, 0x0, 0x7ffffff9)

08:46:00 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000020100000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

[ 3017.210852] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3017.228452] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:46:15 executing program 6:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000020000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:46:15 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000024000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

[ 3031.678247] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:46:15 executing program 4:
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x0)
r0 = syz_open_procfs$userns(0x0, &(0x7f0000000000))
preadv(r0, &(0x7f0000000640)=[{&(0x7f0000000280)=""/241, 0xf1}, {&(0x7f0000000140)=""/14, 0xe}, {&(0x7f0000000180)=""/74, 0x4a}, {&(0x7f0000000200)=""/25, 0x19}, {&(0x7f0000000040)=""/150, 0x96}, {&(0x7f0000000380)=""/98, 0x62}, {&(0x7f0000000400)=""/167, 0xa7}, {&(0x7f00000004c0)=""/198, 0xc6}], 0x8, 0x5, 0x8)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0xa, 0x4010, 0xffffffffffffffff, 0x8000000)
ioctl$EXT4_IOC_CLEAR_ES_CACHE(r0, 0x6628)
r1 = syz_io_uring_setup(0x6c75, &(0x7f00000002c0), &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r1, 0x0, 0x0}, 0x0)
r4 = syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x800, 0x3, &(0x7f0000000c00)=[{&(0x7f00000009c0)="64fdda1101af475433a537e3225fa4cbcc30c2a4fc08858a9d86dbe779cf05302117a2d9805dd6dc649bc0d5a3", 0x2d, 0x7}, {&(0x7f0000000a00)="cea29b3b1986db0f8a015cb690db341962dc00ad5b5f4d742bd60edfd898da3911331978807718a8fedde759fcafe0df9f98113e05a19d3443dc3cb6e926750647b061b63f0ae62e52e07ca0951b6021071e4376073f8875ede6f242f0f7c27cb16d7e3ff8a71785f639341213925a0188517e75ef247d162bebfad9c7daaf70a9d1d695b5842e3edfbacdcb8c609106143995b35747c54453cf6d1fd39a4517bc255a18da1ee8fb01114fc72e7fe3b31e80e68e5a4bcebca32f21c7592dc6abeb9960723329684e15fb1554", 0xcc, 0x2}, {&(0x7f0000000b00)="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", 0xfa, 0x3000000}], 0x8000, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@map_acorn}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}]})
openat(0xffffffffffffff9c, &(0x7f0000000840)='./file0\x00', 0x4000, 0x48)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000d00)=@IORING_OP_CLOSE={0x13, 0x4, 0x0, r4, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x7)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)

08:46:15 executing program 3:
sendmsg$NL80211_CMD_TDLS_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, 0x0, 0x20, 0x70bd2b, 0x25dfdbfd, {{}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4811}, 0x20048040)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000d4899b54b9f79265acd41230067662a0a0ea3e525ecb38a75c69015e57cba7e7305b030ff9325f552038a72b8f1dea5c54fbdea13a6dcc8fe119e4422bcd249d623108000000c3aab5f0", @ANYRES32=<r1=>r0, @ANYBLOB='\t\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
readv(0xffffffffffffffff, &(0x7f0000000280), 0x0)
fcntl$dupfd(r2, 0x0, r0)
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000a80)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x40002002, 0x1}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_WRITE={0x17, 0x4, 0x4004, @fd_index=0x1, 0x1, &(0x7f0000000000)="049dc01f80b2ff6ebe4243f8bb2e8bf150d8585e67f042cc2ea82b6cd71458a48743989d7a6830ca31f32dbab8359bfb96e3657be17df6765b171ffe62c8e31b51d9b8d50c4e986edef02748d859e614a7c7caee29328dea85b634b303197ed3375c5da77f9878adafea52e5ea3d33b7c6eda03fa0367561bbcfefdb3c4a81ebf004706fe696abe5a246a9f653b74c1450c05f38ab790141b8a9f7aec0314f865cd63bb6f5c76821d6d6585ffa5e2338aa177691690024", 0xb7, 0xe, 0x1}, 0x6)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000002e00)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000002e40)=@updsa={0x11c0, 0x10, 0x1, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x32}, @in6=@private0, {}, {0x0, 0x0, 0x0, 0x8}, {}, 0x0, 0x0, 0xa}, [@algo_crypt={0x48, 0x2, {{'cbc(aes)\x00'}}}, @algo_auth={0x69, 0x1, {{'xcbc(khazad)\x00'}, 0x108, "d8a7af74953d325fb3bc1f8aa6aa501e03ed48022e390172c1b0c3ed62ed00ae42"}}, @replay_val={0x10, 0xa, {0x70bd25, 0x70bd25, 0x1}}, @sec_ctx={0x100a, 0x8, {0x1006, 0x8, 0x0, 0x5, 0xffe, "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"}}]}, 0x11c0}}, 0x0)
syz_open_dev$vcsu(&(0x7f0000000100), 0xffffffff7fffffff, 0x20a100)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r4, 0x8901, &(0x7f0000001840)="fb")
ioctl$sock_ifreq(r4, 0x8910, &(0x7f0000000240)={'veth0_to_bond\x00', @ifru_map})
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0xfffffffffffff800, 0xe8, 0x3, 0x2})
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)='\x00')
syz_80211_inject_frame(&(0x7f0000000040)=@broadcast, &(0x7f0000000000)=ANY=[@ANYRES16=r0], 0x34)
r5 = ioctl$TUNGETDEVNETNS(0xffffffffffffffff, 0x54e3, 0x0)
ioctl$EXT4_IOC_MIGRATE(r5, 0x6609)

08:46:15 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8901, &(0x7f0000001840)="fb")
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
syz_80211_inject_frame(&(0x7f0000000040)=@device_b, &(0x7f0000000000)=ANY=[@ANYRES16=r1, @ANYRES32=0x0, @ANYRES16=r0], 0x34)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x8901, &(0x7f0000001840)="fb")
ioctl$sock_bt_hci(r2, 0x400448e3, &(0x7f0000000080)="568d2d3f02d5a2564d22d1466a705e1cc7b82d5ad1c394fe")

08:46:15 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='net/arp\x00')
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
recvmmsg$unix(r0, &(0x7f0000000200)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)=""/33, 0x21}, {&(0x7f0000000040)=""/48, 0x30}], 0x2, &(0x7f00000000c0)=[@cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x78}}, {{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000600)=""/4096, 0x1000}], 0x1, &(0x7f0000000180)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [<r2=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x68}}], 0x2, 0x10000, &(0x7f0000000280))
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r3, 0x8901, &(0x7f0000001840)="fb")
ioctl$PIO_FONT(r2, 0x4b61, &(0x7f0000001880)="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")
pread64(r3, 0x0, 0x0, 0x0)

08:46:15 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, 0x0, 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9)

[ 3031.695465] FAT-fs (loop6): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
08:46:15 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = dup2(r0, r0)
lstat(&(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x11, &(0x7f0000000240)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_9p2000}, {@noextend}, {@access_user}, {@cache_loose}, {@access_any}], [{@seclabel}, {@uid_lt={'uid<', r2}}, {@hash}]}})
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000180)="a9")
r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r4, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000080)={<r5=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r5, 0x3, r3, 0xa)
r6 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r6, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
perf_event_open(&(0x7f0000000300)={0x2, 0x80, 0x8, 0x0, 0x7, 0x54, 0x0, 0x0, 0x40082, 0x2, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x10001, 0x2, @perf_config_ext={0x0, 0x9}, 0x44002, 0x2, 0x5, 0x6, 0x80000000, 0x5, 0x1, 0x0, 0x1, 0x0, 0x7}, r5, 0x5, r6, 0x0)

[ 3031.757431] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:46:15 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r0, 0xf502, 0x0)
pread64(r0, 0x0, 0x7ffffffff000, 0x0)

08:46:15 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000025000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:46:15 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9)

08:46:15 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x8901, &(0x7f0000001840)="fb")
ioctl$sock_bt_hci(r0, 0x800448d5, &(0x7f00000002c0)="732f317f78fbe4f7fae1ec8da4568759f78cf9ce0ec560d5de02a548742ef5e4dae81e5af13b2e90fb4c1874d6fb9e5c3934d6e6dbad1532515d3668ec905ea5155ecb21a2ce725d34f8ea5a2fde73c73c585ecfe88b1eae094401c63fc1042430da8878d1f5811a7a03c541621de8b7b26e78dfda35483e9bc0ae7b7418fab9c0a56eb6408bf14fca6f77043d61b654bcddba48e7c03275831f1a7ad94ebe70091119f0cc3b3f3bc18872fce2d82efafc00beadd2128a7d7181d977a2801f4190b313d52441748052ee0c51d3c51f")
fcntl$dupfd(r1, 0x406, r2)
r3 = openat$zero(0xffffffffffffff9c, &(0x7f00000001c0), 0x20000, 0x0)
fallocate(r1, 0x4, 0x100, 0x5)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x8040, 0x14)
bind$bt_hci(r2, &(0x7f0000000280)={0x1f, 0x1, 0x1}, 0x6)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000140)=<r4=>0x0)
perf_event_open(&(0x7f00000000c0)={0x4, 0x80, 0x3, 0x3, 0x20, 0x0, 0x0, 0x1, 0x80002, 0xb9aff69790ad0dba, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0xb}, 0x4088, 0x4, 0x1000, 0x9, 0x6, 0x7ff, 0x4, 0x0, 0x80, 0x0, 0x3}, r4, 0x3, 0xffffffffffffffff, 0x3)
r5 = dup2(r3, r0)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000200)={'wlan0\x00'})
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000180)="a9")

08:46:15 executing program 6:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, 0x0, 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9)

08:46:15 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000026000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:46:15 executing program 4:
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x0)
r0 = syz_open_procfs$userns(0x0, &(0x7f0000000000))
preadv(r0, &(0x7f0000000640)=[{&(0x7f0000000280)=""/241, 0xf1}, {&(0x7f0000000140)=""/14, 0xe}, {&(0x7f0000000180)=""/74, 0x4a}, {&(0x7f0000000200)=""/25, 0x19}, {&(0x7f0000000040)=""/150, 0x96}, {&(0x7f0000000380)=""/98, 0x62}, {&(0x7f0000000400)=""/167, 0xa7}, {&(0x7f00000004c0)=""/198, 0xc6}], 0x8, 0x5, 0x8)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0xa, 0x4010, 0xffffffffffffffff, 0x8000000)
ioctl$EXT4_IOC_CLEAR_ES_CACHE(r0, 0x6628)
r1 = syz_io_uring_setup(0x6c75, &(0x7f00000002c0), &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r1, 0x0, 0x0}, 0x0)
r4 = syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x800, 0x3, &(0x7f0000000c00)=[{&(0x7f00000009c0)="64fdda1101af475433a537e3225fa4cbcc30c2a4fc08858a9d86dbe779cf05302117a2d9805dd6dc649bc0d5a3", 0x2d, 0x7}, {&(0x7f0000000a00)="cea29b3b1986db0f8a015cb690db341962dc00ad5b5f4d742bd60edfd898da3911331978807718a8fedde759fcafe0df9f98113e05a19d3443dc3cb6e926750647b061b63f0ae62e52e07ca0951b6021071e4376073f8875ede6f242f0f7c27cb16d7e3ff8a71785f639341213925a0188517e75ef247d162bebfad9c7daaf70a9d1d695b5842e3edfbacdcb8c609106143995b35747c54453cf6d1fd39a4517bc255a18da1ee8fb01114fc72e7fe3b31e80e68e5a4bcebca32f21c7592dc6abeb9960723329684e15fb1554", 0xcc, 0x2}, {&(0x7f0000000b00)="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", 0xfa, 0x3000000}], 0x8000, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@map_acorn}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}]})
openat(0xffffffffffffff9c, &(0x7f0000000840)='./file0\x00', 0x4000, 0x48)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000d00)=@IORING_OP_CLOSE={0x13, 0x4, 0x0, r4, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x7)

08:46:15 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9)

[ 3031.984925] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3032.076432] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3045.903935] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3045.905923] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3045.909564] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3045.914307] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:46:29 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x2, @perf_bp={0x0}, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x3, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f00000000c0)="4a5649ca64e3128fa8e995d7ac0f7732ce4436c9e8ecb52d48f3df02d4")
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
write$bt_hci(r1, &(0x7f0000000100)={0x1, @le_create_conn={{0x200d, 0x19}, {0x5, 0x354e, 0x1f, 0x1, @any, 0x20, 0x100, 0x1, 0x9, 0x7f, 0x2, 0xf0}}}, 0x1d)

08:46:29 executing program 3:
syz_80211_inject_frame(&(0x7f0000000040), &(0x7f0000000140)=ANY=[], 0x34)
syz_80211_inject_frame(&(0x7f0000000500)=@device_b, &(0x7f0000000540)=@mgmt_frame=@reassoc_req={@with_ht={{{0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x0, 0x1}, {0xca6}, @broadcast, @device_a, @random="59d8e48a8c39", {0x5}}, @ver_80211n={0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1}}, 0x40a, 0x5f5b, @device_b, {0x0, 0x6, @default_ap_ssid}, @void, @val={0x2d, 0x1a, {0x40, 0x3, 0x4, 0x0, {0xcebd, 0x6, 0x0, 0x1, 0x0, 0x1, 0x1, 0x2}, 0x30c, 0x7, 0x9}}, [{0xdd, 0x1a, "7188969412d70baed975e51d14467d86475dc20c8c752102b062"}]}, 0x66)
syz_80211_inject_frame(&(0x7f0000000000)=@device_b, &(0x7f0000000080)=@data_frame={@qos_no_ht={{@type10={{0x0, 0x2, 0xf, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1}, {0xe8}, @from_mac, @device_a, @broadcast, {0x2, 0x828}}, {0x3, 0x1, 0x2, 0x0, 0x3f}}, {@type10={{0x0, 0x2, 0x9, 0x1, 0x0, 0x0, 0x1, 0x1}, {0x4a}, @random="65dbe82f96ff", @broadcast, @random="d6f02c0ab3da", {0x6, 0x20}}, {0x8, 0x0, 0x2, 0x1, 0x20}}}, @a_msdu=[{@device_a, @device_a, 0x9d, "0ec0c30cea711c0d9103132ae0fd2df5af933261730436dd816bd7aff354cd8786303360b6e5a69ead77d966b35608c836a1d479800cd055e28ca14a8b0f56590f9a063daa4d19b8a173e7a7cc1023699a78eb5714e7325d07b2c61c24425fa3bef0413ac0526f85939bdb09968990f0eae0534be442b0d685f3b794913bdbfe491423433b09c8058d2b9be40252a024bb48393c5caee634c153248e00"}, {@device_a, @broadcast, 0xe8, "224f942d45225491908372dc526d5566dd56041a7165e6c6cd990eda3d06501d3d41551bd006e8e92141eff47a8bfa8ea6e6b05a35722870467317d66905b9276b0d48e79799c670f10fe43d7837c43eb24a38cef4aee22f0edae7ef391abbb4cc5ff81a2b595ad5e7b65adeb55853d8f7481d78130448660afdaedb2d9f96e63e7c498bbfc67e1be0dfe86be263faa2dc9a29970e74f22cd6c30ff8553ee53c8744d2e31be12745e286efeee85538d0b91fe84fb7ffae0bdefd0032bf48409e0cd6469078428766ca0742a716ca0125d53f8bd818ef38756f8837d34abb87d0cbdaedd1bbf5b752"}, {@device_a, @device_b, 0x6, "56e054818326"}, {@device_b, @broadcast, 0x9d, "b11e1e7aee547185e69c091a8f248615033f974560b596b00b848b6eef9213e70f0e2d8ad311d58923e3f4109f2df1e885e891b368aad46e1cdc37d1b617d7a92610c12d7ee27f144ca7d502322a8dba3b172281258fa03b11d6188a802899d418d1fa725544def17da9c3c2f3f725aa958323ddcaa00bfe5567bcfe2096e3548624502c9587df25ef6c95adf960429a4706787069ea96768613493024"}, {@broadcast, @device_a, 0x92, "2b19a62502e103ef667b08680fe7793903a052494258c2574b84d26b99fac73ebf23188bf615fcdca490055c4902c135bffb2d286fdc73ff7fda7d6ef9ad5f16be5b0f2e9cfb34868c253276c66611db23df3f9c805d5c4a4ce7be269e82589cf7a92c60657a5abf2d73e3acd3a88558eb2e9d58eee9703eb0f04cec2b39db1f64daa5037486f14645dede7425afc218a5b7"}, {@device_b, @broadcast, 0xdc, "6fc737c075b3e5a01a7acc8e66f4e8925f18409abca402450a1314cea39dc74e890483e967ebe1dfc917744f6150885d606a46d0a37c2a649c43d6c5c39a44ced3adde3358deeb782e91fe1ad1f1283c97bdd7ce267ecd76c71345a620826ecbd51cefe36c88b3e1ba1e4eda6fa3bee1945b30c8be8e17e98a766892ddea40934e28356fb64a3ef55420f3d96c04f725224f65b02bc56fe17d989ed970decf0d44fa1ca309a4af0dbfe49a29cdbe551af0490a9a44ed148e3efe293e73293fd7cfb02434a669f23cd4eb1b357e82bde4a01c2f029f4ee364de8ce592"}, {@device_b, @device_b, 0x33, "7aa87d2be25bde8782581eeee6998cf6468541688f749203e2610bf06f049a5c31d11df6ceac9b1e4b4f7901d74bcb81b75c99"}]}, 0x468)

08:46:29 executing program 4:
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x0)
r0 = syz_open_procfs$userns(0x0, &(0x7f0000000000))
preadv(r0, &(0x7f0000000640)=[{&(0x7f0000000280)=""/241, 0xf1}, {&(0x7f0000000140)=""/14, 0xe}, {&(0x7f0000000180)=""/74, 0x4a}, {&(0x7f0000000200)=""/25, 0x19}, {&(0x7f0000000040)=""/150, 0x96}, {&(0x7f0000000380)=""/98, 0x62}, {&(0x7f0000000400)=""/167, 0xa7}, {&(0x7f00000004c0)=""/198, 0xc6}], 0x8, 0x5, 0x8)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0xa, 0x4010, 0xffffffffffffffff, 0x8000000)
ioctl$EXT4_IOC_CLEAR_ES_CACHE(r0, 0x6628)
r1 = syz_io_uring_setup(0x6c75, &(0x7f00000002c0), &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r1, 0x0, 0x0}, 0x0)
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x800, 0x3, &(0x7f0000000c00)=[{&(0x7f00000009c0)="64fdda1101af475433a537e3225fa4cbcc30c2a4fc08858a9d86dbe779cf05302117a2d9805dd6dc649bc0d5a3", 0x2d, 0x7}, {&(0x7f0000000a00)="cea29b3b1986db0f8a015cb690db341962dc00ad5b5f4d742bd60edfd898da3911331978807718a8fedde759fcafe0df9f98113e05a19d3443dc3cb6e926750647b061b63f0ae62e52e07ca0951b6021071e4376073f8875ede6f242f0f7c27cb16d7e3ff8a71785f639341213925a0188517e75ef247d162bebfad9c7daaf70a9d1d695b5842e3edfbacdcb8c609106143995b35747c54453cf6d1fd39a4517bc255a18da1ee8fb01114fc72e7fe3b31e80e68e5a4bcebca32f21c7592dc6abeb9960723329684e15fb1554", 0xcc, 0x2}, {&(0x7f0000000b00)="71abd515586ff66b1a739836fbda188910fa3c10760438418cea9c176bd12185c67ec499ea02e4047b16466e8bf9f897a9038aa7f88f8e3421700b3f19d70910379d51dc7a28ca67b5ba4b98128efa96ee99597607b72d853097960ff4fa9a887c08553e20fb36c562e4bfe625f79f9d6eefd364b94fad936dda1a440d4c18c3eec0be1c2122dee67a160af40a952b14e224707c2b5b692d2af239fabe744b224e5157350c1d3f888ce44bffc4c6b7099c781a937c9a37bda64bc940fc9276b39b25de651f1a62c1bb4ce2138a7c31a9739d095b9af365a922bb59fff6b146f0e6f46f219bd5bf8688fe00e79592b8daf9c4646867a590329bf2", 0xfa, 0x3000000}], 0x8000, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@map_acorn}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}]})
openat(0xffffffffffffff9c, &(0x7f0000000840)='./file0\x00', 0x4000, 0x48)

08:46:29 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000000100)="e36a2a60d49e35915118248681728e24221fbcc3482b258dd66255b467653f11d15a7e213d45980000000000000000245f732a2c82161e4f8ff2b5bfd22863930f14f0488cd4")
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x8901, &(0x7f0000001840)="fb")
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r3, 0x8901, &(0x7f0000001840)="fb")
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r4, 0x8901, &(0x7f0000001840)="fb")
bind$bt_hci(r4, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
syz_80211_inject_frame(&(0x7f0000000080)=@broadcast, &(0x7f00000000c0)=ANY=[@ANYRES16=r3, @ANYRES64=r0, @ANYRES32=r3], 0x34)

08:46:29 executing program 7:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r1, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000080)={<r2=>0x0}, &(0x7f00000003c0)=0xc)
r3 = getpgrp(r2)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0xa3, 0x9, 0x3, 0x80, 0x0, 0xffffffff, 0x8000c, 0x9, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x102, 0x0, @perf_config_ext={0x4, 0x4}, 0x4384, 0x2, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r3, 0x3, r0, 0xa)
syz_open_procfs(r2, &(0x7f00000000c0)='net/udplite\x00')
accept$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10)
r4 = openat$cgroup_type(r1, &(0x7f0000000000), 0x2, 0x0)
pread64(r4, 0x0, 0x0, 0x400000000f95a)

08:46:29 executing program 6:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(0x0, &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9)

08:46:29 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9)

08:46:29 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000027000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:46:29 executing program 7:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r1, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000080)={<r2=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r2, 0x3, r0, 0xa)
ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000000100))
r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r4, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000080)={<r5=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r5, 0x3, r3, 0xa)
r6 = syz_open_procfs(r5, &(0x7f00000000c0)='children\x00')
pread64(r6, 0x0, 0x7ffffffff000, 0x0)
r7 = openat2(r6, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x800, 0x15, 0x4}, 0x18)
socket$inet6_udplite(0xa, 0x2, 0x88)
fallocate(r7, 0x40, 0xca8f, 0x0)

08:46:29 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000028000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:46:29 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r1, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000080)={<r2=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r2, 0x3, r0, 0xa)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r3, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x9, 0x0, 0xa, 0x2, 0x0, 0xa788, 0x425b2, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x2, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x4, 0x2, @perf_bp={&(0x7f0000000000), 0x14}, 0x10700, 0x4, 0x4c4, 0x0, 0x9, 0x0, 0x3, 0x0, 0xffffff7b}, r2, 0x4, r3, 0x1)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r4, 0x400448dd, &(0x7f0000000180)="a9")

08:46:29 executing program 4:
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x0)
r0 = syz_open_procfs$userns(0x0, &(0x7f0000000000))
preadv(r0, &(0x7f0000000640)=[{&(0x7f0000000280)=""/241, 0xf1}, {&(0x7f0000000140)=""/14, 0xe}, {&(0x7f0000000180)=""/74, 0x4a}, {&(0x7f0000000200)=""/25, 0x19}, {&(0x7f0000000040)=""/150, 0x96}, {&(0x7f0000000380)=""/98, 0x62}, {&(0x7f0000000400)=""/167, 0xa7}, {&(0x7f00000004c0)=""/198, 0xc6}], 0x8, 0x5, 0x8)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0xa, 0x4010, 0xffffffffffffffff, 0x8000000)
ioctl$EXT4_IOC_CLEAR_ES_CACHE(r0, 0x6628)
r1 = syz_io_uring_setup(0x6c75, &(0x7f00000002c0), &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r1, 0x0, 0x0}, 0x0)
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x800, 0x3, &(0x7f0000000c00)=[{&(0x7f00000009c0)="64fdda1101af475433a537e3225fa4cbcc30c2a4fc08858a9d86dbe779cf05302117a2d9805dd6dc649bc0d5a3", 0x2d, 0x7}, {&(0x7f0000000a00)="cea29b3b1986db0f8a015cb690db341962dc00ad5b5f4d742bd60edfd898da3911331978807718a8fedde759fcafe0df9f98113e05a19d3443dc3cb6e926750647b061b63f0ae62e52e07ca0951b6021071e4376073f8875ede6f242f0f7c27cb16d7e3ff8a71785f639341213925a0188517e75ef247d162bebfad9c7daaf70a9d1d695b5842e3edfbacdcb8c609106143995b35747c54453cf6d1fd39a4517bc255a18da1ee8fb01114fc72e7fe3b31e80e68e5a4bcebca32f21c7592dc6abeb9960723329684e15fb1554", 0xcc, 0x2}, {&(0x7f0000000b00)="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", 0xfa, 0x3000000}], 0x8000, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@map_acorn}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}]})

08:46:29 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, 0x0, 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9)

08:46:29 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000029000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:46:29 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0xcd, 0xac48)

08:46:29 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x2000, 0x0, 0x0, 0x5}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000180)="a9")

[ 3046.228146] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3046.230836] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:46:45 executing program 6:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r1, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000080)={<r2=>0x0}, &(0x7f00000003c0)=0xc)
r3 = getpgrp(r2)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0xa3, 0x9, 0x3, 0x80, 0x0, 0xffffffff, 0x8000c, 0x9, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x102, 0x0, @perf_config_ext={0x4, 0x4}, 0x4384, 0x2, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r3, 0x3, r0, 0xa)
syz_open_procfs(r2, &(0x7f00000000c0)='net/udplite\x00')
accept$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10)
r4 = openat$cgroup_type(r1, &(0x7f0000000000), 0x2, 0x0)
pread64(r4, 0x0, 0x0, 0x400000000f95a)

08:46:45 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x480000002a000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:46:45 executing program 2:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0x6c75, &(0x7f00000002c0), &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r1, 0x0, 0x0}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(r4, r3, 0x0, 0x8001)
syz_io_uring_submit(0x0, r3, &(0x7f0000000000)=@IORING_OP_WRITE_FIXED={0x5, 0x2, 0x2007, @fd=r0, 0x20a, 0xf20e, 0x7f, 0x18, 0x1, {0x1}}, 0x3f)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$binfmt_script(r5, &(0x7f00000000c0)={'#! ', './file0', [{0x20, '-&((/!\xd9[&+,'}, {0x20, '--{))}/\xc1'}, {0x20, ',#){,'}, {0x20, '\x9c'}], 0xa, "c0cf095f97625d01c517a6af7d08f2d37dd27e03856477922df35fe7058b5559d59df57f88c01a3eee28efdf18f7c29e534acca5422b583fc363c67d70ee63cc369fe9d8b4e9750ca6185c953bd774a7128d19e15d9d8d3bf8c46539c0dbf64ba71ce95e1b4a8578ef380a97860f95109f238e5fa82b365690fa4786fb49d5a103ed85197095"}, 0xae)

08:46:45 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r0, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
write$snapshot(r0, &(0x7f0000000000)="bcb974f7b2104018635d29efa2d5afb9b694aeea6261d6de1a7a62a1b903107b3658591432b5f6fab839370b33b3d2facf6d95da84765ae4297c49b83294", 0x3e)
r1 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r1, 0x0, 0x7ffffffff000, 0x0)

08:46:45 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, 0x0, 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9)

08:46:45 executing program 5:
syz_80211_inject_frame(&(0x7f0000000040)=@device_a={0x3}, &(0x7f0000000140)=ANY=[], 0x34)
syz_80211_inject_frame(&(0x7f00000000c0)=@device_b, &(0x7f0000000100)=@mgmt_frame=@reassoc_resp={@wo_ht={{0x0, 0x0, 0x3, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1}, {0x33a8}, @broadcast, @device_b, @initial, {0x0, 0x40}}, 0x41, 0x3c, @random=0xe70c, @void, @val={0x2d, 0x1a, {0x300, 0x1, 0x7, 0x0, {0x7, 0x9, 0x0, 0x1, 0x0, 0x1, 0x1, 0x3}, 0x6, 0x4}}, [{0xdd, 0x9a, "c5db86ad8a0367d37e8b3639723dada83d111d1c9b4905e172d0a657ac30a107644c47c35ad303b8e47c24e8bbb6755af3921f5e6350d7e243c84336ae7e695545ec881c047b5b108f53e90231f6ab8f373666e8cb3a424f90992438a27b08111b86ce6538e8466530816fbdce75c521e0097abe9d346031185bf3417c33bdd63c9cb0b1e176797f173f5c0eaa290f2c3483487919e0e1684b64"}, {0xdd, 0xc, "d08f3740e60c8ccbd5a11a75"}, {0xdd, 0x74, "9d022d0b222d9c7f2b0b8e14d92cb7a35faa828599c7dc4db16751d6ff484b11f49e2634b53b388ab2a2dd344c3bdd9f2e589d3b5fc6d3780335a6ff63c43e763d72aaffdfbd0e3d9854e11a297e025c02cfb09fe1b5e80dc8d1b0f5a911147bc70a3463a7e8ea67de5da68165b65c76d75326f7"}]}, 0x15a)
syz_80211_inject_frame(&(0x7f0000000000)=@device_b, &(0x7f0000000080)=@ctrl_frame=@pspoll={{}, @random=0xee, @from_mac=@broadcast}, 0x10)

