[ 2232.398787]  dump_stack_lvl+0x8b/0xb3
[ 2232.404100]  should_fail.cold+0x5/0xa
[ 2232.404886]  prepare_alloc_pages+0x17b/0x500
[ 2232.405798]  __alloc_pages+0x131/0x4e0
[ 2232.406603]  ? lock_downgrade+0x6d0/0x6d0
[ 2232.407442]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2232.408662]  ? xa_load+0x158/0x290
[ 2232.409375]  ? xas_find_conflict+0x9e0/0x9e0
[ 2232.410271]  alloc_pages+0x1a0/0x2f0
[ 2232.411029]  filemap_alloc_folio+0x8e/0xb0
[ 2232.411889]  page_cache_ra_unbounded+0x1af/0x540
[ 2232.412865]  ondemand_readahead+0x642/0x1270
[ 2232.413769]  page_cache_sync_ra+0x1c5/0x200
[ 2232.414639]  filemap_get_pages+0x29e/0x1680
[ 2232.415536]  ? lock_downgrade+0x6d0/0x6d0
[ 2232.416367]  ? unwind_next_frame+0xdfe/0x20a0
[ 2232.417259]  ? filemap_add_folio+0x1b0/0x1b0
[ 2232.418163]  ? lock_is_held_type+0xd7/0x130
[ 2232.419028]  filemap_read+0x311/0xba0
05:26:39 executing program 3:
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)
r0 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80))
symlinkat(&(0x7f0000000000)='./file0\x00', r0, &(0x7f0000000040)='./file0\x00')
linkat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000000100)='./file1\x00', 0x1000)
ioctl$EXT4_IOC_GETSTATE(r0, 0x40046629, &(0x7f0000000000))

[ 2232.419815]  ? filemap_get_pages+0x1680/0x1680
[ 2232.420957]  ? filter_irq_stacks+0x90/0x90
[ 2232.421798]  ? __stack_depot_save+0x35/0x450
[ 2232.422704]  ? kasan_save_stack+0x2e/0x40
[ 2232.423515]  ? kasan_save_stack+0x1e/0x40
[ 2232.424331]  ? __kasan_kmalloc+0x81/0xa0
[ 2232.425128]  ? alloc_pipe_info+0x1e0/0x580
[ 2232.425982]  ? splice_direct_to_actor+0x700/0x8e0
[ 2232.426942]  ? do_splice_direct+0x1b8/0x280
[ 2232.427800]  ? do_sendfile+0xad7/0x1230
[ 2232.428582]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2232.429497]  ? do_syscall_64+0x3b/0x90
[ 2232.430393]  generic_file_read_iter+0x3c9/0x530
[ 2232.431490]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2232.432783]  ? __fsnotify_parent+0x498/0xa60
[ 2232.433816]  ext4_file_read_iter+0x184/0x3f0
[ 2232.434861]  generic_file_splice_read+0x3b9/0x5d0
[ 2232.436005]  ? pipe_to_user+0x170/0x170
[ 2232.436968]  ? security_file_permission+0xb1/0xd0
[ 2232.438126]  ? pipe_to_user+0x170/0x170
[ 2232.439070]  do_splice_to+0x1bc/0x240
[ 2232.439966]  ? inode_has_perm+0x1d0/0x1d0
[ 2232.440936]  splice_direct_to_actor+0x2c7/0x8e0
[ 2232.442050]  ? pipe_to_sendpage+0x380/0x380
[ 2232.443080]  ? do_splice_to+0x240/0x240
[ 2232.444017]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2232.445310]  ? security_file_permission+0xb1/0xd0
[ 2232.446464]  do_splice_direct+0x1b8/0x280
[ 2232.447433]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2232.448584]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2232.449869]  ? security_file_permission+0xb1/0xd0
[ 2232.451015]  do_sendfile+0xad7/0x1230
[ 2232.451907]  ? bit_wait_io_timeout+0x160/0x160
[ 2232.452968]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2232.454184]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2232.455463]  ? vfs_write+0x422/0xac0
[ 2232.456331]  __x64_sys_sendfile64+0x1cd/0x210
[ 2232.457367]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2232.458614]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2232.459811]  do_syscall_64+0x3b/0x90
[ 2232.460685]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2232.461879] RIP: 0033:0x7fdbfaa6cb19
[ 2232.462724] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2232.466879] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2232.468593] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2232.470217] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2232.471825] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2232.473431] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2232.475045] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2232.476681]  </TASK>
05:26:40 executing program 2:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x8, 0x0, 0x0, 0x0)

05:26:40 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0xf000, 0x0, 0x0, 0x0)

05:26:40 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 12)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:26:40 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0xf}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

[ 2232.624080] FAULT_INJECTION: forcing a failure.
[ 2232.624080] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2232.625834] CPU: 1 PID: 13530 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2232.626951] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2232.628475] Call Trace:
[ 2232.628811]  <TASK>
[ 2232.629123]  dump_stack_lvl+0x8b/0xb3
[ 2232.629652]  should_fail.cold+0x5/0xa
[ 2232.630174]  prepare_alloc_pages+0x17b/0x500
[ 2232.630792]  __alloc_pages+0x131/0x4e0
[ 2232.631315]  ? lock_downgrade+0x6d0/0x6d0
[ 2232.631879]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2232.632678]  ? xa_load+0x158/0x290
[ 2232.633158]  ? xas_find_conflict+0x9e0/0x9e0
[ 2232.633751]  alloc_pages+0x1a0/0x2f0
[ 2232.634295]  filemap_alloc_folio+0x8e/0xb0
[ 2232.634897]  page_cache_ra_unbounded+0x1af/0x540
[ 2232.635580]  ondemand_readahead+0x642/0x1270
[ 2232.636213]  page_cache_sync_ra+0x1c5/0x200
[ 2232.636822]  filemap_get_pages+0x29e/0x1680
[ 2232.637434]  ? lock_downgrade+0x6d0/0x6d0
[ 2232.638029]  ? unwind_next_frame+0xdfe/0x20a0
[ 2232.638658]  ? filemap_add_folio+0x1b0/0x1b0
[ 2232.639285]  ? lock_is_held_type+0xd7/0x130
[ 2232.639858]  filemap_read+0x311/0xba0
[ 2232.640412]  ? filemap_get_pages+0x1680/0x1680
[ 2232.641053]  ? filter_irq_stacks+0x90/0x90
[ 2232.641647]  ? __stack_depot_save+0x35/0x450
[ 2232.642282]  ? kasan_save_stack+0x2e/0x40
[ 2232.642856]  ? kasan_save_stack+0x1e/0x40
[ 2232.643428]  ? __kasan_kmalloc+0x81/0xa0
[ 2232.643985]  ? alloc_pipe_info+0x1e0/0x580
[ 2232.644577]  ? splice_direct_to_actor+0x700/0x8e0
[ 2232.645250]  ? do_splice_direct+0x1b8/0x280
[ 2232.645851]  ? do_sendfile+0xad7/0x1230
[ 2232.646427]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2232.647070]  ? do_syscall_64+0x3b/0x90
[ 2232.647622]  generic_file_read_iter+0x3c9/0x530
[ 2232.648274]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2232.649042]  ? __fsnotify_parent+0x498/0xa60
05:26:40 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 13)

[ 2232.649799]  ext4_file_read_iter+0x184/0x3f0
[ 2232.650436]  generic_file_splice_read+0x3b9/0x5d0
[ 2232.651115]  ? pipe_to_user+0x170/0x170
05:26:40 executing program 5:
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x102, 0x6)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)

[ 2232.651685]  ? security_file_permission+0xb1/0xd0
[ 2232.652467]  ? pipe_to_user+0x170/0x170
[ 2232.653036]  do_splice_to+0x1bc/0x240
[ 2232.653571]  ? inode_has_perm+0x1d0/0x1d0
[ 2232.654171]  splice_direct_to_actor+0x2c7/0x8e0
[ 2232.654828]  ? pipe_to_sendpage+0x380/0x380
[ 2232.655443]  ? do_splice_to+0x240/0x240
[ 2232.656007]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2232.656775]  ? security_file_permission+0xb1/0xd0
[ 2232.657453]  do_splice_direct+0x1b8/0x280
[ 2232.658054]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2232.658736]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2232.659506]  ? security_file_permission+0xb1/0xd0
[ 2232.660190]  do_sendfile+0xad7/0x1230
[ 2232.660730]  ? bit_wait_io_timeout+0x160/0x160
[ 2232.661371]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2232.662114]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2232.662883]  ? vfs_write+0x422/0xac0
[ 2232.663400]  __x64_sys_sendfile64+0x1cd/0x210
[ 2232.664027]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2232.664773]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2232.665503]  do_syscall_64+0x3b/0x90
[ 2232.666049]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2232.666760] RIP: 0033:0x7f1455db8b19
[ 2232.667272] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2232.669794] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2232.670872] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2232.671869] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2232.672843] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2232.673819] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2232.674813] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2232.675813]  </TASK>
05:26:40 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0xfffff000, 0x0, 0x0, 0x0)

05:26:40 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2) (fail_nth: 1)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x2, 0x0)

05:26:40 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x10}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

[ 2232.778743] FAULT_INJECTION: forcing a failure.
[ 2232.778743] name failslab, interval 1, probability 0, space 0, times 0
[ 2232.780388] CPU: 1 PID: 13593 Comm: syz-executor.2 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2232.781530] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2232.783070] Call Trace:
05:26:40 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0xfffffffffffff000, 0x0, 0x0, 0x0)

[ 2232.783425]  <TASK>
[ 2232.783843]  dump_stack_lvl+0x8b/0xb3
[ 2232.784378]  should_fail.cold+0x5/0xa
[ 2232.784848]  ? kobject_uevent_env+0x236/0xfa0
[ 2232.785404]  should_failslab+0x5/0x10
[ 2232.785869]  kmem_cache_alloc_trace+0x55/0x3c0
[ 2232.786445]  kobject_uevent_env+0x236/0xfa0
[ 2232.786967]  ? dev_uevent_filter+0xd0/0xd0
[ 2232.787484]  ? is_acpi_device_node+0x6a/0x80
[ 2232.788013]  device_del+0x9dd/0xfc0
[ 2232.788444]  ? clone_private_mount+0x370/0x370
[ 2232.789059]  ? uevent_show+0x370/0x370
[ 2232.789592]  device_unregister+0x11/0x30
[ 2232.790087]  bdi_unregister+0x3ea/0x5b0
[ 2232.790561]  ? bdi_debug_stats_show+0x6e0/0x6e0
[ 2232.791111]  ? up_write+0x148/0x460
[ 2232.791558]  del_gendisk+0x68c/0x800
[ 2232.792015]  loop_remove+0x3a/0x140
[ 2232.792457]  loop_control_ioctl+0x42b/0x540
[ 2232.792973]  ? loop_probe+0x50/0x50
[ 2232.793413]  ? selinux_file_ioctl+0xb1/0x260
[ 2232.793961]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2232.794629]  ? loop_probe+0x50/0x50
[ 2232.795137]  __x64_sys_ioctl+0x196/0x210
[ 2232.795703]  do_syscall_64+0x3b/0x90
[ 2232.796221]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2232.796938] RIP: 0033:0x7fbc18cb2b19
[ 2232.797443] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2232.799991] RSP: 002b:00007fbc16228188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2232.801052] RAX: ffffffffffffffda RBX: 00007fbc18dc5f60 RCX: 00007fbc18cb2b19
[ 2232.802042] RDX: 0000000000000000 RSI: 0000000000004c81 RDI: 0000000000000004
[ 2232.802961] RBP: 00007fbc162281d0 R08: 0000000000000000 R09: 0000000000000000
[ 2232.803903] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2232.804900] R13: 00007fffa38ad6bf R14: 00007fbc16228300 R15: 0000000000022000
[ 2232.805907]  </TASK>
[ 2232.834814] FAULT_INJECTION: forcing a failure.
[ 2232.834814] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2232.837398] CPU: 0 PID: 13596 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2232.839105] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2232.841385] Call Trace:
[ 2232.841912]  <TASK>
[ 2232.842365]  dump_stack_lvl+0x8b/0xb3
[ 2232.843156]  should_fail.cold+0x5/0xa
[ 2232.843944]  prepare_alloc_pages+0x17b/0x500
[ 2232.844857]  __alloc_pages+0x131/0x4e0
[ 2232.845641]  ? lock_downgrade+0x6d0/0x6d0
[ 2232.846505]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2232.847737]  ? xa_load+0x158/0x290
[ 2232.848459]  ? xas_find_conflict+0x9e0/0x9e0
[ 2232.849355]  alloc_pages+0x1a0/0x2f0
[ 2232.850128]  filemap_alloc_folio+0x8e/0xb0
[ 2232.850994]  page_cache_ra_unbounded+0x1af/0x540
[ 2232.851977]  ondemand_readahead+0x642/0x1270
[ 2232.852886]  page_cache_sync_ra+0x1c5/0x200
[ 2232.853767]  filemap_get_pages+0x29e/0x1680
[ 2232.854671]  ? lock_downgrade+0x6d0/0x6d0
[ 2232.855513]  ? unwind_next_frame+0xdfe/0x20a0
[ 2232.856414]  ? filemap_add_folio+0x1b0/0x1b0
[ 2232.857312]  ? lock_is_held_type+0xd7/0x130
[ 2232.858198]  filemap_read+0x311/0xba0
[ 2232.858997]  ? filemap_get_pages+0x1680/0x1680
[ 2232.859920]  ? filter_irq_stacks+0x90/0x90
[ 2232.860771]  ? __stack_depot_save+0x35/0x450
[ 2232.861668]  ? kasan_save_stack+0x2e/0x40
[ 2232.862502]  ? kasan_save_stack+0x1e/0x40
[ 2232.863327]  ? __kasan_kmalloc+0x81/0xa0
[ 2232.864135]  ? alloc_pipe_info+0x1e0/0x580
[ 2232.864982]  ? splice_direct_to_actor+0x700/0x8e0
[ 2232.865971]  ? do_splice_direct+0x1b8/0x280
[ 2232.866836]  ? do_sendfile+0xad7/0x1230
[ 2232.867626]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2232.868548]  ? do_syscall_64+0x3b/0x90
[ 2232.869341]  generic_file_read_iter+0x3c9/0x530
[ 2232.870285]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2232.871390]  ? __fsnotify_parent+0x498/0xa60
[ 2232.872268]  ext4_file_read_iter+0x184/0x3f0
[ 2232.873154]  generic_file_splice_read+0x3b9/0x5d0
[ 2232.874145]  ? pipe_to_user+0x170/0x170
[ 2232.875022]  ? security_file_permission+0xb1/0xd0
[ 2232.876094]  ? pipe_to_user+0x170/0x170
[ 2232.876988]  do_splice_to+0x1bc/0x240
[ 2232.877834]  ? inode_has_perm+0x1d0/0x1d0
[ 2232.878762]  splice_direct_to_actor+0x2c7/0x8e0
[ 2232.879805]  ? pipe_to_sendpage+0x380/0x380
[ 2232.880778]  ? do_splice_to+0x240/0x240
[ 2232.881663]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2232.882869]  ? security_file_permission+0xb1/0xd0
[ 2232.883841]  do_splice_direct+0x1b8/0x280
[ 2232.884672]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2232.885646]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2232.886756]  ? security_file_permission+0xb1/0xd0
[ 2232.887726]  do_sendfile+0xad7/0x1230
[ 2232.888492]  ? bit_wait_io_timeout+0x160/0x160
[ 2232.889403]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2232.890441]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2232.891650]  ? vfs_write+0x422/0xac0
[ 2232.892481]  __x64_sys_sendfile64+0x1cd/0x210
[ 2232.893469]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2232.894668]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2232.895818]  do_syscall_64+0x3b/0x90
[ 2232.896650]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2232.897782] RIP: 0033:0x7fdbfaa6cb19
[ 2232.898603] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2232.902681] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2232.904175] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2232.905582] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2232.906988] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2232.908387] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2232.909952] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2232.911557]  </TASK>
[ 2232.928744] debugfs: Directory 'loop0' with parent 'block' already present!
05:26:55 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 14)

05:26:55 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x11}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:26:55 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>r0, {0x4}}, './file0\x00'})
ioctl$CDROMREADAUDIO(r1, 0x530e, &(0x7f00000000c0)={@msf={0x1, 0x40, 0x40}, 0x3, 0x4, &(0x7f0000000080)=""/4})

05:26:55 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 1)

05:26:55 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x0)

05:26:55 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 13)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:26:55 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2) (fail_nth: 2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x2, 0x0)

05:26:55 executing program 3:
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
socket$inet6(0xa, 0x1, 0x0)
r2 = socket$nl_audit(0x10, 0x3, 0x9)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'sit0\x00', <r3=>0x0})
r4 = pidfd_getfd(0xffffffffffffffff, r2, 0x0)
setsockopt$inet6_IPV6_PKTINFO(r4, 0x29, 0x1b, &(0x7f0000000000)={@dev={0xfe, 0x80, '\x00', 0x18}, r3}, 0x14)
setsockopt$inet6_IPV6_PKTINFO(r1, 0x29, 0x1b, &(0x7f0000000000)={@remote, r3}, 0x14)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000001c0)={{{@in=@loopback, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in6=@initdev}, 0x0, @in6=@initdev}}, &(0x7f0000000040)=0xe8)
setsockopt$inet6_IPV6_PKTINFO(0xffffffffffffffff, 0x29, 0x32, &(0x7f00000002c0)={@empty, r5}, 0x14)
socket$inet6_udplite(0xa, 0x2, 0x88)
r6 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r6, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDPRL(r1, 0x89f5, &(0x7f0000000180)={'sit0\x00', &(0x7f0000000100)={'sit0\x00', <r7=>r3, 0x4, 0x1, 0x0, 0x1000, 0x2, @empty, @empty, 0x80, 0x7, 0x8000, 0x4}})
ioctl$sock_inet6_SIOCSIFADDR(r6, 0x8916, &(0x7f0000000000)={@mcast2, 0x29, r7})

[ 2247.580664] FAULT_INJECTION: forcing a failure.
[ 2247.580664] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2247.582164] CPU: 0 PID: 13611 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2247.583102] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2247.584287] Call Trace:
[ 2247.584566]  <TASK>
[ 2247.584797]  dump_stack_lvl+0x8b/0xb3
[ 2247.585216]  should_fail.cold+0x5/0xa
[ 2247.585637]  prepare_alloc_pages+0x17b/0x500
[ 2247.586137]  __alloc_pages+0x131/0x4e0
[ 2247.586551]  ? lock_downgrade+0x6d0/0x6d0
[ 2247.587004]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2247.587657]  ? xa_load+0x158/0x290
[ 2247.588028]  ? xas_find_conflict+0x9e0/0x9e0
[ 2247.588500]  alloc_pages+0x1a0/0x2f0
[ 2247.588897]  filemap_alloc_folio+0x8e/0xb0
[ 2247.589361]  page_cache_ra_unbounded+0x1af/0x540
[ 2247.589880]  ondemand_readahead+0x642/0x1270
[ 2247.590374]  page_cache_sync_ra+0x1c5/0x200
[ 2247.590831]  filemap_get_pages+0x29e/0x1680
[ 2247.591291]  ? lock_downgrade+0x6d0/0x6d0
[ 2247.591740]  ? unwind_next_frame+0xdfe/0x20a0
[ 2247.592223]  ? filemap_add_folio+0x1b0/0x1b0
[ 2247.592710]  ? lock_is_held_type+0xd7/0x130
[ 2247.593188]  filemap_read+0x311/0xba0
[ 2247.593607]  ? filemap_get_pages+0x1680/0x1680
[ 2247.594114]  ? filter_irq_stacks+0x90/0x90
[ 2247.594583]  ? __stack_depot_save+0x35/0x450
[ 2247.595062]  ? kasan_save_stack+0x2e/0x40
[ 2247.595509]  ? kasan_save_stack+0x1e/0x40
[ 2247.595946]  ? __kasan_kmalloc+0x81/0xa0
[ 2247.596369]  ? alloc_pipe_info+0x1e0/0x580
[ 2247.596820]  ? splice_direct_to_actor+0x700/0x8e0
[ 2247.597331]  ? do_splice_direct+0x1b8/0x280
[ 2247.597800]  ? do_sendfile+0xad7/0x1230
[ 2247.598229]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2247.598726]  ? do_syscall_64+0x3b/0x90
[ 2247.599155]  generic_file_read_iter+0x3c9/0x530
[ 2247.599664]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2247.600256]  ? __fsnotify_parent+0x498/0xa60
[ 2247.600727]  ext4_file_read_iter+0x184/0x3f0
[ 2247.601206]  generic_file_splice_read+0x3b9/0x5d0
[ 2247.601721]  ? pipe_to_user+0x170/0x170
[ 2247.602165]  ? security_file_permission+0xb1/0xd0
[ 2247.602686]  ? pipe_to_user+0x170/0x170
[ 2247.603128]  do_splice_to+0x1bc/0x240
[ 2247.603552]  ? inode_has_perm+0x1d0/0x1d0
[ 2247.604010]  splice_direct_to_actor+0x2c7/0x8e0
[ 2247.604525]  ? pipe_to_sendpage+0x380/0x380
[ 2247.605005]  ? do_splice_to+0x240/0x240
[ 2247.605439]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2247.605751] FAULT_INJECTION: forcing a failure.
[ 2247.605751] name failslab, interval 1, probability 0, space 0, times 0
[ 2247.606022]  ? security_file_permission+0xb1/0xd0
[ 2247.609203]  do_splice_direct+0x1b8/0x280
[ 2247.609662]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2247.610191]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2247.610792]  ? security_file_permission+0xb1/0xd0
[ 2247.611319]  do_sendfile+0xad7/0x1230
[ 2247.611744]  ? bit_wait_io_timeout+0x160/0x160
[ 2247.612248]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2247.612796]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2247.613398]  ? vfs_write+0x422/0xac0
[ 2247.613799]  __x64_sys_sendfile64+0x1cd/0x210
[ 2247.614281]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2247.614858]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2247.615415]  do_syscall_64+0x3b/0x90
[ 2247.615819]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2247.616375] RIP: 0033:0x7f1455db8b19
[ 2247.616769] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2247.618722] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2247.619516] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2247.620295] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2247.621075] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2247.621863] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2247.622672] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2247.623466]  </TASK>
[ 2247.623726] CPU: 1 PID: 13615 Comm: syz-executor.7 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2247.625479] FAULT_INJECTION: forcing a failure.
[ 2247.625479] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2247.625623] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2247.625647] Call Trace:
[ 2247.630259]  <TASK>
[ 2247.630761]  dump_stack_lvl+0x8b/0xb3
[ 2247.631623]  should_fail.cold+0x5/0xa
[ 2247.632474]  ? alloc_pipe_info+0x105/0x580
[ 2247.633411]  should_failslab+0x5/0x10
[ 2247.634290]  kmem_cache_alloc_trace+0x55/0x3c0
[ 2247.635325]  alloc_pipe_info+0x105/0x580
[ 2247.636225]  ? inode_has_perm+0x1d0/0x1d0
[ 2247.637147]  splice_direct_to_actor+0x700/0x8e0
[ 2247.638214]  ? pipe_to_sendpage+0x380/0x380
[ 2247.639182]  ? selinux_file_permission+0x36/0x510
[ 2247.640260]  ? do_splice_to+0x240/0x240
[ 2247.641153]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2247.642394]  ? security_file_permission+0xb1/0xd0
[ 2247.643475]  do_splice_direct+0x1b8/0x280
[ 2247.644402]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2247.645495]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2247.646735]  ? security_file_permission+0xb1/0xd0
[ 2247.647813]  do_sendfile+0xad7/0x1230
[ 2247.648667]  ? bit_wait_io_timeout+0x160/0x160
[ 2247.649682]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2247.650832]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2247.652048]  ? vfs_write+0x422/0xac0
[ 2247.652879]  __x64_sys_sendfile64+0x1cd/0x210
[ 2247.653866]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2247.655063]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2247.656216]  do_syscall_64+0x3b/0x90
[ 2247.657050]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2247.658185] RIP: 0033:0x7f78f45e7b19
[ 2247.659003] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2247.663006] RSP: 002b:00007f78f1b5d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2247.664672] RAX: ffffffffffffffda RBX: 00007f78f46faf60 RCX: 00007f78f45e7b19
[ 2247.666242] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2247.667800] RBP: 00007f78f1b5d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2247.669361] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[ 2247.670929] R13: 00007ffee552a8df R14: 00007f78f1b5d300 R15: 0000000000022000
[ 2247.672524]  </TASK>
[ 2247.673036] CPU: 0 PID: 13624 Comm: syz-executor.2 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2247.673967] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2247.675191] Call Trace:
[ 2247.675473]  <TASK>
[ 2247.675713]  dump_stack_lvl+0x8b/0xb3
[ 2247.676141]  should_fail.cold+0x5/0xa
[ 2247.676580]  _copy_from_user+0x2a/0x170
[ 2247.677028]  kstrtouint_from_user+0xac/0x160
[ 2247.677508]  ? kstrtouint+0x120/0x120
[ 2247.677928]  ? lock_acquire+0x1b2/0x530
[ 2247.678393]  proc_fail_nth_write+0x78/0x220
[ 2247.678872]  ? proc_task_getattr+0x1f0/0x1f0
[ 2247.679357]  ? lock_is_held_type+0xd7/0x130
[ 2247.679829]  ? proc_task_getattr+0x1f0/0x1f0
[ 2247.680312]  vfs_write+0x264/0xac0
[ 2247.680713]  ksys_write+0x127/0x250
[ 2247.681113]  ? __ia32_sys_read+0xb0/0xb0
[ 2247.681557]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2247.682133]  do_syscall_64+0x3b/0x90
[ 2247.682549]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2247.683104] RIP: 0033:0x7fbc18c655ff
[ 2247.683506] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48
[ 2247.685502] RSP: 002b:00007fbc16207170 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 2247.686339] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fbc18c655ff
[ 2247.687114] RDX: 0000000000000001 RSI: 00007fbc162071e0 RDI: 0000000000000005
[ 2247.687877] RBP: 00007fbc162071d0 R08: 0000000000000000 R09: 0000000000000000
[ 2247.688651] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[ 2247.689440] R13: 00007fffa38ad6bf R14: 00007fbc16207300 R15: 0000000000022000
[ 2247.690246]  </TASK>
[ 2247.715043] FAULT_INJECTION: forcing a failure.
[ 2247.715043] name failslab, interval 1, probability 0, space 0, times 0
[ 2247.716220] CPU: 0 PID: 13617 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2247.717094] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2247.718353] Call Trace:
[ 2247.718638]  <TASK>
[ 2247.718886]  dump_stack_lvl+0x8b/0xb3
[ 2247.719318]  should_fail.cold+0x5/0xa
[ 2247.719731]  ? memcg_alloc_slab_cgroups+0x7a/0x120
[ 2247.720254]  ? create_object.isra.0+0x3a/0xa20
[ 2247.720746]  should_failslab+0x5/0x10
[ 2247.721153]  kmem_cache_alloc+0x5b/0x480
[ 2247.721596]  create_object.isra.0+0x3a/0xa20
[ 2247.722068]  ? kasan_unpoison+0x23/0x50
[ 2247.722527]  __kmalloc_node+0x26f/0x470
[ 2247.722957]  memcg_alloc_slab_cgroups+0x7a/0x120
[ 2247.723480]  memcg_slab_post_alloc_hook+0xb9/0x440
[ 2247.724031]  kmem_cache_alloc_lru+0x273/0x7c0
[ 2247.724539]  ? xas_alloc+0x35d/0x480
[ 2247.724959]  xas_alloc+0x35d/0x480
[ 2247.725353]  xas_create+0x35b/0x1030
[ 2247.725763]  ? lock_acquire+0x1b2/0x530
[ 2247.726225]  ? lock_is_held_type+0xd7/0x130
[ 2247.726701]  xas_store+0x90/0x1c40
[ 2247.727093]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[ 2247.727646]  ? xas_find_conflict+0x4a6/0x9e0
[ 2247.728134]  __filemap_add_folio+0x3c6/0xf60
[ 2247.728635]  ? filemap_map_pages+0x1350/0x1350
[ 2247.729142]  ? memcg_list_lru_alloc+0xb10/0xb10
[ 2247.729664]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2247.730294]  filemap_add_folio+0x9b/0x1b0
[ 2247.730760]  ? add_to_page_cache_locked+0x160/0x160
[ 2247.731320]  ? alloc_pages+0x1a8/0x2f0
[ 2247.731757]  page_cache_ra_unbounded+0x1d3/0x540
[ 2247.732293]  ondemand_readahead+0x642/0x1270
[ 2247.732784]  page_cache_sync_ra+0x1c5/0x200
[ 2247.733268]  filemap_get_pages+0x29e/0x1680
[ 2247.733755]  ? lock_downgrade+0x6d0/0x6d0
[ 2247.734237]  ? unwind_next_frame+0xdfe/0x20a0
[ 2247.734736]  ? filemap_add_folio+0x1b0/0x1b0
[ 2247.735223]  ? lock_is_held_type+0xd7/0x130
[ 2247.735704]  filemap_read+0x311/0xba0
[ 2247.736140]  ? filemap_get_pages+0x1680/0x1680
[ 2247.736647]  ? filter_irq_stacks+0x90/0x90
[ 2247.737111]  ? __stack_depot_save+0x35/0x450
[ 2247.737614]  ? kasan_save_stack+0x2e/0x40
[ 2247.738063]  ? kasan_save_stack+0x1e/0x40
[ 2247.738535]  ? __kasan_kmalloc+0x81/0xa0
[ 2247.738979]  ? alloc_pipe_info+0x1e0/0x580
[ 2247.739438]  ? splice_direct_to_actor+0x700/0x8e0
[ 2247.739971]  ? do_splice_direct+0x1b8/0x280
[ 2247.740450]  ? do_sendfile+0xad7/0x1230
[ 2247.740887]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2247.741403]  ? do_syscall_64+0x3b/0x90
[ 2247.741839]  generic_file_read_iter+0x3c9/0x530
[ 2247.742374]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2247.742979]  ? __fsnotify_parent+0x498/0xa60
[ 2247.743466]  ext4_file_read_iter+0x184/0x3f0
[ 2247.743955]  generic_file_splice_read+0x3b9/0x5d0
[ 2247.744502]  ? pipe_to_user+0x170/0x170
[ 2247.744950]  ? security_file_permission+0xb1/0xd0
[ 2247.745496]  ? pipe_to_user+0x170/0x170
[ 2247.745942]  do_splice_to+0x1bc/0x240
[ 2247.746360]  ? inode_has_perm+0x1d0/0x1d0
[ 2247.746818]  splice_direct_to_actor+0x2c7/0x8e0
[ 2247.747337]  ? pipe_to_sendpage+0x380/0x380
[ 2247.747832]  ? do_splice_to+0x240/0x240
[ 2247.748273]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2247.748889]  ? security_file_permission+0xb1/0xd0
[ 2247.749424]  do_splice_direct+0x1b8/0x280
[ 2247.749879]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2247.750429]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2247.751035]  ? security_file_permission+0xb1/0xd0
[ 2247.751572]  do_sendfile+0xad7/0x1230
[ 2247.751990]  ? bit_wait_io_timeout+0x160/0x160
[ 2247.752509]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2247.753072]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2247.753683]  ? vfs_write+0x422/0xac0
[ 2247.754104]  __x64_sys_sendfile64+0x1cd/0x210
[ 2247.754603]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2247.755189]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2247.755761]  do_syscall_64+0x3b/0x90
[ 2247.756174]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2247.756747] RIP: 0033:0x7fdbfaa6cb19
[ 2247.757153] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2247.759181] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2247.760016] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2247.760806] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2247.761593] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2247.762381] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2247.763150] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2247.763940]  </TASK>
05:27:09 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)
syz_io_uring_complete(0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r1, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
ioctl$DVD_AUTH(r1, 0x5390, &(0x7f0000000040)=@lsc={0x3, 0x1, "552033691178cf363569"})

05:27:09 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 14)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:27:09 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000000080)=<r2=>0x0)
capset(&(0x7f0000000340)={0x20080522, r2}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
ioctl$TCXONC(r1, 0x540a, 0x3)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000080)=<r4=>0x0)
capset(&(0x7f0000000340)={0x20080522, r4}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
clone3(&(0x7f00000003c0)={0x21000, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x24}, &(0x7f0000000280)=""/97, 0x61, &(0x7f0000000180)=""/143, &(0x7f0000000140)=[r0, r0, r2, r0, r0, r4], 0x6}, 0x58)

05:27:09 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 15)

05:27:09 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 2)

05:27:09 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x23}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:27:09 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x2, 0x0)

05:27:09 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x2, 0x0, 0x0)

[ 2261.848606] FAULT_INJECTION: forcing a failure.
[ 2261.848606] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2261.849942] CPU: 1 PID: 13735 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2261.850847] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2261.852035] Call Trace:
[ 2261.852307]  <TASK>
[ 2261.852553]  dump_stack_lvl+0x8b/0xb3
[ 2261.852972]  should_fail.cold+0x5/0xa
[ 2261.853394]  prepare_alloc_pages+0x17b/0x500
[ 2261.853890]  __alloc_pages+0x131/0x4e0
[ 2261.854316]  ? lock_downgrade+0x6d0/0x6d0
[ 2261.854764]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2261.855414]  ? xa_load+0x158/0x290
[ 2261.855798]  ? xas_find_conflict+0x9e0/0x9e0
[ 2261.856266]  alloc_pages+0x1a0/0x2f0
[ 2261.856667]  filemap_alloc_folio+0x8e/0xb0
[ 2261.857117]  page_cache_ra_unbounded+0x1af/0x540
[ 2261.857628]  ondemand_readahead+0x642/0x1270
[ 2261.858100]  page_cache_sync_ra+0x1c5/0x200
[ 2261.858572]  filemap_get_pages+0x29e/0x1680
[ 2261.859038]  ? lock_downgrade+0x6d0/0x6d0
[ 2261.859503]  ? unwind_next_frame+0xdfe/0x20a0
[ 2261.860005]  ? filemap_add_folio+0x1b0/0x1b0
[ 2261.860498]  ? lock_is_held_type+0xd7/0x130
[ 2261.860983]  filemap_read+0x311/0xba0
[ 2261.861419]  ? filemap_get_pages+0x1680/0x1680
[ 2261.861924]  ? filter_irq_stacks+0x90/0x90
[ 2261.862378]  ? __stack_depot_save+0x35/0x450
[ 2261.862868]  ? kasan_save_stack+0x2e/0x40
[ 2261.863299]  ? kasan_save_stack+0x1e/0x40
[ 2261.863751]  ? __kasan_kmalloc+0x81/0xa0
[ 2261.864172]  ? alloc_pipe_info+0x1e0/0x580
[ 2261.864638]  ? splice_direct_to_actor+0x700/0x8e0
[ 2261.865147]  ? do_splice_direct+0x1b8/0x280
[ 2261.865625]  ? do_sendfile+0xad7/0x1230
[ 2261.866045]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2261.866586]  ? do_syscall_64+0x3b/0x90
[ 2261.867029]  generic_file_read_iter+0x3c9/0x530
[ 2261.867545]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2261.868166]  ? __fsnotify_parent+0x498/0xa60
[ 2261.868656]  ext4_file_read_iter+0x184/0x3f0
[ 2261.869143]  generic_file_splice_read+0x3b9/0x5d0
[ 2261.869690]  ? pipe_to_user+0x170/0x170
[ 2261.870148]  ? security_file_permission+0xb1/0xd0
[ 2261.870696]  ? pipe_to_user+0x170/0x170
[ 2261.871139]  do_splice_to+0x1bc/0x240
[ 2261.871569]  ? inode_has_perm+0x1d0/0x1d0
[ 2261.872031]  splice_direct_to_actor+0x2c7/0x8e0
[ 2261.872549]  ? pipe_to_sendpage+0x380/0x380
[ 2261.873009]  ? do_splice_to+0x240/0x240
[ 2261.873459]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2261.874037]  ? security_file_permission+0xb1/0xd0
[ 2261.874585]  do_splice_direct+0x1b8/0x280
[ 2261.875044]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2261.875584]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2261.876193]  ? security_file_permission+0xb1/0xd0
[ 2261.876742]  do_sendfile+0xad7/0x1230
[ 2261.877151]  ? bit_wait_io_timeout+0x160/0x160
[ 2261.877651]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2261.878214]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2261.878847]  ? vfs_write+0x422/0xac0
[ 2261.879305]  __x64_sys_sendfile64+0x1cd/0x210
[ 2261.879882]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2261.880462]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2261.881028]  do_syscall_64+0x3b/0x90
[ 2261.881439]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2261.882009] RIP: 0033:0x7f1455db8b19
[ 2261.882426] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2261.884415] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2261.885351] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2261.886122] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2261.886913] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2261.887693] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2261.888473] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2261.889259]  </TASK>
05:27:09 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x281}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

[ 2261.937027] FAULT_INJECTION: forcing a failure.
[ 2261.937027] name failslab, interval 1, probability 0, space 0, times 0
[ 2261.939698] CPU: 0 PID: 13746 Comm: syz-executor.7 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2261.941468] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2261.943842] Call Trace:
[ 2261.944516]  <TASK>
[ 2261.944988]  dump_stack_lvl+0x8b/0xb3
[ 2261.945804]  should_fail.cold+0x5/0xa
[ 2261.946624]  ? create_object.isra.0+0x3a/0xa20
[ 2261.947597]  should_failslab+0x5/0x10
[ 2261.948411]  kmem_cache_alloc+0x5b/0x480
[ 2261.949285]  create_object.isra.0+0x3a/0xa20
[ 2261.950218]  ? kasan_unpoison+0x23/0x50
[ 2261.951073]  kmem_cache_alloc_trace+0x22e/0x3c0
[ 2261.952076]  alloc_pipe_info+0x105/0x580
[ 2261.952925]  ? inode_has_perm+0x1d0/0x1d0
[ 2261.953813]  splice_direct_to_actor+0x700/0x8e0
[ 2261.954822]  ? pipe_to_sendpage+0x380/0x380
[ 2261.955769]  ? selinux_file_permission+0x36/0x510
[ 2261.956793]  ? do_splice_to+0x240/0x240
[ 2261.957636]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2261.958812]  ? security_file_permission+0xb1/0xd0
[ 2261.959841]  do_splice_direct+0x1b8/0x280
[ 2261.960720]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2261.961755]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2261.962918]  ? security_file_permission+0xb1/0xd0
[ 2261.963953]  do_sendfile+0xad7/0x1230
[ 2261.964777]  ? bit_wait_io_timeout+0x160/0x160
[ 2261.965755]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2261.966871]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2261.968053]  ? vfs_write+0x422/0xac0
[ 2261.968852]  __x64_sys_sendfile64+0x1cd/0x210
[ 2261.969820]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2261.970962]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2261.972071]  do_syscall_64+0x3b/0x90
[ 2261.972884]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2261.973987] RIP: 0033:0x7f78f45e7b19
[ 2261.974775] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2261.978677] RSP: 002b:00007f78f1b5d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2261.980294] RAX: ffffffffffffffda RBX: 00007f78f46faf60 RCX: 00007f78f45e7b19
[ 2261.981794] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2261.983318] RBP: 00007f78f1b5d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2261.984841] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[ 2261.986364] R13: 00007ffee552a8df R14: 00007f78f1b5d300 R15: 0000000000022000
[ 2261.987902]  </TASK>
[ 2261.996026] FAULT_INJECTION: forcing a failure.
[ 2261.996026] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2261.998777] CPU: 0 PID: 13747 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2262.000549] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2262.002933] Call Trace:
[ 2262.003475]  <TASK>
[ 2262.003952]  dump_stack_lvl+0x8b/0xb3
[ 2262.004783]  should_fail.cold+0x5/0xa
[ 2262.005612]  prepare_alloc_pages+0x17b/0x500
[ 2262.006592]  __alloc_pages+0x131/0x4e0
[ 2262.007426]  ? lock_downgrade+0x6d0/0x6d0
[ 2262.008326]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2262.009628]  ? xa_load+0x158/0x290
[ 2262.010395]  ? xas_find_conflict+0x9e0/0x9e0
[ 2262.011340]  alloc_pages+0x1a0/0x2f0
[ 2262.012155]  filemap_alloc_folio+0x8e/0xb0
[ 2262.013071]  page_cache_ra_unbounded+0x1af/0x540
[ 2262.014101]  ondemand_readahead+0x642/0x1270
[ 2262.015079]  page_cache_sync_ra+0x1c5/0x200
[ 2262.015993]  filemap_get_pages+0x29e/0x1680
[ 2262.016941]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2262.018106]  ? filemap_add_folio+0x1b0/0x1b0
[ 2262.019055]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2262.020218]  ? filemap_read+0x286/0xba0
[ 2262.021082]  ? filemap_read+0x2ac/0xba0
[ 2262.021951]  filemap_read+0x311/0xba0
[ 2262.022818]  ? filemap_get_pages+0x1680/0x1680
[ 2262.023804]  ? filter_irq_stacks+0x90/0x90
[ 2262.024717]  ? __stack_depot_save+0x35/0x450
[ 2262.025675]  ? kasan_save_stack+0x2e/0x40
[ 2262.026565]  ? kasan_save_stack+0x1e/0x40
[ 2262.027448]  ? __kasan_kmalloc+0x81/0xa0
[ 2262.028309]  ? alloc_pipe_info+0x1e0/0x580
[ 2262.029208]  ? splice_direct_to_actor+0x700/0x8e0
[ 2262.030239]  ? do_splice_direct+0x1b8/0x280
[ 2262.031177]  ? do_sendfile+0xad7/0x1230
[ 2262.032015]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2262.033001]  ? do_syscall_64+0x3b/0x90
[ 2262.033852]  generic_file_read_iter+0x3c9/0x530
[ 2262.034863]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2262.036049]  ? __fsnotify_parent+0x498/0xa60
[ 2262.036989]  ext4_file_read_iter+0x184/0x3f0
[ 2262.037944]  generic_file_splice_read+0x3b9/0x5d0
[ 2262.039011]  ? pipe_to_user+0x170/0x170
[ 2262.039899]  ? security_file_permission+0xb1/0xd0
[ 2262.040936]  ? pipe_to_user+0x170/0x170
[ 2262.041794]  do_splice_to+0x1bc/0x240
[ 2262.042626]  ? inode_has_perm+0x1d0/0x1d0
[ 2262.043511]  splice_direct_to_actor+0x2c7/0x8e0
[ 2262.044524]  ? pipe_to_sendpage+0x380/0x380
[ 2262.045468]  ? do_splice_to+0x240/0x240
[ 2262.046340]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2262.047517]  ? security_file_permission+0xb1/0xd0
[ 2262.048568]  do_splice_direct+0x1b8/0x280
[ 2262.049467]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2262.050522]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2262.051702]  ? security_file_permission+0xb1/0xd0
[ 2262.052744]  do_sendfile+0xad7/0x1230
[ 2262.053566]  ? bit_wait_io_timeout+0x160/0x160
[ 2262.054556]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2262.055666]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2262.056843]  ? vfs_write+0x422/0xac0
[ 2262.057645]  __x64_sys_sendfile64+0x1cd/0x210
[ 2262.058623]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2262.059768]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2262.060878]  do_syscall_64+0x3b/0x90
[ 2262.061684]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2262.062786] RIP: 0033:0x7fdbfaa6cb19
[ 2262.063570] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2262.067470] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2262.069081] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2262.070641] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2262.072274] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2262.073786] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2262.075325] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2262.076863]  </TASK>
05:27:09 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 15)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:27:09 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x8282, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000003980)=[{{&(0x7f0000001180)=@abs, 0x6e, &(0x7f0000003400)=[{&(0x7f0000001200)=""/4096, 0x1000}, {&(0x7f0000002200)=""/60, 0x3c}, {&(0x7f0000002240)=""/30, 0x1e}, {&(0x7f0000002280)=""/214, 0xd6}, {&(0x7f0000002380)=""/4096, 0x1000}, {&(0x7f0000003380)=""/21, 0x15}, {&(0x7f00000033c0)=""/36, 0x24}], 0x7}}, {{&(0x7f0000003480), 0x6e, &(0x7f0000003680)=[{&(0x7f0000003500)=""/77, 0x4d}, {0xffffffffffffffff}, {&(0x7f0000003580)=""/234, 0xea}], 0x3, &(0x7f00000036c0)=ANY=[@ANYBLOB, @ANYRES32=<r1=>0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000018000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x78}}, {{&(0x7f0000003740), 0x6e, &(0x7f0000003800)=[{&(0x7f00000037c0)=""/30, 0x1e}], 0x1}}, {{&(0x7f0000003840)=@abs, 0x6e, &(0x7f00000038c0), 0x0, &(0x7f0000003900)=[@cred={{0x1c, 0x1, 0x2, {0x0, <r2=>0x0}}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r3=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x50}}], 0x4, 0x40010002, &(0x7f0000003a80)={0x0, 0x3938700})
r4 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
ioctl$CDROM_SEND_PACKET(r4, 0x5393, &(0x7f0000003c80)={"bdc7a32e46d885d5bef18f65", &(0x7f0000003b80)="ce7c84a378e8f26bd3bcf3e73661fffc1c7a688308a98252dc58af60940947c992f74ac012f17dba1d5974be1f37a452b888e121a40ba02665c398b744039d2a5d486bb727a5f2c457c405dae547c27a3bb2cdf1dcbffe30131bd1f7267d1b7f94da3ecdc5ebd61177dd4b91dbea60dae7ca2b4cf931c07f9d680754e2b332f9c0c528ae8afda4f954e08f23c324936a56f33262ff9510c6a0e015cd6e2b2d6536277279b70e44f9b30026625398d7d4c6d3dfc806", 0xb5, 0x7, &(0x7f00000038c0)={0x35, 0x0, 0x6, 0x8, 0x0, 0x1, 0x0, "02997fe7", 0x1, "036b9246", 0x0, 0xff, 0x4, "421df6", "e1ee1e63e49cff1427c17bff9c69b42f9f7f7620bd25dd6cc74d44eeedadc31af83e83ab45a7dd69c157cd635e6c"}, 0x3, 0x1, 0x80000001, &(0x7f0000003c40)})
clone3(&(0x7f0000003b00)={0xa00e0100, &(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0), {0x16}, &(0x7f0000000100)=""/119, 0x77, &(0x7f0000000180)=""/4096, &(0x7f0000003ac0)=[r1], 0x1}, 0x58)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f0000003d00)={{0x1, 0x1, 0x18, <r5=>0xffffffffffffffff, {r2, 0xee00}}, './file0\x00'})
ioctl$CDROM_SEND_PACKET(r5, 0x5393, &(0x7f0000003e80)={"5e64d66a9e2561e6d2c3478f", &(0x7f0000003d40)="5071e412483a46c92163b673c48d333adb6a15cc8d971fcfce5f0a6f004a03c397cdcf1178d28331d29565d41f4f5c49682525f5c7f236d4eaadc945fa51b6fdc473d3b5baec628c6cd5bcc6dcde8fb649ab0dada65f91a5f1b0b77a314fdc63f8097940a2c9d49b35889e360d1c6e889d17d66f9f87325f360228567c6725f7e401ad0554af4855a150684fdd671c48ff014acb32", 0x95, 0x10001, &(0x7f0000003e00)={0x34, 0x1, 0x1, 0x8, 0x0, 0x0, 0x0, "33713285", 0x6, "7832a4e1", 0xff, 0x9c, 0x6, "379fcc", "089af0222c9f94e4880ccbde2a20360bce1dae448ad907d4d9ffaff6f034f6f4c11f77c8e75942ba5b91e27e3396"}, 0x3, 0xffffffff, 0xae, &(0x7f0000003e40)})

05:27:09 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 3)

[ 2262.119764] FAULT_INJECTION: forcing a failure.
[ 2262.119764] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2262.121107] CPU: 1 PID: 13787 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2262.121995] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2262.123224] Call Trace:
[ 2262.123493]  <TASK>
[ 2262.123734]  dump_stack_lvl+0x8b/0xb3
05:27:09 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x500}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

[ 2262.124166]  should_fail.cold+0x5/0xa
[ 2262.124728]  prepare_alloc_pages+0x17b/0x500
[ 2262.125230]  __alloc_pages+0x131/0x4e0
[ 2262.125645]  ? lock_downgrade+0x6d0/0x6d0
[ 2262.126092]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2262.126743]  ? xa_load+0x158/0x290
[ 2262.127125]  ? xas_find_conflict+0x9e0/0x9e0
[ 2262.127606]  alloc_pages+0x1a0/0x2f0
[ 2262.128009]  filemap_alloc_folio+0x8e/0xb0
[ 2262.128468]  page_cache_ra_unbounded+0x1af/0x540
[ 2262.129011]  ondemand_readahead+0x642/0x1270
[ 2262.129504]  page_cache_sync_ra+0x1c5/0x200
[ 2262.129987]  filemap_get_pages+0x29e/0x1680
[ 2262.130480]  ? lock_downgrade+0x6d0/0x6d0
[ 2262.130955]  ? unwind_next_frame+0xdfe/0x20a0
[ 2262.131444]  ? filemap_add_folio+0x1b0/0x1b0
[ 2262.131931]  ? lock_is_held_type+0xd7/0x130
[ 2262.132407]  filemap_read+0x311/0xba0
[ 2262.132844]  ? filemap_get_pages+0x1680/0x1680
[ 2262.133349]  ? filter_irq_stacks+0x90/0x90
05:27:09 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x3, 0x0, 0x0)

[ 2262.133826]  ? __stack_depot_save+0x35/0x450
[ 2262.134426]  ? kasan_save_stack+0x2e/0x40
[ 2262.134873]  ? kasan_save_stack+0x1e/0x40
[ 2262.135318]  ? __kasan_kmalloc+0x81/0xa0
[ 2262.135762]  ? alloc_pipe_info+0x1e0/0x580
[ 2262.136230]  ? splice_direct_to_actor+0x700/0x8e0
[ 2262.136750]  ? do_splice_direct+0x1b8/0x280
[ 2262.137230]  ? do_sendfile+0xad7/0x1230
[ 2262.137645]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2262.138166]  ? do_syscall_64+0x3b/0x90
[ 2262.138607]  generic_file_read_iter+0x3c9/0x530
[ 2262.139126]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2262.139718]  ? __fsnotify_parent+0x498/0xa60
[ 2262.140216]  ext4_file_read_iter+0x184/0x3f0
[ 2262.140690]  generic_file_splice_read+0x3b9/0x5d0
[ 2262.141233]  ? pipe_to_user+0x170/0x170
[ 2262.141668]  ? security_file_permission+0xb1/0xd0
[ 2262.142212]  ? pipe_to_user+0x170/0x170
[ 2262.142666]  do_splice_to+0x1bc/0x240
[ 2262.143089]  ? inode_has_perm+0x1d0/0x1d0
[ 2262.143532]  splice_direct_to_actor+0x2c7/0x8e0
[ 2262.144050]  ? pipe_to_sendpage+0x380/0x380
[ 2262.144516]  ? do_splice_to+0x240/0x240
[ 2262.144945]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2262.145534]  ? security_file_permission+0xb1/0xd0
[ 2262.146061]  do_splice_direct+0x1b8/0x280
[ 2262.146513]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2262.147047]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2262.147631]  ? security_file_permission+0xb1/0xd0
[ 2262.148161]  do_sendfile+0xad7/0x1230
[ 2262.148574]  ? bit_wait_io_timeout+0x160/0x160
[ 2262.149067]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2262.149616]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2262.150213]  ? vfs_write+0x422/0xac0
[ 2262.150633]  __x64_sys_sendfile64+0x1cd/0x210
[ 2262.151117]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2262.151707]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2262.152277]  do_syscall_64+0x3b/0x90
[ 2262.152691]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2262.153253] RIP: 0033:0x7f1455db8b19
[ 2262.153660] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2262.155641] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2262.156477] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2262.157256] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2262.158040] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2262.158833] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2262.159611] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2262.160423]  </TASK>
05:27:09 executing program 3:
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x6, 0x80000)
r1 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80))
symlinkat(&(0x7f0000000000)='./file0\x00', r1, &(0x7f0000000040)='./file0\x00')
linkat(r1, &(0x7f00000000c0)='./file0\x00', r1, &(0x7f0000000100)='./file1\x00', 0x1000)
fcntl$dupfd(r0, 0x0, r1)

[ 2262.233972] FAULT_INJECTION: forcing a failure.
[ 2262.233972] name failslab, interval 1, probability 0, space 0, times 0
[ 2262.235299] CPU: 1 PID: 13869 Comm: syz-executor.7 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2262.236173] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2262.237381] Call Trace:
[ 2262.237657]  <TASK>
[ 2262.237890]  dump_stack_lvl+0x8b/0xb3
[ 2262.238324]  should_fail.cold+0x5/0xa
[ 2262.238743]  ? alloc_pipe_info+0x1e0/0x580
[ 2262.239191]  should_failslab+0x5/0x10
[ 2262.239604]  __kmalloc+0x72/0x440
[ 2262.239987]  alloc_pipe_info+0x1e0/0x580
[ 2262.240423]  ? inode_has_perm+0x1d0/0x1d0
[ 2262.240870]  splice_direct_to_actor+0x700/0x8e0
[ 2262.241370]  ? pipe_to_sendpage+0x380/0x380
[ 2262.241839]  ? selinux_file_permission+0x36/0x510
[ 2262.242390]  ? do_splice_to+0x240/0x240
[ 2262.242815]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2262.243439]  ? security_file_permission+0xb1/0xd0
[ 2262.243957]  do_splice_direct+0x1b8/0x280
[ 2262.244431]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2262.244952]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2262.245563]  ? security_file_permission+0xb1/0xd0
[ 2262.246092]  do_sendfile+0xad7/0x1230
[ 2262.246529]  ? bit_wait_io_timeout+0x160/0x160
[ 2262.247035]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
05:27:09 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 16)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

[ 2262.247617]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2262.248368]  ? vfs_write+0x422/0xac0
[ 2262.248787]  __x64_sys_sendfile64+0x1cd/0x210
[ 2262.249284]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2262.249874]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2262.250464]  do_syscall_64+0x3b/0x90
[ 2262.250884]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2262.251451] RIP: 0033:0x7f78f45e7b19
[ 2262.251855] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2262.253867] RSP: 002b:00007f78f1b5d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2262.254711] RAX: ffffffffffffffda RBX: 00007f78f46faf60 RCX: 00007f78f45e7b19
[ 2262.255484] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2262.256264] RBP: 00007f78f1b5d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2262.257041] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[ 2262.257825] R13: 00007ffee552a8df R14: 00007f78f1b5d300 R15: 0000000000022000
[ 2262.258637]  </TASK>
[ 2262.329901] FAULT_INJECTION: forcing a failure.
[ 2262.329901] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2262.332768] CPU: 0 PID: 13877 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2262.334557] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2262.336949] Call Trace:
[ 2262.337497]  <TASK>
[ 2262.337975]  dump_stack_lvl+0x8b/0xb3
[ 2262.338828]  should_fail.cold+0x5/0xa
[ 2262.339660]  prepare_alloc_pages+0x17b/0x500
[ 2262.340625]  __alloc_pages+0x131/0x4e0
[ 2262.341460]  ? lock_downgrade+0x6d0/0x6d0
[ 2262.342367]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2262.343673]  ? xa_load+0x158/0x290
[ 2262.344438]  ? xas_find_conflict+0x9e0/0x9e0
[ 2262.345389]  alloc_pages+0x1a0/0x2f0
[ 2262.346201]  filemap_alloc_folio+0x8e/0xb0
[ 2262.347123]  page_cache_ra_unbounded+0x1af/0x540
[ 2262.348166]  ondemand_readahead+0x642/0x1270
[ 2262.349129]  page_cache_sync_ra+0x1c5/0x200
[ 2262.350066]  filemap_get_pages+0x29e/0x1680
[ 2262.351010]  ? lock_downgrade+0x6d0/0x6d0
[ 2262.351918]  ? unwind_next_frame+0xdfe/0x20a0
[ 2262.352888]  ? filemap_add_folio+0x1b0/0x1b0
[ 2262.353851]  ? lock_is_held_type+0xd7/0x130
[ 2262.354811]  filemap_read+0x311/0xba0
[ 2262.355668]  ? filemap_get_pages+0x1680/0x1680
[ 2262.356657]  ? filter_irq_stacks+0x90/0x90
[ 2262.357570]  ? __stack_depot_save+0x35/0x450
[ 2262.358539]  ? kasan_save_stack+0x2e/0x40
[ 2262.359424]  ? kasan_save_stack+0x1e/0x40
[ 2262.360307]  ? __kasan_kmalloc+0x81/0xa0
[ 2262.361170]  ? alloc_pipe_info+0x1e0/0x580
[ 2262.362077]  ? splice_direct_to_actor+0x700/0x8e0
[ 2262.363139]  ? do_splice_direct+0x1b8/0x280
[ 2262.364075]  ? do_sendfile+0xad7/0x1230
[ 2262.364927]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2262.365923]  ? do_syscall_64+0x3b/0x90
[ 2262.366784]  generic_file_read_iter+0x3c9/0x530
[ 2262.367795]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2262.368981]  ? __fsnotify_parent+0x498/0xa60
[ 2262.369930]  ext4_file_read_iter+0x184/0x3f0
[ 2262.370898]  generic_file_splice_read+0x3b9/0x5d0
[ 2262.371945]  ? pipe_to_user+0x170/0x170
[ 2262.372829]  ? security_file_permission+0xb1/0xd0
[ 2262.373876]  ? pipe_to_user+0x170/0x170
[ 2262.374744]  do_splice_to+0x1bc/0x240
[ 2262.375562]  ? inode_has_perm+0x1d0/0x1d0
[ 2262.376445]  splice_direct_to_actor+0x2c7/0x8e0
[ 2262.377434]  ? pipe_to_sendpage+0x380/0x380
[ 2262.378379]  ? do_splice_to+0x240/0x240
[ 2262.379219]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2262.380381]  ? security_file_permission+0xb1/0xd0
[ 2262.381408]  do_splice_direct+0x1b8/0x280
[ 2262.382288]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2262.383327]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2262.384492]  ? security_file_permission+0xb1/0xd0
[ 2262.385534]  do_sendfile+0xad7/0x1230
[ 2262.386381]  ? bit_wait_io_timeout+0x160/0x160
[ 2262.387367]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2262.388474]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2262.389655]  ? vfs_write+0x422/0xac0
[ 2262.390469]  __x64_sys_sendfile64+0x1cd/0x210
[ 2262.391430]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2262.392571]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2262.393681]  do_syscall_64+0x3b/0x90
[ 2262.394498]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2262.395601] RIP: 0033:0x7f1455db8b19
[ 2262.396389] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2262.400297] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2262.401914] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2262.403431] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2262.404944] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2262.406465] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2262.407979] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2262.409535]  </TASK>
05:27:22 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)

05:27:22 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 17)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:27:22 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 4)

05:27:22 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x2, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x2, 0x0)

05:27:22 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0xe00}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:27:22 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 16)

05:27:22 executing program 3:
ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, &(0x7f0000000000)={{0x3, 0x1, 0x200, 0x3, 0x5}})
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x408400, 0x0)
syz_io_uring_setup(0x3977, &(0x7f0000000100)={0x0, 0x4169, 0x2, 0x3, 0xb4, 0x0, r0}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000180))

05:27:22 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x8, 0x0, 0x0)

[ 2274.560448] FAULT_INJECTION: forcing a failure.
[ 2274.560448] name failslab, interval 1, probability 0, space 0, times 0
[ 2274.561872] CPU: 0 PID: 13986 Comm: syz-executor.7 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2274.562756] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2274.563967] Call Trace:
[ 2274.564244]  <TASK>
[ 2274.564481]  dump_stack_lvl+0x8b/0xb3
[ 2274.564894]  should_fail.cold+0x5/0xa
[ 2274.565312]  ? create_object.isra.0+0x3a/0xa20
[ 2274.565817]  should_failslab+0x5/0x10
[ 2274.566244]  kmem_cache_alloc+0x5b/0x480
[ 2274.566706]  create_object.isra.0+0x3a/0xa20
[ 2274.567197]  ? kasan_unpoison+0x23/0x50
[ 2274.567626]  __kmalloc+0x25b/0x440
[ 2274.568026]  alloc_pipe_info+0x1e0/0x580
[ 2274.568452]  ? inode_has_perm+0x1d0/0x1d0
[ 2274.568894]  splice_direct_to_actor+0x700/0x8e0
[ 2274.569408]  ? pipe_to_sendpage+0x380/0x380
[ 2274.569875]  ? selinux_file_permission+0x36/0x510
[ 2274.570391]  ? do_splice_to+0x240/0x240
[ 2274.570828]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2274.571437]  ? security_file_permission+0xb1/0xd0
[ 2274.571977]  do_splice_direct+0x1b8/0x280
[ 2274.572413]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2274.572958]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2274.573566]  ? security_file_permission+0xb1/0xd0
[ 2274.574104]  do_sendfile+0xad7/0x1230
[ 2274.574534]  ? bit_wait_io_timeout+0x160/0x160
[ 2274.575041]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2274.575610]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2274.576214]  ? vfs_write+0x422/0xac0
[ 2274.576627]  __x64_sys_sendfile64+0x1cd/0x210
[ 2274.577126]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2274.577716]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2274.578288]  do_syscall_64+0x3b/0x90
[ 2274.578696]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2274.579264] RIP: 0033:0x7f78f45e7b19
[ 2274.579671] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2274.581673] RSP: 002b:00007f78f1b5d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2274.582507] RAX: ffffffffffffffda RBX: 00007f78f46faf60 RCX: 00007f78f45e7b19
[ 2274.583286] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2274.584058] RBP: 00007f78f1b5d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2274.584825] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[ 2274.585596] R13: 00007ffee552a8df R14: 00007f78f1b5d300 R15: 0000000000022000
[ 2274.586382]  </TASK>
[ 2274.620448] FAULT_INJECTION: forcing a failure.
[ 2274.620448] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2274.623157] CPU: 1 PID: 13984 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2274.624910] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2274.627306] Call Trace:
[ 2274.627846]  <TASK>
[ 2274.628318]  dump_stack_lvl+0x8b/0xb3
[ 2274.629140]  should_fail.cold+0x5/0xa
[ 2274.629958]  prepare_alloc_pages+0x17b/0x500
[ 2274.630922]  __alloc_pages+0x131/0x4e0
[ 2274.631744]  ? lock_downgrade+0x6d0/0x6d0
[ 2274.632627]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2274.633914]  ? xa_load+0x158/0x290
[ 2274.634688]  ? xas_find_conflict+0x9e0/0x9e0
[ 2274.635623]  alloc_pages+0x1a0/0x2f0
[ 2274.636420]  filemap_alloc_folio+0x8e/0xb0
[ 2274.637323]  page_cache_ra_unbounded+0x1af/0x540
[ 2274.638346]  ondemand_readahead+0x642/0x1270
[ 2274.639307]  page_cache_sync_ra+0x1c5/0x200
[ 2274.640227]  filemap_get_pages+0x29e/0x1680
[ 2274.641169]  ? filemap_add_folio+0x1b0/0x1b0
[ 2274.642116]  ? lock_is_held_type+0xd7/0x130
[ 2274.643056]  filemap_read+0x311/0xba0
[ 2274.643896]  ? filemap_get_pages+0x1680/0x1680
[ 2274.644873]  ? trace_hardirqs_on+0x38/0x190
[ 2274.645793]  ? finish_task_switch.isra.0+0x230/0x870
[ 2274.646885]  ? finish_task_switch.isra.0+0x226/0x870
[ 2274.647977]  generic_file_read_iter+0x3c9/0x530
[ 2274.648968]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2274.650135]  ? __fsnotify_parent+0x498/0xa60
[ 2274.651081]  ext4_file_read_iter+0x184/0x3f0
[ 2274.652041]  generic_file_splice_read+0x3b9/0x5d0
[ 2274.653072]  ? __cond_resched+0x13/0x20
[ 2274.653920]  ? pipe_to_user+0x170/0x170
[ 2274.654776]  ? preempt_schedule_common+0x59/0xc0
[ 2274.655804]  ? security_file_permission+0xb1/0xd0
[ 2274.656831]  ? pipe_to_user+0x170/0x170
[ 2274.657685]  do_splice_to+0x1bc/0x240
[ 2274.658504]  ? inode_has_perm+0x1d0/0x1d0
[ 2274.659387]  splice_direct_to_actor+0x2c7/0x8e0
[ 2274.660384]  ? pipe_to_sendpage+0x380/0x380
[ 2274.661315]  ? do_splice_to+0x240/0x240
[ 2274.662165]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2274.663371]  ? security_file_permission+0xb1/0xd0
[ 2274.664418]  do_splice_direct+0x1b8/0x280
05:27:22 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 5)

[ 2274.665316]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2274.666546]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
05:27:22 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000080)=<r3=>0x0)
capset(&(0x7f0000000340)={0x20080522, r3}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
r4 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r4, 0x5429, &(0x7f0000000080)=<r5=>0x0)
capset(&(0x7f0000000340)={0x20080522, r5}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000140)=<r6=>0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r7=>r1, {0x2}}, './file0\x00'})
clone3(&(0x7f0000000200)={0x43004900, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x40}, &(0x7f00000006c0)=""/4096, 0x1000, &(0x7f0000000100)=""/49, &(0x7f0000000180)=[r0, r3, r5, r0, r0, r6, r0], 0x7, {r7}}, 0x58)