08:46:45 executing program 3:
sendmsg$802154_raw(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000), 0x14, &(0x7f00000000c0)={&(0x7f0000000140)="cd9e1bc049e41be188e916359a2d0cb94500000000666496d51a600b7b93bbc2dc155058a4d80cf3afb87e25f2ddf8e03f0005b3dcfcd580bb479d76cb12a7eb7de463cc4209d10d8ba3fdaf7192615d600d9840194932fda1ba0e759d632e2f769d79be1c90dd1758ef1523ff61072c8008f3e41fe04857b07ff566ac3b", 0x7e}, 0x1, 0x0, 0x0, 0x20008044}, 0x200400d8)
syz_80211_inject_frame(&(0x7f0000000040), &(0x7f0000000140)=ANY=[], 0x34)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r0 = accept$packet(0xffffffffffffffff, &(0x7f0000000240)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000280)=0x14)
listen(r0, 0x7fffffff)

08:46:45 executing program 4:
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x0)
r0 = syz_open_procfs$userns(0x0, &(0x7f0000000000))
preadv(r0, &(0x7f0000000640)=[{&(0x7f0000000280)=""/241, 0xf1}, {&(0x7f0000000140)=""/14, 0xe}, {&(0x7f0000000180)=""/74, 0x4a}, {&(0x7f0000000200)=""/25, 0x19}, {&(0x7f0000000040)=""/150, 0x96}, {&(0x7f0000000380)=""/98, 0x62}, {&(0x7f0000000400)=""/167, 0xa7}, {&(0x7f00000004c0)=""/198, 0xc6}], 0x8, 0x5, 0x8)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0xa, 0x4010, 0xffffffffffffffff, 0x8000000)
ioctl$EXT4_IOC_CLEAR_ES_CACHE(r0, 0x6628)
syz_io_uring_setup(0x6c75, &(0x7f00000002c0), &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x800, 0x3, &(0x7f0000000c00)=[{&(0x7f00000009c0)="64fdda1101af475433a537e3225fa4cbcc30c2a4fc08858a9d86dbe779cf05302117a2d9805dd6dc649bc0d5a3", 0x2d, 0x7}, {&(0x7f0000000a00)="cea29b3b1986db0f8a015cb690db341962dc00ad5b5f4d742bd60edfd898da3911331978807718a8fedde759fcafe0df9f98113e05a19d3443dc3cb6e926750647b061b63f0ae62e52e07ca0951b6021071e4376073f8875ede6f242f0f7c27cb16d7e3ff8a71785f639341213925a0188517e75ef247d162bebfad9c7daaf70a9d1d695b5842e3edfbacdcb8c609106143995b35747c54453cf6d1fd39a4517bc255a18da1ee8fb01114fc72e7fe3b31e80e68e5a4bcebca32f21c7592dc6abeb9960723329684e15fb1554", 0xcc, 0x2}, {&(0x7f0000000b00)="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", 0xfa, 0x3000000}], 0x8000, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@map_acorn}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}]})

[ 3061.969884] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3061.974266] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3061.982425] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:46:45 executing program 6:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r5 = dup2(0xffffffffffffffff, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r6, r5, 0x0, 0x7ffffff9)

[ 3061.986019] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:46:45 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x0)
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r0, 0x6, 0x21, &(0x7f0000000380)="9fa27a2cd4df5de3ac611f83d498ca6e", 0x10)
r1 = pidfd_getfd(r0, r0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$FS_IOC_READ_VERITY_METADATA(r2, 0xc0286687, &(0x7f0000000340)={0x1, 0xffff, 0x23, &(0x7f0000000180)=""/35})
fsmount(r0, 0x0, 0xf5)
recvmsg$unix(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)=""/243, 0xf3}, {&(0x7f0000001600)=""/102400, 0x19000}, {&(0x7f0000000600)=""/4096, 0x1000}, {&(0x7f00000001c0)=""/230, 0xe6}, {&(0x7f00000002c0)=""/95, 0x5f}], 0x5}, 0x10000)

08:46:45 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x9}, 0x27838, 0xfffffffffffffffd}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000180)="a9")
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)

08:46:45 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x480000002b000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:46:45 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
r1 = epoll_create1(0x80000)
r2 = syz_io_uring_setup(0x6c75, &(0x7f00000002c0), &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r2, 0x0, 0x0}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0)
syz_io_uring_submit(r5, r4, 0x0, 0x8001)
r6 = syz_io_uring_setup(0x6c75, &(0x7f00000002c0), &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r6, 0x0, 0x0}, 0x0)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
syz_io_uring_submit(r9, r8, 0x0, 0x8001)
r10 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r11 = inotify_init1(0x1000)
r12 = io_uring_register$IORING_REGISTER_PERSONALITY(r10, 0x9, 0x0, 0x0)
epoll_create(0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000500)=@IORING_OP_FILES_UPDATE={0x14, 0x5, 0x0, 0x0, 0x3f, &(0x7f00000004c0)=[0xffffffffffffffff, r10, r10, r11], 0x4, 0x0, 0x0, {0x0, r12}}, 0x3)
syz_io_uring_submit(r5, r8, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, {0x82}, 0x1, {0x0, r12}}, 0x84)
fcntl$setflags(r1, 0x2, 0x1)
pread64(r0, 0x0, 0x7ffffffff000, 0x0)

08:46:45 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, 0x0, 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9)

08:46:45 executing program 4:
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x0)
r0 = syz_open_procfs$userns(0x0, &(0x7f0000000000))
preadv(r0, &(0x7f0000000640)=[{&(0x7f0000000280)=""/241, 0xf1}, {&(0x7f0000000140)=""/14, 0xe}, {&(0x7f0000000180)=""/74, 0x4a}, {&(0x7f0000000200)=""/25, 0x19}, {&(0x7f0000000040)=""/150, 0x96}, {&(0x7f0000000380)=""/98, 0x62}, {&(0x7f0000000400)=""/167, 0xa7}, {&(0x7f00000004c0)=""/198, 0xc6}], 0x8, 0x5, 0x8)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0xa, 0x4010, 0xffffffffffffffff, 0x8000000)
ioctl$EXT4_IOC_CLEAR_ES_CACHE(r0, 0x6628)
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x800, 0x3, &(0x7f0000000c00)=[{&(0x7f00000009c0)="64fdda1101af475433a537e3225fa4cbcc30c2a4fc08858a9d86dbe779cf05302117a2d9805dd6dc649bc0d5a3", 0x2d, 0x7}, {&(0x7f0000000a00)="cea29b3b1986db0f8a015cb690db341962dc00ad5b5f4d742bd60edfd898da3911331978807718a8fedde759fcafe0df9f98113e05a19d3443dc3cb6e926750647b061b63f0ae62e52e07ca0951b6021071e4376073f8875ede6f242f0f7c27cb16d7e3ff8a71785f639341213925a0188517e75ef247d162bebfad9c7daaf70a9d1d695b5842e3edfbacdcb8c609106143995b35747c54453cf6d1fd39a4517bc255a18da1ee8fb01114fc72e7fe3b31e80e68e5a4bcebca32f21c7592dc6abeb9960723329684e15fb1554", 0xcc, 0x2}, {&(0x7f0000000b00)="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", 0xfa, 0x3000000}], 0x8000, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@map_acorn}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}]})

08:46:45 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000180)="a9")
ioctl$sock_bt_hci(r0, 0x400448c9, &(0x7f00000001c0)="a9afc34b991997e6faa005f78a50c23154ca2ac2cbaf51e849fcf1cca93b22c746688c7e0e3ef1a188594e54205a32f2e086aba0e267d34c12be79debc1d2d54fefe400a8adc22c8f289765cc5530cdac99575b83fed4783b747e1a5e864461917cac42874446f011bca685f720584cc1cfd71b2855d3af70625f4a5ab0cb11adda1e2e127ed02d9c928fcb7caac25099c05780bc32ed12a26e9a102a73e6613a5ed98f13b1a6314217ba806a2172c718a22db2311072f73318739c1ed057e3d2cc71db4ceaa1ae23ae56bb545857eb6")

[ 3062.287857] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3062.290808] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3062.293842] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3067.018631] Bluetooth: hci5: command 0x0409 tx timeout
[ 3069.075683] Bluetooth: hci5: command 0x041b tx timeout
[ 3071.119921] Bluetooth: hci5: command 0x040f tx timeout
[ 3071.692336] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 3071.694168] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 3071.696702] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 3071.715112] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 3071.716851] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 3071.718494] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 3073.163913] Bluetooth: hci5: command 0x0419 tx timeout
08:47:08 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x480000002c000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:47:08 executing program 2:
readv(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f00000000c0)=""/157, 0x9d}, {&(0x7f00000001c0)=""/102, 0x66}, {&(0x7f0000000240)=""/154, 0x9a}], 0x3)
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xf7, 0x6}, 0x0, 0x0, 0x9}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000180)="a9")
r2 = syz_open_dev$usbmon(&(0x7f0000000300), 0x9, 0x1310c0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000440)={0x0, <r3=>0x0})
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x8, 0x81, 0x1, 0x4, 0x0, 0x7, 0x0, 0x3, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x3, 0x1, @perf_bp={&(0x7f0000000380), 0x3}, 0x10000, 0x80000000, 0x7ff, 0x3, 0x2, 0xb6d, 0xffff, 0x0, 0x0, 0x0, 0x9}, r3, 0x2, r0, 0x8)
r4 = fcntl$dupfd(r0, 0x406, r2)
ioctl$MON_IOCT_RING_SIZE(r4, 0x9204, 0x7)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_open_dev$usbmon(&(0x7f0000000340), 0x4, 0x381800)
dup2(r2, r1)

08:47:08 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0x0, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9)

08:47:08 executing program 4:
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x0)
r0 = syz_open_procfs$userns(0x0, &(0x7f0000000000))
preadv(r0, &(0x7f0000000640)=[{&(0x7f0000000280)=""/241, 0xf1}, {&(0x7f0000000140)=""/14, 0xe}, {&(0x7f0000000180)=""/74, 0x4a}, {&(0x7f0000000200)=""/25, 0x19}, {&(0x7f0000000040)=""/150, 0x96}, {&(0x7f0000000380)=""/98, 0x62}, {&(0x7f0000000400)=""/167, 0xa7}, {&(0x7f00000004c0)=""/198, 0xc6}], 0x8, 0x5, 0x8)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0xa, 0x4010, 0xffffffffffffffff, 0x8000000)
ioctl$EXT4_IOC_CLEAR_ES_CACHE(r0, 0x6628)
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x800, 0x3, &(0x7f0000000c00)=[{&(0x7f00000009c0)="64fdda1101af475433a537e3225fa4cbcc30c2a4fc08858a9d86dbe779cf05302117a2d9805dd6dc649bc0d5a3", 0x2d, 0x7}, {&(0x7f0000000a00)="cea29b3b1986db0f8a015cb690db341962dc00ad5b5f4d742bd60edfd898da3911331978807718a8fedde759fcafe0df9f98113e05a19d3443dc3cb6e926750647b061b63f0ae62e52e07ca0951b6021071e4376073f8875ede6f242f0f7c27cb16d7e3ff8a71785f639341213925a0188517e75ef247d162bebfad9c7daaf70a9d1d695b5842e3edfbacdcb8c609106143995b35747c54453cf6d1fd39a4517bc255a18da1ee8fb01114fc72e7fe3b31e80e68e5a4bcebca32f21c7592dc6abeb9960723329684e15fb1554", 0xcc, 0x2}, {&(0x7f0000000b00)="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", 0xfa, 0x3000000}], 0x8000, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@map_acorn}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}]})

08:47:08 executing program 6:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(0x0, &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9)

08:47:08 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x80080, 0x0)
ioctl$FICLONE(r1, 0x40049409, r0)

08:47:08 executing program 5:
syz_80211_inject_frame(&(0x7f0000000000)=@broadcast, &(0x7f0000000140)=ANY=[], 0x34)
syz_80211_inject_frame(&(0x7f0000000040)=@broadcast, &(0x7f0000000080)=@data_frame={@no_qos=@type10={{0x0, 0x2, 0x2, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1}, {0x9}, @random="ea7da3f0bed6", @device_a, @device_a, {0x6, 0x958}}, @a_msdu=[{@device_a, @broadcast, 0xf0, "aa45cb36974b2bcbc2b9d11e0da61a94628ebc3b5cb6acdda91cbf159cdd940eafac79498c3141ce0cc23a90708aec4dbed7e19ed7b9965ac63abbbd0a14bbf4fe07787ce2cb04e3b50bfcf34cd9e1630f5301dedfee107bb7f8f074df06fe55c7c72e2267c3d3ca260abedced9a70532335468aeaa9f4e8a1f3f9c2371817d6ca6a8ec5065c22c1fa48c5910af75d514651a65023258eff1a986e6c733eda54ed0ccc4472174fe5c2fbc03730a5007fbd2ccb42f06de9ba5a630fc9913f093251e6b4a977923082827d93d08be7641e5423453c3a39f886c90dfb9306e0a708b7b25ce4b411a05f0e8f26166d6fa96c"}, {@broadcast, @device_b, 0xd2, "31a72cf3b79c91b49746193686294ef2328006a93c7169a42efe6a4f0e95a318da146f0270383b745393a2b0670a184ceb0a95e0da136ba4d313faf77ae6bb981dcb6606ae3e42a28b10bab3f6c02703083b051894b080deea1e35b39c3bd8aefb26f825313fbaca89759214f1c97b5ef62d6c896122ffa0138946cee1a7108ab328a69146da4e142e807ce0ef0ae8a46011432c3ff627ce5a46b455f6761cd9df89d96559f34816a4bf399ef7b9f826226ed9110e3795a0287913de9faea979be522d84f0535d728f6bd4f8c06172415331"}, {@device_a, @device_b, 0xd5, "bac971fc1870ea3a96c4a11133df844d43706c9c4c2c1cf5f631e44b0d0191172ff6aec89270960f036519c7fcd5e5e34c0e82994e443938d21e70f8b19b4fb61bdee2b16fe18f8aa95e0f0467e70cec64442d819a4ef1f8f86dacc98d8c86655308f65dbbfb2d479d2d75c0277f499f4403f351fe789a6ba4921eb9d5d2f55b723d73fe3c10fe300d2be6c8bbc10cdfeaec29dbc87a7ed2d324dac7e9b2f7504c61e41dd720d02d25310bd4d6894876bedd352238f2472a3441cc813469ccd64ad8007b3f54c18de2a13bbbd87ee7fc003c894e44"}]}, 0x2dc)

08:47:08 executing program 3:
syz_80211_inject_frame(&(0x7f0000000040), &(0x7f0000000140)=ANY=[], 0x34)
syz_80211_inject_frame(&(0x7f0000000000)=@device_b, &(0x7f0000000080)=@mgmt_frame=@probe_request={@with_ht={{{0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1}, {0x1}, @device_b, @device_b, @random="68b56f55e2f1", {0x3, 0xc45}}, @ver_80211n={0x0, 0x7, 0x1, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, 0x1}}, @void, @void, @void, @val={0x2d, 0x1a, {0x8, 0x0, 0x3, 0x0, {0x20, 0x6, 0x0, 0x198, 0x0, 0x0, 0x0, 0x3}, 0x800, 0x933, 0x3}}, @void, [{0xdd, 0x3a, "079fc2d8e4dd54496d21983e542497c166d3a0ff340dd1f49c8cf0ced5323846df8e73decaff7095014b0712bcc90f6f7ae1cbce8fb959b08c78"}, {0xdd, 0x1d, "390ff4c3836dcd4ecfc5a17fa5497f937468a4ff8ab082c83249dfb9a4"}, {0xdd, 0x81, "6996d80b564d0b2bf90e6822eb30a0da8b03f9cc52d341ddbb2e63ba942718675807a3d3ac1e85af0533cd5cc2a7017396eea3b961ac5e14d00131cf5dc2393e7ccd307ac970676706cd58273e5eb1998c5844016ebde38770f21261e721c4d6b64b6dc4b17a1710efdb0374cfe7acd1a9c797b5b6f44d40beb5eb95766c0dc991"}]}, 0x116)

[ 3084.913050] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3084.916559] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3084.920443] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3084.924526] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:47:08 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x480000002d000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:47:08 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000180)="a9")
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='stack\x00')
bind$bt_hci(r1, &(0x7f00000000c0), 0x6)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r3, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000080)={<r4=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r4, 0x3, r2, 0xa)
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x1, 0x1, 0x81, 0x0, 0x0, 0xffffffff876c17e4, 0x9000, 0x8, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x401, 0x1, @perf_config_ext={0x317, 0x2}, 0x8102, 0x6, 0x5, 0x8, 0x100, 0x100, 0x6, 0x0, 0x7, 0x0, 0x1}, r4, 0xf, r1, 0x0)

08:47:08 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x480000002e000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:47:08 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2004, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x898, 0x0, @perf_config_ext={0xfffffffffffffffb, 0x800}, 0x0, 0x80000000000800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3}, 0x0, 0x7, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$vcsa(&(0x7f0000000380), 0x6, 0x6001)
perf_event_open(&(0x7f0000000300)={0x4, 0x80, 0xfe, 0x0, 0x3, 0x9, 0x0, 0x81, 0x4000, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x8, 0x1, @perf_bp={&(0x7f00000002c0), 0x2}, 0x800, 0x3f, 0x7, 0x5, 0x8, 0x2, 0x6, 0x0, 0x37a, 0x0, 0x2}, 0xffffffffffffffff, 0x2, r0, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x400448dd, &(0x7f0000000180)="a9")
openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x500, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r1, 0x40286608, &(0x7f00000000c0)={0x53ca, 0x451154ad, 0x400, 0xfffffffffffffff7, 0x3f, 0x7})
preadv(r1, &(0x7f0000000280)=[{&(0x7f0000000100)=""/84, 0x54}, {&(0x7f00000001c0)=""/163, 0xa3}], 0x2, 0x5, 0x40)

08:47:08 executing program 7:
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0xb52, 0x400}}, './file0\x00'})
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x400100, 0x0)
ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELPRL(r0, 0x89f6, &(0x7f00000000c0)={'syztnl2\x00', &(0x7f0000000040)={'ip6_vti0\x00', 0x0, 0x29, 0xff, 0x4, 0x5, 0x2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @private0={0xfc, 0x0, '\x00', 0x1}, 0x700, 0x700, 0x100, 0x3b64aeba}})
r2 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r2, 0x0, 0x7ffffffff000, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r3, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x5, 0x80, 0x2, 0x4, 0x8, 0x89, 0x0, 0x3, 0x9a204, 0x8, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x3, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x3f, 0x1, @perf_bp={&(0x7f0000000140), 0x2}, 0x83202, 0x20000000f08b, 0x8, 0x6, 0x0, 0xff, 0x8, 0x0, 0x101, 0x0, 0x4}, 0xffffffffffffffff, 0xf, r2, 0x6)

08:47:08 executing program 4:
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x0)
r0 = syz_open_procfs$userns(0x0, &(0x7f0000000000))
preadv(r0, &(0x7f0000000640)=[{&(0x7f0000000280)=""/241, 0xf1}, {&(0x7f0000000140)=""/14, 0xe}, {&(0x7f0000000180)=""/74, 0x4a}, {&(0x7f0000000200)=""/25, 0x19}, {&(0x7f0000000040)=""/150, 0x96}, {&(0x7f0000000380)=""/98, 0x62}, {&(0x7f0000000400)=""/167, 0xa7}, {&(0x7f00000004c0)=""/198, 0xc6}], 0x8, 0x5, 0x8)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0xa, 0x4010, 0xffffffffffffffff, 0x8000000)
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x800, 0x3, &(0x7f0000000c00)=[{&(0x7f00000009c0)="64fdda1101af475433a537e3225fa4cbcc30c2a4fc08858a9d86dbe779cf05302117a2d9805dd6dc649bc0d5a3", 0x2d, 0x7}, {&(0x7f0000000a00)="cea29b3b1986db0f8a015cb690db341962dc00ad5b5f4d742bd60edfd898da3911331978807718a8fedde759fcafe0df9f98113e05a19d3443dc3cb6e926750647b061b63f0ae62e52e07ca0951b6021071e4376073f8875ede6f242f0f7c27cb16d7e3ff8a71785f639341213925a0188517e75ef247d162bebfad9c7daaf70a9d1d695b5842e3edfbacdcb8c609106143995b35747c54453cf6d1fd39a4517bc255a18da1ee8fb01114fc72e7fe3b31e80e68e5a4bcebca32f21c7592dc6abeb9960723329684e15fb1554", 0xcc, 0x2}, {&(0x7f0000000b00)="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", 0xfa, 0x3000000}], 0x8000, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@map_acorn}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}]})

[ 3085.228894] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3085.232177] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:47:21 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x8901, &(0x7f0000001840)="fb")
sendfile(r1, r2, &(0x7f0000000000)=0x79, 0x44f)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000180)="a9")

08:47:21 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
write$bt_hci(r1, &(0x7f0000000000)={0x1, @set_reserved_lt_addr={{0xc74, 0x1}, {0x9}}}, 0x5)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x800448d2, &(0x7f00000011c0)="22ce6d91f1e6afa289d5914c6b0d61d3a5b86e462827a1362fd94c91a634f91d27916795092e7bfce531e04c89e4f4edc4338c379d3497c38c8d3736cf307dfa0ff3324780d232d02ea12434bb405c047e37d2ecd6647a7c2b3591af7b84e78e546614016b6b52288dbb5871080305edd48e662069ac7fc4e603eede666b3508989006382a7ff3557670fb464c4e333c790d96df4575850da0a4ff7bfd")
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000001840))
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000001140)='./file0\x00', 0x1100)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r3, 0x8901, &(0x7f0000001840)="fb")
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000001180)={{0x1, 0x1, 0x18, r3, {0x1}}, './file0\x00'})
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r4, 0x8901, &(0x7f0000001840)="fb")
syz_80211_inject_frame(&(0x7f0000000040), &(0x7f0000000080)=ANY=[@ANYBLOB="80c4ff8ed052632b31588d858607d01d62a547d98f859421026753f4bcf7050aeba0f31c492e5939783d4c58965be5c3bd8c835bd07f9034e14fc1042ce17b446e8f0080c37b24542b73bdff7abcabb048af66ac229dfe79e4a394e8f748f47a126c98fc6dd01875730a07c501ed291a628c7e38873db0500bc816c83ea684d07172682bfee419158abb7250b5c2f93925d41afb9a78dee378d0777ad82b3ba0ba3df021b5c63306846dcd634ba603f5d94e62e285d8dc3bbb94e1da82a64bb5dc2189826963f14aa82ccc73823ff62e5053576410d57b399d36eb00f728cab2e470f11a6a488542696526590041d619a8cfbdb8b271f5f6e60cd15ede085bec13f55428569fd13c46c692b39061a22dfff9b76c3564fbfef10f425f95d86b4e8c5606cf0077c02f44e536cf2af0b05e333a1786d48a08a6876d04faca5f756107bc611190a3486dd1b2482823a67dd706047284a8c7364db54ca04bea4a0a6d0af0623356ffa2e5997e391609b46067d7fa5d63f3306e77b195221f1f999a65eaa2d55475018a5448ab227c03a73da964036a19beb719b463368d9e79b42d8ca7a37c7a4fdb8856a63eadf98cc2f9a67bd0ee8e82e852146afd0e0c1062cc4dbc0b56311a265f5b88dc9b002d0d71a9a047daf9c148b7d3c7a257f93435882b865ef6de886f6971c7ef975eac895a21f52a8a41114624de6b8c137f95f89ad7c42d6c70ee87a6444cd2fa5e9fddb96893b532d8818324a7926ca411bc63ff5eaca4463a67d1483df490774ada2b937d350b3ca7640c7cc215a5a00547235c43bd09f672105a2ec093f1dbf9cbdffa1115d0f8848ed79c8fc7f5e5f8b04a7dfd9c059343d70cf267a642d12652bb686d1352c9f2b9ea20a44ced73f60d0ebf4c07cb17a7924c6ae6b5fdedb87a055c58f16efda5d406366ba30ab04e5e7eecac3965842d95e30b45282135085a2464763c0e4f9f184d546df93a27a541803d0b1314cd5b5f9b5ec51e72c20ff93a7c2fd93b43dd6fcb766a249fa4d9a6b1dee21c0872d9ddda5d428f39f30cbc2e6fae00a15990566652e2413e6a708ae72a155fe64c3f07454ca94b38ef5f2599ee7426270ff248cbc362d92eac7d04ea9295891d379c3c73cdcdd35edf2750b3924fb10409570fe30be573e0906f72a4de77ee2726a6efe94fe5273bffa1471e3d05127ac2a9e4065015cc644fba0227cb0e0669f94e236014e25659a8755953777df75471c9a8d30ae477e8a167ffbe09f4c41921c969791a658a82bd9de6be6cf3861f51eb329bf3f253b9f8b818f0676415527f8d491d73071eeb32d3f5db56f2b0acea2df4cb30c191c86d205265926f669f42a59eba33eeeb3351315aa2e714067178c08ccd13105b4191e2a9949f67d1af90b9def91fbf15471ca781e45b43e686213190f78fc1781dd76dc0e9ba17517d1ba86cdfbcf820ef38f632838ea6e54d75cf28595ab6a75a4400c1f2e6aa7f7c582a18a8264c3e742eda8b769433dd6416f8e4f34695702a57135cd9df19ada8e291c67854d3d50b3e3df8cdc6d3a2786838ec13c8ba713bba9599e2f601327febb0308a4b9de8c7c3ee97bb8f5fc339427ad24807a64efa6b65d959b124223d8ed99bf010ff75ef337c92923c3e0001c086d6e53c2f0a2a8804c143012afc7d916246605b87e32fb3c49713017c350dd60e65e5ac3afc03e3e31e72d8f2f844efc139e733d60363efc0dbbbd2a6c22f91fb90be5f80dc5e295f3f1aeeefdf1d190a0cf7b4c80d49fa0ce805ed90d5cf5564bf1465c2c9c5967a266d9095a86ab4b6149c3cb8e2ad253291255ff725a01c34f6c04cb633489579776f8fa2bab2a9d46a871f7928696a3e3a3e22c0e6c35ac8f58e124aece34ed58c6958b03b4f3ef4d34135d5ce63371441cc87dfba073839f8195a9611407bc82523e226baeeb8707d39bd14f2619ae02e87561c284271347bf4ec24cb9444c8d92a51197cfbd57eeda015da042e22bc196ba963292b949dbda7d684df065ea62171092a6526a7b06f25cb646a0acbd023fe4814a5bf267569977628ec33eab5eb632108e62e5cfa6e79c80294a4793d3696f0cf466a0e979544ccabbfa5caee7ee4af97bfe4f9fa75aa23e90399fc101eac0d740e31094ba500e90882060112fd4f6a02e3555d9e81321c83aefc998b557c6041429298a882455dcd8150cd78972495c5966746baee2aaf38e98579ef1c5f849514327236a27e977bbaba4c13d2d9a5f46f777c39c2154e2892088bd0b9e8ad3f375d81cfeb6303aef2a6d1f7fdfce3d85cd6b0a419b5127b864937ad4cb4c9c8732fbde1c9d8ef646e37615bd31432d699816c89dca2412b99f96fcf3e6e5d2e7d93f4b972343586055b427e95f885570b0cbd5a16117aab8f1e435673e744aba2ce5e94c438e03d9f259f65b219007b9390705700b4345ef0af2281707bc2e44129a82e42751f17fd000a5297e8bb130cd444aa88a644419af3225c80ba23b098806acfe0b1da2e148b9ebe5320d709f2a0944fac0187cc3735cb9925fecb9f0fb963c2842e6d188792dfb7fe2d6f58863154d190b61c61317010a8336aca57f42863d6794eaa8b9713e4b8090a4e64b32d3d7f2d5747a5c4b5c73419bf6a7bc3c5db3c4e27d817ed2882b13e4a7e56aaeb14956b281ce55b17d8631d5cf40979790aa665656b45c31bc3ae1ddb56847a1d032868e95218ced8759b9af5d5199af34a6218eeed2d0ee7cffc39961e997ebb88c8fba80903ea3c70844b1cd83f5e4445b57370a78ceb0ae76879560dff9a5b3edcce814cd39e3a05cdec093628be04c4ec4cedd9fff33477fbacc1943fe017a896ce585023451fbc23be404be43ea17201515e2b2448f89943ce8ae488d74031daf5ab164439e05bc1bc9c347cc91816fee6232a73ff22eab6fc4706b2ce6bb4d23b4c3002bd00d0164eeefdb5c394c9ea155c61db07fb5f8e8de2018a3bed23d8809d38ad2594230365167f5d96bc78e27f175fc9abc6c7c48483c24dd020635d6f6aab861387b3d72e9e8bc0e8429397dbc9f69d3528906f87b2228a71c033f9d1149e55ca3c0adf0da2716ab6ed53a6a7ff640dd21aec487540e94490172d0c7766167f3699b888e4e6d655f7ff8a742cfe56fcaabb346d802ef535160ee85e6b85eb2ed522b8331d431e812e583c08b5bde5bb0a0096d8e21ee0cfaa2a8ea08e8d1872f96304b56909f012d3d4d01aca03de567f879e511b439756f0fcfb8812cb09ba428b4f0d2b1336875735d5f512d5e9b66ad8450edabd18c70c396f16b31a821a2321a35a32bf2c48db7699f6475a642e02c75367ff09010a8a073e5190599efccf2958e048b0939a0ba6bd038a5bcc4c39c35277233c2071fe2b0c25e307e397fe765fedc34f23d10634e3e78bdc823319f33fb1059df711f23d13244ef72a270d46d1c3da520916b2d496ad487ba03568aff513ea5c072498f36c81fdeea429c2994f0508dfbbad096c537b34507e04a7b94bf6d2633d80410c94f69c48e4b214821e51ca75386fae21b54ec4d6cbaf4999d0d60f73c7999f3280a5f207d6b493809c30ceb7387bc3f48da78f7bbb275ac85f3d4c88a36ecd5b9cccc3d407c893ef0be96ef483f69a35b26ff8ba57f5c529f4c9633912d0e29612a3775fa887f06fa6311710e6d6ccd125bb038c1a754f9a1d501cc6fe0c5f830d684f987ea94ebfeb11a84aed40abfd088fafbb7de6f4686c266a2d396ada3c80b2afa09f052c95850f1457b9e98a1429f3480d7be3b9e82d5b34c901f13dba061e34bcdf4033e90a8da00353bba5bb272980afd331226dd45ea6dbdd4504d5ad174a8029c6c98cb25b2969ba9de111d6eb985db750ef895ed389ca2c8bce6dc9c2e5e0d6928c5a9179955e2326c2d4a36fbf92e51adba4f2a604ecffa92fe21a8663622c96eb5378de7881de7e86f3d828a45614a8cf80c91170b7fcc892f001040da5fbf2c11251442422de9a6d58cfc9cb1ad0b184c75c8c1863299a0583941df4e4e82d177e5d110c82bb40281f9ec7615d1ab38886488850f8e090015b72b3491cff14d9535087590cd9d2e1309ed76b2deffd31ec10065540a0dd3ca6851b5bb876c07244759739a0b490a0b031938898570add72a35fcc2d1fc622f92bdd0eca289e055d43601a6112dc68d6b14e7998ebe20886510996a10dddc2e40cb8831faca25a7a4d1d0e3975e8ebc1d9377217cd62891c03d5984adbb8c9ed36b9f37cf5b6c74e772123ac9b33c0b155559f6813f086cb0c96178d6f1563d5f8f167eabaf360ac67ccf80e03b27ec68f630204989446e167633a80a67671f274d6164880d7421e86d1f02b640534e66b36548caaa2ab0d0924a761a21fa7024e6c11b0cce533a219270150d3d7bbbad258f4c09431c6e8546d85d41b5a72a9c490cf3711ae3424b7163f8973a4858e02012f05445adc38919c10fd7ba62d7efd61ab72f682ec3dd67efbd9363b13ef157ed5b3ae3cea670ed9d14b719726b253a8f23120477a84a4bb70b203ec9748b52f692840773923ad6027196d7260753e00e7f74239a1f398f95483e2b8daca74bb740006a10bc7a0b74b48a450246b7488d8121cfaf70f2c182d513365cdf2e17ec76e60ae9ff5aaaceb259ed8eec6d089127fa847da9158ac9a6a4815d18bfe79a13a1bdc60350b0da8d55308882bdedae32bca6220f83c91cdf51d878748de0d34ce996f60a0f20f9b1cb73273fea951162b1e36fd3c869f82cb8864f44a720efef6caa78a26481d1301fa02bad64135bb20567f853fc6cdee6452a24d4bd169e7e4e0e02efd3527ce3c51059487930fa72af7056d2e7db6bfee98e9fffd47c87b7c237b4a49caeee224733bbea70c0a63bee0c5ba48791b5c8c8b99b7c57ab5050ce4a8cec20cf5b35143054709fcff4b693c19cb89aa076d00ec4ea3fe4daa2ed6f57425b2faee3af4611f5f60e6cf74ebc178e5815fda58ffd8440056fffc212f1dfa6c9b6ff8454c17565ff8cfef49f00d650ce355c50dfd0206af9f144922fd62b0ce2b9aee4ea7480af9dd4482994edc7657ad521a471dbe3ec9626351f1b08d547e24ced4dba9aee675be01d28a298560bed8c115bc375077e4c85348b92a1ca40109d39d2cf2e1eb3aed3cd9f8b8ea2b54f1f2412b17b478c94939433953b59c61eda3014d94dac495c221e8b167bb23feb4ce2553334285ec00bde89c51cda21276532518620e3feb4d6958794862571d6470cc3fb5fc2ef6900001cbf7f0a7ae0fb5ffef78e6fe427c564aed16ba19cc85d94c7e26f5c894490a2b048fc319525c26bb04e8a619cda05ff91d2559e2b1fb31f5c77030740e75debb822227abe0f35a3025c997fff754fff12d4277977e1056dfab4938af9e1528391789674688b9437cdf7a6f627ceea0fc41653603a36625ef72305f23d56d99b9829fefe83ef7659d62eb6ee2aa3eea3b640eab8563aa3cfc260f0e7bd9563dc940ead824556984ac3a5a103e3eb45265c86171f6355ab56d087407b2773967de1413954a605fff9a167f1f3da3a8241c6f04b5d5959e7e70f76b1c620c73d056b64ad71cc4f0c36a420b66b5849552d413ba88cade9915d5f0a0c7038a5e5b684f43efec7d668284ce39b8b60438c6bc21217775e775dda363411a334913e53d2ecef7e81601ada888cf2c8a4f2759b256fb953047cf12e6aa9cd1a6171469db7540a0a32b7cea13193aacee1c1b80417963e8e2f35a0eb7bcb1634ec4720a04fd12ea45598b050a31ee4e80", @ANYRES64, @ANYRES16=r4, @ANYBLOB="60338ce06478a13ead162649c63107cf38a0867e4c20061e538bca5deb6ab96f3fde54e17dfa2a2dc1b24834580ea387235e93f58d526173ab91325742461a4ff7dbdb592822ae593bf75800ab849db235d5344e56ebee8d40feb10ca6a23d84582c85d55525dd7e09d29ebb7fa44c82fb9be341f69e67077b96ba12e77ee5a1950b0501e561bbcf78f86c925fd6bc5b8a85a4b8ec696ef5d0149b9bb3", @ANYRESDEC=r4, @ANYRES32], 0x34)