[ 2274.667744]  ? security_file_permission+0xb1/0xd0
[ 2274.668836]  do_sendfile+0xad7/0x1230
[ 2274.669657]  ? bit_wait_io_timeout+0x160/0x160
[ 2274.670655]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2274.671760]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2274.672929]  ? vfs_write+0x422/0xac0
[ 2274.673727]  __x64_sys_sendfile64+0x1cd/0x210
[ 2274.674690]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2274.675824]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2274.676929]  do_syscall_64+0x3b/0x90
[ 2274.677730]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2274.678827] RIP: 0033:0x7f1455db8b19
[ 2274.679612] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2274.683512] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2274.685121] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2274.686631] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2274.688130] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2274.689627] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2274.691135] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2274.692663]  </TASK>
[ 2274.711923] FAULT_INJECTION: forcing a failure.
[ 2274.711923] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2274.714628] CPU: 1 PID: 13995 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2274.716509] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2274.718937] Call Trace:
[ 2274.719517]  <TASK>
[ 2274.720082]  dump_stack_lvl+0x8b/0xb3
[ 2274.720933]  should_fail.cold+0x5/0xa
[ 2274.721758]  prepare_alloc_pages+0x17b/0x500
[ 2274.722738]  __alloc_pages+0x131/0x4e0
[ 2274.723566]  ? lock_downgrade+0x6d0/0x6d0
[ 2274.724457]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2274.725752]  ? xa_load+0x158/0x290
[ 2274.726518]  ? xas_find_conflict+0x9e0/0x9e0
[ 2274.726777] FAULT_INJECTION: forcing a failure.
[ 2274.726777] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2274.727458]  alloc_pages+0x1a0/0x2f0
[ 2274.727496]  filemap_alloc_folio+0x8e/0xb0
[ 2274.730417]  page_cache_ra_unbounded+0x1af/0x540
[ 2274.731457]  ondemand_readahead+0x642/0x1270
[ 2274.732415]  page_cache_sync_ra+0x1c5/0x200
[ 2274.733342]  filemap_get_pages+0x29e/0x1680
[ 2274.734276]  ? lock_downgrade+0x6d0/0x6d0
[ 2274.735183]  ? unwind_next_frame+0xdfe/0x20a0
[ 2274.736144]  ? filemap_add_folio+0x1b0/0x1b0
[ 2274.737099]  ? lock_is_held_type+0xd7/0x130
[ 2274.738031]  filemap_read+0x311/0xba0
[ 2274.738887]  ? filemap_get_pages+0x1680/0x1680
[ 2274.739867]  ? filter_irq_stacks+0x90/0x90
[ 2274.740772]  ? __stack_depot_save+0x35/0x450
[ 2274.741728]  ? kasan_save_stack+0x2e/0x40
[ 2274.742615]  ? kasan_save_stack+0x1e/0x40
[ 2274.743492]  ? __kasan_kmalloc+0x81/0xa0
[ 2274.744351]  ? alloc_pipe_info+0x1e0/0x580
[ 2274.745251]  ? splice_direct_to_actor+0x700/0x8e0
[ 2274.746282]  ? do_splice_direct+0x1b8/0x280
[ 2274.747221]  ? do_sendfile+0xad7/0x1230
[ 2274.748065]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2274.749053]  ? do_syscall_64+0x3b/0x90
[ 2274.749899]  generic_file_read_iter+0x3c9/0x530
[ 2274.750907]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2274.752085]  ? __fsnotify_parent+0x498/0xa60
[ 2274.753026]  ext4_file_read_iter+0x184/0x3f0
[ 2274.753975]  generic_file_splice_read+0x3b9/0x5d0
[ 2274.755031]  ? pipe_to_user+0x170/0x170
[ 2274.755910]  ? security_file_permission+0xb1/0xd0
[ 2274.756947]  ? pipe_to_user+0x170/0x170
[ 2274.757808]  do_splice_to+0x1bc/0x240
[ 2274.758631]  ? inode_has_perm+0x1d0/0x1d0
[ 2274.759518]  splice_direct_to_actor+0x2c7/0x8e0
[ 2274.760521]  ? pipe_to_sendpage+0x380/0x380
[ 2274.761456]  ? do_splice_to+0x240/0x240
[ 2274.762310]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2274.763490]  ? security_file_permission+0xb1/0xd0
[ 2274.764534]  do_splice_direct+0x1b8/0x280
[ 2274.765425]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2274.766469]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2274.767668]  ? security_file_permission+0xb1/0xd0
[ 2274.768707]  do_sendfile+0xad7/0x1230
[ 2274.769527]  ? bit_wait_io_timeout+0x160/0x160
[ 2274.770509]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2274.771611]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2274.772782]  ? vfs_write+0x422/0xac0
[ 2274.773584]  __x64_sys_sendfile64+0x1cd/0x210
[ 2274.774543]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2274.775676]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2274.776781]  do_syscall_64+0x3b/0x90
[ 2274.777581]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2274.778687] RIP: 0033:0x7fdbfaa6cb19
[ 2274.779470] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2274.783350] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2274.784952] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2274.786454] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2274.787962] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2274.789469] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2274.790986] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2274.792519]  </TASK>
[ 2274.793012] CPU: 0 PID: 14103 Comm: syz-executor.7 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2274.793946] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2274.795183] Call Trace:
[ 2274.795461]  <TASK>
[ 2274.795718]  dump_stack_lvl+0x8b/0xb3
[ 2274.796136]  should_fail.cold+0x5/0xa
[ 2274.796555]  prepare_alloc_pages+0x17b/0x500
[ 2274.797060]  __alloc_pages+0x131/0x4e0
[ 2274.797485]  ? lock_downgrade+0x6d0/0x6d0
[ 2274.797959]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2274.798639]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2274.799242]  ? xa_load+0x158/0x290
[ 2274.799636]  ? xas_find_conflict+0x9e0/0x9e0
[ 2274.800213]  alloc_pages+0x1a0/0x2f0
[ 2274.800744]  filemap_alloc_folio+0x8e/0xb0
[ 2274.801550]  page_cache_ra_unbounded+0x1af/0x540
[ 2274.802270]  ondemand_readahead+0x642/0x1270
[ 2274.802906]  page_cache_sync_ra+0x1c5/0x200
[ 2274.803545]  filemap_get_pages+0x29e/0x1680
[ 2274.804225]  ? lock_downgrade+0x6d0/0x6d0
[ 2274.804873]  ? unwind_next_frame+0xdfe/0x20a0
[ 2274.805575]  ? filemap_add_folio+0x1b0/0x1b0
[ 2274.806275]  ? lock_is_held_type+0xd7/0x130
[ 2274.806974]  filemap_read+0x311/0xba0
[ 2274.807598]  ? filemap_get_pages+0x1680/0x1680
[ 2274.808314]  ? filter_irq_stacks+0x90/0x90
[ 2274.808961]  ? __stack_depot_save+0x35/0x450
[ 2274.809598]  ? kasan_save_stack+0x2e/0x40
[ 2274.810177]  ? kasan_save_stack+0x1e/0x40
[ 2274.810761]  ? __kasan_kmalloc+0x81/0xa0
[ 2274.811330]  ? alloc_pipe_info+0x1e0/0x580
[ 2274.811928]  ? splice_direct_to_actor+0x700/0x8e0
[ 2274.812613]  ? do_splice_direct+0x1b8/0x280
[ 2274.813207]  ? do_sendfile+0xad7/0x1230
[ 2274.813764]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2274.814413]  ? do_syscall_64+0x3b/0x90
[ 2274.814954]  generic_file_read_iter+0x3c9/0x530
[ 2274.815606]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2274.816292]  ? __fsnotify_parent+0x498/0xa60
[ 2274.816889]  ext4_file_read_iter+0x184/0x3f0
[ 2274.817431]  generic_file_splice_read+0x3b9/0x5d0
[ 2274.818102]  ? pipe_to_user+0x170/0x170
[ 2274.818614]  ? security_file_permission+0xb1/0xd0
[ 2274.819286]  ? pipe_to_user+0x170/0x170
[ 2274.819781]  do_splice_to+0x1bc/0x240
[ 2274.820304]  ? inode_has_perm+0x1d0/0x1d0
[ 2274.820826]  splice_direct_to_actor+0x2c7/0x8e0
[ 2274.821476]  ? pipe_to_sendpage+0x380/0x380
[ 2274.822016]  ? do_splice_to+0x240/0x240
[ 2274.822590]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2274.823405]  ? security_file_permission+0xb1/0xd0
[ 2274.824127]  do_splice_direct+0x1b8/0x280
[ 2274.824602]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2274.825149]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2274.825730]  ? security_file_permission+0xb1/0xd0
[ 2274.826275]  do_sendfile+0xad7/0x1230
[ 2274.826713]  ? bit_wait_io_timeout+0x160/0x160
[ 2274.827221]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2274.827798]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2274.828403]  ? vfs_write+0x422/0xac0
[ 2274.828815]  __x64_sys_sendfile64+0x1cd/0x210
[ 2274.829310]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2274.829904]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2274.830478]  do_syscall_64+0x3b/0x90
[ 2274.830881]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2274.831459] RIP: 0033:0x7f78f45e7b19
[ 2274.831847] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2274.833882] RSP: 002b:00007f78f1b5d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2274.834732] RAX: ffffffffffffffda RBX: 00007f78f46faf60 RCX: 00007f78f45e7b19
[ 2274.835511] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2274.836287] RBP: 00007f78f1b5d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2274.837070] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[ 2274.837859] R13: 00007ffee552a8df R14: 00007f78f1b5d300 R15: 0000000000022000
[ 2274.838676]  </TASK>
05:27:22 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x300, 0x0, 0x0)

05:27:22 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0xffb}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:27:22 executing program 5:
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x6}}, './file0\x00'})
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x3, &(0x7f0000000080)=[{0x7, 0x20, 0x6b, 0x5}, {0x8, 0x4, 0x8, 0x4}, {0x886, 0x3, 0x5, 0x7}]})
ioctl$BTRFS_IOC_DEFRAG(r1, 0x50009402, 0x0)

05:27:22 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 6)

05:27:22 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 17)

05:27:22 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1100}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:27:22 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 18)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

[ 2274.992846] FAULT_INJECTION: forcing a failure.
[ 2274.992846] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2274.994355] CPU: 0 PID: 14197 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2274.995243] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2274.996430] Call Trace:
[ 2274.996706]  <TASK>
[ 2274.996942]  dump_stack_lvl+0x8b/0xb3
[ 2274.997363]  should_fail.cold+0x5/0xa
[ 2274.997788]  prepare_alloc_pages+0x17b/0x500
[ 2274.998277]  __alloc_pages+0x131/0x4e0
[ 2274.998730]  ? lock_downgrade+0x6d0/0x6d0
[ 2274.999195]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2274.999846]  ? xa_load+0x158/0x290
[ 2275.000222]  ? xas_find_conflict+0x9e0/0x9e0
[ 2275.000697]  alloc_pages+0x1a0/0x2f0
[ 2275.001100]  filemap_alloc_folio+0x8e/0xb0
[ 2275.001552]  page_cache_ra_unbounded+0x1af/0x540
[ 2275.002081]  ondemand_readahead+0x642/0x1270
[ 2275.002565]  page_cache_sync_ra+0x1c5/0x200
[ 2275.003048]  filemap_get_pages+0x29e/0x1680
[ 2275.003518]  ? lock_downgrade+0x6d0/0x6d0
[ 2275.003979]  ? unwind_next_frame+0xdfe/0x20a0
[ 2275.004472]  ? filemap_add_folio+0x1b0/0x1b0
[ 2275.004971]  ? lock_is_held_type+0xd7/0x130
[ 2275.005452]  filemap_read+0x311/0xba0
[ 2275.005900]  ? filemap_get_pages+0x1680/0x1680
[ 2275.006401]  ? filter_irq_stacks+0x90/0x90
[ 2275.006880]  ? __stack_depot_save+0x35/0x450
[ 2275.007380]  ? kasan_save_stack+0x2e/0x40
[ 2275.007843]  ? kasan_save_stack+0x1e/0x40
[ 2275.008292]  ? __kasan_kmalloc+0x81/0xa0
[ 2275.008738]  ? alloc_pipe_info+0x1e0/0x580
[ 2275.009203]  ? splice_direct_to_actor+0x700/0x8e0
[ 2275.009747]  ? do_splice_direct+0x1b8/0x280
[ 2275.010224]  ? do_sendfile+0xad7/0x1230
[ 2275.010693]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2275.011207]  ? do_syscall_64+0x3b/0x90
[ 2275.011660]  generic_file_read_iter+0x3c9/0x530
[ 2275.012182]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2275.012816]  ? __fsnotify_parent+0x498/0xa60
[ 2275.013303]  ext4_file_read_iter+0x184/0x3f0
[ 2275.013806]  generic_file_splice_read+0x3b9/0x5d0
[ 2275.014340]  ? pipe_to_user+0x170/0x170
[ 2275.014806]  ? security_file_permission+0xb1/0xd0
[ 2275.015353]  ? pipe_to_user+0x170/0x170
[ 2275.015809]  do_splice_to+0x1bc/0x240
[ 2275.016232]  ? inode_has_perm+0x1d0/0x1d0
[ 2275.016704]  splice_direct_to_actor+0x2c7/0x8e0
[ 2275.017223]  ? pipe_to_sendpage+0x380/0x380
[ 2275.017716]  ? do_splice_to+0x240/0x240
[ 2275.018157]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2275.018791]  ? security_file_permission+0xb1/0xd0
[ 2275.019332]  do_splice_direct+0x1b8/0x280
[ 2275.019807]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2275.020409]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2275.021088]  ? security_file_permission+0xb1/0xd0
[ 2275.021644]  do_sendfile+0xad7/0x1230
[ 2275.022072]  ? bit_wait_io_timeout+0x160/0x160
[ 2275.022602]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2275.023191]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2275.023812]  ? vfs_write+0x422/0xac0
[ 2275.024227]  __x64_sys_sendfile64+0x1cd/0x210
[ 2275.024721]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2275.025305]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2275.025884]  do_syscall_64+0x3b/0x90
[ 2275.026299]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2275.026893] RIP: 0033:0x7fdbfaa6cb19
[ 2275.027297] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2275.029327] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2275.030208] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2275.031059] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2275.031910] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2275.032784] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2275.033645] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2275.034497]  </TASK>
[ 2275.078731] FAULT_INJECTION: forcing a failure.
[ 2275.078731] name failslab, interval 1, probability 0, space 0, times 0
[ 2275.079947] CPU: 0 PID: 14218 Comm: syz-executor.7 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2275.080809] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2275.082015] Call Trace:
[ 2275.082293]  <TASK>
[ 2275.082535]  dump_stack_lvl+0x8b/0xb3
[ 2275.082976]  should_fail.cold+0x5/0xa
[ 2275.083414]  should_failslab+0x5/0x10
[ 2275.083835]  kmem_cache_alloc_lru+0x60/0x7c0
[ 2275.084338]  ? xas_alloc+0x35d/0x480
[ 2275.084761]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 2275.085329]  xas_alloc+0x35d/0x480
[ 2275.085732]  xas_create+0x35b/0x1030
[ 2275.086146]  ? lock_acquire+0x1b2/0x530
[ 2275.086589]  ? lock_is_held_type+0xd7/0x130
[ 2275.087066]  xas_store+0x90/0x1c40
[ 2275.087447]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[ 2275.088016]  ? xas_find_conflict+0x4a6/0x9e0
[ 2275.088503]  __filemap_add_folio+0x3c6/0xf60
[ 2275.089005]  ? filemap_map_pages+0x1350/0x1350
[ 2275.089517]  ? memcg_list_lru_alloc+0xb10/0xb10
[ 2275.090037]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2275.091035]  filemap_add_folio+0x9b/0x1b0
[ 2275.092056]  ? add_to_page_cache_locked+0x160/0x160
[ 2275.093246]  ? alloc_pages+0x1a8/0x2f0
[ 2275.094184]  page_cache_ra_unbounded+0x1d3/0x540
[ 2275.095365]  ondemand_readahead+0x642/0x1270
[ 2275.096432]  page_cache_sync_ra+0x1c5/0x200
[ 2275.097462]  filemap_get_pages+0x29e/0x1680
[ 2275.098502]  ? lock_downgrade+0x6d0/0x6d0
[ 2275.099492]  ? unwind_next_frame+0xdfe/0x20a0
[ 2275.100558]  ? filemap_add_folio+0x1b0/0x1b0
[ 2275.101619]  ? lock_is_held_type+0xd7/0x130
[ 2275.102668]  filemap_read+0x311/0xba0
[ 2275.103614]  ? filemap_get_pages+0x1680/0x1680
[ 2275.104705]  ? filter_irq_stacks+0x90/0x90
[ 2275.105710]  ? __stack_depot_save+0x35/0x450
[ 2275.106795]  ? kasan_save_stack+0x2e/0x40
[ 2275.107687]  ? kasan_save_stack+0x1e/0x40
[ 2275.108512]  ? __kasan_kmalloc+0x81/0xa0
[ 2275.109315]  ? alloc_pipe_info+0x1e0/0x580
[ 2275.110155]  ? splice_direct_to_actor+0x700/0x8e0
[ 2275.111127]  ? do_splice_direct+0x1b8/0x280
[ 2275.111998]  ? do_sendfile+0xad7/0x1230
[ 2275.112786]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2275.113715]  ? do_syscall_64+0x3b/0x90
[ 2275.114519]  generic_file_read_iter+0x3c9/0x530
[ 2275.115456]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2275.116557]  ? __fsnotify_parent+0x498/0xa60
[ 2275.117438]  ext4_file_read_iter+0x184/0x3f0
[ 2275.118332]  generic_file_splice_read+0x3b9/0x5d0
[ 2275.119324]  ? pipe_to_user+0x170/0x170
[ 2275.120151]  ? security_file_permission+0xb1/0xd0
[ 2275.121127]  ? pipe_to_user+0x170/0x170
[ 2275.121930]  do_splice_to+0x1bc/0x240
[ 2275.122704]  ? inode_has_perm+0x1d0/0x1d0
[ 2275.123536]  splice_direct_to_actor+0x2c7/0x8e0
[ 2275.124472]  ? pipe_to_sendpage+0x380/0x380
[ 2275.125345]  ? do_splice_to+0x240/0x240
[ 2275.126141]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2275.127261]  ? security_file_permission+0xb1/0xd0
[ 2275.128237]  do_splice_direct+0x1b8/0x280
[ 2275.129071]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2275.130054]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2275.131160]  ? security_file_permission+0xb1/0xd0
[ 2275.132139]  do_sendfile+0xad7/0x1230
[ 2275.132908]  ? bit_wait_io_timeout+0x160/0x160
[ 2275.133824]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2275.134868]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2275.135971]  ? vfs_write+0x422/0xac0
[ 2275.136722]  __x64_sys_sendfile64+0x1cd/0x210
[ 2275.137616]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2275.138697]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2275.139733]  do_syscall_64+0x3b/0x90
[ 2275.140483]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2275.141504] RIP: 0033:0x7f78f45e7b19
[ 2275.142245] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2275.145917] RSP: 002b:00007f78f1b5d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2275.147453] RAX: ffffffffffffffda RBX: 00007f78f46faf60 RCX: 00007f78f45e7b19
[ 2275.148862] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2275.150269] RBP: 00007f78f1b5d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2275.151692] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[ 2275.153104] R13: 00007ffee552a8df R14: 00007f78f1b5d300 R15: 0000000000022000
[ 2275.154548]  </TASK>
05:27:22 executing program 3:
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4801, 0x10)
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)
r0 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80))
symlinkat(&(0x7f0000000000)='./file0\x00', r0, &(0x7f0000000040)='./file0\x00')
linkat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000000100)='./file1\x00', 0x1000)
mknodat$loop(r0, &(0x7f0000000040)='./file0\x00', 0x8000, 0x1)

05:27:22 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x3f00, 0x0, 0x0)

[ 2275.202942] FAULT_INJECTION: forcing a failure.
[ 2275.202942] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2275.205464] CPU: 0 PID: 14224 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2275.207090] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2275.209348] Call Trace:
[ 2275.209857]  <TASK>
[ 2275.210304]  dump_stack_lvl+0x8b/0xb3
[ 2275.211100]  should_fail.cold+0x5/0xa
[ 2275.211873]  prepare_alloc_pages+0x17b/0x500
[ 2275.212777]  __alloc_pages+0x131/0x4e0
[ 2275.213554]  ? lock_downgrade+0x6d0/0x6d0
[ 2275.214385]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2275.215622]  ? xa_load+0x158/0x290
[ 2275.216337]  ? xas_find_conflict+0x9e0/0x9e0
[ 2275.217229]  alloc_pages+0x1a0/0x2f0
[ 2275.217984]  filemap_alloc_folio+0x8e/0xb0
[ 2275.218863]  page_cache_ra_unbounded+0x1af/0x540
[ 2275.219835]  ondemand_readahead+0x642/0x1270
[ 2275.220738]  page_cache_sync_ra+0x1c5/0x200
[ 2275.221616]  filemap_get_pages+0x29e/0x1680
[ 2275.222505]  ? lock_downgrade+0x6d0/0x6d0
[ 2275.223347]  ? unwind_next_frame+0xdfe/0x20a0
[ 2275.224255]  ? filemap_add_folio+0x1b0/0x1b0
[ 2275.225167]  ? lock_is_held_type+0xd7/0x130
[ 2275.226053]  filemap_read+0x311/0xba0
[ 2275.226878]  ? filemap_get_pages+0x1680/0x1680
[ 2275.227805]  ? filter_irq_stacks+0x90/0x90
[ 2275.228652]  ? __stack_depot_save+0x35/0x450
[ 2275.229551]  ? kasan_save_stack+0x2e/0x40
[ 2275.230377]  ? kasan_save_stack+0x1e/0x40
[ 2275.231208]  ? __kasan_kmalloc+0x81/0xa0
[ 2275.232020]  ? alloc_pipe_info+0x1e0/0x580
[ 2275.232858]  ? splice_direct_to_actor+0x700/0x8e0
[ 2275.233824]  ? do_splice_direct+0x1b8/0x280
[ 2275.234703]  ? do_sendfile+0xad7/0x1230
[ 2275.235493]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2275.236419]  ? do_syscall_64+0x3b/0x90
[ 2275.237210]  generic_file_read_iter+0x3c9/0x530
[ 2275.238151]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2275.239273]  ? __fsnotify_parent+0x498/0xa60
[ 2275.240152]  ext4_file_read_iter+0x184/0x3f0
[ 2275.241045]  generic_file_splice_read+0x3b9/0x5d0
[ 2275.242017]  ? pipe_to_user+0x170/0x170
[ 2275.242851]  ? security_file_permission+0xb1/0xd0
[ 2275.243827]  ? pipe_to_user+0x170/0x170
[ 2275.244632]  do_splice_to+0x1bc/0x240
[ 2275.245398]  ? inode_has_perm+0x1d0/0x1d0
[ 2275.246231]  splice_direct_to_actor+0x2c7/0x8e0
[ 2275.247181]  ? pipe_to_sendpage+0x380/0x380
[ 2275.248063]  ? do_splice_to+0x240/0x240
[ 2275.248864]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2275.249970]  ? security_file_permission+0xb1/0xd0
[ 2275.250964]  do_splice_direct+0x1b8/0x280
[ 2275.251803]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2275.252782]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2275.253888]  ? security_file_permission+0xb1/0xd0
[ 2275.254868]  do_sendfile+0xad7/0x1230
[ 2275.255639]  ? bit_wait_io_timeout+0x160/0x160
05:27:22 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4b47, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x2, 0x0)

[ 2275.256559]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2275.257843]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2275.258970]  ? vfs_write+0x422/0xac0
[ 2275.259730]  __x64_sys_sendfile64+0x1cd/0x210
[ 2275.260633]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2275.261707]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2275.262761]  do_syscall_64+0x3b/0x90
[ 2275.263532]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2275.264676] RIP: 0033:0x7f1455db8b19
[ 2275.265497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2275.269561] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2275.271261] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2275.272734] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2275.274166] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
05:27:22 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000100)={0x8, 0x0, &(0x7f0000000040)=[@decrefs={0x40046307, 0x1}], 0x69, 0x0, &(0x7f0000000080)="0863826089876a2d621757a55b3d7a7b7d83fe0109ce6509970dd38a9583b02967dab8a6ab5cea6072902333953c6fec52363c35b0ae77871111e0517c00acd551bacbd8e351040da15a8a32b7719631cd13545c0586887d20cf6eb9a9082e142d9fd27e40c41e2a52"})
ioctl$CDROMEJECT_SW(r0, 0x530f, 0x0)

05:27:22 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1f00}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

[ 2275.275599] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2275.277098] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2275.278588]  </TASK>
05:27:22 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 18)

05:27:22 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x80000, 0x0, 0x0)

[ 2275.380541] FAULT_INJECTION: forcing a failure.
[ 2275.380541] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2275.383571] CPU: 0 PID: 14277 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2275.385274] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2275.387535] Call Trace:
[ 2275.388047]  <TASK>
[ 2275.388495]  dump_stack_lvl+0x8b/0xb3
[ 2275.389282]  should_fail.cold+0x5/0xa
[ 2275.390051]  prepare_alloc_pages+0x17b/0x500
[ 2275.390995]  __alloc_pages+0x131/0x4e0
[ 2275.391773]  ? lock_downgrade+0x6d0/0x6d0
[ 2275.392629]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2275.393835]  ? xa_load+0x158/0x290
[ 2275.394576]  ? xas_find_conflict+0x9e0/0x9e0
[ 2275.395454]  alloc_pages+0x1a0/0x2f0
[ 2275.396214]  filemap_alloc_folio+0x8e/0xb0
[ 2275.397059]  page_cache_ra_unbounded+0x1af/0x540
[ 2275.398036]  ondemand_readahead+0x642/0x1270
[ 2275.398944]  page_cache_sync_ra+0x1c5/0x200
[ 2275.399827]  filemap_get_pages+0x29e/0x1680
[ 2275.400701]  ? lock_downgrade+0x6d0/0x6d0
[ 2275.401557]  ? unwind_next_frame+0xdfe/0x20a0
[ 2275.402450]  ? filemap_add_folio+0x1b0/0x1b0
[ 2275.403385]  ? lock_is_held_type+0xd7/0x130
[ 2275.404255]  filemap_read+0x311/0xba0
[ 2275.405062]  ? filemap_get_pages+0x1680/0x1680
[ 2275.405975]  ? filter_irq_stacks+0x90/0x90
[ 2275.406843]  ? __stack_depot_save+0x35/0x450
[ 2275.407736]  ? kasan_save_stack+0x2e/0x40
[ 2275.408572]  ? kasan_save_stack+0x1e/0x40
[ 2275.409393]  ? __kasan_kmalloc+0x81/0xa0
[ 2275.410203]  ? alloc_pipe_info+0x1e0/0x580
[ 2275.411039]  ? splice_direct_to_actor+0x700/0x8e0
[ 2275.412014]  ? do_splice_direct+0x1b8/0x280
[ 2275.412883]  ? do_sendfile+0xad7/0x1230
[ 2275.413679]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2275.414635]  ? do_syscall_64+0x3b/0x90
[ 2275.415454]  generic_file_read_iter+0x3c9/0x530
[ 2275.416405]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2275.417517]  ? __fsnotify_parent+0x498/0xa60
[ 2275.418402]  ext4_file_read_iter+0x184/0x3f0
[ 2275.419301]  generic_file_splice_read+0x3b9/0x5d0
[ 2275.420293]  ? pipe_to_user+0x170/0x170
[ 2275.421112]  ? security_file_permission+0xb1/0xd0
[ 2275.422095]  ? pipe_to_user+0x170/0x170
[ 2275.422914]  do_splice_to+0x1bc/0x240
[ 2275.423697]  ? inode_has_perm+0x1d0/0x1d0
[ 2275.424525]  splice_direct_to_actor+0x2c7/0x8e0
[ 2275.425481]  ? pipe_to_sendpage+0x380/0x380
[ 2275.426359]  ? do_splice_to+0x240/0x240
[ 2275.427176]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2275.428276]  ? security_file_permission+0xb1/0xd0
[ 2275.429259]  do_splice_direct+0x1b8/0x280
[ 2275.430090]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2275.431101]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2275.432203]  ? security_file_permission+0xb1/0xd0
[ 2275.433208]  do_sendfile+0xad7/0x1230
[ 2275.433972]  ? bit_wait_io_timeout+0x160/0x160
[ 2275.434897]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2275.435931]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2275.437034]  ? vfs_write+0x422/0xac0
[ 2275.437777]  __x64_sys_sendfile64+0x1cd/0x210
[ 2275.438685]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2275.439750]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2275.440792]  do_syscall_64+0x3b/0x90
[ 2275.441539]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2275.442595] RIP: 0033:0x7fdbfaa6cb19
05:27:23 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x1000000, 0x0, 0x0)

[ 2275.443330] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2275.447214] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2275.448741] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2275.450174] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2275.451623] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2275.453059] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2275.454493] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2275.455940]  </TASK>
05:27:23 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x42000, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)
ioctl$CDROM_DEBUG(r0, 0x5330, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r1, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
ioctl$CDROM_SEND_PACKET(r0, 0x5393, &(0x7f0000000240)={"c0834f27ad373472a72893d7", &(0x7f0000000180)="2533413f1334957b288c202881df50cef8a6978b8d43ba58a4cf677cfde7b8407321903b8cd308b83d47b29ce5817d855159d1ca9d1d37912fd91a906bdfa11d", 0x40, 0x1868, &(0x7f00000001c0)={0x53, 0x1, 0x0, 0x6, 0x0, 0x1, 0x0, "030019d9", 0x1, "172e6c5f", 0xff, 0x7f, 0x50, "54609b", "82ceb4f071083ae02299c14d6a03e6e5c94563efd31a3f523b957ef46034aac67e6aa6088ce4ba5bea4b79fc4983"}, 0x2, 0x3f, 0x3fc, &(0x7f0000000200)})
r2 = dup2(r1, r1)
ioctl$CDROM_GET_CAPABILITY(r2, 0x5331)
ioctl$CDROM_SEND_PACKET(r1, 0x5393, &(0x7f0000000140)={"62a15ec6e2814a08397a5c31", &(0x7f0000000040)="416142c324f20c2453d2b2a3bbf96ff3b399843fc5a47da9d1acd2dc01ff2b6a94e1f9cb56a72a15fc965c17ea0be4158b55db5945d060f1722844e7ffca0958c6cd8305c2b9d6b05c9f536234bf3b4b2eb9aa0d1e6d6a1b5fc27237eadc1cdee95b649aed31a0960d85eaccc4645379cd4245", 0x73, 0x200, &(0x7f00000000c0)={0x4, 0x1, 0x81, 0x1, 0x0, 0x1, 0x0, "8b6dc02a", 0x7f, "e8b05f21", 0x1, 0x4, 0x3f, "19c84e", "d83dcb233cedd2d2527cfc50b1ac01da7233216a26c28405618ec8249187ea061f2c93b043b3d5f211cdfadbf704"}, 0x0, 0x3ff, 0x1f, &(0x7f0000000100)})

05:27:23 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000300)=<r1=>0x0)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000080)=<r3=>0x0)
capset(&(0x7f0000000340)={0x20080522, r3}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
r4 = gettid()
r5 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r5, 0x5429, &(0x7f0000000080)=<r6=>0x0)
capset(&(0x7f0000000340)={0x20080522, r6}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
r7 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r7, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
clone3(&(0x7f0000000380)={0x200000, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x26}, &(0x7f0000000100)=""/233, 0xe9, &(0x7f0000000200)=""/245, &(0x7f0000000340)=[r1, 0x0, 0x0, r3, r4, r0, r0, r6], 0x8, {r7}}, 0x58)

05:27:37 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 7)

05:27:37 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x4000}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:27:37 executing program 3:
ioctl$AUTOFS_IOC_PROTOVER(0xffffffffffffffff, 0x80049363, &(0x7f0000000000))
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {<r1=>r0}}, './file0\x00'})
ioctl$EVIOCGSW(r1, 0x8040451b, &(0x7f0000000080)=""/8)

05:27:37 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)

05:27:37 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x2000000, 0x0, 0x0)

05:27:37 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4b49, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x2, 0x0)

05:27:37 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 19)

05:27:37 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 19)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

[ 2289.759655] FAULT_INJECTION: forcing a failure.
[ 2289.759655] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2289.761000] CPU: 0 PID: 14463 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2289.761925] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2289.763192] Call Trace:
[ 2289.763468]  <TASK>
[ 2289.763716]  dump_stack_lvl+0x8b/0xb3
[ 2289.764152]  should_fail.cold+0x5/0xa
[ 2289.764577]  prepare_alloc_pages+0x17b/0x500
[ 2289.765081]  __alloc_pages+0x131/0x4e0
[ 2289.765514]  ? lock_downgrade+0x6d0/0x6d0
[ 2289.765974]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2289.766657]  ? xa_load+0x158/0x290
[ 2289.767059]  ? xas_find_conflict+0x9e0/0x9e0
[ 2289.767556]  alloc_pages+0x1a0/0x2f0
[ 2289.767982]  filemap_alloc_folio+0x8e/0xb0
[ 2289.768453]  page_cache_ra_unbounded+0x1af/0x540
[ 2289.768987]  ondemand_readahead+0x642/0x1270
[ 2289.769483]  page_cache_sync_ra+0x1c5/0x200
[ 2289.769965]  filemap_get_pages+0x29e/0x1680
[ 2289.770454]  ? lock_downgrade+0x6d0/0x6d0
[ 2289.770938]  ? unwind_next_frame+0xdfe/0x20a0
[ 2289.771436]  ? filemap_add_folio+0x1b0/0x1b0
[ 2289.771928]  ? lock_is_held_type+0xd7/0x130
[ 2289.772408]  filemap_read+0x311/0xba0
[ 2289.772856]  ? filemap_get_pages+0x1680/0x1680
[ 2289.773363]  ? filter_irq_stacks+0x90/0x90
[ 2289.773830]  ? __stack_depot_save+0x35/0x450
[ 2289.774304]  ? kasan_save_stack+0x2e/0x40
[ 2289.774777]  ? kasan_save_stack+0x1e/0x40
[ 2289.775243]  ? __kasan_kmalloc+0x81/0xa0
[ 2289.775680]  ? alloc_pipe_info+0x1e0/0x580
[ 2289.776157]  ? splice_direct_to_actor+0x700/0x8e0
[ 2289.776696]  ? do_splice_direct+0x1b8/0x280
[ 2289.777176]  ? do_sendfile+0xad7/0x1230
[ 2289.777603]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2289.778116]  ? do_syscall_64+0x3b/0x90
[ 2289.778549]  generic_file_read_iter+0x3c9/0x530
[ 2289.779082]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2289.779699]  ? __fsnotify_parent+0x498/0xa60
[ 2289.780175]  ext4_file_read_iter+0x184/0x3f0
[ 2289.780665]  generic_file_splice_read+0x3b9/0x5d0
[ 2289.781208]  ? pipe_to_user+0x170/0x170
[ 2289.781641]  ? security_file_permission+0xb1/0xd0
[ 2289.782163]  ? pipe_to_user+0x170/0x170
[ 2289.782608]  do_splice_to+0x1bc/0x240
[ 2289.783019]  ? inode_has_perm+0x1d0/0x1d0
[ 2289.783480]  splice_direct_to_actor+0x2c7/0x8e0
[ 2289.784046]  ? pipe_to_sendpage+0x380/0x380
[ 2289.784603]  ? do_splice_to+0x240/0x240
[ 2289.785028]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2289.785639]  ? security_file_permission+0xb1/0xd0
[ 2289.786148]  do_splice_direct+0x1b8/0x280
[ 2289.786619]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2289.787149]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2289.787776]  ? security_file_permission+0xb1/0xd0
[ 2289.788292]  do_sendfile+0xad7/0x1230
[ 2289.788726]  ? bit_wait_io_timeout+0x160/0x160
[ 2289.789261]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2289.789887]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2289.790471]  ? vfs_write+0x422/0xac0
[ 2289.790901]  __x64_sys_sendfile64+0x1cd/0x210
[ 2289.791401]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2289.791996]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2289.792541]  do_syscall_64+0x3b/0x90
[ 2289.792958]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2289.793533] RIP: 0033:0x7f1455db8b19
[ 2289.793945] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2289.795980] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2289.796843] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2289.797625] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2289.798556] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2289.799344] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2289.800124] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2289.800918]  </TASK>
[ 2289.809465] FAULT_INJECTION: forcing a failure.
[ 2289.809465] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2289.811125] CPU: 0 PID: 14465 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2289.812124] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2289.813324] Call Trace:
[ 2289.813603]  <TASK>
[ 2289.813849]  dump_stack_lvl+0x8b/0xb3
[ 2289.814287]  should_fail.cold+0x5/0xa
[ 2289.814729]  prepare_alloc_pages+0x17b/0x500
[ 2289.815236]  __alloc_pages+0x131/0x4e0
[ 2289.815669]  ? lock_downgrade+0x6d0/0x6d0
[ 2289.816131]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2289.816797]  ? xa_load+0x158/0x290
[ 2289.817189]  ? xas_find_conflict+0x9e0/0x9e0
[ 2289.817677]  alloc_pages+0x1a0/0x2f0
[ 2289.818069]  filemap_alloc_folio+0x8e/0xb0
[ 2289.818549]  page_cache_ra_unbounded+0x1af/0x540
[ 2289.819065]  ondemand_readahead+0x642/0x1270
[ 2289.819559]  page_cache_sync_ra+0x1c5/0x200
[ 2289.820054]  filemap_get_pages+0x29e/0x1680
[ 2289.820542]  ? lock_downgrade+0x6d0/0x6d0
[ 2289.821012]  ? unwind_next_frame+0xdfe/0x20a0
[ 2289.821520]  ? filemap_add_folio+0x1b0/0x1b0
[ 2289.822023]  ? lock_is_held_type+0xd7/0x130
[ 2289.822502]  filemap_read+0x311/0xba0
[ 2289.822962]  ? filemap_get_pages+0x1680/0x1680
[ 2289.823474]  ? filter_irq_stacks+0x90/0x90
[ 2289.823940]  ? __stack_depot_save+0x35/0x450
[ 2289.824437]  ? kasan_save_stack+0x2e/0x40
[ 2289.824901]  ? kasan_save_stack+0x1e/0x40
[ 2289.825364]  ? __kasan_kmalloc+0x81/0xa0
[ 2289.825817]  ? alloc_pipe_info+0x1e0/0x580
[ 2289.826285]  ? splice_direct_to_actor+0x700/0x8e0
[ 2289.826828]  ? do_splice_direct+0x1b8/0x280
[ 2289.827320]  ? do_sendfile+0xad7/0x1230
[ 2289.827763]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2289.828290]  ? do_syscall_64+0x3b/0x90
[ 2289.828732]  generic_file_read_iter+0x3c9/0x530
[ 2289.829251]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2289.829861]  ? __fsnotify_parent+0x498/0xa60
[ 2289.830354]  ext4_file_read_iter+0x184/0x3f0
[ 2289.830866]  generic_file_splice_read+0x3b9/0x5d0
[ 2289.831417]  ? pipe_to_user+0x170/0x170
[ 2289.831868]  ? security_file_permission+0xb1/0xd0
[ 2289.832411]  ? pipe_to_user+0x170/0x170
[ 2289.832860]  do_splice_to+0x1bc/0x240
[ 2289.833282]  ? inode_has_perm+0x1d0/0x1d0
[ 2289.833745]  splice_direct_to_actor+0x2c7/0x8e0
[ 2289.834269]  ? pipe_to_sendpage+0x380/0x380
[ 2289.834769]  ? do_splice_to+0x240/0x240
[ 2289.835212]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2289.835826]  ? security_file_permission+0xb1/0xd0
[ 2289.836377]  do_splice_direct+0x1b8/0x280
[ 2289.836842]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2289.837377]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2289.837988]  ? security_file_permission+0xb1/0xd0
[ 2289.838538]  do_sendfile+0xad7/0x1230
[ 2289.838981]  ? bit_wait_io_timeout+0x160/0x160
[ 2289.839498]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2289.840076]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2289.840698]  ? vfs_write+0x422/0xac0
[ 2289.841118]  __x64_sys_sendfile64+0x1cd/0x210
[ 2289.841630]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2289.842231]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2289.842819]  do_syscall_64+0x3b/0x90
[ 2289.843229]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2289.843806] RIP: 0033:0x7fdbfaa6cb19
[ 2289.844214] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2289.846267] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2289.847115] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2289.847913] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2289.847942] FAULT_INJECTION: forcing a failure.
[ 2289.847942] name failslab, interval 1, probability 0, space 0, times 0
[ 2289.848699] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2289.848710] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2289.852647] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2289.853451]  </TASK>
[ 2289.853710] CPU: 1 PID: 14477 Comm: syz-executor.7 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2289.855526] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2289.857964] Call Trace:
[ 2289.858504]  <TASK>
[ 2289.859001]  dump_stack_lvl+0x8b/0xb3
[ 2289.859814]  should_fail.cold+0x5/0xa
[ 2289.860639]  ? create_object.isra.0+0x3a/0xa20
[ 2289.861633]  should_failslab+0x5/0x10
[ 2289.862448]  kmem_cache_alloc+0x5b/0x480
[ 2289.863342]  create_object.isra.0+0x3a/0xa20
[ 2289.864276]  ? kasan_unpoison+0x23/0x50
[ 2289.865125]  kmem_cache_alloc_lru+0x2d3/0x7c0
[ 2289.866081]  ? xas_alloc+0x35d/0x480
[ 2289.866914]  xas_alloc+0x35d/0x480
[ 2289.867668]  xas_create+0x35b/0x1030
[ 2289.868478]  ? lock_acquire+0x1b2/0x530
[ 2289.869330]  ? lock_is_held_type+0xd7/0x130
[ 2289.870272]  xas_store+0x90/0x1c40
[ 2289.871033]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[ 2289.872117]  ? xas_find_conflict+0x4a6/0x9e0
[ 2289.873078]  __filemap_add_folio+0x3c6/0xf60
[ 2289.874050]  ? filemap_map_pages+0x1350/0x1350
[ 2289.875067]  ? memcg_list_lru_alloc+0xb10/0xb10
[ 2289.876066]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2289.877258]  filemap_add_folio+0x9b/0x1b0
[ 2289.878162]  ? add_to_page_cache_locked+0x160/0x160
[ 2289.879239]  ? alloc_pages+0x1a8/0x2f0
[ 2289.880099]  page_cache_ra_unbounded+0x1d3/0x540
[ 2289.881137]  ondemand_readahead+0x642/0x1270
[ 2289.882111]  page_cache_sync_ra+0x1c5/0x200
[ 2289.883049]  filemap_get_pages+0x29e/0x1680
[ 2289.883999]  ? lock_downgrade+0x6d0/0x6d0
[ 2289.884907]  ? unwind_next_frame+0xdfe/0x20a0
[ 2289.885869]  ? filemap_add_folio+0x1b0/0x1b0
[ 2289.886832]  ? lock_is_held_type+0xd7/0x130
[ 2289.887770]  filemap_read+0x311/0xba0
[ 2289.888611]  ? filemap_get_pages+0x1680/0x1680
[ 2289.889597]  ? filter_irq_stacks+0x90/0x90
[ 2289.890498]  ? __stack_depot_save+0x35/0x450
[ 2289.891456]  ? kasan_save_stack+0x2e/0x40
[ 2289.892326]  ? kasan_save_stack+0x1e/0x40
[ 2289.893216]  ? __kasan_kmalloc+0x81/0xa0
[ 2289.894093]  ? alloc_pipe_info+0x1e0/0x580
[ 2289.895017]  ? splice_direct_to_actor+0x700/0x8e0
[ 2289.896065]  ? do_splice_direct+0x1b8/0x280
[ 2289.897005]  ? do_sendfile+0xad7/0x1230
[ 2289.897856]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2289.898860]  ? do_syscall_64+0x3b/0x90
[ 2289.899715]  generic_file_read_iter+0x3c9/0x530
[ 2289.900734]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2289.901929]  ? __fsnotify_parent+0x498/0xa60
[ 2289.902886]  ext4_file_read_iter+0x184/0x3f0
[ 2289.903861]  generic_file_splice_read+0x3b9/0x5d0
[ 2289.904908]  ? pipe_to_user+0x170/0x170
[ 2289.905802]  ? security_file_permission+0xb1/0xd0
[ 2289.906867]  ? pipe_to_user+0x170/0x170
[ 2289.907743]  do_splice_to+0x1bc/0x240
[ 2289.908562]  ? inode_has_perm+0x1d0/0x1d0
[ 2289.909485]  splice_direct_to_actor+0x2c7/0x8e0
[ 2289.910508]  ? pipe_to_sendpage+0x380/0x380
[ 2289.911454]  ? do_splice_to+0x240/0x240
[ 2289.912323]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2289.913503]  ? security_file_permission+0xb1/0xd0
[ 2289.914564]  do_splice_direct+0x1b8/0x280
[ 2289.915467]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2289.916536]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2289.917714]  ? security_file_permission+0xb1/0xd0
[ 2289.918794]  do_sendfile+0xad7/0x1230
[ 2289.919621]  ? bit_wait_io_timeout+0x160/0x160
[ 2289.920623]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2289.921732]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2289.922927]  ? vfs_write+0x422/0xac0
[ 2289.923732]  __x64_sys_sendfile64+0x1cd/0x210
[ 2289.924703]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2289.925847]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2289.926987]  do_syscall_64+0x3b/0x90
[ 2289.927805]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2289.928916] RIP: 0033:0x7f78f45e7b19
[ 2289.929709] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2289.933647] RSP: 002b:00007f78f1b3c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2289.935286] RAX: ffffffffffffffda RBX: 00007f78f46fb020 RCX: 00007f78f45e7b19
[ 2289.936811] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2289.938357] RBP: 00007f78f1b3c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2289.939890] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[ 2289.941416] R13: 00007ffee552a8df R14: 00007f78f1b3c300 R15: 0000000000022000
[ 2289.942986]  </TASK>
05:27:37 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 20)

05:27:37 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x3000000, 0x0, 0x0)

05:27:37 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 20)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

[ 2290.012041] FAULT_INJECTION: forcing a failure.
[ 2290.012041] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2290.013412] CPU: 0 PID: 14564 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2290.014267] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2290.015445] Call Trace:
[ 2290.015712]  <TASK>
[ 2290.015944]  dump_stack_lvl+0x8b/0xb3
[ 2290.016358]  should_fail.cold+0x5/0xa
[ 2290.016763]  prepare_alloc_pages+0x17b/0x500
[ 2290.017236]  __alloc_pages+0x131/0x4e0
[ 2290.017643]  ? lock_downgrade+0x6d0/0x6d0
[ 2290.018104]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2290.018748]  ? xa_load+0x158/0x290
[ 2290.019137]  ? xas_find_conflict+0x9e0/0x9e0
[ 2290.019609]  alloc_pages+0x1a0/0x2f0
[ 2290.020019]  filemap_alloc_folio+0x8e/0xb0
[ 2290.020634]  page_cache_ra_unbounded+0x1af/0x540
[ 2290.021139]  ondemand_readahead+0x642/0x1270
[ 2290.021634]  page_cache_sync_ra+0x1c5/0x200
[ 2290.022082]  filemap_get_pages+0x29e/0x1680
[ 2290.022558]  ? lock_downgrade+0x6d0/0x6d0
[ 2290.023006]  ? unwind_next_frame+0xdfe/0x20a0
[ 2290.023495]  ? filemap_add_folio+0x1b0/0x1b0
[ 2290.023958]  ? lock_is_held_type+0xd7/0x130
[ 2290.024431]  filemap_read+0x311/0xba0
[ 2290.024878]  ? filemap_get_pages+0x1680/0x1680
[ 2290.025387]  ? filter_irq_stacks+0x90/0x90
[ 2290.025861]  ? __stack_depot_save+0x35/0x450
[ 2290.026351]  ? kasan_save_stack+0x2e/0x40
[ 2290.026815]  ? kasan_save_stack+0x1e/0x40
[ 2290.027273]  ? __kasan_kmalloc+0x81/0xa0
[ 2290.027712]  ? alloc_pipe_info+0x1e0/0x580
[ 2290.028170]  ? splice_direct_to_actor+0x700/0x8e0
[ 2290.028712]  ? do_splice_direct+0x1b8/0x280
[ 2290.029192]  ? do_sendfile+0xad7/0x1230
[ 2290.029640]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2290.030152]  ? do_syscall_64+0x3b/0x90
[ 2290.030592]  generic_file_read_iter+0x3c9/0x530
[ 2290.031134]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2290.031739]  ? __fsnotify_parent+0x498/0xa60
[ 2290.032225]  ext4_file_read_iter+0x184/0x3f0
[ 2290.032722]  generic_file_splice_read+0x3b9/0x5d0
[ 2290.033269]  ? pipe_to_user+0x170/0x170
[ 2290.033729]  ? security_file_permission+0xb1/0xd0
[ 2290.034249]  ? pipe_to_user+0x170/0x170
[ 2290.034691]  do_splice_to+0x1bc/0x240
[ 2290.035128]  ? inode_has_perm+0x1d0/0x1d0
[ 2290.035570]  splice_direct_to_actor+0x2c7/0x8e0
[ 2290.036097]  ? pipe_to_sendpage+0x380/0x380
[ 2290.036578]  ? do_splice_to+0x240/0x240
[ 2290.037007]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2290.037608]  ? security_file_permission+0xb1/0xd0
[ 2290.038143]  do_splice_direct+0x1b8/0x280
[ 2290.038611]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2290.039133]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2290.039744]  ? security_file_permission+0xb1/0xd0
[ 2290.040242]  do_sendfile+0xad7/0x1230
[ 2290.040668]  ? bit_wait_io_timeout+0x160/0x160
[ 2290.041179]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2290.041754]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2290.042371]  ? vfs_write+0x422/0xac0
[ 2290.042795]  __x64_sys_sendfile64+0x1cd/0x210
[ 2290.043296]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2290.043890]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2290.044474]  do_syscall_64+0x3b/0x90
[ 2290.044898]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2290.045467] RIP: 0033:0x7fdbfaa6cb19
[ 2290.045874] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2290.047925] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2290.048754] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2290.049532] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2290.050320] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2290.051119] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2290.051892] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2290.052686]  </TASK>
05:27:37 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x4100}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

[ 2290.082409] FAULT_INJECTION: forcing a failure.
[ 2290.082409] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2290.084965] CPU: 1 PID: 14565 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2290.086593] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2290.088809] Call Trace:
[ 2290.089307]  <TASK>
[ 2290.089751]  dump_stack_lvl+0x8b/0xb3
[ 2290.090518]  should_fail.cold+0x5/0xa
[ 2290.091291]  prepare_alloc_pages+0x17b/0x500
[ 2290.092177]  __alloc_pages+0x131/0x4e0
[ 2290.092943]  ? lock_downgrade+0x6d0/0x6d0
[ 2290.093767]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2290.094977]  ? xa_load+0x158/0x290
[ 2290.095679]  ? xas_find_conflict+0x9e0/0x9e0
[ 2290.096550]  alloc_pages+0x1a0/0x2f0
[ 2290.097293]  filemap_alloc_folio+0x8e/0xb0
[ 2290.098134]  page_cache_ra_unbounded+0x1af/0x540
[ 2290.099126]  ondemand_readahead+0x642/0x1270
[ 2290.100026]  page_cache_sync_ra+0x1c5/0x200
[ 2290.100911]  filemap_get_pages+0x29e/0x1680
[ 2290.101795]  ? lock_downgrade+0x6d0/0x6d0
[ 2290.102622]  ? unwind_next_frame+0xdfe/0x20a0
[ 2290.103754]  ? filemap_add_folio+0x1b0/0x1b0
[ 2290.104649]  ? lock_is_held_type+0xd7/0x130
[ 2290.105511]  filemap_read+0x311/0xba0
[ 2290.106318]  ? filemap_get_pages+0x1680/0x1680
[ 2290.107232]  ? filter_irq_stacks+0x90/0x90
[ 2290.108073]  ? __stack_depot_save+0x35/0x450
[ 2290.108975]  ? kasan_save_stack+0x2e/0x40
[ 2290.109794]  ? kasan_save_stack+0x1e/0x40
[ 2290.110604]  ? __kasan_kmalloc+0x81/0xa0
[ 2290.111438]  ? alloc_pipe_info+0x1e0/0x580
[ 2290.112270]  ? splice_direct_to_actor+0x700/0x8e0
[ 2290.113255]  ? do_splice_direct+0x1b8/0x280
[ 2290.114111]  ? do_sendfile+0xad7/0x1230
[ 2290.114932]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2290.115850]  ? do_syscall_64+0x3b/0x90
[ 2290.116629]  generic_file_read_iter+0x3c9/0x530
[ 2290.117573]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2290.118660]  ? __fsnotify_parent+0x498/0xa60
[ 2290.119556]  ext4_file_read_iter+0x184/0x3f0
[ 2290.120438]  generic_file_splice_read+0x3b9/0x5d0
[ 2290.121417]  ? pipe_to_user+0x170/0x170
[ 2290.122226]  ? security_file_permission+0xb1/0xd0
[ 2290.123228]  ? pipe_to_user+0x170/0x170
[ 2290.124031]  do_splice_to+0x1bc/0x240
[ 2290.124788]  ? inode_has_perm+0x1d0/0x1d0
[ 2290.125626]  splice_direct_to_actor+0x2c7/0x8e0
[ 2290.126552]  ? pipe_to_sendpage+0x380/0x380
[ 2290.127444]  ? do_splice_to+0x240/0x240
[ 2290.128238]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2290.129328]  ? security_file_permission+0xb1/0xd0
[ 2290.130295]  do_splice_direct+0x1b8/0x280
[ 2290.131139]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2290.132101]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2290.133190]  ? security_file_permission+0xb1/0xd0
[ 2290.134147]  do_sendfile+0xad7/0x1230
[ 2290.134930]  ? bit_wait_io_timeout+0x160/0x160
[ 2290.135833]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2290.136856]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2290.137939]  ? vfs_write+0x422/0xac0
[ 2290.138683]  __x64_sys_sendfile64+0x1cd/0x210
[ 2290.139603]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2290.140667]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2290.141693]  do_syscall_64+0x3b/0x90
[ 2290.142444]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2290.143573] RIP: 0033:0x7f1455db8b19
[ 2290.144336] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2290.148029] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2290.149555] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2290.151060] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2290.152498] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2290.153922] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2290.155352] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2290.156804]  </TASK>
05:27:51 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 21)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:27:51 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c80, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x2, 0x0)

05:27:51 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 21)

05:27:51 executing program 5:
r0 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80))
symlinkat(&(0x7f0000000000)='./file0\x00', r0, &(0x7f0000000040)='./file0\x00')
linkat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000000100)='./file1\x00', 0x1000)
pwritev(r0, &(0x7f00000001c0)=[{&(0x7f0000000040)="6520b069d8a4a9168e29c2c87062f4927301a8e9cf7d151467cf890145c2f2953706d154992b75a5c9e4cecee734bdde21c6f591d813e11dd59fa6d6b2e7b3a0cc4857f7d6ed035defe0d3e7462b00e47c846777922133b83f89bb7ca33f0d8f5c96452950923b1cf5519d2124a2ba927bc4e49c6f6bdd113409b73eb30f1aa9c92c3d6fd181a7bf01304efdb50958d85a09e27269b7ff41a2369838cf2f2479d48898dd8dabe7897724f419fd0dc3e77cbd04f4888f6ee7e0f0a091ea7b76479cfb94f986ae23135d37d89e72122702d3ee055e8a00cde758", 0xd9}, {&(0x7f0000000140)="fbf6f5ec4d1f1fb8d4d086f534ab7d3b", 0x10}, {&(0x7f0000000180)="74ad95ad1882404c4932c3b42a305d4dc839a1ef5010287c8e49d876c5d4bfa48f88dd04399df76b2154251d4908609263cba585b0cee0ae", 0x38}], 0x3, 0x0, 0x100)
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$DVD_AUTH(r1, 0x80041284, 0x0)
r2 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80))
symlinkat(&(0x7f0000000000)='./file0\x00', r2, &(0x7f0000000040)='./file0\x00')
linkat(r2, &(0x7f00000000c0)='./file0\x00', r2, &(0x7f0000000100)='./file1\x00', 0x1000)
renameat(r2, &(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file1\x00')

05:27:51 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 8)

05:27:51 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x8100}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:27:51 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x3f000000, 0x0, 0x0)

05:27:51 executing program 3:
r0 = clone3(&(0x7f0000000000)={0x0, &(0x7f00000000c0), 0x0, 0x0, {0x80080}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000000080)=<r2=>0x0)
capset(&(0x7f0000000340)={0x20080522, r2}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000200)={0x0, <r3=>0x0})
r4 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r4, 0x5429, &(0x7f0000000080)=<r5=>0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000640), 0x101000, 0x0)
capset(&(0x7f0000000340)={0x20080522, r5}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
clock_gettime(0x0, &(0x7f0000005740)={<r6=>0x0, <r7=>0x0})
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000005500)=[{{&(0x7f0000000280), 0x6e, &(0x7f0000000440)=[{&(0x7f0000000300)=""/212, 0xd4}, {&(0x7f0000000400)=""/51, 0x33}], 0x2, &(0x7f0000000480)=[@cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x70}}, {{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000500)=""/104, 0x68}, {&(0x7f0000000580)=""/62, 0x3e}, {&(0x7f00000005c0)=""/72, 0x48}, {&(0x7f0000000640)}, {&(0x7f0000000680)=""/188, 0xbc}, {&(0x7f0000000740)=""/100, 0x64}], 0x6, &(0x7f0000000840)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x50}}, {{&(0x7f00000008c0)=@abs, 0x6e, &(0x7f0000000a80)=[{&(0x7f0000000940)=""/135, 0x87}, {&(0x7f0000000a00)=""/108, 0x6c}], 0x2, &(0x7f0000000ac0)=[@cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x50}}, {{0x0, 0x0, &(0x7f0000000c40)=[{&(0x7f0000000b40)=""/155, 0x9b}, {&(0x7f0000000c00)=""/23, 0x17}], 0x2, &(0x7f0000000c80)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {<r8=>0x0}}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x158}}, {{&(0x7f0000000e00)=@abs, 0x6e, &(0x7f00000011c0)=[{&(0x7f0000000e80)=""/57, 0x39}, {&(0x7f0000000ec0)=""/233, 0xe9}, {&(0x7f0000000fc0)=""/30, 0x1e}, {&(0x7f0000001000)=""/250, 0xfa}, {&(0x7f0000001100)=""/143, 0x8f}], 0x5}}, {{&(0x7f0000001240)=@abs, 0x6e, &(0x7f0000001380)=[{&(0x7f00000012c0)=""/175, 0xaf}], 0x1, &(0x7f00000013c0)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xc8}}, {{&(0x7f00000014c0), 0x6e, &(0x7f0000001580)=[{&(0x7f0000001540)=""/40, 0x28}], 0x1}}, {{&(0x7f00000015c0), 0x6e, &(0x7f0000003a00)=[{&(0x7f0000001640)=""/4096, 0x1000}, {&(0x7f0000002640)}, {&(0x7f0000002680)=""/237, 0xed}, {&(0x7f0000002780)=""/70, 0x46}, {&(0x7f0000002800)=""/188, 0xbc}, {&(0x7f00000028c0)=""/212, 0xd4}, {&(0x7f00000029c0)=""/4096, 0x1000}, {&(0x7f00000039c0)=""/61, 0x3d}], 0x8, &(0x7f0000003a80)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x110}}, {{&(0x7f0000003bc0)=@abs, 0x6e, &(0x7f0000005380)=[{&(0x7f0000003c40)=""/176, 0xb0}, {&(0x7f0000003d00)=""/228, 0xe4}, {&(0x7f0000003e00)=""/103, 0xfffffffffffffeb7}, {&(0x7f0000003e80)=""/104, 0x68}, {&(0x7f0000003f00)=""/4096, 0x1000}, {&(0x7f0000004f00)=""/219, 0xdb}, {&(0x7f0000005000)=""/85, 0x55}, {&(0x7f0000005080)=""/227, 0xe3}, {&(0x7f0000005180)=""/217, 0xd9}, {&(0x7f0000005280)=""/196, 0xc4}], 0xa, &(0x7f0000005440)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}], 0x88}}], 0x9, 0x20200, &(0x7f0000005780)={r6, r7+10000000})
r9 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000005800), 0x100, 0x0)
clone3(&(0x7f0000005840)={0x80100000, &(0x7f0000000080), &(0x7f0000000100), &(0x7f0000000140), {0x9}, &(0x7f0000000180)=""/10, 0xa, &(0x7f00000001c0)=""/37, &(0x7f00000057c0)=[r2, r3, r5, r8, r0], 0x5, {r9}}, 0x58)