08:47:21 executing program 7:
r0 = fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
setresuid(0x0, r1, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="64010000110000012abd7000fcdbdf25150000005e009080d387461945338cdc19daf3d8749ee5bccafc7df130c144c7aef75e3cc8a03077f8ddca261db419070000fb05b41f140aab58050ab8e8be71c741ff09daa56cf6f5c6159727c4411403a74b5ea568b546d3c22e7943cb5184494200000800160035887cab79997f5ca59fdd2f4a590000000081137b", @ANYRES32=r1, @ANYBLOB="e5007280283cfbde18e06adde8802d0d359829867c7425d4c0e6d271c935d43b77de9c4f5875d6b8c8942f87f6f1e11fcd70d3b915b67f5143f273acf5e350a1499c7a5fa631fe9c2c2640644d5c13a4bc167857a890f458a90ff1e70bb0d132ca4ba8a475f1fab02550994d5075055010e82b1734d7858728c1f0537f2cbed23abe5772a3c82494be14bc58dd1be33f212ddf97efc3c81f2eb5d7dba248010a43d9b6df1a34d44d5caad5087c67316c493f56027273ca12f362ac30b53ada17b48bf6f91d404e94cbace022672e7771b8d55bc6603a860c7b09006f000f255e2c00000000000000"], 0x164}, 0x1, 0x0, 0x0, 0x20000000}, 0x8040)
r2 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r2, 0x0, 0x7ffffffff000, 0x0)

08:47:21 executing program 4:
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x0)
r0 = syz_open_procfs$userns(0x0, &(0x7f0000000000))
preadv(r0, &(0x7f0000000640)=[{&(0x7f0000000280)=""/241, 0xf1}, {&(0x7f0000000140)=""/14, 0xe}, {&(0x7f0000000180)=""/74, 0x4a}, {&(0x7f0000000200)=""/25, 0x19}, {&(0x7f0000000040)=""/150, 0x96}, {&(0x7f0000000380)=""/98, 0x62}, {&(0x7f0000000400)=""/167, 0xa7}, {&(0x7f00000004c0)=""/198, 0xc6}], 0x8, 0x5, 0x8)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0xa, 0x4010, 0xffffffffffffffff, 0x8000000)
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x800, 0x3, &(0x7f0000000c00)=[{&(0x7f00000009c0)="64fdda1101af475433a537e3225fa4cbcc30c2a4fc08858a9d86dbe779cf05302117a2d9805dd6dc649bc0d5a3", 0x2d, 0x7}, {&(0x7f0000000a00)="cea29b3b1986db0f8a015cb690db341962dc00ad5b5f4d742bd60edfd898da3911331978807718a8fedde759fcafe0df9f98113e05a19d3443dc3cb6e926750647b061b63f0ae62e52e07ca0951b6021071e4376073f8875ede6f242f0f7c27cb16d7e3ff8a71785f639341213925a0188517e75ef247d162bebfad9c7daaf70a9d1d695b5842e3edfbacdcb8c609106143995b35747c54453cf6d1fd39a4517bc255a18da1ee8fb01114fc72e7fe3b31e80e68e5a4bcebca32f21c7592dc6abeb9960723329684e15fb1554", 0xcc, 0x2}, {&(0x7f0000000b00)="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", 0xfa, 0x3000000}], 0x8000, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@map_acorn}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}]})

08:47:21 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0x0, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9)

08:47:21 executing program 6:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000180)="a9")
ioctl$sock_bt_hci(r0, 0x400448c9, &(0x7f00000001c0)="a9afc34b991997e6faa005f78a50c23154ca2ac2cbaf51e849fcf1cca93b22c746688c7e0e3ef1a188594e54205a32f2e086aba0e267d34c12be79debc1d2d54fefe400a8adc22c8f289765cc5530cdac99575b83fed4783b747e1a5e864461917cac42874446f011bca685f720584cc1cfd71b2855d3af70625f4a5ab0cb11adda1e2e127ed02d9c928fcb7caac25099c05780bc32ed12a26e9a102a73e6613a5ed98f13b1a6314217ba806a2172c718a22db2311072f73318739c1ed057e3d2cc71db4ceaa1ae23ae56bb545857eb6")

08:47:21 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x8c, 0x0, 0x8, 0x70bd25, 0x25dfdbfb, {}, [@NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @initdev={0xac, 0x1e, 0x1, 0x0}}, @NLBL_UNLABEL_A_ACPTFLG={0x5}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @empty}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010102}}, @NLBL_UNLABEL_A_SECCTX={0x2d, 0x7, 'system_u:object_r:crond_initrc_exec_t:s0\x00'}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @remote}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @multicast2}]}, 0x8c}, 0x1, 0x0, 0x0, 0x20000010}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SET_TUNSRC(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000003c0)={0x14, r2, 0x1}, 0x14}}, 0x0)
sendmsg$SEG6_CMD_SET_TUNSRC(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000340)={&(0x7f0000000240)={0x34, r2, 0x800, 0x70bd26, 0x25dfdbfb, {}, [@SEG6_ATTR_ALGID={0x5, 0x6, 0x3}, @SEG6_ATTR_ALGID={0x5, 0x6, 0x9f}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0x5}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x8001}]}, 0x34}}, 0x0)
sendmsg$SEG6_CMD_DUMPHMAC(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2049001}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x5c, r2, 0x800, 0xffff, 0x25dfdbff, {}, [@SEG6_ATTR_DST={0x14, 0x1, @mcast1}, @SEG6_ATTR_ALGID={0x5, 0x6, 0x4}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0x100000}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x1}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0x97a}, @SEG6_ATTR_DST={0x14, 0x1, @private0}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4040000}, 0x204c004)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f0000000240)={&(0x7f0000000040), 0xc, 0x0}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f00000002c0)={'wpan4\x00'})

08:47:21 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x480000002f000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

[ 3098.419714] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:47:21 executing program 2:
perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0x8, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$usbmon(&(0x7f0000000140), 0x800, 0x4000)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r0, &(0x7f00000001c0)={0x80000008})
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
openat2(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x40000, 0x88, 0x10}, 0x18)
ioctl$sock_bt_hci(r1, 0x400448dd, &(0x7f0000000180)="a9")
ioctl$MON_IOCX_GET(0xffffffffffffffff, 0x40189206, &(0x7f0000000300)={&(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000240)=""/143, 0x8f})
ioctl$sock_bt_hci(r1, 0x400448cc, &(0x7f0000000000)="7b17cfa7")

08:47:21 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
recvmmsg(r0, &(0x7f0000005180)=[{{&(0x7f0000000000)=@x25={0x9, @remote}, 0x80, &(0x7f0000000180)=[{&(0x7f0000000080)=""/14, 0xe}, {&(0x7f00000000c0)=""/66, 0x42}, {&(0x7f0000000140)=""/52, 0x34}], 0x3, &(0x7f00000001c0)=""/225, 0xe1}, 0x1}, {{&(0x7f00000002c0)=@isdn, 0x80, &(0x7f0000000540)=[{&(0x7f0000000340)=""/232, 0xe8}, {&(0x7f0000000440)=""/11, 0xb}, {&(0x7f0000000480)=""/69, 0x45}, {&(0x7f0000000600)=""/218, 0xda}, {&(0x7f0000000700)=""/236, 0xec}, {&(0x7f0000000500)=""/38, 0x26}], 0x6, &(0x7f0000000800)=""/130, 0x82}, 0xc85}, {{&(0x7f00000008c0)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000dc0)=[{&(0x7f0000000940)=""/223, 0xdf}, {&(0x7f0000000a40)=""/214, 0xd6}, {&(0x7f0000000b40)=""/145, 0x91}, {0xffffffffffffffff}, {&(0x7f0000000c00)=""/204, 0xcc}, {&(0x7f0000000d00)=""/17, 0x11}, {&(0x7f0000000d40)=""/122, 0x7a}], 0x7, &(0x7f0000000e40)=""/163, 0xa3}, 0x401}, {{0x0, 0x0, &(0x7f0000001080)=[{&(0x7f0000000f00)=""/181, 0xb5}, {&(0x7f0000000fc0)=""/171, 0xab}], 0x2, &(0x7f00000010c0)=""/124, 0x7c}, 0x3f4}, {{&(0x7f0000001140)=@l2tp={0x2, 0x0, @loopback}, 0x80, &(0x7f0000001200)=[{&(0x7f00000011c0)}], 0x1, &(0x7f0000001240)=""/243, 0xf3}, 0x5}, {{0x0, 0x0, &(0x7f0000002400)=[{&(0x7f0000001340)=""/30, 0x1e}, {&(0x7f0000001380)=""/102, 0x66}, {&(0x7f0000001400)=""/4096, 0x1000}], 0x3}, 0x1}, {{&(0x7f0000002440)=@vsock={0x28, 0x0, 0x0, @my}, 0x80, &(0x7f0000003940)=[{&(0x7f00000024c0)=""/87, 0x57}, {&(0x7f0000002540)=""/228, 0xe4}, {&(0x7f0000002640)=""/49, 0x31}, {&(0x7f0000002680)=""/139, 0x8b}, {&(0x7f0000002740)=""/96, 0x60}, {&(0x7f00000027c0)=""/76, 0x4c}, {&(0x7f0000002840)=""/143, 0x8f}, {&(0x7f0000002900)=""/47, 0x2f}, {&(0x7f0000002940)=""/4096, 0x1000}], 0x9, &(0x7f0000003a00)=""/186, 0xba}, 0xffff0001}, {{&(0x7f0000003ac0)=@llc, 0x80, &(0x7f0000004b40)=[{&(0x7f0000003b40)=""/4096, 0x1000}], 0x1, &(0x7f0000004b80)=""/198, 0xc6}, 0x7}, {{&(0x7f0000004c80)=@hci, 0x80, &(0x7f00000050c0)=[{&(0x7f0000004d00)}, {&(0x7f0000004d40)=""/228, 0xe4}, {&(0x7f0000004e40)=""/194, 0xc2}, {&(0x7f0000004f40)=""/198, 0xc6}, {&(0x7f0000005040)=""/5, 0x5}, {&(0x7f0000005080)=""/55, 0x37}], 0x6, &(0x7f0000005140)=""/6, 0x6}, 0x9}], 0x9, 0x10000, &(0x7f00000053c0)={0x0, 0x989680})
r1 = syz_open_dev$vcsu(&(0x7f00000011c0), 0x444, 0x323d80)
pread64(r1, 0x0, 0x0, 0xfff)

08:47:21 executing program 6:
syz_80211_inject_frame(&(0x7f0000000040), &(0x7f0000000140)=ANY=[], 0x34)
syz_80211_inject_frame(&(0x7f0000000000)=@device_b, &(0x7f0000000080)=@mgmt_frame=@probe_request={@with_ht={{{0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1}, {0x1}, @device_b, @device_b, @random="68b56f55e2f1", {0x3, 0xc45}}, @ver_80211n={0x0, 0x7, 0x1, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, 0x1}}, @void, @void, @void, @val={0x2d, 0x1a, {0x8, 0x0, 0x3, 0x0, {0x20, 0x6, 0x0, 0x198, 0x0, 0x0, 0x0, 0x3}, 0x800, 0x933, 0x3}}, @void, [{0xdd, 0x3a, "079fc2d8e4dd54496d21983e542497c166d3a0ff340dd1f49c8cf0ced5323846df8e73decaff7095014b0712bcc90f6f7ae1cbce8fb959b08c78"}, {0xdd, 0x1d, "390ff4c3836dcd4ecfc5a17fa5497f937468a4ff8ab082c83249dfb9a4"}, {0xdd, 0x81, "6996d80b564d0b2bf90e6822eb30a0da8b03f9cc52d341ddbb2e63ba942718675807a3d3ac1e85af0533cd5cc2a7017396eea3b961ac5e14d00131cf5dc2393e7ccd307ac970676706cd58273e5eb1998c5844016ebde38770f21261e721c4d6b64b6dc4b17a1710efdb0374cfe7acd1a9c797b5b6f44d40beb5eb95766c0dc991"}]}, 0x116)

08:47:21 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000030000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:47:21 executing program 4:
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x0)
r0 = syz_open_procfs$userns(0x0, &(0x7f0000000000))
preadv(r0, &(0x7f0000000640)=[{&(0x7f0000000280)=""/241, 0xf1}, {&(0x7f0000000140)=""/14, 0xe}, {&(0x7f0000000180)=""/74, 0x4a}, {&(0x7f0000000200)=""/25, 0x19}, {&(0x7f0000000040)=""/150, 0x96}, {&(0x7f0000000380)=""/98, 0x62}, {&(0x7f0000000400)=""/167, 0xa7}, {&(0x7f00000004c0)=""/198, 0xc6}], 0x8, 0x5, 0x8)
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x800, 0x3, &(0x7f0000000c00)=[{&(0x7f00000009c0)="64fdda1101af475433a537e3225fa4cbcc30c2a4fc08858a9d86dbe779cf05302117a2d9805dd6dc649bc0d5a3", 0x2d, 0x7}, {&(0x7f0000000a00)="cea29b3b1986db0f8a015cb690db341962dc00ad5b5f4d742bd60edfd898da3911331978807718a8fedde759fcafe0df9f98113e05a19d3443dc3cb6e926750647b061b63f0ae62e52e07ca0951b6021071e4376073f8875ede6f242f0f7c27cb16d7e3ff8a71785f639341213925a0188517e75ef247d162bebfad9c7daaf70a9d1d695b5842e3edfbacdcb8c609106143995b35747c54453cf6d1fd39a4517bc255a18da1ee8fb01114fc72e7fe3b31e80e68e5a4bcebca32f21c7592dc6abeb9960723329684e15fb1554", 0xcc, 0x2}, {&(0x7f0000000b00)="71abd515586ff66b1a739836fbda188910fa3c10760438418cea9c176bd12185c67ec499ea02e4047b16466e8bf9f897a9038aa7f88f8e3421700b3f19d70910379d51dc7a28ca67b5ba4b98128efa96ee99597607b72d853097960ff4fa9a887c08553e20fb36c562e4bfe625f79f9d6eefd364b94fad936dda1a440d4c18c3eec0be1c2122dee67a160af40a952b14e224707c2b5b692d2af239fabe744b224e5157350c1d3f888ce44bffc4c6b7099c781a937c9a37bda64bc940fc9276b39b25de651f1a62c1bb4ce2138a7c31a9739d095b9af365a922bb59fff6b146f0e6f46f219bd5bf8688fe00e79592b8daf9c4646867a590329bf2", 0xfa, 0x3000000}], 0x8000, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@map_acorn}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}]})

08:47:21 executing program 5:
syz_80211_inject_frame(&(0x7f0000000040)=@device_a={0x3}, &(0x7f0000000140)=ANY=[], 0x34)
syz_80211_inject_frame(&(0x7f0000000000), &(0x7f0000000080)=@data_frame={@qos_ht={{{@type10={{0x0, 0x2, 0xf, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1}, {0x77c}, @from_mac=@broadcast, @device_b, @device_a, {0x4, 0x8}}, {0x3, 0x1, 0x2, 0x0, 0xff}}, {@type11={{0x0, 0x2, 0xd, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1}, {0x3}, @device_b, @broadcast, @initial, {0x7, 0xf68}, @device_b}, {0xe, 0x0, 0x1, 0x1, 0x82}}}, @ver_80211n={0x0, 0x4, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}, @random="14923af56ad90f5dfd57b93db29450b72299a165a7d2928c2c7026bbc9de2071bdd5069de6b73f91e57d7d095860e8fd680977556ee7ad647d39bb55e17d9387979e77af14c6d67ef083d02d810feb1cec013ff19281dbfbc69ae19bbff385e531e5a7064b163b7e4c80fe0b3cdeb0c90c83cd9c39d555f5c90d1bfcb76fdf75f7aa78a05d1433ddc7caffaa036962ef7f6145158ae67dc6389404eec7caed4b3f6f0c435828e43f235fb5f1d372e5322fa15ebd3a108b9eb02ac2b124ac3b73616ca0493d17476a74851b8fac68924c1601ad79a0342c816aaa237909ebee7d9d7a5887a62f37edbafa04dfb770b187c548f34f2da1496b8fd42844ef127c5989fd24eab05d139b6c755025823dbd24f7ba0d8bfee040b32f543c5026c241132ded7ac524ceb5ddb7d48f7caae4be60e06e3307cc000d6c2ec4b3877c0bc380e0495f913fdd7306e179797d07aa2f7cbf7ec23928be5fe0c68f488d3b6e3b48fba435c12eba14a0a24d07e1c26efa33e754fac8b88dcd242c5881b2cb0b3935d33ded3ee781bd22782790ad434320b30537ed9bee7db91bc482b311f04a64ca3450841577c051dba0d9e4192584b48e8048647b94f3c0206c824ccc26d7"}, 0x1fc)

08:47:21 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x0)
ioctl$BTRFS_IOC_START_SYNC(r0, 0x80089418, &(0x7f0000000080))
openat(r0, &(0x7f0000000000)='./file0\x00', 0xfd55a3cf811f12d2, 0x3)
openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x80, 0x72ffe38a1ec8a340)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x20000, 0x80)

[ 3098.604217] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3098.608481] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:47:22 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0x0, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9)

[ 3098.624135] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:47:22 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000180)="a9")
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
write$bt_hci(r1, &(0x7f0000000000)={0x1, @link_key_neg_reply={{0x40c, 0x6}, {@none}}}, 0xa)

[ 3098.653145] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:47:22 executing program 3:
syz_80211_inject_frame(&(0x7f0000000040), &(0x7f0000000140)=ANY=[], 0x34)
syz_80211_inject_frame(&(0x7f0000000000)=@broadcast, &(0x7f0000000080)=@mgmt_frame=@disassoc={@with_ht={{{0x0, 0x0, 0xa, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1}, {}, @broadcast, @broadcast, @from_mac, {0x4, 0x3}}, @ver_80211n={0x0, 0xd9, 0x3, 0x1, 0x0, 0x2, 0x1, 0x0, 0x0, 0x1}}, 0x42, @val={0x8c, 0x10, {0x4ba, "5c46f93d1e72", @short="fe95bfb1aa97b7c5"}}}, 0x30)
syz_80211_inject_frame(&(0x7f00000000c0)=@device_b, &(0x7f0000000100)=@mgmt_frame=@probe_response={@wo_ht={{0x0, 0x0, 0x5, 0x0, 0x0, 0x1, 0x1}, {0x4}, @broadcast, @device_a, @random="56d32eab5818", {0xe, 0x7}}, 0x5, @default, 0x60c4, @val={0x0, 0x6, @default_ap_ssid}, @void, @void, @void, @val={0x6, 0x2, 0x3f}, @val={0x2d, 0x1a, {0x400, 0x0, 0x0, 0x0, {0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1}, 0x6, 0x3, 0x81}}, @void, @void, [{0xdd, 0x14, "d1182ef0e036f639d04f3631e493ff0e6556fb5d"}, {0xdd, 0x54, "f2694c80268b6ab903984871582bdf49595366865b4e355b869ae1174b3c1a2b27ab3d764bca0bf2c0dffbfd132f8d167a01ceaf8f376e2fa7a59f50f9cb1b297d1b2c03d22326418ba6afbcd621c8a7b68234df"}]}, 0xb8)

08:47:22 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000031820000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:47:22 executing program 2:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000001c0)={0x1, 0x80, 0x7f, 0x0, 0x5, 0xbe, 0x0, 0x400, 0x12004, 0x5, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, @perf_bp={&(0x7f0000000000), 0x2}, 0x0, 0x0, 0x0, 0x2, 0x7, 0x4, 0xff00, 0x0, 0x8, 0x0, 0xff}, 0x0, 0x2, r0, 0x2)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x400448dd, &(0x7f0000000180)="a9")
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0xa2, 0x81, 0x0, 0x60, 0x0, 0x2, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x2, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x7, 0x1, @perf_config_ext={0x4, 0x8000}, 0xa4, 0x5, 0x7, 0x6, 0x0, 0x2, 0xf889, 0x0, 0x101, 0x0, 0x80000001}, 0x0, 0x1, 0xffffffffffffffff, 0x1)

08:47:22 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={<r1=>0x0}, &(0x7f0000000040)=0xc)
syz_open_procfs(r1, &(0x7f0000000080)='net/ip_tables_targets\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x0)

08:47:22 executing program 4:
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x0)
syz_open_procfs$userns(0x0, &(0x7f0000000000))
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x800, 0x3, &(0x7f0000000c00)=[{&(0x7f00000009c0)="64fdda1101af475433a537e3225fa4cbcc30c2a4fc08858a9d86dbe779cf05302117a2d9805dd6dc649bc0d5a3", 0x2d, 0x7}, {&(0x7f0000000a00)="cea29b3b1986db0f8a015cb690db341962dc00ad5b5f4d742bd60edfd898da3911331978807718a8fedde759fcafe0df9f98113e05a19d3443dc3cb6e926750647b061b63f0ae62e52e07ca0951b6021071e4376073f8875ede6f242f0f7c27cb16d7e3ff8a71785f639341213925a0188517e75ef247d162bebfad9c7daaf70a9d1d695b5842e3edfbacdcb8c609106143995b35747c54453cf6d1fd39a4517bc255a18da1ee8fb01114fc72e7fe3b31e80e68e5a4bcebca32f21c7592dc6abeb9960723329684e15fb1554", 0xcc, 0x2}, {&(0x7f0000000b00)="71abd515586ff66b1a739836fbda188910fa3c10760438418cea9c176bd12185c67ec499ea02e4047b16466e8bf9f897a9038aa7f88f8e3421700b3f19d70910379d51dc7a28ca67b5ba4b98128efa96ee99597607b72d853097960ff4fa9a887c08553e20fb36c562e4bfe625f79f9d6eefd364b94fad936dda1a440d4c18c3eec0be1c2122dee67a160af40a952b14e224707c2b5b692d2af239fabe744b224e5157350c1d3f888ce44bffc4c6b7099c781a937c9a37bda64bc940fc9276b39b25de651f1a62c1bb4ce2138a7c31a9739d095b9af365a922bb59fff6b146f0e6f46f219bd5bf8688fe00e79592b8daf9c4646867a590329bf2", 0xfa, 0x3000000}], 0x8000, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@map_acorn}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}]})