[ 2303.724837] FAULT_INJECTION: forcing a failure.
[ 2303.724837] name failslab, interval 1, probability 0, space 0, times 0
[ 2303.726085] CPU: 0 PID: 14618 Comm: syz-executor.7 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2303.726977] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2303.728295] Call Trace:
[ 2303.728561]  <TASK>
[ 2303.728794]  dump_stack_lvl+0x8b/0xb3
[ 2303.729220]  should_fail.cold+0x5/0xa
[ 2303.729648]  should_failslab+0x5/0x10
[ 2303.730058]  kmem_cache_alloc_lru+0x60/0x7c0
[ 2303.730532]  ? xas_alloc+0x35d/0x480
[ 2303.730943]  xas_alloc+0x35d/0x480
[ 2303.731335]  xas_create+0x35b/0x1030
[ 2303.731736]  ? lock_acquire+0x1b2/0x530
[ 2303.732187]  ? lock_is_held_type+0xd7/0x130
[ 2303.732650]  xas_store+0x90/0x1c40
[ 2303.733018]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[ 2303.733554]  ? xas_find_conflict+0x4a6/0x9e0
[ 2303.734017]  __filemap_add_folio+0x3c6/0xf60
[ 2303.734507]  ? filemap_map_pages+0x1350/0x1350
[ 2303.735017]  ? memcg_list_lru_alloc+0xb10/0xb10
[ 2303.735531]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2303.736143]  filemap_add_folio+0x9b/0x1b0
[ 2303.736603]  ? add_to_page_cache_locked+0x160/0x160
[ 2303.737471]  ? alloc_pages+0x1a8/0x2f0
[ 2303.737888]  page_cache_ra_unbounded+0x1d3/0x540
[ 2303.738411]  ondemand_readahead+0x642/0x1270
[ 2303.738880]  page_cache_sync_ra+0x1c5/0x200
[ 2303.739362]  filemap_get_pages+0x29e/0x1680
[ 2303.739822]  ? lock_downgrade+0x6d0/0x6d0
[ 2303.740272]  ? unwind_next_frame+0xdfe/0x20a0
[ 2303.740746]  ? filemap_add_folio+0x1b0/0x1b0
[ 2303.741222]  ? lock_is_held_type+0xd7/0x130
[ 2303.741535] FAULT_INJECTION: forcing a failure.
[ 2303.741535] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2303.741676]  filemap_read+0x311/0xba0
[ 2303.744536]  ? filemap_get_pages+0x1680/0x1680
[ 2303.745042]  ? filter_irq_stacks+0x90/0x90
[ 2303.745493]  ? __stack_depot_save+0x35/0x450
[ 2303.745974]  ? kasan_save_stack+0x2e/0x40
[ 2303.746407]  ? kasan_save_stack+0x1e/0x40
[ 2303.746850]  ? __kasan_kmalloc+0x81/0xa0
[ 2303.747297]  ? alloc_pipe_info+0x1e0/0x580
[ 2303.747749]  ? splice_direct_to_actor+0x700/0x8e0
[ 2303.748254]  ? do_splice_direct+0x1b8/0x280
[ 2303.748717]  ? do_sendfile+0xad7/0x1230
[ 2303.749130]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2303.749641]  ? do_syscall_64+0x3b/0x90
[ 2303.750068]  generic_file_read_iter+0x3c9/0x530
[ 2303.750560]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2303.751185]  ? __fsnotify_parent+0x498/0xa60
[ 2303.751661]  ext4_file_read_iter+0x184/0x3f0
[ 2303.752137]  generic_file_splice_read+0x3b9/0x5d0
[ 2303.752667]  ? pipe_to_user+0x170/0x170
[ 2303.753111]  ? security_file_permission+0xb1/0xd0
[ 2303.753638]  ? pipe_to_user+0x170/0x170
[ 2303.754070]  do_splice_to+0x1bc/0x240
[ 2303.754491]  ? inode_has_perm+0x1d0/0x1d0
[ 2303.754958]  splice_direct_to_actor+0x2c7/0x8e0
[ 2303.755468]  ? pipe_to_sendpage+0x380/0x380
[ 2303.755944]  ? do_splice_to+0x240/0x240
[ 2303.756381]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2303.756982]  ? security_file_permission+0xb1/0xd0
[ 2303.757510]  do_splice_direct+0x1b8/0x280
[ 2303.757962]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2303.758493]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2303.759095]  ? security_file_permission+0xb1/0xd0
[ 2303.759624]  do_sendfile+0xad7/0x1230
[ 2303.760041]  ? bit_wait_io_timeout+0x160/0x160
[ 2303.760542]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2303.761103]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2303.761707]  ? vfs_write+0x422/0xac0
[ 2303.762113]  __x64_sys_sendfile64+0x1cd/0x210
[ 2303.762599]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2303.763176]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2303.763746]  do_syscall_64+0x3b/0x90
[ 2303.764157]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2303.764724] RIP: 0033:0x7f78f45e7b19
[ 2303.765127] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2303.767121] RSP: 002b:00007f78f1b5d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2303.767938] RAX: ffffffffffffffda RBX: 00007f78f46faf60 RCX: 00007f78f45e7b19
[ 2303.768701] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2303.769460] RBP: 00007f78f1b5d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2303.770223] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[ 2303.770997] R13: 00007ffee552a8df R14: 00007f78f1b5d300 R15: 0000000000022000
[ 2303.771772]  </TASK>
[ 2303.772019] CPU: 1 PID: 14604 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2303.773827] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2303.776283] Call Trace:
[ 2303.776837]  <TASK>
[ 2303.777325]  dump_stack_lvl+0x8b/0xb3
[ 2303.777575] FAULT_INJECTION: forcing a failure.
[ 2303.777575] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2303.778165]  should_fail.cold+0x5/0xa
[ 2303.780236]  prepare_alloc_pages+0x17b/0x500
[ 2303.781212]  __alloc_pages+0x131/0x4e0
[ 2303.782053]  ? lock_downgrade+0x6d0/0x6d0
[ 2303.782971]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2303.784288]  ? xa_load+0x158/0x290
[ 2303.785051]  ? xas_find_conflict+0x9e0/0x9e0
[ 2303.786013]  alloc_pages+0x1a0/0x2f0
[ 2303.786815]  filemap_alloc_folio+0x8e/0xb0
[ 2303.787737]  page_cache_ra_unbounded+0x1af/0x540
[ 2303.788775]  ondemand_readahead+0x642/0x1270
[ 2303.789733]  page_cache_sync_ra+0x1c5/0x200
[ 2303.790664]  filemap_get_pages+0x29e/0x1680
[ 2303.791620]  ? lock_downgrade+0x6d0/0x6d0
[ 2303.792511]  ? unwind_next_frame+0xdfe/0x20a0
[ 2303.793480]  ? filemap_add_folio+0x1b0/0x1b0
[ 2303.794437]  ? lock_is_held_type+0xd7/0x130
[ 2303.795391]  filemap_read+0x311/0xba0
[ 2303.796249]  ? filemap_get_pages+0x1680/0x1680
[ 2303.797244]  ? filter_irq_stacks+0x90/0x90
[ 2303.798152]  ? __stack_depot_save+0x35/0x450
[ 2303.799142]  ? kasan_save_stack+0x2e/0x40
[ 2303.800030]  ? kasan_save_stack+0x1e/0x40
[ 2303.800903]  ? __kasan_kmalloc+0x81/0xa0
[ 2303.801777]  ? alloc_pipe_info+0x1e0/0x580
[ 2303.802669]  ? splice_direct_to_actor+0x700/0x8e0
[ 2303.803726]  ? do_splice_direct+0x1b8/0x280
[ 2303.804650]  ? do_sendfile+0xad7/0x1230
[ 2303.805510]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2303.806490]  ? do_syscall_64+0x3b/0x90
[ 2303.807339]  generic_file_read_iter+0x3c9/0x530
[ 2303.808360]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2303.809546]  ? __fsnotify_parent+0x498/0xa60
[ 2303.810508]  ext4_file_read_iter+0x184/0x3f0
[ 2303.811490]  generic_file_splice_read+0x3b9/0x5d0
[ 2303.812548]  ? pipe_to_user+0x170/0x170
[ 2303.813435]  ? security_file_permission+0xb1/0xd0
[ 2303.814487]  ? pipe_to_user+0x170/0x170
[ 2303.815358]  do_splice_to+0x1bc/0x240
[ 2303.816206]  ? inode_has_perm+0x1d0/0x1d0
[ 2303.817105]  splice_direct_to_actor+0x2c7/0x8e0
[ 2303.818125]  ? pipe_to_sendpage+0x380/0x380
[ 2303.819090]  ? do_splice_to+0x240/0x240
[ 2303.819962]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2303.821163]  ? security_file_permission+0xb1/0xd0
[ 2303.822226]  do_splice_direct+0x1b8/0x280
[ 2303.823139]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2303.824205]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2303.825400]  ? security_file_permission+0xb1/0xd0
[ 2303.826461]  do_sendfile+0xad7/0x1230
[ 2303.827313]  ? bit_wait_io_timeout+0x160/0x160
[ 2303.828318]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2303.829444]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2303.830638]  ? vfs_write+0x422/0xac0
[ 2303.831455]  __x64_sys_sendfile64+0x1cd/0x210
[ 2303.832426]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2303.833581]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2303.834706]  do_syscall_64+0x3b/0x90
[ 2303.835529]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2303.836645] RIP: 0033:0x7f1455db8b19
[ 2303.837441] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2303.841419] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2303.843053] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2303.844581] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2303.846105] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2303.847639] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2303.849174] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2303.850735]  </TASK>
[ 2303.851248] CPU: 0 PID: 14621 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2303.852215] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2303.853447] Call Trace:
[ 2303.853726]  <TASK>
[ 2303.853965]  dump_stack_lvl+0x8b/0xb3
[ 2303.854386]  should_fail.cold+0x5/0xa
[ 2303.854814]  prepare_alloc_pages+0x17b/0x500
[ 2303.855308]  __alloc_pages+0x131/0x4e0
[ 2303.855726]  ? lock_downgrade+0x6d0/0x6d0
[ 2303.856176]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2303.856829]  ? xa_load+0x158/0x290
[ 2303.857218]  ? xas_find_conflict+0x9e0/0x9e0
[ 2303.857699]  alloc_pages+0x1a0/0x2f0
[ 2303.858108]  filemap_alloc_folio+0x8e/0xb0
[ 2303.858567]  page_cache_ra_unbounded+0x1af/0x540
[ 2303.859108]  ondemand_readahead+0x642/0x1270
[ 2303.859591]  page_cache_sync_ra+0x1c5/0x200
[ 2303.860069]  filemap_get_pages+0x29e/0x1680
[ 2303.860552]  ? lock_downgrade+0x6d0/0x6d0
[ 2303.861008]  ? unwind_next_frame+0xdfe/0x20a0
[ 2303.861492]  ? filemap_add_folio+0x1b0/0x1b0
[ 2303.861973]  ? lock_is_held_type+0xd7/0x130
[ 2303.862448]  filemap_read+0x311/0xba0
[ 2303.862878]  ? filemap_get_pages+0x1680/0x1680
[ 2303.863387]  ? filter_irq_stacks+0x90/0x90
[ 2303.863846]  ? __stack_depot_save+0x35/0x450
[ 2303.864325]  ? kasan_save_stack+0x2e/0x40
[ 2303.864769]  ? kasan_save_stack+0x1e/0x40
[ 2303.865215]  ? __kasan_kmalloc+0x81/0xa0
[ 2303.865655]  ? alloc_pipe_info+0x1e0/0x580
[ 2303.866108]  ? splice_direct_to_actor+0x700/0x8e0
[ 2303.866643]  ? do_splice_direct+0x1b8/0x280
[ 2303.867119]  ? do_sendfile+0xad7/0x1230
[ 2303.867557]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2303.868057]  ? do_syscall_64+0x3b/0x90
[ 2303.868485]  generic_file_read_iter+0x3c9/0x530
[ 2303.868998]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2303.869616]  ? __fsnotify_parent+0x498/0xa60
[ 2303.870084]  ext4_file_read_iter+0x184/0x3f0
[ 2303.870566]  generic_file_splice_read+0x3b9/0x5d0
[ 2303.871117]  ? pipe_to_user+0x170/0x170
[ 2303.871571]  ? security_file_permission+0xb1/0xd0
[ 2303.872096]  ? pipe_to_user+0x170/0x170
[ 2303.872532]  do_splice_to+0x1bc/0x240
[ 2303.872956]  ? inode_has_perm+0x1d0/0x1d0
[ 2303.873406]  splice_direct_to_actor+0x2c7/0x8e0
[ 2303.873925]  ? pipe_to_sendpage+0x380/0x380
[ 2303.874405]  ? do_splice_to+0x240/0x240
[ 2303.874844]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2303.875444]  ? security_file_permission+0xb1/0xd0
[ 2303.875966]  do_splice_direct+0x1b8/0x280
[ 2303.876434]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2303.876969]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2303.877579]  ? security_file_permission+0xb1/0xd0
[ 2303.878106]  do_sendfile+0xad7/0x1230
[ 2303.878522]  ? bit_wait_io_timeout+0x160/0x160
[ 2303.879032]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2303.879601]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2303.880212]  ? vfs_write+0x422/0xac0
[ 2303.880625]  __x64_sys_sendfile64+0x1cd/0x210
[ 2303.881110]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2303.881700]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2303.882271]  do_syscall_64+0x3b/0x90
[ 2303.882677]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2303.883255] RIP: 0033:0x7fdbfaa6cb19
[ 2303.883654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2303.885610] RSP: 002b:00007fdbf7fc1188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2303.886425] RAX: ffffffffffffffda RBX: 00007fdbfab80020 RCX: 00007fdbfaa6cb19
[ 2303.887194] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2303.887958] RBP: 00007fdbf7fc11d0 R08: 0000000000000000 R09: 0000000000000000
[ 2303.888730] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2303.889508] R13: 00007fffaecdc70f R14: 00007fdbf7fc1300 R15: 0000000000022000
[ 2303.890293]  </TASK>
05:28:04 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)
r1 = getpid()
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000200)=<r2=>0x0)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000280), 0x5812c0, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000500)={&(0x7f0000000380)={0x144, 0x2, 0x1, 0x3, 0x0, 0x0, {0xc, 0x0, 0x8}, [@CTA_LABELS={0x18, 0x16, 0x1, 0x0, [0x7fff, 0x3, 0x4, 0x0, 0x8]}, @CTA_MARK_MASK={0x8}, @CTA_SEQ_ADJ_REPLY={0x2c, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0xffff}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x2}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x5}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x9}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x6}]}, @CTA_HELP={0x14, 0x5, 0x0, 0x1, {0xf, 0x1, 'tftp-20000\x00'}}, @CTA_TUPLE_ORIG={0x88, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x3c}}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @loopback}, {0x14, 0x4, @dev={0xfe, 0x80, '\x00', 0x2d}}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @local}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}]}, @CTA_NAT_DST={0x18, 0xd, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @private2}]}, @CTA_NAT_SRC={0x30, 0x6, 0x0, 0x1, [@CTA_NAT_V4_MINIP={0x8, 0x1, @loopback}, @CTA_NAT_V4_MINIP={0x8, 0x1, @remote}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @loopback}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @remote}]}]}, 0x144}}, 0x40040c44)
clone3(&(0x7f00000002c0)={0x100040100, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x27}, &(0x7f0000000100)=""/212, 0xd4, &(0x7f00000006c0)=""/4096, &(0x7f0000000240)=[r1, r0, r0, r0, r0, r2], 0x6, {r3}}, 0x58)

05:28:04 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0xffffffff, 0x0, 0x0)

05:28:04 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c82, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x2, 0x0)

05:28:04 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 9)

05:28:04 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 22)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:28:04 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 22)

05:28:04 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0xfdef}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:28:04 executing program 5:
ioctl$BTRFS_IOC_GET_DEV_STATS(0xffffffffffffffff, 0xc4089434, &(0x7f0000000080)={0x0, 0x80f, 0x1, [0x1, 0x7ff, 0x81, 0x3, 0x7], [0xb76, 0x7ff, 0x0, 0x2, 0x7fffffff, 0xb32, 0xda, 0x0, 0x1f, 0xffffffffffffffff, 0x0, 0x1, 0x1, 0x81, 0x4, 0x1, 0x3, 0x9, 0x1, 0x100000001, 0x1, 0xffffffffffffff1d, 0x6, 0x5, 0x400, 0x5, 0x7fffffff, 0x1000, 0x9, 0x0, 0x9, 0x8, 0x4, 0x4, 0x1, 0x80000001, 0x100, 0x0, 0x5, 0x4, 0x1, 0x4, 0xffff, 0x7fff, 0x10001, 0x1ff, 0xffff, 0xab0, 0xfffffffffffffff7, 0x3, 0x5, 0xffffffff, 0x81, 0x7, 0x8, 0x0, 0xdb4e, 0xfffffffffffffffc, 0x7, 0x7, 0x9, 0xed, 0x0, 0x8, 0x200, 0x7, 0x5, 0x0, 0x65, 0x2, 0xffffffff, 0x3ff, 0x6, 0x2, 0x800, 0x10000, 0x7fff, 0x3, 0x51, 0x100000001, 0x9, 0x2, 0x6, 0x8000, 0xf8, 0x4, 0x9, 0x800, 0x7, 0xb9b, 0x8, 0x8, 0x100000001, 0x3, 0xfffffffffffffff9, 0x105c00000000000, 0x6, 0x326ce746, 0x3, 0x9, 0x2, 0x8, 0x5, 0x9, 0x200, 0x0, 0x9, 0x5, 0x3ff, 0x100, 0x400, 0x8, 0x2, 0x81, 0x4, 0x100000001, 0x6, 0x7ff, 0x7, 0x5, 0x6]})
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)
fsync(r0)
fcntl$F_GET_FILE_RW_HINT(r0, 0x40d, &(0x7f0000000040))

[ 2316.638043] FAULT_INJECTION: forcing a failure.
[ 2316.638043] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2316.639582] CPU: 1 PID: 14740 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2316.640451] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2316.641633] Call Trace:
[ 2316.641906]  <TASK>
[ 2316.642136]  dump_stack_lvl+0x8b/0xb3
[ 2316.642564]  should_fail.cold+0x5/0xa
[ 2316.642968]  prepare_alloc_pages+0x17b/0x500
[ 2316.643456]  __alloc_pages+0x131/0x4e0
[ 2316.643857]  ? lock_downgrade+0x6d0/0x6d0
[ 2316.644297]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2316.644934]  ? xa_load+0x158/0x290
[ 2316.645309]  ? xas_find_conflict+0x9e0/0x9e0
[ 2316.645777]  alloc_pages+0x1a0/0x2f0
[ 2316.646185]  filemap_alloc_folio+0x8e/0xb0
[ 2316.646633]  page_cache_ra_unbounded+0x1af/0x540
[ 2316.647159]  ondemand_readahead+0x642/0x1270
[ 2316.647633]  page_cache_sync_ra+0x1c5/0x200
[ 2316.648091]  filemap_get_pages+0x29e/0x1680
[ 2316.648558]  ? lock_downgrade+0x6d0/0x6d0
[ 2316.649004]  ? unwind_next_frame+0xdfe/0x20a0
[ 2316.649483]  ? filemap_add_folio+0x1b0/0x1b0
[ 2316.649954]  ? lock_is_held_type+0xd7/0x130
[ 2316.650416]  filemap_read+0x311/0xba0
[ 2316.650841]  ? filemap_get_pages+0x1680/0x1680
[ 2316.651343]  ? filter_irq_stacks+0x90/0x90
[ 2316.651794]  ? __stack_depot_save+0x35/0x450
[ 2316.652274]  ? kasan_save_stack+0x2e/0x40
[ 2316.652709]  ? kasan_save_stack+0x1e/0x40
[ 2316.653180]  ? __kasan_kmalloc+0x81/0xa0
[ 2316.653620]  ? alloc_pipe_info+0x1e0/0x580
[ 2316.654069]  ? splice_direct_to_actor+0x700/0x8e0
[ 2316.654585]  ? do_splice_direct+0x1b8/0x280
[ 2316.655050]  ? do_sendfile+0xad7/0x1230
[ 2316.655538]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2316.656038]  ? do_syscall_64+0x3b/0x90
[ 2316.656459]  generic_file_read_iter+0x3c9/0x530
[ 2316.656960]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2316.657548]  ? __fsnotify_parent+0x498/0xa60
[ 2316.658021]  ext4_file_read_iter+0x184/0x3f0
[ 2316.658500]  generic_file_splice_read+0x3b9/0x5d0
[ 2316.659024]  ? pipe_to_user+0x170/0x170
[ 2316.659475]  ? security_file_permission+0xb1/0xd0
[ 2316.660004]  ? pipe_to_user+0x170/0x170
[ 2316.660563]  do_splice_to+0x1bc/0x240
[ 2316.661007]  ? inode_has_perm+0x1d0/0x1d0
[ 2316.661446]  splice_direct_to_actor+0x2c7/0x8e0
[ 2316.661945]  ? pipe_to_sendpage+0x380/0x380
[ 2316.662415]  ? do_splice_to+0x240/0x240
[ 2316.662850]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2316.663456]  ? security_file_permission+0xb1/0xd0
[ 2316.663977]  do_splice_direct+0x1b8/0x280
[ 2316.664440]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2316.664960]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2316.665543]  ? security_file_permission+0xb1/0xd0
[ 2316.666183]  do_sendfile+0xad7/0x1230
[ 2316.666584]  ? bit_wait_io_timeout+0x160/0x160
[ 2316.667141]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2316.667830]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2316.668508]  ? vfs_write+0x422/0xac0
[ 2316.668914]  __x64_sys_sendfile64+0x1cd/0x210
[ 2316.669384]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2316.669960]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2316.670504]  do_syscall_64+0x3b/0x90
[ 2316.670903]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2316.671582] RIP: 0033:0x7f1455db8b19
[ 2316.671975] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2316.674013] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2316.674811] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2316.675693] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2316.676566] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2316.677455] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2316.678273] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2316.679031]  </TASK>
[ 2316.697895] FAULT_INJECTION: forcing a failure.
[ 2316.697895] name failslab, interval 1, probability 0, space 0, times 0
[ 2316.699107] CPU: 1 PID: 14770 Comm: syz-executor.7 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2316.699979] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2316.701163] Call Trace:
[ 2316.701429]  <TASK>
[ 2316.701658]  dump_stack_lvl+0x8b/0xb3
[ 2316.702075]  should_fail.cold+0x5/0xa
[ 2316.702474]  ? memcg_alloc_slab_cgroups+0x7a/0x120
[ 2316.702999]  ? create_object.isra.0+0x3a/0xa20
[ 2316.703510]  should_failslab+0x5/0x10
[ 2316.703922]  kmem_cache_alloc+0x5b/0x480
[ 2316.704365]  create_object.isra.0+0x3a/0xa20
[ 2316.704834]  ? kasan_unpoison+0x23/0x50
[ 2316.705253]  __kmalloc_node+0x26f/0x470
[ 2316.705691]  memcg_alloc_slab_cgroups+0x7a/0x120
[ 2316.706198]  memcg_slab_post_alloc_hook+0xb9/0x440
[ 2316.706729]  kmem_cache_alloc_lru+0x273/0x7c0
[ 2316.707225]  ? xas_alloc+0x35d/0x480
[ 2316.707637]  xas_alloc+0x35d/0x480
[ 2316.708016]  xas_create+0x35b/0x1030
[ 2316.708428]  ? lock_acquire+0x1b2/0x530
[ 2316.708857]  ? lock_is_held_type+0xd7/0x130
[ 2316.709320]  xas_store+0x90/0x1c40
[ 2316.709701]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[ 2316.710240]  ? xas_find_conflict+0x4a6/0x9e0
[ 2316.710722]  __filemap_add_folio+0x3c6/0xf60
[ 2316.711215]  ? filemap_map_pages+0x1350/0x1350
[ 2316.711705]  ? memcg_list_lru_alloc+0xb10/0xb10
[ 2316.712195]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2316.712785]  filemap_add_folio+0x9b/0x1b0
[ 2316.713228]  ? add_to_page_cache_locked+0x160/0x160
[ 2316.713762]  ? alloc_pages+0x1a8/0x2f0
[ 2316.714179]  page_cache_ra_unbounded+0x1d3/0x540
[ 2316.714690]  ondemand_readahead+0x642/0x1270
[ 2316.715172]  page_cache_sync_ra+0x1c5/0x200
[ 2316.715638]  filemap_get_pages+0x29e/0x1680
[ 2316.716117]  ? lock_downgrade+0x6d0/0x6d0
[ 2316.716569]  ? unwind_next_frame+0xdfe/0x20a0
[ 2316.717053]  ? filemap_add_folio+0x1b0/0x1b0
[ 2316.717527]  ? lock_is_held_type+0xd7/0x130
[ 2316.718006]  filemap_read+0x311/0xba0
[ 2316.718431]  ? filemap_get_pages+0x1680/0x1680
[ 2316.718928]  ? filter_irq_stacks+0x90/0x90
[ 2316.719390]  ? __stack_depot_save+0x35/0x450
[ 2316.719863]  ? kasan_save_stack+0x2e/0x40
[ 2316.720301]  ? kasan_save_stack+0x1e/0x40
[ 2316.720740]  ? __kasan_kmalloc+0x81/0xa0
[ 2316.721159]  ? alloc_pipe_info+0x1e0/0x580
[ 2316.721612]  ? splice_direct_to_actor+0x700/0x8e0
[ 2316.722122]  ? do_splice_direct+0x1b8/0x280
[ 2316.722580]  ? do_sendfile+0xad7/0x1230
[ 2316.722996]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2316.723497]  ? do_syscall_64+0x3b/0x90
[ 2316.723928]  generic_file_read_iter+0x3c9/0x530
[ 2316.724424]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2316.725004]  ? __fsnotify_parent+0x498/0xa60
[ 2316.725476]  ext4_file_read_iter+0x184/0x3f0
[ 2316.725955]  generic_file_splice_read+0x3b9/0x5d0
[ 2316.726483]  ? pipe_to_user+0x170/0x170
[ 2316.726920]  ? security_file_permission+0xb1/0xd0
[ 2316.727453]  ? pipe_to_user+0x170/0x170
[ 2316.727886]  do_splice_to+0x1bc/0x240
[ 2316.728301]  ? inode_has_perm+0x1d0/0x1d0
[ 2316.728743]  splice_direct_to_actor+0x2c7/0x8e0
[ 2316.729240]  ? pipe_to_sendpage+0x380/0x380
[ 2316.729699]  ? do_splice_to+0x240/0x240
[ 2316.730134]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2316.730719]  ? security_file_permission+0xb1/0xd0
[ 2316.731255]  do_splice_direct+0x1b8/0x280
[ 2316.731699]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2316.732219]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2316.732801]  ? security_file_permission+0xb1/0xd0
[ 2316.733314]  do_sendfile+0xad7/0x1230
[ 2316.733719]  ? bit_wait_io_timeout+0x160/0x160
[ 2316.734203]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2316.734750]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2316.735341]  ? vfs_write+0x422/0xac0
[ 2316.735742]  __x64_sys_sendfile64+0x1cd/0x210
[ 2316.736219]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2316.736776]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2316.737338]  do_syscall_64+0x3b/0x90
[ 2316.737737]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2316.738279] RIP: 0033:0x7f78f45e7b19
[ 2316.738669] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2316.740588] RSP: 002b:00007f78f1b5d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2316.741380] RAX: ffffffffffffffda RBX: 00007f78f46faf60 RCX: 00007f78f45e7b19
[ 2316.742113] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2316.742844] RBP: 00007f78f1b5d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2316.743582] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000001
[ 2316.744323] R13: 00007ffee552a8df R14: 00007f78f1b5d300 R15: 0000000000022000
[ 2316.745069]  </TASK>
[ 2316.753027] FAULT_INJECTION: forcing a failure.
[ 2316.753027] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2316.754269] CPU: 1 PID: 14769 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2316.755139] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2316.756317] Call Trace:
[ 2316.756579]  <TASK>
[ 2316.756811]  dump_stack_lvl+0x8b/0xb3
[ 2316.757226]  should_fail.cold+0x5/0xa
[ 2316.757638]  prepare_alloc_pages+0x17b/0x500
[ 2316.758114]  __alloc_pages+0x131/0x4e0
[ 2316.758528]  ? lock_downgrade+0x6d0/0x6d0
[ 2316.758966]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2316.759631]  ? xa_load+0x158/0x290
[ 2316.760005]  ? xas_find_conflict+0x9e0/0x9e0
[ 2316.760475]  alloc_pages+0x1a0/0x2f0
[ 2316.760874]  filemap_alloc_folio+0x8e/0xb0
[ 2316.761328]  page_cache_ra_unbounded+0x1af/0x540
[ 2316.761842]  ondemand_readahead+0x642/0x1270
[ 2316.762319]  page_cache_sync_ra+0x1c5/0x200
[ 2316.762782]  filemap_get_pages+0x29e/0x1680
[ 2316.763266]  ? lock_downgrade+0x6d0/0x6d0
[ 2316.763706]  ? unwind_next_frame+0xdfe/0x20a0
[ 2316.764179]  ? filemap_add_folio+0x1b0/0x1b0
[ 2316.764656]  ? lock_is_held_type+0xd7/0x130
[ 2316.765110]  filemap_read+0x311/0xba0
[ 2316.765528]  ? filemap_get_pages+0x1680/0x1680
[ 2316.766009]  ? filter_irq_stacks+0x90/0x90
[ 2316.766455]  ? __stack_depot_save+0x35/0x450
[ 2316.766933]  ? kasan_save_stack+0x2e/0x40
[ 2316.767399]  ? kasan_save_stack+0x1e/0x40
[ 2316.767847]  ? __kasan_kmalloc+0x81/0xa0
[ 2316.768272]  ? alloc_pipe_info+0x1e0/0x580
[ 2316.768718]  ? splice_direct_to_actor+0x700/0x8e0
[ 2316.769239]  ? do_splice_direct+0x1b8/0x280
[ 2316.769699]  ? do_sendfile+0xad7/0x1230
[ 2316.770113]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2316.770605]  ? do_syscall_64+0x3b/0x90
[ 2316.771026]  generic_file_read_iter+0x3c9/0x530
[ 2316.771552]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2316.772146]  ? __fsnotify_parent+0x498/0xa60
[ 2316.772617]  ext4_file_read_iter+0x184/0x3f0
[ 2316.773085]  generic_file_splice_read+0x3b9/0x5d0
[ 2316.773609]  ? pipe_to_user+0x170/0x170
[ 2316.774047]  ? security_file_permission+0xb1/0xd0
[ 2316.774563]  ? pipe_to_user+0x170/0x170
[ 2316.775005]  do_splice_to+0x1bc/0x240
[ 2316.775423]  ? inode_has_perm+0x1d0/0x1d0
[ 2316.775881]  splice_direct_to_actor+0x2c7/0x8e0
[ 2316.776385]  ? pipe_to_sendpage+0x380/0x380
[ 2316.776852]  ? do_splice_to+0x240/0x240
[ 2316.777282]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2316.777878]  ? security_file_permission+0xb1/0xd0
[ 2316.778396]  do_splice_direct+0x1b8/0x280
[ 2316.778842]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2316.779368]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2316.779962]  ? security_file_permission+0xb1/0xd0
[ 2316.780479]  do_sendfile+0xad7/0x1230
[ 2316.780899]  ? bit_wait_io_timeout+0x160/0x160
[ 2316.781381]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2316.781950]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2316.782538]  ? vfs_write+0x422/0xac0
[ 2316.782937]  __x64_sys_sendfile64+0x1cd/0x210
[ 2316.783434]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2316.784000]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2316.784546]  do_syscall_64+0x3b/0x90
[ 2316.784958]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2316.785503] RIP: 0033:0x7fdbfaa6cb19
[ 2316.785898] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2316.787836] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2316.788682] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2316.789456] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2316.790195] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2316.790934] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2316.791698] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2316.792455]  </TASK>
05:28:04 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0xff00}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:28:04 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x0)

05:28:04 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
syz_io_uring_complete(0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r1, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)

05:28:04 executing program 3:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
ioctl$sock_SIOCDELRT(r0, 0x890c, &(0x7f0000000040)={0x0, @sco, @ethernet={0x1, @local}, @can, 0x5, 0x0, 0x0, 0x0, 0x9, &(0x7f0000000000)='hsr0\x00', 0x0, 0x7, 0x8})
r1 = epoll_create(0x7e99)
fsetxattr$trusted_overlay_redirect(r1, &(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x8, 0x1)
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)

05:28:04 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 23)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:28:04 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x7ffff000}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:28:04 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 23)

05:28:04 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 10)

05:28:04 executing program 3:
r0 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80))
symlinkat(&(0x7f0000000080)='./file0\x00', r0, &(0x7f0000000040)='./file0\x00')
linkat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000000100)='./file1\x00', 0x1000)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x8b}}, './file0\x00'})
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)

[ 2317.040728] FAULT_INJECTION: forcing a failure.
[ 2317.040728] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2317.042150] CPU: 1 PID: 14970 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2317.043066] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2317.044317] Call Trace:
[ 2317.044592]  <TASK>
[ 2317.044836]  dump_stack_lvl+0x8b/0xb3
[ 2317.045269]  should_fail.cold+0x5/0xa
[ 2317.045693]  prepare_alloc_pages+0x17b/0x500
[ 2317.046193]  __alloc_pages+0x131/0x4e0
[ 2317.046620]  ? lock_downgrade+0x6d0/0x6d0
[ 2317.047081]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2317.047772]  ? xa_load+0x158/0x290
[ 2317.048163]  ? xas_find_conflict+0x9e0/0x9e0
[ 2317.048645]  alloc_pages+0x1a0/0x2f0
[ 2317.049068]  filemap_alloc_folio+0x8e/0xb0
[ 2317.049538]  page_cache_ra_unbounded+0x1af/0x540
[ 2317.050056]  ondemand_readahead+0x642/0x1270
[ 2317.050551]  page_cache_sync_ra+0x1c5/0x200
[ 2317.051029]  filemap_get_pages+0x29e/0x1680
[ 2317.051530]  ? lock_downgrade+0x6d0/0x6d0
[ 2317.051998]  ? unwind_next_frame+0xdfe/0x20a0
[ 2317.052493]  ? filemap_add_folio+0x1b0/0x1b0
[ 2317.052987]  ? lock_is_held_type+0xd7/0x130
[ 2317.053470]  filemap_read+0x311/0xba0
[ 2317.053903]  ? filemap_get_pages+0x1680/0x1680
[ 2317.054414]  ? filter_irq_stacks+0x90/0x90
[ 2317.054866]  ? __stack_depot_save+0x35/0x450
[ 2317.055411]  ? kasan_save_stack+0x2e/0x40
[ 2317.055858]  ? kasan_save_stack+0x1e/0x40
[ 2317.056307]  ? __kasan_kmalloc+0x81/0xa0
[ 2317.056745]  ? alloc_pipe_info+0x1e0/0x580
[ 2317.057204]  ? splice_direct_to_actor+0x700/0x8e0
[ 2317.057741]  ? do_splice_direct+0x1b8/0x280
[ 2317.058215]  ? do_sendfile+0xad7/0x1230
[ 2317.058654]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2317.059163]  ? do_syscall_64+0x3b/0x90
[ 2317.059602]  generic_file_read_iter+0x3c9/0x530
[ 2317.060120]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2317.060734]  ? __fsnotify_parent+0x498/0xa60
[ 2317.061219]  ext4_file_read_iter+0x184/0x3f0
[ 2317.061714]  generic_file_splice_read+0x3b9/0x5d0
[ 2317.062248]  ? pipe_to_user+0x170/0x170
[ 2317.062704]  ? security_file_permission+0xb1/0xd0
[ 2317.063263]  ? pipe_to_user+0x170/0x170
[ 2317.063700]  do_splice_to+0x1bc/0x240
[ 2317.064126]  ? inode_has_perm+0x1d0/0x1d0
[ 2317.064583]  splice_direct_to_actor+0x2c7/0x8e0
[ 2317.065102]  ? pipe_to_sendpage+0x380/0x380
[ 2317.065593]  ? do_splice_to+0x240/0x240
[ 2317.066029]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2317.066643]  ? security_file_permission+0xb1/0xd0
[ 2317.067185]  do_splice_direct+0x1b8/0x280
[ 2317.067655]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2317.068194]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2317.068813]  ? security_file_permission+0xb1/0xd0
[ 2317.069348]  do_sendfile+0xad7/0x1230
[ 2317.069772]  ? bit_wait_io_timeout+0x160/0x160
[ 2317.070539]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2317.071823]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2317.073133]  ? vfs_write+0x422/0xac0
[ 2317.074031]  __x64_sys_sendfile64+0x1cd/0x210
[ 2317.075104]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2317.076378]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2317.077613]  do_syscall_64+0x3b/0x90
[ 2317.078506]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2317.079756] RIP: 0033:0x7fdbfaa6cb19
[ 2317.080599] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2317.082527] FAULT_INJECTION: forcing a failure.
[ 2317.082527] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2317.084502] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2317.084529] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2317.084547] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2317.091601] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2317.093114] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2317.094567] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2317.096113]  </TASK>
[ 2317.096610] CPU: 0 PID: 14976 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2317.098381] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2317.100772] Call Trace:
[ 2317.101319]  <TASK>
[ 2317.101793]  dump_stack_lvl+0x8b/0xb3
[ 2317.102621]  should_fail.cold+0x5/0xa
05:28:04 executing program 5:
ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000080)=0x7)
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
r1 = syz_open_dev$vcsa(&(0x7f0000000040), 0x0, 0x2)
ioctl$CDROMEJECT_SW(r1, 0x530f, 0x1)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)

[ 2317.103468]  prepare_alloc_pages+0x17b/0x500
[ 2317.104552]  __alloc_pages+0x131/0x4e0
[ 2317.105399]  ? lock_downgrade+0x6d0/0x6d0
[ 2317.106272]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2317.107581]  ? xa_load+0x158/0x290
[ 2317.108280]  ? xas_find_conflict+0x9e0/0x9e0
[ 2317.109228]  alloc_pages+0x1a0/0x2f0
[ 2317.110039]  filemap_alloc_folio+0x8e/0xb0
[ 2317.110957]  page_cache_ra_unbounded+0x1af/0x540
[ 2317.112013]  ondemand_readahead+0x642/0x1270
[ 2317.112981]  page_cache_sync_ra+0x1c5/0x200
[ 2317.113922]  filemap_get_pages+0x29e/0x1680
[ 2317.114874]  ? lock_downgrade+0x6d0/0x6d0
[ 2317.115797]  ? unwind_next_frame+0xdfe/0x20a0
[ 2317.116767]  ? filemap_add_folio+0x1b0/0x1b0
[ 2317.117732]  ? lock_is_held_type+0xd7/0x130
[ 2317.118670]  filemap_read+0x311/0xba0
[ 2317.119531]  ? filemap_get_pages+0x1680/0x1680
[ 2317.120519]  ? filter_irq_stacks+0x90/0x90
[ 2317.121436]  ? __stack_depot_save+0x35/0x450
[ 2317.122399]  ? kasan_save_stack+0x2e/0x40
[ 2317.123309]  ? kasan_save_stack+0x1e/0x40
[ 2317.124201]  ? __kasan_kmalloc+0x81/0xa0
[ 2317.125069]  ? alloc_pipe_info+0x1e0/0x580
[ 2317.125979]  ? splice_direct_to_actor+0x700/0x8e0
[ 2317.127019]  ? do_splice_direct+0x1b8/0x280
[ 2317.127959]  ? do_sendfile+0xad7/0x1230
[ 2317.128803]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2317.129806]  ? do_syscall_64+0x3b/0x90
[ 2317.130656]  generic_file_read_iter+0x3c9/0x530
[ 2317.131683]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2317.132870]  ? __fsnotify_parent+0x498/0xa60
[ 2317.133819]  ext4_file_read_iter+0x184/0x3f0
[ 2317.134775]  generic_file_splice_read+0x3b9/0x5d0
[ 2317.135819]  ? pipe_to_user+0x170/0x170
[ 2317.136660]  ? security_file_permission+0xb1/0xd0
[ 2317.137705]  ? pipe_to_user+0x170/0x170
[ 2317.138574]  do_splice_to+0x1bc/0x240
[ 2317.139412]  ? inode_has_perm+0x1d0/0x1d0
[ 2317.140311]  splice_direct_to_actor+0x2c7/0x8e0
[ 2317.141337]  ? pipe_to_sendpage+0x380/0x380
[ 2317.142284]  ? do_splice_to+0x240/0x240
[ 2317.143113]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2317.144278]  ? security_file_permission+0xb1/0xd0
[ 2317.145331]  do_splice_direct+0x1b8/0x280
[ 2317.146236]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2317.147243]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2317.148433]  ? security_file_permission+0xb1/0xd0
[ 2317.149487]  do_sendfile+0xad7/0x1230
[ 2317.150248]  ? bit_wait_io_timeout+0x160/0x160
[ 2317.151249]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2317.152371]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2317.153562]  ? vfs_write+0x422/0xac0
[ 2317.154374]  __x64_sys_sendfile64+0x1cd/0x210
[ 2317.155348]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2317.156499]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2317.157623]  do_syscall_64+0x3b/0x90
[ 2317.158440]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2317.159559] RIP: 0033:0x7f1455db8b19
[ 2317.160367] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2317.164342] RSP: 002b:00007f145330d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2317.165978] RAX: ffffffffffffffda RBX: 00007f1455ecc020 RCX: 00007f1455db8b19
[ 2317.167523] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2317.169055] RBP: 00007f145330d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2317.170589] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2317.172136] R13: 00007fff0823e86f R14: 00007f145330d300 R15: 0000000000022000
[ 2317.173705]  </TASK>
[ 2317.207055] FAULT_INJECTION: forcing a failure.
[ 2317.207055] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2317.209709] CPU: 0 PID: 14974 Comm: syz-executor.7 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2317.211412] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2317.213696] Call Trace:
[ 2317.214220]  <TASK>
[ 2317.214686]  dump_stack_lvl+0x8b/0xb3
[ 2317.215481]  should_fail.cold+0x5/0xa
[ 2317.216242]  prepare_alloc_pages+0x17b/0x500
[ 2317.217131]  __alloc_pages+0x131/0x4e0
[ 2317.217897]  ? lock_downgrade+0x6d0/0x6d0
[ 2317.218726]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2317.219952]  ? xa_load+0x158/0x290
[ 2317.220657]  ? xas_find_conflict+0x9e0/0x9e0
[ 2317.221532]  alloc_pages+0x1a0/0x2f0
[ 2317.222288]  filemap_alloc_folio+0x8e/0xb0
[ 2317.223140]  page_cache_ra_unbounded+0x1af/0x540
[ 2317.224095]  ondemand_readahead+0x642/0x1270
[ 2317.225002]  page_cache_sync_ra+0x1c5/0x200
[ 2317.225866]  filemap_get_pages+0x29e/0x1680
[ 2317.226732]  ? lock_downgrade+0x6d0/0x6d0
[ 2317.227590]  ? unwind_next_frame+0xdfe/0x20a0
[ 2317.228494]  ? filemap_add_folio+0x1b0/0x1b0
[ 2317.229397]  ? lock_is_held_type+0xd7/0x130
[ 2317.230273]  filemap_read+0x311/0xba0
[ 2317.231110]  ? filemap_get_pages+0x1680/0x1680
[ 2317.232015]  ? filter_irq_stacks+0x90/0x90
05:28:04 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x2, 0x0)

[ 2317.232867]  ? __stack_depot_save+0x35/0x450
[ 2317.233890]  ? kasan_save_stack+0x2e/0x40
[ 2317.234709]  ? kasan_save_stack+0x1e/0x40
[ 2317.235548]  ? __kasan_kmalloc+0x81/0xa0
[ 2317.236345]  ? alloc_pipe_info+0x1e0/0x580
[ 2317.237172]  ? splice_direct_to_actor+0x700/0x8e0
[ 2317.238128]  ? do_splice_direct+0x1b8/0x280
[ 2317.238985]  ? do_sendfile+0xad7/0x1230
[ 2317.239778]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2317.240694]  ? do_syscall_64+0x3b/0x90
[ 2317.241481]  generic_file_read_iter+0x3c9/0x530
[ 2317.242412]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2317.243521]  ? __fsnotify_parent+0x498/0xa60
[ 2317.244393]  ext4_file_read_iter+0x184/0x3f0
[ 2317.245279]  generic_file_splice_read+0x3b9/0x5d0
[ 2317.246242]  ? pipe_to_user+0x170/0x170
05:28:04 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x541b, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x2, 0x0)

[ 2317.247057]  ? security_file_permission+0xb1/0xd0
[ 2317.248101]  ? pipe_to_user+0x170/0x170
[ 2317.248899]  do_splice_to+0x1bc/0x240
[ 2317.249656]  ? inode_has_perm+0x1d0/0x1d0
[ 2317.250480]  splice_direct_to_actor+0x2c7/0x8e0
[ 2317.251422]  ? pipe_to_sendpage+0x380/0x380
[ 2317.252291]  ? do_splice_to+0x240/0x240
[ 2317.253084]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2317.254177]  ? security_file_permission+0xb1/0xd0
[ 2317.255152]  do_splice_direct+0x1b8/0x280
[ 2317.255982]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2317.256952]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2317.258062]  ? security_file_permission+0xb1/0xd0
[ 2317.259030]  do_sendfile+0xad7/0x1230
[ 2317.259815]  ? bit_wait_io_timeout+0x160/0x160
[ 2317.260726]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2317.261754]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2317.262846]  ? vfs_write+0x422/0xac0
[ 2317.263600]  __x64_sys_sendfile64+0x1cd/0x210
[ 2317.264488]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2317.265544]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2317.266570]  do_syscall_64+0x3b/0x90
[ 2317.267325]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2317.268341] RIP: 0033:0x7f78f45e7b19
[ 2317.269070] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2317.272724] RSP: 002b:00007f78f1b5d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2317.274222] RAX: ffffffffffffffda RBX: 00007f78f46faf60 RCX: 00007f78f45e7b19
[ 2317.275632] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2317.277028] RBP: 00007f78f1b5d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2317.278427] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2317.279843] R13: 00007ffee552a8df R14: 00007f78f1b5d300 R15: 0000000000022000
[ 2317.281276]  </TASK>
05:28:04 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0xffff8000}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:28:04 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r0, 0xc018937d, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x81}}, './file0\x00'})
clone3(&(0x7f0000000640)={0x10006080, &(0x7f0000000040), 0x0, 0x0, {0x2000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

05:28:04 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x3, 0x0)

05:28:04 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000040), 0x2ab80, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)

05:28:20 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x5421, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x2, 0x0)

05:28:20 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 24)

05:28:20 executing program 3:
clone3(&(0x7f0000000000)={0x1000, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {0xfffffffd}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000000080)=<r2=>0x0)
capset(&(0x7f0000000340)={0x20080522, r2}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
r3 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000080)=<r4=>0x0)
capset(&(0x7f0000000340)={0x20080522, r4}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000340)={<r5=>0x0}, &(0x7f0000000380)=0xc)
r6 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r6, 0x5429, &(0x7f0000000080)=<r7=>0x0)
capset(&(0x7f0000000340)={0x20080522, r7}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f00000003c0)=<r8=>0x0)
clone3(&(0x7f0000000440)={0x204a00000, &(0x7f0000000100), &(0x7f0000000140), &(0x7f0000000180), {0x18}, &(0x7f00000001c0)=""/217, 0xd9, &(0x7f00000002c0)=""/115, &(0x7f0000000400)=[0xffffffffffffffff, r2, r4, r5, r7, r8], 0x6}, 0x58)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r0, 0x400c6615, &(0x7f0000000080)={0x0, @adiantum, 0x0, @desc3})

05:28:20 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0xfffffdef}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:28:20 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$CDROM_SEND_PACKET(r1, 0x5393, &(0x7f0000000140)={"0221152d5b5594fd97f84459", &(0x7f0000000080)="c65e4628e22d2aa5844853d2a79e2ca80af0ba06839509f42078cadecea582addb04b09deddf4554fa62e1c436b2", 0x2e, 0xd25c, &(0x7f00000000c0)={0x11, 0x0, 0x8, 0x3, 0x0, 0x1, 0x0, "d13658d6", 0xf8, "53e88677", 0x4, 0xab, 0x5, "a8a9ef", "5ee8653261b3b437d740fe85f8fbcbe9873f2981c638881b5dc78104e872984b7a199e05db22e2fc5f5d3ab12db1"}, 0x0, 0xffffffff, 0x2, &(0x7f0000000100)})

05:28:20 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 24)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:28:20 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 11)

05:28:20 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x8, 0x0)

[ 2332.544455] FAULT_INJECTION: forcing a failure.
[ 2332.544455] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2332.545928] CPU: 1 PID: 15209 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2332.546838] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2332.548084] Call Trace:
[ 2332.548365]  <TASK>
[ 2332.548608]  dump_stack_lvl+0x8b/0xb3
[ 2332.549037]  should_fail.cold+0x5/0xa
[ 2332.549471]  prepare_alloc_pages+0x17b/0x500
[ 2332.549970]  __alloc_pages+0x131/0x4e0
[ 2332.550397]  ? lock_downgrade+0x6d0/0x6d0
[ 2332.550859]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2332.551544]  ? xa_load+0x158/0x290
[ 2332.551942]  ? xas_find_conflict+0x9e0/0x9e0
[ 2332.552433]  alloc_pages+0x1a0/0x2f0
[ 2332.552852]  filemap_alloc_folio+0x8e/0xb0
[ 2332.553320]  page_cache_ra_unbounded+0x1af/0x540
[ 2332.553857]  ondemand_readahead+0x642/0x1270
[ 2332.554350]  page_cache_sync_ra+0x1c5/0x200
[ 2332.554828]  filemap_get_pages+0x29e/0x1680
[ 2332.555310]  ? lock_downgrade+0x6d0/0x6d0
[ 2332.555776]  ? unwind_next_frame+0xdfe/0x20a0
[ 2332.556269]  ? filemap_add_folio+0x1b0/0x1b0
[ 2332.556763]  ? lock_is_held_type+0xd7/0x130
[ 2332.557215]  filemap_read+0x311/0xba0
[ 2332.557650]  ? filemap_get_pages+0x1680/0x1680
[ 2332.558148]  ? filter_irq_stacks+0x90/0x90
[ 2332.558616]  ? __stack_depot_save+0x35/0x450
[ 2332.559103]  ? kasan_save_stack+0x2e/0x40
[ 2332.559572]  ? kasan_save_stack+0x1e/0x40
[ 2332.560020]  ? __kasan_kmalloc+0x81/0xa0
[ 2332.560470]  ? alloc_pipe_info+0x1e0/0x580
[ 2332.560932]  ? splice_direct_to_actor+0x700/0x8e0
[ 2332.561469]  ? do_splice_direct+0x1b8/0x280
[ 2332.561950]  ? do_sendfile+0xad7/0x1230
[ 2332.562384]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2332.562884]  ? do_syscall_64+0x3b/0x90
[ 2332.563330]  generic_file_read_iter+0x3c9/0x530
[ 2332.563855]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2332.564464]  ? __fsnotify_parent+0x498/0xa60
[ 2332.565000]  ext4_file_read_iter+0x184/0x3f0
[ 2332.565565]  generic_file_splice_read+0x3b9/0x5d0
[ 2332.566106]  ? pipe_to_user+0x170/0x170
[ 2332.566557]  ? security_file_permission+0xb1/0xd0
[ 2332.567090]  ? pipe_to_user+0x170/0x170
[ 2332.567656]  do_splice_to+0x1bc/0x240
[ 2332.568074]  ? inode_has_perm+0x1d0/0x1d0
[ 2332.568517]  splice_direct_to_actor+0x2c7/0x8e0
[ 2332.569032]  ? pipe_to_sendpage+0x380/0x380
[ 2332.569499]  ? do_splice_to+0x240/0x240
[ 2332.569926]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2332.570524]  ? security_file_permission+0xb1/0xd0
[ 2332.571043]  do_splice_direct+0x1b8/0x280
[ 2332.571507]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2332.572039]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2332.572641]  ? security_file_permission+0xb1/0xd0
[ 2332.573162]  do_sendfile+0xad7/0x1230
[ 2332.573581]  ? bit_wait_io_timeout+0x160/0x160
[ 2332.574080]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2332.574648]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2332.575240]  ? vfs_write+0x422/0xac0
[ 2332.575665]  __x64_sys_sendfile64+0x1cd/0x210
[ 2332.576151]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2332.576730]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2332.577300]  do_syscall_64+0x3b/0x90
[ 2332.577710]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2332.578271] RIP: 0033:0x7fdbfaa6cb19
[ 2332.578678] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2332.580643] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2332.581471] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2332.582245] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2332.582984] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2332.583768] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2332.584543] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2332.585290]  </TASK>
05:28:20 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x300, 0x0)

[ 2332.615559] FAULT_INJECTION: forcing a failure.
[ 2332.615559] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2332.618357] CPU: 0 PID: 15273 Comm: syz-executor.7 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2332.620142] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2332.622507] Call Trace:
[ 2332.623048]  <TASK>
[ 2332.623535]  dump_stack_lvl+0x8b/0xb3
[ 2332.624357]  should_fail.cold+0x5/0xa
[ 2332.625185]  prepare_alloc_pages+0x17b/0x500
[ 2332.626150]  __alloc_pages+0x131/0x4e0
[ 2332.626993]  ? lock_downgrade+0x6d0/0x6d0
[ 2332.627906]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2332.629205]  ? xa_load+0x158/0x290
[ 2332.629965]  ? xas_find_conflict+0x9e0/0x9e0
[ 2332.630911]  alloc_pages+0x1a0/0x2f0
[ 2332.631720]  filemap_alloc_folio+0x8e/0xb0
[ 2332.632631]  page_cache_ra_unbounded+0x1af/0x540
[ 2332.633666]  ondemand_readahead+0x642/0x1270
[ 2332.634627]  page_cache_sync_ra+0x1c5/0x200
[ 2332.635568]  filemap_get_pages+0x29e/0x1680
[ 2332.636490]  ? lock_downgrade+0x6d0/0x6d0
[ 2332.636530]  ? unwind_next_frame+0xdfe/0x20a0
[ 2332.636563]  ? filemap_add_folio+0x1b0/0x1b0
[ 2332.636609]  ? lock_is_held_type+0xd7/0x130
[ 2332.636652]  filemap_read+0x311/0xba0
05:28:20 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000000080)=<r2=>0x0)
capset(&(0x7f0000000340)={0x20080522, r2}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
r3 = gettid()
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000002c0)=<r4=>0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000300)={<r5=>0x0}, &(0x7f0000000340)=0xc)
r6 = timerfd_create(0x5, 0x80800)
writev(r6, &(0x7f00000005c0)=[{&(0x7f0000000440)="e88b0fca28713c12fe1322295da3577ff53696c3953949dddae4b9839f2b6b9e559a7c373ec7ecdb7fb64f6a3d122d553f08892ce70a5120beed688f12cbfe284a35e43a927f9785cffa6063298cdc7c774c6b098e5e7297d64b6b12281ca71a256877744a1d65783152826c", 0x6c}, {&(0x7f00000004c0)="741e1c93977eeadd929165a6f950f231a38ce2bada3e6430c67bb8073ab3770633a57359c86f69da3c1ad37a691ecf67bb274232b777d04b26cdc426fd17fd5f01c67e3ef6c9fadd60f617cc0b189c7e43fc3cdbe640a1c600", 0x59}, {&(0x7f0000000540)="caf3bb1e6e9dd2b412b7279946c0959dc01539e29284300013ff3bbe13126e091197c07fba5aa5545b5d5317d207c97183387d07511dbcab3e08fb4f1bc4c8e571791be55f1bc8ec3d7a3563a0b45daf26546be861408fcd909f5edd3519662e1f", 0x61}], 0x3)
clone3(&(0x7f00000003c0)={0x200000, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x3f}, &(0x7f0000000100)=""/192, 0xc0, &(0x7f00000001c0)=""/202, &(0x7f0000000380)=[r2, r0, r0, r0, 0x0, r0, r3, r4, r5, r0], 0xa}, 0x58)

[ 2332.636714]  ? filemap_get_pages+0x1680/0x1680
[ 2332.636749]  ? filter_irq_stacks+0x90/0x90
[ 2332.636780]  ? __stack_depot_save+0x35/0x450
[ 2332.636824]  ? kasan_save_stack+0x2e/0x40
[ 2332.636846]  ? kasan_save_stack+0x1e/0x40
[ 2332.636868]  ? __kasan_kmalloc+0x81/0xa0
[ 2332.636890]  ? alloc_pipe_info+0x1e0/0x580
[ 2332.636915]  ? splice_direct_to_actor+0x700/0x8e0
[ 2332.636951]  ? do_splice_direct+0x1b8/0x280
[ 2332.636984]  ? do_sendfile+0xad7/0x1230
[ 2332.637008]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2332.637033]  ? do_syscall_64+0x3b/0x90
[ 2332.637077]  generic_file_read_iter+0x3c9/0x530
[ 2332.637116]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2332.637155]  ? __fsnotify_parent+0x498/0xa60
[ 2332.637186]  ext4_file_read_iter+0x184/0x3f0
[ 2332.637225]  generic_file_splice_read+0x3b9/0x5d0
[ 2332.637267]  ? pipe_to_user+0x170/0x170
[ 2332.637324]  ? security_file_permission+0xb1/0xd0
[ 2332.637362]  ? pipe_to_user+0x170/0x170
[ 2332.637401]  do_splice_to+0x1bc/0x240
[ 2332.637433]  ? inode_has_perm+0x1d0/0x1d0
[ 2332.637464]  splice_direct_to_actor+0x2c7/0x8e0
[ 2332.637507]  ? pipe_to_sendpage+0x380/0x380
[ 2332.637551]  ? do_splice_to+0x240/0x240
[ 2332.637587]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2332.637626]  ? security_file_permission+0xb1/0xd0
[ 2332.637670]  do_splice_direct+0x1b8/0x280
[ 2332.637708]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2332.637756]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2332.669585]  ? security_file_permission+0xb1/0xd0
[ 2332.670640]  do_sendfile+0xad7/0x1230
[ 2332.671483]  ? bit_wait_io_timeout+0x160/0x160
[ 2332.672464]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2332.673555]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2332.674733]  ? vfs_write+0x422/0xac0
[ 2332.675542]  __x64_sys_sendfile64+0x1cd/0x210
[ 2332.676510]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2332.677624]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2332.678733]  do_syscall_64+0x3b/0x90
[ 2332.679521]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2332.680625] RIP: 0033:0x7f78f45e7b19
[ 2332.681397] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2332.685305] RSP: 002b:00007f78f1b5d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2332.686925] RAX: ffffffffffffffda RBX: 00007f78f46faf60 RCX: 00007f78f45e7b19
[ 2332.688455] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2332.689972] RBP: 00007f78f1b5d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2332.691488] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2332.693004] R13: 00007ffee552a8df R14: 00007f78f1b5d300 R15: 0000000000022000
[ 2332.694543]  </TASK>
05:28:20 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)

05:28:20 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x3f00, 0x0)

05:28:20 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 25)

[ 2332.720823] FAULT_INJECTION: forcing a failure.
[ 2332.720823] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2332.722387] CPU: 1 PID: 15271 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2332.723296] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2332.724517] Call Trace:
[ 2332.724794]  <TASK>
[ 2332.725038]  dump_stack_lvl+0x8b/0xb3
[ 2332.725462]  should_fail.cold+0x5/0xa
[ 2332.725875]  prepare_alloc_pages+0x17b/0x500
[ 2332.726369]  __alloc_pages+0x131/0x4e0
[ 2332.726793]  ? lock_downgrade+0x6d0/0x6d0
[ 2332.727261]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2332.727940]  ? xa_load+0x158/0x290
[ 2332.728323]  ? xas_find_conflict+0x9e0/0x9e0
[ 2332.728807]  alloc_pages+0x1a0/0x2f0
[ 2332.729227]  filemap_alloc_folio+0x8e/0xb0
[ 2332.729683]  page_cache_ra_unbounded+0x1af/0x540
[ 2332.730194]  ondemand_readahead+0x642/0x1270
[ 2332.730684]  page_cache_sync_ra+0x1c5/0x200
[ 2332.731158]  filemap_get_pages+0x29e/0x1680
[ 2332.731653]  ? lock_downgrade+0x6d0/0x6d0
[ 2332.732106]  ? unwind_next_frame+0xdfe/0x20a0
[ 2332.732594]  ? filemap_add_folio+0x1b0/0x1b0
[ 2332.733074]  ? lock_is_held_type+0xd7/0x130
[ 2332.733545]  filemap_read+0x311/0xba0
[ 2332.733971]  ? filemap_get_pages+0x1680/0x1680
[ 2332.734474]  ? filter_irq_stacks+0x90/0x90
[ 2332.734927]  ? __stack_depot_save+0x35/0x450
[ 2332.735431]  ? kasan_save_stack+0x2e/0x40
[ 2332.735876]  ? kasan_save_stack+0x1e/0x40
[ 2332.736316]  ? __kasan_kmalloc+0x81/0xa0
[ 2332.736750]  ? alloc_pipe_info+0x1e0/0x580
[ 2332.737206]  ? splice_direct_to_actor+0x700/0x8e0
[ 2332.737727]  ? do_splice_direct+0x1b8/0x280
[ 2332.738199]  ? do_sendfile+0xad7/0x1230
[ 2332.738616]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2332.739110]  ? do_syscall_64+0x3b/0x90
[ 2332.739529]  generic_file_read_iter+0x3c9/0x530
[ 2332.740043]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2332.740637]  ? __fsnotify_parent+0x498/0xa60
[ 2332.741108]  ext4_file_read_iter+0x184/0x3f0
[ 2332.741594]  generic_file_splice_read+0x3b9/0x5d0
[ 2332.742108]  ? pipe_to_user+0x170/0x170
[ 2332.742559]  ? security_file_permission+0xb1/0xd0
[ 2332.743079]  ? pipe_to_user+0x170/0x170
[ 2332.743524]  do_splice_to+0x1bc/0x240
[ 2332.743927]  ? inode_has_perm+0x1d0/0x1d0
[ 2332.744376]  splice_direct_to_actor+0x2c7/0x8e0
[ 2332.744875]  ? pipe_to_sendpage+0x380/0x380
[ 2332.745346]  ? do_splice_to+0x240/0x240
[ 2332.745776]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2332.746377]  ? security_file_permission+0xb1/0xd0
[ 2332.746908]  do_splice_direct+0x1b8/0x280
[ 2332.747374]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2332.747904]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2332.748503]  ? security_file_permission+0xb1/0xd0
[ 2332.749179]  do_sendfile+0xad7/0x1230
[ 2332.749597]  ? bit_wait_io_timeout+0x160/0x160
[ 2332.750084]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2332.750644]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2332.751233]  ? vfs_write+0x422/0xac0
[ 2332.751634]  __x64_sys_sendfile64+0x1cd/0x210
[ 2332.752105]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2332.752680]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2332.753249]  do_syscall_64+0x3b/0x90
[ 2332.753652]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2332.754197] RIP: 0033:0x7f1455db8b19
[ 2332.754591] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2332.756568] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2332.757373] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2332.758128] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2332.758856] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2332.759634] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2332.760400] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2332.761153]  </TASK>
[ 2332.794576] FAULT_INJECTION: forcing a failure.
[ 2332.794576] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2332.797372] CPU: 0 PID: 15330 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2332.799139] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2332.801565] Call Trace:
[ 2332.802111]  <TASK>
[ 2332.802588]  dump_stack_lvl+0x8b/0xb3
[ 2332.803432]  should_fail.cold+0x5/0xa
[ 2332.804264]  prepare_alloc_pages+0x17b/0x500
[ 2332.805235]  __alloc_pages+0x131/0x4e0
[ 2332.806063]  ? lock_downgrade+0x6d0/0x6d0
[ 2332.806971]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2332.808300]  ? xa_load+0x158/0x290
[ 2332.809066]  ? xas_find_conflict+0x9e0/0x9e0
[ 2332.810025]  alloc_pages+0x1a0/0x2f0
[ 2332.810844]  filemap_alloc_folio+0x8e/0xb0
[ 2332.811788]  page_cache_ra_unbounded+0x1af/0x540
[ 2332.812776]  ondemand_readahead+0x642/0x1270
[ 2332.813670]  page_cache_sync_ra+0x1c5/0x200
[ 2332.814544]  filemap_get_pages+0x29e/0x1680
[ 2332.815439]  ? lock_downgrade+0x6d0/0x6d0
[ 2332.816277]  ? unwind_next_frame+0xdfe/0x20a0
[ 2332.817167]  ? filemap_add_folio+0x1b0/0x1b0
[ 2332.818056]  ? lock_is_held_type+0xd7/0x130
[ 2332.818924]  filemap_read+0x311/0xba0
[ 2332.819725]  ? filemap_get_pages+0x1680/0x1680
[ 2332.820642]  ? filter_irq_stacks+0x90/0x90
[ 2332.821485]  ? __stack_depot_save+0x35/0x450
[ 2332.822377]  ? kasan_save_stack+0x2e/0x40
[ 2332.823195]  ? kasan_save_stack+0x1e/0x40
[ 2332.824041]  ? __kasan_kmalloc+0x81/0xa0
[ 2332.824844]  ? alloc_pipe_info+0x1e0/0x580
[ 2332.825686]  ? splice_direct_to_actor+0x700/0x8e0
[ 2332.826646]  ? do_splice_direct+0x1b8/0x280
[ 2332.827527]  ? do_sendfile+0xad7/0x1230
[ 2332.828510]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2332.829434]  ? do_syscall_64+0x3b/0x90
[ 2332.830221]  generic_file_read_iter+0x3c9/0x530
[ 2332.831149]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2332.832276]  ? __fsnotify_parent+0x498/0xa60
[ 2332.833150]  ext4_file_read_iter+0x184/0x3f0
[ 2332.834036]  generic_file_splice_read+0x3b9/0x5d0
[ 2332.835001]  ? pipe_to_user+0x170/0x170
[ 2332.835831]  ? security_file_permission+0xb1/0xd0
[ 2332.836801]  ? pipe_to_user+0x170/0x170
[ 2332.837608]  do_splice_to+0x1bc/0x240
[ 2332.838370]  ? inode_has_perm+0x1d0/0x1d0
[ 2332.839196]  splice_direct_to_actor+0x2c7/0x8e0
[ 2332.840147]  ? pipe_to_sendpage+0x380/0x380
[ 2332.841025]  ? do_splice_to+0x240/0x240
[ 2332.841823]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2332.842922]  ? security_file_permission+0xb1/0xd0
[ 2332.843911]  do_splice_direct+0x1b8/0x280
[ 2332.844746]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2332.845720]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2332.846820]  ? security_file_permission+0xb1/0xd0
[ 2332.847809]  do_sendfile+0xad7/0x1230
[ 2332.848578]  ? bit_wait_io_timeout+0x160/0x160
[ 2332.849496]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2332.850527]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2332.851634]  ? vfs_write+0x422/0xac0
[ 2332.852379]  __x64_sys_sendfile64+0x1cd/0x210
[ 2332.853272]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2332.854339]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2332.855382]  do_syscall_64+0x3b/0x90
[ 2332.856136]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2332.857150] RIP: 0033:0x7fdbfaa6cb19
[ 2332.857878] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2332.861506] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2332.863005] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2332.864428] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2332.865833] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2332.867240] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2332.868667] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2332.870092]  </TASK>
05:28:34 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x80000, 0x0)

05:28:34 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x5450, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x2, 0x0)

05:28:34 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 12)

05:28:34 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000240)=<r1=>0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r2, &(0x7f0000000340)=[{&(0x7f00000004c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
clone3(&(0x7f00000002c0)={0x2c001000, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {}, &(0x7f0000000100)=""/85, 0x55, &(0x7f0000000180)=""/130, &(0x7f0000000280)=[r0, r1, r0, r0], 0x4, {r2}}, 0x58)

05:28:34 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x7ffffffff000}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:28:34 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 25)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:28:34 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 26)

05:28:34 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000040)={<r1=>r0, 0x6, 0x0, 0x3})
ioctl$CDROMPAUSE(r1, 0x5301)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)