[ 3098.872071] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:47:22 executing program 7:
pwrite64(0xffffffffffffffff, &(0x7f00000000c0)="07eb0c34374cebce53dab57e692ba555a84bd8c56709eb6f46866dbf49b50af155327bcd453b2a4b3710a2cabb6305e1f38519c5c4d85877da5b88d798229eebe25e22076f3909f039cc499226b34887752e1a025799dfcd419f1f", 0x5b, 0x5)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000580)='fd/3\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x0)
ftruncate(0xffffffffffffffff, 0xffffffffffffff81)
r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x11, r0, 0x0)
r2 = syz_io_uring_setup(0x6c75, &(0x7f00000002c0), &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r2, 0x0, 0x0}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0)
syz_io_uring_submit(r5, r4, 0x0, 0x8001)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r4, &(0x7f0000000080)=@IORING_OP_LINK_TIMEOUT={0xf, 0x5, 0x0, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x989680}, 0x1, 0x1, 0x0, {0x0, r6}}, 0x0)
r7 = openat(r0, &(0x7f0000000000)='./file0\x00', 0x41, 0xb4)
r8 = syz_io_uring_setup(0x2dfc, &(0x7f0000000380)={0x0, 0x630, 0x2, 0x1, 0x159, 0x0, r7}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ff6000/0x1000)=nil, &(0x7f0000000400)=<r9=>0x0, &(0x7f0000000440))
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r9, r4, &(0x7f0000000480)=@IORING_OP_POLL_REMOVE={0x7, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r10}}, 0x6)
r11 = openat(r7, &(0x7f0000000180)='./file0\x00', 0x42000, 0x40)
syz_io_uring_setup(0x4306, &(0x7f0000000240)={0x0, 0x6f48, 0x0, 0x3, 0x144, 0x0, r11}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff2000/0x2000)=nil, &(0x7f00000001c0), &(0x7f0000000340))
r12 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000500)=@IORING_OP_FILES_UPDATE={0x14, 0x5, 0x0, 0x0, 0x3f, &(0x7f00000004c0)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x4, 0x0, 0x0, {0x0, r12}}, 0x3)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000500)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0xc, 0x0, r7, &(0x7f00000004c0)={0x80000010}, r8, 0x3, 0x0, 0x1, {0x0, r12}}, 0x5)

[ 3098.895663] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:47:22 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x0)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9)

08:47:22 executing program 2:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r3, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000080)={<r4=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0xffffffff, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r4, 0x3, r2, 0xa)
r5 = syz_open_procfs(r4, &(0x7f0000000000)='net/xfrm_stat\x00')
r6 = clone3(&(0x7f0000000500)={0x10100000, &(0x7f0000000140), &(0x7f0000000200), &(0x7f00000002c0), {0x25}, &(0x7f0000000400)=""/242, 0xf2, &(0x7f0000000300), &(0x7f0000000340), 0x0, {r5}}, 0x58)
perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0xc5, 0xa1, 0x6, 0x40, 0x0, 0xffffffffffffffff, 0x5000, 0x8, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x7, 0x1, @perf_config_ext={0x7, 0x42f1}, 0xc800, 0x8, 0x9a, 0x7, 0x100000000, 0x70f, 0x98, 0x0, 0x5, 0x0, 0x3}, r6, 0x10, r0, 0xa)
openat(r5, &(0x7f0000000300)='./file0\x00', 0x40000, 0x110)
ioctl$sock_bt_hci(r1, 0x400448dd, &(0x7f0000000180)="a9")

08:47:22 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x48000000391a0000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

[ 3098.915406] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3098.985119] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:47:22 executing program 4:
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x0)
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x800, 0x3, &(0x7f0000000c00)=[{&(0x7f00000009c0)="64fdda1101af475433a537e3225fa4cbcc30c2a4fc08858a9d86dbe779cf05302117a2d9805dd6dc649bc0d5a3", 0x2d, 0x7}, {&(0x7f0000000a00)="cea29b3b1986db0f8a015cb690db341962dc00ad5b5f4d742bd60edfd898da3911331978807718a8fedde759fcafe0df9f98113e05a19d3443dc3cb6e926750647b061b63f0ae62e52e07ca0951b6021071e4376073f8875ede6f242f0f7c27cb16d7e3ff8a71785f639341213925a0188517e75ef247d162bebfad9c7daaf70a9d1d695b5842e3edfbacdcb8c609106143995b35747c54453cf6d1fd39a4517bc255a18da1ee8fb01114fc72e7fe3b31e80e68e5a4bcebca32f21c7592dc6abeb9960723329684e15fb1554", 0xcc, 0x2}, {&(0x7f0000000b00)="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", 0xfa, 0x3000000}], 0x8000, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@map_acorn}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}]})

08:47:22 executing program 6:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000000003013, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

[ 3099.121208] FAT-fs (loop6): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 3099.228807] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3099.232537] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3099.234008] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:47:36 executing program 7:
r0 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x38, r0, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [@NL802154_ATTR_PID={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_PID={0x8, 0x1c, 0xffffffffffffffff}]}, 0x38}, 0x1, 0x0, 0x0, 0x40080}, 0x8040880)
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x0)

08:47:36 executing program 5:
syz_80211_inject_frame(&(0x7f0000000040)=@device_a={0x3}, &(0x7f0000000140)=ANY=[], 0x34)
syz_80211_inject_frame(&(0x7f0000000000)=@broadcast, &(0x7f0000000080)=@ctrl_frame=@rts={{}, {0x8}, @device_a, @broadcast}, 0x10)

08:47:36 executing program 3:
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/uts\x00')
r0 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = add_key$keyring(0x0, &(0x7f0000000100)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd)
mq_open(&(0x7f00000001c0)='X!#+\x00', 0x800, 0x44, &(0x7f0000000300)={0x8, 0x4, 0x9, 0x1})
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x5e, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4a}, 0xb610, 0x0, 0x7, 0x0, 0x8000000b7a, 0x1000000, 0x0, 0x0, 0xfffffc01}, 0xffffffffffffffff, 0x5, r3, 0x0)
add_key$keyring(&(0x7f0000000140), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, r1)
syz_io_uring_setup(0x68c4, &(0x7f0000000400)={0x0, 0x3226, 0x2, 0x1, 0x322}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f00000000c0)=<r4=>0x0)
syz_io_uring_submit(0x0, r4, &(0x7f0000000480)=@IORING_OP_FALLOCATE={0x11, 0x3, 0x0, @fd, 0xac5d, 0x0, 0xeb9ae53, 0x0, 0x1}, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000200)={0x0, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r2, &(0x7f00000002c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0xffffffffffffff94, 0x0}}], 0x200002dc)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r3, 0x4040534e, &(0x7f00000004c0)={0x50, @time={0x1dc, 0x1}, 0x5, {0x5, 0x2}, 0x7, 0x1, 0xff})
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000280)=@in6={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @broadcast}}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r3, 0xc018937e, &(0x7f0000000500)={{0x1, 0x1, 0x18, <r5=>r0, @in_args={0x1}}, './file0\x00'})
setns(r5, 0x40000000)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000340)={0x7f, 0x2, 0x1, 'queue1\x00', 0x7})
syz_80211_inject_frame(&(0x7f0000000040), &(0x7f0000000140)=ANY=[], 0x34)

08:47:36 executing program 6:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000180)="06")

08:47:36 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x480000003f000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:47:36 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000180)="a9")
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
setresuid(0x0, r1, 0x0)
setresuid(0x0, r1, 0xffffffffffffffff)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x80800)
pread64(r2, &(0x7f00000000c0)=""/113, 0x71, 0x2)

08:47:36 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x800, 0x3, &(0x7f0000000c00)=[{&(0x7f00000009c0)="64fdda1101af475433a537e3225fa4cbcc30c2a4fc08858a9d86dbe779cf05302117a2d9805dd6dc649bc0d5a3", 0x2d, 0x7}, {&(0x7f0000000a00)="cea29b3b1986db0f8a015cb690db341962dc00ad5b5f4d742bd60edfd898da3911331978807718a8fedde759fcafe0df9f98113e05a19d3443dc3cb6e926750647b061b63f0ae62e52e07ca0951b6021071e4376073f8875ede6f242f0f7c27cb16d7e3ff8a71785f639341213925a0188517e75ef247d162bebfad9c7daaf70a9d1d695b5842e3edfbacdcb8c609106143995b35747c54453cf6d1fd39a4517bc255a18da1ee8fb01114fc72e7fe3b31e80e68e5a4bcebca32f21c7592dc6abeb9960723329684e15fb1554", 0xcc, 0x2}, {&(0x7f0000000b00)="71abd515586ff66b1a739836fbda188910fa3c10760438418cea9c176bd12185c67ec499ea02e4047b16466e8bf9f897a9038aa7f88f8e3421700b3f19d70910379d51dc7a28ca67b5ba4b98128efa96ee99597607b72d853097960ff4fa9a887c08553e20fb36c562e4bfe625f79f9d6eefd364b94fad936dda1a440d4c18c3eec0be1c2122dee67a160af40a952b14e224707c2b5b692d2af239fabe744b224e5157350c1d3f888ce44bffc4c6b7099c781a937c9a37bda64bc940fc9276b39b25de651f1a62c1bb4ce2138a7c31a9739d095b9af365a922bb59fff6b146f0e6f46f219bd5bf8688fe00e79592b8daf9c4646867a590329bf2", 0xfa, 0x3000000}], 0x8000, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@map_acorn}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}]})

08:47:36 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x0)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9)

[ 3112.905799] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3112.907873] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:47:36 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000180)="a9")
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r1, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x220010}, 0xc, &(0x7f00000000c0)={&(0x7f00000001c0)={0x24c, 0x38, 0x400, 0x70bd26, 0x25dfdbfe, {0x1c}, [@nested={0x21a, 0x6f, 0x0, 0x1, [@generic="c13532870f6afaa897bf35d792da3988fed81e376d861663aa56b397a198bd8bf57045861be1a4ce344fcdef32ca9b8819f03b8bf0cbf6e4f84e8fe061660e53782a4fa4029f2ce8d0797181a6fc288d4e06df909345b8c9925e2186749de47b2f49c30ed8af1dde6b334098032164944b1692560a6c3a0e27bdf79fb22b9f43b413cf10b7dc264615a80751021740c8e527619bf3c239874fa50e506aeac183ca68375d8518d5b5b4fadf6c378246af667bf1dfbd34a094025d01f170a16acf8cdeaf4331726db3437ea0b245c815a0b7033a", @typed={0x8, 0x53, 0x0, 0x0, @ipv4=@empty}, @typed={0x4, 0x44}, @generic="8b208542ec2da9c2247e6e5464e475dcc7d8fd319fd654c059836b46f7b4db18118b5c13f0994b2c5b3be8fc399593910d93383298ab", @generic="402c6f95fe8daf624495c97a06c1677f8f2d53cf1fad952e73703b25f8f959185fa45885e66d5005de863aee0c34fbebfcc898477ace8bcbd346f76f6306ea099e73d45710f232e9899c02abe01b8dea1264dd7e5b7ae63e151da236c0c2d6d4b2cc656c9cdff348dcdcbc241bbec5d6dd5412079535a754a92314611f798c53aa7ec4fdf75c0633087a4c769f00ffc4c13e5eae", @generic="04aa0b950eb04db42d70af0160a8df08365673921b40ebc10c2c98492093354eca8bf9d8c3920adce52a9de86964510959170333f19f96bcb16223b3c81ad98096d79c64bc0bdf64ce18947f282d27dc0d75def9dc0a6bea130a40bf3c377fd13f020762459d5322350f386eee"]}, @typed={0x8, 0x77, 0x0, 0x0, @pid}, @typed={0x14, 0x7a, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x1f}}]}, 0x24c}, 0x1, 0x0, 0x0, 0x4000840}, 0x4000800)

[ 3112.983785] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:47:36 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000040000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:47:36 executing program 7:
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000000)=ANY=[@ANYBLOB="6f9eda0400fe", @ANYRES32=<r0=>0xffffffffffffffff, @ANYBLOB="04000000000000002e2f66696c653000"])
r1 = syz_open_dev$sg(0x0, 0x0, 0x2001)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x8901, &(0x7f0000001840)="fb")
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r2, 0x84009422, &(0x7f0000002800)={0x0, 0x0, {0x0, @usage, <r3=>0x0}, {0x0, @struct}, {0x0, @struct}})
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r1, 0xc400941d, &(0x7f00000008c0)={r3, 0x5, 0x80000001})
ioctl$BTRFS_IOC_BALANCE_V2(r0, 0xc4009420, &(0x7f0000000040)={0x1e, 0x2, {0xff, @struct={0x7, 0x401}, 0x0, 0x1ff, 0x4, 0x9, 0x6, 0x9e8e, 0x4, @usage=0x3, 0x8000000, 0x3, [0x80000000, 0x4, 0x61, 0x1, 0x40, 0xe5]}, {0x4, @usage=0xfffffffffffffffe, r3, 0xa557, 0xfff, 0x0, 0x4, 0x2, 0x20, @usage, 0x52e, 0x8000, [0x6, 0xffffffff80000000, 0x7, 0x8, 0x6018807a, 0x2]}, {0xa3, @usage=0x6cbad7b1, 0x0, 0x1, 0x14d, 0x7, 0xb3, 0x1, 0x400, @usage=0x8, 0xffe, 0x2, [0x200, 0x4, 0x10000, 0x8, 0x4, 0x9]}, {0x9, 0x1000, 0x1}})
r4 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r4, 0x0, 0x7ffffffff000, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setresuid(0x0, r5, 0x0)
syz_mount_image$ext4(&(0x7f0000000440)='ext2\x00', &(0x7f0000000480)='./file0\x00', 0x1, 0x8, &(0x7f00000022c0)=[{&(0x7f0000000cc0)="28b43d54a27f3af7227ba90a180b4d104a54d903bca9821b5d6673e0810df9be35632c8eb3f645c71a0bad06ecde951941bf296364dc192152cd0cbdf7201f3d967dec8d33f2bbbc9770a32cc3b448cd081b059e9c18497d895fd5b919d4683d760d5e6c2d2716a0384977398f04cb2337761252bacc4c48d368e1a4b868b9cbd52a50dad436621dcaf5deeafa61cb1e35b1ffeccfc38bd76177a41f6aec818e3756912432716a01a3f4003c1ae93209a3f1c33276d55300c8c2", 0xba, 0x100}, {&(0x7f0000000d80)="34f91518059e8600e86346468f03c10c92fc8736a474032307810ef8d73e93deb7077a814fee37ad465b8436f44242233196de73a03c556abb3f2f39c426f7ffdde6da4ebe7ef5dbd36fc7ac8db442fb7ce553e155e37b85b2674a64338d18399d7c67599a655e1a5ca7a2f6e9b29961621208e0b21135daac5989265776fa419f66e063d4218ce075e6011c1082431d233dae70e2d6b5eae3687067af", 0x9d, 0xf1}, {&(0x7f0000000e40)="cfa0593f20576c5e46a28c756a1a4f0311ef6c7934812adf2d503df26bd7cc692ce96b75b8d04a4a036b7824a41671eebf12a1edc37aeabb78da0a553b7f04c067f8706edbb84666d9781c2038fdf0dbf08bd6499e1bd67446341fecd4245d17c60f681a35470096767a16e2b55b95c1002767f4f8f581c11275bf0f9af164cbbd00a3917c15c2d71249c3d1438a4608372269bfa5da35e09b102b3c50d063dba38cdd7d120fa60ffef57f25b8c8074076bd15f3d50da3c8014e6ad2d9d366e1621a1e0714bb106dc18838b4b3cb95c44478c73864772e66d28dbb03045bcf7de4774e00e051f1d64fb5808a28", 0xed, 0x6}, {&(0x7f0000000f40)="44c4c097c0a377a6935e80c003eeb680b103c5044398eaa74ab761af216738df8ccf8bd55583ba32355ab117db4b0e4dc3e90990b41a0c8c299976eae08c95f667c837909f6ae060aee292ecd55535908205c11776239fb9086495201244d6192f54c445a64337d8353953291bdb14c1524c8699efeb381df7c5f86ac8d0d4011d2be7514e4c45d2258aa0eb21c9bf172a33c1fe45829b7252dc6fdc6a90130a4c1868367b343b452e3b08733d52f1ae7d26a4cd8701905098255618", 0xbc, 0x101}, {&(0x7f0000001000)="953dbd678d415f215c3a651165d4934bf1097d476905699b2dffebfaa44b7990b23602bacd728bd44b6f58b9708904249a77a49725e89fb67e39a578e8d62d9c5bd9e6482060d913ca69867187c03c7c1384cc890ee332274d52e90ec93d6381aaf2850ca9d2bd57c35d21912631ede75e636d436a345e70657265c4bd2ba9f6957de0adb57aebd0e2a8a578abe55bcd4edbc33764cc755446bde57c838cb07e0310f0a6d804ef5f339b427875f751bb115e86dc4728bfa24f5c3fa17f9dc48b5ac3048724af64e081a11f4c20975f76f363b7c1e59d41d8e543a9d2a30ecc5480029f32bad4df4a45485a70269184", 0xef, 0x6}, {&(0x7f0000001100)="dfbcdb6dc722c45bc3b95b25ed685e35be331d2deaa0e602c315a4f0d37f68b5a8531a51bc2723db94a3e6e36d480469a8fb1742c2c30ded0e4ad33c7d0af1f0db4a7926a4395481b441746ada803ab2c51dc98de0b576de55525423e027bede76cce9d70d4f73d62a0f56e6eaadec28023a3c096357cf5275183475884950229af6bb3b8b8764b3ecf1ecb933ea27e2835e51b6633c1372ac331f5fa865b3597da8ca9fed6a3942a6fe45f46e22b724d0630bc66fe94287cf4969aa5ba70788265698122812", 0xc6, 0x101}, {&(0x7f0000001200)="5e040ab19d1f28ab1052df97e7ed9efd0e8ff0757709e784b136ca5654129954d172970e75c5af93ba85eff33a0b04c8dae724215f77af356c37c88e8d67657347e2bad19dc014a95d4baff1791db361c9fe8f081e4a16883751105a77155d1f53d77212317cefe82220163e58364ab8e1d4380e228fdb2b43694385186ab813642d2d3b28a3cadd2108b6d1c403", 0x8e, 0x400}, {&(0x7f00000012c0)="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", 0x1000, 0x4}], 0x2000880, &(0x7f00000004c0)=ANY=[@ANYBLOB='quota,noblock_validity,data_err=ignore,prjquota,pcr=00000000000000000031,fowner>', @ANYRESDEC=r5, @ANYBLOB="2cc627afc8c77af502"])

08:47:36 executing program 4:
syz_mount_image$iso9660(0x0, &(0x7f0000000980)='./file0\x00', 0x800, 0x3, &(0x7f0000000c00)=[{&(0x7f00000009c0)="64fdda1101af475433a537e3225fa4cbcc30c2a4fc08858a9d86dbe779cf05302117a2d9805dd6dc649bc0d5a3", 0x2d, 0x7}, {&(0x7f0000000a00)="cea29b3b1986db0f8a015cb690db341962dc00ad5b5f4d742bd60edfd898da3911331978807718a8fedde759fcafe0df9f98113e05a19d3443dc3cb6e926750647b061b63f0ae62e52e07ca0951b6021071e4376073f8875ede6f242f0f7c27cb16d7e3ff8a71785f639341213925a0188517e75ef247d162bebfad9c7daaf70a9d1d695b5842e3edfbacdcb8c609106143995b35747c54453cf6d1fd39a4517bc255a18da1ee8fb01114fc72e7fe3b31e80e68e5a4bcebca32f21c7592dc6abeb9960723329684e15fb1554", 0xcc, 0x2}, {&(0x7f0000000b00)="71abd515586ff66b1a739836fbda188910fa3c10760438418cea9c176bd12185c67ec499ea02e4047b16466e8bf9f897a9038aa7f88f8e3421700b3f19d70910379d51dc7a28ca67b5ba4b98128efa96ee99597607b72d853097960ff4fa9a887c08553e20fb36c562e4bfe625f79f9d6eefd364b94fad936dda1a440d4c18c3eec0be1c2122dee67a160af40a952b14e224707c2b5b692d2af239fabe744b224e5157350c1d3f888ce44bffc4c6b7099c781a937c9a37bda64bc940fc9276b39b25de651f1a62c1bb4ce2138a7c31a9739d095b9af365a922bb59fff6b146f0e6f46f219bd5bf8688fe00e79592b8daf9c4646867a590329bf2", 0xfa, 0x3000000}], 0x8000, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@map_acorn}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}]})

08:47:36 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000041615252, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:47:36 executing program 4:
syz_mount_image$iso9660(0x0, &(0x7f0000000980)='./file0\x00', 0x800, 0x3, &(0x7f0000000c00)=[{&(0x7f00000009c0)="64fdda1101af475433a537e3225fa4cbcc30c2a4fc08858a9d86dbe779cf05302117a2d9805dd6dc649bc0d5a3", 0x2d, 0x7}, {&(0x7f0000000a00)="cea29b3b1986db0f8a015cb690db341962dc00ad5b5f4d742bd60edfd898da3911331978807718a8fedde759fcafe0df9f98113e05a19d3443dc3cb6e926750647b061b63f0ae62e52e07ca0951b6021071e4376073f8875ede6f242f0f7c27cb16d7e3ff8a71785f639341213925a0188517e75ef247d162bebfad9c7daaf70a9d1d695b5842e3edfbacdcb8c609106143995b35747c54453cf6d1fd39a4517bc255a18da1ee8fb01114fc72e7fe3b31e80e68e5a4bcebca32f21c7592dc6abeb9960723329684e15fb1554", 0xcc, 0x2}, {&(0x7f0000000b00)="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", 0xfa, 0x3000000}], 0x8000, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@map_acorn}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}]})

08:47:36 executing program 2:
sendmsg$NL80211_CMD_GET_PROTOCOL_FEATURES(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, 0x0, 0x800, 0x70bd27, 0x25dfdbfc, {}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x40001}, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000180)="a9")

08:47:36 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x0)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9)

08:47:36 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
fchdir(r1)