[ 2346.628142] FAULT_INJECTION: forcing a failure.
[ 2346.628142] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2346.629576] CPU: 0 PID: 15444 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2346.630450] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2346.631643] Call Trace:
[ 2346.631911]  <TASK>
[ 2346.632151]  dump_stack_lvl+0x8b/0xb3
[ 2346.632568]  should_fail.cold+0x5/0xa
[ 2346.632970]  prepare_alloc_pages+0x17b/0x500
[ 2346.633445]  __alloc_pages+0x131/0x4e0
[ 2346.633857]  ? lock_downgrade+0x6d0/0x6d0
[ 2346.634307]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2346.634955]  ? xa_load+0x158/0x290
[ 2346.635332]  ? xas_find_conflict+0x9e0/0x9e0
[ 2346.635797]  alloc_pages+0x1a0/0x2f0
[ 2346.636192]  filemap_alloc_folio+0x8e/0xb0
[ 2346.636636]  page_cache_ra_unbounded+0x1af/0x540
[ 2346.637152]  ondemand_readahead+0x642/0x1270
[ 2346.637617]  page_cache_sync_ra+0x1c5/0x200
[ 2346.638081]  filemap_get_pages+0x29e/0x1680
[ 2346.638537]  ? lock_downgrade+0x6d0/0x6d0
[ 2346.639005]  ? unwind_next_frame+0xdfe/0x20a0
[ 2346.639468]  ? filemap_add_folio+0x1b0/0x1b0
[ 2346.639970]  ? lock_is_held_type+0xd7/0x130
[ 2346.640442]  filemap_read+0x311/0xba0
[ 2346.640576] FAULT_INJECTION: forcing a failure.
[ 2346.640576] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2346.640870]  ? filemap_get_pages+0x1680/0x1680
[ 2346.643770]  ? filter_irq_stacks+0x90/0x90
[ 2346.644226]  ? __stack_depot_save+0x35/0x450
[ 2346.644718]  ? kasan_save_stack+0x2e/0x40
[ 2346.645163]  ? kasan_save_stack+0x1e/0x40
[ 2346.645607]  ? __kasan_kmalloc+0x81/0xa0
[ 2346.646040]  ? alloc_pipe_info+0x1e0/0x580
[ 2346.646500]  ? splice_direct_to_actor+0x700/0x8e0
[ 2346.647026]  ? do_splice_direct+0x1b8/0x280
[ 2346.647496]  ? do_sendfile+0xad7/0x1230
[ 2346.647916]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2346.648419]  ? do_syscall_64+0x3b/0x90
[ 2346.648854]  generic_file_read_iter+0x3c9/0x530
[ 2346.649359]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2346.649968]  ? __fsnotify_parent+0x498/0xa60
[ 2346.650445]  ext4_file_read_iter+0x184/0x3f0
[ 2346.650930]  generic_file_splice_read+0x3b9/0x5d0
[ 2346.651467]  ? pipe_to_user+0x170/0x170
[ 2346.651928]  ? security_file_permission+0xb1/0xd0
[ 2346.652458]  ? pipe_to_user+0x170/0x170
[ 2346.652911]  do_splice_to+0x1bc/0x240
[ 2346.653340]  splice_direct_to_actor+0x2c7/0x8e0
[ 2346.653847]  ? pipe_to_sendpage+0x380/0x380
[ 2346.654332]  ? do_splice_to+0x240/0x240
[ 2346.654766]  ? __sanitizer_cov_trace_pc+0x4c/0x60
[ 2346.655302]  do_splice_direct+0x1b8/0x280
[ 2346.655766]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2346.656297]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2346.656898]  ? security_file_permission+0xb1/0xd0
[ 2346.657428]  do_sendfile+0xad7/0x1230
[ 2346.657844]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2346.658402]  ? irqentry_enter+0x26/0x50
[ 2346.658839]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2346.659427]  ? lockdep_hardirqs_on+0x79/0x100
[ 2346.659935]  __x64_sys_sendfile64+0x1cd/0x210
[ 2346.660425]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2346.661000]  ? syscall_enter_from_user_mode+0x27/0x50
[ 2346.661563]  do_syscall_64+0x3b/0x90
[ 2346.661969]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2346.662522] RIP: 0033:0x7f1455db8b19
[ 2346.662906] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2346.664908] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2346.665741] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2346.666520] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2346.667294] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2346.668077] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2346.668809] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2346.669582]  </TASK>
[ 2346.669837] CPU: 1 PID: 15454 Comm: syz-executor.7 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2346.671611] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2346.672398] FAULT_INJECTION: forcing a failure.
[ 2346.672398] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2346.673963] Call Trace:
[ 2346.673972]  <TASK>
[ 2346.673982]  dump_stack_lvl+0x8b/0xb3
[ 2346.677020]  should_fail.cold+0x5/0xa
[ 2346.677835]  prepare_alloc_pages+0x17b/0x500
[ 2346.678780]  __alloc_pages+0x131/0x4e0
[ 2346.679601]  ? lock_downgrade+0x6d0/0x6d0
[ 2346.680477]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2346.681752]  ? xa_load+0x158/0x290
[ 2346.682498]  ? xas_find_conflict+0x9e0/0x9e0
[ 2346.683428]  alloc_pages+0x1a0/0x2f0
[ 2346.684236]  filemap_alloc_folio+0x8e/0xb0
[ 2346.685160]  page_cache_ra_unbounded+0x1af/0x540
[ 2346.686185]  ondemand_readahead+0x642/0x1270
[ 2346.687127]  page_cache_sync_ra+0x1c5/0x200
[ 2346.688051]  filemap_get_pages+0x29e/0x1680
[ 2346.688970]  ? lock_downgrade+0x6d0/0x6d0
[ 2346.689848]  ? unwind_next_frame+0xdfe/0x20a0
[ 2346.690788]  ? filemap_add_folio+0x1b0/0x1b0
[ 2346.691733]  ? lock_is_held_type+0xd7/0x130
[ 2346.692648]  filemap_read+0x311/0xba0
[ 2346.693481]  ? filemap_get_pages+0x1680/0x1680
[ 2346.694443]  ? filter_irq_stacks+0x90/0x90
[ 2346.695329]  ? __stack_depot_save+0x35/0x450
[ 2346.696285]  ? kasan_save_stack+0x2e/0x40
[ 2346.697149]  ? kasan_save_stack+0x1e/0x40
[ 2346.698012]  ? __kasan_kmalloc+0x81/0xa0
[ 2346.698855]  ? alloc_pipe_info+0x1e0/0x580
[ 2346.699746]  ? splice_direct_to_actor+0x700/0x8e0
[ 2346.700760]  ? do_splice_direct+0x1b8/0x280
[ 2346.701667]  ? do_sendfile+0xad7/0x1230
[ 2346.702496]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2346.703465]  ? do_syscall_64+0x3b/0x90
[ 2346.704308]  generic_file_read_iter+0x3c9/0x530
[ 2346.705291]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2346.706446]  ? __fsnotify_parent+0x498/0xa60
[ 2346.707367]  ext4_file_read_iter+0x184/0x3f0
[ 2346.708302]  generic_file_splice_read+0x3b9/0x5d0
[ 2346.709323]  ? pipe_to_user+0x170/0x170
[ 2346.710185]  ? security_file_permission+0xb1/0xd0
[ 2346.711198]  ? pipe_to_user+0x170/0x170
[ 2346.712055]  do_splice_to+0x1bc/0x240
[ 2346.712859]  ? inode_has_perm+0x1d0/0x1d0
[ 2346.713730]  splice_direct_to_actor+0x2c7/0x8e0
[ 2346.714716]  ? pipe_to_sendpage+0x380/0x380
[ 2346.715644]  ? do_splice_to+0x240/0x240
[ 2346.716485]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2346.717640]  ? security_file_permission+0xb1/0xd0
[ 2346.718662]  do_splice_direct+0x1b8/0x280
[ 2346.719551]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2346.720582]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2346.721736]  ? security_file_permission+0xb1/0xd0
[ 2346.722759]  do_sendfile+0xad7/0x1230
[ 2346.723573]  ? bit_wait_io_timeout+0x160/0x160
[ 2346.724536]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2346.725624]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2346.726780]  ? vfs_write+0x422/0xac0
[ 2346.727586]  __x64_sys_sendfile64+0x1cd/0x210
[ 2346.728528]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2346.729649]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2346.730739]  do_syscall_64+0x3b/0x90
[ 2346.731536]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2346.732613] RIP: 0033:0x7f78f45e7b19
[ 2346.733386] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2346.737204] RSP: 002b:00007f78f1b5d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2346.738779] RAX: ffffffffffffffda RBX: 00007f78f46faf60 RCX: 00007f78f45e7b19
[ 2346.740277] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2346.741754] RBP: 00007f78f1b5d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2346.743233] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2346.744717] R13: 00007ffee552a8df R14: 00007f78f1b5d300 R15: 0000000000022000
[ 2346.746223]  </TASK>
[ 2346.746705] CPU: 0 PID: 15446 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2346.747629] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2346.748857] Call Trace:
[ 2346.749138]  <TASK>
[ 2346.749384]  dump_stack_lvl+0x8b/0xb3
[ 2346.749810]  should_fail.cold+0x5/0xa
[ 2346.750235]  prepare_alloc_pages+0x17b/0x500
[ 2346.750721]  __alloc_pages+0x131/0x4e0
[ 2346.751157]  ? lock_downgrade+0x6d0/0x6d0
[ 2346.751621]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2346.752295]  ? xa_load+0x158/0x290
[ 2346.752679]  ? xas_find_conflict+0x9e0/0x9e0
[ 2346.753170]  alloc_pages+0x1a0/0x2f0
[ 2346.753579]  filemap_alloc_folio+0x8e/0xb0
[ 2346.754049]  page_cache_ra_unbounded+0x1af/0x540
[ 2346.754548]  ondemand_readahead+0x642/0x1270
[ 2346.755035]  page_cache_sync_ra+0x1c5/0x200
[ 2346.755514]  filemap_get_pages+0x29e/0x1680
[ 2346.756005]  ? filemap_add_folio+0x1b0/0x1b0
[ 2346.756494]  ? lock_is_held_type+0xd7/0x130
[ 2346.756969]  filemap_read+0x311/0xba0
[ 2346.757396]  ? lock_release+0x3b2/0x750
[ 2346.757835]  ? filemap_get_pages+0x1680/0x1680
[ 2346.758351]  ? finish_task_switch.isra.0+0x226/0x870
[ 2346.758908]  ? lockdep_hardirqs_on+0x79/0x100
[ 2346.759398]  ? finish_task_switch.isra.0+0x226/0x870
[ 2346.759935]  generic_file_read_iter+0x3c9/0x530
[ 2346.760457]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2346.761067]  ? __fsnotify_parent+0x498/0xa60
[ 2346.761544]  ext4_file_read_iter+0x184/0x3f0
[ 2346.762022]  generic_file_splice_read+0x3b9/0x5d0
[ 2346.762552]  ? __cond_resched+0x13/0x20
[ 2346.762979]  ? pipe_to_user+0x170/0x170
[ 2346.763410]  ? preempt_schedule_common+0x59/0xc0
[ 2346.763947]  ? security_file_permission+0xb1/0xd0
[ 2346.764483]  ? pipe_to_user+0x170/0x170
[ 2346.764918]  do_splice_to+0x1bc/0x240
[ 2346.765344]  ? inode_has_perm+0x1d0/0x1d0
[ 2346.765801]  splice_direct_to_actor+0x2c7/0x8e0
[ 2346.766312]  ? pipe_to_sendpage+0x380/0x380
[ 2346.766793]  ? do_splice_to+0x240/0x240
[ 2346.767231]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2346.767843]  ? security_file_permission+0xb1/0xd0
[ 2346.768375]  do_splice_direct+0x1b8/0x280
[ 2346.768830]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2346.769361]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2346.769957]  ? security_file_permission+0xb1/0xd0
[ 2346.770485]  do_sendfile+0xad7/0x1230
[ 2346.770906]  ? bit_wait_io_timeout+0x160/0x160
[ 2346.771407]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2346.771976]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2346.772578]  ? vfs_write+0x422/0xac0
[ 2346.772971]  __x64_sys_sendfile64+0x1cd/0x210
[ 2346.773463]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2346.774038]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2346.774612]  do_syscall_64+0x3b/0x90
[ 2346.775019]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2346.775593] RIP: 0033:0x7fdbfaa6cb19
[ 2346.775998] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2346.777964] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2346.778749] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2346.779536] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2346.780306] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2346.781046] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2346.781825] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2346.782608]  </TASK>
05:28:34 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x1000000, 0x0)

05:28:34 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 27)

[ 2346.884507] FAULT_INJECTION: forcing a failure.
[ 2346.884507] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2346.885971] CPU: 0 PID: 15565 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2346.886860] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2346.888055] Call Trace:
[ 2346.888332]  <TASK>
[ 2346.888573]  dump_stack_lvl+0x8b/0xb3
[ 2346.888984]  should_fail.cold+0x5/0xa
[ 2346.889394]  prepare_alloc_pages+0x17b/0x500
[ 2346.889871]  __alloc_pages+0x131/0x4e0
[ 2346.890286]  ? lock_downgrade+0x6d0/0x6d0
[ 2346.890728]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2346.891361]  ? xa_load+0x158/0x290
[ 2346.891761]  ? xas_find_conflict+0x9e0/0x9e0
[ 2346.892218]  alloc_pages+0x1a0/0x2f0
[ 2346.892609]  filemap_alloc_folio+0x8e/0xb0
[ 2346.893053]  page_cache_ra_unbounded+0x1af/0x540
[ 2346.893564]  ondemand_readahead+0x642/0x1270
[ 2346.894034]  page_cache_sync_ra+0x1c5/0x200
[ 2346.894497]  filemap_get_pages+0x29e/0x1680
[ 2346.894973]  ? lock_downgrade+0x6d0/0x6d0
[ 2346.895426]  ? unwind_next_frame+0xdfe/0x20a0
[ 2346.895922]  ? filemap_add_folio+0x1b0/0x1b0
[ 2346.896407]  ? lock_is_held_type+0xd7/0x130
[ 2346.896881]  filemap_read+0x311/0xba0
[ 2346.897312]  ? filemap_get_pages+0x1680/0x1680
[ 2346.897806]  ? filter_irq_stacks+0x90/0x90
[ 2346.898265]  ? __stack_depot_save+0x35/0x450
[ 2346.898750]  ? kasan_save_stack+0x2e/0x40
[ 2346.899196]  ? kasan_save_stack+0x1e/0x40
[ 2346.899659]  ? __kasan_kmalloc+0x81/0xa0
[ 2346.900095]  ? alloc_pipe_info+0x1e0/0x580
[ 2346.900553]  ? splice_direct_to_actor+0x700/0x8e0
[ 2346.901075]  ? do_splice_direct+0x1b8/0x280
[ 2346.901554]  ? do_sendfile+0xad7/0x1230
[ 2346.901983]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2346.902485]  ? do_syscall_64+0x3b/0x90
[ 2346.902917]  generic_file_read_iter+0x3c9/0x530
[ 2346.903420]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2346.904040]  ? __fsnotify_parent+0x498/0xa60
[ 2346.904517]  ext4_file_read_iter+0x184/0x3f0
[ 2346.905001]  generic_file_splice_read+0x3b9/0x5d0
[ 2346.905531]  ? pipe_to_user+0x170/0x170
[ 2346.905978]  ? security_file_permission+0xb1/0xd0
[ 2346.906503]  ? pipe_to_user+0x170/0x170
[ 2346.906940]  do_splice_to+0x1bc/0x240
[ 2346.907359]  splice_direct_to_actor+0x2c7/0x8e0
[ 2346.907882]  ? pipe_to_sendpage+0x380/0x380
[ 2346.908357]  ? do_splice_to+0x240/0x240
[ 2346.908793]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2346.909392]  ? security_file_permission+0xb1/0xd0
[ 2346.909928]  do_splice_direct+0x1b8/0x280
[ 2346.910388]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2346.910916]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2346.911519]  ? security_file_permission+0xb1/0xd0
[ 2346.912066]  do_sendfile+0xad7/0x1230
[ 2346.912468]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2346.913025]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2346.913631]  ? clockevents_program_event+0x131/0x350
[ 2346.914181]  ? tick_program_event+0xb4/0x140
[ 2346.914659]  __x64_sys_sendfile64+0x1cd/0x210
[ 2346.915143]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2346.915736]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2346.916307]  do_syscall_64+0x3b/0x90
[ 2346.916711]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2346.917272] RIP: 0033:0x7fdbfaa6cb19
[ 2346.917712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2346.919815] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2346.920636] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2346.921371] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2346.922135] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2346.922911] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2346.923651] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2346.924439]  </TASK>
05:28:34 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 26)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:28:34 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
ioctl$BLKROTATIONAL(r0, 0x127e, &(0x7f0000000000))

05:28:34 executing program 5:
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000040), 0x9a141, 0x0)
ioctl$CDROMPAUSE(0xffffffffffffffff, 0x5301)
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r1, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
ioctl$TIOCGLCKTRMIOS(r1, 0x5456, &(0x7f00000000c0)={0x10000, 0x4, 0x8, 0xd7, 0x1, "bc1853382674856f23889208783e1c1539833a"})
ioctl$CDROM_GET_MCN(r0, 0x5311, &(0x7f0000000080))
r2 = open_tree(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x0)
ioctl$DVD_AUTH(r2, 0x80041284, 0x0)

05:28:34 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0xffff88800afbb0a0}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:28:34 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 13)

05:28:34 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x2000000, 0x0)

[ 2347.027396] FAULT_INJECTION: forcing a failure.
[ 2347.027396] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2347.028844] CPU: 0 PID: 15578 Comm: syz-executor.7 Not tainted 5.18.0-rc3-next-20220422 #1
05:28:34 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000002d80), 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000040)=0xffffffff)
ioctl$TCSETS(r0, 0x5402, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "51a1f1887189a5bb4dee13e1eb17344e232940"})
read(r0, &(0x7f0000000040)=""/137, 0x66)
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$DVD_AUTH(r1, 0x80041284, 0x0)

[ 2347.029707] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2347.030992] Call Trace:
[ 2347.031274]  <TASK>
[ 2347.031520]  dump_stack_lvl+0x8b/0xb3
[ 2347.032002]  should_fail.cold+0x5/0xa
[ 2347.032504]  prepare_alloc_pages+0x17b/0x500
[ 2347.032994]  __alloc_pages+0x131/0x4e0
[ 2347.033422]  ? lock_downgrade+0x6d0/0x6d0
[ 2347.033876]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2347.034530]  ? xa_load+0x158/0x290
[ 2347.034922]  ? xas_find_conflict+0x9e0/0x9e0
[ 2347.035398]  alloc_pages+0x1a0/0x2f0
[ 2347.035817]  filemap_alloc_folio+0x8e/0xb0
[ 2347.036280]  page_cache_ra_unbounded+0x1af/0x540
[ 2347.036823]  ondemand_readahead+0x642/0x1270
[ 2347.037316]  page_cache_sync_ra+0x1c5/0x200
[ 2347.037791]  filemap_get_pages+0x29e/0x1680
[ 2347.038273]  ? irqentry_enter+0x26/0x50
[ 2347.038705]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2347.039300]  ? filemap_add_folio+0x1b0/0x1b0
[ 2347.039794]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2347.040392]  ? lock_is_held_type+0xd7/0x130
[ 2347.040867]  filemap_read+0x311/0xba0
[ 2347.041296]  ? filemap_get_pages+0x1680/0x1680
[ 2347.041804]  ? filter_irq_stacks+0x90/0x90
[ 2347.042273]  ? __stack_depot_save+0x35/0x450
[ 2347.042759]  ? kasan_save_stack+0x2e/0x40
[ 2347.043209]  ? kasan_save_stack+0x1e/0x40
[ 2347.043650]  ? __kasan_kmalloc+0x81/0xa0
[ 2347.044094]  ? alloc_pipe_info+0x1e0/0x580
[ 2347.044557]  ? splice_direct_to_actor+0x700/0x8e0
[ 2347.045092]  ? do_splice_direct+0x1b8/0x280
[ 2347.045564]  ? do_sendfile+0xad7/0x1230
[ 2347.046000]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2347.046506]  ? do_syscall_64+0x3b/0x90
[ 2347.046935]  generic_file_read_iter+0x3c9/0x530
[ 2347.047451]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2347.048073]  ? __fsnotify_parent+0x498/0xa60
[ 2347.048531]  ext4_file_read_iter+0x184/0x3f0
[ 2347.049017]  generic_file_splice_read+0x3b9/0x5d0
[ 2347.049545]  ? pipe_to_user+0x170/0x170
[ 2347.050006]  ? security_file_permission+0xb1/0xd0
[ 2347.050533]  ? pipe_to_user+0x170/0x170
[ 2347.050986]  do_splice_to+0x1bc/0x240
[ 2347.051412]  splice_direct_to_actor+0x2c7/0x8e0
[ 2347.051925]  ? pipe_to_sendpage+0x380/0x380
[ 2347.052397]  ? do_splice_to+0x240/0x240
[ 2347.052839]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2347.053448]  ? security_file_permission+0xb1/0xd0
[ 2347.053981]  do_splice_direct+0x1b8/0x280
[ 2347.054443]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2347.054981]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2347.055594]  ? security_file_permission+0xb1/0xd0
[ 2347.056130]  do_sendfile+0xad7/0x1230
[ 2347.056551]  ? bit_wait_io_timeout+0x160/0x160
[ 2347.057051]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2347.057615]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2347.058210]  ? vfs_write+0x422/0xac0
[ 2347.058629]  __x64_sys_sendfile64+0x1cd/0x210
[ 2347.059121]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2347.059708]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2347.060274]  do_syscall_64+0x3b/0x90
[ 2347.060682]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2347.061245] RIP: 0033:0x7f78f45e7b19
[ 2347.061655] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2347.063635] RSP: 002b:00007f78f1b5d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2347.064470] RAX: ffffffffffffffda RBX: 00007f78f46faf60 RCX: 00007f78f45e7b19
[ 2347.065232] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2347.066009] RBP: 00007f78f1b5d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2347.066788] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2347.067561] R13: 00007ffee552a8df R14: 00007f78f1b5d300 R15: 0000000000022000
[ 2347.068352]  </TASK>
[ 2347.090776] FAULT_INJECTION: forcing a failure.
[ 2347.090776] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2347.093662] CPU: 1 PID: 15580 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2347.095485] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2347.097891] Call Trace:
[ 2347.098435]  <TASK>
[ 2347.098909]  dump_stack_lvl+0x8b/0xb3
[ 2347.099741]  should_fail.cold+0x5/0xa
[ 2347.100566]  prepare_alloc_pages+0x17b/0x500
[ 2347.101527]  __alloc_pages+0x131/0x4e0
[ 2347.102351]  ? lock_downgrade+0x6d0/0x6d0
[ 2347.103248]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2347.104548]  ? xa_load+0x158/0x290
[ 2347.105302]  ? xas_find_conflict+0x9e0/0x9e0
[ 2347.106239]  alloc_pages+0x1a0/0x2f0
[ 2347.107040]  filemap_alloc_folio+0x8e/0xb0
[ 2347.107960]  page_cache_ra_unbounded+0x1af/0x540
[ 2347.108987]  ondemand_readahead+0x642/0x1270
[ 2347.109941]  page_cache_sync_ra+0x1c5/0x200
[ 2347.110866]  filemap_get_pages+0x29e/0x1680
[ 2347.111802]  ? lock_downgrade+0x6d0/0x6d0
[ 2347.112680]  ? unwind_next_frame+0xdfe/0x20a0
[ 2347.113619]  ? filemap_add_folio+0x1b0/0x1b0
[ 2347.114556]  ? lock_is_held_type+0xd7/0x130
[ 2347.115472]  filemap_read+0x311/0xba0
[ 2347.116309]  ? filemap_get_pages+0x1680/0x1680
[ 2347.117268]  ? filter_irq_stacks+0x90/0x90
[ 2347.118154]  ? __stack_depot_save+0x35/0x450
[ 2347.119089]  ? kasan_save_stack+0x2e/0x40
[ 2347.119969]  ? kasan_save_stack+0x1e/0x40
[ 2347.120830]  ? __kasan_kmalloc+0x81/0xa0
[ 2347.121672]  ? alloc_pipe_info+0x1e0/0x580
[ 2347.122553]  ? splice_direct_to_actor+0x700/0x8e0
[ 2347.123577]  ? do_splice_direct+0x1b8/0x280
[ 2347.124483]  ? do_sendfile+0xad7/0x1230
[ 2347.125309]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2347.126276]  ? do_syscall_64+0x3b/0x90
[ 2347.127105]  generic_file_read_iter+0x3c9/0x530
[ 2347.128105]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2347.129261]  ? __fsnotify_parent+0x498/0xa60
[ 2347.130182]  ext4_file_read_iter+0x184/0x3f0
[ 2347.131112]  generic_file_splice_read+0x3b9/0x5d0
[ 2347.132139]  ? pipe_to_user+0x170/0x170
[ 2347.133003]  ? security_file_permission+0xb1/0xd0
[ 2347.134021]  ? pipe_to_user+0x170/0x170
[ 2347.134866]  do_splice_to+0x1bc/0x240
[ 2347.135679]  ? inode_has_perm+0x1d0/0x1d0
[ 2347.136551]  splice_direct_to_actor+0x2c7/0x8e0
[ 2347.137539]  ? pipe_to_sendpage+0x380/0x380
[ 2347.138459]  ? do_splice_to+0x240/0x240
[ 2347.139299]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2347.140469]  ? security_file_permission+0xb1/0xd0
[ 2347.141501]  do_splice_direct+0x1b8/0x280
[ 2347.142377]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2347.143401]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2347.144569]  ? security_file_permission+0xb1/0xd0
[ 2347.145636]  do_sendfile+0xad7/0x1230
[ 2347.146455]  ? bit_wait_io_timeout+0x160/0x160
[ 2347.147415]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2347.148532]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2347.149690]  ? vfs_write+0x422/0xac0
[ 2347.150478]  __x64_sys_sendfile64+0x1cd/0x210
[ 2347.151418]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2347.152543]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2347.153631]  do_syscall_64+0x3b/0x90
[ 2347.154421]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2347.155496] RIP: 0033:0x7f1455db8b19
[ 2347.156279] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2347.160122] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2347.161708] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2347.163199] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2347.164690] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2347.166172] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2347.167677] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2347.169191]  </TASK>
05:28:34 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 14)

05:28:34 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0xfffffffffffffdef}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:28:34 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x5451, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x2, 0x0)

[ 2347.278069] FAULT_INJECTION: forcing a failure.
[ 2347.278069] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2347.279407] CPU: 0 PID: 15693 Comm: syz-executor.7 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2347.280278] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2347.281452] Call Trace:
[ 2347.281738]  <TASK>
[ 2347.281972]  dump_stack_lvl+0x8b/0xb3
[ 2347.282385]  should_fail.cold+0x5/0xa
[ 2347.282787]  prepare_alloc_pages+0x17b/0x500
[ 2347.283272]  __alloc_pages+0x131/0x4e0
[ 2347.283693]  ? lock_downgrade+0x6d0/0x6d0
[ 2347.284152]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2347.284788]  ? xa_load+0x158/0x290
[ 2347.285179]  ? xas_find_conflict+0x9e0/0x9e0
[ 2347.285666]  alloc_pages+0x1a0/0x2f0
[ 2347.286077]  filemap_alloc_folio+0x8e/0xb0
[ 2347.286546]  page_cache_ra_unbounded+0x1af/0x540
[ 2347.287075]  ondemand_readahead+0x642/0x1270
[ 2347.287576]  page_cache_sync_ra+0x1c5/0x200
[ 2347.288047]  filemap_get_pages+0x29e/0x1680
[ 2347.288523]  ? lock_downgrade+0x6d0/0x6d0
[ 2347.288991]  ? unwind_next_frame+0xdfe/0x20a0
[ 2347.289481]  ? filemap_add_folio+0x1b0/0x1b0
[ 2347.289974]  ? lock_is_held_type+0xd7/0x130
[ 2347.290456]  filemap_read+0x311/0xba0
[ 2347.290896]  ? filemap_get_pages+0x1680/0x1680
[ 2347.291395]  ? filter_irq_stacks+0x90/0x90
[ 2347.291842]  ? __stack_depot_save+0x35/0x450
[ 2347.292343]  ? kasan_save_stack+0x2e/0x40
[ 2347.292802]  ? kasan_save_stack+0x1e/0x40
[ 2347.293252]  ? __kasan_kmalloc+0x81/0xa0
[ 2347.293687]  ? alloc_pipe_info+0x1e0/0x580
[ 2347.294159]  ? splice_direct_to_actor+0x700/0x8e0
[ 2347.294689]  ? do_splice_direct+0x1b8/0x280
[ 2347.295165]  ? do_sendfile+0xad7/0x1230
[ 2347.295613]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2347.296107]  ? do_syscall_64+0x3b/0x90
[ 2347.296536]  generic_file_read_iter+0x3c9/0x530
[ 2347.297049]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2347.297650]  ? __fsnotify_parent+0x498/0xa60
[ 2347.298143]  ext4_file_read_iter+0x184/0x3f0
[ 2347.298631]  generic_file_splice_read+0x3b9/0x5d0
[ 2347.299173]  ? pipe_to_user+0x170/0x170
[ 2347.299637]  ? security_file_permission+0xb1/0xd0
[ 2347.300165]  ? pipe_to_user+0x170/0x170
[ 2347.300605]  do_splice_to+0x1bc/0x240
[ 2347.301033]  ? inode_has_perm+0x1d0/0x1d0
[ 2347.301484]  splice_direct_to_actor+0x2c7/0x8e0
[ 2347.301997]  ? pipe_to_sendpage+0x380/0x380
[ 2347.302471]  ? do_splice_to+0x240/0x240
[ 2347.302911]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2347.303518]  ? security_file_permission+0xb1/0xd0
[ 2347.304058]  do_splice_direct+0x1b8/0x280
[ 2347.304518]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2347.305063]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2347.305670]  ? security_file_permission+0xb1/0xd0
[ 2347.306201]  do_sendfile+0xad7/0x1230
[ 2347.306624]  ? bit_wait_io_timeout+0x160/0x160
[ 2347.307133]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2347.307716]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2347.308312]  ? vfs_write+0x422/0xac0
[ 2347.308721]  __x64_sys_sendfile64+0x1cd/0x210
[ 2347.309210]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2347.309802]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2347.310369]  do_syscall_64+0x3b/0x90
[ 2347.310791]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2347.311364] RIP: 0033:0x7f78f45e7b19
[ 2347.311756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2347.313731] RSP: 002b:00007f78f1b5d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2347.314559] RAX: ffffffffffffffda RBX: 00007f78f46faf60 RCX: 00007f78f45e7b19
[ 2347.315333] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2347.316127] RBP: 00007f78f1b5d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2347.316895] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2347.317663] R13: 00007ffee552a8df R14: 00007f78f1b5d300 R15: 0000000000022000
[ 2347.318456]  </TASK>
05:28:48 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x3000000, 0x0)

05:28:48 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 28)

05:28:48 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 27)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:28:48 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 15)

05:28:48 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x2, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:28:48 executing program 3:
clone3(&(0x7f0000000640)={0x4080400, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

05:28:48 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x5452, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x2, 0x0)

05:28:48 executing program 5:
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000040)={[0x8]}, 0x8, 0x80000)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000080)={0x80000012})
ioctl$BTRFS_IOC_SET_FEATURES(r0, 0x40309439, &(0x7f00000000c0)={0x1, 0x3, 0x2})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$DVD_AUTH(r1, 0x80041284, 0x0)

05:28:48 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x3f000000, 0x0)

[ 2360.556146] FAULT_INJECTION: forcing a failure.
[ 2360.556146] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2360.557637] CPU: 1 PID: 15712 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2360.558558] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2360.559754] Call Trace:
[ 2360.560039]  <TASK>
[ 2360.560279]  dump_stack_lvl+0x8b/0xb3
[ 2360.560690]  should_fail.cold+0x5/0xa
[ 2360.561092]  prepare_alloc_pages+0x17b/0x500
[ 2360.561572]  __alloc_pages+0x131/0x4e0
[ 2360.561975]  ? lock_downgrade+0x6d0/0x6d0
[ 2360.562496]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2360.563199]  ? xa_load+0x158/0x290
[ 2360.563639]  ? xas_find_conflict+0x9e0/0x9e0
[ 2360.564191]  alloc_pages+0x1a0/0x2f0
[ 2360.564635]  filemap_alloc_folio+0x8e/0xb0
[ 2360.565088]  page_cache_ra_unbounded+0x1af/0x540
[ 2360.565601]  ondemand_readahead+0x642/0x1270
[ 2360.566077]  page_cache_sync_ra+0x1c5/0x200
[ 2360.566552]  filemap_get_pages+0x29e/0x1680
[ 2360.567037]  ? lock_downgrade+0x6d0/0x6d0
[ 2360.567493]  ? unwind_next_frame+0xdfe/0x20a0
[ 2360.567995]  ? filemap_add_folio+0x1b0/0x1b0
[ 2360.568476]  ? lock_is_held_type+0xd7/0x130
[ 2360.568940]  filemap_read+0x311/0xba0
[ 2360.569367]  ? filemap_get_pages+0x1680/0x1680
[ 2360.569857]  ? filter_irq_stacks+0x90/0x90
[ 2360.570318]  ? __stack_depot_save+0x35/0x450
[ 2360.570786]  ? kasan_save_stack+0x2e/0x40
[ 2360.571226]  ? kasan_save_stack+0x1e/0x40
[ 2360.571663]  ? __kasan_kmalloc+0x81/0xa0
[ 2360.572098]  ? alloc_pipe_info+0x1e0/0x580
[ 2360.572559]  ? splice_direct_to_actor+0x700/0x8e0
[ 2360.573066]  ? do_splice_direct+0x1b8/0x280
[ 2360.573529]  ? do_sendfile+0xad7/0x1230
[ 2360.573951]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2360.574444]  ? do_syscall_64+0x3b/0x90
[ 2360.574865]  generic_file_read_iter+0x3c9/0x530
[ 2360.575365]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2360.575959]  ? __fsnotify_parent+0x498/0xa60
[ 2360.576428]  ext4_file_read_iter+0x184/0x3f0
[ 2360.576899]  generic_file_splice_read+0x3b9/0x5d0
[ 2360.577420]  ? pipe_to_user+0x170/0x170
[ 2360.577869]  ? security_file_permission+0xb1/0xd0
[ 2360.578403]  ? pipe_to_user+0x170/0x170
[ 2360.578844]  do_splice_to+0x1bc/0x240
[ 2360.579264]  ? inode_has_perm+0x1d0/0x1d0
[ 2360.579732]  splice_direct_to_actor+0x2c7/0x8e0
[ 2360.580249]  ? pipe_to_sendpage+0x380/0x380
[ 2360.580727]  ? do_splice_to+0x240/0x240
[ 2360.581163]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2360.581390] FAULT_INJECTION: forcing a failure.
[ 2360.581390] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2360.581767]  ? security_file_permission+0xb1/0xd0
[ 2360.581791]  do_splice_direct+0x1b8/0x280
[ 2360.585161]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2360.585699]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2360.586296]  ? security_file_permission+0xb1/0xd0
[ 2360.586860]  do_sendfile+0xad7/0x1230
[ 2360.587283]  ? bit_wait_io_timeout+0x160/0x160
[ 2360.587791]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2360.588360]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2360.588957]  ? vfs_write+0x422/0xac0
[ 2360.589361]  __x64_sys_sendfile64+0x1cd/0x210
[ 2360.589847]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2360.590419]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2360.590981]  do_syscall_64+0x3b/0x90
[ 2360.591382]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2360.591963] RIP: 0033:0x7fdbfaa6cb19
[ 2360.592365] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2360.594339] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2360.595161] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2360.595922] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2360.596692] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2360.597440] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2360.598201] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2360.598990]  </TASK>
[ 2360.599248] CPU: 0 PID: 15713 Comm: syz-executor.7 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2360.601043] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2360.603424] Call Trace:
[ 2360.603994]  <TASK>
[ 2360.604463]  dump_stack_lvl+0x8b/0xb3
[ 2360.605167] FAULT_INJECTION: forcing a failure.
[ 2360.605167] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2360.605286]  should_fail.cold+0x5/0xa
[ 2360.605328]  prepare_alloc_pages+0x17b/0x500
[ 2360.608241]  __alloc_pages+0x131/0x4e0
[ 2360.609064]  ? lock_downgrade+0x6d0/0x6d0
[ 2360.609946]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2360.611222]  ? xa_load+0x158/0x290
[ 2360.611976]  ? xas_find_conflict+0x9e0/0x9e0
[ 2360.612904]  alloc_pages+0x1a0/0x2f0
[ 2360.613697]  filemap_alloc_folio+0x8e/0xb0
[ 2360.614594]  page_cache_ra_unbounded+0x1af/0x540
[ 2360.615611]  ondemand_readahead+0x642/0x1270
[ 2360.616578]  page_cache_sync_ra+0x1c5/0x200
[ 2360.617495]  filemap_get_pages+0x29e/0x1680
[ 2360.618420]  ? lock_downgrade+0x6d0/0x6d0
[ 2360.619302]  ? unwind_next_frame+0xdfe/0x20a0
[ 2360.620261]  ? filemap_add_folio+0x1b0/0x1b0
[ 2360.621209]  ? lock_is_held_type+0xd7/0x130
[ 2360.622129]  filemap_read+0x311/0xba0
[ 2360.622986]  ? filemap_get_pages+0x1680/0x1680
[ 2360.623977]  ? filter_irq_stacks+0x90/0x90
[ 2360.624870]  ? __stack_depot_save+0x35/0x450
[ 2360.625811]  ? kasan_save_stack+0x2e/0x40
[ 2360.626677]  ? kasan_save_stack+0x1e/0x40
[ 2360.627541]  ? __kasan_kmalloc+0x81/0xa0
[ 2360.628396]  ? alloc_pipe_info+0x1e0/0x580
[ 2360.629276]  ? splice_direct_to_actor+0x700/0x8e0
[ 2360.630290]  ? do_splice_direct+0x1b8/0x280
[ 2360.631197]  ? do_sendfile+0xad7/0x1230
[ 2360.632030]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2360.633003]  ? do_syscall_64+0x3b/0x90
[ 2360.633838]  generic_file_read_iter+0x3c9/0x530
[ 2360.634828]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2360.636001]  ? __fsnotify_parent+0x498/0xa60
[ 2360.636922]  ext4_file_read_iter+0x184/0x3f0
[ 2360.637852]  generic_file_splice_read+0x3b9/0x5d0
[ 2360.638874]  ? pipe_to_user+0x170/0x170
[ 2360.639748]  ? security_file_permission+0xb1/0xd0
[ 2360.640763]  ? pipe_to_user+0x170/0x170
[ 2360.641607]  do_splice_to+0x1bc/0x240
[ 2360.642407]  ? inode_has_perm+0x1d0/0x1d0
[ 2360.643278]  splice_direct_to_actor+0x2c7/0x8e0
[ 2360.644268]  ? pipe_to_sendpage+0x380/0x380
[ 2360.645188]  ? do_splice_to+0x240/0x240
[ 2360.646029]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2360.647183]  ? security_file_permission+0xb1/0xd0
[ 2360.648219]  do_splice_direct+0x1b8/0x280
[ 2360.649097]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2360.650123]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2360.651276]  ? security_file_permission+0xb1/0xd0
[ 2360.652307]  do_sendfile+0xad7/0x1230
[ 2360.653112]  ? bit_wait_io_timeout+0x160/0x160
[ 2360.654069]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2360.655153]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2360.656310]  ? vfs_write+0x422/0xac0
[ 2360.657099]  __x64_sys_sendfile64+0x1cd/0x210
[ 2360.658036]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2360.659174]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2360.660273]  do_syscall_64+0x3b/0x90
[ 2360.661072]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2360.662147] RIP: 0033:0x7f78f45e7b19
[ 2360.662928] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2360.666736] RSP: 002b:00007f78f1b5d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2360.668379] RAX: ffffffffffffffda RBX: 00007f78f46faf60 RCX: 00007f78f45e7b19
[ 2360.669864] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2360.671345] RBP: 00007f78f1b5d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2360.672832] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2360.674309] R13: 00007ffee552a8df R14: 00007f78f1b5d300 R15: 0000000000022000
[ 2360.675818]  </TASK>
[ 2360.676302] CPU: 1 PID: 15716 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2360.677216] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2360.678473] Call Trace:
[ 2360.678759]  <TASK>
[ 2360.679002]  dump_stack_lvl+0x8b/0xb3
[ 2360.679427]  should_fail.cold+0x5/0xa
[ 2360.679867]  prepare_alloc_pages+0x17b/0x500
[ 2360.680352]  __alloc_pages+0x131/0x4e0
[ 2360.680779]  ? lock_downgrade+0x6d0/0x6d0
[ 2360.681236]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2360.681899]  ? xa_load+0x158/0x290
[ 2360.682285]  ? xas_find_conflict+0x9e0/0x9e0
[ 2360.682769]  alloc_pages+0x1a0/0x2f0
[ 2360.683192]  filemap_alloc_folio+0x8e/0xb0
[ 2360.683668]  page_cache_ra_unbounded+0x1af/0x540
[ 2360.684206]  ondemand_readahead+0x642/0x1270
[ 2360.684678]  page_cache_sync_ra+0x1c5/0x200
[ 2360.685155]  filemap_get_pages+0x29e/0x1680
[ 2360.685622]  ? lock_downgrade+0x6d0/0x6d0
[ 2360.686088]  ? unwind_next_frame+0xdfe/0x20a0
[ 2360.686579]  ? filemap_add_folio+0x1b0/0x1b0
[ 2360.687085]  ? lock_is_held_type+0xd7/0x130
[ 2360.687549]  filemap_read+0x311/0xba0
[ 2360.688006]  ? filemap_get_pages+0x1680/0x1680
[ 2360.688513]  ? filter_irq_stacks+0x90/0x90
[ 2360.688985]  ? __stack_depot_save+0x35/0x450
[ 2360.689480]  ? kasan_save_stack+0x2e/0x40
[ 2360.689941]  ? kasan_save_stack+0x1e/0x40
[ 2360.690389]  ? __kasan_kmalloc+0x81/0xa0
[ 2360.690840]  ? alloc_pipe_info+0x1e0/0x580
[ 2360.691292]  ? splice_direct_to_actor+0x700/0x8e0
[ 2360.691814]  ? do_splice_direct+0x1b8/0x280
[ 2360.692294]  ? do_sendfile+0xad7/0x1230
[ 2360.692711]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2360.693229]  ? do_syscall_64+0x3b/0x90
[ 2360.693664]  generic_file_read_iter+0x3c9/0x530
[ 2360.694177]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2360.694782]  ? __fsnotify_parent+0x498/0xa60
[ 2360.695263]  ext4_file_read_iter+0x184/0x3f0
[ 2360.695774]  generic_file_splice_read+0x3b9/0x5d0
[ 2360.696309]  ? pipe_to_user+0x170/0x170
[ 2360.696759]  ? security_file_permission+0xb1/0xd0
[ 2360.697292]  ? pipe_to_user+0x170/0x170
[ 2360.697721]  do_splice_to+0x1bc/0x240
[ 2360.698148]  ? inode_has_perm+0x1d0/0x1d0
[ 2360.698615]  splice_direct_to_actor+0x2c7/0x8e0
[ 2360.699137]  ? pipe_to_sendpage+0x380/0x380
[ 2360.699619]  ? do_splice_to+0x240/0x240
[ 2360.700080]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2360.700692]  ? security_file_permission+0xb1/0xd0
[ 2360.701238]  do_splice_direct+0x1b8/0x280
[ 2360.701709]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2360.702245]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2360.702836]  ? security_file_permission+0xb1/0xd0
[ 2360.703378]  do_sendfile+0xad7/0x1230
[ 2360.703810]  ? bit_wait_io_timeout+0x160/0x160
[ 2360.704326]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2360.704900]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2360.705501]  ? vfs_write+0x422/0xac0
[ 2360.705932]  __x64_sys_sendfile64+0x1cd/0x210
[ 2360.706415]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2360.707009]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2360.707582]  do_syscall_64+0x3b/0x90
[ 2360.708013]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2360.708588] RIP: 0033:0x7f1455db8b19
[ 2360.708992] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2360.711038] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2360.711892] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2360.712679] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2360.713470] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2360.714245] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2360.715042] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2360.715844]  </TASK>
05:28:48 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x3, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:28:48 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0xffffffff, 0x0)

05:29:04 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x5460, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x2, 0x0)

05:29:04 executing program 3:
fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f0000000000)=0x5)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

05:29:04 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 28)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:29:04 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x2)

05:29:04 executing program 5:
r0 = mq_open(&(0x7f0000000040)=':\\@]^Q\x00', 0x2, 0x48, &(0x7f0000000080)={0x5, 0x7, 0x5, 0xfffffffffffffffd})
fsetxattr$trusted_overlay_origin(r0, &(0x7f00000000c0), &(0x7f0000000100), 0x2, 0x2)
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$DVD_AUTH(r1, 0x80041284, 0x0)

05:29:04 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x4, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:29:04 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 29)

05:29:04 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 16)

[ 2376.712011] FAULT_INJECTION: forcing a failure.
[ 2376.712011] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2376.713409] CPU: 1 PID: 15743 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2376.714485] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2376.715684] Call Trace:
[ 2376.716036]  <TASK>
[ 2376.716272]  dump_stack_lvl+0x8b/0xb3
[ 2376.716782]  should_fail.cold+0x5/0xa
[ 2376.717190]  prepare_alloc_pages+0x17b/0x500
[ 2376.717783]  __alloc_pages+0x131/0x4e0
[ 2376.718186]  ? lock_downgrade+0x6d0/0x6d0
[ 2376.718731]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2376.719367]  ? xa_load+0x158/0x290
[ 2376.719832]  ? xas_find_conflict+0x9e0/0x9e0
[ 2376.720315]  alloc_pages+0x1a0/0x2f0
[ 2376.720807]  filemap_alloc_folio+0x8e/0xb0
[ 2376.721260]  page_cache_ra_unbounded+0x1af/0x540
[ 2376.721888]  ondemand_readahead+0x642/0x1270
[ 2376.721902] FAULT_INJECTION: forcing a failure.
[ 2376.721902] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2376.722353]  page_cache_sync_ra+0x1c5/0x200
[ 2376.722376]  filemap_get_pages+0x29e/0x1680
[ 2376.722398]  ? lock_downgrade+0x6d0/0x6d0
[ 2376.722419]  ? unwind_next_frame+0xdfe/0x20a0
[ 2376.722435]  ? filemap_add_folio+0x1b0/0x1b0
[ 2376.727107]  ? lock_is_held_type+0xd7/0x130
[ 2376.727546]  filemap_read+0x311/0xba0
[ 2376.727936]  ? filemap_get_pages+0x1680/0x1680
[ 2376.728406]  ? filter_irq_stacks+0x90/0x90
[ 2376.728819]  ? __stack_depot_save+0x35/0x450
[ 2376.729254]  ? kasan_save_stack+0x2e/0x40
[ 2376.729663]  ? kasan_save_stack+0x1e/0x40
[ 2376.730062]  ? __kasan_kmalloc+0x81/0xa0
[ 2376.730454]  ? alloc_pipe_info+0x1e0/0x580
[ 2376.730871]  ? splice_direct_to_actor+0x700/0x8e0
[ 2376.731342]  ? do_splice_direct+0x1b8/0x280
[ 2376.731769]  ? do_sendfile+0xad7/0x1230
[ 2376.732161]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2376.732615]  ? do_syscall_64+0x3b/0x90
[ 2376.733003]  generic_file_read_iter+0x3c9/0x530
[ 2376.733461]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2376.733998]  ? __fsnotify_parent+0x498/0xa60
[ 2376.734426]  ext4_file_read_iter+0x184/0x3f0
[ 2376.734860]  generic_file_splice_read+0x3b9/0x5d0
[ 2376.735334]  ? pipe_to_user+0x170/0x170
[ 2376.735735]  ? security_file_permission+0xb1/0xd0
[ 2376.736227]  ? pipe_to_user+0x170/0x170
[ 2376.736626]  do_splice_to+0x1bc/0x240
[ 2376.737000]  ? inode_has_perm+0x1d0/0x1d0
[ 2376.737406]  splice_direct_to_actor+0x2c7/0x8e0
[ 2376.737872]  ? pipe_to_sendpage+0x380/0x380
[ 2376.738299]  ? do_splice_to+0x240/0x240
[ 2376.738689]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2376.739225]  ? security_file_permission+0xb1/0xd0
[ 2376.739701]  do_splice_direct+0x1b8/0x280
[ 2376.740120]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2376.740600]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2376.741135]  ? security_file_permission+0xb1/0xd0
[ 2376.741612]  do_sendfile+0xad7/0x1230
[ 2376.741991]  ? bit_wait_io_timeout+0x160/0x160
[ 2376.742467]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2376.742971]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2376.743543]  ? vfs_write+0x422/0xac0
[ 2376.743910]  __x64_sys_sendfile64+0x1cd/0x210
[ 2376.744377]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2376.744893]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2376.745399]  do_syscall_64+0x3b/0x90
[ 2376.745766]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2376.746272] RIP: 0033:0x7fdbfaa6cb19
[ 2376.746630] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2376.748408] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2376.749147] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2376.749836] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2376.750521] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2376.751210] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2376.751897] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2376.752608]  </TASK>
[ 2376.752834] CPU: 0 PID: 15746 Comm: syz-executor.7 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2376.754593] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2376.757049] Call Trace:
[ 2376.757621]  <TASK>
[ 2376.758124]  dump_stack_lvl+0x8b/0xb3
[ 2376.758986]  should_fail.cold+0x5/0xa
[ 2376.759851]  prepare_alloc_pages+0x17b/0x500
[ 2376.760859]  __alloc_pages+0x131/0x4e0
[ 2376.761717]  ? lock_downgrade+0x6d0/0x6d0
[ 2376.762643]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2376.764001]  ? xa_load+0x158/0x290
[ 2376.764790]  ? xas_find_conflict+0x9e0/0x9e0
[ 2376.765770]  alloc_pages+0x1a0/0x2f0
[ 2376.766607]  filemap_alloc_folio+0x8e/0xb0
[ 2376.767553]  page_cache_ra_unbounded+0x1af/0x540
[ 2376.768638]  ondemand_readahead+0x642/0x1270
[ 2376.769633]  page_cache_sync_ra+0x1c5/0x200
[ 2376.770594]  filemap_get_pages+0x29e/0x1680
[ 2376.771565]  ? lock_downgrade+0x6d0/0x6d0
[ 2376.772513]  ? unwind_next_frame+0xdfe/0x20a0
[ 2376.773506]  ? filemap_add_folio+0x1b0/0x1b0
[ 2376.774500]  ? lock_is_held_type+0xd7/0x130
[ 2376.775468]  filemap_read+0x311/0xba0
[ 2376.776368]  ? filemap_get_pages+0x1680/0x1680
[ 2376.777380]  ? filter_irq_stacks+0x90/0x90
[ 2376.778319]  ? __stack_depot_save+0x35/0x450
[ 2376.779311]  ? kasan_save_stack+0x2e/0x40
[ 2376.780234]  ? kasan_save_stack+0x1e/0x40
[ 2376.781146]  ? __kasan_kmalloc+0x81/0xa0
[ 2376.782039]  ? alloc_pipe_info+0x1e0/0x580
[ 2376.782977]  ? splice_direct_to_actor+0x700/0x8e0
[ 2376.784064]  ? do_splice_direct+0x1b8/0x280
[ 2376.785026]  ? do_sendfile+0xad7/0x1230
[ 2376.785898]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2376.786918]  ? do_syscall_64+0x3b/0x90
[ 2376.787795]  generic_file_read_iter+0x3c9/0x530
[ 2376.788846]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
05:29:04 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)
r1 = getpgid(r0)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000080)=<r3=>0x0)
capset(&(0x7f0000000340)={0x20080522, r3}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
r4 = gettid()
r5 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r5, 0x5429, &(0x7f0000000080)=<r6=>0x0)
capset(&(0x7f0000000340)={0x20080522, r6}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
r7 = getpid()
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000240)={<r8=>0x0}, &(0x7f0000000280)=0xc)
clone3(&(0x7f0000000300)={0x80000, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0xf}, &(0x7f0000000100)=""/54, 0x36, &(0x7f0000000140)=""/194, &(0x7f00000002c0)=[r1, r0, r3, r4, r6, r7, r0, r8, r0], 0x9}, 0x58)

[ 2376.790073]  ? __fsnotify_parent+0x498/0xa60
[ 2376.791167]  ext4_file_read_iter+0x184/0x3f0
[ 2376.792171]  generic_file_splice_read+0x3b9/0x5d0
[ 2376.793253]  ? pipe_to_user+0x170/0x170
[ 2376.794167]  ? security_file_permission+0xb1/0xd0
[ 2376.795240]  ? pipe_to_user+0x170/0x170
[ 2376.796158]  do_splice_to+0x1bc/0x240
[ 2376.797010]  ? inode_has_perm+0x1d0/0x1d0
[ 2376.797930]  splice_direct_to_actor+0x2c7/0x8e0
[ 2376.798971]  ? pipe_to_sendpage+0x380/0x380
[ 2376.799946]  ? do_splice_to+0x240/0x240
[ 2376.800858]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2376.802081]  ? security_file_permission+0xb1/0xd0
[ 2376.803169]  do_splice_direct+0x1b8/0x280
[ 2376.804119]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2376.805211]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2376.806431]  ? security_file_permission+0xb1/0xd0
05:29:04 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x5, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

[ 2376.807519]  do_sendfile+0xad7/0x1230
[ 2376.808443]  ? bit_wait_io_timeout+0x160/0x160
[ 2376.809397]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2376.810473]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2376.811608]  ? vfs_write+0x422/0xac0
[ 2376.812419]  __x64_sys_sendfile64+0x1cd/0x210
[ 2376.813355]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2376.814600]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2376.815745]  do_syscall_64+0x3b/0x90
[ 2376.816600]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2376.817734] RIP: 0033:0x7f78f45e7b19
[ 2376.818551] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2376.822563] RSP: 002b:00007f78f1b5d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2376.824250] RAX: ffffffffffffffda RBX: 00007f78f46faf60 RCX: 00007f78f45e7b19
[ 2376.825812] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2376.827376] RBP: 00007f78f1b5d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2376.828948] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2376.830513] R13: 00007ffee552a8df R14: 00007f78f1b5d300 R15: 0000000000022000
[ 2376.832129]  </TASK>
05:29:04 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x3)

[ 2376.849409] FAULT_INJECTION: forcing a failure.
[ 2376.849409] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2376.852591] CPU: 0 PID: 15738 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2376.854417] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2376.856768] Call Trace:
[ 2376.857311]  <TASK>
[ 2376.857781]  dump_stack_lvl+0x8b/0xb3
[ 2376.858613]  should_fail.cold+0x5/0xa
[ 2376.859615]  prepare_alloc_pages+0x17b/0x500
[ 2376.860661]  __alloc_pages+0x131/0x4e0
[ 2376.861526]  ? lock_downgrade+0x6d0/0x6d0
[ 2376.862453]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2376.863791]  ? xa_load+0x158/0x290
[ 2376.864589]  ? xas_find_conflict+0x9e0/0x9e0
[ 2376.865568]  alloc_pages+0x1a0/0x2f0
[ 2376.866405]  filemap_alloc_folio+0x8e/0xb0
[ 2376.867368]  page_cache_ra_unbounded+0x1af/0x540
[ 2376.867431]  ondemand_readahead+0x642/0x1270
[ 2376.867482]  page_cache_sync_ra+0x1c5/0x200
[ 2376.867521]  filemap_get_pages+0x29e/0x1680
[ 2376.867567]  ? lock_downgrade+0x6d0/0x6d0
[ 2376.867607]  ? unwind_next_frame+0xdfe/0x20a0
[ 2376.867640]  ? filemap_add_folio+0x1b0/0x1b0
[ 2376.867688]  ? lock_is_held_type+0xd7/0x130
[ 2376.867732]  filemap_read+0x311/0xba0
[ 2376.867797]  ? filemap_get_pages+0x1680/0x1680
[ 2376.867834]  ? filter_irq_stacks+0x90/0x90
[ 2376.867866]  ? __stack_depot_save+0x35/0x450
[ 2376.867912]  ? kasan_save_stack+0x2e/0x40
[ 2376.867935]  ? kasan_save_stack+0x1e/0x40
[ 2376.867984]  ? __kasan_kmalloc+0x81/0xa0
[ 2376.868008]  ? alloc_pipe_info+0x1e0/0x580
[ 2376.868035]  ? splice_direct_to_actor+0x700/0x8e0
[ 2376.868074]  ? do_splice_direct+0x1b8/0x280
[ 2376.868110]  ? do_sendfile+0xad7/0x1230
[ 2376.868136]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2376.868163]  ? do_syscall_64+0x3b/0x90
[ 2376.868209]  generic_file_read_iter+0x3c9/0x530
[ 2376.868253]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2376.890012]  ? __fsnotify_parent+0x498/0xa60
[ 2376.891153]  ext4_file_read_iter+0x184/0x3f0
[ 2376.892120]  generic_file_splice_read+0x3b9/0x5d0
[ 2376.893376]  ? pipe_to_user+0x170/0x170
[ 2376.894257]  ? security_file_permission+0xb1/0xd0
[ 2376.895501]  ? pipe_to_user+0x170/0x170
[ 2376.896364]  do_splice_to+0x1bc/0x240
[ 2376.897350]  ? inode_has_perm+0x1d0/0x1d0
[ 2376.898234]  splice_direct_to_actor+0x2c7/0x8e0
[ 2376.899441]  ? pipe_to_sendpage+0x380/0x380
[ 2376.900392]  ? do_splice_to+0x240/0x240
[ 2376.901428]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2376.902597]  ? security_file_permission+0xb1/0xd0
[ 2376.903777]  do_splice_direct+0x1b8/0x280
[ 2376.904671]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2376.905686]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2376.906846]  ? security_file_permission+0xb1/0xd0
[ 2376.907889]  do_sendfile+0xad7/0x1230
[ 2376.908698]  ? bit_wait_io_timeout+0x160/0x160
[ 2376.909651]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2376.910745]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2376.911882]  ? vfs_write+0x422/0xac0
[ 2376.912688]  __x64_sys_sendfile64+0x1cd/0x210
[ 2376.913615]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2376.914732]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2376.915800]  do_syscall_64+0x3b/0x90
[ 2376.916598]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2376.917673] RIP: 0033:0x7f1455db8b19
[ 2376.918539] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2376.922312] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2376.923890] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2376.925364] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2376.926817] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2376.928305] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2376.928323] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2376.928369]  </TASK>
05:29:18 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x40049409, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x2, 0x0)

05:29:18 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x6, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:29:18 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x8)

05:29:18 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 17)

05:29:18 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 30)

05:29:18 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 29)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:29:18 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x40)
ioctl$CDROMEJECT_SW(r1, 0x530f, 0x1)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x110200, 0x4)
ioctl$CDROM_DEBUG(r2, 0x5330, 0x0)
ioctl$CDROMPLAYTRKIND(r2, 0x5304, &(0x7f0000000080)={0x7, 0xfc, 0x5, 0x51})
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)

05:29:18 executing program 3:
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
write$P9_RCREATE(0xffffffffffffffff, &(0x7f0000000000)={0x18, 0x73, 0x1, {{0x1, 0x0, 0x8}, 0x9}}, 0x18)
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)

[ 2391.476753] FAULT_INJECTION: forcing a failure.
[ 2391.476753] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2391.478120] CPU: 1 PID: 15878 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2391.479242] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2391.480697] Call Trace:
[ 2391.481038]  <TASK>
[ 2391.481335]  dump_stack_lvl+0x8b/0xb3
[ 2391.481813]  should_fail.cold+0x5/0xa
[ 2391.482242]  prepare_alloc_pages+0x17b/0x500
[ 2391.482730]  __alloc_pages+0x131/0x4e0
[ 2391.483160]  ? lock_downgrade+0x6d0/0x6d0
[ 2391.483617]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2391.484297]  ? xa_load+0x158/0x290
[ 2391.484692]  ? xas_find_conflict+0x9e0/0x9e0
[ 2391.485179]  alloc_pages+0x1a0/0x2f0
[ 2391.485604]  filemap_alloc_folio+0x8e/0xb0
[ 2391.486084]  page_cache_ra_unbounded+0x1af/0x540
[ 2391.486627]  ondemand_readahead+0x642/0x1270
[ 2391.487161]  page_cache_sync_ra+0x1c5/0x200
[ 2391.487684]  filemap_get_pages+0x29e/0x1680
[ 2391.488218]  ? lock_downgrade+0x6d0/0x6d0
[ 2391.488728]  ? unwind_next_frame+0xdfe/0x20a0
[ 2391.489276]  ? filemap_add_folio+0x1b0/0x1b0
[ 2391.489821]  ? lock_is_held_type+0xd7/0x130
[ 2391.490347]  filemap_read+0x311/0xba0
[ 2391.490829]  ? filemap_get_pages+0x1680/0x1680
[ 2391.491389]  ? filter_irq_stacks+0x90/0x90
[ 2391.491921]  ? __stack_depot_save+0x35/0x450
[ 2391.492541]  ? kasan_save_stack+0x2e/0x40
[ 2391.493044]  ? kasan_save_stack+0x1e/0x40
[ 2391.493545]  ? __kasan_kmalloc+0x81/0xa0
[ 2391.494032]  ? alloc_pipe_info+0x1e0/0x580
[ 2391.494550]  ? splice_direct_to_actor+0x700/0x8e0
[ 2391.495158]  ? do_splice_direct+0x1b8/0x280
[ 2391.495756]  ? do_sendfile+0xad7/0x1230
[ 2391.496297]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2391.496916]  ? do_syscall_64+0x3b/0x90
[ 2391.497401]  generic_file_read_iter+0x3c9/0x530
[ 2391.497973]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2391.498646]  ? __fsnotify_parent+0x498/0xa60
[ 2391.499181]  ext4_file_read_iter+0x184/0x3f0
[ 2391.499720]  generic_file_splice_read+0x3b9/0x5d0
[ 2391.500326]  ? pipe_to_user+0x170/0x170
[ 2391.500825]  ? security_file_permission+0xb1/0xd0
[ 2391.501416]  ? pipe_to_user+0x170/0x170
[ 2391.501899]  do_splice_to+0x1bc/0x240
[ 2391.502360]  ? inode_has_perm+0x1d0/0x1d0
[ 2391.502864]  splice_direct_to_actor+0x2c7/0x8e0
[ 2391.503433]  ? pipe_to_sendpage+0x380/0x380
[ 2391.503959]  ? do_splice_to+0x240/0x240
[ 2391.504421]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2391.505091]  ? security_file_permission+0xb1/0xd0
[ 2391.505682]  do_splice_direct+0x1b8/0x280
[ 2391.506185]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2391.506769]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2391.507427]  ? security_file_permission+0xb1/0xd0
[ 2391.508008]  do_sendfile+0xad7/0x1230
[ 2391.508480]  ? bit_wait_io_timeout+0x160/0x160
[ 2391.509029]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2391.509639]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2391.510290]  ? vfs_write+0x422/0xac0
[ 2391.510738]  __x64_sys_sendfile64+0x1cd/0x210
[ 2391.511277]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2391.511910]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2391.512518]  do_syscall_64+0x3b/0x90
[ 2391.512916]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2391.513453] RIP: 0033:0x7fdbfaa6cb19
[ 2391.513839] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2391.515749] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2391.516554] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2391.517292] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2391.518034] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2391.518795] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2391.519556] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2391.520336]  </TASK>
[ 2391.536069] FAULT_INJECTION: forcing a failure.
[ 2391.536069] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2391.537306] CPU: 1 PID: 15880 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2391.537666] FAULT_INJECTION: forcing a failure.
[ 2391.537666] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2391.538151] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2391.538162] Call Trace:
[ 2391.538167]  <TASK>
[ 2391.538172]  dump_stack_lvl+0x8b/0xb3
[ 2391.542550]  should_fail.cold+0x5/0xa
[ 2391.542946]  prepare_alloc_pages+0x17b/0x500
[ 2391.543404]  __alloc_pages+0x131/0x4e0
[ 2391.543797]  ? lock_downgrade+0x6d0/0x6d0
[ 2391.544226]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2391.544847]  ? xa_load+0x158/0x290
[ 2391.545208]  ? xas_find_conflict+0x9e0/0x9e0
[ 2391.545652]  alloc_pages+0x1a0/0x2f0
[ 2391.546064]  filemap_alloc_folio+0x8e/0xb0
[ 2391.546534]  page_cache_ra_unbounded+0x1af/0x540
[ 2391.547068]  ondemand_readahead+0x642/0x1270
[ 2391.547559]  page_cache_sync_ra+0x1c5/0x200
[ 2391.548037]  filemap_get_pages+0x29e/0x1680
[ 2391.548500]  ? lock_downgrade+0x6d0/0x6d0
[ 2391.548964]  ? unwind_next_frame+0xdfe/0x20a0
[ 2391.549465]  ? filemap_add_folio+0x1b0/0x1b0
[ 2391.549959]  ? lock_is_held_type+0xd7/0x130
[ 2391.550444]  filemap_read+0x311/0xba0
[ 2391.550845]  ? filemap_get_pages+0x1680/0x1680
[ 2391.551350]  ? filter_irq_stacks+0x90/0x90
[ 2391.551816]  ? __stack_depot_save+0x35/0x450
[ 2391.552273]  ? kasan_save_stack+0x2e/0x40
[ 2391.552728]  ? kasan_save_stack+0x1e/0x40
[ 2391.553183]  ? __kasan_kmalloc+0x81/0xa0
[ 2391.553590]  ? alloc_pipe_info+0x1e0/0x580
[ 2391.554056]  ? splice_direct_to_actor+0x700/0x8e0
[ 2391.554543]  ? do_splice_direct+0x1b8/0x280
[ 2391.555020]  ? do_sendfile+0xad7/0x1230
[ 2391.555418]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2391.555924]  ? do_syscall_64+0x3b/0x90
[ 2391.556339]  generic_file_read_iter+0x3c9/0x530
[ 2391.556855]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2391.557413]  ? __fsnotify_parent+0x498/0xa60
[ 2391.557894]  ext4_file_read_iter+0x184/0x3f0
[ 2391.558345]  generic_file_splice_read+0x3b9/0x5d0
[ 2391.558882]  ? pipe_to_user+0x170/0x170
[ 2391.559301]  ? security_file_permission+0xb1/0xd0
[ 2391.559834]  ? pipe_to_user+0x170/0x170
[ 2391.560286]  do_splice_to+0x1bc/0x240
[ 2391.560707]  ? inode_has_perm+0x1d0/0x1d0
[ 2391.561162]  splice_direct_to_actor+0x2c7/0x8e0
[ 2391.561681]  ? pipe_to_sendpage+0x380/0x380
[ 2391.562159]  ? do_splice_to+0x240/0x240
[ 2391.562599]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2391.563201]  ? security_file_permission+0xb1/0xd0
[ 2391.563742]  do_splice_direct+0x1b8/0x280
[ 2391.564210]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2391.564751]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2391.565357]  ? security_file_permission+0xb1/0xd0
[ 2391.565892]  do_sendfile+0xad7/0x1230
[ 2391.566318]  ? bit_wait_io_timeout+0x160/0x160
[ 2391.566823]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2391.567389]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2391.567995]  ? vfs_write+0x422/0xac0
[ 2391.568389]  __x64_sys_sendfile64+0x1cd/0x210
[ 2391.568882]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2391.569461]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2391.570031]  do_syscall_64+0x3b/0x90
[ 2391.570447]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2391.571008] RIP: 0033:0x7f1455db8b19
[ 2391.571412] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2391.573401] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2391.574243] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2391.575018] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2391.575788] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2391.576580] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2391.577354] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2391.578141]  </TASK>
[ 2391.578396] CPU: 0 PID: 15877 Comm: syz-executor.7 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2391.580143] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2391.582515] Call Trace:
[ 2391.583058]  <TASK>
[ 2391.583533]  dump_stack_lvl+0x8b/0xb3
[ 2391.584362]  should_fail.cold+0x5/0xa
[ 2391.585182]  prepare_alloc_pages+0x17b/0x500
[ 2391.586130]  __alloc_pages+0x131/0x4e0
[ 2391.586945]  ? lock_downgrade+0x6d0/0x6d0
[ 2391.587818]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2391.589107]  ? xa_load+0x158/0x290
[ 2391.589857]  ? xas_find_conflict+0x9e0/0x9e0
[ 2391.590781]  alloc_pages+0x1a0/0x2f0
[ 2391.591639]  filemap_alloc_folio+0x8e/0xb0
[ 2391.592555]  page_cache_ra_unbounded+0x1af/0x540
[ 2391.593569]  ondemand_readahead+0x642/0x1270
[ 2391.594510]  page_cache_sync_ra+0x1c5/0x200
[ 2391.595423]  filemap_get_pages+0x29e/0x1680
[ 2391.596357]  ? lock_downgrade+0x6d0/0x6d0
[ 2391.597239]  ? unwind_next_frame+0xdfe/0x20a0
[ 2391.598177]  ? filemap_add_folio+0x1b0/0x1b0
[ 2391.599111]  ? lock_is_held_type+0xd7/0x130
[ 2391.600025]  filemap_read+0x311/0xba0
[ 2391.600902]  ? filemap_get_pages+0x1680/0x1680
[ 2391.601867]  ? filter_irq_stacks+0x90/0x90
[ 2391.602746]  ? __stack_depot_save+0x35/0x450
[ 2391.603675]  ? kasan_save_stack+0x2e/0x40
[ 2391.604542]  ? kasan_save_stack+0x1e/0x40
[ 2391.605401]  ? __kasan_kmalloc+0x81/0xa0
[ 2391.606241]  ? alloc_pipe_info+0x1e0/0x580
[ 2391.607119]  ? splice_direct_to_actor+0x700/0x8e0
[ 2391.608126]  ? do_splice_direct+0x1b8/0x280
[ 2391.609043]  ? do_sendfile+0xad7/0x1230
[ 2391.609869]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2391.610835]  ? do_syscall_64+0x3b/0x90
[ 2391.611660]  generic_file_read_iter+0x3c9/0x530
[ 2391.612657]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2391.613801]  ? __fsnotify_parent+0x498/0xa60
[ 2391.614719]  ext4_file_read_iter+0x184/0x3f0
[ 2391.615642]  generic_file_splice_read+0x3b9/0x5d0
[ 2391.616667]  ? pipe_to_user+0x170/0x170
[ 2391.617530]  ? security_file_permission+0xb1/0xd0
[ 2391.618582]  ? pipe_to_user+0x170/0x170
[ 2391.619476]  do_splice_to+0x1bc/0x240
[ 2391.620341]  ? inode_has_perm+0x1d0/0x1d0
[ 2391.621265]  splice_direct_to_actor+0x2c7/0x8e0
[ 2391.622308]  ? pipe_to_sendpage+0x380/0x380
[ 2391.623281]  ? do_splice_to+0x240/0x240
[ 2391.624194]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2391.625418]  ? security_file_permission+0xb1/0xd0
[ 2391.626503]  do_splice_direct+0x1b8/0x280
[ 2391.627436]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2391.628535]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2391.629755]  ? security_file_permission+0xb1/0xd0
[ 2391.630835]  do_sendfile+0xad7/0x1230
[ 2391.631691]  ? bit_wait_io_timeout+0x160/0x160
[ 2391.632722]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2391.633868]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2391.635092]  ? vfs_write+0x422/0xac0
[ 2391.635927]  __x64_sys_sendfile64+0x1cd/0x210
[ 2391.636940]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2391.638125]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2391.639277]  do_syscall_64+0x3b/0x90
[ 2391.640116]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2391.641276] RIP: 0033:0x7f78f45e7b19
[ 2391.642096] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2391.646117] RSP: 002b:00007f78f1b5d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2391.647784] RAX: ffffffffffffffda RBX: 00007f78f46faf60 RCX: 00007f78f45e7b19
[ 2391.649354] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2391.650919] RBP: 00007f78f1b5d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2391.652498] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2391.654069] R13: 00007ffee552a8df R14: 00007f78f1b5d300 R15: 0000000000022000
[ 2391.655657]  </TASK>
05:29:19 executing program 3:
r0 = syz_open_dev$vcsu(&(0x7f0000000000), 0x9, 0x40080)
r1 = clone3(&(0x7f0000000640)={0x261030200, &(0x7f00000000c0), 0x0, 0x0, {0x23}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0x58)
clone3(&(0x7f00000002c0)={0x210081000, &(0x7f0000000040), &(0x7f0000000080), &(0x7f0000000100), {0x19}, &(0x7f0000000140)=""/214, 0xd6, &(0x7f0000000240)=""/48, &(0x7f0000000280)=[r1, r1, r1], 0x3, {r0}}, 0x58)