[ 3113.215146] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3114.954665] Bluetooth: hci6: command 0x0c1a tx timeout
[ 3126.838526] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:47:50 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000048000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:47:50 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000180)="a9")
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r1, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
r2 = getpid()
[ 3126.848267] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
sendmsg$nl_generic(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000000c0)={&(0x7f00000001c0)={0x2638, 0x3d, 0x200, 0x70bd2a, 0x25dfdbfe, {0x1d}, [@nested={0x40b, 0x5b, 0x0, 0x1, [@typed={0x8, 0x16, 0x0, 0x0, @ipv4=@loopback}, @generic="e20f4f5f484c8ea0cd7c636559f82600c41891dd29ee6e20b6d30c143eee331f3eb71e1a0b674d801e1a4cfd7e1eaae1f8be69eb06d918b4e1adc88c99f3069f84e8ac27b40fb9a7ab4d02a0db099d6eb0dd699a909a4337e6159e6cbbf62b87fe5acdc534e1f4661983cb0570fd05362f26bc4cc8dc09bc6cb5db4adba25403780f8558bd60c9c7777c399293632718f24462a70ca24a033528e07e5bbd69c9f17bf7d8585808c37bb9c0bfe152d04de6e3d1177adb8d3bd53231931eedc1a824f3b53cf328447ec92ee83edb341abea75582aaf3", @generic="83832db51d9373c64423f38d35d9e864005e97668e59fecde0fcc917c951c9dc8b6bdd628c2c8ff4d8009742600c69a4d0f06c7777cf0c3c6a25b3b2912499a2e0ce2e35af2d250772abd3f0f1e0edba46bce6505b1bb361f043c4bfcaa914f5b8ed77a550f6fda602e341c540659c68d34003e78b2a10f741a42c0ea89b4c3aedfd85223d412c25ad465da0f44d14e1e8c952ae70c63117319354fdbfb94e3a6c503ce3dfa260f45b1cce5d00e7bf24bde012623580fabf11667517a157a293dbbcdc361c1a04472b17bad6e0f8b3b0c87b50e1000cf73cab4a1c2f8d698ddaf42204b437f2c0d6aff0061f560a76ea88", @typed={0x8, 0x63, 0x0, 0x0, @pid=r2}, @generic="f87682774fc0aec74e840d5d456e437aa66357815335eb909166510248ce76cd75ca6acc40ad27aa5b46a9a4dfac05a5f17d", @generic="d0998780d118bd524a84c0c719641c85b98114135d4bd833381488e424c420d088534eaecfa3858cbb560e283253eac6a9d9bdbcd4521f1ff8c273357f41fd968c431f115cd61fe9fce84b1f4600f3079104755a373c1ab65163df1a6341f03e3f23868f626dcbb5f4dd909da3e56fcf4fae60640d3a6c55b84ebb01898358b3c408d436199ca1d2856dac553c207ea7bd8e29265aff4de1dd5db73fba89b42495b24a70233099c666e7", @typed={0xa, 0x2b, 0x0, 0x0, @str='.*}.+\x00'}, @generic="cb8f4cde8291e426dcf6ce04b67fa648961f8e74bcb168bb699888438526ec9f38102d49fc4b0e44e99a29cdbb098e581f461851af12c5a185e8827ed7103f2392b3252fd2600d8cafc450e2eb3a8860f4e1d70c71076375e23a4ece5b60ee311b57eb0844c41689289734a4e42321e56827ff33e790c1a20e85b1dd8bfc5a4e9fc5731afd2ecfa42b7b00a61055745f1b2c826b18ba44969af3d91ce8e486120c406ab39b112f15677c1db4889c4538ac5004d6b3930f", @generic="02f35acc5d9eb1ff30863cf589493ad3816fe2d56df8d766336223d4cb36c57395ed4b66009af86be037fb8236a69885051863181458d10943c488eb76cf0b5fbc3cf79aa307181231840dcbca3db6bb8483c3b2c6c738c64e5d44f7a9857e7f89aac192b5c3639a67ba8c768848b31d4850bfd507ecab2f4c", @generic="7b9bad76741ef0c0bdc64ae01cc841b5311cabfbd20bc6b339"]}, @generic="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", @typed={0x4, 0x8f}, @generic="07fe0b49380ca2b31eafb8d65ed4b0baac976f13e829b2684fe43ff5b71af52fe68a9c60da8eb6cd177780b8465234afe49d8b114c88380465ddeb6355ac384c9b62ed532edf9c240f466a971dc8fe37ebf2571c68e74804c5220bf8949d893ccab9f7bbe17187da6f61d6942bf2c6c6ae724219d09d5ee74908fdf80ab2e12fc938e8d1423495f142d450e1bf081ca1ad5d5099a91b8db11a605b5ad8b94373fe77792d8870d367e9845b96c468587f706affee18cb6865dad5fbc86187ed7f65bcd96530d4392bade3565562b6b9e106a4d0d4be7d0a512c6cfad37ad27cdf7057b2a0d42c3670694a5325d514257971804844b8e8609db5a5df523b5f8a82595e48fefd23641356b6606537ee5ea576e4991f84e0230be8c2df6ef5469605ec91fea7488e1bc6fe6b8ff619e45ce5ec93dfbde087a9866e555887adfd1a3aaae50c0f9aca4a22d94909f03e636b056801265bcc91af0be919e59259084c027b2f3bd50574fd23596dd2aaea1ec9bff451ec64ccfc1aab784e8be1845d3068891ae793ed0a8cb2d6e71543a772836b38c034e2779f1b77a0c56d7062c327da8b96b5919fc280cd405971bb51ac30f80eca51213de4859c43cb991a9d27677aa7a10052f571c10f6589dab7e7584dc61316145c8f3ba65650e064a4df4d5ecb7576afe6130c252169eb078898aa387a902a618c633c5d223cb01d83ac533580904b4a29d95188932201c73d7827966a7d4cf57e11aeac9f9ef4a798043599e96ef94603bdc0560b145109e258c2f78e4d2f6a52076e3c4a1d4a5cc9221803c76db235ebe080aa972efe740d161da23925fcaffb9b80f3f5e19595afb6e17b7303744b5e676f45cebba1f044660ac3f899ea4223feb8dd4d08996289c4df4db04991b1c6f282ca3223f907d134b80d1406152b331c250ef290c24a6af0e0bf1fce261363c113c32bbd0b5d8b3860fa12cce2b21e78e8c745ef4b510658dae8fbb205853292c4bef5fe1a60c50c63ee16ece9bbd0f053580b186282e56ac98716fffce75790242ce92ba1c223adfbee0b28c60f5902a1be4082c545df42db1d36f10a57e9fd36a447a79747e1eb05d2a5ea903a63f441b662691dc929c566a7fb2756b225524ada5a83f5490a4ebd17a08d3ece0480c71282780f2584b5d5a267e500d03f7f3ddfa595706f31dd48927447b5f7edd3411d5f3d0d51b06ca09ffc986dfaad1eff9449ab42fbcc9d1487f1589d93d03f8b7b2d919b10e58afd0faf8a97928ab2197edbb9978f7b6d21c53a43294e924d9c0939877c80b4cf4ef3b7f91225c6fe6648e83b99b288ce5ce62821f482e0f4711fac44a39db6938563764108b7b892760c20b2c1f53c24219add4d9e69522fad70374389fbe4233dcc7730d37da8db7d062ef22ea62958ee34c0d633de5ef6ab9bcdae981124e7d5d679a2dd57af1b826efe99f480978b73d32b01432b95cd83d3e71341b1e509537f7a47ebe32fd4b6511bec44d5b181122cba123cb34160f9a12a3be79a2857ad888c163d25e211a6e97c6d7f98bd2eed503391468c337cdd601b56b2f41c8513c822c091dfd03e5cd54061054bcad7030b1d488deb0c5bcb9f323d53daff0237fef6ea9ea050919597907f9b7d69a8828b5cdff5ea99f9ee649c261660b29471e833ed79142e12f7343737fb8997d1718818b4a90ec046f15b2a7dd048696a49cfea9d6c53ea503940da4e34e704c1577dfc60842cb6716fc414b9154aba1b72d1e46ffe645cd4fadf94304b5a309d3051d38d5b0799cee96f97f03c98960a170d02e7ea979f72bad759d80c234a85e2e7a25c55fcd097e2c75d4aebfad872746e85308776bd598c78d1017406be48f7696b6303bcd3832cc2697e6e29407a09282bb7f99343668de3ccccfd0b472446b8b15326962783d0e66c41b35eda994b24423de9308969202507b39d94df2158b9b3b3faf5d411f5be3e5d2a2e10307fff3274fab23e5735262328865e29bc19d78b34b9a32118a4170f9fa41f333e4ae9705daf3569d7d994fa0d95483efa26e62fe9e467e86f3057714488abf637716d2086af572cc0da3a076c789de67ef13a2787303c9276cb66d1765e197202d0060894f20fdecfef4b7eab4990b8dbe1ac150dbd91b2f8dd336610b1ff297e90e84be6b221050016d2aa30a3c567f2f0402ef76aca8b1191671bfd76c2b7cfe85829ab130d8f47a3037a1f40271ffa0c52bb249ad9a56bc9c3bc5bfd582afb156f993fe0ac97508a5ab4972498822eaec9ff5f95578aef025a9165de22f31dfac05b8eaad6b2aaf2cf8060c14aea4e6d772685687efe0c3d08384865829e33a1d2019e962ac98a6211aa8233dcaf225c3a116e273c1338f860610bc2afb6d745a6eec95a9bb4c70220848f37624d218f7e7bb7eae2b14737f4ebac01b2cd52c249a6c1c8b4a6444470b8778f5283fa428eb6ae72bbb2f8600d785b47779f1e7ce725c62781cd270d5be66cf4c7c1f48d2de5fe7f8c08cd348c71940cfb252ac314998f22eca3a92c146b619948d19b07a89cf5f47268f65c40507b790d2fb1c1dbdd9a4a541bc4516cb54fe47b840e4de5b9aed7c97ffe0cb7bd8f6afa4391ccf1c1ba88f6ae9f4a5df407b52ef65a4de9fcf5467a7a81c0214bf130baa29a3bb1b1eaf735c944c65c339d8928a8d5059d1cb08b7b6d9572501a6b5a9abc5ebcf3a8adfb26d88a850e0aac4f23cb959c0d36045a69adf54ccc8f18ac7456b94b88f10b026aa3a01bc52c5f160ad3fc8ff6f91560821f85ad6e6138ee12fc9946d1bb65e7734cd26c3fa88941e0d3260b76fca0b69cc69b0283cee3a5a08302f97502b161b013e81e8336ffb97134b8f6081cdf69489a713f1dfb8a8b27060cdefe8b9533e963e1612e9907dc4bf54b10f3fd7ef60a5cd3019e59f30c90804209272f4b4c2133433163adc818608c21ebe9620ed7dccae62b22e21369577d5515567aabbdb5996f4a8a63072023d6253de1fe7f4b3aee8bd2b06da506dfac864399cfae164b7a91536b51efb698ad93da69a81bb582465bace159aa6040f8902d2e4830be1ac21099ec6f5a937a94c9b078174286a191a14e416a0805791ee105364c16b0f1ba38500164b4b02ea205834be886628c5aa5fbad2b0b810a27cdbcea85a4eb122c11542ecf2382d86069106c5624e3e58089daa4880d0cdf1475f80c1492cb7f2729acac0501c055c3df3c0be42aee74e90c497f8ff9ae6f48795fe5d2777a1e109c92c4ad32edd948958a5ab57577e5309bd64ddb9ab9aa9db895b7b4c6329c4ea143ba15e9468f8ac3d1bfd6a107ff199351a9bff540b87e090811af8a8fa503d842118fd7db2b4c0b82fa54f938c682cdfbbb1e6f02454d9939d771216ceee41ba03e1107eed87bb32fdf8ec4217f42d6d1a3e6cbfde6496e6eb804f270d04797c761313e26e54f4676e6dd1ff93d19cec8577cda55d70b60ba72329f383440dbff43492036fbd46bcb012b93912b727b599cf2946f53c8deb63435dfbb2cd120012f4bb4332adf2c6ad99b101f59a89e616e9a29bd3f371d5cb919524bbc700698e451d730d875b1822f116efc797574f53cc5b175160e0e682e16e694911505d276dea503816cd87058fb32f999a3bd0bf3fc9b45e9728f6646bf9de9c4b89cda7fd61c7b8dd0a82e92576a62f8385124119ebb89c9928338d47137521be8371787a978677570751125f018d32a1643f53d9c1bffe1382a090e8f88e39ba8e4fb94c2fbbbf8915e8c3755672bc8c2e6b9fa311e976e1a84db5e2bdbe555c2733a7f6cff2c89073558d1c6dbce3bb673baaa759b95a33a649cf0929ad593ac63582b5e9cfd2bfc4942b9f27eda27c0138c6de950ffe38117059bb042df0cbcc6e6ab8ca92d1ce6a3485f50ea6202887e025bdaacf42cba0d5bb209592be169418bd1c92da45109e89573fba0f3dc5dbe4702ec56504fb97ae7ce46c260b7b1c67559f075e0181c915a51b57973ef3711b2fd8160af2b4e29c3f5fce74526aaf8ebda167e74a65383fbbd6aa383694e9241628ce3fc8f02c9b5432523ea8a21e5fe2a135e114da9ce8f1cfe5fab3b2731b7a68057e8b0efcf5ae39c6b36e3c6a807a2708af44876c285bf83076e13367f32d62f7ca558b1261541fd88047a6a06a0cee478ad2232ec44b10032dbffe8131df975adb7aa921047075b5681d213f884498250c6e1aebd5ff0eaca615861a71e779b61e24ac53521b3da5e6cbf4261519d75d7287a96b1f6935fd2c221e28e69cd76898f768a555b4c51c1bba99a50e034990091447230f339d2039644b0329907ab1e04afb2c35ac81334d533b85d019122235225bb857c1362d7edd2330a6268ee5fc9a9f6d3c68f3170a6450f3941feb1b58a8f58b9025e061b40edc50c668604d3beabc3b03c150fb65ff46fe7779239bdbb714084f8c7b1219c60fe1721c3dc8975205b12fda50393f1c140f9a7964c84d955885f2856169604daa0d29c033eb57467d7dd09455d6ccc26b010fe09f3aa097601e0b86dac60813ccc8f183f8a6d423fa66ac1b6e9524dc336009bc672dc222820a43537202e809715083621648132fe0cb8cbef79cd66093c5c3ce173565973a9526d771b06272fa6fb5c83bc0c4643ff7210226f452784951d0dd6cca21296abe226222820fc711c54fb55d02ea4cba80f2186d3a79742a7095df7a4a84a01f9f57d4c46ee5b964745cbebe12206d43cc0202c5641e3a99819b5ee121b7baf4d3e32177a93732ec312941baaa5e1459cb46b0cb731fdaa2f50dd30b3a825c793592438b50293bdb2b7ea64e98a0c75eb28533e8912d94d2674711239bca191b1b563b21e768228d3f3f629f6fcb0277e4c55243d5bbdafd28cadb382b35bc7ead29a74e8e0d51ab9f1738aecef3a0b40b723de9097eaa322cab92c9d9bbaec0e3587bf16948e75f5eea71b1e5b8c12f87b88d2a2571147401caba6ab59c9a8c191774ef7e7e19c886f336b5d19af0b9abe936bff2080923547ca40fc6a2e782f442410544a441098b3168383844da5a7f2ea8278a9f30f6aa19e7da6970f528808000c5135fff8e9c681f95886f310361aa957abb3ae9df899e340c2099d9c8533547fff1863c63802e62c77a1920605a88b84d8353d0d7ea3472d1b3bea547690ed3e0f4d76addcc858884fb858d88aee21386c8b364b1bb4480d873bafc8fa673cb51677e40c5789dc60720266986478459523c4bc926114f1a7de818b09e181aa5c407d4882bb3913b187405e1f7827e7a92a48d445023083ac48a8617b90397ed5002cf7e9ba438e95b512bb16ff0cda8b530756ce6e9d84f3a0f7b0157121d19e69a731b219dd20ea5b1fc0a086cbd6d4bac30d91ad86782716678fb0ec532b40cc805d4c214e8655ae3faad4e3f0fa0d62a20e7b103379895fa6ad6e49dc2a0ab0f8410818a0c203fed9961c0b53f879d9b73e3c5426a7f450b2f99c62a491c55dd3e25499541c9f4d094c9d0f9555c3c5269df8e345d8b3cf8a383ee92ccbb4a4d5a75a6279f9175cbf0792639816c1e6a6901db639bffc3099b951ce073b6827c7217d91e69f292f8d10eb881b9492f7f9217d260d77ef7ceeb2b3d79690c02896f280a5f52f9b4dc0c728be4c8d628e3d2778d39869c65aad07f2789c5f9dacbd0587fdec956d37551d4ca4e37708e7d9791e5d2c56c85257a46dcc63bef802d62f29c265c67bf0501f2e61c7450ef92657043fc690a29db7e7ab73203fbfb590dec682201165165172d0670f31bbd7", @typed={0x4, 0x24}, @typed={0xb3, 0x1e, 0x0, 0x0, @binary="cd61c23f8225c4476e5cc78157ad83a2ef60ba53c7ab8891050dffbd935af60f90e5de65189c649519097c817ce134a5aa0e093736abfac95c381d2fdf31d4ae435d97e412fb01f6a0ae6c12909b63a467f7e59e7ae33733188224a9f06c775fe61bd5651a1674276233cd2a951fdc9a93ab5ac0597f0d3aef910ef5b75c621a69f565a47123ec234bd737153eb8ac8b9db004ea03402c21b87fb28592e09ad5cc28e209203c46f91ca9e61d18b4e0"}, @typed={0x4, 0x11}, @nested={0x147, 0x88, 0x0, 0x1, [@typed={0xc, 0x23, 0x0, 0x0, @u64=0x400}, @generic="ca69078ad6e0f706cd590d78cd0309e6e531e8cea0dec2a6703036ac802bc5e4f60417f8bf86a1edacef8f95012ac7ba7018759375596045afa28e1d68072384585cb36d4b014e24afa86c9db0a9e78636db11422b866722b944", @generic="656ddb41084c1d85476a25842802e68b79bc5bde5f3b9fa0fdb3be04f57944881de393dd7d1f3522f3a08b2c83ca7cc00c95fd3dbdb9fe2aff6f3313746b7f6a3a2b74a060ba4853a39f58c00a7aca4cde", @typed={0x14, 0x62, 0x0, 0x0, @ipv6=@local}, @generic="d6cf6d71444022a13d002852523904549a1b02fc944a5f9a07dc6f28aab9d2a53349739088a1490cdf1f2909b77d6cc79f76d22078ae3e0e876d4f5a65c4a4184d3d6eb2c3b3ba7caba719d2c5eaee4ffc32f876270d11d3cd8d7304ae2bc571e681efcd0b61ecfd0a196ec287db194d8e83dcf8da472281"]}, @typed={0x6, 0x1, 0x0, 0x0, @str='$\x00'}, @typed={0x8, 0x8e, 0x0, 0x0, @ipv4=@rand_addr=0x64010101}]}, 0x2638}, 0x1, 0x0, 0x0, 0x8080}, 0x49080)

08:47:50 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9)

08:47:50 executing program 4:
syz_mount_image$iso9660(0x0, &(0x7f0000000980)='./file0\x00', 0x800, 0x3, &(0x7f0000000c00)=[{&(0x7f00000009c0)="64fdda1101af475433a537e3225fa4cbcc30c2a4fc08858a9d86dbe779cf05302117a2d9805dd6dc649bc0d5a3", 0x2d, 0x7}, {&(0x7f0000000a00)="cea29b3b1986db0f8a015cb690db341962dc00ad5b5f4d742bd60edfd898da3911331978807718a8fedde759fcafe0df9f98113e05a19d3443dc3cb6e926750647b061b63f0ae62e52e07ca0951b6021071e4376073f8875ede6f242f0f7c27cb16d7e3ff8a71785f639341213925a0188517e75ef247d162bebfad9c7daaf70a9d1d695b5842e3edfbacdcb8c609106143995b35747c54453cf6d1fd39a4517bc255a18da1ee8fb01114fc72e7fe3b31e80e68e5a4bcebca32f21c7592dc6abeb9960723329684e15fb1554", 0xcc, 0x2}, {&(0x7f0000000b00)="71abd515586ff66b1a739836fbda188910fa3c10760438418cea9c176bd12185c67ec499ea02e4047b16466e8bf9f897a9038aa7f88f8e3421700b3f19d70910379d51dc7a28ca67b5ba4b98128efa96ee99597607b72d853097960ff4fa9a887c08553e20fb36c562e4bfe625f79f9d6eefd364b94fad936dda1a440d4c18c3eec0be1c2122dee67a160af40a952b14e224707c2b5b692d2af239fabe744b224e5157350c1d3f888ce44bffc4c6b7099c781a937c9a37bda64bc940fc9276b39b25de651f1a62c1bb4ce2138a7c31a9739d095b9af365a922bb59fff6b146f0e6f46f219bd5bf8688fe00e79592b8daf9c4646867a590329bf2", 0xfa, 0x3000000}], 0x8000, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@map_acorn}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}]})

08:47:50 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/dev_mcast\x00')
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000500), 0x82040, 0x0)
ioctl$TCSETSW2(r2, 0x402c542c, &(0x7f0000000540)={0x2, 0x1, 0x6, 0x4, 0x1f, "3255ed2b5a57326bab9f1deff93f86db6ce552", 0x7f, 0xb29})
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840))
r3 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000002480), 0x800, 0x0)
ioctl$CDROMREADAUDIO(r3, 0x5313, &(0x7f0000000ac0)={@msf, 0x0, 0x0, 0x0})
r4 = socket(0x1, 0x80000, 0x5)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_CONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)={0x40, r6, 0x5, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r7}, @val={0xc}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x3f}]]}, 0x40}}, 0x0)
sendmsg$NL80211_CMD_STOP_AP(r4, &(0x7f00000006c0)={&(0x7f0000000600), 0xc, &(0x7f0000000680)={&(0x7f0000000640)=ANY=[@ANYBLOB="10000000", @ANYRES16=r6, @ANYBLOB="000125bd7000fbdbdf25100000000c009900ffffffff68000000"], 0x20}, 0x1, 0x0, 0x0, 0x40040}, 0x40000a1)
readv(r1, &(0x7f00000004c0)=[{&(0x7f0000000280)=""/188, 0xbc}, {&(0x7f0000000340)=""/87, 0x57}, {&(0x7f00000003c0)=""/215, 0xd7}], 0x3)
preadv(0xffffffffffffffff, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
sendmsg$NL80211_CMD_VENDOR(0xffffffffffffffff, &(0x7f00000008c0)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000880)={&(0x7f0000000740)={0x118, r6, 0x2, 0x70bd29, 0x25dfdbfd, {{}, {@void, @void, @val={0xc, 0x99, {0x0, 0x59}}}}, [@NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x7ff}, @NL80211_ATTR_VENDOR_DATA={0x21, 0xc5, "212def37a4df8fbbaf5746c7a92f49f9fafba55d9a570ede153a78cab1"}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x6}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x648}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x7fff}, @NL80211_ATTR_VENDOR_DATA={0x93, 0xc5, "feb328499b0d872c57c30bc4b61a6ff552c64473dab4d02ed9656ddd27e50f9a63f5c20fe0ee0f788d5f4d41a25bd3ba977314bc539ac95a9993700da7c9ee5709ea3b1f88bd7c90db83827a4cbbc24eb841147eb0b5d2b1de61059fba5b61ee26ad1eaa48c083eda4ac5a3ec1ab4fd36f74b4a0620aec92d94f3550a6d4939e6ae8200edcbf0dd5a58d7d2bfc7c4f"}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x20}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x1}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0xab38}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x9}]}, 0x118}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000580)=<r8=>0x0)
syz_open_procfs(r8, &(0x7f00000005c0)='attr/keycreate\x00')
ioctl$VFAT_IOCTL_READDIR_BOTH(r0, 0x82307201, &(0x7f0000000040)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
pread64(r0, 0x0, 0x7ffffffff000, 0x0)

08:47:50 executing program 6:
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/uts\x00')
r0 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = add_key$keyring(0x0, &(0x7f0000000100)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd)
mq_open(&(0x7f00000001c0)='X!#+\x00', 0x800, 0x44, &(0x7f0000000300)={0x8, 0x4, 0x9, 0x1})
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x5e, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4a}, 0xb610, 0x0, 0x7, 0x0, 0x8000000b7a, 0x1000000, 0x0, 0x0, 0xfffffc01}, 0xffffffffffffffff, 0x5, r3, 0x0)
add_key$keyring(&(0x7f0000000140), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, r1)
syz_io_uring_setup(0x68c4, &(0x7f0000000400)={0x0, 0x3226, 0x2, 0x1, 0x322}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f00000000c0)=<r4=>0x0)
syz_io_uring_submit(0x0, r4, &(0x7f0000000480)=@IORING_OP_FALLOCATE={0x11, 0x3, 0x0, @fd, 0xac5d, 0x0, 0xeb9ae53, 0x0, 0x1}, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000200)={0x0, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r2, &(0x7f00000002c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0xffffffffffffff94, 0x0}}], 0x200002dc)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r3, 0x4040534e, &(0x7f00000004c0)={0x50, @time={0x1dc, 0x1}, 0x5, {0x5, 0x2}, 0x7, 0x1, 0xff})
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000280)=@in6={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @broadcast}}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r3, 0xc018937e, &(0x7f0000000500)={{0x1, 0x1, 0x18, <r5=>r0, @in_args={0x1}}, './file0\x00'})
setns(r5, 0x40000000)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000340)={0x7f, 0x2, 0x1, 'queue1\x00', 0x7})
syz_80211_inject_frame(&(0x7f0000000040), &(0x7f0000000140)=ANY=[], 0x34)

08:47:50 executing program 3:
syz_80211_inject_frame(&(0x7f0000000040), &(0x7f0000000140)=ANY=[], 0x34)
syz_80211_inject_frame(&(0x7f0000000000)=@broadcast, &(0x7f0000000080)=@ctrl_frame=@bar={{}, {0x5}, @device_a, @broadcast, @compressed={{0x0, 0x0, 0x1, 0x0, 0x3}, {0x2, 0x3}}}, 0x14)
syz_80211_inject_frame(&(0x7f00000000c0)=@device_b, &(0x7f0000000100)=@ctrl_frame=@cf_end_cf_ack={{}, {0x8}, @broadcast}, 0x10)

08:47:50 executing program 5:
keyctl$set_reqkey_keyring(0xe, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8901, &(0x7f0000001840)="fb")
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000000000)="fb")
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x8901, &(0x7f0000001840)='?')
syz_80211_inject_frame(&(0x7f0000000040)=@device_b, &(0x7f0000000100)=ANY=[@ANYRES32=r0, @ANYRESDEC=r2, @ANYBLOB="79eedec721badb34f691a28889233485d97efd597c7e5dff1129a38e9378be13319634d76d5b631262411eb3c7f8e331042b3f840e69869d91201e65fce92d3aaf9d9282f10b6454ac5aa05a2e10dcbd67e6684c47d1"], 0x34)

08:47:50 executing program 2:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
readv(r0, &(0x7f0000000480)=[{&(0x7f00000000c0)=""/131, 0x83}, {&(0x7f00000001c0)=""/115, 0x73}, {&(0x7f0000000240)=""/124, 0x7c}, {&(0x7f0000000000)=""/57, 0x39}, {&(0x7f00000002c0)=""/16, 0x10}, {&(0x7f0000000300)=""/164, 0xa4}, {&(0x7f00000003c0)=""/155, 0x9b}], 0x7)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x400448dd, &(0x7f0000000180)="a9")
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000500), 0x50001, 0x0)
ioctl$F2FS_IOC_GET_FEATURES(r2, 0x8004f50c, &(0x7f0000000540))

[ 3126.885260] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:47:50 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), 0x0, 0x800, 0x3, &(0x7f0000000c00)=[{&(0x7f00000009c0)="64fdda1101af475433a537e3225fa4cbcc30c2a4fc08858a9d86dbe779cf05302117a2d9805dd6dc649bc0d5a3", 0x2d, 0x7}, {&(0x7f0000000a00)="cea29b3b1986db0f8a015cb690db341962dc00ad5b5f4d742bd60edfd898da3911331978807718a8fedde759fcafe0df9f98113e05a19d3443dc3cb6e926750647b061b63f0ae62e52e07ca0951b6021071e4376073f8875ede6f242f0f7c27cb16d7e3ff8a71785f639341213925a0188517e75ef247d162bebfad9c7daaf70a9d1d695b5842e3edfbacdcb8c609106143995b35747c54453cf6d1fd39a4517bc255a18da1ee8fb01114fc72e7fe3b31e80e68e5a4bcebca32f21c7592dc6abeb9960723329684e15fb1554", 0xcc, 0x2}, {&(0x7f0000000b00)="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", 0xfa, 0x3000000}], 0x8000, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@map_acorn}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}]})

[ 3126.907709] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3126.916974] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3127.228015] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3127.232231] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:48:04 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x480000004c000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:48:04 executing program 2:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x800}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = fork()
perf_event_open(&(0x7f00000001c0)={0x1, 0x80, 0x5d, 0x9, 0xb2, 0x80, 0x0, 0x7fffffff, 0x40104, 0x8, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x2, 0x1, @perf_config_ext={0x1, 0x2}, 0x0, 0x62ec, 0x1, 0x2, 0x7, 0x3ff, 0x9, 0x0, 0x8001, 0x0, 0x2}, r1, 0x6, r0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000000)=<r3=>0x0)
lseek(r2, 0x50, 0x1)
perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x4, 0x1f, 0x4, 0x1, 0x0, 0x8, 0x20, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0xfffffff9, 0x0, @perf_config_ext={0xa72, 0xa1}, 0x2, 0x5, 0x7, 0x7, 0x9, 0x7ff, 0x2, 0x0, 0x8001, 0x0, 0x8000}, r3, 0x8, 0xffffffffffffffff, 0x2)
ioctl$sock_bt_hci(r2, 0x400448dd, &(0x7f0000000180)="a9")

08:48:04 executing program 7:
syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8901, &(0x7f0000001840)="fb")
r1 = syz_open_dev$ptys(0xc, 0x3, 0x1)
pread64(r1, 0x0, 0x0, 0x1b2)

08:48:04 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8901, &(0x7f0000001840)="fb")
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x400000, 0x0)
ioctl$sock_bt_hci(r2, 0x400448e6, &(0x7f00000000c0)="8ca363f5b9886e5f3ed668c1b1bcad15e0931227f6d14be2572d69f3e05e8cc6f06233dfee02785817b35bbc70d4a906f1146469320452d06644c20207c6765ec7fc498e9883a3d82e8fbac44c9c70b185dbe1")
r3 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0)
fallocate(r3, 0x23, 0x1, 0x3)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='\x00', &(0x7f0000000180)={0x121000, 0x308, 0x2}, 0x18)
syz_80211_inject_frame(&(0x7f0000000040)=@device_a={0x3}, &(0x7f0000000000)=ANY=[], 0x34)

08:48:04 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9)

08:48:04 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), 0x0, 0x800, 0x3, &(0x7f0000000c00)=[{&(0x7f00000009c0)="64fdda1101af475433a537e3225fa4cbcc30c2a4fc08858a9d86dbe779cf05302117a2d9805dd6dc649bc0d5a3", 0x2d, 0x7}, {&(0x7f0000000a00)="cea29b3b1986db0f8a015cb690db341962dc00ad5b5f4d742bd60edfd898da3911331978807718a8fedde759fcafe0df9f98113e05a19d3443dc3cb6e926750647b061b63f0ae62e52e07ca0951b6021071e4376073f8875ede6f242f0f7c27cb16d7e3ff8a71785f639341213925a0188517e75ef247d162bebfad9c7daaf70a9d1d695b5842e3edfbacdcb8c609106143995b35747c54453cf6d1fd39a4517bc255a18da1ee8fb01114fc72e7fe3b31e80e68e5a4bcebca32f21c7592dc6abeb9960723329684e15fb1554", 0xcc, 0x2}, {&(0x7f0000000b00)="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", 0xfa, 0x3000000}], 0x8000, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@map_acorn}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}]})

08:48:04 executing program 3:
syz_80211_inject_frame(&(0x7f0000000080), &(0x7f0000000000)=ANY=[@ANYRES64=0x0], 0x34)

08:48:04 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)

[ 3141.077651] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3141.098040] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:48:04 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
r1 = socket$inet_icmp(0x2, 0x2, 0x1)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x8901, &(0x7f0000001840)="fb")
ioctl$BTRFS_IOC_ADD_DEV(r1, 0x5000940a, &(0x7f0000000600)={{r2}, "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"})
fsetxattr$trusted_overlay_origin(r0, &(0x7f0000000000), &(0x7f0000000080), 0x2, 0x2)
pread64(r0, 0x0, 0x7ffffffff000, 0x0)

08:48:04 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)

08:48:04 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), 0x0, 0x800, 0x3, &(0x7f0000000c00)=[{&(0x7f00000009c0)="64fdda1101af475433a537e3225fa4cbcc30c2a4fc08858a9d86dbe779cf05302117a2d9805dd6dc649bc0d5a3", 0x2d, 0x7}, {&(0x7f0000000a00)="cea29b3b1986db0f8a015cb690db341962dc00ad5b5f4d742bd60edfd898da3911331978807718a8fedde759fcafe0df9f98113e05a19d3443dc3cb6e926750647b061b63f0ae62e52e07ca0951b6021071e4376073f8875ede6f242f0f7c27cb16d7e3ff8a71785f639341213925a0188517e75ef247d162bebfad9c7daaf70a9d1d695b5842e3edfbacdcb8c609106143995b35747c54453cf6d1fd39a4517bc255a18da1ee8fb01114fc72e7fe3b31e80e68e5a4bcebca32f21c7592dc6abeb9960723329684e15fb1554", 0xcc, 0x2}, {&(0x7f0000000b00)="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", 0xfa, 0x3000000}], 0x8000, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@map_acorn}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}]})

08:48:04 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9)

08:48:04 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000052526141, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:48:04 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x3, &(0x7f0000000c00)=[{&(0x7f00000009c0)="64fdda1101af475433a537e3225fa4cbcc30c2a4fc08858a9d86dbe779cf05302117a2d9805dd6dc649bc0d5a3", 0x2d, 0x7}, {&(0x7f0000000a00)="cea29b3b1986db0f8a015cb690db341962dc00ad5b5f4d742bd60edfd898da3911331978807718a8fedde759fcafe0df9f98113e05a19d3443dc3cb6e926750647b061b63f0ae62e52e07ca0951b6021071e4376073f8875ede6f242f0f7c27cb16d7e3ff8a71785f639341213925a0188517e75ef247d162bebfad9c7daaf70a9d1d695b5842e3edfbacdcb8c609106143995b35747c54453cf6d1fd39a4517bc255a18da1ee8fb01114fc72e7fe3b31e80e68e5a4bcebca32f21c7592dc6abeb9960723329684e15fb1554", 0xcc, 0x2}, {&(0x7f0000000b00)="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", 0xfa, 0x3000000}], 0x8000, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@map_acorn}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}]})

08:48:04 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)

08:48:04 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000180)="a9")
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
fsmount(0xffffffffffffffff, 0x0, 0x72)
ioctl$sock_bt_hci(r0, 0x8901, &(0x7f0000001840)="fb")
ioctl$sock_bt_hci(r1, 0x400448ca, &(0x7f00000000c0)="0948061a9f78da456bc274fb20832315d308e184a7733c361420b0bb8825a72d419c4150b6888a83f5babe1e7c025b0ad57c896938f4d632524ee46dc7e01addff6495b2735a7fa1d6a290006a1986872e3907829e67e51c25860edc20a908846597d8")

08:48:04 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='environ\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
setsockopt$sock_void(r1, 0x1, 0x3f, 0x0, 0x0)
mknodat(r0, &(0x7f0000000000)='./file0\x00', 0xc000, 0x80000001)
r2 = accept$inet6(r0, &(0x7f0000000080), &(0x7f00000000c0)=0x1c)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r2, 0x8983, &(0x7f0000000100)={0x0, 'veth0_to_team\x00', {0x4}, 0x1})
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r3, 0x8901, &(0x7f0000001840)="fb")
signalfd(r3, &(0x7f0000000140)={[0x7]}, 0x8)

08:48:04 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000068000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:48:04 executing program 6:
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x200000000000000)

[ 3141.382384] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:48:18 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x800448d2, &(0x7f0000000180)="a9")

08:48:18 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@map_acorn}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}]})

08:48:18 executing program 2:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x71, 0xfd, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1, 0x9}, 0x2a0, 0x40000003ff}, 0x0, 0x20, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000180)="a9")

08:48:18 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, &(0x7f0000000200), 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9)

08:48:18 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x0)
ioctl$BTRFS_IOC_SCRUB(r0, 0xc400941b, &(0x7f0000000000)={0x0, 0x597, 0x80000001, 0x1})

08:48:18 executing program 6:
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x200000000000000)

08:48:18 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x480000006c000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:48:18 executing program 5:
syz_80211_inject_frame(&(0x7f0000000000)=@broadcast, &(0x7f0000000080)=@mgmt_frame=@auth={@wo_ht={{0x0, 0x0, 0xb, 0x0, 0x0, 0x0, 0x1, 0x1}, {0x1f}, @device_b, @broadcast, @random="4a15e46d65a9", {0xe, 0x8}}, 0x0, 0x0, 0x2e, @void, [{0xdd, 0x90, "a94aacf256e0fa86460a8e0b18cdcf69ca92cbd929be7c31073191c67e0724aa1f9c2070e06daf0fcd08c121534eedc554c79926bfa2f3dd625a90ccfefca02d0f52589e9eb2a80604fbab64e02668c993643e25363ab55112df5bb3e6399c95d7775e3ef5dcd7842dbdca34efc8818a57a6ddecd20e211bee3267dcfdf55f169d95f4e48e82f7923e68fbc5c5324e36"}, {0xdd, 0x55, "c8293d629498067fe26c052885cf1bb1d209b06a77ebfcacb4dfb90b85e1c2b01b65abe38ee2b8f9ee400d3efd8496e2769c71b9a11e8cc7644f05ab4dabb2d8a5db82bbad66cb1ae7f67f48cf71f8ebb16e92be38"}]}, 0x107)
syz_80211_inject_frame(&(0x7f0000000040)=@device_b, &(0x7f00000001c0)=@ctrl_frame=@ack={{}, {0x9}, @device_b}, 0xa)
syz_80211_inject_frame(&(0x7f0000000200)=@device_b, &(0x7f0000000240)=@mgmt_frame=@reassoc_req={@wo_ht={{0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1}, {0x81}, @device_b, @device_a, @from_mac=@broadcast, {0x9, 0x810}}, 0x2a, 0x7, @device_b, {0x0, 0x6, @default_ibss_ssid}, @val={0x1, 0x1, [{0x60, 0x1}]}, @void, [{0xdd, 0xd1, "8f735bea3b48e81a86407a1fb94961ab225ec2b3e04f2d7df4633d4ea128bbc686a515e1e84b85f15f00acce00377853204003ce21bff766dd14f3bbe1d8108f16e1412a5480f79bd29a5cb3a40ad1f0eddb27fab83ccd33e52764c6d02d8c3bd826920247353272939ce7db2f4ce69737d66fb80b8042505848773529a2037d204fdfda1a19e05eae4d05e37a7881ed82cc86759ce2eb85e81f8976753a8964332a810cbfcd1fb27e9dd011b3bef59dd88108a0a27d8c95568598e033879d389542cb1218e7c6d1d06f97e948b9908308"}, {0xdd, 0x68, "1122ccc385b5f15b01b119c4ca2ff95869b65d754921b2e91ba408369a835b9c9665b32f0a9f453639f923e3d863acf1f20d3df98a4bb6fcc43c88ee6c1d7e74b80ab2b3ad511aa3dd367b69ddb42440ba05fa4c1a14d41ebb503888ce47c7692fd511d9b9f8266c"}, {0xdd, 0xee, "daadb00d01cac1ed07b935b3916d89df158bc2452251bd4a8a0011c093ee595be4d0498e0e3355d1a4aa44665aa2a8b1b9f9a25a81cbc8c089187088baea5068d4c99eb26cae6a97e0e54c2c06b8203541e51c15a50c694f0a0adc162f20dd0d1af401aff37ac467bba09af29327e0b27460e0de60c5cb5201742fb836bd964cd855d27049ade07b102b38fb3552ed28bcc45ca61b18c3357283a814736c0367f74e229562195af13ebb70675fedbfe9b994f9d5ba3b76cac2a9e53ff745ccc4f1203580bb55a67c39a4e11155f758861e4d9a0612c8e31d3f7405d94792bbc23721dc7c0d9c184552bf9bed2233"}, {0xdd, 0xd9, "74ffc43089e9492ab895019c1ea19201cade266be4a62c52e27f72a891857759c698f8ff9919018ccb5f19f59415ea6e88e6ac806a39d8d0cb7a3179dc4f057e4292fc6f5e60d2c608e89208835d6e375e0f8342cd50ba1f8ac53e89f162a38815cc6cd42ca5d175f4d9080ddec9b04c2327466a26030422a56790ba3af2cdfbf51cfb672f47f74de30560c2c0b31c8a9bf2e22596f83de59d5c0ae882a32d84aec48a7bc9ef30d358a36e24d8556a480ca437c134f822e3bf898c8feceef1eac4d597314505dfda5e45e7dc9a77241ce3160595875a28485f"}, {0xdd, 0x8c, "b53b699d7229d52238e23bd2bf3dc245dc95901c6018ad1efa8eb4edaf0bee2101223fcae58c768e3069dbcb07b0f7eed34d205c266d582ee6e75f934c6b7f1d4026d72d85267abcd097d537f128b5aca1b56850bd728aea0dd6128bd8815cde311c04568c075a658b1dec8622e51d0fb057b8e23366d2b77558adeddbdc074d59bce63d7f2678b317de2a73"}, {0xdd, 0xa3, "af7c063d513922ce379619ad8aaba86b7696bdde3c0f69499827708e043465fa7e1496d69d44842a2fbc01eca2914960026b716c152df574adee568155562616f438eb78f722613138e661cf161f85a927450e9750652249432a84032cbfd5b8ad6cf908e6ec73c912f5adc0807550d80ebd4cec84fdc277cb61da5b9d7818afb3890213be6fe3728203b4f2670bbb731532045255790734c5e12f003896c47f5b2569"}, {0xdd, 0x2f, "7aef8fe822a7973b6e10e5aebc06b455fc2793a4b0a908788b62c5e90417f86205e2cf634dd17a19037dad0427d4b5"}, {0xdd, 0xf9, "52ce2b168791b1c9ee9af45425320915f77ed16fac220f07516a414f2ce1f7975ca1be836682dd7825efebbeb11ba6915c5944310df28b59c334f46004ea3122675098a678e9c59dff8b812c6722bbeab4d10041597e65dfd6cd1914193041f488908fc7f48a2451e360daa9cb25b13742fea8760c1b95af0857db748dc48f355ddeb7d6c4f0279387f0f65aba77ab8c70472fa6a8934f90f2a03af5fe02e8dbf859ecfaa485d51399c1d9d78777dfe80dc39ebff9f982003257b786c183fa5f3c7234874b0a7ae04b6b9d4d5ff9b0c869be0312c0c123536b491653dd6485ab3494c8fd05dd234bab5dd2d9eaca5b92afeecdf908826e7e18"}]}, 0x594)

[ 3154.787075] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3154.793167] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3154.802300] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:48:18 executing program 6:
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x200000000000000)

08:48:18 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@map_acorn}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}]})

08:48:18 executing program 2:
r0 = perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_bp={0x0}}, 0x0, 0x20000000000000, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f00000001c0)={0x4, 0x80, 0x9, 0x80, 0xb1, 0x5, 0x0, 0x8001, 0x4000, 0xf, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x4, @perf_config_ext={0xfffffffffffffffb, 0x1000}, 0x220, 0x9, 0xf05, 0x2, 0x2, 0x0, 0x2, 0x0, 0x1, 0x0, 0x8}, 0x0, 0x5fed5673, r0, 0xa)
ioctl$sock_bt_hci(r2, 0x8901, &(0x7f0000001840)="fb")
ioctl$sock_bt_hci(r2, 0x400448ca, &(0x7f00000000c0)="398d9677d12c613082b4b8d6eaa427dfb0eebd7fd1f60b07ca34baaa64b0f45255f969bc6b97101beb6ab9a809940be7e8caea7b4adb4b07a9be252bd91eb4bac717b8fac09ebabaaee44164ff0b8129e264d88b25ae536c67c0c07e17f93010f976ae99ba8a8d16bf74ea")
openat$sr(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$sock_bt_hci(r1, 0x400448dd, &(0x7f0000000180)="a9")
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x4, 0x4}, 0x6)

08:48:18 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)

08:48:18 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000074000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:48:18 executing program 7:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r1, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000080)={<r2=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0xc, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r2, 0x3, r0, 0xa)
r3 = syz_open_procfs(r2, &(0x7f00000005c0)='pagemap\x00')
ioctl$BTRFS_IOC_START_SYNC(r3, 0x80089418, &(0x7f0000000000))
pread64(r3, 0x0, 0x7ffffffff000, 0x0)

08:48:18 executing program 6:
r0 = syz_open_procfs(0x0, 0x0)
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)

08:48:18 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@map_acorn}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}]})

[ 3155.113678] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3155.116739] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3155.118309] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:48:31 executing program 5:
syz_80211_inject_frame(&(0x7f0000000040)=@device_a={0x3}, &(0x7f0000000140)=ANY=[], 0x34)
syz_80211_inject_frame(&(0x7f0000000000), &(0x7f0000000080)=@mgmt_frame=@action_no_ack={@wo_ht={{0x0, 0x0, 0xe, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1}, {0x8}, @device_b, @device_b, @from_mac=@device_b, {0xf}}, @tdls_setup_req={0xc, 0x0, "", 0xff, @val=0xb4, @void, @val={0x2d, 0x1a, {0x1000, 0x1, 0x6, 0x0, {0x4, 0x1f01, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x1, 0x1}, 0x6, 0xfff, 0x3b}}, @val={0x65, 0x12, {@initial, @device_a, @broadcast}}}}, 0x4d)

08:48:31 executing program 2:
r0 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x6f, 0x1, 0x0, 0x5, 0x0, 0xfffffffffffffffd, 0x14a16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_config_ext={0x7fffffff, 0x5}, 0x4040, 0xb, 0x6, 0x8, 0xfffffffffffffffb, 0x4, 0x0, 0x0, 0xfffffffc, 0x0, 0x3}, 0x0, 0x9, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = dup(r2)
r4 = dup(r3)
sendmsg$IPCTNL_MSG_EXP_GET(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="50000000af8d10838500f46a33ecea3df89a944b968e3aa2c697a8e120be820cabf0d2c608ea3625cd4e23638f1c0975ac26b67213c28360fe8c7fb3732461c26abd510b4240182b924cd536d94dd1a8e298112581f30f46151b83ccdd8f04a005389141f922ff17e6a5a92989171b916b2b4f16d3ae7d098eef3eacca1b5a0f06ca5b5d82bb306aa8167ab7c095d83c031fcc34ed212f6c8e0cd0060fa999eaec7d0821b340b3793ac39fa4aedcb55f53fec58ea02858ff71aa3dd90990d68479c9ba8037d81a"], 0x50}}, 0x0)
fallocate(r4, 0x26, 0xe94, 0x0)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r5, 0x8901, &(0x7f0000001840)="fb")
dup2(r1, r5)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448dd, &(0x7f0000000180)="a9")
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r6, 0x8901, &(0x7f0000001840)="fb")
bind(r6, &(0x7f0000000240)=@caif, 0x80)
r7 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x401c5820, &(0x7f0000000140)={0x7, 0x8, 0x0, 0xdfffbff7, 0x2e4c})
r8 = openat$bsg(0xffffffffffffff9c, &(0x7f00000001c0), 0x100, 0x0)
epoll_ctl$EPOLL_CTL_MOD(r8, 0x3, r0, &(0x7f0000000200)={0x8})

[ 3168.418835] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:48:31 executing program 6:
r0 = syz_open_procfs(0x0, 0x0)
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)

08:48:31 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)

08:48:31 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x2, &(0x7f0000000c00)=[{&(0x7f00000009c0)="64fdda1101af475433a537e3225fa4cbcc30c2a4fc08858a9d86dbe779cf05302117a2d9805dd6dc649bc0d5a3", 0x2d, 0x7}, {&(0x7f0000000a00)="cea29b3b1986db0f8a015cb690db341962dc00ad5b5f4d742bd60edfd898da3911331978807718a8fedde759fcafe0df9f98113e05a19d3443dc3cb6e926750647b061b63f0ae62e52e07ca0951b6021071e4376073f8875ede6f242f0f7c27cb16d7e3ff8a71785f639341213925a0188517e75ef247d162bebfad9c7daaf70a9d1d695b5842e3edfbacdcb8c609106143995b35747c54453cf6d1fd39a4517bc255a18da1ee8fb01114fc72e7fe3b31e80e68e5a4bcebca32f21c7592dc6abeb9960723329684e15fb1554", 0xcc, 0x2}], 0x8000, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@map_acorn}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}]})

08:48:31 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
fcntl$F_SET_RW_HINT(r1, 0x40c, &(0x7f0000000000)=0x2)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x8901, &(0x7f0000001840)="fb")
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r3, 0x0, &(0x7f0000000080)="fa")
ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0x0, r3, 0x0, 0x3, 0x7, 0x5})
pread64(r0, 0x0, 0x7ffffffff000, 0x0)

[ 3168.427951] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:48:31 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000078000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:48:31 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, &(0x7f0000000200), 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9)

[ 3168.734006] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:48:45 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)

08:48:45 executing program 5:
syz_80211_inject_frame(&(0x7f0000000040)=@device_a={0x3}, &(0x7f0000000140)=ANY=[], 0x34)
syz_80211_inject_frame(&(0x7f0000000000), &(0x7f0000000080)=@data_frame={@no_qos=@type10={{0x0, 0x2, 0x2, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1}, {0x9}, @random="33459d424aa7", @device_a, @device_a, {0x5, 0xfff}}, @random="c06452fc40512d97a1e155487255b63108f84957d6ad4226f3894a6a71213222081a1311116d93ba2bcfa4072b4b2bf17b5e95eabc3c035dc3afe2bbaf8912dbf8342a68acb4a138816807f1d8e56dffac97a63ff372c1cdcb2eec09ca5b33c7e3bd63be7b48b965c6afc5a99426b2553b224d532ee1fcc7ea5a54e9b52fc3343ec36fb509c184759f47406ba97345eedfd17db3dd3f175e9a2864a3ff8049b761965ef832cf82fabf9352360e19161079216f9817dfd2f917641d042a460a5a29ab713655250e7516b4222eb340ee659bbf9d90087b76b5a828c13a1ab03fca3958b3f914b6b42e8b7fda510fabd018ce14925c7339581212fc74063ace633b911bb4bd655e0db33b23946ac422276c71fb5a50ff282d26f18edcf9cd48684ff3e1d0d1ceb6954fea91494464f4216579bfa1d4950ccccf2c5f56ef11a52b775c19acf4e46d056c1cc6c1a37dd2dd7d250e8708cc3260d6cd49660dcefb30195c7e70900a4e0470bb9827f58b38d94bc73660ede0b271d41766cf5662706f0c98d0668322c7c37ca96e73197c35028e451882a968b25acad5f9e3b7c8c3711f8d6a70f34d176595a29b7a3475027a030228afa1cfc832e4efee0f756cb651108a17658d0f8bfc02377a889bfe70eada75ba8229a5d3478446d43b866c4fb47e9322bbe5100b75df97e5a5640bac22ea6a8070ddeab21c044fb49a680e5cf0fd2763413f0d050024889e3df673966c8e80604e1ee126a2c19410576f7952f0ccf5e8d394d22c40c61f371d69e7b421e75920d1d54ebb436cb330865f64746c5a82486e4bf74a40116d6faafdbfc54651d15e075f752861f95addf69439f7a39de2770bc75afac901b82391d863842c3911a6d5473d4c75f7f906039916bd5be266db47725b736d9ca3bb6dfaa18e62ea6b2ebb23c02524862b8c2a22a38f11fac270802f5e0aebdb33ddebbc9d36c21eb733aa63660ee530c38fa4448fa9c95ec066e72aea892ef993b598a49b1e0c8c32d86b946e0c53e75d8b643dcbc1a4289de5708ceb2a48e6cb8740e4f9b23d935011d59924286a1008fc89a5e455638481c878a3ac6caddb97a1eba982256d6a1e96fc581fe0ff1788a6a2683c7df09639f197a444f09cb976b73f0aaf67b78b8b9279dc1049e2e8eee1723719277e5a400d1ae58c03e9cfeb8e82960b358d3a6f15a5e1854f5c520ee175e5cc2300d76d851c6cbd83dc9c1def48bbb6606414983cc80af08720bb90941c5f21ccd31f1ae177a4fdd39c6089434a678e3822d4a108afdd7e28439afcfaab7f9fcc05be0417229f90c692414ded2fa7f5800c36094a784d61bee0b82499ebb9b7cd4f1f9c28c4b5b26a7fa0c9eb842f7d68f591942153c7dd5b5d4560620bfa150a2ba55d985b8d5b3288fc55d1a5e173cd4fe940208fd83f45f41ee0af3f08a76bd1cbfdc00423b08abd0cab8230ffa75f5866ac306a486bdf519cc9a7165760d335f78283230ce41be336921141a1d927586650bc1b3d778b75e38db13dab5a64e54bae467789e7852979ce94467de33c11e9dbb0ea0498a807388486f691f3fb32b49eb154b3e78674e4f14bd7e97b39b28138bba4fe93604471ac755fc10da62d59fc6cd09b36304e40f2adfd041342b42d40ebb7c65f413f50900fa3afdcfa92a51d1054a727bf3ab009a6f76b44e61dd61d0b7698c7f1bfed1f4481699e981deeae1411d3472bc098dbb5724e3ee40660c6726f0202286279a7cd859aedd84a5b6cdc93af3b4af80101cd5dac8877f596d318bc1bb280b9b4897ff4487084c8125ac14fede22a2028fbcb6bdc3e6a8989ffa8236b3196bb809b4fc6bfa871bd19cc945b"}, 0x53b)
syz_80211_inject_frame(&(0x7f00000005c0)=@device_b, &(0x7f0000000600)=@mgmt_frame=@probe_request={@wo_ht={{0x0, 0x0, 0x4, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, {}, @broadcast, @device_a, @from_mac=@broadcast, {0x5, 0xef2}}, @void, @void, @void, @void, @void, [{0xdd, 0xc0, "7493e69dfd8b94b414676bcfeb72cf5fe8ef2f19bb28eb800e28c532b8eb7548e0e419193d2164e5172b929df43b5bd143c949112ade12a5aee4693502bac3f2daf6831248927f8bc38f45bd8b5c3977341ba48ddddc67ff37ca02acb62a771f025b67e6502df814931a120421423e176dd59e88ebbcf13413d310adec641bb911d77ee4f4fbad4cfd798e35f9aef5b84ce144c107a1b926e9c97cbbd15cd30eb1acc3e345c1e68523aa8d8a26b1c35dd6d5b036846b1f7f43289d02513a205b"}, {0xdd, 0x21, "df39475d5d60bca111bd012b7a73c4a135581268d7c1dab2679016db99894c5cde"}, {0xdd, 0xb2, "d63da23063f5f661a690266f5d41b3a657e18a2cad6ec31c9cbf77c2e24d46f0c6904ceb58e8d46fa7ef90761d2f0ecc358d3cbfd220a88e0cd7736412a76c6697da730e10e0ff63ff2f660d93e7d168e2c9543d7b78a5265f6aebd08195b1d5a398aa161ed3b40f76d9606a6803946a6807fd41c6f64600370b9560153a523b290ddef75ca922fb125633a9a7d8fe2bfd28d5ce40450df90476af15ef19fb5fa0110d66b6cbfdb9c2e0d1112fee9af31891"}, {0xdd, 0xee, "5204248e803da131e04b2222c582e76b69e66ea655dc6d5cbffa3335c307b1ee509920c55ffe382ade51f0ba6d1c73f86e2dcecf9683a830e107a509e6d7b137e5d6bd472cf37e56bed806b04746a2c4c15166c87cb46d84d91e5c8714a82cb9639d1accd826e1eff9917a66ff5348467a021f706e5950a734af92a23cfdac5428d5ec01c02793b7df265cd9980b8cb51de1f2957397e6a57d76039df5736a446d64dfffb180fb3e09400b93b61016d12cccf9bdd0af6f705b04e14e59f91067696ebe840abffe68f397487ecf72cd2c39c5a6e8263baf1b3d26d24a51d210b0481f6adbf66f4ce6c93de44329ba"}, {0xdd, 0x45, "a0df3dcebfc040ce2ca10e847a4368718fef93b963e35ac26d26b7a7d6a122c08c7c59a924cb7e0e484b5aedc82f9d96e1057001bdc2be8ab80fc650d60cd3318eb08e9bfe"}, {0xdd, 0xae, "cf86048e7ec9605d8ae7e0a715689c2c8e54a283740daae5db8f092871b485f777fff07ac3017420945f17753f97b246c0a37f31a232536a26fbf0a2895d655b1810be8e9c559a819a5d57209d388aef910cf35edd0f6a55534f5fc6625cebc947fd1eb44b721ccbf87b7be2d0753896274c414025d7603acf0b702521de3df2b097ed1ee3be84954869b9359392bcb64cca719a4551f93cd816ad1480dc2e76c0cdd6ba8e45edd5c7d27d5c8b4e"}, {0xdd, 0x3a, "bdacbd60e3f0b0ab1e9a41030234b8321fad986735eb69a20049299e4155f1a3d03ab89b98161c8106c8f424cbe6ee2cd52db4e89d9769c1c487"}, {0xdd, 0x12, "05d14a715838e524d8c091f35ba3ab659bbc"}, {0xdd, 0x9, "9c1e1651e02b93273d"}, {0xdd, 0x40, "1f466f9712f434955d174dc7b1b94556361fa6e5851ad960af0a691047caa395d01a9ac472612f6b5a8e3bb5f4e29c57ad79f56787e29182ec8bec5aefdab33b"}]}, 0x435)

[ 3181.895574] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3181.906297] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:48:45 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000180)="a9")

08:48:45 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x480000007a000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:48:45 executing program 6:
r0 = syz_open_procfs(0x0, 0x0)
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)

08:48:45 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
r1 = dup3(r0, r0, 0x80000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_CONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)={0x40, r3, 0x5, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r4}, @val={0xc}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x3f}]]}, 0x40}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_DEL_KEY(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x48, r3, 0x910, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r5}, @val={0xc, 0x99, {0x66, 0x20}}}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "d1f217e570bf6fae96957b6df7"}]}, 0x48}, 0x1, 0x0, 0x0, 0x20000004}, 0x20000000)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f0000000180)=ANY=[@ANYBLOB="010000000100000018620000", @ANYRES32=<r7=>r1, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r10 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000003c0), 0x40500, 0x0)
openat(r10, &(0x7f0000000400)='./file0\x00', 0x80080, 0xf)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f00000000c0)={'wlan1\x00'})
sendmsg$NL80211_CMD_CONNECT(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)={0x24, r9, 0x5, 0x0, 0x0, {{0x2}, {@void, @val={0xc}}}, [@NL80211_ATTR_DISABLE_HT={0x4}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_SET_INTERFACE(r7, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0x64, r9, 0x400, 0x70bd28, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r4}, @void}}, [@mon_options=[@NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "bd60b31907d227f455e75785f9ecb27faaacb222908c46c0"}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "8c0de56671d073c2b2f52dd8735a9c5ab8f848a3ecd98e30"}], @NL80211_ATTR_4ADDR={0x5}, @NL80211_ATTR_4ADDR={0x5}]}, 0x64}, 0x1, 0x0, 0x0, 0x4000000}, 0x40)
ioctl$sock_bt_hci(r6, 0x8901, &(0x7f0000001840)="fb")
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
pread64(r6, 0x0, 0x0, 0x6)

08:48:45 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x1, &(0x7f0000000c00)=[{&(0x7f00000009c0)="64fdda1101af475433a537e3225fa4cbcc30c2a4fc08858a9d86dbe779cf05302117a2d9805dd6dc649bc0d5a3", 0x2d, 0x7}], 0x8000, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@map_acorn}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}]})

08:48:45 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, &(0x7f0000000200), 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9)

[ 3181.932436] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:48:45 executing program 6:
syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x200000000000000)

08:48:45 executing program 3:
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x806c54747f0000)

08:48:45 executing program 2:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x5, 0x8, 0x20, 0x2, 0x0, 0xfffffffffffff974, 0x80400, 0x4, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x7f, 0x2, @perf_config_ext={0xff5, 0xffffffffffffffc0}, 0x880, 0x292, 0x10d0b454, 0x4, 0x4, 0xfffffeff, 0x3, 0x0, 0x40, 0x0, 0x881}, 0x0, 0x4, r0, 0xb)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r1, &(0x7f0000008840)=[{{&(0x7f00000001c0)=@caif=@util, 0x80, &(0x7f0000000140)=[{&(0x7f0000000000)=""/26, 0x1a}, {&(0x7f0000000240)=""/4096, 0x1000}, {&(0x7f0000001240)=""/117, 0x75}, {&(0x7f00000012c0)=""/4096, 0x1000}], 0x4, &(0x7f00000022c0)=""/239, 0xef}, 0x68}, {{0x0, 0x0, &(0x7f0000002580)=[{&(0x7f00000023c0)=""/84, 0x54}, {&(0x7f0000002440)=""/222, 0xde}, {&(0x7f0000002540)=""/29, 0x1d}], 0x3, &(0x7f00000025c0)=""/61, 0x3d}, 0x4}, {{&(0x7f0000002600)=@alg, 0x80, &(0x7f0000002700)=[{&(0x7f0000002680)=""/124, 0x7c}], 0x1, &(0x7f0000002740)=""/249, 0xf9}, 0x5}, {{0x0, 0x0, &(0x7f0000002980)=[{&(0x7f0000002840)=""/77, 0x4d}, {&(0x7f00000028c0)=""/160, 0xa0}], 0x2, &(0x7f00000029c0)=""/251, 0xfb}, 0x10000}, {{&(0x7f0000002ac0)=@ieee802154={0x24, @short}, 0x80, &(0x7f0000002e80)=[{&(0x7f0000002b40)=""/60, 0x3c}, {&(0x7f0000002b80)=""/106, 0x6a}, {&(0x7f0000002c00)=""/52, 0x34}, {&(0x7f0000002c40)=""/148, 0x94}, {&(0x7f0000002d00)=""/107, 0x6b}, {&(0x7f0000002d80)=""/243, 0xf3}], 0x6, &(0x7f0000002f00)=""/136, 0x88}, 0x3}, {{&(0x7f0000002fc0)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @mcast1}}, 0x80, &(0x7f0000004040)=[{&(0x7f0000003040)=""/4096, 0x1000}], 0x1, &(0x7f0000004080)=""/4096, 0x1000}, 0x7191}, {{&(0x7f0000005080)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r2=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @private0}}}, 0x80, &(0x7f0000005380)=[{&(0x7f0000005100)=""/192, 0xc0}, {&(0x7f00000051c0)=""/211, 0xd3}, {&(0x7f00000052c0)=""/36, 0x24}, {&(0x7f0000005300)=""/104, 0x68}], 0x4, &(0x7f00000053c0)=""/252, 0xfc}, 0x8}, {{&(0x7f00000054c0)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x80, &(0x7f00000077c0)=[{&(0x7f0000005540)=""/28, 0x1c}, {&(0x7f0000005580)=""/82, 0x52}, {&(0x7f0000005600)=""/205, 0xcd}, {&(0x7f0000005700)=""/143, 0x8f}, {&(0x7f00000057c0)=""/4096, 0x1000}, {&(0x7f00000067c0)=""/4096, 0x1000}], 0x6, &(0x7f0000007840)=""/4096, 0x1000}, 0xffffffff}], 0x8, 0x1, &(0x7f0000008a40))
fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f0000008a80))
ioctl$sock_bt_hci(r1, 0x400448dd, &(0x7f0000000180)="a9")

08:48:45 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x480000008cffffff, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:48:45 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r1, &(0x7f0000001500)=[{&(0x7f0000000100)=""/98, 0x54}, {&(0x7f0000002540)=""/4104, 0x1000}], 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_SET_FD(r1, 0x5, &(0x7f0000000000)='\xa5)-w{\x00', 0x0, 0xffffffffffffffff)

08:48:45 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@map_acorn}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}]})

08:48:45 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000180)="a9")

08:48:45 executing program 6:
syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x200000000000000)

08:48:45 executing program 3:
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x806c54747f0000)

[ 3182.237162] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3182.239118] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3190.157222] Bluetooth: hci5: command 0x0406 tx timeout
08:49:03 executing program 5:
pipe2(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0xb23117155e7f6fc8)
ioctl$PIO_UNIMAPCLR(r0, 0x4b68, &(0x7f0000000080)={0x7d3f, 0x0, 0x5})
syz_80211_inject_frame(&(0x7f0000000040)=@device_a={0x3}, &(0x7f0000000140)=ANY=[], 0x34)