05:29:19 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x300)

05:29:19 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$CDROM_LOCKDOOR(0xffffffffffffffff, 0x5329, 0x1)
ioctl$CDROMREADAUDIO(r0, 0x530e, &(0x7f0000000240)={@lba=0x6, 0x3, 0x20, &(0x7f0000000200)=""/32})
ioctl$CDROM_SEND_PACKET(r0, 0x5393, &(0x7f00000010c0)={"d41902ffd77952ba466dd2c1", &(0x7f0000001100)="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", 0x1084, 0x5, &(0x7f0000001040)={0x71, 0x1, 0x6, 0x1, 0x0, 0x0, 0x0, "6def1812", 0x7f, "00c7372a", 0x7, 0x3f, 0x0, "9937ef", "0f51b6b18735e0c0d71a607e3275df404f9785767a0b2d5418e82fc5a0bb18ca91e6a2c6b09095463c3269483ff9"}, 0x0, 0x80, 0xfffffffe, &(0x7f0000001080)})
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r1=>r0, @ANYBLOB="02000000000000002e2566696c650800"])
ioctl$CDROM_GET_MCN(r1, 0x5311, &(0x7f0000000140))
ioctl$CDROMREADAUDIO(r1, 0x530e, &(0x7f0000000100)={@msf={0xff, 0x5, 0xf8}, 0x0, 0x3a, &(0x7f00000000c0)=""/58})
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r2=>r0}, './file0\x00'})
r3 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r3, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
ioctl$CDROM_SET_OPTIONS(r3, 0x5320, 0x11)
ioctl$CDROMEJECT_SW(r2, 0x530f, 0x1)
r4 = syz_open_dev$evdev(&(0x7f0000000180), 0x1000, 0x6002)
r5 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80))
symlinkat(&(0x7f0000000000)='./file0\x00', r5, &(0x7f0000000040)='./file0\x00')
linkat(r5, &(0x7f00000000c0)='./file0\x00', r5, &(0x7f0000000100)='./file1\x00', 0x1000)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r2, 0xc0189378, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r4, {r5}}, './file0\x00'})

05:29:19 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x3f00)

05:29:19 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 31)

05:29:19 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 30)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:29:19 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x8, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:29:19 executing program 3:
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x0, 0x80)

[ 2391.861483] FAULT_INJECTION: forcing a failure.
[ 2391.861483] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2391.864241] CPU: 0 PID: 16104 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2391.866077] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2391.868569] Call Trace:
[ 2391.869138]  <TASK>
[ 2391.869633]  dump_stack_lvl+0x8b/0xb3
[ 2391.870503]  should_fail.cold+0x5/0xa
[ 2391.871360]  prepare_alloc_pages+0x17b/0x500
[ 2391.872387]  __alloc_pages+0x131/0x4e0
[ 2391.873244]  ? lock_downgrade+0x6d0/0x6d0
[ 2391.874176]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2391.875522]  ? xa_load+0x158/0x290
[ 2391.876322]  ? xas_find_conflict+0x9e0/0x9e0
[ 2391.877323]  alloc_pages+0x1a0/0x2f0
[ 2391.878196]  filemap_alloc_folio+0x8e/0xb0
[ 2391.879147]  page_cache_ra_unbounded+0x1af/0x540
[ 2391.880242]  ondemand_readahead+0x642/0x1270
[ 2391.881245]  page_cache_sync_ra+0x1c5/0x200
[ 2391.882220]  filemap_get_pages+0x29e/0x1680
[ 2391.883194]  ? lock_downgrade+0x6d0/0x6d0
[ 2391.884130]  ? unwind_next_frame+0xdfe/0x20a0
[ 2391.885136]  ? filemap_add_folio+0x1b0/0x1b0
[ 2391.886130]  ? lock_is_held_type+0xd7/0x130
[ 2391.887100]  filemap_read+0x311/0xba0
[ 2391.887985]  ? filemap_get_pages+0x1680/0x1680
[ 2391.889019]  ? filter_irq_stacks+0x90/0x90
[ 2391.889962]  ? __stack_depot_save+0x35/0x450
[ 2391.890956]  ? kasan_save_stack+0x2e/0x40
[ 2391.891863]  ? kasan_save_stack+0x1e/0x40
[ 2391.892793]  ? __kasan_kmalloc+0x81/0xa0
[ 2391.893687]  ? alloc_pipe_info+0x1e0/0x580
[ 2391.894621]  ? splice_direct_to_actor+0x700/0x8e0
[ 2391.895692]  ? do_splice_direct+0x1b8/0x280
[ 2391.896669]  ? do_sendfile+0xad7/0x1230
[ 2391.897549]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2391.898573]  ? do_syscall_64+0x3b/0x90
[ 2391.899454]  generic_file_read_iter+0x3c9/0x530
[ 2391.900515]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2391.901735]  ? __fsnotify_parent+0x498/0xa60
[ 2391.902718]  ext4_file_read_iter+0x184/0x3f0
[ 2391.903699]  generic_file_splice_read+0x3b9/0x5d0
[ 2391.904799]  ? pipe_to_user+0x170/0x170
[ 2391.905717]  ? security_file_permission+0xb1/0xd0
[ 2391.906796]  ? pipe_to_user+0x170/0x170
[ 2391.907686]  do_splice_to+0x1bc/0x240
[ 2391.908552]  ? inode_has_perm+0x1d0/0x1d0
[ 2391.909475]  splice_direct_to_actor+0x2c7/0x8e0
[ 2391.910517]  ? pipe_to_sendpage+0x380/0x380
[ 2391.911486]  ? do_splice_to+0x240/0x240
[ 2391.912397]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2391.913617]  ? security_file_permission+0xb1/0xd0
[ 2391.914701]  do_splice_direct+0x1b8/0x280
[ 2391.915628]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2391.916728]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2391.917954]  ? security_file_permission+0xb1/0xd0
[ 2391.919045]  do_sendfile+0xad7/0x1230
[ 2391.919897]  ? bit_wait_io_timeout+0x160/0x160
[ 2391.920942]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2391.922087]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2391.923314]  ? vfs_write+0x422/0xac0
[ 2391.924150]  __x64_sys_sendfile64+0x1cd/0x210
[ 2391.925159]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2391.926350]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2391.927507]  do_syscall_64+0x3b/0x90
[ 2391.928355]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2391.929492] RIP: 0033:0x7fdbfaa6cb19
[ 2391.930311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2391.930601] FAULT_INJECTION: forcing a failure.
[ 2391.930601] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2391.934358] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2391.937183] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2391.938754] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2391.940329] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2391.941898] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2391.943459] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2391.945077]  </TASK>
[ 2391.945593] CPU: 1 PID: 16113 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2391.946682] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2391.947869] Call Trace:
[ 2391.948213]  <TASK>
[ 2391.948458]  dump_stack_lvl+0x8b/0xb3
[ 2391.948961]  should_fail.cold+0x5/0xa
[ 2391.949464]  prepare_alloc_pages+0x17b/0x500
[ 2391.949947]  __alloc_pages+0x131/0x4e0
[ 2391.950446]  ? lock_downgrade+0x6d0/0x6d0
[ 2391.950893]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2391.951676]  ? xa_load+0x158/0x290
[ 2391.952056]  ? xas_find_conflict+0x9e0/0x9e0
[ 2391.952643]  alloc_pages+0x1a0/0x2f0
[ 2391.953048]  filemap_alloc_folio+0x8e/0xb0
[ 2391.953598]  page_cache_ra_unbounded+0x1af/0x540
[ 2391.954122]  ondemand_readahead+0x642/0x1270
[ 2391.954705]  page_cache_sync_ra+0x1c5/0x200
[ 2391.955167]  filemap_get_pages+0x29e/0x1680
[ 2391.955737]  ? lock_downgrade+0x6d0/0x6d0
[ 2391.956194]  ? unwind_next_frame+0xdfe/0x20a0
[ 2391.956681]  ? filemap_add_folio+0x1b0/0x1b0
[ 2391.957256]  ? lock_is_held_type+0xd7/0x130
[ 2391.957731]  filemap_read+0x311/0xba0
[ 2391.958240]  ? filemap_get_pages+0x1680/0x1680
[ 2391.958728]  ? filter_irq_stacks+0x90/0x90
[ 2391.959276]  ? __stack_depot_save+0x35/0x450
[ 2391.959759]  ? kasan_save_stack+0x2e/0x40
[ 2391.960306]  ? kasan_save_stack+0x1e/0x40
[ 2391.960745]  ? __kasan_kmalloc+0x81/0xa0
[ 2391.961264]  ? alloc_pipe_info+0x1e0/0x580
[ 2391.961716]  ? splice_direct_to_actor+0x700/0x8e0
[ 2391.962338]  ? do_splice_direct+0x1b8/0x280
[ 2391.962800]  ? do_sendfile+0xad7/0x1230
[ 2391.963307]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2391.963805]  ? do_syscall_64+0x3b/0x90
[ 2391.964326]  generic_file_read_iter+0x3c9/0x530
05:29:19 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x40086602, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x2, 0x0)

05:29:19 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 18)

05:29:19 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r1, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
ioctl$CDROM_LOCKDOOR(r1, 0x5329, 0x1)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r2, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
ioctl$CDROM_LOCKDOOR(r2, 0x5329, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r3, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
ioctl$sock_FIOSETOWN(r3, 0x8901, &(0x7f00000000c0))

05:29:19 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x80000)

[ 2391.964828]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2391.965670]  ? __fsnotify_parent+0x498/0xa60
[ 2391.966245]  ext4_file_read_iter+0x184/0x3f0
[ 2391.966723]  generic_file_splice_read+0x3b9/0x5d0
[ 2391.967351]  ? pipe_to_user+0x170/0x170
[ 2391.967789]  ? security_file_permission+0xb1/0xd0
[ 2391.968432]  ? pipe_to_user+0x170/0x170
[ 2391.968870]  do_splice_to+0x1bc/0x240
[ 2391.969362]  ? inode_has_perm+0x1d0/0x1d0
[ 2391.969806]  splice_direct_to_actor+0x2c7/0x8e0
[ 2391.970417]  ? pipe_to_sendpage+0x380/0x380
[ 2391.970894]  ? do_splice_to+0x240/0x240
[ 2391.971410]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2391.972004]  ? security_file_permission+0xb1/0xd0
[ 2391.972645]  do_splice_direct+0x1b8/0x280
[ 2391.973101]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2391.973730]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2391.974318]  ? security_file_permission+0xb1/0xd0
[ 2391.974953]  do_sendfile+0xad7/0x1230
[ 2391.975374]  ? bit_wait_io_timeout+0x160/0x160
[ 2391.975962]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2391.976540]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2391.977250]  ? vfs_write+0x422/0xac0
[ 2391.977659]  __x64_sys_sendfile64+0x1cd/0x210
[ 2391.978237]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2391.978821]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2391.979488]  do_syscall_64+0x3b/0x90
[ 2391.979897]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2391.980569] RIP: 0033:0x7f1455db8b19
[ 2391.980971] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2391.983319] RSP: 002b:00007f145330d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2391.984137] RAX: ffffffffffffffda RBX: 00007f1455ecc020 RCX: 00007f1455db8b19
[ 2391.985055] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2391.985819] RBP: 00007f145330d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2391.986564] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2391.987307] R13: 00007fff0823e86f R14: 00007f145330d300 R15: 0000000000022000
[ 2391.988066]  </TASK>
[ 2392.023117] FAULT_INJECTION: forcing a failure.
[ 2392.023117] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2392.026323] CPU: 0 PID: 16116 Comm: syz-executor.7 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2392.028155] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2392.030655] Call Trace:
[ 2392.031223]  <TASK>
[ 2392.031719]  dump_stack_lvl+0x8b/0xb3
[ 2392.032614]  should_fail.cold+0x5/0xa
[ 2392.033489]  prepare_alloc_pages+0x17b/0x500
[ 2392.034484]  __alloc_pages+0x131/0x4e0
[ 2392.035345]  ? lock_downgrade+0x6d0/0x6d0
[ 2392.036282]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2392.037627]  ? xa_load+0x158/0x290
[ 2392.038416]  ? xas_find_conflict+0x9e0/0x9e0
[ 2392.039402]  alloc_pages+0x1a0/0x2f0
[ 2392.040263]  filemap_alloc_folio+0x8e/0xb0
[ 2392.041220]  page_cache_ra_unbounded+0x1af/0x540
[ 2392.042297]  ondemand_readahead+0x642/0x1270
[ 2392.043301]  page_cache_sync_ra+0x1c5/0x200
[ 2392.044290]  filemap_get_pages+0x29e/0x1680
[ 2392.045270]  ? lock_downgrade+0x6d0/0x6d0
[ 2392.046205]  ? unwind_next_frame+0xdfe/0x20a0
[ 2392.047200]  ? filemap_add_folio+0x1b0/0x1b0
[ 2392.048216]  ? lock_is_held_type+0xd7/0x130
[ 2392.049193]  filemap_read+0x311/0xba0
[ 2392.050078]  ? filemap_get_pages+0x1680/0x1680
[ 2392.051099]  ? filter_irq_stacks+0x90/0x90
[ 2392.052039]  ? __stack_depot_save+0x35/0x450
[ 2392.053043]  ? kasan_save_stack+0x2e/0x40
[ 2392.053954]  ? kasan_save_stack+0x1e/0x40
[ 2392.054865]  ? __kasan_kmalloc+0x81/0xa0
[ 2392.055756]  ? alloc_pipe_info+0x1e0/0x580
[ 2392.056702]  ? splice_direct_to_actor+0x700/0x8e0
[ 2392.057776]  ? do_splice_direct+0x1b8/0x280
[ 2392.058757]  ? do_sendfile+0xad7/0x1230
[ 2392.059642]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2392.060757]  ? do_syscall_64+0x3b/0x90
[ 2392.061640]  generic_file_read_iter+0x3c9/0x530
[ 2392.062685]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2392.063912]  ? __fsnotify_parent+0x498/0xa60
[ 2392.064907]  ext4_file_read_iter+0x184/0x3f0
[ 2392.065898]  generic_file_splice_read+0x3b9/0x5d0
[ 2392.066985]  ? pipe_to_user+0x170/0x170
[ 2392.067901]  ? security_file_permission+0xb1/0xd0
[ 2392.068998]  ? pipe_to_user+0x170/0x170
[ 2392.069897]  do_splice_to+0x1bc/0x240
[ 2392.070745]  ? inode_has_perm+0x1d0/0x1d0
[ 2392.071666]  splice_direct_to_actor+0x2c7/0x8e0
[ 2392.072724]  ? pipe_to_sendpage+0x380/0x380
[ 2392.073700]  ? do_splice_to+0x240/0x240
[ 2392.074592]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2392.075811]  ? security_file_permission+0xb1/0xd0
[ 2392.076910]  do_splice_direct+0x1b8/0x280
[ 2392.077843]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2392.078930]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2392.080154]  ? security_file_permission+0xb1/0xd0
[ 2392.081264]  do_sendfile+0xad7/0x1230
[ 2392.082123]  ? bit_wait_io_timeout+0x160/0x160
[ 2392.083146]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2392.084307]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2392.085526]  ? vfs_write+0x422/0xac0
[ 2392.086363]  __x64_sys_sendfile64+0x1cd/0x210
[ 2392.087357]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2392.088555]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2392.089701]  do_syscall_64+0x3b/0x90
[ 2392.090542]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2392.091679] RIP: 0033:0x7f78f45e7b19
[ 2392.092516] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2392.096538] RSP: 002b:00007f78f1b5d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2392.098205] RAX: ffffffffffffffda RBX: 00007f78f46faf60 RCX: 00007f78f45e7b19
[ 2392.099771] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2392.101334] RBP: 00007f78f1b5d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2392.102866] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2392.104361] R13: 00007ffee552a8df R14: 00007f78f1b5d300 R15: 0000000000022000
[ 2392.105860]  </TASK>
[ 2392.143952] debugfs: Directory 'loop0' with parent 'block' already present!
05:29:19 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x9, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:29:19 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x1000000)

05:29:33 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x40087602, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x2, 0x0)

05:29:33 executing program 3:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
clone3(&(0x7f0000000040)={0x1018400, &(0x7f00000000c0), 0x0, 0x0, {0x3e}, 0x0, 0xfffffd16, 0x0, 0x0}, 0x58)
ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f00000002c0)=<r2=>0x0)
ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000000300)=<r3=>0x0)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup/syz0\x00', 0x200002, 0x0)
clone3(&(0x7f00000003c0)={0x80000000, &(0x7f0000000000), &(0x7f0000000100), &(0x7f0000000140), {0xd}, &(0x7f0000000180)=""/235, 0xeb, &(0x7f0000000280)=""/43, &(0x7f0000000340)=[r2, r3], 0x2, {r4}}, 0x58)

05:29:33 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r1, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
ioctl$CDROMEJECT_SW(r1, 0x530f, 0x1)

05:29:33 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 32)

05:29:33 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 31)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:29:33 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 19)

05:29:33 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x2000000)

05:29:33 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0xa, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

[ 2406.146732] FAULT_INJECTION: forcing a failure.
[ 2406.146732] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2406.149507] CPU: 0 PID: 16235 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2406.151163] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2406.153517] Call Trace:
[ 2406.154027]  <TASK>
[ 2406.154472]  dump_stack_lvl+0x8b/0xb3
[ 2406.155248]  should_fail.cold+0x5/0xa
[ 2406.156019]  prepare_alloc_pages+0x17b/0x500
[ 2406.156923]  __alloc_pages+0x131/0x4e0
[ 2406.157697]  ? lock_downgrade+0x6d0/0x6d0
[ 2406.158523]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2406.159740]  ? xa_load+0x158/0x290
[ 2406.160455]  ? xas_find_conflict+0x9e0/0x9e0
[ 2406.161344]  alloc_pages+0x1a0/0x2f0
[ 2406.162098]  filemap_alloc_folio+0x8e/0xb0
[ 2406.162944]  page_cache_ra_unbounded+0x1af/0x540
[ 2406.163915]  ondemand_readahead+0x642/0x1270
[ 2406.164825]  page_cache_sync_ra+0x1c5/0x200
[ 2406.165678]  filemap_get_pages+0x29e/0x1680
[ 2406.166547]  ? lock_downgrade+0x6d0/0x6d0
[ 2406.167376]  ? unwind_next_frame+0xdfe/0x20a0
[ 2406.168264]  ? filemap_add_folio+0x1b0/0x1b0
[ 2406.169159]  ? lock_is_held_type+0xd7/0x130
[ 2406.170024]  filemap_read+0x311/0xba0
[ 2406.170809]  ? filemap_get_pages+0x1680/0x1680
[ 2406.171720]  ? filter_irq_stacks+0x90/0x90
[ 2406.172582]  ? __stack_depot_save+0x35/0x450
[ 2406.173468]  ? kasan_save_stack+0x2e/0x40
[ 2406.174295]  ? kasan_save_stack+0x1e/0x40
[ 2406.175108]  ? __kasan_kmalloc+0x81/0xa0
[ 2406.175915]  ? alloc_pipe_info+0x1e0/0x580
[ 2406.176763]  ? splice_direct_to_actor+0x700/0x8e0
[ 2406.177740]  ? do_splice_direct+0x1b8/0x280
[ 2406.178593]  ? do_sendfile+0xad7/0x1230
[ 2406.179380]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2406.180300]  ? do_syscall_64+0x3b/0x90
[ 2406.181103]  generic_file_read_iter+0x3c9/0x530
[ 2406.182037]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2406.183134]  ? __fsnotify_parent+0x498/0xa60
[ 2406.184006]  ext4_file_read_iter+0x184/0x3f0
[ 2406.184897]  generic_file_splice_read+0x3b9/0x5d0
[ 2406.185861]  ? pipe_to_user+0x170/0x170
[ 2406.186677]  ? security_file_permission+0xb1/0xd0
[ 2406.187634]  ? pipe_to_user+0x170/0x170
[ 2406.188437]  do_splice_to+0x1bc/0x240
[ 2406.189193]  ? inode_has_perm+0x1d0/0x1d0
[ 2406.190016]  splice_direct_to_actor+0x2c7/0x8e0
[ 2406.190950]  ? pipe_to_sendpage+0x380/0x380
[ 2406.191818]  ? do_splice_to+0x240/0x240
[ 2406.192628]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2406.193724]  ? security_file_permission+0xb1/0xd0
[ 2406.194696]  do_splice_direct+0x1b8/0x280
[ 2406.195526]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2406.196509]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2406.197608]  ? security_file_permission+0xb1/0xd0
[ 2406.198575]  do_sendfile+0xad7/0x1230
[ 2406.199341]  ? bit_wait_io_timeout+0x160/0x160
[ 2406.200251]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2406.201297]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2406.202390]  ? vfs_write+0x422/0xac0
[ 2406.203137]  __x64_sys_sendfile64+0x1cd/0x210
[ 2406.204025]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2406.205093]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2406.206131]  do_syscall_64+0x3b/0x90
[ 2406.206881]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2406.207897] RIP: 0033:0x7fdbfaa6cb19
[ 2406.208643] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2406.212276] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2406.213777] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2406.215197] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2406.216622] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2406.218027] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2406.219430] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2406.220870]  </TASK>
05:29:33 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x3000000)

[ 2406.245373] FAULT_INJECTION: forcing a failure.
[ 2406.245373] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2406.247833] CPU: 1 PID: 16274 Comm: syz-executor.7 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2406.249553] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2406.251940] Call Trace:
[ 2406.252498]  <TASK>
[ 2406.252936]  dump_stack_lvl+0x8b/0xb3
[ 2406.253725]  should_fail.cold+0x5/0xa
[ 2406.254515]  prepare_alloc_pages+0x17b/0x500
[ 2406.255474]  __alloc_pages+0x131/0x4e0
[ 2406.256270]  ? lock_downgrade+0x6d0/0x6d0
[ 2406.257135]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2406.258363]  ? xa_load+0x158/0x290
[ 2406.259072]  ? xas_find_conflict+0x9e0/0x9e0
[ 2406.259969]  alloc_pages+0x1a0/0x2f0
[ 2406.260748]  filemap_alloc_folio+0x8e/0xb0
[ 2406.261616]  page_cache_ra_unbounded+0x1af/0x540
[ 2406.262598]  ondemand_readahead+0x642/0x1270
[ 2406.263522]  page_cache_sync_ra+0x1c5/0x200
[ 2406.264432]  filemap_get_pages+0x29e/0x1680
[ 2406.265322]  ? lock_downgrade+0x6d0/0x6d0
[ 2406.266184]  ? unwind_next_frame+0xdfe/0x20a0
[ 2406.267100]  ? filemap_add_folio+0x1b0/0x1b0
[ 2406.267993]  ? lock_is_held_type+0xd7/0x130
[ 2406.268868]  filemap_read+0x311/0xba0
[ 2406.269655]  ? filemap_get_pages+0x1680/0x1680
[ 2406.270568]  ? filter_irq_stacks+0x90/0x90
[ 2406.271406]  ? __stack_depot_save+0x35/0x450
[ 2406.272290]  ? kasan_save_stack+0x2e/0x40
[ 2406.273109]  ? kasan_save_stack+0x1e/0x40
[ 2406.273921]  ? __kasan_kmalloc+0x81/0xa0
[ 2406.274718]  ? alloc_pipe_info+0x1e0/0x580
[ 2406.275557]  ? splice_direct_to_actor+0x700/0x8e0
[ 2406.276533]  ? do_splice_direct+0x1b8/0x280
[ 2406.277398]  ? do_sendfile+0xad7/0x1230
[ 2406.278203]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2406.279124]  ? do_syscall_64+0x3b/0x90
[ 2406.279907]  generic_file_read_iter+0x3c9/0x530
[ 2406.280857]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2406.281953]  ? __fsnotify_parent+0x498/0xa60
[ 2406.282823]  ext4_file_read_iter+0x184/0x3f0
[ 2406.283713]  generic_file_splice_read+0x3b9/0x5d0
[ 2406.284707]  ? pipe_to_user+0x170/0x170
[ 2406.285541]  ? security_file_permission+0xb1/0xd0
[ 2406.286521]  ? pipe_to_user+0x170/0x170
[ 2406.287326]  do_splice_to+0x1bc/0x240
[ 2406.288093]  ? inode_has_perm+0x1d0/0x1d0
[ 2406.288937]  splice_direct_to_actor+0x2c7/0x8e0
[ 2406.289882]  ? pipe_to_sendpage+0x380/0x380
[ 2406.290751]  ? do_splice_to+0x240/0x240
[ 2406.291576]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2406.292696]  ? security_file_permission+0xb1/0xd0
[ 2406.293672]  do_splice_direct+0x1b8/0x280
[ 2406.294512]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2406.295485]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2406.296601]  ? security_file_permission+0xb1/0xd0
[ 2406.297574]  do_sendfile+0xad7/0x1230
[ 2406.298344]  ? bit_wait_io_timeout+0x160/0x160
[ 2406.299255]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2406.300280]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2406.301396]  ? vfs_write+0x422/0xac0
[ 2406.302144]  __x64_sys_sendfile64+0x1cd/0x210
[ 2406.303039]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2406.304096]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2406.305139]  do_syscall_64+0x3b/0x90
[ 2406.305888]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2406.306914] RIP: 0033:0x7f78f45e7b19
[ 2406.307648] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2406.311285] RSP: 002b:00007f78f1b3c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2406.312797] RAX: ffffffffffffffda RBX: 00007f78f46fb020 RCX: 00007f78f45e7b19
[ 2406.314207] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2406.315612] RBP: 00007f78f1b3c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2406.315635] FAULT_INJECTION: forcing a failure.
[ 2406.315635] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2406.317015] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2406.317033] R13: 00007ffee552a8df R14: 00007f78f1b3c300 R15: 0000000000022000
[ 2406.317075]  </TASK>
[ 2406.323578] CPU: 0 PID: 16246 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2406.325284] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2406.327509] Call Trace:
[ 2406.328022]  <TASK>
[ 2406.328476]  dump_stack_lvl+0x8b/0xb3
[ 2406.329251]  should_fail.cold+0x5/0xa
[ 2406.330017]  prepare_alloc_pages+0x17b/0x500
[ 2406.330911]  __alloc_pages+0x131/0x4e0
[ 2406.331681]  ? lock_downgrade+0x6d0/0x6d0
[ 2406.332516]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2406.333732]  ? xa_load+0x158/0x290
[ 2406.334444]  ? xas_find_conflict+0x9e0/0x9e0
[ 2406.335319]  alloc_pages+0x1a0/0x2f0
[ 2406.336079]  filemap_alloc_folio+0x8e/0xb0
[ 2406.336957]  page_cache_ra_unbounded+0x1af/0x540
[ 2406.337918]  ondemand_readahead+0x642/0x1270
[ 2406.338811]  page_cache_sync_ra+0x1c5/0x200
[ 2406.339675]  filemap_get_pages+0x29e/0x1680
[ 2406.340553]  ? lock_downgrade+0x6d0/0x6d0
[ 2406.341389]  ? unwind_next_frame+0xdfe/0x20a0
[ 2406.342282]  ? filemap_add_folio+0x1b0/0x1b0
[ 2406.343171]  ? lock_is_held_type+0xd7/0x130
[ 2406.344043]  filemap_read+0x311/0xba0
[ 2406.344851]  ? filemap_get_pages+0x1680/0x1680
[ 2406.345764]  ? filter_irq_stacks+0x90/0x90
[ 2406.346606]  ? __stack_depot_save+0x35/0x450
[ 2406.347496]  ? kasan_save_stack+0x2e/0x40
[ 2406.348315]  ? kasan_save_stack+0x1e/0x40
[ 2406.349141]  ? __kasan_kmalloc+0x81/0xa0
[ 2406.349940]  ? alloc_pipe_info+0x1e0/0x580
[ 2406.350782]  ? splice_direct_to_actor+0x700/0x8e0
[ 2406.351738]  ? do_splice_direct+0x1b8/0x280
[ 2406.352616]  ? do_sendfile+0xad7/0x1230
[ 2406.353404]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2406.354321]  ? do_syscall_64+0x3b/0x90
[ 2406.355109]  generic_file_read_iter+0x3c9/0x530
[ 2406.356041]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2406.357144]  ? __fsnotify_parent+0x498/0xa60
[ 2406.358020]  ext4_file_read_iter+0x184/0x3f0
[ 2406.358900]  generic_file_splice_read+0x3b9/0x5d0
[ 2406.359868]  ? pipe_to_user+0x170/0x170
[ 2406.360691]  ? security_file_permission+0xb1/0xd0
[ 2406.361653]  ? pipe_to_user+0x170/0x170
[ 2406.362450]  do_splice_to+0x1bc/0x240
[ 2406.363211]  ? inode_has_perm+0x1d0/0x1d0
[ 2406.364032]  splice_direct_to_actor+0x2c7/0x8e0
[ 2406.364980]  ? pipe_to_sendpage+0x380/0x380
[ 2406.365848]  ? do_splice_to+0x240/0x240
[ 2406.366665]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2406.367753]  ? security_file_permission+0xb1/0xd0
[ 2406.368731]  do_splice_direct+0x1b8/0x280
[ 2406.369563]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2406.370534]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2406.371627]  ? security_file_permission+0xb1/0xd0
[ 2406.372617]  do_sendfile+0xad7/0x1230
[ 2406.373385]  ? bit_wait_io_timeout+0x160/0x160
[ 2406.374306]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2406.375335]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2406.376434]  ? vfs_write+0x422/0xac0
[ 2406.377177]  __x64_sys_sendfile64+0x1cd/0x210
[ 2406.378062]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2406.379118]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2406.380144]  do_syscall_64+0x3b/0x90
[ 2406.380900]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2406.381915] RIP: 0033:0x7f1455db8b19
[ 2406.382645] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2406.386362] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2406.387910] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2406.389511] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000005
[ 2406.390929] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2406.392338] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2406.393772] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2406.395207]  </TASK>
05:29:33 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x3f000000)

05:29:33 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 33)

05:29:33 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0xc, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

[ 2406.490034] FAULT_INJECTION: forcing a failure.
[ 2406.490034] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2406.492584] CPU: 1 PID: 16358 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2406.494227] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2406.496492] Call Trace:
[ 2406.497000]  <TASK>
[ 2406.497441]  dump_stack_lvl+0x8b/0xb3
[ 2406.498217]  should_fail.cold+0x5/0xa
[ 2406.499018]  prepare_alloc_pages+0x17b/0x500
[ 2406.499918]  __alloc_pages+0x131/0x4e0
[ 2406.500699]  ? lock_downgrade+0x6d0/0x6d0
[ 2406.501529]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2406.502741]  ? xa_load+0x158/0x290
[ 2406.503643]  ? xas_find_conflict+0x9e0/0x9e0
[ 2406.504548]  alloc_pages+0x1a0/0x2f0
[ 2406.505306]  filemap_alloc_folio+0x8e/0xb0
[ 2406.506151]  page_cache_ra_unbounded+0x1af/0x540
[ 2406.507098]  ondemand_readahead+0x642/0x1270
[ 2406.507991]  page_cache_sync_ra+0x1c5/0x200
[ 2406.508859]  filemap_get_pages+0x29e/0x1680
[ 2406.509733]  ? lock_downgrade+0x6d0/0x6d0
[ 2406.510565]  ? unwind_next_frame+0xdfe/0x20a0
[ 2406.511455]  ? filemap_add_folio+0x1b0/0x1b0
[ 2406.512340]  ? lock_is_held_type+0xd7/0x130
[ 2406.513224]  filemap_read+0x311/0xba0
[ 2406.514010]  ? filemap_get_pages+0x1680/0x1680
[ 2406.514918]  ? filter_irq_stacks+0x90/0x90
[ 2406.515759]  ? __stack_depot_save+0x35/0x450
[ 2406.516654]  ? kasan_save_stack+0x2e/0x40
[ 2406.517471]  ? kasan_save_stack+0x1e/0x40
[ 2406.518284]  ? __kasan_kmalloc+0x81/0xa0
[ 2406.519081]  ? alloc_pipe_info+0x1e0/0x580
[ 2406.519914]  ? splice_direct_to_actor+0x700/0x8e0
[ 2406.520891]  ? do_splice_direct+0x1b8/0x280
[ 2406.521754]  ? do_sendfile+0xad7/0x1230
[ 2406.522537]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2406.523457]  ? do_syscall_64+0x3b/0x90
[ 2406.524257]  generic_file_read_iter+0x3c9/0x530
[ 2406.525208]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2406.526302]  ? __fsnotify_parent+0x498/0xa60
[ 2406.527166]  ext4_file_read_iter+0x184/0x3f0
[ 2406.528045]  generic_file_splice_read+0x3b9/0x5d0
[ 2406.529016]  ? pipe_to_user+0x170/0x170
[ 2406.529835]  ? security_file_permission+0xb1/0xd0
[ 2406.530796]  ? pipe_to_user+0x170/0x170
[ 2406.531656]  do_splice_to+0x1bc/0x240
[ 2406.532688]  ? inode_has_perm+0x1d0/0x1d0
[ 2406.533770]  splice_direct_to_actor+0x2c7/0x8e0
[ 2406.535000]  ? pipe_to_sendpage+0x380/0x380
[ 2406.536137]  ? do_splice_to+0x240/0x240
[ 2406.536962]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2406.538064]  ? security_file_permission+0xb1/0xd0
[ 2406.539060]  do_splice_direct+0x1b8/0x280
[ 2406.539922]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2406.541081]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2406.542191]  ? security_file_permission+0xb1/0xd0
[ 2406.543195]  do_sendfile+0xad7/0x1230
[ 2406.543986]  ? bit_wait_io_timeout+0x160/0x160
[ 2406.544923]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2406.545952]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2406.547053]  ? vfs_write+0x422/0xac0
[ 2406.547797]  __x64_sys_sendfile64+0x1cd/0x210
[ 2406.548696]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2406.549755]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2406.550784]  do_syscall_64+0x3b/0x90
[ 2406.551535]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2406.552576] RIP: 0033:0x7fdbfaa6cb19
[ 2406.553306] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2406.557004] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2406.558517] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2406.559936] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2406.561424] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2406.562853] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2406.564281] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2406.565750]  </TASK>
05:29:34 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)
r2 = fcntl$getown(r1, 0x9)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000280)=<r3=>0x0)
fcntl$getownex(r1, 0x10, &(0x7f00000002c0)={0x0, <r4=>0x0})
r5 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r5, 0x5429, &(0x7f0000000080)=<r6=>0x0)
capset(&(0x7f0000000340)={0x20080522, r6}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
r7 = openat$zero(0xffffffffffffff9c, &(0x7f0000000340), 0x8040, 0x0)
clone3(&(0x7f0000000380)={0x200, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x1}, &(0x7f0000000100)=""/205, 0xcd, &(0x7f0000000200)=""/119, &(0x7f0000000300)=[r0, r2, 0x0, r0, r3, 0x0, r4, r6, r0], 0x9, {r7}}, 0x58)

05:29:34 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 20)

05:29:34 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f00000000c0)={@private, @broadcast, <r1=>0x0}, &(0x7f0000000100)=0xc)
sendmsg$ETHTOOL_MSG_EEE_GET(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x74, 0x0, 0x800, 0x70bd2a, 0x25dfdbfc, {}, [@HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_1\x00'}]}]}, 0x74}, 0x1, 0x0, 0x0, 0x40040}, 0x890)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$DVD_AUTH(r2, 0x80041284, 0x0)
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000040), 0x40800, 0x0)

[ 2406.728518] FAULT_INJECTION: forcing a failure.
[ 2406.728518] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2406.731360] CPU: 1 PID: 16373 Comm: syz-executor.7 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2406.733049] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2406.735298] Call Trace:
[ 2406.735802]  <TASK>
[ 2406.736246]  dump_stack_lvl+0x8b/0xb3
[ 2406.737036]  should_fail.cold+0x5/0xa
[ 2406.737807]  prepare_alloc_pages+0x17b/0x500
[ 2406.738705]  __alloc_pages+0x131/0x4e0
[ 2406.739474]  ? lock_downgrade+0x6d0/0x6d0
[ 2406.740303]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2406.741517]  ? xa_load+0x158/0x290
[ 2406.742231]  ? xas_find_conflict+0x9e0/0x9e0
[ 2406.743110]  alloc_pages+0x1a0/0x2f0
[ 2406.743858]  filemap_alloc_folio+0x8e/0xb0
[ 2406.744727]  page_cache_ra_unbounded+0x1af/0x540
[ 2406.745692]  ondemand_readahead+0x642/0x1270
[ 2406.746589]  page_cache_sync_ra+0x1c5/0x200
[ 2406.747458]  filemap_get_pages+0x29e/0x1680
[ 2406.748333]  ? lock_downgrade+0x6d0/0x6d0
[ 2406.749182]  ? unwind_next_frame+0xdfe/0x20a0
[ 2406.750075]  ? filemap_add_folio+0x1b0/0x1b0
[ 2406.750965]  ? lock_is_held_type+0xd7/0x130
[ 2406.751835]  filemap_read+0x311/0xba0
[ 2406.752646]  ? filemap_get_pages+0x1680/0x1680
[ 2406.753557]  ? filter_irq_stacks+0x90/0x90
[ 2406.754398]  ? __stack_depot_save+0x35/0x450
[ 2406.755283]  ? kasan_save_stack+0x2e/0x40
[ 2406.756098]  ? kasan_save_stack+0x1e/0x40
[ 2406.756923]  ? __kasan_kmalloc+0x81/0xa0
[ 2406.757723]  ? alloc_pipe_info+0x1e0/0x580
[ 2406.758562]  ? splice_direct_to_actor+0x700/0x8e0
[ 2406.759519]  ? do_splice_direct+0x1b8/0x280
[ 2406.760379]  ? do_sendfile+0xad7/0x1230
[ 2406.761185]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2406.762128]  ? do_syscall_64+0x3b/0x90
[ 2406.762918]  generic_file_read_iter+0x3c9/0x530
[ 2406.763854]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2406.764964]  ? __fsnotify_parent+0x498/0xa60
[ 2406.765840]  ext4_file_read_iter+0x184/0x3f0
[ 2406.766729]  generic_file_splice_read+0x3b9/0x5d0
[ 2406.767703]  ? pipe_to_user+0x170/0x170
[ 2406.768537]  ? security_file_permission+0xb1/0xd0
[ 2406.769498]  ? pipe_to_user+0x170/0x170
[ 2406.770297]  do_splice_to+0x1bc/0x240
[ 2406.771057]  ? inode_has_perm+0x1d0/0x1d0
[ 2406.771885]  splice_direct_to_actor+0x2c7/0x8e0
[ 2406.772845]  ? pipe_to_sendpage+0x380/0x380
[ 2406.773725]  ? do_splice_to+0x240/0x240
[ 2406.774523]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2406.775623]  ? security_file_permission+0xb1/0xd0
[ 2406.776604]  do_splice_direct+0x1b8/0x280
[ 2406.777438]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2406.778411]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2406.779510]  ? security_file_permission+0xb1/0xd0
[ 2406.780503]  do_sendfile+0xad7/0x1230
[ 2406.781272]  ? bit_wait_io_timeout+0x160/0x160
[ 2406.782186]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2406.783218]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2406.784315]  ? vfs_write+0x422/0xac0
[ 2406.785075]  __x64_sys_sendfile64+0x1cd/0x210
[ 2406.785968]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2406.787033]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2406.788069]  do_syscall_64+0x3b/0x90
[ 2406.788843]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2406.789866] RIP: 0033:0x7f78f45e7b19
[ 2406.790602] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2406.794246] RSP: 002b:00007f78f1b5d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2406.795748] RAX: ffffffffffffffda RBX: 00007f78f46faf60 RCX: 00007f78f45e7b19
[ 2406.797173] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2406.798576] RBP: 00007f78f1b5d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2406.799980] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2406.801405] R13: 00007ffee552a8df R14: 00007f78f1b5d300 R15: 0000000000022000
[ 2406.802843]  </TASK>
05:29:48 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)

05:29:48 executing program 3:
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff}, './file0\x00'})
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {0x40}, 0x0, 0xffffffe8, 0x0, 0x0, 0x0, {r0}}, 0xfffffffffffffe97)
syncfs(r1)
ioctl$EXT4_IOC_CLEAR_ES_CACHE(r1, 0x6628)

05:29:48 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0xd, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:29:48 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 32)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:29:48 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 34)

05:29:48 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x401c5820, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x2, 0x0)

05:29:48 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 21)

05:29:48 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x8000000000000)

[ 2421.242703] FAULT_INJECTION: forcing a failure.
[ 2421.242703] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2421.245440] CPU: 1 PID: 16486 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2421.247104] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2421.249389] Call Trace:
[ 2421.250045]  <TASK>
[ 2421.250485]  dump_stack_lvl+0x8b/0xb3
[ 2421.251297]  should_fail.cold+0x5/0xa
[ 2421.252226]  prepare_alloc_pages+0x17b/0x500
[ 2421.253267]  __alloc_pages+0x131/0x4e0
[ 2421.254038]  ? lock_downgrade+0x6d0/0x6d0
[ 2421.254867]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2421.256083]  ? xa_load+0x158/0x290
[ 2421.256804]  ? xas_find_conflict+0x9e0/0x9e0
[ 2421.257685]  alloc_pages+0x1a0/0x2f0
[ 2421.258437]  filemap_alloc_folio+0x8e/0xb0
[ 2421.259291]  page_cache_ra_unbounded+0x1af/0x540
[ 2421.260264]  ondemand_readahead+0x642/0x1270
[ 2421.261181]  page_cache_sync_ra+0x1c5/0x200
[ 2421.262053]  filemap_get_pages+0x29e/0x1680
[ 2421.262929]  ? lock_downgrade+0x6d0/0x6d0
[ 2421.263766]  ? unwind_next_frame+0xdfe/0x20a0
[ 2421.264673]  ? filemap_add_folio+0x1b0/0x1b0
[ 2421.265572]  ? lock_is_held_type+0xd7/0x130
[ 2421.266450]  filemap_read+0x311/0xba0
[ 2421.267242]  ? filemap_get_pages+0x1680/0x1680
[ 2421.268164]  ? filter_irq_stacks+0x90/0x90
[ 2421.269028]  ? __stack_depot_save+0x35/0x450
[ 2421.269920] FAULT_INJECTION: forcing a failure.
[ 2421.269920] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2421.269926]  ? kasan_save_stack+0x2e/0x40
[ 2421.273044]  ? kasan_save_stack+0x1e/0x40
[ 2421.273865]  ? __kasan_kmalloc+0x81/0xa0
[ 2421.274668]  ? alloc_pipe_info+0x1e0/0x580
[ 2421.275508]  ? splice_direct_to_actor+0x700/0x8e0
[ 2421.276474]  ? do_splice_direct+0x1b8/0x280
[ 2421.277351]  ? do_sendfile+0xad7/0x1230
[ 2421.278139]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2421.279060]  ? do_syscall_64+0x3b/0x90
[ 2421.279853]  generic_file_read_iter+0x3c9/0x530
[ 2421.280795]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2421.281896]  ? __fsnotify_parent+0x498/0xa60
[ 2421.282770]  ext4_file_read_iter+0x184/0x3f0
[ 2421.283654]  generic_file_splice_read+0x3b9/0x5d0
[ 2421.284645]  ? pipe_to_user+0x170/0x170
[ 2421.285470]  ? security_file_permission+0xb1/0xd0
[ 2421.286447]  ? pipe_to_user+0x170/0x170
[ 2421.287263]  do_splice_to+0x1bc/0x240
[ 2421.288034]  ? inode_has_perm+0x1d0/0x1d0
[ 2421.288876]  splice_direct_to_actor+0x2c7/0x8e0
[ 2421.289829]  ? pipe_to_sendpage+0x380/0x380
[ 2421.290712]  ? do_splice_to+0x240/0x240
[ 2421.291517]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2421.292627]  ? security_file_permission+0xb1/0xd0
[ 2421.293607]  do_splice_direct+0x1b8/0x280
[ 2421.294437]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2421.295411]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2421.296515]  ? security_file_permission+0xb1/0xd0
[ 2421.297502]  do_sendfile+0xad7/0x1230
[ 2421.298270]  ? bit_wait_io_timeout+0x160/0x160
[ 2421.299182]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2421.300216]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2421.301319]  ? vfs_write+0x422/0xac0
[ 2421.302067]  __x64_sys_sendfile64+0x1cd/0x210
[ 2421.302961]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2421.304021]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2421.305071]  do_syscall_64+0x3b/0x90
[ 2421.305823]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2421.306849] RIP: 0033:0x7f1455db8b19
[ 2421.307584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2421.311221] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2421.312730] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2421.314133] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2421.315542] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2421.316965] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2421.318374] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2421.319810]  </TASK>
[ 2421.320292] CPU: 0 PID: 16546 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2421.321965] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2421.324189] Call Trace:
[ 2421.324702]  <TASK>
[ 2421.325148]  dump_stack_lvl+0x8b/0xb3
[ 2421.325922]  should_fail.cold+0x5/0xa
[ 2421.326800]  prepare_alloc_pages+0x17b/0x500
[ 2421.327691]  __alloc_pages+0x131/0x4e0
[ 2421.328461]  ? lock_downgrade+0x6d0/0x6d0
[ 2421.329296]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2421.330499]  ? xa_load+0x158/0x290
[ 2421.331201]  ? xas_find_conflict+0x9e0/0x9e0
[ 2421.332078]  alloc_pages+0x1a0/0x2f0
[ 2421.332836]  filemap_alloc_folio+0x8e/0xb0
[ 2421.333683]  page_cache_ra_unbounded+0x1af/0x540
[ 2421.334641]  ondemand_readahead+0x642/0x1270
[ 2421.335530]  page_cache_sync_ra+0x1c5/0x200
[ 2421.336394]  filemap_get_pages+0x29e/0x1680
[ 2421.337286]  ? lock_downgrade+0x6d0/0x6d0
[ 2421.338118]  ? unwind_next_frame+0xdfe/0x20a0
[ 2421.339004]  ? filemap_add_folio+0x1b0/0x1b0
[ 2421.339888]  ? lock_is_held_type+0xd7/0x130
[ 2421.340761]  filemap_read+0x311/0xba0
[ 2421.341549]  ? filemap_get_pages+0x1680/0x1680
[ 2421.342455]  ? filter_irq_stacks+0x90/0x90
[ 2421.343287]  ? __stack_depot_save+0x35/0x450
[ 2421.344170]  ? kasan_save_stack+0x2e/0x40
[ 2421.345017]  ? kasan_save_stack+0x1e/0x40
[ 2421.345827]  ? __kasan_kmalloc+0x81/0xa0
[ 2421.346641]  ? alloc_pipe_info+0x1e0/0x580
[ 2421.347475]  ? splice_direct_to_actor+0x700/0x8e0
[ 2421.348450]  ? do_splice_direct+0x1b8/0x280
[ 2421.349317]  ? do_sendfile+0xad7/0x1230
[ 2421.350102]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2421.351014]  ? do_syscall_64+0x3b/0x90
[ 2421.351801]  generic_file_read_iter+0x3c9/0x530
[ 2421.352782]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2421.353882]  ? __fsnotify_parent+0x498/0xa60
[ 2421.354765]  ext4_file_read_iter+0x184/0x3f0
[ 2421.355646]  generic_file_splice_read+0x3b9/0x5d0
[ 2421.356645]  ? pipe_to_user+0x170/0x170
[ 2421.357472]  ? security_file_permission+0xb1/0xd0
[ 2421.358430]  ? pipe_to_user+0x170/0x170
[ 2421.359233]  do_splice_to+0x1bc/0x240
[ 2421.360004]  ? inode_has_perm+0x1d0/0x1d0
[ 2421.360836]  splice_direct_to_actor+0x2c7/0x8e0
[ 2421.361781]  ? pipe_to_sendpage+0x380/0x380
[ 2421.362649]  ? do_splice_to+0x240/0x240
[ 2421.363447]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2421.364544]  ? security_file_permission+0xb1/0xd0
[ 2421.365532]  do_splice_direct+0x1b8/0x280
[ 2421.366369]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2421.367339]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2421.368440]  ? security_file_permission+0xb1/0xd0
[ 2421.369428]  do_sendfile+0xad7/0x1230
[ 2421.370194]  ? bit_wait_io_timeout+0x160/0x160
[ 2421.371110]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2421.372138]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2421.373250]  ? vfs_write+0x422/0xac0
[ 2421.373998]  __x64_sys_sendfile64+0x1cd/0x210
[ 2421.374888]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2421.375963]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2421.377003]  do_syscall_64+0x3b/0x90
[ 2421.377760]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2421.378789] RIP: 0033:0x7fdbfaa6cb19
[ 2421.379526] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2421.383195] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2421.384712] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2421.386109] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2421.387503] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2421.388907] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2421.390307] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2421.391735]  </TASK>
05:29:48 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 33)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:29:49 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x100000000000000)

05:29:49 executing program 3:
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000300), 0x80, 0x0)
preadv2(r2, &(0x7f0000000340)=[{&(0x7f0000000200)=""/230, 0xe6}], 0x1, 0x4000002, 0x200, 0x0)
r3 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80))
symlinkat(&(0x7f0000000000)='./file0\x00', r3, &(0x7f0000000040)='./file0\x00')
linkat(r3, &(0x7f00000000c0)='./file0\x00', r3, &(0x7f0000000100)='./file1\x00', 0x1000)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100), 0xc1b5d161d090dbe1, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@privport}, {@aname={'aname', 0x3d, '\'+{'}}, {@version_9p2000}, {@version_u}], [{@smackfsdef={'smackfsdef', 0x3d, 'cgroup.threads\x00'}}, {@subj_type={'subj_type', 0x3d, '$/\x8c[\x17'}}]}})
openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.threads\x00', 0x2, 0x0)

05:29:49 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0xf, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:29:49 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001)

05:29:49 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)
ioctl$CDROM_SEND_PACKET(r0, 0x5393, &(0x7f0000000100)={"3b639e36578f09b9c803f3c5", &(0x7f0000000040)="4b60838bb03632f11192d24c804242c09bfdfa137bf8a1d6defc871c31ca122f55a598870f77fb35", 0x28, 0x7, &(0x7f0000000080)={0x5, 0x0, 0x7, 0x2, 0x0, 0x1, 0x0, "0a253cd1", 0x1, "46946b30", 0x7f, 0x1, 0x40, "185f4d", "e3df7243e62bde0c7929b50ac519d765d9390d200e74c199a05cadaccf893d3e1a1b27c166787566074933055159"}, 0x0, 0x4, 0x8000, &(0x7f00000000c0)})
ioctl$CDROM_DEBUG(r0, 0x5330, 0x1)

[ 2421.620587] FAULT_INJECTION: forcing a failure.
[ 2421.620587] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2421.623353] CPU: 1 PID: 16610 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2421.625043] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2421.627323] Call Trace:
[ 2421.627840]  <TASK>
[ 2421.628298]  dump_stack_lvl+0x8b/0xb3
[ 2421.629112]  should_fail.cold+0x5/0xa
[ 2421.629903]  prepare_alloc_pages+0x17b/0x500
[ 2421.630807]  __alloc_pages+0x131/0x4e0
[ 2421.631580]  ? lock_downgrade+0x6d0/0x6d0
[ 2421.632422]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2421.633654]  ? xa_load+0x158/0x290
[ 2421.634371]  ? xas_find_conflict+0x9e0/0x9e0
[ 2421.635258]  alloc_pages+0x1a0/0x2f0
[ 2421.636015]  filemap_alloc_folio+0x8e/0xb0
[ 2421.636890]  page_cache_ra_unbounded+0x1af/0x540
[ 2421.637872]  ondemand_readahead+0x642/0x1270
[ 2421.638783]  page_cache_sync_ra+0x1c5/0x200
[ 2421.639668]  filemap_get_pages+0x29e/0x1680
[ 2421.640551]  ? lock_downgrade+0x6d0/0x6d0
[ 2421.641419]  ? unwind_next_frame+0xdfe/0x20a0
[ 2421.642338]  ? filemap_add_folio+0x1b0/0x1b0
[ 2421.643246]  ? lock_is_held_type+0xd7/0x130
[ 2421.644129]  filemap_read+0x311/0xba0
[ 2421.644941]  ? filemap_get_pages+0x1680/0x1680
[ 2421.645873]  ? filter_irq_stacks+0x90/0x90
[ 2421.646726]  ? __stack_depot_save+0x35/0x450
[ 2421.647644]  ? kasan_save_stack+0x2e/0x40
[ 2421.648480]  ? kasan_save_stack+0x1e/0x40
[ 2421.649338]  ? __kasan_kmalloc+0x81/0xa0
[ 2421.650150]  ? alloc_pipe_info+0x1e0/0x580
[ 2421.651010]  ? splice_direct_to_actor+0x700/0x8e0
[ 2421.651989]  ? do_splice_direct+0x1b8/0x280
[ 2421.652874]  ? do_sendfile+0xad7/0x1230
[ 2421.653674]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2421.654617]  ? do_syscall_64+0x3b/0x90
[ 2421.655416]  generic_file_read_iter+0x3c9/0x530
[ 2421.656368]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2421.657505]  ? __fsnotify_parent+0x498/0xa60
[ 2421.658396]  ext4_file_read_iter+0x184/0x3f0
[ 2421.659293]  generic_file_splice_read+0x3b9/0x5d0
[ 2421.660279]  ? pipe_to_user+0x170/0x170
[ 2421.661127]  ? security_file_permission+0xb1/0xd0
[ 2421.662111]  ? pipe_to_user+0x170/0x170
[ 2421.662933]  do_splice_to+0x1bc/0x240
[ 2421.663709]  ? inode_has_perm+0x1d0/0x1d0
[ 2421.664554]  splice_direct_to_actor+0x2c7/0x8e0
[ 2421.665513]  ? pipe_to_sendpage+0x380/0x380
[ 2421.666397]  ? do_splice_to+0x240/0x240
[ 2421.667206]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2421.668322]  ? security_file_permission+0xb1/0xd0
[ 2421.669326]  do_splice_direct+0x1b8/0x280
[ 2421.670172]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2421.671162]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2421.672269]  ? security_file_permission+0xb1/0xd0
[ 2421.673270]  do_sendfile+0xad7/0x1230
[ 2421.674051]  ? bit_wait_io_timeout+0x160/0x160
[ 2421.674972]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2421.676013]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2421.677136]  ? vfs_write+0x422/0xac0
[ 2421.677893]  __x64_sys_sendfile64+0x1cd/0x210
[ 2421.678791]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2421.679857]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2421.680907]  do_syscall_64+0x3b/0x90
[ 2421.681659]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2421.682693] RIP: 0033:0x7f1455db8b19
[ 2421.683425] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2421.687100] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2421.688634] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2421.690072] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2421.691490] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2421.692928] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2421.694343] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2421.695806]  </TASK>
05:29:49 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x10, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:29:49 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 35)

05:29:49 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x200000000000000)

[ 2421.839963] FAULT_INJECTION: forcing a failure.
[ 2421.839963] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2421.842551] CPU: 1 PID: 16722 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2421.844227] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2421.846525] Call Trace:
[ 2421.847037]  <TASK>
[ 2421.847495]  dump_stack_lvl+0x8b/0xb3
[ 2421.848285]  should_fail.cold+0x5/0xa
[ 2421.849080]  prepare_alloc_pages+0x17b/0x500
[ 2421.849991]  __alloc_pages+0x131/0x4e0
[ 2421.850792]  ? lock_downgrade+0x6d0/0x6d0
[ 2421.851630]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2421.852884]  ? xa_load+0x158/0x290
[ 2421.853602]  ? xas_find_conflict+0x9e0/0x9e0
[ 2421.854499]  alloc_pages+0x1a0/0x2f0
[ 2421.855263]  filemap_alloc_folio+0x8e/0xb0
[ 2421.856126]  page_cache_ra_unbounded+0x1af/0x540
[ 2421.857111]  ondemand_readahead+0x642/0x1270
[ 2421.858020]  page_cache_sync_ra+0x1c5/0x200
[ 2421.858909]  filemap_get_pages+0x29e/0x1680
[ 2421.859789]  ? lock_downgrade+0x6d0/0x6d0
[ 2421.860632]  ? unwind_next_frame+0xdfe/0x20a0
[ 2421.861535]  ? filemap_add_folio+0x1b0/0x1b0
[ 2421.862442]  ? lock_is_held_type+0xd7/0x130
[ 2421.863329]  filemap_read+0x311/0xba0
[ 2421.864126]  ? filemap_get_pages+0x1680/0x1680
[ 2421.865072]  ? filter_irq_stacks+0x90/0x90
[ 2421.865932]  ? __stack_depot_save+0x35/0x450
[ 2421.866833]  ? kasan_save_stack+0x2e/0x40
[ 2421.867668]  ? kasan_save_stack+0x1e/0x40
[ 2421.868494]  ? __kasan_kmalloc+0x81/0xa0
[ 2421.869322]  ? alloc_pipe_info+0x1e0/0x580
[ 2421.870169]  ? splice_direct_to_actor+0x700/0x8e0
[ 2421.871139]  ? do_splice_direct+0x1b8/0x280
[ 2421.872005]  ? do_sendfile+0xad7/0x1230
[ 2421.872812]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2421.873752]  ? do_syscall_64+0x3b/0x90
[ 2421.874548]  generic_file_read_iter+0x3c9/0x530
[ 2421.875492]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2421.876608]  ? __fsnotify_parent+0x498/0xa60
[ 2421.877502]  ext4_file_read_iter+0x184/0x3f0
[ 2421.878404]  generic_file_splice_read+0x3b9/0x5d0
[ 2421.879383]  ? pipe_to_user+0x170/0x170
[ 2421.880212]  ? security_file_permission+0xb1/0xd0
[ 2421.881214]  ? pipe_to_user+0x170/0x170
[ 2421.882026]  do_splice_to+0x1bc/0x240
[ 2421.882792]  ? inode_has_perm+0x1d0/0x1d0
[ 2421.883636]  splice_direct_to_actor+0x2c7/0x8e0
[ 2421.884578]  ? pipe_to_sendpage+0x380/0x380
[ 2421.885468]  ? do_splice_to+0x240/0x240
[ 2421.886285]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2421.887391]  ? security_file_permission+0xb1/0xd0
[ 2421.888373]  do_splice_direct+0x1b8/0x280
[ 2421.889228]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2421.890208]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2421.891309]  ? security_file_permission+0xb1/0xd0
[ 2421.892292]  do_sendfile+0xad7/0x1230
[ 2421.893073]  ? bit_wait_io_timeout+0x160/0x160
[ 2421.894007]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2421.895058]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2421.896166]  ? vfs_write+0x422/0xac0
[ 2421.896939]  __x64_sys_sendfile64+0x1cd/0x210
[ 2421.897839]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2421.898911]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2421.899952]  do_syscall_64+0x3b/0x90
[ 2421.900722]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2421.901753] RIP: 0033:0x7fdbfaa6cb19
[ 2421.902491] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2421.906179] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2421.907699] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2421.909139] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2421.910560] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2421.911975] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2421.913410] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2421.914862]  </TASK>
05:30:05 executing program 3:
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)
r1 = syz_io_uring_complete(0x0)
pidfd_getfd(r0, r1, 0x0)

05:30:05 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r1, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
ioctl$CDROMEJECT_SW(r1, 0x530f, 0x1)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)

05:30:05 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 34)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:30:05 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4020940d, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x2, 0x0)

05:30:05 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x11, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:30:05 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x300000000000000)

05:30:05 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000002)

05:30:05 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 36)

[ 2438.233301] FAULT_INJECTION: forcing a failure.
[ 2438.233301] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2438.234706] CPU: 0 PID: 16732 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2438.235579] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2438.236762] Call Trace:
[ 2438.237042]  <TASK>
[ 2438.237277]  dump_stack_lvl+0x8b/0xb3
[ 2438.237690]  should_fail.cold+0x5/0xa
[ 2438.238102]  prepare_alloc_pages+0x17b/0x500
[ 2438.238577]  __alloc_pages+0x131/0x4e0
[ 2438.238985]  ? lock_downgrade+0x6d0/0x6d0
[ 2438.239426]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2438.240064]  ? xa_load+0x158/0x290
[ 2438.240439]  ? xas_find_conflict+0x9e0/0x9e0
[ 2438.240907]  alloc_pages+0x1a0/0x2f0
[ 2438.241304]  filemap_alloc_folio+0x8e/0xb0
[ 2438.241754]  page_cache_ra_unbounded+0x1af/0x540
[ 2438.242263]  ondemand_readahead+0x642/0x1270
[ 2438.242735]  page_cache_sync_ra+0x1c5/0x200
[ 2438.243193]  filemap_get_pages+0x29e/0x1680
[ 2438.243860]  ? lock_downgrade+0x6d0/0x6d0
[ 2438.244775]  ? unwind_next_frame+0xdfe/0x20a0
[ 2438.245792]  ? filemap_add_folio+0x1b0/0x1b0
[ 2438.246858]  ? lock_is_held_type+0xd7/0x130
[ 2438.247900]  filemap_read+0x311/0xba0
[ 2438.248844]  ? filemap_get_pages+0x1680/0x1680
[ 2438.249937]  ? filter_irq_stacks+0x90/0x90
[ 2438.250962]  ? __stack_depot_save+0x35/0x450
[ 2438.252024]  ? kasan_save_stack+0x2e/0x40
[ 2438.253018]  ? kasan_save_stack+0x1e/0x40
[ 2438.254035]  ? __kasan_kmalloc+0x81/0xa0
[ 2438.254998]  ? alloc_pipe_info+0x1e0/0x580
[ 2438.255996]  ? splice_direct_to_actor+0x700/0x8e0
[ 2438.257166]  ? do_splice_direct+0x1b8/0x280
[ 2438.258096]  ? do_sendfile+0xad7/0x1230
[ 2438.258879]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2438.259770]  ? do_syscall_64+0x3b/0x90
[ 2438.260558]  generic_file_read_iter+0x3c9/0x530
[ 2438.261473]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2438.262573]  ? __fsnotify_parent+0x498/0xa60
[ 2438.263445]  ext4_file_read_iter+0x184/0x3f0
[ 2438.264306]  generic_file_splice_read+0x3b9/0x5d0
[ 2438.265280]  ? pipe_to_user+0x170/0x170
[ 2438.266094]  ? security_file_permission+0xb1/0xd0
[ 2438.267059]  ? pipe_to_user+0x170/0x170
[ 2438.267858]  do_splice_to+0x1bc/0x240
[ 2438.268615]  ? inode_has_perm+0x1d0/0x1d0
[ 2438.269463]  splice_direct_to_actor+0x2c7/0x8e0
[ 2438.270393]  ? pipe_to_sendpage+0x380/0x380
[ 2438.271410]  ? do_splice_to+0x240/0x240
[ 2438.272206]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2438.273313]  ? security_file_permission+0xb1/0xd0
[ 2438.274278]  do_splice_direct+0x1b8/0x280
[ 2438.275106]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2438.276076]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2438.277175]  ? security_file_permission+0xb1/0xd0
[ 2438.278145]  do_sendfile+0xad7/0x1230
[ 2438.278907]  ? bit_wait_io_timeout+0x160/0x160
[ 2438.279818]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2438.280847]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2438.281958]  ? vfs_write+0x422/0xac0
[ 2438.282703]  __x64_sys_sendfile64+0x1cd/0x210
[ 2438.283589]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2438.284645]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2438.285681]  do_syscall_64+0x3b/0x90
[ 2438.286426]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2438.287441] RIP: 0033:0x7f1455db8b19
[ 2438.288174] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2438.291792] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2438.293296] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2438.294700] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2438.296097] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2438.297502] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2438.298901] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2438.300325]  </TASK>
[ 2438.328821] FAULT_INJECTION: forcing a failure.
[ 2438.328821] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2438.331465] CPU: 1 PID: 16744 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2438.333143] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2438.335421] Call Trace:
[ 2438.335941]  <TASK>
[ 2438.336394]  dump_stack_lvl+0x8b/0xb3
[ 2438.337202]  should_fail.cold+0x5/0xa
[ 2438.337986]  prepare_alloc_pages+0x17b/0x500
[ 2438.338901]  __alloc_pages+0x131/0x4e0
[ 2438.339688]  ? lock_downgrade+0x6d0/0x6d0
[ 2438.340534]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2438.341767]  ? xa_load+0x158/0x290
[ 2438.342484]  ? xas_find_conflict+0x9e0/0x9e0
[ 2438.343368]  alloc_pages+0x1a0/0x2f0
[ 2438.344124]  filemap_alloc_folio+0x8e/0xb0
[ 2438.344994]  page_cache_ra_unbounded+0x1af/0x540
[ 2438.345970]  ondemand_readahead+0x642/0x1270
[ 2438.346871]  page_cache_sync_ra+0x1c5/0x200
[ 2438.347741]  filemap_get_pages+0x29e/0x1680
[ 2438.348619]  ? lock_downgrade+0x6d0/0x6d0
[ 2438.349478]  ? unwind_next_frame+0xdfe/0x20a0
[ 2438.350380]  ? filemap_add_folio+0x1b0/0x1b0
[ 2438.351280]  ? lock_is_held_type+0xd7/0x130
[ 2438.352159]  filemap_read+0x311/0xba0
[ 2438.352960]  ? filemap_get_pages+0x1680/0x1680
[ 2438.353881]  ? filter_irq_stacks+0x90/0x90
[ 2438.354732]  ? __stack_depot_save+0x35/0x450
[ 2438.355626]  ? kasan_save_stack+0x2e/0x40
[ 2438.356452]  ? kasan_save_stack+0x1e/0x40
[ 2438.357295]  ? __kasan_kmalloc+0x81/0xa0
[ 2438.358101]  ? alloc_pipe_info+0x1e0/0x580
[ 2438.358947]  ? splice_direct_to_actor+0x700/0x8e0
[ 2438.359919]  ? do_splice_direct+0x1b8/0x280
[ 2438.360787]  ? do_sendfile+0xad7/0x1230
[ 2438.361591]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2438.362520]  ? do_syscall_64+0x3b/0x90
[ 2438.363314]  generic_file_read_iter+0x3c9/0x530
[ 2438.364255]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2438.365372]  ? __fsnotify_parent+0x498/0xa60
[ 2438.366255]  ext4_file_read_iter+0x184/0x3f0
[ 2438.367142]  generic_file_splice_read+0x3b9/0x5d0
[ 2438.368117]  ? pipe_to_user+0x170/0x170
[ 2438.368961]  ? security_file_permission+0xb1/0xd0
[ 2438.369938]  ? pipe_to_user+0x170/0x170
[ 2438.370748]  do_splice_to+0x1bc/0x240
[ 2438.371516]  ? inode_has_perm+0x1d0/0x1d0
[ 2438.372351]  splice_direct_to_actor+0x2c7/0x8e0
[ 2438.373305]  ? pipe_to_sendpage+0x380/0x380
[ 2438.374180]  ? do_splice_to+0x240/0x240
[ 2438.374977]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2438.376080]  ? security_file_permission+0xb1/0xd0
[ 2438.377071]  do_splice_direct+0x1b8/0x280
[ 2438.377907]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2438.378883]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2438.379985]  ? security_file_permission+0xb1/0xd0
[ 2438.380970]  do_sendfile+0xad7/0x1230
[ 2438.381737]  ? bit_wait_io_timeout+0x160/0x160
[ 2438.382651]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2438.383692]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2438.384793]  ? vfs_write+0x422/0xac0
[ 2438.385560]  __x64_sys_sendfile64+0x1cd/0x210
[ 2438.386460]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2438.387519]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2438.388557]  do_syscall_64+0x3b/0x90
[ 2438.389317]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2438.390336] RIP: 0033:0x7fdbfaa6cb19
[ 2438.391072] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2438.394729] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2438.396235] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2438.397776] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2438.399192] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2438.400608] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2438.402021] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2438.403460]  </TASK>
05:30:05 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x3f00000000000000)