08:49:03 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x48000000c0ed0000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:49:03 executing program 7:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000000002010, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:49:03 executing program 3:
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x806c54747f0000)

08:49:03 executing program 6:
syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x200000000000000)

08:49:03 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x0, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@map_acorn}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}]})

08:49:03 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000180)="a9")
openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)

08:49:03 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9)

[ 3200.519126] ISOFS: Unable to identify CD-ROM format.
[ 3200.525883] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:49:03 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x0)

[ 3200.564173] FAT-fs (loop7): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
08:49:03 executing program 3:
r0 = syz_open_procfs(0x0, 0x0)
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)

08:49:04 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x48000000f6ffffff, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:49:04 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x0, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@map_acorn}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}]})

08:49:04 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x0)

08:49:04 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9)

08:49:04 executing program 3:
r0 = syz_open_procfs(0x0, 0x0)
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)

08:49:04 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r1 = syz_io_uring_setup(0x6c75, &(0x7f00000002c0), &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r1, 0x0, 0x0}, 0x0)
r4 = mmap$IORING_OFF_SQES(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x100000e, 0x50, r0, 0x10000000)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r5, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r7, 0x8901, &(0x7f0000001840)="fb")
r8 = syz_open_dev$sg(0x0, 0x0, 0x2001)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r8, 0x84009422, &(0x7f00000004c0)={0x0, 0x0, {0x0, @usage, <r9=>0x0}, {0x0, @struct}, {0x0, @struct}})
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r8, 0xc400941d, &(0x7f00000008c0)={r9, 0x5, 0x80000001})
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r5, 0x84009422, &(0x7f0000001880)={0x0, 0x0, {0x0, @struct, <r10=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
ioctl$BTRFS_IOC_BALANCE_V2(r7, 0xc4009420, &(0x7f0000001c80)={0x4, 0x3, {0x8, @usage=0x7fffffff, r9, 0xb068, 0x1, 0x401, 0xfff, 0x7dab, 0xa9, @usage=0x81, 0x5, 0x779d, [0x6, 0x5354, 0xffffffff, 0x87e4, 0x0, 0x1]}, {0x10001, @usage=0x1000, 0x0, 0x4d52, 0xed50, 0x4, 0x600000000000000, 0x5, 0xcc, @usage=0x4, 0x8001, 0x8, [0xff, 0x6, 0x570f, 0x100, 0x1, 0x2]}, {0xffffffffffffffff, @usage=0x7, r10, 0x50, 0x8001, 0xffff, 0x1, 0x511f, 0x32, @usage=0x8, 0x10000, 0x20000, [0x1, 0x2, 0x80000000, 0x400, 0x9, 0x6]}, {0x9749, 0x40, 0x6}})
ioctl$sock_bt_hci(r6, 0x8901, &(0x7f0000001840)="fb")
syz_io_uring_submit(r2, r4, &(0x7f0000000100)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x1, 0x0, r5, &(0x7f00000000c0)={0x2000}, r6, 0x3, 0x0, 0x1}, 0x81)
ioctl$PERF_EVENT_IOC_REFRESH(r0, 0x2402, 0xfffffffffffffff7)
ioctl$TIOCCONS(r0, 0x541d)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)

[ 3200.788405] ISOFS: Unable to identify CD-ROM format.
[ 3200.833244] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3214.194135] ISOFS: Unable to identify CD-ROM format.
08:49:17 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x48000000f9040000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:49:17 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000)

08:49:17 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9)

08:49:17 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x0)

08:49:17 executing program 3:
r0 = syz_open_procfs(0x0, 0x0)
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)

08:49:17 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x0, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@map_acorn}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}]})

08:49:17 executing program 5:
syz_80211_inject_frame(&(0x7f0000000040)=@device_a={0x3}, &(0x7f0000000140)=ANY=[], 0x34)
syz_80211_inject_frame(&(0x7f0000000000)=@device_b, &(0x7f0000000080)=@mgmt_frame=@assoc_req={@with_ht={{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1}, {0x4}, @device_a, @device_b, @from_mac=@device_b, {0x1, 0x3}}, @ver_80211n={0x0, 0x6, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1}}, 0x5020, 0x3f, {0x0, 0x6, @default_ibss_ssid}, @void, @void, [{0xdd, 0x40, "88f28cbf7e37aaa5a08115d65d0fa9ebc29e26772ba394c22a49956df82b6de9cbf0922ed9a1f9def10ee292f2c06861e7fef0bbccc054f412555da6244cab07"}]}, 0x6a)
syz_80211_inject_frame(&(0x7f0000000100)=@device_b, &(0x7f0000000140)=@ctrl_frame=@cts={{}, {0x2040}}, 0xa)

08:49:17 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000180)="a9")
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x1}, 0x6)

[ 3214.201553] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3214.218132] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3214.230684] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:49:17 executing program 3:
syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x806c54747f0000)

08:49:17 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000)

08:49:17 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, 0x0)

08:49:17 executing program 6:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r1, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000080)={<r2=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r2, 0x3, r0, 0xa)
r3 = syz_open_procfs(r2, &(0x7f00000005c0)='pagemap\x00')
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0), r1)
sendmsg$TIPC_NL_BEARER_ENABLE(r3, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000100)={&(0x7f0000000600)={0x2d0, r4, 0x4, 0x70bd2b, 0x25dfdbfc, {}, [@TIPC_NLA_MON={0x44, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x80000001}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x101}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x5}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7d2}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7f}]}, @TIPC_NLA_PUBL={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x8d}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7ff}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x3ff}]}, @TIPC_NLA_SOCK={0x78, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x5e}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x3}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x2}, @TIPC_NLA_SOCK_CON={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7ff}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1ff}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x4}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x4}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x9}]}, @TIPC_NLA_SOCK_REF={0x8}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x1}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1ff}]}, @TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x2}]}, @TIPC_NLA_MEDIA={0x50, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xff000000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}]}]}, @TIPC_NLA_NODE={0x188, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0xa4, 0x3, "322be5b9b77a6f739afaed47e0bd04c4991d407c46055ffb6ec114b8af573a80aa2c68530f4cce072534cf506a70fc13bf680ebb464732bd639091b84ae6aec49010d2f4f35eb15e3ce0a21b79f0e4f1979e199dacd6c6f954ad8ce0666bc249ccc986a58d823e8d4fee812667c10a86b5b880a9e35279debf720042a3825ecf1a089129a7a0ceff8accdcc504add03b7fc4ac99b40cee29e5e737e65572dedf"}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x8}, @TIPC_NLA_NODE_KEY={0x4b, 0x4, {'gcm(aes)\x00', 0x23, "5cd4e622ca7ba627996bbb0836fa42732c378640fb4461e49ca331a9b70f9d4d13511d"}}, @TIPC_NLA_NODE_ID={0x2f, 0x3, "924089ef096cec4240e4e39d4da21658e5f5bd10018af59f824583725c514bfba71787c67893fe9d374afa"}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY={0x47, 0x4, {'gcm(aes)\x00', 0x1f, "c3ba232cddab342398eb7a0044ad26f08c34266aa7438f488bdd21a79a2d89"}}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xfffffdac}]}]}, 0x2d0}, 0x1, 0x0, 0x0, 0x40}, 0x0)
pread64(r3, 0x0, 0x0, 0x0)

08:49:17 executing program 2:
perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000180)="a9")
r1 = open(&(0x7f0000000000)='./file0\x00', 0x6080c1, 0x1f0)
ioctl$PERF_EVENT_IOC_DISABLE(r1, 0x2401, 0x7582048)

08:49:17 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x48000000f92f0000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:49:17 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(0xffffffffffffffff, r6, 0x0, 0x7ffffff9)

08:49:17 executing program 3:
syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x806c54747f0000)

08:49:17 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000)

08:49:17 executing program 6:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x894c, &(0x7f0000000180)="a9")

[ 3214.535261] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3214.537553] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3214.540406] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:49:31 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, 0x0)

08:49:31 executing program 6:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, 0xffffffffffffffff, 0x0, 0x20d315)
r2 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r2, &(0x7f00000000c0)=0x4, 0x8)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r5 = dup2(r4, r3)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r6, r5, 0x0, 0x7ffffff9)

08:49:31 executing program 5:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000440), 0x101400, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000004c0)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_SET_POWER_SAVE(r0, &(0x7f0000000580)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x40, 0x0, 0x20, 0x70bd2c, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r1}, @val={0xc, 0x99, {0x8ef, 0x6}}}}, [@NL80211_ATTR_PS_STATE={0x8}, @NL80211_ATTR_PS_STATE={0x8}, @NL80211_ATTR_PS_STATE={0x8}]}, 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x4040)
syz_80211_inject_frame(&(0x7f0000000000), &(0x7f0000000080)=ANY=[@ANYRES32=0x0, @ANYRESDEC], 0x34)
syz_80211_inject_frame(&(0x7f0000000100)=@device_b, &(0x7f0000000140)=ANY=[@ANYBLOB="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"/587], 0x1b0)
syz_80211_inject_frame(&(0x7f0000000040)=@broadcast, &(0x7f00000000c0)=@ctrl_frame=@cf_end_cf_ack={{}, {0x7}, @device_b, @broadcast}, 0x10)
syz_80211_inject_frame(&(0x7f00000003c0)=@device_b, &(0x7f00000005c0)=@mgmt_frame=@auth={@wo_ht={{0x0, 0x0, 0xb, 0x0, 0x0, 0x0, 0x1}, {0x1}, @device_a, @broadcast, @initial, {0x5, 0x6}}, 0x1, 0x4, 0x35, @void, [{0xdd, 0x55, "71991ac0254985ac6e39ceb4be6b22a8c5b6805a2f8ef7ca34a9de812b5a928bb6185b9ceaefee5682b375339dfce23c1f62d4b2e83cbac72c92fddc7d141d83581547a058fdea6459f4d89080322c09573ae6f5ae"}, {0xdd, 0xe7, "d6e11d3ea1facacb5ad83d7471938e7b2fb00ad9383b80db2e92aaca5d604bef59b557790074fd43dc034d0c192c3288344141e760a58db0f28f4b69c8acc4f494997be61bb4cb6b0bdcb4f193ea4c28b8907fbdb365c8a3607291c39b44832e65ada8c0ff53e00b1245884596a16e00c0b11078146d204c2e8a9e1cad6a3b9962158053008af811c682619245445727f11325b34a5c5fcefad1be2773e0161520bfcbbc3ddc1f176321303e8d869cc72b96e281e8aa270a5ed4c3e8093c20780d9fe9c326ceb078b90bc5741c672aae02a3256868f620db79c3358f5e8e464baa37fe864d20f6"}, {0xdd, 0xd, "1dee3532a6c56af0d6d46b15c7"}, {0xdd, 0x1f, "8295f99918d893803aec02de090cdc0651b9b11675ed5fab02bb25b5859242"}]}, 0x18e)

08:49:31 executing program 7:
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x200000000000)

08:49:31 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x6}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000180)="a9")
openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x2a0c40, 0x0)
r1 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f00000000c0), 0x200, 0x0)
ioctl$EXT4_IOC_SWAP_BOOT(r1, 0x6611)

08:49:31 executing program 3:
syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x806c54747f0000)

08:49:31 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x48000000f9fdffff, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:49:31 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(0xffffffffffffffff, r6, 0x0, 0x7ffffff9)

08:49:31 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, 0x0)

[ 3228.323231] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3228.329368] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3228.331962] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3228.337655] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:49:31 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x0)

08:49:31 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(0xffffffffffffffff, r6, 0x0, 0x7ffffff9)

08:49:31 executing program 7:
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x200000000000)

08:49:31 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x0)

[ 3228.641362] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3228.643176] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3241.913779] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3241.923519] FAULT_INJECTION: forcing a failure.
[ 3241.923519] name failslab, interval 1, probability 0, space 0, times 0
[ 3241.924711] CPU: 0 PID: 20464 Comm: syz-executor.6 Not tainted 5.10.226 #1
[ 3241.925427] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3241.926186] Call Trace:
[ 3241.926418]  dump_stack+0x107/0x167
[ 3241.926728]  should_fail.cold+0x5/0xa
[ 3241.927052]  ? pagemap_read+0x244/0x590
[ 3241.927391]  should_failslab+0x5/0x20
[ 3241.927715]  kmem_cache_alloc_trace+0x55/0x320
[ 3241.928102]  pagemap_read+0x244/0x590
[ 3241.928443]  ? clear_refs_write+0x780/0x780
[ 3241.928819]  ? security_file_permission+0xb1/0xe0
[ 3241.929228]  ? clear_refs_write+0x780/0x780
[ 3241.929593]  vfs_read+0x228/0x620
[ 3241.929927]  __x64_sys_pread64+0x201/0x260
[ 3241.930422]  ? ksys_pread64+0x1b0/0x1b0
[ 3241.930854]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3241.931399]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3241.931944]  do_syscall_64+0x33/0x40
[ 3241.932337]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3241.932872] RIP: 0033:0x7fac80f02b19
[ 3241.933255] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3241.935265] RSP: 002b:00007fac7e478188 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[ 3241.936060] RAX: ffffffffffffffda RBX: 00007fac81015f60 RCX: 00007fac80f02b19
[ 3241.936802] RDX: 00007ffffffff000 RSI: 0000000000000000 RDI: 0000000000000003
[ 3241.937540] RBP: 00007fac7e4781d0 R08: 0000000000000000 R09: 0000000000000000
[ 3241.938198] R10: 0200000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3241.938794] R13: 00007ffc5d0f0a8f R14: 00007fac7e478300 R15: 0000000000022000
08:49:45 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0xc0, 0x0)
openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x200080, 0x8)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000180)="89")

08:49:45 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@map_acorn}, {@utf8}]})

08:49:45 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8901, &(0x7f0000001840)="fb")
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x8901, &(0x7f0000001840)="fb")
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r3, 0x8901, &(0x7f0000001840)="fb")
syz_80211_inject_frame(&(0x7f0000000040)=@device_b, &(0x7f0000000140)=ANY=[@ANYRESOCT, @ANYRESOCT=r3, @ANYRESOCT, @ANYRESDEC=r1], 0x34)

08:49:45 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000) (fail_nth: 1)

08:49:45 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x48000000fa2f0000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:49:45 executing program 7:
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x200000000000)

08:49:45 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r6, 0xffffffffffffffff, 0x0, 0x7ffffff9)

08:49:45 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x0)

08:49:45 executing program 7:
r0 = syz_open_procfs(0x0, 0x0)
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000)

08:49:45 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000) (fail_nth: 1)

08:49:45 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r6, 0xffffffffffffffff, 0x0, 0x7ffffff9)

[ 3242.012029] FAULT_INJECTION: forcing a failure.
[ 3242.012029] name failslab, interval 1, probability 0, space 0, times 0
[ 3242.013249] CPU: 1 PID: 20480 Comm: syz-executor.3 Not tainted 5.10.226 #1
[ 3242.013991] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3242.014683] Call Trace:
[ 3242.014916]  dump_stack+0x107/0x167
[ 3242.015229]  should_fail.cold+0x5/0xa
[ 3242.015558]  ? pagemap_read+0x244/0x590
[ 3242.015900]  should_failslab+0x5/0x20
[ 3242.016226]  kmem_cache_alloc_trace+0x55/0x320
[ 3242.016616]  pagemap_read+0x244/0x590
[ 3242.016945]  ? clear_refs_write+0x780/0x780
[ 3242.017319]  ? security_file_permission+0xb1/0xe0
[ 3242.017736]  ? clear_refs_write+0x780/0x780
[ 3242.018180]  vfs_read+0x228/0x620
[ 3242.018480]  __x64_sys_pread64+0x201/0x260
[ 3242.018839]  ? ksys_pread64+0x1b0/0x1b0
[ 3242.019182]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3242.019629]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3242.020067]  do_syscall_64+0x33/0x40
[ 3242.020386]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3242.020819] RIP: 0033:0x7f1ba0635b19
[ 3242.021137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3242.022693] RSP: 002b:00007f1b9dbab188 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[ 3242.023336] RAX: ffffffffffffffda RBX: 00007f1ba0748f60 RCX: 00007f1ba0635b19
[ 3242.023937] RDX: 00007ffffffff000 RSI: 0000000000000000 RDI: 0000000000000003
[ 3242.024537] RBP: 00007f1b9dbab1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3242.025135] R10: 00806c54747f0000 R11: 0000000000000246 R12: 0000000000000001
[ 3242.025742] R13: 00007ffdccd81fef R14: 00007f1b9dbab300 R15: 0000000000022000
08:49:45 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000180)="a9")
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x2, 0x1}, 0x6)

08:49:45 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000) (fail_nth: 2)

[ 3242.063623] FAULT_INJECTION: forcing a failure.
[ 3242.063623] name failslab, interval 1, probability 0, space 0, times 0
[ 3242.065431] CPU: 0 PID: 20483 Comm: syz-executor.6 Not tainted 5.10.226 #1
[ 3242.066110] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3242.066795] Call Trace:
[ 3242.067074]  dump_stack+0x107/0x167
[ 3242.067432]  should_fail.cold+0x5/0xa
[ 3242.067758]  ? create_object.isra.0+0x3a/0xa20
[ 3242.068202]  should_failslab+0x5/0x20
[ 3242.068526]  kmem_cache_alloc+0x5b/0x310
[ 3242.068871]  create_object.isra.0+0x3a/0xa20
[ 3242.069298]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3242.069736]  kmem_cache_alloc_trace+0x151/0x320
[ 3242.070221]  pagemap_read+0x244/0x590
[ 3242.070547]  ? clear_refs_write+0x780/0x780
[ 3242.070958]  ? security_file_permission+0xb1/0xe0
[ 3242.071381]  ? clear_refs_write+0x780/0x780
[ 3242.071744]  vfs_read+0x228/0x620
[ 3242.072097]  __x64_sys_pread64+0x201/0x260
[ 3242.072455]  ? ksys_pread64+0x1b0/0x1b0
[ 3242.072795]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3242.073293]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3242.073733]  do_syscall_64+0x33/0x40
[ 3242.074134]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3242.074563] RIP: 0033:0x7fac80f02b19
[ 3242.074879] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3242.076491] RSP: 002b:00007fac7e478188 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[ 3242.077191] RAX: ffffffffffffffda RBX: 00007fac81015f60 RCX: 00007fac80f02b19
[ 3242.077805] RDX: 00007ffffffff000 RSI: 0000000000000000 RDI: 0000000000000003
[ 3242.078480] RBP: 00007fac7e4781d0 R08: 0000000000000000 R09: 0000000000000000
[ 3242.079127] R10: 0200000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3242.079723] R13: 00007ffc5d0f0a8f R14: 00007fac7e478300 R15: 0000000000022000
08:49:45 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@map_acorn}]})

08:49:45 executing program 7:
r0 = syz_open_procfs(0x0, 0x0)
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000)

08:49:45 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x48000000feffffff, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:49:45 executing program 7:
r0 = syz_open_procfs(0x0, 0x0)
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000)

08:49:45 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000) (fail_nth: 3)

[ 3242.219109] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3242.224052] FAULT_INJECTION: forcing a failure.
[ 3242.224052] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 3242.225045] CPU: 1 PID: 20502 Comm: syz-executor.6 Not tainted 5.10.226 #1
[ 3242.225621] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3242.226328] Call Trace:
[ 3242.226565]  dump_stack+0x107/0x167
[ 3242.226879]  should_fail.cold+0x5/0xa
[ 3242.227210]  _copy_to_user+0x2e/0x180
[ 3242.227542]  simple_read_from_buffer+0xcc/0x160
[ 3242.227942]  proc_fail_nth_read+0x198/0x230
[ 3242.228313]  ? proc_sessionid_read+0x230/0x230
[ 3242.228705]  ? security_file_permission+0xb1/0xe0
[ 3242.229119]  ? proc_sessionid_read+0x230/0x230
[ 3242.229509]  vfs_read+0x228/0x620
[ 3242.229825]  ksys_read+0x12d/0x260
[ 3242.230143]  ? vfs_write+0xb10/0xb10
[ 3242.230465]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3242.230909]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3242.231345]  do_syscall_64+0x33/0x40
[ 3242.231662]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3242.232093] RIP: 0033:0x7fac80eb569c
[ 3242.232410] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 3242.233958] RSP: 002b:00007fac7e478170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 3242.234600] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fac80eb569c
[ 3242.235200] RDX: 000000000000000f RSI: 00007fac7e4781e0 RDI: 0000000000000004
[ 3242.235798] RBP: 00007fac7e4781d0 R08: 0000000000000000 R09: 0000000000000000
[ 3242.236397] R10: 0200000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3242.236997] R13: 00007ffc5d0f0a8f R14: 00007fac7e478300 R15: 0000000000022000
[ 3255.347357] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:49:58 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)={[{@map_acorn}, {@sbsector={'sbsector', 0x3d, 0x1}}]})

08:49:58 executing program 2:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_ID(r0, 0x80082407, &(0x7f00000000c0))
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0x3, 0x1}, 0x6)
ioctl$sock_bt_hci(r1, 0x400448dd, &(0x7f0000000180)="a9")

08:49:58 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)

08:49:58 executing program 5:
syz_80211_inject_frame(&(0x7f0000000040)=@device_a={0x3}, &(0x7f0000000140)=ANY=[], 0x34)
syz_80211_inject_frame(&(0x7f00000000c0)=@device_b, &(0x7f0000000100)=ANY=[@ANYBLOB="d4e58000fffffffffd40"], 0xa)
syz_80211_inject_frame(&(0x7f0000000140), &(0x7f0000000180)=@data_frame={@no_qos=@type01={{0x0, 0x2, 0x5, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1}, {}, @broadcast, @from_mac=@broadcast, @broadcast, {0xc, 0x20}}, @random="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"}, 0x8d8)
syz_80211_inject_frame(&(0x7f0000000000)=@broadcast, &(0x7f0000000080)=@ctrl_frame=@ba={{}, {}, @device_a, @device_a, @compressed={{0x1, 0x0, 0x1, 0x0, 0x8}, {0x7, 0x9}, "c41b0d9b099aedf9"}}, 0x1c)
syz_80211_inject_frame(&(0x7f0000000a80)=@broadcast, &(0x7f0000000ac0)=@ctrl_frame=@cts={{}, {0x8}, @broadcast}, 0xa)

08:49:58 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x48000000ff070400, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:49:58 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r6, 0xffffffffffffffff, 0x0, 0x7ffffff9)

08:49:58 executing program 7:
syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x200000000000)

08:49:58 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000) (fail_nth: 2)

[ 3255.380840] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3255.381068] FAULT_INJECTION: forcing a failure.
[ 3255.381068] name failslab, interval 1, probability 0, space 0, times 0
[ 3255.382742] CPU: 1 PID: 20526 Comm: syz-executor.3 Not tainted 5.10.226 #1
[ 3255.383323] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3255.384020] Call Trace:
[ 3255.384254]  dump_stack+0x107/0x167
[ 3255.384568]  should_fail.cold+0x5/0xa
[ 3255.384897]  ? create_object.isra.0+0x3a/0xa20
[ 3255.385290]  should_failslab+0x5/0x20
[ 3255.385618]  kmem_cache_alloc+0x5b/0x310
[ 3255.385978]  create_object.isra.0+0x3a/0xa20
[ 3255.386368]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3255.386805]  kmem_cache_alloc_trace+0x151/0x320
[ 3255.387216]  pagemap_read+0x244/0x590
[ 3255.387552]  ? clear_refs_write+0x780/0x780
[ 3255.387932]  ? security_file_permission+0xb1/0xe0
[ 3255.388351]  ? clear_refs_write+0x780/0x780
[ 3255.388724]  vfs_read+0x228/0x620
[ 3255.389031]  __x64_sys_pread64+0x201/0x260
[ 3255.389394]  ? ksys_pread64+0x1b0/0x1b0
[ 3255.389748]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3255.390225]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3255.390664]  do_syscall_64+0x33/0x40
[ 3255.390980]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3255.391408] RIP: 0033:0x7f1ba0635b19
08:49:58 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x7fffffffffffff)

[ 3255.391725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3255.402800] RSP: 002b:00007f1b9dbab188 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[ 3255.403446] RAX: ffffffffffffffda RBX: 00007f1ba0748f60 RCX: 00007f1ba0635b19
[ 3255.404046] RDX: 00007ffffffff000 RSI: 0000000000000000 RDI: 0000000000000003
[ 3255.404641] RBP: 00007f1b9dbab1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3255.405240] R10: 00806c54747f0000 R11: 0000000000000246 R12: 0000000000000001
[ 3255.405840] R13: 00007ffdccd81fef R14: 00007f1b9dbab300 R15: 0000000000022000
08:49:58 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r1, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
openat(r1, &(0x7f0000000000)='./file0\x00', 0x2, 0x191)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000180)="a9")

[ 3255.420513] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3255.422651] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:49:58 executing program 7:
syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x200000000000)

08:49:58 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x100000000000000)

08:49:58 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000) (fail_nth: 3)

08:49:58 executing program 7:
syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x200000000000)

08:49:58 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x0)

08:49:58 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x48000000ff0f0000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:49:58 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)={[{@map_acorn}]})

08:49:58 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000001000000)

[ 3255.585154] FAULT_INJECTION: forcing a failure.
[ 3255.585154] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 3255.586340] CPU: 1 PID: 20550 Comm: syz-executor.3 Not tainted 5.10.226 #1
[ 3255.586931] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3255.587636] Call Trace:
[ 3255.587875]  dump_stack+0x107/0x167
[ 3255.588192]  should_fail.cold+0x5/0xa
[ 3255.588531]  _copy_to_user+0x2e/0x180
[ 3255.588864]  simple_read_from_buffer+0xcc/0x160
[ 3255.589272]  proc_fail_nth_read+0x198/0x230
[ 3255.589643]  ? proc_sessionid_read+0x230/0x230
[ 3255.590084]  ? security_file_permission+0xb1/0xe0
[ 3255.590498]  ? proc_sessionid_read+0x230/0x230
[ 3255.590897]  vfs_read+0x228/0x620
[ 3255.591203]  ksys_read+0x12d/0x260
[ 3255.591508]  ? vfs_write+0xb10/0xb10
[ 3255.591832]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3255.592286]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3255.592727]  do_syscall_64+0x33/0x40
[ 3255.593051]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3255.593485] RIP: 0033:0x7f1ba05e869c
[ 3255.593805] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 3255.595422] RSP: 002b:00007f1b9dbab170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 3255.596066] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f1ba05e869c
[ 3255.596666] RDX: 000000000000000f RSI: 00007f1b9dbab1e0 RDI: 0000000000000004
[ 3255.597266] RBP: 00007f1b9dbab1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3255.597865] R10: 00806c54747f0000 R11: 0000000000000246 R12: 0000000000000001
[ 3255.599005] R13: 00007ffdccd81fef R14: 00007f1b9dbab300 R15: 0000000000022000
[ 3255.732086] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3255.736028] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3255.742818] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:50:12 executing program 2:
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r0, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x15e4be22, 0x1}}, 0x0, 0x10, r0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
preadv(r1, &(0x7f0000000480)=[{&(0x7f0000000100)=""/94, 0x5e}, {&(0x7f00000001c0)=""/216, 0xd8}, {&(0x7f00000002c0)=""/3, 0x3}, {&(0x7f0000000300)=""/144, 0x90}, {&(0x7f00000003c0)=""/174, 0xae}, {&(0x7f0000001540)=""/196, 0xc4}], 0x6, 0x92d9, 0x20)
ioctl$sock_bt_hci(r1, 0x400448dd, &(0x7f0000000180)="a9")

08:50:12 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
preadv(r0, &(0x7f0000000200)=[{&(0x7f0000000000)=""/198, 0xd8}, {&(0x7f0000000100)=""/229, 0xe5}, {&(0x7f0000000340)=""/196, 0xc4}], 0x3, 0x4, 0x1f)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r1, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
ioctl$PTP_SYS_OFFSET_PRECISE(r1, 0xc0403d08, &(0x7f0000000240))
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)