05:30:06 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)
ioctl$CDROM_GET_MCN(r0, 0x5311, &(0x7f0000000040))

05:30:06 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000003)

05:30:06 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 35)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:30:06 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x23, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:30:06 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0xffffffffffffffff)

05:30:06 executing program 3:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$FS_IOC_GET_ENCRYPTION_NONCE(r0, 0x8010661b, &(0x7f0000000040))
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)

05:30:06 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x80086601, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x2, 0x0)

[ 2438.708103] FAULT_INJECTION: forcing a failure.
[ 2438.708103] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2438.710105] CPU: 0 PID: 16871 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2438.711382] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2438.713167] Call Trace:
[ 2438.713567]  <TASK>
[ 2438.713922]  dump_stack_lvl+0x8b/0xb3
[ 2438.714535]  should_fail.cold+0x5/0xa
[ 2438.715157]  prepare_alloc_pages+0x17b/0x500
[ 2438.715875]  __alloc_pages+0x131/0x4e0
[ 2438.716489]  ? lock_downgrade+0x6d0/0x6d0
[ 2438.717155]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2438.718106]  ? xa_load+0x158/0x290
[ 2438.718669]  ? xas_find_conflict+0x9e0/0x9e0
[ 2438.719369]  alloc_pages+0x1a0/0x2f0
[ 2438.719957]  filemap_alloc_folio+0x8e/0xb0
[ 2438.720639]  page_cache_ra_unbounded+0x1af/0x540
[ 2438.721429]  ondemand_readahead+0x642/0x1270
[ 2438.722143]  page_cache_sync_ra+0x1c5/0x200
[ 2438.722830]  filemap_get_pages+0x29e/0x1680
[ 2438.723519]  ? lock_downgrade+0x6d0/0x6d0
[ 2438.724177]  ? unwind_next_frame+0xdfe/0x20a0
[ 2438.724893]  ? filemap_add_folio+0x1b0/0x1b0
[ 2438.725605]  ? lock_is_held_type+0xd7/0x130
[ 2438.726294]  filemap_read+0x311/0xba0
[ 2438.726920]  ? filemap_get_pages+0x1680/0x1680
[ 2438.727649]  ? filter_irq_stacks+0x90/0x90
[ 2438.728310]  ? __stack_depot_save+0x35/0x450
[ 2438.729034]  ? kasan_save_stack+0x2e/0x40
[ 2438.729680]  ? kasan_save_stack+0x1e/0x40
[ 2438.730334]  ? __kasan_kmalloc+0x81/0xa0
[ 2438.730976]  ? alloc_pipe_info+0x1e0/0x580
[ 2438.731643]  ? splice_direct_to_actor+0x700/0x8e0
[ 2438.732404]  ? do_splice_direct+0x1b8/0x280
[ 2438.733096]  ? do_sendfile+0xad7/0x1230
[ 2438.733724]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2438.734451]  ? do_syscall_64+0x3b/0x90
[ 2438.735073]  generic_file_read_iter+0x3c9/0x530
[ 2438.735810]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2438.736689]  ? __fsnotify_parent+0x498/0xa60
[ 2438.737399]  ext4_file_read_iter+0x184/0x3f0
[ 2438.738111]  generic_file_splice_read+0x3b9/0x5d0
[ 2438.738873]  ? pipe_to_user+0x170/0x170
[ 2438.739518]  ? security_file_permission+0xb1/0xd0
[ 2438.740278]  ? pipe_to_user+0x170/0x170
[ 2438.740920]  do_splice_to+0x1bc/0x240
[ 2438.741522]  ? inode_has_perm+0x1d0/0x1d0
[ 2438.742175]  splice_direct_to_actor+0x2c7/0x8e0
[ 2438.742912]  ? pipe_to_sendpage+0x380/0x380
[ 2438.743610]  ? do_splice_to+0x240/0x240
[ 2438.744242]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2438.745130]  ? security_file_permission+0xb1/0xd0
[ 2438.745908]  do_splice_direct+0x1b8/0x280
[ 2438.746597]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2438.747405]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2438.748307]  ? security_file_permission+0xb1/0xd0
[ 2438.749135]  do_sendfile+0xad7/0x1230
[ 2438.749804]  ? bit_wait_io_timeout+0x160/0x160
[ 2438.750583]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2438.751450]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2438.752405]  ? vfs_write+0x422/0xac0
[ 2438.753050]  __x64_sys_sendfile64+0x1cd/0x210
[ 2438.753791]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2438.754671]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2438.755544]  do_syscall_64+0x3b/0x90
[ 2438.756168]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2438.757046] RIP: 0033:0x7f1455db8b19
[ 2438.757656] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2438.760711] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2438.761956] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2438.763089] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2438.764267] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2438.765455] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2438.766622] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2438.767821]  </TASK>
05:30:21 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000004)

05:30:21 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x6c2b00, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)
ioctl$CDROMPAUSE(r0, 0x5301)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>r0, {0x81}}, './file0\x00'})
ioctl$CDROM_GET_CAPABILITY(r1, 0x5331)

05:30:21 executing program 6:
ioctl$TUNSETNOCSUM(0xffffffffffffffff, 0x400454c8, 0x1)
ioctl$SCSI_IOCTL_GET_BUS_NUMBER(0xffffffffffffffff, 0x5386, &(0x7f0000000000))
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x0)
r1 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80))
symlinkat(&(0x7f0000000000)='./file0\x00', r1, &(0x7f0000000040)='./file0\x00')
linkat(r1, &(0x7f00000000c0)='./file0\x00', r1, &(0x7f0000000100)='./file1\x00', 0x1000)
fallocate(r1, 0x40, 0x9, 0x1)

05:30:21 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 37)

05:30:21 executing program 3:
clone3(&(0x7f0000000640)={0x20822400, &(0x7f00000000c0), 0x0, 0x0, {0xfffffffe}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff}, './file0\x00'})
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x80, 0x1, 0x60, 0x2, 0x0, 0x0, 0x400, 0x22, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x7f, 0x2, @perf_config_ext={0x10000, 0x7}, 0x8000, 0x9, 0x6, 0x2, 0xc3b3, 0xfffffffa, 0x0, 0x0, 0x3307, 0x0, 0xbc}, r0, 0x6, 0xffffffffffffffff, 0xf)

05:30:21 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 36)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:30:21 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x80087601, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x2, 0x0)

05:30:21 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x281, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

[ 2454.429983] FAULT_INJECTION: forcing a failure.
[ 2454.429983] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2454.431654] CPU: 0 PID: 16995 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2454.432660] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2454.434053] Call Trace:
[ 2454.434364]  <TASK>
[ 2454.434630]  dump_stack_lvl+0x8b/0xb3
[ 2454.435113]  should_fail.cold+0x5/0xa
[ 2454.435584]  prepare_alloc_pages+0x17b/0x500
[ 2454.436141]  __alloc_pages+0x131/0x4e0
[ 2454.436613]  ? lock_downgrade+0x6d0/0x6d0
[ 2454.437129]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2454.437871]  ? xa_load+0x158/0x290
[ 2454.438298]  ? xas_find_conflict+0x9e0/0x9e0
[ 2454.438829]  alloc_pages+0x1a0/0x2f0
[ 2454.439288]  filemap_alloc_folio+0x8e/0xb0
[ 2454.439837]  page_cache_ra_unbounded+0x1af/0x540
[ 2454.440455]  ondemand_readahead+0x642/0x1270
[ 2454.441024]  page_cache_sync_ra+0x1c5/0x200
[ 2454.441575]  filemap_get_pages+0x29e/0x1680
[ 2454.442139]  ? lock_downgrade+0x6d0/0x6d0
[ 2454.442647]  ? unwind_next_frame+0xdfe/0x20a0
[ 2454.443183]  ? filemap_add_folio+0x1b0/0x1b0
[ 2454.443745]  ? lock_is_held_type+0xd7/0x130
[ 2454.444307]  filemap_read+0x311/0xba0
[ 2454.444810]  ? filemap_get_pages+0x1680/0x1680
[ 2454.445408]  ? filter_irq_stacks+0x90/0x90
[ 2454.445939]  ? __stack_depot_save+0x35/0x450
[ 2454.446496]  ? kasan_save_stack+0x2e/0x40
[ 2454.447018]  ? kasan_save_stack+0x1e/0x40
[ 2454.447524]  ? __kasan_kmalloc+0x81/0xa0
[ 2454.448007]  ? alloc_pipe_info+0x1e0/0x580
[ 2454.448546]  ? splice_direct_to_actor+0x700/0x8e0
[ 2454.449170]  ? do_splice_direct+0x1b8/0x280
[ 2454.449715]  ? do_sendfile+0xad7/0x1230
[ 2454.450220]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2454.450809]  ? do_syscall_64+0x3b/0x90
[ 2454.451307]  generic_file_read_iter+0x3c9/0x530
[ 2454.451884]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2454.452580]  ? __fsnotify_parent+0x498/0xa60
[ 2454.453157]  ext4_file_read_iter+0x184/0x3f0
[ 2454.453707]  generic_file_splice_read+0x3b9/0x5d0
[ 2454.454328]  ? pipe_to_user+0x170/0x170
[ 2454.454835]  ? security_file_permission+0xb1/0xd0
[ 2454.455443]  ? pipe_to_user+0x170/0x170
[ 2454.455947]  do_splice_to+0x1bc/0x240
[ 2454.456403]  ? inode_has_perm+0x1d0/0x1d0
[ 2454.456913]  splice_direct_to_actor+0x2c7/0x8e0
[ 2454.457508]  ? pipe_to_sendpage+0x380/0x380
[ 2454.458051]  ? do_splice_to+0x240/0x240
[ 2454.458545]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2454.459373]  ? security_file_permission+0xb1/0xd0
[ 2454.459944]  do_splice_direct+0x1b8/0x280
[ 2454.460465]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2454.461104]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2454.461759]  ? security_file_permission+0xb1/0xd0
[ 2454.462360]  do_sendfile+0xad7/0x1230
[ 2454.462840]  ? bit_wait_io_timeout+0x160/0x160
[ 2454.463409]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2454.464054]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2454.464741]  ? vfs_write+0x422/0xac0
[ 2454.465227]  __x64_sys_sendfile64+0x1cd/0x210
[ 2454.465783]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2454.466445]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2454.467093]  do_syscall_64+0x3b/0x90
[ 2454.467563]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2454.468195] RIP: 0033:0x7fdbfaa6cb19
[ 2454.468659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2454.470959] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2454.471902] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2454.472779] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2454.473674] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2454.474554] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2454.475428] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2454.476313]  </TASK>
[ 2454.515933] FAULT_INJECTION: forcing a failure.
[ 2454.515933] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2454.518667] CPU: 1 PID: 17014 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2454.520330] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2454.522757] Call Trace:
[ 2454.523289]  <TASK>
[ 2454.523740]  dump_stack_lvl+0x8b/0xb3
[ 2454.524516]  should_fail.cold+0x5/0xa
[ 2454.525322]  prepare_alloc_pages+0x17b/0x500
[ 2454.526220]  __alloc_pages+0x131/0x4e0
[ 2454.527020]  ? lock_downgrade+0x6d0/0x6d0
[ 2454.527848]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2454.529097]  ? xa_load+0x158/0x290
[ 2454.529813]  ? xas_find_conflict+0x9e0/0x9e0
[ 2454.530733]  alloc_pages+0x1a0/0x2f0
[ 2454.531485]  filemap_alloc_folio+0x8e/0xb0
[ 2454.532343]  page_cache_ra_unbounded+0x1af/0x540
[ 2454.533319]  ondemand_readahead+0x642/0x1270
[ 2454.534225]  page_cache_sync_ra+0x1c5/0x200
[ 2454.535263]  filemap_get_pages+0x29e/0x1680
[ 2454.536139]  ? lock_downgrade+0x6d0/0x6d0
[ 2454.537036]  ? unwind_next_frame+0xdfe/0x20a0
[ 2454.538160]  ? filemap_add_folio+0x1b0/0x1b0
[ 2454.539101]  ? lock_is_held_type+0xd7/0x130
[ 2454.539996]  filemap_read+0x311/0xba0
[ 2454.540787]  ? filemap_get_pages+0x1680/0x1680
[ 2454.541737]  ? filter_irq_stacks+0x90/0x90
[ 2454.542591]  ? __stack_depot_save+0x35/0x450
[ 2454.543498]  ? kasan_save_stack+0x2e/0x40
[ 2454.544333]  ? kasan_save_stack+0x1e/0x40
[ 2454.545214]  ? __kasan_kmalloc+0x81/0xa0
[ 2454.546038]  ? alloc_pipe_info+0x1e0/0x580
[ 2454.546907]  ? splice_direct_to_actor+0x700/0x8e0
[ 2454.547891]  ? do_splice_direct+0x1b8/0x280
[ 2454.548782]  ? do_sendfile+0xad7/0x1230
[ 2454.549603]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2454.550538]  ? do_syscall_64+0x3b/0x90
[ 2454.551338]  generic_file_read_iter+0x3c9/0x530
[ 2454.552286]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2454.553411]  ? __fsnotify_parent+0x498/0xa60
[ 2454.554303]  ext4_file_read_iter+0x184/0x3f0
[ 2454.555206]  generic_file_splice_read+0x3b9/0x5d0
[ 2454.556195]  ? pipe_to_user+0x170/0x170
[ 2454.557031]  ? security_file_permission+0xb1/0xd0
[ 2454.558032]  ? pipe_to_user+0x170/0x170
[ 2454.558852]  do_splice_to+0x1bc/0x240
[ 2454.559626]  ? inode_has_perm+0x1d0/0x1d0
[ 2454.560472]  splice_direct_to_actor+0x2c7/0x8e0
[ 2454.561435]  ? pipe_to_sendpage+0x380/0x380
[ 2454.562324]  ? do_splice_to+0x240/0x240
[ 2454.563140]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2454.564261]  ? security_file_permission+0xb1/0xd0
[ 2454.565264]  do_splice_direct+0x1b8/0x280
[ 2454.566104]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2454.567094]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2454.568224]  ? security_file_permission+0xb1/0xd0
[ 2454.569220]  do_sendfile+0xad7/0x1230
[ 2454.570012]  ? bit_wait_io_timeout+0x160/0x160
[ 2454.570932]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2454.571986]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2454.573116]  ? vfs_write+0x422/0xac0
[ 2454.573869]  __x64_sys_sendfile64+0x1cd/0x210
[ 2454.574775]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2454.575851]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2454.576903]  do_syscall_64+0x3b/0x90
[ 2454.577677]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2454.578720] RIP: 0033:0x7f1455db8b19
[ 2454.579471] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2454.583193] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2454.584713] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2454.586160] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2454.587577] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2454.589000] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2454.590485] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2454.591947]  </TASK>
05:30:22 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x500, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:30:22 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 38)

05:30:22 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
pwritev(r1, &(0x7f0000000340)=[{&(0x7f00000000c0)="2293befa2b5223f8be7218069091d691494bf026f5272d0a4e718a03ddb152485c5ddc844889ed50022c48ece88e1aa60254af", 0x33}, {&(0x7f0000000180)="d478551d7582269c6bdd882ddf4d04891c3b33379d9bb2ced65ed1055c3d5e0ebc88266d649e70a91ac02f13d98f61f99945ad1db0307d8b5ca29bf52e97a3cc42eba620ee7772629058cc52bb9724518da69ccc9bf72e0f808d6a770933d3a02849d5857608b471a264ee353a82e1fd82c0ed14108c34ed71b5bf101cefd23f7222c5c15bb117923544c0f4ea7040c9573b8456520d2b5b43ec72c39bcb4d94b8196d352b864241edf998f5f9e6b38577aa32cb31ceb68ab14515bf8e14ff7510f3e6da522eb707a6f09a8d0476825fbc439f3a8a40d2056010ac9e2339a32817f6f4bb6031484295fe1a4fc3cb1b1fa5aafc75b6", 0xf5}, {&(0x7f0000000280)="a275031cc08c84d77ac215d30c5187ef4ee4a40716b14806a4eabe7918351c794ff9669c4e1ba4c7837f212ef183c5604c691616751d8a4ce878ab9db0f76b5755902a40b7bbeaec3179fc2f52223f122b97dec46487fa09194931c607bcfd30f31cfa7a8f", 0x65}], 0x3, 0x9e74, 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000080))
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
sendfile(r2, r2, &(0x7f0000000000)=0x3800, 0x80000000)
r3 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x111004, &(0x7f0000000b80))
symlinkat(&(0x7f0000000000)='./file0\x00', r3, &(0x7f0000000040)='./file0\x00')
linkat(r3, &(0x7f00000000c0)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x1000)
ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r3, 0xf502, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)

05:30:22 executing program 3:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100))
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)

05:30:22 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0xe00, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:30:22 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000005)

05:30:22 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x801c581f, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x2, 0x0)

[ 2454.749714] FAULT_INJECTION: forcing a failure.
[ 2454.749714] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2454.751860] CPU: 0 PID: 17115 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2454.753244] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2454.755108] Call Trace:
[ 2454.755546]  <TASK>
[ 2454.755916]  dump_stack_lvl+0x8b/0xb3
[ 2454.756588]  should_fail.cold+0x5/0xa
[ 2454.757255]  prepare_alloc_pages+0x17b/0x500
[ 2454.757999]  __alloc_pages+0x131/0x4e0
[ 2454.758654]  ? lock_downgrade+0x6d0/0x6d0
[ 2454.759352]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2454.760376]  ? xa_load+0x158/0x290
[ 2454.760972]  ? xas_find_conflict+0x9e0/0x9e0
[ 2454.761722]  alloc_pages+0x1a0/0x2f0
[ 2454.762360]  filemap_alloc_folio+0x8e/0xb0
[ 2454.763091]  page_cache_ra_unbounded+0x1af/0x540
[ 2454.763932]  ondemand_readahead+0x642/0x1270
[ 2454.764716]  page_cache_sync_ra+0x1c5/0x200
[ 2454.765474]  filemap_get_pages+0x29e/0x1680
[ 2454.766223]  ? lock_downgrade+0x6d0/0x6d0
[ 2454.766918]  ? unwind_next_frame+0xdfe/0x20a0
[ 2454.767692]  ? filemap_add_folio+0x1b0/0x1b0
[ 2454.768451]  ? lock_is_held_type+0xd7/0x130
[ 2454.769201]  filemap_read+0x311/0xba0
[ 2454.769889]  ? filemap_get_pages+0x1680/0x1680
[ 2454.770659]  ? filter_irq_stacks+0x90/0x90
[ 2454.771393]  ? __stack_depot_save+0x35/0x450
[ 2454.772154]  ? kasan_save_stack+0x2e/0x40
[ 2454.772870]  ? kasan_save_stack+0x1e/0x40
[ 2454.773592]  ? __kasan_kmalloc+0x81/0xa0
[ 2454.774301]  ? alloc_pipe_info+0x1e0/0x580
[ 2454.775012]  ? splice_direct_to_actor+0x700/0x8e0
[ 2454.775847]  ? do_splice_direct+0x1b8/0x280
[ 2454.776615]  ? do_sendfile+0xad7/0x1230
[ 2454.777321]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2454.778156]  ? do_syscall_64+0x3b/0x90
[ 2454.778860]  generic_file_read_iter+0x3c9/0x530
[ 2454.779710]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2454.780681]  ? __fsnotify_parent+0x498/0xa60
[ 2454.781481]  ext4_file_read_iter+0x184/0x3f0
[ 2454.782266]  generic_file_splice_read+0x3b9/0x5d0
[ 2454.783137]  ? pipe_to_user+0x170/0x170
[ 2454.783855]  ? security_file_permission+0xb1/0xd0
[ 2454.784888]  ? pipe_to_user+0x170/0x170
[ 2454.785602]  do_splice_to+0x1bc/0x240
[ 2454.786288]  ? inode_has_perm+0x1d0/0x1d0
[ 2454.787023]  splice_direct_to_actor+0x2c7/0x8e0
[ 2454.787859]  ? pipe_to_sendpage+0x380/0x380
[ 2454.788642]  ? do_splice_to+0x240/0x240
[ 2454.789351]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2454.790325]  ? security_file_permission+0xb1/0xd0
[ 2454.791213]  do_splice_direct+0x1b8/0x280
[ 2454.791961]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2454.792816]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2454.793823]  ? security_file_permission+0xb1/0xd0
[ 2454.794694]  do_sendfile+0xad7/0x1230
[ 2454.795381]  ? bit_wait_io_timeout+0x160/0x160
[ 2454.796204]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2454.797143]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2454.798158]  ? vfs_write+0x422/0xac0
[ 2454.798834]  __x64_sys_sendfile64+0x1cd/0x210
[ 2454.799648]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2454.800605]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2454.801570]  do_syscall_64+0x3b/0x90
[ 2454.802244]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2454.803157] RIP: 0033:0x7fdbfaa6cb19
[ 2454.803817] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2454.807162] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2454.808523] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2454.809824] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2454.811111] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2454.812435] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2454.813740] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2454.815052]  </TASK>
05:30:22 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 37)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:30:22 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0xffb, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:30:22 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x183802, 0x0)
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000040), 0x50000, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)

[ 2454.985780] FAULT_INJECTION: forcing a failure.
[ 2454.985780] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2454.988338] CPU: 1 PID: 17137 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2454.990032] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2454.992339] Call Trace:
[ 2454.992858]  <TASK>
[ 2454.993323]  dump_stack_lvl+0x8b/0xb3
[ 2454.994116]  should_fail.cold+0x5/0xa
[ 2454.994906]  prepare_alloc_pages+0x17b/0x500
[ 2454.995825]  __alloc_pages+0x131/0x4e0
[ 2454.996607]  ? lock_downgrade+0x6d0/0x6d0
[ 2454.997452]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2454.998686]  ? xa_load+0x158/0x290
[ 2454.999402]  ? xas_find_conflict+0x9e0/0x9e0
[ 2455.000289]  alloc_pages+0x1a0/0x2f0
[ 2455.001049]  filemap_alloc_folio+0x8e/0xb0
[ 2455.001919]  page_cache_ra_unbounded+0x1af/0x540
[ 2455.002906]  ondemand_readahead+0x642/0x1270
05:30:22 executing program 3:
getsockname(0xffffffffffffffff, &(0x7f0000000c40)=@pppol2tp={0x18, 0x1, {0x0, <r0=>0xffffffffffffffff, {0x2, 0x0, @remote}}}, &(0x7f0000000cc0)=0x80)
ioctl$sock_ipv6_tunnel_SIOCCHGPRL(r0, 0x89f7, &(0x7f0000000e80)={'ip6gre0\x00', &(0x7f0000000e00)={'ip6tnl0\x00', <r1=>0x0, 0x4, 0x7, 0x9, 0x2, 0x56, @mcast1, @private0, 0x1, 0x1, 0x0, 0x5}})
setsockopt$packet_drop_memb(r0, 0x107, 0x2, &(0x7f0000000ec0)={r1, 0x1, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, 0x10)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000dc0)={&(0x7f0000000d00)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000d80)={&(0x7f0000000d40)={0x30, 0x1, 0x4, 0x3, 0x0, 0x0, {0x2, 0x0, 0x1}, [@NFULA_CFG_QTHRESH={0x8}, @NFULA_CFG_TIMEOUT={0x8}, @NFULA_CFG_MODE={0xa, 0x2, {0x3f, 0x1}}]}, 0x30}, 0x1, 0x0, 0x0, 0x20000040}, 0x800)
r2 = syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0xff, 0x8, &(0x7f00000006c0)=[{&(0x7f0000000100)="54f00349738880f137ffccd79155924eae5ad1dc756e24486a5453d613de3b621b097858968962b783dfe8d34a294ca547e24e1199f2775042638fa124c30436519ad78646348dbb6b9ee696440e9ecdb52e9c6b2f4341182b4903335b737406b96f8d2f011e15c9d949ef98ee58011ee22de2f382884ecd1deee8c46c7f96a3c5799ed4203c949742218bbd53e0570261408584ca5bee8e987da02edd4319", 0x9f, 0xfffffffffffff883}, {&(0x7f0000000080)="c30ae2bf51ade885299d5bd38f3dbc52203c7c821e58cc0dbd698ca09877ec46c087dc85", 0x24, 0x75b}, {&(0x7f00000001c0)="cd354a72533bbdd208e8d942d5164af2b04b9fff2a6b98684e857bf352bf73223c780b7a6de4cb08b0658a60b9bb25635c2f111aa002e095b5554f919d69327a1b3d5781f1dcc6905bcfc9bbcf836bc9acd572b8dc44dadac9b4e4994ca9fb1ee352348da4491ab355a45bef271dd3944c15f946378c6bb38d04f96cb604326cfb3063b65ad6a6d26736e637782ccea430c5", 0x92}, {&(0x7f0000000280)="54f58302c0f5464b3c54c3e08fcfb576a196fcde74cf8b2de1a18dfd96efb3c242c1de04ccaa50ddd8c6018a842e496fe3ca08a4aabf04a347cf45d81dfa4a8ed82287e4a2502dc9295449c0efd6c73455c6f6383e70f31e747f942507bc825abe3c763ebc3c74092bb0f3ce8665e365a881310552a6a01f408640fe366b8f05bb575089660bf830ca51e4cd785d9b5c73da9fe313958e82dd3dab57a4824e95632eb2f22bca5dee941f5aaf2763037ed9c56ce5262851fa480e25f2b7e00dc59ec93a9f0c0475a2c96f0492e8c91810eb0b63cfcd5f5240ab4f1a1b6bf437a6a9099ba76c8a5554555d54", 0xeb}, {&(0x7f0000000380)="6df536f56a6bc708f50ced24542d38125ca59d7538f8849c6aa8677b9f3c64ad8b0c6577782534109fec2c341797c5b230ef55c412efbc82c55002cd404d99c90813918715efc36e0b102952e4", 0x4d, 0x6e4a}, {&(0x7f0000000400)="2ab94c23b3ba1c0723a6f96c2976b9c142a1c20eb9f51749497e860b8ee10738ec14bbaa81fbf8925db2d2537e9594e903d42588c623eb2c4b8df3e03e1ebf6f648317957f2c0a1856fe499af21df3d433a41f26462086113673735051e1a219b92e75fd4f5c53cdba538ba2b7a3af1cfce0409e9ee08b5876e6", 0x7a, 0xffffffff}, {&(0x7f0000000480)="89e9f69ee19f50eafeb5c142c99a6f2a50179e8bde5d2343ef9cca4b25bdfee776a59c310ac357cdd0e6856570fe572046e116f223ebd627b111a7c349f9d1d27d7f24f7f4e1e01067210e6a3c78af8242445321fdf93507835bcb59c2b5e807e08abbf3b5d94dc2d21027e802ba52bcb55b4447067f0c45fe83465279c9e1b6fcb91a5e43c7261a89f3b0a471a7433c800f08b09f09e49b3fb866cb7ca1d27177855b8b1327bd4e12386f83943683", 0xaf, 0x248b}, {&(0x7f0000000880)="2331575c967388036ff7aaeef3d1f64cf88485ed0547817d6223574e91fdf94f77631b713c95237be65a9ce67c4974e3676fc561373ec0eaf8570d99c90b7690fface253a2ea824623034661bd5dc88d0dd7360d85b899cd3f8fa44e", 0x5c, 0x80000001}], 0x302c, &(0x7f0000000780)=ANY=[@ANYBLOB="bb0c0000", @ANYRESHEX, @ANYBLOB="2c756e686964652c626c6f636b3d3078303030303030303030303030303830302c6e6f726f636b2c736d61636b6673666c6f6f723d2c217b5c2e2a282c001b73dd21dc3e8733c58e5c46d8183e66853d426b7e7d58ec92b4fcb602af6a4b4e4786b6050b29f22dbbe8649b5382774c0f190fbfdbbc74b63bab6e5b1465ec766a69ce07880f4a0dbb037c826002f4f149e5385043bb078dc5ea28b17212f4c667a69cdae7e703f8e73fb6b937462b0017be93a5311c3f5f"])
ioctl$BTRFS_IOC_SYNC(r2, 0x9408, 0x0)
r3 = openat(r2, &(0x7f00000005c0)='./file0\x00', 0x84001, 0x1a)
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)
r4 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r4, 0x5429, &(0x7f0000000080)=<r5=>0x0)
capset(&(0x7f0000000340)={0x20080522, r5}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
clone3(&(0x7f0000000b00)={0x200200000, &(0x7f0000000540), &(0x7f0000000580), &(0x7f0000000600), {0x22}, &(0x7f0000000900)=""/176, 0xb0, &(0x7f00000009c0)=""/222, &(0x7f0000000ac0)=[r5], 0x1, {r3}}, 0x58)

[ 2455.003817]  page_cache_sync_ra+0x1c5/0x200
[ 2455.004881]  filemap_get_pages+0x29e/0x1680
[ 2455.005817]  ? lock_downgrade+0x6d0/0x6d0
[ 2455.006678]  ? unwind_next_frame+0xdfe/0x20a0
[ 2455.007593]  ? filemap_add_folio+0x1b0/0x1b0
[ 2455.008512]  ? lock_is_held_type+0xd7/0x130
[ 2455.009412]  filemap_read+0x311/0xba0
[ 2455.010213]  ? filemap_get_pages+0x1680/0x1680
[ 2455.011142]  ? filter_irq_stacks+0x90/0x90
[ 2455.012008]  ? __stack_depot_save+0x35/0x450
[ 2455.012913]  ? kasan_save_stack+0x2e/0x40
[ 2455.013740]  ? kasan_save_stack+0x1e/0x40
[ 2455.014586]  ? __kasan_kmalloc+0x81/0xa0
[ 2455.015404]  ? alloc_pipe_info+0x1e0/0x580
[ 2455.016261]  ? splice_direct_to_actor+0x700/0x8e0
[ 2455.017258]  ? do_splice_direct+0x1b8/0x280
[ 2455.018142]  ? do_sendfile+0xad7/0x1230
[ 2455.018927]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2455.019868]  ? do_syscall_64+0x3b/0x90
[ 2455.020667]  generic_file_read_iter+0x3c9/0x530
[ 2455.021630]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2455.022758]  ? __fsnotify_parent+0x498/0xa60
[ 2455.023645]  ext4_file_read_iter+0x184/0x3f0
[ 2455.024546]  generic_file_splice_read+0x3b9/0x5d0
[ 2455.025539]  ? pipe_to_user+0x170/0x170
[ 2455.026375]  ? security_file_permission+0xb1/0xd0
[ 2455.027346]  ? pipe_to_user+0x170/0x170
[ 2455.028157]  do_splice_to+0x1bc/0x240
[ 2455.028931]  ? inode_has_perm+0x1d0/0x1d0
[ 2455.029786]  splice_direct_to_actor+0x2c7/0x8e0
[ 2455.030734]  ? pipe_to_sendpage+0x380/0x380
[ 2455.031620]  ? do_splice_to+0x240/0x240
[ 2455.032431]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2455.033557]  ? security_file_permission+0xb1/0xd0
[ 2455.034550]  do_splice_direct+0x1b8/0x280
[ 2455.035404]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2455.036395]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2455.037528]  ? security_file_permission+0xb1/0xd0
[ 2455.038514]  do_sendfile+0xad7/0x1230
[ 2455.039290]  ? bit_wait_io_timeout+0x160/0x160
[ 2455.040214]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2455.041267]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2455.042385]  ? vfs_write+0x422/0xac0
[ 2455.043143]  __x64_sys_sendfile64+0x1cd/0x210
[ 2455.044053]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2455.045137]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2455.046190]  do_syscall_64+0x3b/0x90
[ 2455.046950]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2455.047985] RIP: 0033:0x7f1455db8b19
[ 2455.048727] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2455.052404] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2455.053937] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2455.055366] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2455.056790] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2455.058236] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2455.059663] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2455.061129]  </TASK>
05:30:34 executing program 3:
ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000000100)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)

05:30:34 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000040), 0xc9b6a270a09d775a, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)
ioctl$CDROMEJECT_SW(r0, 0x530f, 0x0)
ioctl$CDROMVOLCTRL(0xffffffffffffffff, 0x530a, &(0x7f0000000000)={0x80, 0xc3, 0xc9, 0xb0})

05:30:34 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 39)

05:30:34 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000006)

05:30:34 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x0)
r1 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80))
symlinkat(&(0x7f0000000000)='./file0\x00', r1, &(0x7f0000000040)='./file0\x00')
linkat(r1, &(0x7f00000000c0)='./file0\x00', r1, &(0x7f0000000100)='./file1\x00', 0x1000)
recvmmsg(0xffffffffffffffff, &(0x7f0000005940), 0x0, 0x2, &(0x7f0000005a80)={0x77359400})
syz_open_procfs$userns(0x0, &(0x7f0000005ac0))
r2 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80))
symlinkat(&(0x7f0000000000)='./file0\x00', r2, &(0x7f0000000040)='./file0\x00')
linkat(r2, &(0x7f00000000c0)='./file0\x00', r2, &(0x7f0000000100)='./file1\x00', 0x1000)
r3 = syz_open_dev$vcsa(&(0x7f0000005b00), 0x3f, 0x161140)
r4 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000005b80), 0x410000, 0x0)
splice(r3, &(0x7f0000005b40), r4, &(0x7f0000005bc0), 0xcf3, 0x4)
ioctl$BTRFS_IOC_FS_INFO(r2, 0x8400941f, &(0x7f0000000bc0))
getresgid(&(0x7f0000000b80), &(0x7f0000000bc0), &(0x7f0000000c00)=<r5=>0x0)
setregid(r5, 0x0)
r6 = getegid()
getresgid(&(0x7f0000000b80), &(0x7f0000000bc0), &(0x7f0000000c00)=<r7=>0x0)
setregid(r7, 0x0)
setxattr$system_posix_acl(&(0x7f0000000080)='./file1\x00', &(0x7f0000000140)='system.posix_acl_access\x00', &(0x7f00000005c0)={{}, {}, [{}, {}], {0x4, 0x6}, [{0x8, 0x5}, {0x8, 0x4, r5}, {0x8, 0x4, 0xee00}, {0x8, 0x6, r6}, {0x8, 0x2}, {0x8, 0x8, r7}, {0x8, 0x0, 0xee01}, {0x8, 0xb, 0xee00}, {0x8, 0x3, 0xee00}], {0x10, 0x1}, {0x20, 0x2}}, 0x7c, 0x1)

05:30:34 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0xc0045878, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x2, 0x0)

05:30:34 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1100, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:30:34 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 38)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

[ 2467.391029] FAULT_INJECTION: forcing a failure.
[ 2467.391029] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2467.392363] CPU: 1 PID: 17270 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2467.392381] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2467.392390] Call Trace:
[ 2467.392395]  <TASK>
[ 2467.392401]  dump_stack_lvl+0x8b/0xb3
[ 2467.392427]  should_fail.cold+0x5/0xa
[ 2467.392449]  prepare_alloc_pages+0x17b/0x500
[ 2467.392476]  __alloc_pages+0x131/0x4e0
[ 2467.392490]  ? lock_downgrade+0x6d0/0x6d0
[ 2467.392508]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2467.392533]  ? xa_load+0x158/0x290
[ 2467.392549]  ? xas_find_conflict+0x9e0/0x9e0
[ 2467.392566]  alloc_pages+0x1a0/0x2f0
[ 2467.392586]  filemap_alloc_folio+0x8e/0xb0
[ 2467.392606]  page_cache_ra_unbounded+0x1af/0x540
[ 2467.392634]  ondemand_readahead+0x642/0x1270
[ 2467.392659]  page_cache_sync_ra+0x1c5/0x200
[ 2467.392679]  filemap_get_pages+0x29e/0x1680
[ 2467.392702]  ? lock_downgrade+0x6d0/0x6d0
[ 2467.392721]  ? unwind_next_frame+0xdfe/0x20a0
[ 2467.392739]  ? filemap_add_folio+0x1b0/0x1b0
[ 2467.392763]  ? lock_is_held_type+0xd7/0x130
[ 2467.392786]  filemap_read+0x311/0xba0
[ 2467.392817]  ? filemap_get_pages+0x1680/0x1680
[ 2467.392836]  ? filter_irq_stacks+0x90/0x90
[ 2467.392852]  ? __stack_depot_save+0x35/0x450
[ 2467.392876]  ? kasan_save_stack+0x2e/0x40
[ 2467.392888]  ? kasan_save_stack+0x1e/0x40
[ 2467.392900]  ? __kasan_kmalloc+0x81/0xa0
[ 2467.392912]  ? alloc_pipe_info+0x1e0/0x580
[ 2467.392926]  ? splice_direct_to_actor+0x700/0x8e0
[ 2467.392945]  ? do_splice_direct+0x1b8/0x280
[ 2467.392963]  ? do_sendfile+0xad7/0x1230
[ 2467.392975]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2467.392989]  ? do_syscall_64+0x3b/0x90
[ 2467.393012]  generic_file_read_iter+0x3c9/0x530
[ 2467.393033]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2467.393054]  ? __fsnotify_parent+0x498/0xa60
[ 2467.393070]  ext4_file_read_iter+0x184/0x3f0
[ 2467.393091]  generic_file_splice_read+0x3b9/0x5d0
[ 2467.393112]  ? pipe_to_user+0x170/0x170
[ 2467.393142]  ? security_file_permission+0xb1/0xd0
[ 2467.393162]  ? pipe_to_user+0x170/0x170
[ 2467.393183]  do_splice_to+0x1bc/0x240
[ 2467.393199]  ? inode_has_perm+0x1d0/0x1d0
[ 2467.393216]  splice_direct_to_actor+0x2c7/0x8e0
[ 2467.393238]  ? pipe_to_sendpage+0x380/0x380
[ 2467.393262]  ? do_splice_to+0x240/0x240
[ 2467.393298]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2467.393318]  ? security_file_permission+0xb1/0xd0
[ 2467.393340]  do_splice_direct+0x1b8/0x280
[ 2467.393360]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2467.393384]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2467.393404]  ? security_file_permission+0xb1/0xd0
[ 2467.419157]  do_sendfile+0xad7/0x1230
[ 2467.419566]  ? bit_wait_io_timeout+0x160/0x160
[ 2467.420049]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2467.420592]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2467.421174]  ? vfs_write+0x422/0xac0
[ 2467.421584]  __x64_sys_sendfile64+0x1cd/0x210
[ 2467.422054]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2467.422610]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2467.423172]  do_syscall_64+0x3b/0x90
[ 2467.423569]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2467.424108] RIP: 0033:0x7fdbfaa6cb19
[ 2467.424495] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2467.426428] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2467.427218] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2467.427961] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2467.428704] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2467.429454] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2467.430200] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2467.430959]  </TASK>
[ 2467.440906] FAULT_INJECTION: forcing a failure.
[ 2467.440906] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2467.443476] CPU: 0 PID: 17278 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2467.445244] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2467.447665] Call Trace:
[ 2467.448212]  <TASK>
[ 2467.448691]  dump_stack_lvl+0x8b/0xb3
[ 2467.449526]  should_fail.cold+0x5/0xa
[ 2467.450348]  prepare_alloc_pages+0x17b/0x500
[ 2467.451305]  __alloc_pages+0x131/0x4e0
[ 2467.452133]  ? lock_downgrade+0x6d0/0x6d0
[ 2467.453023]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2467.454330]  ? xa_load+0x158/0x290
[ 2467.455090]  ? xas_find_conflict+0x9e0/0x9e0
[ 2467.456028]  alloc_pages+0x1a0/0x2f0
[ 2467.456830]  filemap_alloc_folio+0x8e/0xb0
[ 2467.457747]  page_cache_ra_unbounded+0x1af/0x540
[ 2467.458777]  ondemand_readahead+0x642/0x1270
[ 2467.459732]  page_cache_sync_ra+0x1c5/0x200
[ 2467.460659]  filemap_get_pages+0x29e/0x1680
[ 2467.461598]  ? lock_downgrade+0x6d0/0x6d0
[ 2467.462492]  ? unwind_next_frame+0xdfe/0x20a0
[ 2467.463449]  ? filemap_add_folio+0x1b0/0x1b0
[ 2467.464402]  ? lock_is_held_type+0xd7/0x130
[ 2467.465349]  filemap_read+0x311/0xba0
[ 2467.466194]  ? filemap_get_pages+0x1680/0x1680
[ 2467.467157]  ? filter_irq_stacks+0x90/0x90
[ 2467.468063]  ? __stack_depot_save+0x35/0x450
[ 2467.469001]  ? kasan_save_stack+0x2e/0x40
[ 2467.469888]  ? kasan_save_stack+0x1e/0x40
[ 2467.470755]  ? __kasan_kmalloc+0x81/0xa0
[ 2467.471617]  ? alloc_pipe_info+0x1e0/0x580
[ 2467.472499]  ? splice_direct_to_actor+0x700/0x8e0
[ 2467.473546]  ? do_splice_direct+0x1b8/0x280
[ 2467.474453]  ? do_sendfile+0xad7/0x1230
[ 2467.475297]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2467.476283]  ? do_syscall_64+0x3b/0x90
[ 2467.477126]  generic_file_read_iter+0x3c9/0x530
[ 2467.478141]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2467.479318]  ? __fsnotify_parent+0x498/0xa60
[ 2467.480262]  ext4_file_read_iter+0x184/0x3f0
[ 2467.481206]  generic_file_splice_read+0x3b9/0x5d0
[ 2467.482248]  ? pipe_to_user+0x170/0x170
[ 2467.483124]  ? security_file_permission+0xb1/0xd0
[ 2467.484156]  ? pipe_to_user+0x170/0x170
[ 2467.485013]  do_splice_to+0x1bc/0x240
[ 2467.485830]  ? inode_has_perm+0x1d0/0x1d0
[ 2467.486718]  splice_direct_to_actor+0x2c7/0x8e0
[ 2467.487798]  ? pipe_to_sendpage+0x380/0x380
[ 2467.488738]  ? do_splice_to+0x240/0x240
[ 2467.489602]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2467.490777]  ? security_file_permission+0xb1/0xd0
[ 2467.491818]  do_splice_direct+0x1b8/0x280
[ 2467.492721]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2467.493787]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2467.494956]  ? security_file_permission+0xb1/0xd0
[ 2467.495995]  do_sendfile+0xad7/0x1230
[ 2467.496812]  ? bit_wait_io_timeout+0x160/0x160
[ 2467.497810]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2467.498916]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
05:30:35 executing program 5:
ioctl$DVD_AUTH(0xffffffffffffffff, 0x80041284, 0x0)
ioctl$CDROM_GET_MCN(0xffffffffffffffff, 0x5311, &(0x7f0000000040))

05:30:35 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
ioctl$SG_GET_PACK_ID(r0, 0x227c, &(0x7f0000000080))
ioctl$BTRFS_IOC_RESIZE(r0, 0x50009403, &(0x7f00000001c0)={{r0}, {@void, @actul_num={@val=0x2b, 0x3ff, 0x6d}}})
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0xc)
r1 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="81b6278c1376e246a1177198ebac3700864ae07e388fad807b3eb5"])
symlinkat(&(0x7f0000000000)='./file0\x00', r1, &(0x7f0000000040)='./file0\x00')
linkat(r1, &(0x7f00000000c0)='./file0\x00', r1, &(0x7f0000000100)='./file1\x00', 0x1000)
keyctl$clear(0x7, 0xffffffffffffffff)
fcntl$getown(r1, 0x9)

05:30:35 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$CDROM_DEBUG(r0, 0x5330, 0x1)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x450300, 0x0)
ioctl$CDROM_SEND_PACKET(r1, 0x5393, &(0x7f0000000200)={"c08ee9ae0543d9d054bdeeef", &(0x7f0000000080)="f64a7bac6faa70508a00bd1694bc54e69b4c5d32b0f3404f604d61f6ed42a7be30058f92c137468b1cc8ae45a818a29708de2a5c3b90e1ec451bfa276317887263a5dcd01c9658fec7eea60b06a80038383c17358026f3dbc82da612dbb9fe32fcc72fffb207282cd0d9e433eb6c6d27546f2e5ca11d9bfdb6ec144bedfef8d99786f1e326f488374395d43e7e14f3f55479fb3d37a49ef79b18cd8a2a8607afd9971134330e9df3b2c09b026b4fe75ccfa74c2314b085559528ce6087bbdc01031a46d8525d2fdc96d576dd326cd8d6487e807e9f6b1b42eecd49046ea63ac7e6776bafcb72f4770402", 0xea, 0x1000, &(0x7f0000000180)={0x61, 0x0, 0xff, 0x6, 0x0, 0x1, 0x0, "69a4a3c2", 0xf8, "3a914441", 0x8f, 0x7f, 0x11, "1068ce", "30cb4fed523b3a6c4d8d1b0b53953fbdd6264f8f7bad0ce4787de227f58aa88ee48c939ac3c3b01d3b296acf66c4"}, 0x3, 0x8, 0x5, &(0x7f00000001c0)})
ioctl$CDROM_LOCKDOOR(r0, 0x5329, 0x0)

[ 2467.500092]  ? vfs_write+0x422/0xac0
[ 2467.501046]  __x64_sys_sendfile64+0x1cd/0x210
[ 2467.502006]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2467.503123]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2467.504211]  do_syscall_64+0x3b/0x90
[ 2467.505007]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2467.506088] RIP: 0033:0x7f1455db8b19
[ 2467.506871] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2467.510706] RSP: 002b:00007f145330d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2467.512311] RAX: ffffffffffffffda RBX: 00007f1455ecc020 RCX: 00007f1455db8b19
[ 2467.513826] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2467.515333] RBP: 00007f145330d1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2467.516837] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2467.518353] R13: 00007fff0823e86f R14: 00007f145330d300 R15: 0000000000022000
[ 2467.519894]  </TASK>
05:30:35 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000007)

[ 2467.595946] tmpfs: Unknown parameter '��'�v�F�q��7'
[ 2467.605615] tmpfs: Unknown parameter '��'�v�F�q��7'
05:30:49 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000008)

05:30:49 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYRES32, @ANYRES32, @ANYBLOB="084d01"], 0x24}}, 0x0)
sendmsg$NL80211_CMD_PEER_MEASUREMENT_START(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x68869ef86b1da3b6}, 0xc, &(0x7f0000000040)={&(0x7f00000004c0)={0x12f0, r2, 0x100, 0x70bd26, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x1, 0x9}}}}, [@NL80211_PMSR_ATTR_PEERS={0x64c, 0x5, 0x0, 0x1, [{0x370, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0x2c8, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0xa4, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x1ff}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x9}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xff}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1e}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0xd4, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xe}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x4}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x1f}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x6}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x48, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x148, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xe}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x7}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x12}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xfe01}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x9}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x401}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x1f}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xe}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x20}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x20}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x2}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}]}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @broadcast}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa}, @NL80211_PMSR_PEER_ATTR_REQ={0x80, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x40, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x3f}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xa2cc}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xb}]}]}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa}]}, {0x44, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @device_b}, @NL80211_PMSR_PEER_ATTR_CHAN={0x1c, 0x2, 0x0, 0x1, [@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x81}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xe}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0xa}]}, @NL80211_PMSR_PEER_ATTR_REQ={0xc, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_REQ={0xc, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}]}, {0x278, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0x274, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x7f}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x12}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x9}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x98, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}]}, @NL80211_PMSR_TYPE_FTM={0x40, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xff}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1a}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xa}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x80}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x7ff}]}, @NL80211_PMSR_TYPE_FTM={0x4}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x4}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xc}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x11c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xf7}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x40, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xe}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1a}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x81}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x3ff}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xe}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x2}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x12}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}]}]}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa}, @NL80211_PMSR_PEER_ATTR_CHAN={0xc, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}]}]}]}, @NL80211_PMSR_ATTR_PEERS={0x788, 0x5, 0x0, 0x1, [{0x514, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa}, @NL80211_PMSR_PEER_ATTR_REQ={0x170, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x118, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xa4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x8}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xa}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xe4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1a}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x1f}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x7ff}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x80}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xe}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x8, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x3c, 0x2, 0x0, 0x1, [@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x3c}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x118f0a94}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1711}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1702}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x344, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x80, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xf5}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x8}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x148, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x8000}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xe}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x2}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x13}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xb}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x80}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xf5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xc}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x40}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x1f}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x99}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0xe0, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x7}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x4}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0x44, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x1}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x60, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xc}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x8}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x1f}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x2}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @device_b}]}, {0x270, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0x1e0, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x98, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xd}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xff}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xe}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xfff}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x35e9}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x2}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x114, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xa7}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1d}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xb}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x1f}]}, @NL80211_PMSR_TYPE_FTM={0x4c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xe}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x8}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}]}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x3c, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x10}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x10001}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x369}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x8}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xfffffbff}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x81}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x38, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x9}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x1}]}]}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa}]}]}, @NL80211_PMSR_ATTR_PEERS={0x4fc, 0x5, 0x0, 0x1, [{0x64, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_CHAN={0x1c, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x5}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x1e}, @NL80211_ATTR_WIPHY_FREQ={0x8}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x44, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x98f}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0xe4}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x2f2}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x100}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x20}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x9}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x6}]}]}, {0x488, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_CHAN={0xc, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2c}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x1c, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x5}, @NL80211_ATTR_CENTER_FREQ1={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0xd8}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x318, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x8c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x40}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xd4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xc61}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x1f}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0xbc, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x10}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x80}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x5}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xfff8}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x13}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x58, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x6}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x16c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x62}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x8}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1a}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xe}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xbbc9}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x13c}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x9}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x7ff}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xe}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x62}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x7}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x9dbe}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x5}]}]}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @device_b}, @NL80211_PMSR_PEER_ATTR_CHAN={0x14, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x3}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @broadcast}, @NL80211_PMSR_PEER_ATTR_CHAN={0x1c, 0x2, 0x0, 0x1, [@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x7}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x6}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}]}, @NL80211_PMSR_PEER_ATTR_REQ={0xe4, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x48, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x44, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x94, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x100}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xbfc9}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x101}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}]}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0xc, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x2bb}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0x8, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}]}]}]}, 0x12f0}, 0x1, 0x0, 0x0, 0x10}, 0x800)

05:30:49 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1f00, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:30:49 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 39)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:30:49 executing program 3:
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)
fcntl$getownex(r0, 0x10, &(0x7f0000000240)={0x0, <r1=>0x0})
clone3(&(0x7f00000002c0)={0xc00c0, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x24}, &(0x7f0000000100)=""/122, 0x7a, &(0x7f0000000180)=""/175, &(0x7f0000000280)=[r1], 0x1}, 0x58)

05:30:49 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000040), 0x723841, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r1, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
ioctl$CDROMEJECT_SW(r1, 0x530f, 0x0)
close(r0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="18000000", @ANYRES16=r3, @ANYBLOB="010300000000000000000100000004000180"], 0x18}}, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f00000000c0)={{{@in=@remote, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@multicast2}, 0x0, @in=@multicast1}}, &(0x7f00000001c0)=0xe8)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, &(0x7f0000000200)={'wg1\x00', <r5=>0x0})
sendmsg$ETHTOOL_MSG_RINGS_SET(r1, &(0x7f00000004c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000240)=ANY=[@ANYBLOB="a303ef1d", @ANYRES16=r3, @ANYBLOB="000126bd7000fedbdf251000000008000700b80a00000800070009000000480001801400020076657468315f766972745f776966690008000100", @ANYRES32=r4, @ANYBLOB="0800030003000000080003000300000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=r5, @ANYBLOB="0800030000000000080009000600000008000700090000000800080099d7000038000180080003000300000008000100", @ANYRES32=0x0, @ANYBLOB="0800030002000000140002007465616d5f736c6176655f31000000000800030001000000080008005f0d0000"], 0xc4}, 0x1, 0x0, 0x0, 0x20000804}, 0x4080)

05:30:49 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 40)

05:30:49 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0xc0045878, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x2, 0x0)

05:30:49 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000009)

[ 2481.524054] FAULT_INJECTION: forcing a failure.
[ 2481.524054] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2481.525392] CPU: 0 PID: 17301 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2481.526271] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2481.527471] Call Trace:
[ 2481.527738]  <TASK>
[ 2481.527975]  dump_stack_lvl+0x8b/0xb3
[ 2481.528401]  should_fail.cold+0x5/0xa
[ 2481.528819]  prepare_alloc_pages+0x17b/0x500
[ 2481.529310]  __alloc_pages+0x131/0x4e0
[ 2481.529750]  ? lock_downgrade+0x6d0/0x6d0
[ 2481.529950] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2481.530191]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2481.530218]  ? xa_load+0x158/0x290
[ 2481.533204]  ? xas_find_conflict+0x9e0/0x9e0
[ 2481.533684]  alloc_pages+0x1a0/0x2f0
[ 2481.534082]  filemap_alloc_folio+0x8e/0xb0
[ 2481.534531]  page_cache_ra_unbounded+0x1af/0x540
[ 2481.535048]  ondemand_readahead+0x642/0x1270
[ 2481.535525]  page_cache_sync_ra+0x1c5/0x200
[ 2481.535978]  filemap_get_pages+0x29e/0x1680
[ 2481.536435]  ? lock_downgrade+0x6d0/0x6d0
[ 2481.536869]  ? unwind_next_frame+0xdfe/0x20a0
[ 2481.537338]  ? filemap_add_folio+0x1b0/0x1b0
[ 2481.537811]  ? lock_is_held_type+0xd7/0x130
[ 2481.538268]  filemap_read+0x311/0xba0
[ 2481.538686]  ? filemap_get_pages+0x1680/0x1680
[ 2481.539170]  ? filter_irq_stacks+0x90/0x90
[ 2481.539620]  ? __stack_depot_save+0x35/0x450
[ 2481.540089]  ? kasan_save_stack+0x2e/0x40
[ 2481.540525]  ? kasan_save_stack+0x1e/0x40
[ 2481.540955]  ? __kasan_kmalloc+0x81/0xa0
[ 2481.541381]  ? alloc_pipe_info+0x1e0/0x580
[ 2481.541837]  ? splice_direct_to_actor+0x700/0x8e0
[ 2481.542353]  ? do_splice_direct+0x1b8/0x280
[ 2481.542810]  ? do_sendfile+0xad7/0x1230
[ 2481.543222]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2481.543702]  ? do_syscall_64+0x3b/0x90
[ 2481.544117]  generic_file_read_iter+0x3c9/0x530
[ 2481.544606]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2481.545184]  ? __fsnotify_parent+0x498/0xa60
[ 2481.545655]  ext4_file_read_iter+0x184/0x3f0
[ 2481.546120]  generic_file_splice_read+0x3b9/0x5d0
[ 2481.546626]  ? pipe_to_user+0x170/0x170
[ 2481.547054]  ? security_file_permission+0xb1/0xd0
[ 2481.547563]  ? pipe_to_user+0x170/0x170
[ 2481.547982]  do_splice_to+0x1bc/0x240
[ 2481.548380]  ? inode_has_perm+0x1d0/0x1d0
[ 2481.548810]  splice_direct_to_actor+0x2c7/0x8e0
[ 2481.549307]  ? pipe_to_sendpage+0x380/0x380
[ 2481.549780]  ? do_splice_to+0x240/0x240
[ 2481.550205]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2481.551019]  ? security_file_permission+0xb1/0xd0
[ 2481.551535]  do_splice_direct+0x1b8/0x280
[ 2481.551976]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2481.552490]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2481.553064]  ? security_file_permission+0xb1/0xd0
[ 2481.553591]  do_sendfile+0xad7/0x1230
[ 2481.553991]  ? bit_wait_io_timeout+0x160/0x160
[ 2481.554473]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2481.555012]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2481.555601]  ? vfs_write+0x422/0xac0
[ 2481.555995]  __x64_sys_sendfile64+0x1cd/0x210
[ 2481.556466]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2481.557019]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2481.557587]  do_syscall_64+0x3b/0x90
[ 2481.557979]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2481.558517] RIP: 0033:0x7f1455db8b19
[ 2481.558903] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2481.560803] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2481.561591] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2481.562321] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2481.563050] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2481.563779] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2481.564507] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2481.565257]  </TASK>
[ 2481.583654] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.6'.
[ 2481.622022] FAULT_INJECTION: forcing a failure.
[ 2481.622022] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2481.623334] CPU: 0 PID: 17310 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2481.624194] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2481.625378] Call Trace:
[ 2481.625654]  <TASK>
[ 2481.625892]  dump_stack_lvl+0x8b/0xb3
[ 2481.626303]  should_fail.cold+0x5/0xa
[ 2481.626716]  prepare_alloc_pages+0x17b/0x500
[ 2481.627190]  __alloc_pages+0x131/0x4e0
[ 2481.627602]  ? lock_downgrade+0x6d0/0x6d0
[ 2481.628043]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2481.628680]  ? xa_load+0x158/0x290
[ 2481.629056]  ? xas_find_conflict+0x9e0/0x9e0
[ 2481.629534]  alloc_pages+0x1a0/0x2f0
[ 2481.629934]  filemap_alloc_folio+0x8e/0xb0
[ 2481.630384]  page_cache_ra_unbounded+0x1af/0x540
[ 2481.630897]  ondemand_readahead+0x642/0x1270
[ 2481.631369]  page_cache_sync_ra+0x1c5/0x200
[ 2481.631827]  filemap_get_pages+0x29e/0x1680
[ 2481.632287]  ? lock_downgrade+0x6d0/0x6d0
[ 2481.632734]  ? unwind_next_frame+0xdfe/0x20a0
[ 2481.633206]  ? filemap_add_folio+0x1b0/0x1b0
[ 2481.633683]  ? lock_is_held_type+0xd7/0x130
[ 2481.634140]  filemap_read+0x311/0xba0
[ 2481.634558]  ? filemap_get_pages+0x1680/0x1680
[ 2481.635040]  ? filter_irq_stacks+0x90/0x90
[ 2481.635484]  ? __stack_depot_save+0x35/0x450
[ 2481.635957]  ? kasan_save_stack+0x2e/0x40
[ 2481.636412]  ? kasan_save_stack+0x1e/0x40
[ 2481.636842]  ? __kasan_kmalloc+0x81/0xa0
[ 2481.637267]  ? alloc_pipe_info+0x1e0/0x580
[ 2481.637721]  ? splice_direct_to_actor+0x700/0x8e0
[ 2481.638254]  ? do_splice_direct+0x1b8/0x280
[ 2481.638716]  ? do_sendfile+0xad7/0x1230
[ 2481.639130]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2481.639634]  ? do_syscall_64+0x3b/0x90
[ 2481.640061]  generic_file_read_iter+0x3c9/0x530
[ 2481.640561]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2481.641161]  ? __fsnotify_parent+0x498/0xa60
[ 2481.641650]  ext4_file_read_iter+0x184/0x3f0
[ 2481.642134]  generic_file_splice_read+0x3b9/0x5d0
[ 2481.642656]  ? pipe_to_user+0x170/0x170
[ 2481.643092]  ? security_file_permission+0xb1/0xd0
[ 2481.643606]  ? pipe_to_user+0x170/0x170
[ 2481.644033]  do_splice_to+0x1bc/0x240
[ 2481.644442]  ? inode_has_perm+0x1d0/0x1d0
[ 2481.644892]  splice_direct_to_actor+0x2c7/0x8e0
[ 2481.645390]  ? pipe_to_sendpage+0x380/0x380
[ 2481.645877]  ? do_splice_to+0x240/0x240
[ 2481.646306]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2481.646884]  ? security_file_permission+0xb1/0xd0
[ 2481.647397]  do_splice_direct+0x1b8/0x280
[ 2481.647849]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2481.648375]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2481.648982]  ? security_file_permission+0xb1/0xd0
[ 2481.649509]  do_sendfile+0xad7/0x1230
[ 2481.649925]  ? bit_wait_io_timeout+0x160/0x160
[ 2481.650412]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2481.650982]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2481.651567]  ? vfs_write+0x422/0xac0
[ 2481.651963]  __x64_sys_sendfile64+0x1cd/0x210
[ 2481.652442]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2481.653014]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2481.653562]  do_syscall_64+0x3b/0x90
[ 2481.653956]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2481.654496] RIP: 0033:0x7fdbfaa6cb19
[ 2481.654894] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2481.656832] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2481.657658] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2481.658406] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2481.659139] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2481.659887] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2481.660635] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2481.661608]  </TASK>
05:30:49 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)

05:30:49 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 40)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:30:49 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x18)

05:30:49 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x8000000a)

05:30:49 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 41)

05:30:49 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x4000, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:30:49 executing program 3:
ioctl$sock_SIOCBRADDBR(0xffffffffffffffff, 0x89a0, &(0x7f0000000000)='team0\x00')

05:30:49 executing program 6:
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_FSYNC={0x3, 0x5, 0x0, @fd_index=0x3}, 0x20000)
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x0)

[ 2481.836110] FAULT_INJECTION: forcing a failure.
[ 2481.836110] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2481.837517] CPU: 0 PID: 17435 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2481.838415] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2481.838498] FAULT_INJECTION: forcing a failure.
[ 2481.838498] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2481.839508] Call Trace:
[ 2481.839515]  <TASK>
[ 2481.839521]  dump_stack_lvl+0x8b/0xb3
[ 2481.839548]  should_fail.cold+0x5/0xa
[ 2481.839569]  prepare_alloc_pages+0x17b/0x500
[ 2481.839599]  __alloc_pages+0x131/0x4e0
[ 2481.839612]  ? lock_downgrade+0x6d0/0x6d0
[ 2481.839632]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2481.845169]  ? xa_load+0x158/0x290
[ 2481.845557]  ? xas_find_conflict+0x9e0/0x9e0
[ 2481.846026]  alloc_pages+0x1a0/0x2f0
[ 2481.846429]  filemap_alloc_folio+0x8e/0xb0
[ 2481.846879]  page_cache_ra_unbounded+0x1af/0x540
[ 2481.847402]  ondemand_readahead+0x642/0x1270
[ 2481.847846]  page_cache_async_ra+0xf8/0x130
[ 2481.848320]  filemap_get_pages+0x686/0x1680
[ 2481.848788]  ? lock_downgrade+0x6d0/0x6d0
[ 2481.849249]  ? filemap_add_folio+0x1b0/0x1b0
[ 2481.849736]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2481.850347]  ? copy_page_to_iter+0x688/0x1190
[ 2481.850837]  ? lock_is_held_type+0xd7/0x130
[ 2481.851320]  filemap_read+0x311/0xba0
[ 2481.851747]  ? filemap_get_pages+0x1680/0x1680
[ 2481.852237]  ? filter_irq_stacks+0x90/0x90
[ 2481.852669]  ? __kasan_kmalloc+0x81/0xa0
[ 2481.853104]  ? alloc_pipe_info+0x1e0/0x580
[ 2481.853574]  ? splice_direct_to_actor+0x700/0x8e0
[ 2481.854099]  ? do_splice_direct+0x1b8/0x280
[ 2481.854578]  ? do_sendfile+0xad7/0x1230
[ 2481.854975]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2481.855481]  ? do_syscall_64+0x3b/0x90
[ 2481.855918]  generic_file_read_iter+0x3c9/0x530
[ 2481.856421]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2481.857014]  ? __fsnotify_parent+0x498/0xa60
[ 2481.857494]  ext4_file_read_iter+0x184/0x3f0
[ 2481.857978]  generic_file_splice_read+0x3b9/0x5d0
[ 2481.858507]  ? pipe_to_user+0x170/0x170
[ 2481.858916]  ? security_file_permission+0xb1/0xd0
[ 2481.859454]  ? pipe_to_user+0x170/0x170
[ 2481.859881]  do_splice_to+0x1bc/0x240
[ 2481.860296]  ? inode_has_perm+0x1d0/0x1d0
[ 2481.860737]  splice_direct_to_actor+0x2c7/0x8e0
[ 2481.861248]  ? pipe_to_sendpage+0x380/0x380
[ 2481.861732]  ? do_splice_to+0x240/0x240
[ 2481.862173]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2481.862763]  ? security_file_permission+0xb1/0xd0
[ 2481.863254]  do_splice_direct+0x1b8/0x280
[ 2481.863711]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2481.864201]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2481.864802]  ? security_file_permission+0xb1/0xd0
[ 2481.865342]  do_sendfile+0xad7/0x1230
[ 2481.865731]  ? bit_wait_io_timeout+0x160/0x160
[ 2481.866235]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2481.866793]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2481.867392]  ? vfs_write+0x422/0xac0
[ 2481.867795]  __x64_sys_sendfile64+0x1cd/0x210
[ 2481.868285]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2481.868855]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2481.869420]  do_syscall_64+0x3b/0x90
[ 2481.869838]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2481.870393] RIP: 0033:0x7fdbfaa6cb19
[ 2481.870791] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2481.872731] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2481.873557] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2481.874319] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2481.875077] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2481.875777] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2481.876534] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2481.877307]  </TASK>
[ 2481.877565] CPU: 1 PID: 17431 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2481.879564] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2481.882226] Call Trace:
[ 2481.882832]  <TASK>
[ 2481.883361]  dump_stack_lvl+0x8b/0xb3
[ 2481.884286]  should_fail.cold+0x5/0xa
[ 2481.885200]  prepare_alloc_pages+0x17b/0x500
[ 2481.886266]  __alloc_pages+0x131/0x4e0
[ 2481.887174]  ? lock_downgrade+0x6d0/0x6d0
[ 2481.888152]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2481.889605]  ? xa_load+0x158/0x290
[ 2481.890450]  ? xas_find_conflict+0x9e0/0x9e0
05:30:49 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0xae001, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)

[ 2481.891484]  alloc_pages+0x1a0/0x2f0
[ 2481.892464]  filemap_alloc_folio+0x8e/0xb0
[ 2481.893498]  page_cache_ra_unbounded+0x1af/0x540
[ 2481.894633]  ondemand_readahead+0x642/0x1270
[ 2481.895686]  page_cache_sync_ra+0x1c5/0x200
[ 2481.896707]  filemap_get_pages+0x29e/0x1680
[ 2481.897740]  ? lock_downgrade+0x6d0/0x6d0
[ 2481.898728]  ? unwind_next_frame+0xdfe/0x20a0
[ 2481.899783]  ? filemap_add_folio+0x1b0/0x1b0
[ 2481.900830]  ? lock_is_held_type+0xd7/0x130
[ 2481.901876]  filemap_read+0x311/0xba0
[ 2481.902811]  ? filemap_get_pages+0x1680/0x1680
[ 2481.903885]  ? filter_irq_stacks+0x90/0x90
[ 2481.904866]  ? __stack_depot_save+0x35/0x450
[ 2481.905920]  ? kasan_save_stack+0x2e/0x40
[ 2481.906877]  ? kasan_save_stack+0x1e/0x40
[ 2481.907844]  ? __kasan_kmalloc+0x81/0xa0
[ 2481.908792]  ? alloc_pipe_info+0x1e0/0x580
[ 2481.909784]  ? splice_direct_to_actor+0x700/0x8e0
[ 2481.910910]  ? do_splice_direct+0x1b8/0x280
[ 2481.911912]  ? do_sendfile+0xad7/0x1230
[ 2481.912841]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2481.913927]  ? do_syscall_64+0x3b/0x90
[ 2481.914855]  generic_file_read_iter+0x3c9/0x530
[ 2481.915954]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2481.917228]  ? __fsnotify_parent+0x498/0xa60
[ 2481.918256]  ext4_file_read_iter+0x184/0x3f0
[ 2481.919285]  generic_file_splice_read+0x3b9/0x5d0
[ 2481.920407]  ? pipe_to_user+0x170/0x170
[ 2481.921353]  ? security_file_permission+0xb1/0xd0
05:30:49 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x4100, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

[ 2481.922465]  ? pipe_to_user+0x170/0x170
[ 2481.923520]  do_splice_to+0x1bc/0x240
[ 2481.924409]  ? inode_has_perm+0x1d0/0x1d0
[ 2481.925333]  splice_direct_to_actor+0x2c7/0x8e0
[ 2481.926427]  ? pipe_to_sendpage+0x380/0x380
[ 2481.927408]  ? do_splice_to+0x240/0x240
[ 2481.928321]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2481.929553]  ? security_file_permission+0xb1/0xd0
[ 2481.930656]  do_splice_direct+0x1b8/0x280
[ 2481.931583]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2481.932667]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2481.933889]  ? security_file_permission+0xb1/0xd0
[ 2481.934989]  do_sendfile+0xad7/0x1230
[ 2481.935836]  ? bit_wait_io_timeout+0x160/0x160
[ 2481.936869]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2481.938058]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2481.939275]  ? vfs_write+0x422/0xac0
[ 2481.940124]  __x64_sys_sendfile64+0x1cd/0x210
[ 2481.941107]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2481.942313]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2481.943448]  do_syscall_64+0x3b/0x90
[ 2481.944298]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2481.945452] RIP: 0033:0x7f1455db8b19
[ 2481.946269] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2481.950204] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2481.951890] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2481.953417] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2481.955018] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2481.956603] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2481.958195] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2481.959806]  </TASK>
05:30:49 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r1, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
ioctl$CDROM_DEBUG(r1, 0x5330, 0x0)

05:30:49 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
pipe2(&(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x800)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r0)
sendmsg$NL80211_CMD_STOP_SCHED_SCAN(r1, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000140)={&(0x7f00000001c0)={0xa0, r2, 0x800, 0x70bd2c, 0x25dfdbfb, {{}, {@val={0x8}, @val={0xc, 0x99, {0x5, 0xb}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x23}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x6e}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x3e}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x3a}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x65}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x2e}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x4d}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x6c}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x30}, @NL80211_ATTR_COOKIE={0xfd94, 0x58, 0x3f}]}, 0xa0}, 0x1, 0x0, 0x0, 0x850}, 0x4048000)
pread64(r0, &(0x7f0000000000)=""/91, 0x5b, 0x4)
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x0)

05:30:49 executing program 3:
clone3(&(0x7f0000000640)={0x85684400, &(0x7f00000000c0), 0x0, 0x0, {0x30}, 0x0, 0x0, 0x0, 0x0}, 0x58)

05:30:49 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0xc0189436, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x2, 0x0)

05:30:49 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 42)

05:30:49 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x8000000b)

05:30:49 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x8100, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

[ 2482.286894] FAULT_INJECTION: forcing a failure.
[ 2482.286894] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2482.289482] CPU: 0 PID: 17472 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2482.291158] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2482.293456] Call Trace:
[ 2482.293990]  <TASK>
[ 2482.294450]  dump_stack_lvl+0x8b/0xb3
[ 2482.295242]  should_fail.cold+0x5/0xa
[ 2482.296038]  prepare_alloc_pages+0x17b/0x500
[ 2482.296954]  __alloc_pages+0x131/0x4e0
[ 2482.297733]  ? lock_downgrade+0x6d0/0x6d0
[ 2482.298561]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2482.299768]  ? xa_load+0x158/0x290
[ 2482.300476]  ? xas_find_conflict+0x9e0/0x9e0
[ 2482.301353]  alloc_pages+0x1a0/0x2f0
[ 2482.302113]  filemap_alloc_folio+0x8e/0xb0
[ 2482.302965]  page_cache_ra_unbounded+0x1af/0x540
[ 2482.303928]  ondemand_readahead+0x642/0x1270
[ 2482.304819]  page_cache_async_ra+0xf8/0x130
[ 2482.305701]  filemap_get_pages+0x686/0x1680
[ 2482.306589]  ? filemap_add_folio+0x1b0/0x1b0
[ 2482.307473]  ? io_schedule_timeout+0x140/0x140
[ 2482.308382]  ? copy_page_to_iter+0x688/0x1190
[ 2482.309284]  ? lock_is_held_type+0xd7/0x130
[ 2482.310155]  ? __cond_resched+0x13/0x20
[ 2482.310958]  filemap_read+0x311/0xba0
[ 2482.311748]  ? filemap_get_pages+0x1680/0x1680
[ 2482.312665]  ? filter_irq_stacks+0x90/0x90
[ 2482.313533]  ? __kasan_kmalloc+0x81/0xa0
[ 2482.314335]  ? alloc_pipe_info+0x1e0/0x580
[ 2482.315172]  ? splice_direct_to_actor+0x700/0x8e0
[ 2482.316136]  ? do_splice_direct+0x1b8/0x280
[ 2482.316995]  ? do_sendfile+0xad7/0x1230
[ 2482.317796]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2482.318717]  ? do_syscall_64+0x3b/0x90
[ 2482.319506]  generic_file_read_iter+0x3c9/0x530
[ 2482.320437]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2482.321541]  ? __fsnotify_parent+0x498/0xa60
[ 2482.322416]  ext4_file_read_iter+0x184/0x3f0
[ 2482.323302]  generic_file_splice_read+0x3b9/0x5d0
[ 2482.324271]  ? pipe_to_user+0x170/0x170
[ 2482.325086]  ? security_file_permission+0xb1/0xd0
[ 2482.326062]  ? pipe_to_user+0x170/0x170
[ 2482.326880]  do_splice_to+0x1bc/0x240
[ 2482.327647]  ? inode_has_perm+0x1d0/0x1d0
[ 2482.328506]  splice_direct_to_actor+0x2c7/0x8e0
[ 2482.329467]  ? pipe_to_sendpage+0x380/0x380
[ 2482.330367]  ? do_splice_to+0x240/0x240
[ 2482.331171]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2482.332263]  ? security_file_permission+0xb1/0xd0
[ 2482.333230]  do_splice_direct+0x1b8/0x280
[ 2482.334070]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2482.335043]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2482.336135]  ? security_file_permission+0xb1/0xd0
[ 2482.337106]  do_sendfile+0xad7/0x1230
[ 2482.337878]  ? bit_wait_io_timeout+0x160/0x160
[ 2482.338790]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2482.339816]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2482.340906]  ? vfs_write+0x422/0xac0
[ 2482.341669]  __x64_sys_sendfile64+0x1cd/0x210
[ 2482.342561]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2482.343623]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2482.344683]  do_syscall_64+0x3b/0x90
[ 2482.345456]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2482.346491] RIP: 0033:0x7fdbfaa6cb19
[ 2482.347219] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2482.350900] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2482.352393] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2482.353808] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2482.355211] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2482.356613] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2482.358022] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2482.359454]  </TASK>
[ 2482.376279] debugfs: Directory 'loop0' with parent 'block' already present!
05:31:06 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 41)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:31:06 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0xc020660b, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x2, 0x0)

05:31:06 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x8000000c)

05:31:06 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 43)

05:31:06 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0xfdef, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:31:06 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
ioctl$FS_IOC_SETVERSION(r1, 0x40087602, &(0x7f0000000040)=0x8000)
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x0)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000080)=<r3=>0x0)
capset(&(0x7f0000000340)={0x20080522, r3}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
r4 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80))
symlinkat(&(0x7f0000000000)='./file1\x00', r0, &(0x7f0000000900)='./file0\x00')
linkat(r4, &(0x7f00000000c0)='./file0\x00', r4, &(0x7f0000000100)='./file1\x00', 0x1000)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x20100, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000640)=[{&(0x7f00000001c0)=""/215, 0xd7}, {&(0x7f0000000140)=""/37, 0x25}, {&(0x7f00000004c0)=""/152, 0x98}, {&(0x7f00000002c0)=""/127, 0x7f}, {&(0x7f0000000580)=""/157, 0x9d}, {&(0x7f0000000740)=""/250, 0xfa}, {&(0x7f0000000840)=""/144, 0x90}], 0x7, 0xfff, 0x0)
r6 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r6, 0x5429, &(0x7f0000000080)=<r7=>0x0)
capset(&(0x7f0000000340)={0x20080522, r7}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
r8 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r8, 0x5429, &(0x7f0000000080)=<r9=>0x0)
capset(&(0x7f0000000340)={0x20080522, r9}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
fcntl$getown(r2, 0x9)
kcmp(r9, r7, 0x2, r0, r5)

05:31:06 executing program 3:
clone3(&(0x7f0000000640)={0x80000, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe98}, 0x58)

05:31:06 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x20800, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)
ioctl$CDROMREADAUDIO(r0, 0x530e, &(0x7f0000000080)={@lba=0xcd, 0x1, 0x1f, &(0x7f0000000040)=""/31})

[ 2498.747887] FAULT_INJECTION: forcing a failure.
[ 2498.747887] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2498.749510] CPU: 1 PID: 17491 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2498.750351] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2498.751481] Call Trace:
[ 2498.751487]  <TASK>
[ 2498.751492]  dump_stack_lvl+0x8b/0xb3
[ 2498.751519]  should_fail.cold+0x5/0xa
[ 2498.751539]  prepare_alloc_pages+0x17b/0x500
[ 2498.751566]  __alloc_pages+0x131/0x4e0
[ 2498.751579]  ? lock_downgrade+0x6d0/0x6d0
[ 2498.751598]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2498.751622]  ? xa_load+0x158/0x290
[ 2498.751637]  ? xas_find_conflict+0x9e0/0x9e0
[ 2498.751654]  alloc_pages+0x1a0/0x2f0
[ 2498.751673]  filemap_alloc_folio+0x8e/0xb0
[ 2498.751694]  page_cache_ra_unbounded+0x1af/0x540
[ 2498.751721]  ondemand_readahead+0x642/0x1270
[ 2498.751745]  page_cache_async_ra+0xf8/0x130
[ 2498.751764]  filemap_get_pages+0x686/0x1680
[ 2498.751787]  ? lock_downgrade+0x6d0/0x6d0
05:31:06 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x230241, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)

[ 2498.751808]  ? filemap_add_folio+0x1b0/0x1b0
[ 2498.751827]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2498.751847]  ? copy_page_to_iter+0x688/0x1190
[ 2498.751868]  ? lock_is_held_type+0xd7/0x130
[ 2498.751890]  filemap_read+0x311/0xba0
[ 2498.751921]  ? filemap_get_pages+0x1680/0x1680
[ 2498.751939]  ? filter_irq_stacks+0x90/0x90
[ 2498.751964]  ? __kasan_kmalloc+0x81/0xa0
[ 2498.751975]  ? alloc_pipe_info+0x1e0/0x580
[ 2498.751990]  ? splice_direct_to_actor+0x700/0x8e0
[ 2498.752011]  ? do_splice_direct+0x1b8/0x280
[ 2498.752027]  ? do_sendfile+0xad7/0x1230
[ 2498.752040]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2498.752052]  ? do_syscall_64+0x3b/0x90
[ 2498.752075]  generic_file_read_iter+0x3c9/0x530
05:31:06 executing program 3:
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)
r0 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80))
symlinkat(&(0x7f0000000000)='./file0\x00', r0, &(0x7f0000000040)='./file0\x00')
linkat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000000100)='./file1\x00', 0x1000)
openat(r0, &(0x7f0000000000)='./file0\x00', 0x408100, 0x1)

05:31:06 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0xff00, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

[ 2498.752094]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2498.752113]  ? __fsnotify_parent+0x498/0xa60
[ 2498.752129]  ext4_file_read_iter+0x184/0x3f0
[ 2498.752150]  generic_file_splice_read+0x3b9/0x5d0
[ 2498.752171]  ? pipe_to_user+0x170/0x170
05:31:06 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 44)

05:31:06 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x8000000d)

[ 2498.752200]  ? security_file_permission+0xb1/0xd0
[ 2498.752221]  ? pipe_to_user+0x170/0x170
[ 2498.752240]  do_splice_to+0x1bc/0x240
[ 2498.752256]  ? inode_has_perm+0x1d0/0x1d0
[ 2498.752273]  splice_direct_to_actor+0x2c7/0x8e0
[ 2498.752294]  ? pipe_to_sendpage+0x380/0x380
[ 2498.752317]  ? do_splice_to+0x240/0x240
[ 2498.752334]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2498.752353]  ? security_file_permission+0xb1/0xd0
[ 2498.752375]  do_splice_direct+0x1b8/0x280
[ 2498.752394]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2498.752418]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2498.752437]  ? security_file_permission+0xb1/0xd0
[ 2498.752459]  do_sendfile+0xad7/0x1230
[ 2498.752478]  ? bit_wait_io_timeout+0x160/0x160
[ 2498.752496]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2498.752515]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2498.752534]  ? vfs_write+0x422/0xac0
[ 2498.752553]  __x64_sys_sendfile64+0x1cd/0x210
[ 2498.752567]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2498.752585]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2498.752604]  do_syscall_64+0x3b/0x90
[ 2498.752623]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2498.752637] RIP: 0033:0x7fdbfaa6cb19
[ 2498.752647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2498.752660] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2498.752674] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2498.752683] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2498.752691] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2498.752699] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2498.752708] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2498.752731]  </TASK>
[ 2498.810082] FAULT_INJECTION: forcing a failure.
[ 2498.810082] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2498.810137] CPU: 0 PID: 17490 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2498.810167] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2498.810183] Call Trace:
[ 2498.810192]  <TASK>
[ 2498.810202]  dump_stack_lvl+0x8b/0xb3
[ 2498.810244]  should_fail.cold+0x5/0xa
[ 2498.810282]  prepare_alloc_pages+0x17b/0x500
[ 2498.810329]  __alloc_pages+0x131/0x4e0
[ 2498.810351]  ? lock_downgrade+0x6d0/0x6d0
[ 2498.810383]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2498.810428]  ? xa_load+0x158/0x290
[ 2498.810454]  ? xas_find_conflict+0x9e0/0x9e0
[ 2498.810486]  alloc_pages+0x1a0/0x2f0
[ 2498.810519]  filemap_alloc_folio+0x8e/0xb0
[ 2498.810556]  page_cache_ra_unbounded+0x1af/0x540
[ 2498.810605]  ondemand_readahead+0x642/0x1270
[ 2498.810651]  page_cache_async_ra+0xf8/0x130
[ 2498.810686]  filemap_get_pages+0x686/0x1680
[ 2498.810741]  ? filemap_add_folio+0x1b0/0x1b0
[ 2498.810774]  ? io_schedule_timeout+0x140/0x140
[ 2498.810804]  ? copy_page_to_iter+0x688/0x1190
[ 2498.810841]  ? lock_is_held_type+0xd7/0x130
[ 2498.810868]  ? __cond_resched+0x13/0x20
[ 2498.810906]  filemap_read+0x311/0xba0
[ 2498.810963]  ? filemap_get_pages+0x1680/0x1680
[ 2498.810996]  ? filter_irq_stacks+0x90/0x90
[ 2498.811041]  ? __kasan_kmalloc+0x81/0xa0
[ 2498.811062]  ? alloc_pipe_info+0x1e0/0x580
[ 2498.811087]  ? splice_direct_to_actor+0x700/0x8e0
[ 2498.811121]  ? do_splice_direct+0x1b8/0x280
[ 2498.811152]  ? do_sendfile+0xad7/0x1230
[ 2498.811174]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2498.811198]  ? do_syscall_64+0x3b/0x90
[ 2498.811238]  generic_file_read_iter+0x3c9/0x530
[ 2498.811276]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2498.811312]  ? __fsnotify_parent+0x498/0xa60
[ 2498.811341]  ext4_file_read_iter+0x184/0x3f0
[ 2498.811377]  generic_file_splice_read+0x3b9/0x5d0
[ 2498.811415]  ? pipe_to_user+0x170/0x170
[ 2498.811469]  ? security_file_permission+0xb1/0xd0
[ 2498.811504]  ? pipe_to_user+0x170/0x170
[ 2498.811540]  do_splice_to+0x1bc/0x240
[ 2498.811570]  ? inode_has_perm+0x1d0/0x1d0
[ 2498.811599]  splice_direct_to_actor+0x2c7/0x8e0
[ 2498.811638]  ? pipe_to_sendpage+0x380/0x380
[ 2498.811680]  ? do_splice_to+0x240/0x240
[ 2498.811712]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2498.811747]  ? security_file_permission+0xb1/0xd0
[ 2498.811788]  do_splice_direct+0x1b8/0x280
[ 2498.811823]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2498.811867]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2498.811902]  ? security_file_permission+0xb1/0xd0
[ 2498.811943]  do_sendfile+0xad7/0x1230
[ 2498.811978]  ? bit_wait_io_timeout+0x160/0x160
[ 2498.812010]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2498.812046]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2498.812081]  ? vfs_write+0x422/0xac0
[ 2498.812114]  __x64_sys_sendfile64+0x1cd/0x210
[ 2498.812142]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2498.812173]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2498.812210]  do_syscall_64+0x3b/0x90
[ 2498.812244]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2498.812269] RIP: 0033:0x7f1455db8b19
[ 2498.812288] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2498.812311] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2498.812336] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2498.812352] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2498.812367] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2498.812382] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2498.812397] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2498.812438]  </TASK>
[ 2498.945006] FAULT_INJECTION: forcing a failure.
[ 2498.945006] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2498.945032] CPU: 1 PID: 17519 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2498.945047] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2498.945057] Call Trace:
[ 2498.945062]  <TASK>
[ 2498.945069]  dump_stack_lvl+0x8b/0xb3
[ 2498.945097]  should_fail.cold+0x5/0xa
[ 2498.945118]  prepare_alloc_pages+0x17b/0x500
[ 2498.945151]  __alloc_pages+0x131/0x4e0
[ 2498.945164]  ? lock_downgrade+0x6d0/0x6d0
[ 2498.945184]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2498.945209]  ? xa_load+0x158/0x290
[ 2498.945224]  ? xas_find_conflict+0x9e0/0x9e0
[ 2498.945242]  alloc_pages+0x1a0/0x2f0
[ 2498.945262]  filemap_alloc_folio+0x8e/0xb0
[ 2498.945283]  page_cache_ra_unbounded+0x1af/0x540
[ 2498.945311]  ondemand_readahead+0x642/0x1270
[ 2498.945337]  page_cache_async_ra+0xf8/0x130
[ 2498.945360]  filemap_get_pages+0x686/0x1680
[ 2498.945384]  ? lock_downgrade+0x6d0/0x6d0
[ 2498.945406]  ? filemap_add_folio+0x1b0/0x1b0
[ 2498.945425]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2498.945446]  ? copy_page_to_iter+0x688/0x1190
[ 2498.945467]  ? lock_is_held_type+0xd7/0x130
[ 2498.945490]  filemap_read+0x311/0xba0
[ 2498.945522]  ? filemap_get_pages+0x1680/0x1680
[ 2498.945541]  ? filter_irq_stacks+0x90/0x90
[ 2498.945566]  ? __kasan_kmalloc+0x81/0xa0
[ 2498.945579]  ? alloc_pipe_info+0x1e0/0x580
[ 2498.945593]  ? splice_direct_to_actor+0x700/0x8e0
[ 2498.945613]  ? do_splice_direct+0x1b8/0x280
[ 2498.945630]  ? do_sendfile+0xad7/0x1230
[ 2498.945643]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2498.945656]  ? do_syscall_64+0x3b/0x90
[ 2498.945679]  generic_file_read_iter+0x3c9/0x530
[ 2498.945700]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2498.945720]  ? __fsnotify_parent+0x498/0xa60
[ 2498.945753]  ext4_file_read_iter+0x184/0x3f0
[ 2498.945774]  generic_file_splice_read+0x3b9/0x5d0
[ 2498.945796]  ? pipe_to_user+0x170/0x170
[ 2498.945826]  ? security_file_permission+0xb1/0xd0
[ 2498.945846]  ? pipe_to_user+0x170/0x170
[ 2498.945867]  do_splice_to+0x1bc/0x240
[ 2499.013299]  ? inode_has_perm+0x1d0/0x1d0
[ 2499.013720]  splice_direct_to_actor+0x2c7/0x8e0
[ 2499.014213]  ? pipe_to_sendpage+0x380/0x380
[ 2499.014669]  ? do_splice_to+0x240/0x240
[ 2499.015075]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2499.015636]  ? security_file_permission+0xb1/0xd0
[ 2499.016132]  do_splice_direct+0x1b8/0x280
[ 2499.016563]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2499.017065]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2499.017626]  ? security_file_permission+0xb1/0xd0
[ 2499.018126]  do_sendfile+0xad7/0x1230
[ 2499.018521]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2499.019036]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[ 2499.019541]  ? xfd_validate_state+0x59/0x180
[ 2499.019993]  ? restore_fpregs_from_fpstate+0xcc/0x1e0
[ 2499.020518]  __x64_sys_sendfile64+0x1cd/0x210
[ 2499.020967]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2499.021500]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2499.022028]  do_syscall_64+0x3b/0x90
[ 2499.022404]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2499.022921] RIP: 0033:0x7fdbfaa6cb19
[ 2499.023293] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2499.025134] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2499.025899] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2499.026620] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2499.027338] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2499.028053] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2499.028768] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2499.029497]  </TASK>
05:31:18 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(0xffffffffffffffff, 0x40089413, &(0x7f0000000000)=0x3)
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {0x2d}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0x58)

05:31:18 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 42)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:31:18 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)
r1 = getpgrp(0x0)
r2 = syz_open_procfs(r1, &(0x7f0000000040)='status\x00')
preadv2(r2, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
ioctl$CDROM_GET_CAPABILITY(r2, 0x5331)

05:31:18 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x0)
openat$cgroup_freezer_state(r0, &(0x7f0000000000), 0x2, 0x0)

05:31:18 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 45)

05:31:18 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x8000000e)

05:31:18 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x7ffff000, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:31:18 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x2, 0x80, 0xaa, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x8}, 0x0, 0x5, 0x4, 0x0, 0x0, 0x8d}, 0x0, 0x1, 0xffffffffffffffff, 0xf)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r2)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x10)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x2, 0x0)

[ 2510.949917] FAULT_INJECTION: forcing a failure.
[ 2510.949917] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2510.951325] CPU: 1 PID: 17637 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2510.952275] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2510.953553] Call Trace:
[ 2510.953841]  <TASK>
[ 2510.954116]  dump_stack_lvl+0x8b/0xb3
[ 2510.954558]  should_fail.cold+0x5/0xa
[ 2510.955006]  prepare_alloc_pages+0x17b/0x500
[ 2510.955518]  __alloc_pages+0x131/0x4e0
[ 2510.955968]  ? lock_downgrade+0x6d0/0x6d0
[ 2510.956445]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2510.957138]  ? xa_load+0x158/0x290
[ 2510.957536]  ? xas_find_conflict+0x9e0/0x9e0
[ 2510.958069]  alloc_pages+0x1a0/0x2f0
[ 2510.958490]  filemap_alloc_folio+0x8e/0xb0
[ 2510.958983]  page_cache_ra_unbounded+0x1af/0x540
[ 2510.959724]  ondemand_readahead+0x642/0x1270
[ 2510.960249]  page_cache_async_ra+0xf8/0x130
[ 2510.960726]  filemap_get_pages+0x686/0x1680
[ 2510.961219]  ? lock_downgrade+0x6d0/0x6d0
[ 2510.961685]  ? filemap_add_folio+0x1b0/0x1b0
[ 2510.962240]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2510.962910]  ? copy_page_to_iter+0x688/0x1190
[ 2510.963462]  ? lock_is_held_type+0xd7/0x130
[ 2510.963974]  filemap_read+0x311/0xba0
[ 2510.964456]  ? filemap_get_pages+0x1680/0x1680
[ 2510.965154]  ? filter_irq_stacks+0x90/0x90
[ 2510.965748]  ? __kasan_kmalloc+0x81/0xa0
[ 2510.966343]  ? alloc_pipe_info+0x1e0/0x580
[ 2510.966917]  ? splice_direct_to_actor+0x700/0x8e0
[ 2510.967520]  ? do_splice_direct+0x1b8/0x280
[ 2510.968019]  ? do_sendfile+0xad7/0x1230
[ 2510.968482]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2510.969020]  ? do_syscall_64+0x3b/0x90
[ 2510.969490]  generic_file_read_iter+0x3c9/0x530
[ 2510.970045]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2510.970696]  ? __fsnotify_parent+0x498/0xa60
[ 2510.971213]  ext4_file_read_iter+0x184/0x3f0
[ 2510.971736]  generic_file_splice_read+0x3b9/0x5d0
[ 2510.972313]  ? pipe_to_user+0x170/0x170
[ 2510.972797]  ? security_file_permission+0xb1/0xd0
[ 2510.973365]  ? pipe_to_user+0x170/0x170
[ 2510.973838]  do_splice_to+0x1bc/0x240
[ 2510.974301]  ? inode_has_perm+0x1d0/0x1d0
[ 2510.974776]  splice_direct_to_actor+0x2c7/0x8e0
[ 2510.975339]  ? pipe_to_sendpage+0x380/0x380
[ 2510.975847]  ? do_splice_to+0x240/0x240
[ 2510.976323]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2510.976967]  ? security_file_permission+0xb1/0xd0
[ 2510.977545]  do_splice_direct+0x1b8/0x280
[ 2510.978057]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2510.978638]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2510.979306]  ? security_file_permission+0xb1/0xd0
[ 2510.979988]  do_sendfile+0xad7/0x1230
[ 2510.980526]  ? bit_wait_io_timeout+0x160/0x160
[ 2510.981154]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2510.981915]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2510.982601]  ? vfs_write+0x422/0xac0
[ 2510.983037]  __x64_sys_sendfile64+0x1cd/0x210
[ 2510.983565]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2510.984161]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2510.984757]  do_syscall_64+0x3b/0x90
[ 2510.985183]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2510.985783] RIP: 0033:0x7f1455db8b19
[ 2510.986213] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2510.988332] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2510.989160] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2510.989992] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2510.990837] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2510.991659] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2510.992483] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2510.993334]  </TASK>
[ 2510.996111] debugfs: Directory 'loop0' with parent 'block' already present!
[ 2511.041650] FAULT_INJECTION: forcing a failure.
[ 2511.041650] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2511.044306] CPU: 0 PID: 17639 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2511.046000] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2511.048285] Call Trace:
[ 2511.048809]  <TASK>
[ 2511.049257]  dump_stack_lvl+0x8b/0xb3
[ 2511.050062]  should_fail.cold+0x5/0xa
[ 2511.050849]  prepare_alloc_pages+0x17b/0x500
[ 2511.051773]  __alloc_pages+0x131/0x4e0
[ 2511.052575]  ? lock_downgrade+0x6d0/0x6d0
[ 2511.053414]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2511.054669]  ? xa_load+0x158/0x290
[ 2511.055380]  ? xas_find_conflict+0x9e0/0x9e0
[ 2511.056267]  alloc_pages+0x1a0/0x2f0
[ 2511.057044]  filemap_alloc_folio+0x8e/0xb0
[ 2511.057936]  page_cache_ra_unbounded+0x1af/0x540
[ 2511.058926]  ondemand_readahead+0x642/0x1270
[ 2511.059836]  page_cache_async_ra+0xf8/0x130
[ 2511.060732]  filemap_get_pages+0x686/0x1680
[ 2511.061617]  ? lock_downgrade+0x6d0/0x6d0
[ 2511.062480]  ? filemap_add_folio+0x1b0/0x1b0
[ 2511.063372]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2511.064492]  ? copy_page_to_iter+0x688/0x1190
[ 2511.065407]  ? lock_is_held_type+0xd7/0x130
[ 2511.066317]  filemap_read+0x311/0xba0
[ 2511.067127]  ? filemap_get_pages+0x1680/0x1680
[ 2511.068056]  ? filter_irq_stacks+0x90/0x90
[ 2511.068930]  ? __kasan_kmalloc+0x81/0xa0
[ 2511.069758]  ? alloc_pipe_info+0x1e0/0x580
[ 2511.070630]  ? splice_direct_to_actor+0x700/0x8e0
[ 2511.071644]  ? do_splice_direct+0x1b8/0x280
[ 2511.072564]  ? do_sendfile+0xad7/0x1230
[ 2511.073356]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2511.074301]  ? do_syscall_64+0x3b/0x90
[ 2511.075120]  generic_file_read_iter+0x3c9/0x530
[ 2511.076066]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2511.077178]  ? __fsnotify_parent+0x498/0xa60
[ 2511.078077]  ext4_file_read_iter+0x184/0x3f0
[ 2511.078991]  generic_file_splice_read+0x3b9/0x5d0
[ 2511.079981]  ? pipe_to_user+0x170/0x170
[ 2511.080814]  ? security_file_permission+0xb1/0xd0
[ 2511.081793]  ? pipe_to_user+0x170/0x170
[ 2511.082642]  do_splice_to+0x1bc/0x240
[ 2511.083409]  ? inode_has_perm+0x1d0/0x1d0
[ 2511.084252]  splice_direct_to_actor+0x2c7/0x8e0
[ 2511.085211]  ? pipe_to_sendpage+0x380/0x380
[ 2511.086111]  ? do_splice_to+0x240/0x240
[ 2511.086923]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2511.088042]  ? security_file_permission+0xb1/0xd0
[ 2511.089028]  do_splice_direct+0x1b8/0x280
[ 2511.089880]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2511.090882]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2511.091999]  ? security_file_permission+0xb1/0xd0
[ 2511.092993]  do_sendfile+0xad7/0x1230
[ 2511.093777]  ? bit_wait_io_timeout+0x160/0x160
[ 2511.094722]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2511.095768]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2511.096873]  ? vfs_write+0x422/0xac0
[ 2511.097641]  __x64_sys_sendfile64+0x1cd/0x210
[ 2511.098569]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2511.099641]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2511.100696]  do_syscall_64+0x3b/0x90
[ 2511.101449]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2511.102516] RIP: 0033:0x7fdbfaa6cb19
[ 2511.103254] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2511.106947] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2511.108452] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2511.109932] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2511.111559] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2511.113323] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2511.115100] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2511.116668]  </TASK>
05:31:34 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 46)

05:31:34 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
r1 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)={[{@nr_inodes={'nr_inodes', 0x3d, [0x6d, 0x7, 0x35, 0x32, 0x30]}}, {@nr_blocks={'nr_blocks', 0x3d, [0x30, 0x25, 0x39, 0x6d, 0x2d, 0x65]}}, {@huge_within_size}, {@size={'size', 0x3d, [0x0, 0x70, 0x39, 0x33]}}]})
symlinkat(&(0x7f0000000000)='./file0\x00', r1, &(0x7f0000000040)='./file0\x00')
linkat(r1, &(0x7f00000000c0)='./file0\x00', r1, &(0x7f0000000100)='./file1\x00', 0x1000)
pread64(r1, &(0x7f00000001c0)=""/247, 0xf7, 0xe)
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, &(0x7f0000000140)={{0x1, 0x1, 0x18, r1, {<r2=>r1}}, './file1\x00'})
ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f00000002c0)={{0x1, 0x1, 0x18, r2}, './file0\x00'})
r3 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80))
symlinkat(&(0x7f0000000000)='./file0\x00', r3, &(0x7f0000000040)='./file0\x00')
linkat(r3, &(0x7f00000000c0)='./file0\x00', r3, &(0x7f0000000100)='./file1\x00', 0x1000)
finit_module(r3, &(0x7f0000000300)='-&\x00', 0x2)
r4 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r4, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)

05:31:34 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x52008000, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000300), 0x2000, 0x0)
r2 = syz_io_uring_setup(0x4eff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, r5, 0x0}, 0x0)
r6 = io_uring_setup(0x2d62, &(0x7f0000001100))
r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x4000008, 0x1010, r5, 0x8000000)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(r7, r4, &(0x7f0000000400)=@IORING_OP_TEE={0x21, 0x5, 0x0, @fd_index=0x2, 0x0, 0x0, 0x20, 0x9, 0x0, {0x0, r8}}, 0x101)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r6, 0xa, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r6, 0xa, 0x0, r9)
syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_POLL_ADD={0x6, 0x4, 0x0, @fd_index=0x6, 0x0, 0x0, 0x0, {0x400}, 0x0, {0x0, r9}}, 0xffff0000)
clone3(&(0x7f0000000340)={0x100000000, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x13}, &(0x7f0000000100)=""/132, 0x84, &(0x7f00000001c0)=""/234, &(0x7f00000002c0)=[r0, r0, r0, r0], 0x4, {r1}}, 0x58)

05:31:34 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0xffff8000, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:31:34 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 43)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:31:34 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x8000000f)

05:31:34 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x440c00, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)
r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x200100, 0x0)
ioctl$CDROM_DEBUG(r1, 0x5330, 0x1)

05:31:34 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000080), 0x5}, 0x0, 0x5, 0x4, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0xd, 0x50, r0, 0x4)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1000000000000055, 0x0, 0x8001)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x3, 0x0)
openat(0xffffffffffffffff, &(0x7f00000000c0)='./file1\x00', 0x402000, 0x0)

[ 2526.963939] FAULT_INJECTION: forcing a failure.
[ 2526.963939] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2526.966668] CPU: 0 PID: 17756 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2526.968444] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2526.970867] Call Trace:
[ 2526.971410]  <TASK>
[ 2526.971882]  dump_stack_lvl+0x8b/0xb3
[ 2526.972710]  should_fail.cold+0x5/0xa
[ 2526.973537]  prepare_alloc_pages+0x17b/0x500
[ 2526.974502]  __alloc_pages+0x131/0x4e0
[ 2526.975329]  ? lock_downgrade+0x6d0/0x6d0
[ 2526.976216]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2526.977524]  ? xa_load+0x158/0x290
[ 2526.978305]  ? xas_find_conflict+0x9e0/0x9e0
[ 2526.979260]  alloc_pages+0x1a0/0x2f0
[ 2526.980072]  filemap_alloc_folio+0x8e/0xb0
[ 2526.980996]  page_cache_ra_unbounded+0x1af/0x540
[ 2526.982044]  ondemand_readahead+0x642/0x1270
[ 2526.982941]  page_cache_async_ra+0xf8/0x130
[ 2526.983884]  filemap_get_pages+0x686/0x1680
[ 2526.984460] tmpfs: Bad value for 'nr_inodes'
[ 2526.984835]  ? lock_downgrade+0x6d0/0x6d0
[ 2526.986687]  ? filemap_add_folio+0x1b0/0x1b0
[ 2526.987647]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2526.988842]  ? copy_page_to_iter+0x688/0x1190
[ 2526.989758]  ? lock_is_held_type+0xd7/0x130
[ 2526.990695]  filemap_read+0x311/0xba0
[ 2526.991552]  ? filemap_get_pages+0x1680/0x1680
[ 2526.992552]  ? filter_irq_stacks+0x90/0x90
[ 2526.993479]  ? __kasan_kmalloc+0x81/0xa0
[ 2526.994354]  ? alloc_pipe_info+0x1e0/0x580
[ 2526.995256]  ? splice_direct_to_actor+0x700/0x8e0
[ 2526.996301]  ? do_splice_direct+0x1b8/0x280
[ 2526.997237]  ? do_sendfile+0xad7/0x1230
[ 2526.998093]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2526.999112]  ? do_syscall_64+0x3b/0x90
[ 2526.999964]  generic_file_read_iter+0x3c9/0x530
[ 2527.000977]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2527.002175]  ? __fsnotify_parent+0x498/0xa60
[ 2527.003126]  ext4_file_read_iter+0x184/0x3f0
[ 2527.004082]  generic_file_splice_read+0x3b9/0x5d0
[ 2527.005138]  ? pipe_to_user+0x170/0x170
[ 2527.006032]  ? security_file_permission+0xb1/0xd0
[ 2527.007088]  ? pipe_to_user+0x170/0x170
[ 2527.007963]  do_splice_to+0x1bc/0x240
[ 2527.008795]  ? inode_has_perm+0x1d0/0x1d0
[ 2527.009686]  splice_direct_to_actor+0x2c7/0x8e0
[ 2527.010670]  ? pipe_to_sendpage+0x380/0x380
[ 2527.011586]  ? do_splice_to+0x240/0x240
[ 2527.012454]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2527.013639]  ? security_file_permission+0xb1/0xd0
[ 2527.014712]  do_splice_direct+0x1b8/0x280
[ 2527.015623]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2527.016684]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2527.017887]  ? security_file_permission+0xb1/0xd0
[ 2527.018677] tmpfs: Bad value for 'nr_inodes'
[ 2527.018953]  do_sendfile+0xad7/0x1230
[ 2527.018994]  ? bit_wait_io_timeout+0x160/0x160
[ 2527.021688]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2527.022835]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2527.024042]  ? vfs_write+0x422/0xac0
[ 2527.024861]  __x64_sys_sendfile64+0x1cd/0x210
[ 2527.025837]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2527.027016]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2527.028149]  do_syscall_64+0x3b/0x90
[ 2527.028886]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2527.029985] RIP: 0033:0x7fdbfaa6cb19
[ 2527.030799] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2527.034776] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2527.036563] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2527.038108] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2527.039664] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2527.041203] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2527.042664] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2527.044234]  </TASK>
[ 2527.098962] FAULT_INJECTION: forcing a failure.
[ 2527.098962] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2527.101492] CPU: 0 PID: 17762 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2527.103150] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
05:31:34 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
recvfrom(r0, &(0x7f0000000040)=""/39, 0x27, 0x10000, &(0x7f0000000080)=@ieee802154={0x24, @short={0x2, 0x3, 0xaaa2}}, 0x80)
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$DVD_AUTH(r1, 0x80041284, 0x0)

[ 2527.105417] Call Trace:
[ 2527.106088]  <TASK>
[ 2527.106546]  dump_stack_lvl+0x8b/0xb3
[ 2527.107328]  should_fail.cold+0x5/0xa
[ 2527.108101]  prepare_alloc_pages+0x17b/0x500
[ 2527.109014]  __alloc_pages+0x131/0x4e0
[ 2527.109775]  ? lock_downgrade+0x6d0/0x6d0
[ 2527.110635]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2527.111881]  ? xa_load+0x158/0x290
[ 2527.112599]  ? xas_find_conflict+0x9e0/0x9e0
[ 2527.113484]  alloc_pages+0x1a0/0x2f0
[ 2527.114277]  filemap_alloc_folio+0x8e/0xb0
[ 2527.115131]  page_cache_ra_unbounded+0x1af/0x540
[ 2527.116125]  ondemand_readahead+0x642/0x1270
[ 2527.117024]  page_cache_async_ra+0xf8/0x130
[ 2527.117908]  filemap_get_pages+0x686/0x1680
[ 2527.118801]  ? lock_downgrade+0x6d0/0x6d0
[ 2527.119665]  ? filemap_add_folio+0x1b0/0x1b0
[ 2527.120552]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2527.121696]  ? copy_page_to_iter+0x688/0x1190
[ 2527.122621]  ? lock_is_held_type+0xd7/0x130
[ 2527.123646]  filemap_read+0x311/0xba0
[ 2527.124448]  ? filemap_get_pages+0x1680/0x1680
[ 2527.125397]  ? filter_irq_stacks+0x90/0x90
[ 2527.126286]  ? __kasan_kmalloc+0x81/0xa0
[ 2527.127097]  ? alloc_pipe_info+0x1e0/0x580
[ 2527.127949]  ? splice_direct_to_actor+0x700/0x8e0
[ 2527.128953]  ? do_splice_direct+0x1b8/0x280
[ 2527.129824]  ? do_sendfile+0xad7/0x1230
[ 2527.130653]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2527.131596]  ? do_syscall_64+0x3b/0x90
[ 2527.132422]  generic_file_read_iter+0x3c9/0x530
[ 2527.133380]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2527.134549]  ? __fsnotify_parent+0x498/0xa60
[ 2527.135446]  ext4_file_read_iter+0x184/0x3f0
[ 2527.136373]  generic_file_splice_read+0x3b9/0x5d0
[ 2527.137377]  ? pipe_to_user+0x170/0x170
[ 2527.138235]  ? security_file_permission+0xb1/0xd0
[ 2527.139222]  ? pipe_to_user+0x170/0x170
[ 2527.140065]  do_splice_to+0x1bc/0x240
[ 2527.140872]  ? inode_has_perm+0x1d0/0x1d0
[ 2527.141750]  splice_direct_to_actor+0x2c7/0x8e0
[ 2527.142755]  ? pipe_to_sendpage+0x380/0x380
[ 2527.143668]  ? do_splice_to+0x240/0x240
[ 2527.144497]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2527.145639]  ? security_file_permission+0xb1/0xd0
[ 2527.146661]  do_splice_direct+0x1b8/0x280
[ 2527.147534]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2527.148564]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2527.149725]  ? security_file_permission+0xb1/0xd0
[ 2527.150757]  do_sendfile+0xad7/0x1230
[ 2527.151566]  ? bit_wait_io_timeout+0x160/0x160
[ 2527.152533]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2527.153621]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2527.154795]  ? vfs_write+0x422/0xac0
[ 2527.155580]  __x64_sys_sendfile64+0x1cd/0x210
[ 2527.156516]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2527.157596]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2527.158702]  do_syscall_64+0x3b/0x90
[ 2527.159495]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2527.160582] RIP: 0033:0x7f1455db8b19
05:31:34 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000000080)=<r2=>0x0)
capset(&(0x7f0000000340)={0x20080522, r2}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
r3 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000080)=<r4=>0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f00000004c0)=0x6)
capset(&(0x7f0000000340)={0x20080522, r4}, &(0x7f0000000380)={0x0, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
r5 = getpgrp(r4)
clone3(&(0x7f0000000340)={0x880000, &(0x7f0000000140), &(0x7f00000001c0), &(0x7f0000000200), {0x39}, &(0x7f0000000240)=""/77, 0x4d, &(0x7f00000002c0)=""/43, &(0x7f0000000300)=[0xffffffffffffffff, r5], 0x2, {r0}}, 0x58)
preadv2(r0, &(0x7f0000000100)=[{&(0x7f00000003c0)=""/249, 0xf9}, {&(0x7f0000000000)=""/234, 0xea}], 0x0, 0x0, 0x0, 0x18)

[ 2527.161358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2527.165349] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2527.166985] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2527.168502] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2527.169971] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2527.171412] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2527.172903] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2527.174363]  </TASK>
05:31:34 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 47)

05:31:34 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0xfffffdef, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:31:34 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000010)

05:31:34 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 44)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:31:34 executing program 5:
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x2a000, 0x0)
openat(r0, &(0x7f0000000080)='./file0\x00', 0x8000, 0x0)
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$DVD_AUTH(r1, 0x80041284, 0x0)

[ 2527.374282] FAULT_INJECTION: forcing a failure.
[ 2527.374282] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2527.376324] CPU: 0 PID: 17891 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2527.377490] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2527.379070] Call Trace:
[ 2527.379425]  <TASK>
[ 2527.379742]  dump_stack_lvl+0x8b/0xb3
[ 2527.380287]  should_fail.cold+0x5/0xa
[ 2527.380823]  prepare_alloc_pages+0x17b/0x500
[ 2527.381442]  __alloc_pages+0x131/0x4e0
[ 2527.382218]  ? lock_downgrade+0x6d0/0x6d0
[ 2527.382822]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2527.383833]  ? xa_load+0x158/0x290
[ 2527.384427]  ? xas_find_conflict+0x9e0/0x9e0
[ 2527.385058]  alloc_pages+0x1a0/0x2f0
[ 2527.385592]  filemap_alloc_folio+0x8e/0xb0
[ 2527.386183]  page_cache_ra_unbounded+0x1af/0x540
[ 2527.386863]  ondemand_readahead+0x642/0x1270
[ 2527.387468]  page_cache_async_ra+0xf8/0x130
[ 2527.388072]  filemap_get_pages+0x686/0x1680
[ 2527.388673]  ? lock_downgrade+0x6d0/0x6d0
[ 2527.389250]  ? filemap_add_folio+0x1b0/0x1b0
[ 2527.389856]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2527.390625]  ? copy_page_to_iter+0x688/0x1190
[ 2527.391252]  ? lock_is_held_type+0xd7/0x130
[ 2527.391850]  filemap_read+0x311/0xba0
[ 2527.392398]  ? filemap_get_pages+0x1680/0x1680
[ 2527.393012]  ? filter_irq_stacks+0x90/0x90
[ 2527.393610]  ? __kasan_kmalloc+0x81/0xa0
[ 2527.394163]  ? alloc_pipe_info+0x1e0/0x580
[ 2527.394743]  ? splice_direct_to_actor+0x700/0x8e0
[ 2527.395426]  ? do_splice_direct+0x1b8/0x280
[ 2527.396027]  ? do_sendfile+0xad7/0x1230
[ 2527.396583]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2527.397226]  ? do_syscall_64+0x3b/0x90
[ 2527.397787]  generic_file_read_iter+0x3c9/0x530
[ 2527.398452]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2527.399228]  ? __fsnotify_parent+0x498/0xa60
[ 2527.399836]  ext4_file_read_iter+0x184/0x3f0
[ 2527.400475]  generic_file_splice_read+0x3b9/0x5d0
[ 2527.401154]  ? pipe_to_user+0x170/0x170
[ 2527.401735]  ? security_file_permission+0xb1/0xd0
[ 2527.402418]  ? pipe_to_user+0x170/0x170
[ 2527.402985]  do_splice_to+0x1bc/0x240
[ 2527.403515]  ? inode_has_perm+0x1d0/0x1d0
[ 2527.404102]  splice_direct_to_actor+0x2c7/0x8e0
[ 2527.404751]  ? pipe_to_sendpage+0x380/0x380
[ 2527.405354]  ? do_splice_to+0x240/0x240
[ 2527.405915]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2527.406701]  ? security_file_permission+0xb1/0xd0
[ 2527.407370]  do_splice_direct+0x1b8/0x280
[ 2527.407951]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2527.408622]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2527.409396]  ? security_file_permission+0xb1/0xd0
[ 2527.410072]  do_sendfile+0xad7/0x1230
[ 2527.410621]  ? bit_wait_io_timeout+0x160/0x160
[ 2527.411273]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2527.411989]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2527.412743]  ? vfs_write+0x422/0xac0
[ 2527.413264]  __x64_sys_sendfile64+0x1cd/0x210
[ 2527.413887]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2527.414633]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2527.415350]  do_syscall_64+0x3b/0x90
[ 2527.415852]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2527.416563] RIP: 0033:0x7fdbfaa6cb19
[ 2527.417055] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2527.419491] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2527.420566] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2527.421570] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2527.422554] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2527.423519] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2527.424479] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2527.425463]  </TASK>
05:31:35 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
clone3(&(0x7f0000000640)={0x200008000, &(0x7f00000000c0), 0x0, 0x0, {0x35}, 0x0, 0x0, 0x0, 0x0, 0x0, {r1}}, 0xfffffffffffffe18)

[ 2527.482892] FAULT_INJECTION: forcing a failure.
[ 2527.482892] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2527.484696] CPU: 0 PID: 17903 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2527.485834] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2527.487397] Call Trace:
[ 2527.487745]  <TASK>
[ 2527.488045]  dump_stack_lvl+0x8b/0xb3
[ 2527.488570]  should_fail.cold+0x5/0xa
[ 2527.489105]  prepare_alloc_pages+0x17b/0x500
[ 2527.489727]  __alloc_pages+0x131/0x4e0
[ 2527.490272]  ? lock_downgrade+0x6d0/0x6d0
[ 2527.490849]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2527.491700]  ? xa_load+0x158/0x290
[ 2527.492193]  ? xas_find_conflict+0x9e0/0x9e0
[ 2527.492799]  alloc_pages+0x1a0/0x2f0
[ 2527.493320]  filemap_alloc_folio+0x8e/0xb0
[ 2527.493929]  page_cache_ra_unbounded+0x1af/0x540
[ 2527.494610]  ondemand_readahead+0x642/0x1270
[ 2527.495228]  page_cache_async_ra+0xf8/0x130
[ 2527.495817]  filemap_get_pages+0x686/0x1680
[ 2527.496400]  ? lock_downgrade+0x6d0/0x6d0
[ 2527.496985]  ? filemap_add_folio+0x1b0/0x1b0
[ 2527.497587]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2527.498354]  ? copy_page_to_iter+0x688/0x1190
[ 2527.498973]  ? lock_is_held_type+0xd7/0x130
[ 2527.499573]  filemap_read+0x311/0xba0
[ 2527.500121]  ? filemap_get_pages+0x1680/0x1680
[ 2527.500758]  ? filter_irq_stacks+0x90/0x90
[ 2527.501350]  ? __kasan_kmalloc+0x81/0xa0
[ 2527.501912]  ? alloc_pipe_info+0x1e0/0x580
[ 2527.502512]  ? splice_direct_to_actor+0x700/0x8e0
[ 2527.503185]  ? do_splice_direct+0x1b8/0x280
[ 2527.503773]  ? do_sendfile+0xad7/0x1230
[ 2527.504317]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2527.504954]  ? do_syscall_64+0x3b/0x90
[ 2527.505506]  generic_file_read_iter+0x3c9/0x530
[ 2527.506153]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2527.506904]  ? __fsnotify_parent+0x498/0xa60
[ 2527.507504]  ext4_file_read_iter+0x184/0x3f0
[ 2527.508112]  generic_file_splice_read+0x3b9/0x5d0
[ 2527.508782]  ? pipe_to_user+0x170/0x170
[ 2527.509343]  ? security_file_permission+0xb1/0xd0
[ 2527.509979]  ? pipe_to_user+0x170/0x170
[ 2527.510546]  do_splice_to+0x1bc/0x240
[ 2527.511073]  ? inode_has_perm+0x1d0/0x1d0
[ 2527.511639]  splice_direct_to_actor+0x2c7/0x8e0
[ 2527.512254]  ? pipe_to_sendpage+0x380/0x380
[ 2527.512869]  ? do_splice_to+0x240/0x240
[ 2527.513424]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2527.514194]  ? security_file_permission+0xb1/0xd0
[ 2527.514858]  do_splice_direct+0x1b8/0x280
[ 2527.515443]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2527.516127]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2527.516894]  ? security_file_permission+0xb1/0xd0
[ 2527.517565]  do_sendfile+0xad7/0x1230
[ 2527.518102]  ? bit_wait_io_timeout+0x160/0x160
[ 2527.518736]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2527.519465]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2527.520220]  ? vfs_write+0x422/0xac0
[ 2527.520749]  __x64_sys_sendfile64+0x1cd/0x210
[ 2527.521366]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2527.522105]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2527.522827]  do_syscall_64+0x3b/0x90
[ 2527.523362]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2527.524082] RIP: 0033:0x7f1455db8b19
[ 2527.524584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2527.527110] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2527.528141] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2527.529122] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2527.530099] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2527.531092] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2527.532072] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2527.533058]  </TASK>
05:31:35 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000011)

05:31:50 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x7ffffffff000, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:31:50 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000012)

05:31:50 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000000080)=<r2=>0x0)
ioctl$TIOCSSOFTCAR(r1, 0x541a, &(0x7f0000000300)=0x518e)
capset(&(0x7f0000000340)={0x20080522, r2}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000180)=<r3=>0x0)
r4 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r4, 0x5429, &(0x7f0000000080)=<r5=>0x0)
capset(&(0x7f0000000340)={0x20071026, r5}, &(0x7f0000000380)={0x7, 0x407, 0x1000008, 0xffffff01, 0x6, 0x3})
capset(&(0x7f0000000100)={0x20080522, r5}, &(0x7f0000000280)={0x3, 0x7, 0x1, 0x1, 0x7, 0x7fff})
r6 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r6, 0x5429, &(0x7f00000002c0)=<r7=>0x0)
capset(&(0x7f0000000340)={0x20080522, r7}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f00000003c0)=<r8=>0x0)
capset(&(0x7f0000000400)={0x39900612, r8}, &(0x7f0000000440)={0x3, 0x80000001, 0x5, 0x80000001, 0x80000000, 0x3})
clone3(&(0x7f0000000200)={0x100a2c000, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x22}, &(0x7f00000006c0)=""/102400, 0x19000, &(0x7f0000000140)=""/24, &(0x7f00000001c0)=[r0, r2, r0, r3, 0x0, r0], 0x6}, 0x58)

05:31:50 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x2, 0x0)

05:31:50 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 48)

05:31:50 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x0)
r1 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80))
symlinkat(&(0x7f0000000000)='./file0\x00', r1, &(0x7f0000000040)='./file0\x00')
linkat(r1, &(0x7f00000000c0)='./file0\x00', r1, &(0x7f0000000100)='./file1\x00', 0x1000)
pwritev(r1, &(0x7f00000000c0)=[{&(0x7f0000000000)="a67bcf5af1bed8b7563497b8653c1adf3efcba0cf907befeea388afaa8348bf211e17554fe378478f9c3485287a85976ecbf4fe85f278115f62824e44cc22321b7f01b99866dcd252eb20b595744de270f6deda97c4103cf8d95e14f42389114c868f063345c4ef9d0692608323f1a0758bad62fec4f13a0ac17335232d8abbf2c31c5b7172ab7bfc963d243e6ee366758c89e37e9321baf62be6c471fc97b21e8999792d75f2e4ef7ec97c47670030e4be8abedf396fd2a61faf407ae2dbe2e", 0xc0}], 0x1, 0xee, 0xfffffffb)

05:31:50 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x320c03, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)

05:31:50 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 45)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

[ 2543.326621] FAULT_INJECTION: forcing a failure.
[ 2543.326621] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2543.329112] CPU: 0 PID: 18027 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2543.330802] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2543.333037] Call Trace:
[ 2543.333552]  <TASK>
[ 2543.333989]  dump_stack_lvl+0x8b/0xb3
[ 2543.334787]  should_fail.cold+0x5/0xa
[ 2543.335558]  prepare_alloc_pages+0x17b/0x500
[ 2543.336461]  __alloc_pages+0x131/0x4e0
[ 2543.337250]  ? lock_downgrade+0x6d0/0x6d0
[ 2543.338086]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2543.339333]  ? xa_load+0x158/0x290
[ 2543.340047]  ? xas_find_conflict+0x9e0/0x9e0
[ 2543.340815] FAULT_INJECTION: forcing a failure.
[ 2543.340815] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2543.340954]  alloc_pages+0x1a0/0x2f0
[ 2543.344075]  filemap_alloc_folio+0x8e/0xb0
[ 2543.344973]  page_cache_ra_unbounded+0x1af/0x540
[ 2543.345931]  ondemand_readahead+0x642/0x1270
[ 2543.346827]  page_cache_async_ra+0xf8/0x130
[ 2543.347688]  filemap_get_pages+0x686/0x1680
[ 2543.348553]  ? lock_downgrade+0x6d0/0x6d0
[ 2543.349385]  ? filemap_add_folio+0x1b0/0x1b0
[ 2543.350260]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2543.351354]  ? copy_page_to_iter+0x688/0x1190
[ 2543.352244]  ? lock_is_held_type+0xd7/0x130
[ 2543.353101]  filemap_read+0x311/0xba0
[ 2543.353882]  ? filemap_get_pages+0x1680/0x1680
[ 2543.354800]  ? filter_irq_stacks+0x90/0x90
[ 2543.355652]  ? __kasan_kmalloc+0x81/0xa0
[ 2543.356453]  ? alloc_pipe_info+0x1e0/0x580
[ 2543.357283]  ? splice_direct_to_actor+0x700/0x8e0
[ 2543.358234]  ? do_splice_direct+0x1b8/0x280
[ 2543.359091]  ? do_sendfile+0xad7/0x1230
[ 2543.359871]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2543.360786]  ? do_syscall_64+0x3b/0x90
[ 2543.361569]  generic_file_read_iter+0x3c9/0x530
[ 2543.362501]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2543.363597]  ? __fsnotify_parent+0x498/0xa60
[ 2543.364464]  ext4_file_read_iter+0x184/0x3f0
[ 2543.365336]  generic_file_splice_read+0x3b9/0x5d0
[ 2543.366293]  ? pipe_to_user+0x170/0x170
[ 2543.367115]  ? security_file_permission+0xb1/0xd0
[ 2543.368067]  ? pipe_to_user+0x170/0x170
[ 2543.368854]  do_splice_to+0x1bc/0x240
[ 2543.369604]  ? inode_has_perm+0x1d0/0x1d0
[ 2543.370433]  splice_direct_to_actor+0x2c7/0x8e0
[ 2543.371358]  ? pipe_to_sendpage+0x380/0x380
[ 2543.372220]  ? do_splice_to+0x240/0x240
[ 2543.373009]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2543.374094]  ? security_file_permission+0xb1/0xd0
[ 2543.375079]  do_splice_direct+0x1b8/0x280
[ 2543.375903]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2543.376867]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2543.377957]  ? security_file_permission+0xb1/0xd0
[ 2543.378932]  do_sendfile+0xad7/0x1230
[ 2543.379695]  ? bit_wait_io_timeout+0x160/0x160
[ 2543.380597]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2543.381618]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2543.382710]  ? vfs_write+0x422/0xac0
[ 2543.383451]  __x64_sys_sendfile64+0x1cd/0x210
[ 2543.384342]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2543.385390]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2543.386454]  do_syscall_64+0x3b/0x90
[ 2543.387209]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2543.388235] RIP: 0033:0x7f1455db8b19
[ 2543.388986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2543.392635] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2543.394161] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2543.395605] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2543.397004] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2543.398413] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2543.399816] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2543.401240]  </TASK>
[ 2543.401700] CPU: 1 PID: 18032 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2543.403437] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2543.405689] Call Trace:
[ 2543.406207]  <TASK>
[ 2543.406663]  dump_stack_lvl+0x8b/0xb3
[ 2543.407444]  should_fail.cold+0x5/0xa
[ 2543.408223]  prepare_alloc_pages+0x17b/0x500
[ 2543.409131]  __alloc_pages+0x131/0x4e0
[ 2543.409920]  ? lock_downgrade+0x6d0/0x6d0
[ 2543.410783]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2543.412010]  ? xa_load+0x158/0x290
[ 2543.412719]  ? xas_find_conflict+0x9e0/0x9e0
[ 2543.413600]  alloc_pages+0x1a0/0x2f0
[ 2543.414358]  filemap_alloc_folio+0x8e/0xb0
[ 2543.415217]  page_cache_ra_unbounded+0x1af/0x540
[ 2543.416192]  ondemand_readahead+0x642/0x1270
[ 2543.417093]  page_cache_async_ra+0xf8/0x130
[ 2543.417964]  filemap_get_pages+0x686/0x1680
[ 2543.418851]  ? lock_downgrade+0x6d0/0x6d0
[ 2543.419692]  ? filemap_add_folio+0x1b0/0x1b0
[ 2543.420585]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2543.421696]  ? copy_page_to_iter+0x688/0x1190
[ 2543.422615]  ? lock_is_held_type+0xd7/0x130
[ 2543.423484]  filemap_read+0x311/0xba0
[ 2543.424278]  ? filemap_get_pages+0x1680/0x1680
[ 2543.425196]  ? filter_irq_stacks+0x90/0x90
[ 2543.426057]  ? __kasan_kmalloc+0x81/0xa0
[ 2543.426874]  ? alloc_pipe_info+0x1e0/0x580
[ 2543.427713]  ? splice_direct_to_actor+0x700/0x8e0
[ 2543.428689]  ? do_splice_direct+0x1b8/0x280
[ 2543.429552]  ? do_sendfile+0xad7/0x1230
[ 2543.430345]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2543.431294]  ? do_syscall_64+0x3b/0x90
[ 2543.432089]  generic_file_read_iter+0x3c9/0x530
[ 2543.433025]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2543.434123]  ? __fsnotify_parent+0x498/0xa60
[ 2543.435009]  ext4_file_read_iter+0x184/0x3f0
[ 2543.435908]  generic_file_splice_read+0x3b9/0x5d0
[ 2543.436881]  ? pipe_to_user+0x170/0x170
[ 2543.437710]  ? security_file_permission+0xb1/0xd0
[ 2543.438692]  ? pipe_to_user+0x170/0x170
[ 2543.439502]  do_splice_to+0x1bc/0x240
[ 2543.440270]  ? inode_has_perm+0x1d0/0x1d0
[ 2543.441097]  splice_direct_to_actor+0x2c7/0x8e0
[ 2543.442031]  ? pipe_to_sendpage+0x380/0x380
[ 2543.442923]  ? do_splice_to+0x240/0x240
[ 2543.443719]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2543.444819]  ? security_file_permission+0xb1/0xd0
[ 2543.445800]  do_splice_direct+0x1b8/0x280
[ 2543.446649]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2543.447632]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2543.448736]  ? security_file_permission+0xb1/0xd0
[ 2543.449709]  do_sendfile+0xad7/0x1230
[ 2543.450504]  ? bit_wait_io_timeout+0x160/0x160
[ 2543.451419]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2543.452452]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2543.453558]  ? vfs_write+0x422/0xac0
[ 2543.454310]  __x64_sys_sendfile64+0x1cd/0x210
[ 2543.455208]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2543.456278]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2543.457311]  do_syscall_64+0x3b/0x90
[ 2543.458067]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2543.459106] RIP: 0033:0x7fdbfaa6cb19
[ 2543.459843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2543.463507] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2543.465006] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2543.466425] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2543.467826] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2543.469229] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2543.470651] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2543.472082]  </TASK>
05:31:50 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000040), 0x658542, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)

05:31:51 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc018937e, &(0x7f0000000000)=ANY=[@ANYBLOB="010000020100000000000000", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x0)

05:31:51 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000013)

05:31:51 executing program 5:
prctl$PR_SET_ENDIAN(0x14, 0x1)
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)

05:31:51 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000000080)=<r2=>0x0)
capset(&(0x7f0000000340)={0x20080522, r2}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
r3 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000080)=<r4=>0x0)
capset(&(0x7f0000000340)={0x20080522, r4}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000240)={0x0, <r5=>0x0})
clock_gettime(0x0, &(0x7f00000018c0)={<r6=>0x0, <r7=>0x0})
capset(&(0x7f0000001a00)={0x19980330, r5}, &(0x7f0000001a40)={0x8001, 0x5, 0x8001, 0x1ff, 0x6, 0x2})
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000001840)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000002c0)=""/153, 0x99}], 0x2, &(0x7f00000003c0)=[@cred={{0x1c}}], 0x20}}, {{0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000400)=""/220, 0xdc}, {&(0x7f0000000500)=""/195, 0xc3}, {&(0x7f00000016c0)=""/152, 0x98}], 0x3, &(0x7f0000001780)=[@cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {<r8=>0x0}}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x98}}], 0x2, 0x2000, &(0x7f0000001900)={r6, r7+60000000})
r9 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r9, 0x5429, &(0x7f0000000080)=<r10=>0x0)
capset(&(0x7f0000000340)={0x20080522, r10}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
clone3(&(0x7f0000001980)={0x10040000, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0xc}, &(0x7f0000000100)=""/236, 0xec, &(0x7f0000000200)=""/12, &(0x7f0000001940)=[r2, r4, r5, r0, r8, r10, 0x0], 0x7}, 0x58)

05:31:51 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0xffff88800afbb0a0, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:31:51 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 46)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:31:51 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
getdents(r0, &(0x7f0000000000)=""/91, 0x5b)
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x0)

[ 2543.765669] FAULT_INJECTION: forcing a failure.
[ 2543.765669] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2543.767092] CPU: 1 PID: 18196 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2543.767995] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2543.769212] Call Trace:
[ 2543.769488]  <TASK>
[ 2543.769738]  dump_stack_lvl+0x8b/0xb3
[ 2543.770159]  should_fail.cold+0x5/0xa
[ 2543.770591]  prepare_alloc_pages+0x17b/0x500
[ 2543.771078]  __alloc_pages+0x131/0x4e0
[ 2543.771495]  ? lock_downgrade+0x6d0/0x6d0
[ 2543.771945]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2543.772599]  ? xa_load+0x158/0x290
[ 2543.772984]  ? xas_find_conflict+0x9e0/0x9e0
[ 2543.773468]  alloc_pages+0x1a0/0x2f0
[ 2543.773868]  filemap_alloc_folio+0x8e/0xb0
[ 2543.774332]  page_cache_ra_unbounded+0x1af/0x540
[ 2543.774857]  ondemand_readahead+0x642/0x1270
[ 2543.775339]  page_cache_async_ra+0xf8/0x130
[ 2543.775802]  filemap_get_pages+0x686/0x1680
[ 2543.776267]  ? lock_downgrade+0x6d0/0x6d0
[ 2543.776711]  ? filemap_add_folio+0x1b0/0x1b0
[ 2543.777189]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2543.777795]  ? copy_page_to_iter+0x688/0x1190
[ 2543.778288]  ? lock_is_held_type+0xd7/0x130
[ 2543.778783]  filemap_read+0x311/0xba0
[ 2543.779219]  ? filemap_get_pages+0x1680/0x1680
[ 2543.779720]  ? filter_irq_stacks+0x90/0x90
[ 2543.780192]  ? __kasan_kmalloc+0x81/0xa0
[ 2543.780641]  ? alloc_pipe_info+0x1e0/0x580
[ 2543.781101]  ? splice_direct_to_actor+0x700/0x8e0
[ 2543.781634]  ? do_splice_direct+0x1b8/0x280
[ 2543.782099]  ? do_sendfile+0xad7/0x1230
[ 2543.782535]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2543.783037]  ? do_syscall_64+0x3b/0x90
[ 2543.783474]  generic_file_read_iter+0x3c9/0x530
[ 2543.783985]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2543.784594]  ? __fsnotify_parent+0x498/0xa60
[ 2543.785076]  ext4_file_read_iter+0x184/0x3f0
[ 2543.785562]  generic_file_splice_read+0x3b9/0x5d0
[ 2543.786095]  ? pipe_to_user+0x170/0x170
[ 2543.786554]  ? security_file_permission+0xb1/0xd0
[ 2543.787089]  ? pipe_to_user+0x170/0x170
[ 2543.787527]  do_splice_to+0x1bc/0x240
[ 2543.787947]  ? inode_has_perm+0x1d0/0x1d0
[ 2543.788399]  splice_direct_to_actor+0x2c7/0x8e0
[ 2543.788908]  ? pipe_to_sendpage+0x380/0x380
[ 2543.789389]  ? do_splice_to+0x240/0x240
[ 2543.789817]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2543.790426]  ? security_file_permission+0xb1/0xd0
[ 2543.790947]  do_splice_direct+0x1b8/0x280
[ 2543.791403]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2543.791929]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2543.792519]  ? security_file_permission+0xb1/0xd0
[ 2543.793049]  do_sendfile+0xad7/0x1230
[ 2543.793462]  ? bit_wait_io_timeout+0x160/0x160
[ 2543.793961]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2543.794528]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2543.795116]  ? vfs_write+0x422/0xac0
[ 2543.795531]  __x64_sys_sendfile64+0x1cd/0x210
[ 2543.796023]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2543.796609]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2543.797168]  do_syscall_64+0x3b/0x90
[ 2543.797574]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2543.798131] RIP: 0033:0x7f1455db8b19
[ 2543.798547] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2543.800502] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2543.801331] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2543.802093] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2543.803045] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2543.803912] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2543.804678] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2543.805453]  </TASK>
05:32:05 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 49)

05:32:05 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000014)

05:32:05 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d1, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x2, @perf_config_ext={0x6, 0xffffffffffffffff}, 0x0, 0x5, 0x101}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x50, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x2, 0x0)

05:32:05 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e24, 0x4, @ipv4={'\x00', '\xff\xff', @empty}, 0x80}, 0x1c)
preadv2(r0, &(0x7f0000000340)=[{&(0x7f0000000000)=""/262, 0xa4}], 0x1, 0x0, 0x101, 0x0)

05:32:05 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x105d80, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>r0, {r0}}, './file0\x00'})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r3, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
getsockopt$sock_int(r3, 0x1, 0x21, &(0x7f00000000c0), &(0x7f0000000100)=0x4)
ioctl$DVD_AUTH(r2, 0x80041284, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r3, 0xc0189375, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r4=>r3}, './file0\x00'})
setsockopt$inet6_icmp_ICMP_FILTER(r1, 0x1, 0x1, &(0x7f00000001c0), 0x4)
openat(r4, &(0x7f0000000180)='./file0\x00', 0x2880, 0x0)

05:32:05 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0xfffffffffffffdef, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:32:05 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)
r1 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80))
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000080)=<r3=>0x0)
capset(&(0x7f0000000340)={0x20080522, r3}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
r4 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r4, 0x5429, &(0x7f0000000080)=<r5=>0x0)
capset(&(0x7f0000000340)={0x20080522, r5}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
syz_mount_image$vfat(&(0x7f00000004c0), &(0x7f0000000500)='./file0\x00', 0x100000001, 0x2, &(0x7f0000000580)=[{&(0x7f0000000540)="a300acd38a345c59fae24eb8b951af759ade809372a820a7095ffc9008f7b58f8fd7c7668fc9cb659b649d17e7203c842fdc80", 0x33, 0x9}, {&(0x7f0000000bc0)="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", 0x1000, 0x3}], 0x831bf5b8a06368cf, &(0x7f00000005c0)={[{@shortname_win95}, {@uni_xlateno}, {@nonumtail}, {@nonumtail}, {@shortname_lower}, {@shortname_mixed}], [{@func={'func', 0x3d, 'FILE_CHECK'}}, {@appraise}, {@subj_user={'subj_user', 0x3d, ']-'}}]})
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000280)=<r6=>0x0)
r7 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r7, 0x5429, &(0x7f0000000080)=<r8=>0x0)
capset(&(0x7f0000000340)={0x20080522, r8}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
r9 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r9, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
clone3(&(0x7f0000000300)={0x0, &(0x7f0000000080), &(0x7f0000000140), &(0x7f0000000180), {0x22}, &(0x7f00000001c0)=""/32, 0x20, &(0x7f0000000200)=""/80, &(0x7f00000002c0)=[r0, r3, r5, r6, r8], 0x5, {r9}}, 0x58)
symlinkat(&(0x7f0000000000)='./file0\x00', r1, &(0x7f0000000040)='./file0\x00')
linkat(r1, &(0x7f00000000c0)='./file0\x00', r1, &(0x7f0000000100)='./file1\x00', 0x1000)
openat(r1, &(0x7f0000000000)='./file0\x00', 0x0, 0x102)

05:32:05 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 47)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

[ 2557.980658] FAULT_INJECTION: forcing a failure.
[ 2557.980658] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2557.983527] CPU: 1 PID: 18272 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2557.985543] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2557.988207] Call Trace:
[ 2557.988814]  <TASK>
[ 2557.989344]  dump_stack_lvl+0x8b/0xb3
[ 2557.990265]  should_fail.cold+0x5/0xa
[ 2557.991213]  prepare_alloc_pages+0x17b/0x500
[ 2557.992198]  __alloc_pages+0x131/0x4e0
[ 2557.993022]  ? lock_downgrade+0x6d0/0x6d0
[ 2557.993907]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2557.995217]  ? xa_load+0x158/0x290
[ 2557.995974]  ? xas_find_conflict+0x9e0/0x9e0
[ 2557.996960]  alloc_pages+0x1a0/0x2f0
[ 2557.997912]  filemap_alloc_folio+0x8e/0xb0
[ 2557.999043]  page_cache_ra_unbounded+0x1af/0x540
[ 2558.000180]  ondemand_readahead+0x642/0x1270
[ 2558.001215]  page_cache_async_ra+0xf8/0x130
[ 2558.002188]  filemap_get_pages+0x686/0x1680
[ 2558.003216]  ? lock_downgrade+0x6d0/0x6d0
[ 2558.004223]  ? filemap_add_folio+0x1b0/0x1b0
[ 2558.005256]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2558.006547]  ? copy_page_to_iter+0x688/0x1190
[ 2558.007646]  ? lock_is_held_type+0xd7/0x130
[ 2558.008753]  filemap_read+0x311/0xba0
[ 2558.009717]  ? filemap_get_pages+0x1680/0x1680
[ 2558.010833]  ? filter_irq_stacks+0x90/0x90
[ 2558.011950]  ? __kasan_kmalloc+0x81/0xa0
[ 2558.012905]  ? alloc_pipe_info+0x1e0/0x580
[ 2558.013884]  ? splice_direct_to_actor+0x700/0x8e0
[ 2558.015059]  ? do_splice_direct+0x1b8/0x280
[ 2558.016016]  ? do_sendfile+0xad7/0x1230
[ 2558.016991]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2558.017994]  ? do_syscall_64+0x3b/0x90
[ 2558.018813]  generic_file_read_iter+0x3c9/0x530
[ 2558.019807]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2558.021186]  ? __fsnotify_parent+0x498/0xa60
[ 2558.022088]  ext4_file_read_iter+0x184/0x3f0
[ 2558.023173]  generic_file_splice_read+0x3b9/0x5d0
[ 2558.024358]  ? pipe_to_user+0x170/0x170
[ 2558.025231]  ? security_file_permission+0xb1/0xd0
[ 2558.026256]  ? pipe_to_user+0x170/0x170
[ 2558.027133]  do_splice_to+0x1bc/0x240
[ 2558.027949]  ? inode_has_perm+0x1d0/0x1d0
[ 2558.028830]  splice_direct_to_actor+0x2c7/0x8e0
[ 2558.029831]  ? pipe_to_sendpage+0x380/0x380
[ 2558.030771]  ? do_splice_to+0x240/0x240
[ 2558.031714]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2558.032890]  ? security_file_permission+0xb1/0xd0
[ 2558.033925]  do_splice_direct+0x1b8/0x280
[ 2558.034953]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2558.036118]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2558.037389]  ? security_file_permission+0xb1/0xd0
[ 2558.038623]  do_sendfile+0xad7/0x1230
[ 2558.039539]  ? bit_wait_io_timeout+0x160/0x160
[ 2558.040673]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2558.041844]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2558.043092]  ? vfs_write+0x422/0xac0
[ 2558.043898]  __x64_sys_sendfile64+0x1cd/0x210
[ 2558.044976]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2558.046117]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2558.047440]  do_syscall_64+0x3b/0x90
[ 2558.048326]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2558.049522] RIP: 0033:0x7fdbfaa6cb19
[ 2558.050381] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2558.054447] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2558.056238] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2558.057825] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2558.059341] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2558.060856] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2558.062362] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2558.063923]  </TASK>
05:32:05 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 50)

[ 2558.158282] FAULT_INJECTION: forcing a failure.
[ 2558.158282] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2558.160914] CPU: 1 PID: 18285 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2558.162654] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2558.165042] Call Trace:
[ 2558.165677]  <TASK>
[ 2558.166240]  dump_stack_lvl+0x8b/0xb3
[ 2558.167163]  should_fail.cold+0x5/0xa
[ 2558.167944]  prepare_alloc_pages+0x17b/0x500
[ 2558.168848]  __alloc_pages+0x131/0x4e0
[ 2558.169725]  ? lock_downgrade+0x6d0/0x6d0
[ 2558.170565]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2558.171912]  ? xa_load+0x158/0x290
[ 2558.172630]  ? xas_find_conflict+0x9e0/0x9e0
[ 2558.173518]  alloc_pages+0x1a0/0x2f0
[ 2558.174343]  filemap_alloc_folio+0x8e/0xb0
[ 2558.175262]  page_cache_ra_unbounded+0x1af/0x540
[ 2558.176244]  ondemand_readahead+0x642/0x1270
[ 2558.177293]  page_cache_async_ra+0xf8/0x130
[ 2558.178347]  filemap_get_pages+0x686/0x1680
[ 2558.179349]  ? lock_downgrade+0x6d0/0x6d0
[ 2558.180333]  ? filemap_add_folio+0x1b0/0x1b0
[ 2558.181426]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2558.182698]  ? copy_page_to_iter+0x688/0x1190
[ 2558.183684]  ? lock_is_held_type+0xd7/0x130
[ 2558.184675]  filemap_read+0x311/0xba0
[ 2558.185535]  ? filemap_get_pages+0x1680/0x1680
[ 2558.186568]  ? filter_irq_stacks+0x90/0x90
[ 2558.187627]  ? __kasan_kmalloc+0x81/0xa0
[ 2558.188451]  ? alloc_pipe_info+0x1e0/0x580
[ 2558.189422]  ? splice_direct_to_actor+0x700/0x8e0
[ 2558.190494]  ? do_splice_direct+0x1b8/0x280
[ 2558.191500]  ? do_sendfile+0xad7/0x1230
[ 2558.192414]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2558.193372]  ? do_syscall_64+0x3b/0x90
[ 2558.194317]  generic_file_read_iter+0x3c9/0x530
[ 2558.195421]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2558.196760]  ? __fsnotify_parent+0x498/0xa60
[ 2558.197766]  ext4_file_read_iter+0x184/0x3f0
[ 2558.198770]  generic_file_splice_read+0x3b9/0x5d0
[ 2558.199899]  ? pipe_to_user+0x170/0x170
[ 2558.200886]  ? security_file_permission+0xb1/0xd0
[ 2558.202032]  ? pipe_to_user+0x170/0x170
[ 2558.202992]  do_splice_to+0x1bc/0x240
[ 2558.203887]  ? inode_has_perm+0x1d0/0x1d0
[ 2558.204749]  splice_direct_to_actor+0x2c7/0x8e0
[ 2558.205848]  ? pipe_to_sendpage+0x380/0x380
[ 2558.206767]  ? do_splice_to+0x240/0x240
[ 2558.207578]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2558.208707]  ? security_file_permission+0xb1/0xd0
[ 2558.209720]  do_splice_direct+0x1b8/0x280
[ 2558.210588]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2558.211664]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2558.212978]  ? security_file_permission+0xb1/0xd0
[ 2558.214115]  do_sendfile+0xad7/0x1230
[ 2558.214931]  ? bit_wait_io_timeout+0x160/0x160
[ 2558.215995]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2558.217196]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2558.218479]  ? vfs_write+0x422/0xac0
[ 2558.219349]  __x64_sys_sendfile64+0x1cd/0x210
[ 2558.220368]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2558.221629]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2558.222908]  do_syscall_64+0x3b/0x90
[ 2558.223821]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2558.225083] RIP: 0033:0x7f1455db8b19
[ 2558.225910] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2558.229668] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2558.231374] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2558.233025] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2558.234525] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2558.236060] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2558.237730] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2558.239317]  </TASK>
05:32:05 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000015)

05:32:05 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/icmp\x00')
preadv2(r0, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
ioctl$sock_SIOCBRDELBR(r1, 0x89a1, &(0x7f0000000040)='nr0\x00')

05:32:05 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffb, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

[ 2558.394868] FAULT_INJECTION: forcing a failure.
[ 2558.394868] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2558.397538] CPU: 1 PID: 18384 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2558.399219] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2558.401489] Call Trace:
[ 2558.402001]  <TASK>
[ 2558.402452]  dump_stack_lvl+0x8b/0xb3
[ 2558.403254]  should_fail.cold+0x5/0xa
[ 2558.404029]  prepare_alloc_pages+0x17b/0x500
[ 2558.404956]  __alloc_pages+0x131/0x4e0
[ 2558.405731]  ? lock_downgrade+0x6d0/0x6d0
[ 2558.406571]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2558.407790]  ? xa_load+0x158/0x290
[ 2558.408505]  ? xas_find_conflict+0x9e0/0x9e0
[ 2558.409389]  alloc_pages+0x1a0/0x2f0
[ 2558.410151]  filemap_alloc_folio+0x8e/0xb0
[ 2558.411024]  page_cache_ra_unbounded+0x1af/0x540
[ 2558.412006]  ondemand_readahead+0x642/0x1270
[ 2558.412906]  page_cache_async_ra+0xf8/0x130
[ 2558.413780]  filemap_get_pages+0x686/0x1680
[ 2558.414665]  ? lock_downgrade+0x6d0/0x6d0
[ 2558.415520]  ? filemap_add_folio+0x1b0/0x1b0
[ 2558.416401]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2558.417512]  ? copy_page_to_iter+0x688/0x1190
[ 2558.418408]  ? lock_is_held_type+0xd7/0x130
[ 2558.419298]  filemap_read+0x311/0xba0
[ 2558.420092]  ? filemap_get_pages+0x1680/0x1680
[ 2558.421018]  ? filter_irq_stacks+0x90/0x90
[ 2558.421885]  ? __kasan_kmalloc+0x81/0xa0
05:32:05 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 48)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

[ 2558.422716]  ? alloc_pipe_info+0x1e0/0x580
[ 2558.423799]  ? splice_direct_to_actor+0x700/0x8e0
[ 2558.424782]  ? do_splice_direct+0x1b8/0x280
[ 2558.425652]  ? do_sendfile+0xad7/0x1230
[ 2558.426436]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2558.427381]  ? do_syscall_64+0x3b/0x90
[ 2558.428169]  generic_file_read_iter+0x3c9/0x530
[ 2558.429120]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2558.430216]  ? __fsnotify_parent+0x498/0xa60
[ 2558.431122]  ext4_file_read_iter+0x184/0x3f0
[ 2558.432015]  generic_file_splice_read+0x3b9/0x5d0
[ 2558.433004]  ? pipe_to_user+0x170/0x170
[ 2558.433823]  ? security_file_permission+0xb1/0xd0
[ 2558.434814]  ? pipe_to_user+0x170/0x170
[ 2558.435615]  do_splice_to+0x1bc/0x240
[ 2558.436388]  ? inode_has_perm+0x1d0/0x1d0
[ 2558.437214]  splice_direct_to_actor+0x2c7/0x8e0
[ 2558.438165]  ? pipe_to_sendpage+0x380/0x380
[ 2558.439058]  ? do_splice_to+0x240/0x240
[ 2558.439865]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2558.440967]  ? security_file_permission+0xb1/0xd0
[ 2558.441953]  do_splice_direct+0x1b8/0x280
[ 2558.442805]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2558.443805]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2558.444900]  ? security_file_permission+0xb1/0xd0
[ 2558.445884]  do_sendfile+0xad7/0x1230
[ 2558.446658]  ? bit_wait_io_timeout+0x160/0x160
[ 2558.447584]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2558.448612]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2558.449724]  ? vfs_write+0x422/0xac0
[ 2558.450471]  __x64_sys_sendfile64+0x1cd/0x210
[ 2558.451395]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2558.452457]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2558.453504]  do_syscall_64+0x3b/0x90
[ 2558.454265]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2558.455332] RIP: 0033:0x7fdbfaa6cb19
[ 2558.456072] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2558.459766] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2558.461277] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2558.462746] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2558.464149] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2558.465580] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2558.467003] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2558.468468]  </TASK>
05:32:06 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000080)=<r3=>0x0)
capset(&(0x7f0000000340)={0x20080522, r3}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
r4 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000600)='/sys/module/cfg80211', 0x20000, 0x88)
ioctl$TIOCNOTTY(r5, 0x5422)
ioctl$TIOCGSID(r4, 0x5429, &(0x7f0000000080)=<r6=>0x0)
capset(&(0x7f0000000340)={0x20080522, r6}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000500)=<r7=>0x0)
clone3(&(0x7f0000000580)={0x0, &(0x7f0000000380), &(0x7f00000003c0), &(0x7f0000000400), {0x16}, &(0x7f0000000440)=""/60, 0x3c, &(0x7f0000000480)=""/106, &(0x7f0000000540)=[r0, r0, r3, r6, r7], 0x5}, 0x58)
r8 = fcntl$getown(r1, 0x9)
clone3(&(0x7f0000000300)={0x800, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x13}, &(0x7f0000000100)=""/194, 0xc2, &(0x7f0000000200)=""/174, &(0x7f00000002c0)=[r0, r8, r0], 0x3}, 0x58)

[ 2558.563014] FAULT_INJECTION: forcing a failure.
[ 2558.563014] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2558.565910] CPU: 1 PID: 18407 Comm: syz-executor.1 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2558.567610] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2558.569877] Call Trace:
[ 2558.570393]  <TASK>
[ 2558.570859]  dump_stack_lvl+0x8b/0xb3
[ 2558.571648]  should_fail.cold+0x5/0xa
[ 2558.572433]  prepare_alloc_pages+0x17b/0x500
[ 2558.573340]  __alloc_pages+0x131/0x4e0
[ 2558.574122]  ? lock_downgrade+0x6d0/0x6d0
[ 2558.574978]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2558.576197]  ? xa_load+0x158/0x290
[ 2558.576923]  ? xas_find_conflict+0x9e0/0x9e0
[ 2558.577822]  alloc_pages+0x1a0/0x2f0
[ 2558.578578]  filemap_alloc_folio+0x8e/0xb0
[ 2558.579431]  page_cache_ra_unbounded+0x1af/0x540
[ 2558.580405]  ondemand_readahead+0x642/0x1270
[ 2558.581288]  page_cache_async_ra+0xf8/0x130
[ 2558.582160]  filemap_get_pages+0x686/0x1680
[ 2558.583050]  ? lock_downgrade+0x6d0/0x6d0
[ 2558.583896]  ? filemap_add_folio+0x1b0/0x1b0
[ 2558.584780]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2558.585888]  ? copy_page_to_iter+0x688/0x1190
[ 2558.586815]  ? lock_is_held_type+0xd7/0x130
[ 2558.587692]  filemap_read+0x311/0xba0
[ 2558.588488]  ? filemap_get_pages+0x1680/0x1680
[ 2558.589410]  ? filter_irq_stacks+0x90/0x90
[ 2558.590279]  ? __kasan_kmalloc+0x81/0xa0
[ 2558.591088]  ? alloc_pipe_info+0x1e0/0x580
[ 2558.591918]  ? splice_direct_to_actor+0x700/0x8e0
[ 2558.592875]  ? do_splice_direct+0x1b8/0x280
[ 2558.593736]  ? do_sendfile+0xad7/0x1230
[ 2558.594522]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2558.595455]  ? do_syscall_64+0x3b/0x90
[ 2558.596249]  generic_file_read_iter+0x3c9/0x530
[ 2558.597194]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2558.598301]  ? __fsnotify_parent+0x498/0xa60
[ 2558.599183]  ext4_file_read_iter+0x184/0x3f0
[ 2558.600083]  generic_file_splice_read+0x3b9/0x5d0
[ 2558.601049]  ? pipe_to_user+0x170/0x170
[ 2558.601886]  ? security_file_permission+0xb1/0xd0
[ 2558.602884]  ? pipe_to_user+0x170/0x170
[ 2558.603685]  do_splice_to+0x1bc/0x240
[ 2558.604447]  ? inode_has_perm+0x1d0/0x1d0
[ 2558.605286]  splice_direct_to_actor+0x2c7/0x8e0
[ 2558.606223]  ? pipe_to_sendpage+0x380/0x380
[ 2558.607112]  ? do_splice_to+0x240/0x240
[ 2558.607914]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2558.609014]  ? security_file_permission+0xb1/0xd0
[ 2558.610001]  do_splice_direct+0x1b8/0x280
[ 2558.610844]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2558.611829]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2558.612931]  ? security_file_permission+0xb1/0xd0
[ 2558.613905]  do_sendfile+0xad7/0x1230
[ 2558.614692]  ? bit_wait_io_timeout+0x160/0x160
[ 2558.615611]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2558.616657]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2558.617764]  ? vfs_write+0x422/0xac0
[ 2558.618511]  __x64_sys_sendfile64+0x1cd/0x210
[ 2558.619420]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2558.620482]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2558.621521]  do_syscall_64+0x3b/0x90
[ 2558.622274]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2558.623313] RIP: 0033:0x7f1455db8b19
[ 2558.624046] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2558.627678] RSP: 002b:00007f145332e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2558.629180] RAX: ffffffffffffffda RBX: 00007f1455ecbf60 RCX: 00007f1455db8b19
[ 2558.630584] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2558.632014] RBP: 00007f145332e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2558.633432] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2558.634841] R13: 00007fff0823e86f R14: 00007f145332e300 R15: 0000000000022000
[ 2558.636276]  </TASK>
05:32:19 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 51)

05:32:19 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x8800000, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:32:19 executing program 3:
r0 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd)
add_key$keyring(&(0x7f0000000000), &(0x7f00000002c0)={'syz', 0x2}, 0x0, 0x0, r0)
request_key(&(0x7f0000000000)='user\x00', &(0x7f0000000040)={'syz', 0x3}, &(0x7f0000000080)='\xb6%-u[ \x00', r0)
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)

05:32:19 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 49)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:32:19 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000016)

05:32:19 executing program 2:
r0 = perf_event_open(&(0x7f0000000280)={0x4, 0x80, 0x3, 0x81, 0x0, 0x0, 0x0, 0x802, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6}, 0x50000, 0x3, 0x4, 0x6, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x20000007f}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2)
mmap$perf(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x100010, r0, 0x9)
process_vm_readv(0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000100)=""/57, 0x39}], 0x2, &(0x7f0000000300)=[{&(0x7f0000012940)=""/102389, 0x18ff5}], 0x1, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x28201, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x110)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$SG_IO(r4, 0x2285, &(0x7f0000000440)={0x53, 0xfffffffffffffffc, 0x18, 0x20, @buffer={0x0, 0xf, &(0x7f0000000080)=""/15}, &(0x7f00000000c0)="6d7f4407a10a3ef171f7f1bffb12cb8c257880c35d04b547", &(0x7f0000000340)=""/133, 0xc0, 0x1, 0xffffffffffffffff, &(0x7f0000000400)})
pwritev(r4, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x2, 0x0)

05:32:19 executing program 5:
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000003300)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff}, './file0\x00'})
r1 = openat$zero(0xffffffffffffff9c, 0x0, 0x60100, 0x0)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f00000000c0), r1)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000300)={&(0x7f0000000240)={0x2c, r2, 0x100, 0x70bd2c, 0x25dfdbfd, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x1}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x7f}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4040000}, 0x5)
sendmsg$BATADV_CMD_SET_VLAN(r0, &(0x7f0000003400)={&(0x7f0000003340)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000033c0)={&(0x7f0000003380)={0x30, r2, 0x400, 0x70bd27, 0x25dfdbfb, {}, [@BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @broadcast}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x7}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}]}, 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x80)
r3 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$DVD_AUTH(r3, 0x80041284, 0x0)

05:32:19 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000080)=<r1=>0x0)
capset(&(0x7f0000000340)={0x20080522, r1}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
r2 = syz_open_procfs(r1, &(0x7f0000000180)='net/icmp\x00')
r3 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r3, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
pwritev(r2, &(0x7f0000000140)=[{&(0x7f00000001c0)="6ccce4166e80c1cbf8bf1c7e4dcd9b93d86335199a7c26047b89183085a83fe54084a43b566720d5ce8c4dce28f3863fa09b379ece30d924431a4b479fbe738cd6c08443e2fa207db8a228a2bcb45eb98ba0cb07e0a9563e44c60c366a6271a35e896be8b3f68ff6c55b2b195349f77be5763c57f3cda31b6d", 0x79}], 0x1, 0x2, 0x816)
ioctl$EVIOCSFF(r2, 0x40304580, &(0x7f00000000c0)={0x57, 0x20, 0x3d, {0x7f, 0x2}, {0x3f, 0x1}, @period={0x59, 0x4, 0x5, 0x80, 0x3, {0x200, 0x0, 0x8, 0xd8}, 0x6, &(0x7f0000000040)=[0x2, 0x8, 0x8, 0x4, 0x3f, 0x3d0]}})
ioctl$TIOCGPGRP(r3, 0x540f, &(0x7f0000000000))
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000100)={0x87, @remote, 0x4e22, 0x2, 'ovf\x00', 0x4, 0x80, 0x4e}, 0x2c)
preadv2(r2, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x0, 0x0, 0x0)
r4 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80))
r5 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80))
symlinkat(&(0x7f0000000000)='./file0\x00', r5, &(0x7f0000000040)='./file0\x00')
linkat(r5, &(0x7f00000000c0)='./file0\x00', r5, &(0x7f0000000100)='./file1\x00', 0x1000)
pwritev(r5, &(0x7f0000000bc0)=[{&(0x7f0000000240)="63788326d1b4df5d98ea5fe250071ba8450f13d17a20b39caa8d9d3847519a64fa2fc922ea5430039e482e20611ee7d723c43d8547d63f6d8e175b6e2dd177e6d782089f920874eefc187f45bfa30082154c7b786f52c79be847fa1985181eb661266154006f66", 0x67}, {&(0x7f0000000740)="02451b977f7e2a79658b3c11b9055b682ab32c6e1956b4caa4b52b4332ad4245f3290dce4ed706101983477f989f7efe2916b28206c426f462c6622c0f20cee7ed4702d8d79d7d1082f9cfff6a414d3706bd8a9c4a76cb11d2ef0fadcf380a126aeb104367022e62a81235a0e310fbc56bce2754b957fc15fa0d0b0e253561de1462f4246a3259cc3b2e4a443a9b612c83a1b047510b195135c8c50f2051ec6be0afc96afcff8987a5859216aa30441809dc7d3ee5f17fe48308d5b263014e7abf22dfb4270880fb1904257a9daf8800e5e12d0e04f63ad97b37f25a133b52703959f7e8a388", 0xe6}, {&(0x7f00000002c0)="fa9a1f4903c1e7318a745d55fe7858003f789a4ea29c687db7bca0944807aa990e2d5e6ee5e8b5050d0d28bc642bfa3652309dbea1221716523041b4bf26147a1ad644698a0604df72", 0x49}, {&(0x7f0000000840)="397bb87ddb337c0108097677cb2b59810cab565d5b07e8aa7494f991aacf9cad7239685c071caf61120c085c63815298fcfb41e39128ad2dff893f1b08c7d21967128e95c56e0dc060fe6d22846b", 0x4e}, {&(0x7f00000008c0)="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", 0xfa}, {&(0x7f00000009c0)="15aa20772c11dd4407ad3e5e2884d506710f46eea55a6a59cc21dc673e7457d79c1ae96c2eba74de1b547d756f2156d92dd40670c43b46a4a8c4ab5bb7cdc71c032550140510372ae18626096935e2cc53de95d2aefdb09f7dc1ea9cff547cbf9dd709f48c3cd570af16cc6bcb2ecab980ded923b57c4c3156f48cb6a62ee27e08cfd88ea6adc23058aac2faf6fd48c0768185809193ff2dc32d8573ee5b8079305f858a91d5f2fe000dea0c12f7037431eb3ab9a4a072d83bab5dbdf2d77d2cc730cd958a284e2c6c4df44dd30fbefc6c084ebb8636", 0xd6}, {&(0x7f0000000ac0)="9db452cebb4c9d7893178dcb1bd8bc385323f160a44bd5feb345d223f12436d777d6d49089ecca855ace6141bacd543ee5617423ef727c254f25d8f4084559460fb6b5d6f4af2e887dba9c4c0061520440b6d6f8e944f3840e5452c836d6233f2d6085d1d2a3a97129cf47535664f4d2a74eeb77c0959a356a38deaacb", 0x7d}], 0x7, 0x80000001, 0xcf4d)
symlinkat(&(0x7f0000000000)='./file0\x00', r4, &(0x7f0000000040)='./file0\x00')
linkat(r4, &(0x7f00000000c0)='./file0\x00', r4, &(0x7f0000000100)='./file1\x00', 0x1000)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r4, 0x81f8943c, &(0x7f00000004c0))

[ 2572.074279] FAULT_INJECTION: forcing a failure.
[ 2572.074279] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2572.075848] CPU: 1 PID: 18523 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2572.076849] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2572.078044] Call Trace:
[ 2572.078318]  <TASK>
[ 2572.078550]  dump_stack_lvl+0x8b/0xb3
[ 2572.078983]  should_fail.cold+0x5/0xa
[ 2572.079406]  prepare_alloc_pages+0x17b/0x500
[ 2572.079936]  __alloc_pages+0x131/0x4e0
[ 2572.080343]  ? lock_downgrade+0x6d0/0x6d0
[ 2572.080785]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2572.081437]  ? xa_load+0x158/0x290
[ 2572.081815]  ? xas_find_conflict+0x9e0/0x9e0
[ 2572.082292]  alloc_pages+0x1a0/0x2f0
[ 2572.082696]  filemap_alloc_folio+0x8e/0xb0
[ 2572.083177]  page_cache_ra_unbounded+0x1af/0x540
[ 2572.083706]  ondemand_readahead+0x642/0x1270
[ 2572.084183]  page_cache_async_ra+0xf8/0x130
[ 2572.084650]  filemap_get_pages+0x686/0x1680
[ 2572.085123]  ? filemap_add_folio+0x1b0/0x1b0
[ 2572.085595]  ? io_schedule_timeout+0x140/0x140
[ 2572.086086]  ? copy_page_to_iter+0x688/0x1190
[ 2572.086604]  ? lock_is_held_type+0xd7/0x130
[ 2572.087083]  ? __cond_resched+0x13/0x20
[ 2572.087545]  filemap_read+0x311/0xba0
[ 2572.087963]  ? filemap_get_pages+0x1680/0x1680
[ 2572.088484]  ? filter_irq_stacks+0x90/0x90
[ 2572.088972]  ? __kasan_kmalloc+0x81/0xa0
[ 2572.089519]  ? alloc_pipe_info+0x1e0/0x580
[ 2572.089979]  ? splice_direct_to_actor+0x700/0x8e0
[ 2572.090527]  ? do_splice_direct+0x1b8/0x280
[ 2572.090987]  ? do_sendfile+0xad7/0x1230
[ 2572.091438]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2572.091946]  ? do_syscall_64+0x3b/0x90
[ 2572.092411]  generic_file_read_iter+0x3c9/0x530
[ 2572.092961]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2572.093596]  ? __fsnotify_parent+0x498/0xa60
[ 2572.094105]  ext4_file_read_iter+0x184/0x3f0
[ 2572.094616]  generic_file_splice_read+0x3b9/0x5d0
[ 2572.095188]  ? pipe_to_user+0x170/0x170
[ 2572.095651]  ? security_file_permission+0xb1/0xd0
[ 2572.096204]  ? pipe_to_user+0x170/0x170
[ 2572.096653]  do_splice_to+0x1bc/0x240
[ 2572.097087]  ? inode_has_perm+0x1d0/0x1d0
[ 2572.097558]  splice_direct_to_actor+0x2c7/0x8e0
[ 2572.098088]  ? pipe_to_sendpage+0x380/0x380
[ 2572.098583]  ? do_splice_to+0x240/0x240
[ 2572.099081]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2572.099714]  ? security_file_permission+0xb1/0xd0
[ 2572.100269]  do_splice_direct+0x1b8/0x280
[ 2572.100746]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2572.101301]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2572.101927]  ? security_file_permission+0xb1/0xd0
[ 2572.102483]  do_sendfile+0xad7/0x1230
[ 2572.102932]  ? bit_wait_io_timeout+0x160/0x160
[ 2572.103452]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2572.104038]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2572.104660]  ? vfs_write+0x422/0xac0
[ 2572.105086]  __x64_sys_sendfile64+0x1cd/0x210
[ 2572.105602]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2572.106204]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2572.106787]  do_syscall_64+0x3b/0x90
[ 2572.107217]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2572.107795] RIP: 0033:0x7fdbfaa6cb19
[ 2572.108211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2572.110299] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2572.111158] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2572.111958] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2572.112762] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2572.113565] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2572.114369] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2572.115203]  </TASK>
[ 2572.115872] Call Trace:
[ 2572.115903] 
[ 2572.115906] ======================================================
[ 2572.115910] WARNING: possible circular locking dependency detected
[ 2572.115914] 5.18.0-rc3-next-20220422 #1 Not tainted
[ 2572.115920] ------------------------------------------------------
[ 2572.115924] syz-executor.2/18533 is trying to acquire lock:
[ 2572.115930] ffffffff851f6b58 ((console_sem).lock){-.-.}-{2:2}, at: down_trylock+0xe/0x60
[ 2572.115956] 
[ 2572.115956] but task is already holding lock:
[ 2572.115959] ffff888008e5c820 (&ctx->lock){-.-.}-{2:2}, at: __perf_install_in_context+0x12d/0xa40
[ 2572.115990] 
[ 2572.115990] which lock already depends on the new lock.
[ 2572.115990] 
[ 2572.115993] 
[ 2572.115993] the existing dependency chain (in reverse order) is:
[ 2572.115997] 
[ 2572.115997] -> #3 (&ctx->lock){-.-.}-{2:2}:
[ 2572.116010]        _raw_spin_lock+0x2a/0x40
[ 2572.116027]        __perf_event_task_sched_out+0x537/0x1970
[ 2572.116044]        __schedule+0xec4/0x2450
[ 2572.116056]        preempt_schedule_common+0x45/0xc0
[ 2572.116070]        __cond_resched+0x13/0x20
[ 2572.116083]        __mutex_lock+0xa3/0x14c0
[ 2572.116096]        __do_sys_perf_event_open+0x1d13/0x3040
[ 2572.116113]        do_syscall_64+0x3b/0x90
[ 2572.116132]        entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2572.116143] 
[ 2572.116143] -> #2 (&rq->__lock){-.-.}-{2:2}:
[ 2572.116156]        _raw_spin_lock_nested+0x30/0x40
[ 2572.116173]        raw_spin_rq_lock_nested+0x1e/0x30
[ 2572.116191]        task_fork_fair+0x63/0x4d0
[ 2572.116205]        sched_cgroup_fork+0x343/0x490
[ 2572.116216]        copy_process+0x4082/0x6db0
[ 2572.116233]        kernel_clone+0xe7/0xa60
[ 2572.116248]        kernel_thread+0xb5/0xf0
[ 2572.116263]        rest_init+0x24/0x250
[ 2572.116274]        arch_call_rest_init+0xf/0x14
[ 2572.116289]        start_kernel+0x4cd/0x4ee
[ 2572.116301]        secondary_startup_64_no_verify+0xe0/0xeb
[ 2572.116315] 
[ 2572.116315] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[ 2572.116328]        _raw_spin_lock_irqsave+0x39/0x50
[ 2572.116344]        try_to_wake_up+0xa5/0x1060
[ 2572.116355]        up+0x75/0xb0
[ 2572.116363]        __up_console_sem+0x6e/0x80
[ 2572.116377]        console_unlock+0x603/0xd40
[ 2572.116390]        con_install+0x14e/0x5c0
[ 2572.116401]        tty_init_dev.part.0+0xa0/0x610
[ 2572.116416]        tty_open+0xbb9/0x1370
[ 2572.116428]        chrdev_open+0x268/0x6d0
[ 2572.116443]        do_dentry_open+0x49f/0x10b0
[ 2572.116459]        path_openat+0x1a11/0x2870
[ 2572.116472]        do_filp_open+0x1aa/0x400
[ 2572.116486]        do_sys_openat2+0x16d/0x4c0
[ 2572.116502]        __x64_sys_openat+0x13f/0x1f0
[ 2572.116512]        do_syscall_64+0x3b/0x90
[ 2572.116527]        entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2572.116538] 
[ 2572.116538] -> #0 ((console_sem).lock){-.-.}-{2:2}:
[ 2572.116551]        __lock_acquire+0x2c2f/0x6120
[ 2572.116564]        lock_acquire+0x1a2/0x530
[ 2572.116578]        _raw_spin_lock_irqsave+0x39/0x50
[ 2572.116595]        down_trylock+0xe/0x60
[ 2572.116604]        __down_trylock_console_sem+0x3b/0xd0
[ 2572.116618]        vprintk_emit+0x162/0x550
[ 2572.116631]        vprintk+0x80/0x90
[ 2572.116644]        _printk+0xba/0xed
[ 2572.116658]        show_trace_log_lvl+0x57/0x2bb
[ 2572.116670]        ex_handler_msr+0x311/0x3a0
[ 2572.116685]        fixup_exception+0x307/0xff0
[ 2572.116700]        gp_try_fixup_and_notify.constprop.0+0x1e/0x120
[ 2572.116719]        exc_general_protection+0xe4/0x210
[ 2572.116736]        asm_exc_general_protection+0x1e/0x30
[ 2572.116747]        x86_pmu_enable_event+0x264/0x2f0
[ 2572.116763]        amd_pmu_enable_all+0x12c/0x1a0
[ 2572.116779]        x86_pmu_enable+0x580/0xd90
[ 2572.116793]        ctx_resched+0x2b0/0x390
[ 2572.116808]        __perf_install_in_context+0x285/0xa40
[ 2572.116824]        remote_function+0x125/0x1b0
[ 2572.116835]        generic_exec_single+0x203/0x300
[ 2572.116852]        smp_call_function_single+0x189/0x460
[ 2572.116869]        task_function_call+0xe5/0x170
[ 2572.116879]        perf_install_in_context+0x2cb/0x590
[ 2572.116892]        __do_sys_perf_event_open+0x1bf0/0x3040
[ 2572.116908]        do_syscall_64+0x3b/0x90
[ 2572.116924]        entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2572.116935] 
[ 2572.116935] other info that might help us debug this:
[ 2572.116935] 
[ 2572.116938] Chain exists of:
[ 2572.116938]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[ 2572.116938] 
[ 2572.116952]  Possible unsafe locking scenario:
[ 2572.116952] 
[ 2572.116955]        CPU0                    CPU1
[ 2572.116957]        ----                    ----
[ 2572.116960]   lock(&ctx->lock);
[ 2572.116965]                                lock(&rq->__lock);
[ 2572.116971]                                lock(&ctx->lock);
[ 2572.116977]   lock((console_sem).lock);
[ 2572.116983] 
[ 2572.116983]  *** DEADLOCK ***
[ 2572.116983] 
[ 2572.116985] 4 locks held by syz-executor.2/18533:
[ 2572.116992]  #0: ffff888008134960 (&sig->exec_update_lock){++++}-{3:3}, at: __do_sys_perf_event_open+0x1023/0x3040
[ 2572.117024]  #1: ffff888008e5c8b0 (&ctx->mutex){+.+.}-{3:3}, at: __do_sys_perf_event_open+0x17cd/0x3040
[ 2572.117055]  #2: ffff88806cf3f220 (&cpuctx_lock){-.-.}-{2:2}, at: __perf_install_in_context+0xeb/0xa40
[ 2572.117084]  #3: ffff888008e5c820 (&ctx->lock){-.-.}-{2:2}, at: __perf_install_in_context+0x12d/0xa40
[ 2572.117114] 
[ 2572.117114] stack backtrace:
[ 2572.117116] CPU: 1 PID: 18533 Comm: syz-executor.2 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2572.117128] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2572.117136] Call Trace:
[ 2572.117138]  <TASK>
[ 2572.117142]  dump_stack_lvl+0x8b/0xb3
[ 2572.117158]  check_noncircular+0x25f/0x2e0
[ 2572.117173]  ? print_circular_bug+0x450/0x450
[ 2572.117187]  ? memcpy+0x39/0x60
[ 2572.117200]  ? desc_read+0x2c3/0x370
[ 2572.117216]  ? memcpy+0x39/0x60
[ 2572.117228]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2572.117247]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2572.117264]  ? vsnprintf+0x4e2/0x1770
[ 2572.117276]  __lock_acquire+0x2c2f/0x6120
[ 2572.117294]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 2572.117313]  lock_acquire+0x1a2/0x530
[ 2572.117327]  ? down_trylock+0xe/0x60
[ 2572.117338]  ? lock_release+0x750/0x750
[ 2572.117354]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2572.117374]  ? vprintk+0x80/0x90
[ 2572.117388]  _raw_spin_lock_irqsave+0x39/0x50
[ 2572.117406]  ? down_trylock+0xe/0x60
[ 2572.117417]  down_trylock+0xe/0x60
[ 2572.117428]  ? vprintk+0x80/0x90
[ 2572.117442]  __down_trylock_console_sem+0x3b/0xd0
[ 2572.117456]  vprintk_emit+0x162/0x550
[ 2572.117472]  vprintk+0x80/0x90
[ 2572.117487]  _printk+0xba/0xed
[ 2572.117500]  ? record_print_text.cold+0x16/0x16
[ 2572.117516]  ? __lock_acquire+0xbac/0x6120
[ 2572.117533]  show_trace_log_lvl+0x57/0x2bb
[ 2572.117546]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2572.117564]  ? bsearch+0xa2/0xc0
[ 2572.117578]  ? cmp_ex_sort+0xc0/0xc0
[ 2572.117597]  ? search_extable+0x7f/0xb0
[ 2572.117607]  ? trim_init_extable+0x2f0/0x2f0
[ 2572.117622]  ex_handler_msr+0x311/0x3a0
[ 2572.117638]  fixup_exception+0x307/0xff0
[ 2572.117655]  gp_try_fixup_and_notify.constprop.0+0x1e/0x120
[ 2572.117677]  exc_general_protection+0xe4/0x210
[ 2572.117698]  asm_exc_general_protection+0x1e/0x30
[ 2572.117711] RIP: 0010:x86_pmu_enable_event+0x264/0x2f0
[ 2572.117729] Code: 74 78 e8 2f 1c 43 00 89 ef be 01 00 00 00 e8 43 35 3f 03 89 c5 e8 1c 1c 43 00 41 01 ec 4c 89 f2 44 89 f0 48 c1 ea 20 44 89 e1 <0f> 30 66 90 e8 03 1c 43 00 e9 7d fe ff ff e8 f9 1b 43 00 31 d2 4c
[ 2572.117741] RSP: 0018:ffff888044a2f940 EFLAGS: 00010016
[ 2572.117750] RAX: 00000000004000ff RBX: ffff8880438acac0 RCX: 00000000c0010202
[ 2572.117758] RDX: 000000000000000f RSI: ffffffff810104c4 RDI: 0000000000000003
[ 2572.117766] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000001
[ 2572.117773] R10: ffffffff81015bed R11: 0000000000000000 R12: 00000000c0010202
[ 2572.117780] R13: 0000020000000000 R14: 0000000f004000ff R15: ffffffff81015b60
[ 2572.117788]  ? amd_pmu_disable_virt+0xa0/0xa0
[ 2572.117808]  ? amd_pmu_addr_offset+0x8d/0x220
[ 2572.117827]  ? x86_pmu_enable_event+0x254/0x2f0
[ 2572.117846]  amd_pmu_enable_all+0x12c/0x1a0
[ 2572.117865]  x86_pmu_enable+0x580/0xd90
[ 2572.117880]  ? amd_pmu_disable_virt+0xa0/0xa0
[ 2572.117901]  ctx_resched+0x2b0/0x390
[ 2572.117919]  __perf_install_in_context+0x285/0xa40
[ 2572.117936]  ? lock_downgrade+0x6d0/0x6d0
[ 2572.117951]  ? ctx_resched+0x390/0x390
[ 2572.117967]  remote_function+0x125/0x1b0
[ 2572.117979]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2572.117998]  ? perf_duration_warn+0x40/0x40
[ 2572.118011]  generic_exec_single+0x203/0x300
[ 2572.118029]  smp_call_function_single+0x189/0x460
[ 2572.118048]  ? perf_duration_warn+0x40/0x40
[ 2572.118061]  ? generic_exec_single+0x300/0x300
[ 2572.118079]  ? perf_duration_warn+0x40/0x40
[ 2572.118093]  ? lock_is_held_type+0xd7/0x130
[ 2572.118105]  ? ctx_resched+0x390/0x390
[ 2572.118121]  task_function_call+0xe5/0x170
[ 2572.118133]  ? pmu_dev_release+0x20/0x20
[ 2572.118144]  ? ctx_resched+0x390/0x390
[ 2572.118164]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2572.118185]  ? exclusive_event_installable+0x254/0x320
[ 2572.118198]  ? lock_is_held_type+0xd7/0x130
[ 2572.118211]  perf_install_in_context+0x2cb/0x590
[ 2572.118226]  ? perf_group_attach+0x450/0x450
[ 2572.118239]  ? lock_is_held_type+0xd7/0x130
[ 2572.118252]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2572.118270]  ? exclusive_event_installable+0x254/0x320
[ 2572.118285]  __do_sys_perf_event_open+0x1bf0/0x3040
[ 2572.118306]  ? __up_read+0x192/0x710
[ 2572.118318]  ? perf_remove_from_context+0x260/0x260
[ 2572.118336]  ? up_write+0x460/0x460
[ 2572.118351]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2572.118366]  do_syscall_64+0x3b/0x90
[ 2572.118383]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2572.118395] RIP: 0033:0x7fbc18cb2b19
[ 2572.118403] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2572.118415] RSP: 002b:00007fbc16228188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[ 2572.118425] RAX: ffffffffffffffda RBX: 00007fbc18dc5f60 RCX: 00007fbc18cb2b19
[ 2572.118433] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000020000280
[ 2572.118440] RBP: 00007fbc18d0cf6d R08: 0000000000000000 R09: 0000000000000000
[ 2572.118448] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[ 2572.118455] R13: 00007fffa38ad6bf R14: 00007fbc16228300 R15: 0000000000022000
[ 2572.118468]  </TASK>
05:32:19 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000017)

05:32:19 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

[ 2572.224745]  <TASK>
[ 2572.224753]  amd_pmu_enable_all+0x12c/0x1a0
[ 2572.224775]  x86_pmu_enable+0x580/0xd90
[ 2572.224791]  ? amd_pmu_disable_virt+0xa0/0xa0
[ 2572.224813]  ctx_resched+0x2b0/0x390
[ 2572.224831]  __perf_install_in_context+0x285/0xa40
[ 2572.224849]  ? lock_downgrade+0x6d0/0x6d0
[ 2572.224864]  ? ctx_resched+0x390/0x390
[ 2572.224881]  remote_function+0x125/0x1b0
[ 2572.224894]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2572.224913]  ? perf_duration_warn+0x40/0x40
[ 2572.224926]  generic_exec_single+0x203/0x300
[ 2572.224945]  smp_call_function_single+0x189/0x460
05:32:19 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

[ 2572.224964]  ? perf_duration_warn+0x40/0x40
[ 2572.224977]  ? generic_exec_single+0x300/0x300
[ 2572.224996]  ? perf_duration_warn+0x40/0x40
[ 2572.225010]  ? lock_is_held_type+0xd7/0x130
[ 2572.225023]  ? ctx_resched+0x390/0x390
[ 2572.225040]  task_function_call+0xe5/0x170
[ 2572.225052]  ? pmu_dev_release+0x20/0x20
[ 2572.225064]  ? ctx_resched+0x390/0x390
[ 2572.225081]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2572.225100]  ? exclusive_event_installable+0x254/0x320
[ 2572.225114]  ? lock_is_held_type+0xd7/0x130
[ 2572.225128]  perf_install_in_context+0x2cb/0x590
[ 2572.225143]  ? perf_group_attach+0x450/0x450
[ 2572.225157]  ? lock_is_held_type+0xd7/0x130
[ 2572.225170]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2572.225189]  ? exclusive_event_installable+0x254/0x320
[ 2572.225205]  __do_sys_perf_event_open+0x1bf0/0x3040
[ 2572.225226]  ? __up_read+0x192/0x710
[ 2572.225238]  ? perf_remove_from_context+0x260/0x260
[ 2572.225257]  ? up_write+0x460/0x460
[ 2572.225273]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2572.225289]  do_syscall_64+0x3b/0x90
[ 2572.225306]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2572.225319] RIP: 0033:0x7fbc18cb2b19
[ 2572.225328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2572.225340] RSP: 002b:00007fbc16228188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
05:32:19 executing program 3:
r0 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80))
symlinkat(&(0x7f0000000000)='./file0\x00', r0, &(0x7f0000000040)='./file0\x00')
linkat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000000100)='./file1\x00', 0x1000)
kcmp(0xffffffffffffffff, 0x0, 0x1, r0, 0xffffffffffffffff)
r1 = clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x97)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000080)=<r3=>0x0)
capset(&(0x7f0000000340)={0x20080522, r3}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
r4 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCGSID(r4, 0x5429, &(0x7f0000000080)=<r5=>0x0)
r6 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r6, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
write$P9_RREADDIR(r6, &(0x7f00000004c0)=ANY=[@ANYBLOB="3000000029010001ffffff020100000006000000000000000400000000000000200d002e2f66696c65302f66696c65304db28a7b31c1a049bb7d29e8bd6a332a8ff8919b9307c511aa2b0d6039c3150ee320027a8a91701be2197943399784245dcdd0c46fd7376364c304e968bf06974e77151d42261659942e52cee8595db0b79aff5293597ef811f967845fc223e4b71fe6a93af97f5469be"], 0x30)
capset(&(0x7f0000000340)={0x20080522, r5}, &(0x7f0000000380)={0x4, 0x407, 0x1000008, 0xffffff01, 0x8, 0x3})
r7 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv2(r7, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
clone3(&(0x7f0000000200)={0x4080000, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x14}, &(0x7f0000000100)=""/103, 0x67, &(0x7f0000000180)=""/14, &(0x7f00000001c0)=[r1, r3, r5, r1, r1], 0x5, {r7}}, 0x58)

05:32:19 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x2)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
sendfile(r1, r0, 0x0, 0x80000001)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

05:32:19 executing program 7:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000018)

[ 2572.225352] RAX: ffffffffffffffda RBX: 00007fbc18dc5f60 RCX: 00007fbc18cb2b19
[ 2572.225361] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000020000280
[ 2572.225369] RBP: 00007fbc18d0cf6d R08: 0000000000000000 R09: 0000000000000000
[ 2572.225377] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[ 2572.225385] R13: 00007fffa38ad6bf R14: 00007fbc16228300 R15: 0000000000022000
[ 2572.225398]  </TASK>
[ 2572.246947] Call Trace:
[ 2572.246959]  <IRQ>
[ 2572.246970]  amd_pmu_enable_all+0x12c/0x1a0
[ 2572.247012]  x86_pmu_enable+0x580/0xd90
05:32:20 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0xe0800, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>r0, {0x122b}}, './file0\x00'})
ioctl$CDROM_LOCKDOOR(r0, 0x5329, 0x0)
ioctl$CDROMPAUSE(r1, 0x5301)
ioctl$DVD_AUTH(r0, 0x80041284, 0x0)

05:32:20 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x2}}, 0x267055344c59a106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000002)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xf5)

[ 2572.247045]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2572.247082]  ? __sanitizer_cov_trace_cmp4+0x1c/0x70
[ 2572.247122]  perf_event_task_tick+0xa7c/0x1030
[ 2572.247160]  scheduler_tick+0x17e/0x350
[ 2572.247189]  update_process_times+0x18b/0x1f0
[ 2572.247226]  tick_sched_handle+0x9b/0x180
[ 2572.247253]  ? tick_sched_do_timer+0x470/0x470
[ 2572.247282]  tick_sched_timer+0xee/0x120
[ 2572.247310]  ? tick_sched_do_timer+0x470/0x470
05:32:20 executing program 4:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = eventfd2(0x1, 0x0)
close(r2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x8001}, 0x1c)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x7)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
preadv2(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f00000003c0)=""/249, 0xf9}], 0x1, 0x4000000, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @dev}, &(0x7f0000000300)=0x10, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x1, 0x7, 0x7})
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001) (fail_nth: 52)

[ 2572.247339]  __hrtimer_run_queues+0x1ca/0xbd0
[ 2572.247382]  ? hrtimer_sleeper_start_expires+0x80/0x80
[ 2572.247420]  ? ktime_get_update_offsets_now+0x256/0x360
[ 2572.247451]  hrtimer_interrupt+0x315/0x770
[ 2572.247495]  __sysvec_apic_timer_interrupt+0x144/0x4f0
[ 2572.247533]  sysvec_apic_timer_interrupt+0x89/0xc0
[ 2572.247559]  </IRQ>
[ 2572.247566]  <TASK>
[ 2572.247573]  asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2572.247600] RIP: 0010:generic_exec_single+0x20c/0x300
[ 2572.247638] Code: 31 e4 4c 89 ef e8 24 1c 06 03 e9 ec fe ff ff e8 3a 04 0a 00 e8 b5 c0 10 00 4c 89 ef e8 0d 1c 06 03 e8 28 c2 10 00 fb 45 31 e4 <e9> cc fe ff ff e8 1a 04 0a 00 0f 0b e9 73 ff ff ff 4c 89 f7 e8 7b
[ 2572.247661] RSP: 0018:ffff888044a2fb08 EFLAGS: 00000246
[ 2572.247682] RAX: 0000000000000007 RBX: 0000000000000200 RCX: 1ffffffff0b1d299
[ 2572.247698] RDX: 0000000000000000 RSI: ffffffff814adf31 RDI: ffffffff813a1cb8
[ 2572.247715] RBP: ffffffff81525f80 R08: 0000000000000000 R09: 0000000000000000
[ 2572.247730] R10: ffffffff814adf18 R11: 0000000000000001 R12: 0000000000000000
[ 2572.247746] R13: ffff888044a2fc38 R14: ffff888044a2fb88 R15: 0000000000000200
[ 2572.247764]  ? perf_duration_warn+0x40/0x40
[ 2572.247790]  ? trace_hardirqs_on+0x38/0x190
[ 2572.247820]  ? trace_hardirqs_on+0x51/0x190
[ 2572.247847]  ? generic_exec_single+0x208/0x300
[ 2572.247884]  ? generic_exec_single+0x208/0x300
[ 2572.247920]  smp_call_function_single+0x189/0x460
[ 2572.247957]  ? perf_duration_warn+0x40/0x40
[ 2572.247983]  ? generic_exec_single+0x300/0x300
[ 2572.248018]  ? perf_duration_warn+0x40/0x40
[ 2572.248045]  ? lock_is_held_type+0xd7/0x130
[ 2572.248070]  ? ctx_resched+0x390/0x390
[ 2572.248102]  task_function_call+0xe5/0x170
[ 2572.248127]  ? pmu_dev_release+0x20/0x20
[ 2572.248150]  ? ctx_resched+0x390/0x390
[ 2572.248184]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2572.248220]  ? exclusive_event_installable+0x254/0x320
[ 2572.248248]  ? lock_is_held_type+0xd7/0x130
[ 2572.248274]  perf_install_in_context+0x2cb/0x590
[ 2572.248304]  ? perf_group_attach+0x450/0x450
[ 2572.248331]  ? lock_is_held_type+0xd7/0x130
[ 2572.248356]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2572.248393]  ? exclusive_event_installable+0x254/0x320
[ 2572.248424]  __do_sys_perf_event_open+0x1bf0/0x3040
[ 2572.248465]  ? __up_read+0x192/0x710
[ 2572.248489]  ? perf_remove_from_context+0x260/0x260
[ 2572.248525]  ? up_write+0x460/0x460
[ 2572.248558]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2572.248587]  do_syscall_64+0x3b/0x90
[ 2572.248621]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2572.248645] RIP: 0033:0x7fbc18cb2b19
[ 2572.248664] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2572.248691] RSP: 002b:00007fbc16228188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[ 2572.248714] RAX: ffffffffffffffda RBX: 00007fbc18dc5f60 RCX: 00007fbc18cb2b19
[ 2572.248731] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000020000280
[ 2572.248746] RBP: 00007fbc18d0cf6d R08: 0000000000000000 R09: 0000000000000000
[ 2572.248761] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[ 2572.248776] R13: 00007fffa38ad6bf R14: 00007fbc16228300 R15: 0000000000022000
[ 2572.248802]  </TASK>
[ 2572.552821] FAULT_INJECTION: forcing a failure.
[ 2572.552821] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2572.552857] CPU: 0 PID: 18712 Comm: syz-executor.4 Not tainted 5.18.0-rc3-next-20220422 #1
[ 2572.552884] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2572.552899] Call Trace:
[ 2572.552906]  <TASK>
[ 2572.552914]  dump_stack_lvl+0x8b/0xb3
[ 2572.552960]  should_fail.cold+0x5/0xa
[ 2572.552993]  prepare_alloc_pages+0x17b/0x500
[ 2572.553032]  ? lock_acquire+0x45a/0x530
[ 2572.553065]  __alloc_pages+0x131/0x4e0
[ 2572.553087]  ? lock_downgrade+0x6d0/0x6d0
[ 2572.553116]  ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10
[ 2572.553142]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2572.553187]  ? xa_load+0x158/0x290
[ 2572.553212]  ? xas_find_conflict+0x9e0/0x9e0
[ 2572.553238]  alloc_pages+0x1a0/0x2f0
[ 2572.553267]  filemap_alloc_folio+0x8e/0xb0
[ 2572.553302]  page_cache_ra_unbounded+0x1af/0x540
[ 2572.553341]  ondemand_readahead+0x642/0x1270
[ 2572.553378]  page_cache_async_ra+0xf8/0x130
[ 2572.553410]  filemap_get_pages+0x686/0x1680
[ 2572.553448]  ? lock_downgrade+0x6d0/0x6d0
[ 2572.553481]  ? filemap_add_folio+0x1b0/0x1b0
[ 2572.553516]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2572.553554]  ? copy_page_to_iter+0x688/0x1190
[ 2572.553594]  filemap_read+0x311/0xba0
[ 2572.553636]  ? filemap_get_pages+0x1680/0x1680
[ 2572.553671]  ? filter_irq_stacks+0x90/0x90
[ 2572.553703]  ? __kasan_kmalloc+0x81/0xa0
[ 2572.553725]  ? alloc_pipe_info+0x1e0/0x580
[ 2572.553750]  ? splice_direct_to_actor+0x700/0x8e0
[ 2572.553785]  ? do_splice_direct+0x1b8/0x280
[ 2572.553818]  ? do_sendfile+0xad7/0x1230
[ 2572.553841]  ? __x64_sys_sendfile64+0x1cd/0x210
[ 2572.553865]  ? do_syscall_64+0x3b/0x90
[ 2572.553902]  generic_file_read_iter+0x3c9/0x530
[ 2572.553940]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2572.553977]  ? __fsnotify_parent+0x498/0xa60
[ 2572.554001]  ext4_file_read_iter+0x184/0x3f0
[ 2572.554034]  generic_file_splice_read+0x3b9/0x5d0
[ 2572.554071]  ? pipe_to_user+0x170/0x170
[ 2572.554111]  ? security_file_permission+0xb1/0xd0
[ 2572.554143]  ? pipe_to_user+0x170/0x170
[ 2572.554177]  do_splice_to+0x1bc/0x240
[ 2572.554209]  ? inode_has_perm+0x1d0/0x1d0
[ 2572.554234]  splice_direct_to_actor+0x2c7/0x8e0
[ 2572.554271]  ? pipe_to_sendpage+0x380/0x380
[ 2572.554307]  ? do_splice_to+0x240/0x240
[ 2572.554340]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2572.554377]  ? security_file_permission+0xb1/0xd0
[ 2572.554410]  do_splice_direct+0x1b8/0x280
[ 2572.554445]  ? splice_direct_to_actor+0x8e0/0x8e0
[ 2572.554483]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2572.554520]  ? security_file_permission+0xb1/0xd0
[ 2572.554554]  do_sendfile+0xad7/0x1230
[ 2572.554581]  ? bit_wait_io_timeout+0x160/0x160
[ 2572.554613]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[ 2572.554641]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2572.554679]  ? vfs_write+0x422/0xac0
[ 2572.554706]  __x64_sys_sendfile64+0x1cd/0x210
[ 2572.554732]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[ 2572.554759]  ? __sanitizer_cov_trace_cmp4+0x1c/0x70
[ 2572.554796]  ? fpregs_assert_state_consistent+0xbc/0xe0
[ 2572.554838]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2572.554866]  do_syscall_64+0x3b/0x90
[ 2572.554898]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2572.554923] RIP: 0033:0x7fdbfaa6cb19
[ 2572.554943] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2572.554968] RSP: 002b:00007fdbf7fe2188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2572.554992] RAX: ffffffffffffffda RBX: 00007fdbfab7ff60 RCX: 00007fdbfaa6cb19
[ 2572.555008] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[ 2572.555023] RBP: 00007fdbf7fe21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2572.555037] R10: 0000000080000001 R11: 0000000000000246 R12: 0000000000000002
[ 2572.555052] R13: 00007fffaecdc70f R14: 00007fdbf7fe2300 R15: 0000000000022000
[ 2572.555076]  </TASK>
[ 2572.641759] debugfs: Directory 'loop0' with parent 'block' already present!

VM DIAGNOSIS:
05:32:19  Registers:
info registers vcpu 0
RAX=ffffffff8108f6a0 RBX=000000000049258a RCX=0000000000000000 RDX=ffff88803c661b00
RSI=ffffffff8135d2d9 RDI=ffffffff85093ec0 RBP=0000000000000000 RSP=ffff88806ce09e88
R8 =0000000000000000 R9 =ffffffff858e84d7 R10=ffffffff8135d2d0 R11=0000000000000001
R12=00000256d336e8cd R13=0000000000000000 R14=0000000000000000 R15=dffffc0000000000
RIP=ffffffff8440382c RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f9bf3534718 CR3=000000003e5f8000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff4ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
YMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM04=0000000000000000 0000000000000000 0000000000000000 00000000000000ff
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff823f0ebc RDI=ffffffff873d6420 RBP=ffffffff873d63e0 RSP=ffff888044a2f1f8
R8 =000000000000003f R9 =0000000000000068 R10=ffffffff823d830b R11=000000000000000a
R12=0000000000000020 R13=fffffbfff0e7accf R14=fffffbfff0e7ac86 R15=dffffc0000000000
RIP=ffffffff823f0f11 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007fbc16228700 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fbc18dc6018 CR3=0000000043ce4000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff4ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007fbc18d997c0 00007fbc18d997c8
YMM02=0000000000000000 0000000000000000 00007fbc18d997e0 00007fbc18d997c0
YMM03=0000000000000000 0000000000000000 00007fbc18d997c8 00007fbc18d997c0
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000