08:50:12 executing program 5:
syz_80211_inject_frame(&(0x7f0000000040)=@device_b, &(0x7f0000000000)=ANY=[], 0x34)
syz_80211_inject_frame(&(0x7f0000000000)=@device_b, &(0x7f0000000080)=@mgmt_frame=@probe_request={@wo_ht={{0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x6}, @device_b, @device_a, @random="91c8fd8c7c76", {0xc, 0x8}}, @val={0x0, 0x6, @default_ibss_ssid}, @void, @void, @void, @val={0x72, 0x6}, [{0xdd, 0x89, "5f72c3b1969e5bb73fc3bb301b86af9972b006d8e607b53f1fec29eee9978b272a381b5b90ca3c1b02e15b54df93bd20818001ce769f0fb0575fbcf26bf824eac90431b8f4d502ea0d2efd29fb1fa7561f853ebb61b128eb43e4d9eb4714fb4356ae91ddb87b066583c9e64cfae3bf7c7954c3fb6a1077404bf991751a9a24b82b5647a29841206854"}, {0xdd, 0x7f, "6bd5ce226676066cc1cd64546aba6e63babdf4f6580de2b6a3cba11251b578729dac17a26a5946264fb5c3aca5118aa2cf0c1ea3b57c17705b81f3e75d8e4078e11cd5a5565ced3350b12e5e3b758fb2f256f25f3be9c79654fecd3a480d5cdb32ef357a53b6f548afb316d6d7105dbe4730bdb20183d6e4bf561e330014c7"}, {0xdd, 0x79, "1544b4479ea1392eec60dd78bf97f5dd7ccb0bb1d5276538a2437a493f234178679edc98861b18f48fe5fc2d35878515543e3def07a2518bcda22b6d4bc53f3b955b2aceefa07eda6997d9398bee995b7b5e7f1b47676408170d7bbd3359436105a1c6d3cf9e46f0bf1aa86e9c487c80b642b675d9e26a886c"}, {0xdd, 0xe1, "69c4bbad10c27ea65605d1396aa16ad28a8bf05f9f5c73547ccacaf638c5f7c8eb7f309508392d9ac1007496a4d578fa5c7c2dfcb6494c90f6adadd3fbb626e76e1ac36afa33df3bdc7d898cd6a8c9f13a15488c40e0e064a2aca7caafbb3a959a08aad725f77c15a5270dedcfaa68bf61dd6a34b673bcd19d9f76fb386f812719e68f45b5c6e6c5ea7721e1f357a0081131dd122c5730a8ab88b41ec7df02a3aa8643923453ecce79d8f1acf82fd44346cb9fb8161daf5618e1b2a8e477a58aee1052fab6e93fa2341ef101ed36abd72928d4c662f4cdee80853fda91a85b956a"}]}, 0x292)
syz_80211_inject_frame(&(0x7f0000000340)=@device_b, &(0x7f0000000380)=@ctrl_frame=@rts={{}, {0x7967}, @device_a, @device_b}, 0x10)

08:50:12 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x48000000fffdffff, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

[ 3269.047093] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:50:12 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)

08:50:12 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x0)

08:50:12 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x0)

08:50:12 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80))

[ 3269.074334] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3269.080503] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:50:12 executing program 2:
r0 = add_key$fscrypt_provisioning(&(0x7f0000000000), &(0x7f00000000c0)={'syz', 0x3}, &(0x7f0000000340)=ANY=[@ANYBLOB="d95703cb2daaf81df1770010"], 0x9, 0xfffffffffffffffa)
add_key(&(0x7f0000000100)='trusted\x00', &(0x7f00000003c0)={'syz', 0x2}, &(0x7f0000000400)="71139b795ebf9de48ad80abc08cb5f100bcddc0a8c11f5f2bb0b0a09cadbcb29159ae0bf2ad7f5d5624a131531f25dd5a92d7d16c35cb9d9ec328c78de5737e439ab911d235635537a", 0x49, 0xfffffffffffffffc)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, 0x0, &(0x7f0000000140)=@chain)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x0, 0x0, 0x23, 0x20, 0x0, 0x4, 0x48a40, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x1, @perf_bp={0x0, 0x5}, 0x0, 0xbd, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = add_key$user(&(0x7f00000001c0), &(0x7f0000000200)={'syz', 0x0}, &(0x7f0000000240)="a614310f58984890a1b965374e5cf16d9f9338eee38c5ba128ac31ca6eda9873f2d204344c49131278fd5a15fa91633610b1b8fe5f185b180f88354a5b44ba51bc8ffbee4818b538896191855f863bef5e0c675111afe8c081add318487641e64a7aa2f4d5bd144ce10fa640087ed3ae1a10090335755641f150939282ae3b92c45bdb8ec03ba4c925ad6f6912e347a60d87aac830f69e400416267fe35ebff06c8f76b0ed428e", 0xa7, 0xfffffffffffffffc)
keyctl$get_keyring_id(0x0, r1, 0x1)
keyctl$search(0xa, r0, &(0x7f0000000300)='dns_resolver\x00', &(0x7f0000000380)={'syz', 0x2}, 0xfffffffffffffff8)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448dd, &(0x7f0000000180)="a9")

08:50:12 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x0)

08:50:12 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x7fffffffffffff)

08:50:12 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x0)

08:50:12 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r2, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
openat(r2, &(0x7f0000000080)='./file0\x00', 0x173142, 0x8)
syncfs(r1)
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r0, 0x10e, 0x5, &(0x7f0000000000)=0x7ff, 0x4)
getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000100)={'mangle\x00', 0xf, "86df32e21e91950e8fce48a63cb622"}, &(0x7f0000000140)=0x33)
fcntl$setflags(r0, 0x2, 0x0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r3, 0x8901, &(0x7f0000001840)="fb")
bind$bt_hci(r3, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6)

08:50:12 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x48000000ffff0000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:50:12 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000180)="a9")
r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r2, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000080)={<r3=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r3, 0x3, r1, 0xa)
perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x72, 0x0, 0x3, 0x6, 0x0, 0x3, 0x3004, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x5, 0x0, @perf_config_ext={0x7f, 0x8000000000000}, 0x1000, 0x400, 0x35f, 0x1, 0x12000000, 0x1, 0x8, 0x0, 0x400, 0x0, 0x3}, r3, 0x5, 0xffffffffffffffff, 0x8)

[ 3269.438246] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3269.466203] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3269.468814] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:50:25 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x0)

08:50:25 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8901, &(0x7f0000001840)="fb")
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f00000000c0)={0x0, r0, 0x5, 0x81, 0x6, 0x7})
fallocate(r0, 0x48, 0x6, 0x68)
fremovexattr(r0, &(0x7f0000000280)=ANY=[])
syz_80211_inject_frame(&(0x7f0000000040)=@device_a={0x3}, &(0x7f0000000000)=ANY=[@ANYRESDEC, @ANYRES32, @ANYRES64], 0x34)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x2400, 0x6f15)
syz_80211_inject_frame(&(0x7f0000000080), &(0x7f0000000100)=@data_frame={@qos_ht={{{@type00={{0x0, 0x2, 0xa, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, {0x31b}, @device_a, @device_a, @initial, {0xa, 0x5}}, {0x7, 0x0, 0x3, 0x0, 0xfe}}, {@type01={{0x0, 0x2, 0xe, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1}, {0x3f}, @device_a, @from_mac, @random="375e28d53a21", {0x4, 0x40}}, {0x5, 0x1, 0x3, 0x1, 0x7}}}, @ver_80211n={0x0, 0xbe9, 0x2, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1}}, @a_msdu=[{@broadcast, @device_b, 0x96, "63f8c6000bc33f2fbb2887aec709d5b64a90bc4722b9f143f517ea316cf155f1498dd9f7c479a13601b682d4c71f162872c4cdd55fdb011c149c7f777364e89ccc13d21a3e96f0835cc6ea40dd09d43da930950a9c01fc98c2dbfc5b998467c8457c7ccf8599f6d923e6945fa8f26eb8c35a06faa87b031ebe6e036622916821c320fe6e609248142d5550d079d1e93ce4e66816eaef"}, {@broadcast, @broadcast, 0x83, "007d6d8ddec90b55485b07d074581f992a6c86ad1e1014c8e7882000ab6b3af699e6422f28e796d774ef897e939f56c6530ba1c763537e724c2986409b60a7cc3485d7d9d0e4356920c8736499fa07bb002f469f88cb3afdc821567ab60bb8ae5a991cffe0fcae0551696e93b7c0a8eaec32c633c709db7c1a4adc7d5aa2a16c475e21"}]}, 0x170)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x8901, &(0x7f0000001840)="fb")
fallocate(r2, 0x2, 0x3ff, 0x5)

08:50:25 executing program 2:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = dup2(r0, 0xffffffffffffffff)
perf_event_open(&(0x7f00000000c0)={0x4, 0x80, 0x1, 0x8, 0x80, 0x1, 0x0, 0x8, 0x1181, 0xd22e8937b4c8e2e1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x4, @perf_bp, 0x8010, 0xffffffffffffff01, 0x8001, 0x0, 0x1f, 0x5, 0x81, 0x0, 0xfff, 0x0, 0x1f}, 0xffffffffffffffff, 0xe, r1, 0x1)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000180)="a9")

08:50:25 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x48000000ffffe000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:50:25 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
preadv(r0, &(0x7f0000000200)=[{&(0x7f0000000000)=""/198, 0xd8}, {&(0x7f0000000100)=""/229, 0xe5}, {&(0x7f0000000340)=""/196, 0xc4}], 0x3, 0x4, 0x1f)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r1, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
ioctl$PTP_SYS_OFFSET_PRECISE(r1, 0xc0403d08, &(0x7f0000000240))
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)

08:50:25 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'lo\x00', <r3=>0x0})
bind$packet(r1, &(0x7f0000000240)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r4, 0x8901, &(0x7f0000001840)="fb")
r5 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r6 = inotify_init1(0x1000)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000500)=@IORING_OP_FILES_UPDATE={0x14, 0x5, 0x0, 0x0, 0x3f, &(0x7f00000004c0)=[0xffffffffffffffff, r5, r5, r6], 0x4, 0x0, 0x0, {0x0, r7}}, 0x3)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000027c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r4, 0x0, &(0x7f0000002780)={0x0, 0x0, &(0x7f0000002680)=[{&(0x7f0000000280)=""/251, 0xfb}, {&(0x7f0000000380)=""/191, 0xbf}, {&(0x7f0000000600)=""/4096, 0x1000}, {&(0x7f0000000440)=""/85, 0x55}, {&(0x7f00000004c0)=""/243, 0xf3}, {&(0x7f0000001600)=""/4096, 0x1000}, {&(0x7f0000002600)=""/98, 0x62}, {&(0x7f0000000200)=""/15, 0xf}], 0x8, &(0x7f0000002700)=""/108, 0x6c}, 0x0, 0x20, 0x0, {0x0, r7}}, 0x0)
r8 = socket$packet(0x11, 0x2, 0x300)
r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000140)={'lo\x00', <r10=>0x0})
bind$packet(r8, &(0x7f0000000240)={0x11, 0x0, r10, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000180)={&(0x7f0000002800)=ANY=[@ANYBLOB="14010000", @ANYRES16=0x0, @ANYBLOB="010000000000000000000000000000000000000000002bbda5da559b352226466007a2732dff0e894d55db5e2e1eeae8b58911170f41862b4aef66c692519e4a0e87e99af690c6d72434a012c4d7726dcddffd551cded91acac62476e39595fbbeccad82c80317e350c3614698649f3dff1443188adb7ecba23fc71fe11855c2bc8e5738a8c30da7f6ef697eac33be3151f9a6dd41c89b5411ed24615808663e319da039a7", @ANYRES32=0x0, @ANYBLOB="140002007465616d5f736c6176655f310000000008000100", @ANYRES32=r3, @ANYBLOB="1c00018008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="0800030002000000140001800800030002000000080003000000000058000180140002007465616d30000000000000000000000008000300020000000800030001000000140002007866726d30000000000000000000000014000200736974300000000000000000000000000800030003000000440001800800030002000000080003000000000008000100", @ANYRES32=r10, @ANYBLOB="140002006272696467655f736c6176655f3100001400020076657468305f746f5f626174616476000c0001800800030002000000"], 0x114}, 0x1, 0x0, 0x0, 0x40800}, 0x8000)
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)

08:50:25 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)
r1 = openat$cgroup_pressure(r0, &(0x7f0000000000)='io.pressure\x00', 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r0, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, r1, {0xfffffffb}}, './file0\x00'})
r2 = openat(r0, &(0x7f0000000080)='./file0\x00', 0x2000, 0x20)
write$P9_RREADLINK(r2, &(0x7f00000000c0)={0x10, 0x17, 0x2, {0x7, './file0'}}, 0x10)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
setresuid(0x0, r3, 0x0)
quotactl(0x81, &(0x7f0000000100)='./file0/file0\x00', r3, &(0x7f0000000140)="6010053091b787613a1d13bbc427f7953cefa1f40c3ee7d48d7b11577e316ec1e3c04a004055f95059c7ca0abb3b36ada4dac56d08b09b59b87bc0a6837855d0edf70030fbd570d0339359bbc53ab70a10757f63e9d1c29ce533fd2975424d8ac0")

[ 3282.389877] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:50:25 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
fallocate(r0, 0x73, 0x9, 0x65e)
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)

08:50:25 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9) (fail_nth: 1)

08:50:25 executing program 2:
newfstatat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, <r0=>0x0}, 0x400)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000001c0)={0x0, 0x0, <r1=>0x0}, &(0x7f0000000200)=0xc)
keyctl$chown(0x4, 0x0, r0, r1)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, @perf_bp={0x0, 0x6}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x2)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448dd, &(0x7f0000000180)="a9")
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x4, 0x3}, 0x6)

[ 3282.446974] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3282.495993] FAULT_INJECTION: forcing a failure.
[ 3282.495993] name failslab, interval 1, probability 0, space 0, times 0
[ 3282.497033] CPU: 1 PID: 20633 Comm: syz-executor.0 Not tainted 5.10.226 #1
[ 3282.497614] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
08:50:25 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
readv(r1, &(0x7f0000000200)=[{&(0x7f0000000000)=""/102, 0x66}, {&(0x7f0000000080)=""/65, 0x41}, {&(0x7f0000000100)=""/207, 0xcf}], 0x3)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x8, 0x2010, r0, 0x6f87000)
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)

08:50:25 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x48000000fffffdf9, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

[ 3282.498345] Call Trace:
[ 3282.498582]  dump_stack+0x107/0x167
[ 3282.498893]  should_fail.cold+0x5/0xa
[ 3282.499222]  ? iter_file_splice_write+0x16d/0xc30
[ 3282.499639]  should_failslab+0x5/0x20
[ 3282.499967]  __kmalloc+0x72/0x390
[ 3282.500269]  iter_file_splice_write+0x16d/0xc30
[ 3282.500666]  ? atime_needs_update+0x600/0x600
[ 3282.506449]  ? __fsnotify_parent+0x47a/0xb10
[ 3282.506929]  ? generic_splice_sendpage+0x140/0x140
[ 3282.507455]  ? pipe_to_user+0x170/0x170
[ 3282.507899]  ? security_file_permission+0xb1/0xe0
[ 3282.508423]  ? generic_splice_sendpage+0x140/0x140
[ 3282.508934]  direct_splice_actor+0x10f/0x170
[ 3282.509414]  splice_direct_to_actor+0x387/0x980
[ 3282.509903]  ? pipe_to_sendpage+0x380/0x380
[ 3282.514360]  ? do_splice_to+0x160/0x160
[ 3282.514699]  ? security_file_permission+0xb1/0xe0
[ 3282.515109]  do_splice_direct+0x1c4/0x290
[ 3282.515460]  ? splice_direct_to_actor+0x980/0x980
[ 3282.515863]  ? avc_policy_seqno+0x9/0x70
[ 3282.516213]  ? security_file_permission+0xb1/0xe0
[ 3282.516626]  do_sendfile+0x553/0x11e0
[ 3282.516954]  ? do_pwritev+0x270/0x270
[ 3282.517281]  ? wait_for_completion_io+0x270/0x270
[ 3282.517696]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3282.518086]  ? vfs_write+0x354/0xb10
[ 3282.518454]  __x64_sys_sendfile64+0x1d1/0x210
[ 3282.518835]  ? __ia32_sys_sendfile+0x220/0x220
[ 3282.519224]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3282.519665]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3282.520098]  do_syscall_64+0x33/0x40
[ 3282.520412]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3282.520843] RIP: 0033:0x7f5117aedb19
[ 3282.521158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3282.522718] RSP: 002b:00007f5115063188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3282.523363] RAX: ffffffffffffffda RBX: 00007f5117c00f60 RCX: 00007f5117aedb19
[ 3282.523958] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000000a
[ 3282.524553] RBP: 00007f51150631d0 R08: 0000000000000000 R09: 0000000000000000
[ 3282.525148] R10: 000000007ffffff9 R11: 0000000000000246 R12: 0000000000000001
[ 3282.525741] R13: 00007ffc6010669f R14: 00007f5115063300 R15: 0000000000022000
08:50:25 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 1)

08:50:25 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000) (fail_nth: 1)

[ 3282.567320] FAULT_INJECTION: forcing a failure.
[ 3282.567320] name failslab, interval 1, probability 0, space 0, times 0
[ 3282.568396] CPU: 1 PID: 20652 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3282.568995] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3282.569706] Call Trace:
[ 3282.569942]  dump_stack+0x107/0x167
[ 3282.570267]  should_fail.cold+0x5/0xa
[ 3282.570600]  ? __do_sys_memfd_create+0xfb/0x450
[ 3282.570997]  should_failslab+0x5/0x20
[ 3282.571322]  __kmalloc+0x72/0x390
[ 3282.571623]  __do_sys_memfd_create+0xfb/0x450
[ 3282.572003]  ? ksys_write+0x1a9/0x260
[ 3282.572327]  ? memfd_file_seals_ptr+0x170/0x170
[ 3282.572727]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3282.573173]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3282.573610]  do_syscall_64+0x33/0x40
[ 3282.573927]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3282.574377] RIP: 0033:0x7f71ab262b19
[ 3282.574695] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3282.576232] RSP: 002b:00007f71a87d7f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[ 3282.576875] RAX: ffffffffffffffda RBX: 0000000020000c00 RCX: 00007f71ab262b19
[ 3282.577474] RDX: 00007f71a87d8000 RSI: 0000000000000000 RDI: 00007f71ab2bc0fb
[ 3282.578077] RBP: 0000000000000000 R08: 00007f71a87d7ff8 R09: ffffffffffffffff
[ 3282.578701] R10: 00007f71a87d7ffc R11: 0000000000000246 R12: 0000000020000940
[ 3282.579297] R13: 0000000020000980 R14: 0000000000000000 R15: 0000000020000c80
[ 3282.583078] FAULT_INJECTION: forcing a failure.
[ 3282.583078] name failslab, interval 1, probability 0, space 0, times 0
[ 3282.584064] CPU: 1 PID: 20651 Comm: syz-executor.7 Not tainted 5.10.226 #1
[ 3282.584646] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3282.585335] Call Trace:
[ 3282.585560]  dump_stack+0x107/0x167
[ 3282.585871]  should_fail.cold+0x5/0xa
[ 3282.586206]  ? pagemap_read+0x244/0x590
[ 3282.586556]  should_failslab+0x5/0x20
[ 3282.586880]  kmem_cache_alloc_trace+0x55/0x320
[ 3282.587272]  pagemap_read+0x244/0x590
[ 3282.587599]  ? clear_refs_write+0x780/0x780
[ 3282.587969]  ? security_file_permission+0xb1/0xe0
[ 3282.588381]  ? clear_refs_write+0x780/0x780
[ 3282.588747]  vfs_read+0x228/0x620
[ 3282.589047]  __x64_sys_pread64+0x201/0x260
[ 3282.589410]  ? ksys_pread64+0x1b0/0x1b0
[ 3282.589752]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3282.590207]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3282.590652]  do_syscall_64+0x33/0x40
[ 3282.590966]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3282.591394] RIP: 0033:0x7f7456950b19
[ 3282.591709] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3282.593233] RSP: 002b:00007f7453ec6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[ 3282.593869] RAX: ffffffffffffffda RBX: 00007f7456a63f60 RCX: 00007f7456950b19
[ 3282.594515] RDX: 00007ffffffff000 RSI: 0000000000000000 RDI: 0000000000000003
[ 3282.595116] RBP: 00007f7453ec61d0 R08: 0000000000000000 R09: 0000000000000000
[ 3282.595713] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3282.596310] R13: 00007ffcd88828cf R14: 00007f7453ec6300 R15: 0000000000022000
08:50:26 executing program 2:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r2, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000080)={<r3=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x4}, 0x46088, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r3, 0x3, r1, 0xa)
perf_event_open(&(0x7f00000000c0)={0x4, 0x80, 0xb5, 0x8, 0x7f, 0x0, 0x0, 0x9, 0x10000, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0xc563, 0x1, @perf_config_ext={0x9cc, 0x9}, 0x400, 0x1, 0x40000000, 0x3, 0x607, 0x7fff, 0xfffc, 0x0, 0xfffffff8, 0x0, 0x7}, r3, 0x0, r0, 0x9)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r4, 0x400448dd, &(0x7f0000000180)="a9")

08:50:26 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x48000000fffffdff, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:50:26 executing program 6:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
open_tree(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x8100)
pread64(r1, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000080), &(0x7f00000003c0)=0xc)
r2 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x200000d, 0x110, r1, 0x8000000)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000140)=@IORING_OP_POLL_ADD={0x6, 0x1, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x1404}, 0x1}, 0x1f)
r3 = getpid()
r4 = syz_open_procfs(r3, &(0x7f00000005c0)='pagemap\x00')
pread64(r4, 0x0, 0x7ffffffff000, 0x200000000000000)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r5, 0x8901, &(0x7f0000001840)="fb")
readv(r5, &(0x7f0000001700)=[{&(0x7f0000000600)=""/4096, 0x1000}, {&(0x7f00000000c0)=""/103, 0x67}, {&(0x7f00000002c0)=""/107, 0x6b}, {&(0x7f0000000000)=""/51, 0x33}, {&(0x7f0000001e00)=""/4096, 0x1000}, {&(0x7f0000000400)=""/210, 0xd2}, {&(0x7f0000001600)=""/204, 0xcc}, {&(0x7f0000000500)=""/136, 0x88}, {&(0x7f0000000340)=""/106, 0x6a}], 0x9)

[ 3282.756893] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3287.306620] Bluetooth: hci2: command 0x0409 tx timeout
[ 3289.354634] Bluetooth: hci2: command 0x041b tx timeout
[ 3291.414421] Bluetooth: hci2: command 0x040f tx timeout
[ 3291.802694] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 3291.803833] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 3291.806237] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 3291.845590] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 3291.846404] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 3291.847961] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 3292.108004] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3292.125261] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3292.450444] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3293.450587] Bluetooth: hci2: command 0x0419 tx timeout
08:50:48 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9) (fail_nth: 2)

08:50:48 executing program 5:
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
ioctl$LOOP_SET_CAPACITY(r0, 0x4c07)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r1, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r2, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000000)='syz1\x00', 0x200002, 0x0)
syz_80211_inject_frame(&(0x7f0000000040)=@device_a={0x3}, &(0x7f0000000140)=ANY=[], 0x34)

08:50:48 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
signalfd4(r0, &(0x7f0000000040)={[0x83b]}, 0x8, 0x0)
pread64(r0, 0x0, 0x0, 0x7)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2240, 0x0)
fgetxattr(r1, &(0x7f0000000080)=@random={'security.', '(\x00'}, &(0x7f00000000c0)=""/115, 0x73)
dup(r1)

[ 3305.528686] FAULT_INJECTION: forcing a failure.
[ 3305.528686] name failslab, interval 1, probability 0, space 0, times 0
[ 3305.529707] CPU: 1 PID: 21140 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3305.530307] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3305.531157] Call Trace:
[ 3305.531396]  dump_stack+0x107/0x167
[ 3305.531719]  should_fail.cold+0x5/0xa
[ 3305.532085]  ? create_object.isra.0+0x3a/0xa20
[ 3305.532500]  should_failslab+0x5/0x20
[ 3305.532832]  kmem_cache_alloc+0x5b/0x310
[ 3305.533187]  create_object.isra.0+0x3a/0xa20
[ 3305.533566]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3305.534010]  __kmalloc+0x16e/0x390
[ 3305.534324]  __do_sys_memfd_create+0xfb/0x450
[ 3305.534731]  ? ksys_write+0x1a9/0x260
[ 3305.535061]  ? memfd_file_seals_ptr+0x170/0x170
[ 3305.535376] FAULT_INJECTION: forcing a failure.
[ 3305.535376] name failslab, interval 1, probability 0, space 0, times 0
[ 3305.535471]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3305.536869]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3305.537310]  do_syscall_64+0x33/0x40
[ 3305.537632]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3305.538073] RIP: 0033:0x7f71ab262b19
[ 3305.538394] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3305.540023] RSP: 002b:00007f71a87d7f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[ 3305.540676] RAX: ffffffffffffffda RBX: 0000000020000c00 RCX: 00007f71ab262b19
[ 3305.541283] RDX: 00007f71a87d8000 RSI: 0000000000000000 RDI: 00007f71ab2bc0fb
[ 3305.541891] RBP: 0000000000000000 R08: 00007f71a87d7ff8 R09: ffffffffffffffff
[ 3305.542528] R10: 00007f71a87d7ffc R11: 0000000000000246 R12: 0000000020000940
[ 3305.543139] R13: 0000000020000980 R14: 0000000000000000 R15: 0000000020000c80
[ 3305.543781] CPU: 0 PID: 21142 Comm: syz-executor.7 Not tainted 5.10.226 #1
[ 3305.544393] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3305.545100] Call Trace:
[ 3305.545334]  dump_stack+0x107/0x167
[ 3305.545648]  should_fail.cold+0x5/0xa
[ 3305.545982]  ? create_object.isra.0+0x3a/0xa20
08:50:48 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 2)

08:50:48 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x48000000ffffff0f, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:50:48 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000) (fail_nth: 2)

08:50:48 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x9, 0x20, 0x5, 0x60, 0x0, 0x80000000, 0x0, 0x6, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0x2, 0x4}, 0x0, 0xae, 0x2, 0x5, 0x7ff, 0xffff, 0x15b, 0x0, 0x8, 0x0, 0xff}, 0x0, 0xd, 0xffffffffffffffff, 0x2)
r0 = accept4$bt_l2cap(0xffffffffffffffff, 0x0, &(0x7f0000000000), 0x0)
ftruncate(r0, 0xffffffffffffffc1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x400448dd, &(0x7f0000000180)="a9")

08:50:48 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
ioctl$GIO_FONT(0xffffffffffffffff, 0x4b60, &(0x7f0000000040)=""/71)
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x1001, 0x0)
ioctl$TIOCMBIC(r1, 0x5417, &(0x7f0000000100)=0x4)
openat(r0, &(0x7f0000000000)='./file0\x00', 0x102, 0x4)

[ 3305.546374]  should_failslab+0x5/0x20
[ 3305.546797]  kmem_cache_alloc+0x5b/0x310
[ 3305.547146]  create_object.isra.0+0x3a/0xa20
[ 3305.554659]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3305.555088]  kmem_cache_alloc_trace+0x151/0x320
[ 3305.555482]  pagemap_read+0x244/0x590
[ 3305.555805]  ? clear_refs_write+0x780/0x780
[ 3305.556173]  ? security_file_permission+0xb1/0xe0
[ 3305.556580]  ? clear_refs_write+0x780/0x780
[ 3305.556944]  vfs_read+0x228/0x620
[ 3305.557242]  __x64_sys_pread64+0x201/0x260
[ 3305.557599]  ? ksys_pread64+0x1b0/0x1b0
[ 3305.557940]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3305.558382]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3305.558840]  do_syscall_64+0x33/0x40
[ 3305.559154]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3305.559582] RIP: 0033:0x7f7456950b19
[ 3305.559895] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3305.561412] RSP: 002b:00007f7453ec6188 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[ 3305.562053] RAX: ffffffffffffffda RBX: 00007f7456a63f60 RCX: 00007f7456950b19
[ 3305.562662] RDX: 00007ffffffff000 RSI: 0000000000000000 RDI: 0000000000000003
[ 3305.563262] RBP: 00007f7453ec61d0 R08: 0000000000000000 R09: 0000000000000000
[ 3305.563865] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3305.564467] R13: 00007ffcd88828cf R14: 00007f7453ec6300 R15: 0000000000022000
[ 3305.575915] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:50:49 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='attr/fscreate\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)

08:50:49 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000) (fail_nth: 3)

[ 3305.673424] FAULT_INJECTION: forcing a failure.
[ 3305.673424] name failslab, interval 1, probability 0, space 0, times 0
[ 3305.674604] CPU: 1 PID: 21138 Comm: syz-executor.0 Not tainted 5.10.226 #1
[ 3305.675268] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3305.675975] Call Trace:
[ 3305.676214]  dump_stack+0x107/0x167
[ 3305.676526]  should_fail.cold+0x5/0xa
[ 3305.676973]  ? create_object.isra.0+0x3a/0xa20
[ 3305.677370]  should_failslab+0x5/0x20
[ 3305.677703]  kmem_cache_alloc+0x5b/0x310
[ 3305.678056]  ? igrab+0xc0/0xc0
08:50:49 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 3)

08:50:49 executing program 2:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
fcntl$getownex(r0, 0x10, &(0x7f0000000140)={0x0, <r2=>0x0})
perf_event_open(&(0x7f00000000c0)={0x4, 0x80, 0x80, 0x0, 0x4, 0x5, 0x0, 0x3, 0x10d9, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0xa}, 0x18145, 0x0, 0x1, 0x2, 0x63, 0x7, 0xfff, 0x0, 0x20f1, 0x0, 0xfff}, r2, 0x8, 0xffffffffffffffff, 0xb)
ioctl$sock_bt_hci(r1, 0x400448dd, &(0x7f0000000180)="a9")

[ 3305.678337]  create_object.isra.0+0x3a/0xa20
[ 3305.678845]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3305.679288]  __kmalloc+0x16e/0x390
[ 3305.679608]  iter_file_splice_write+0x16d/0xc30
[ 3305.680009]  ? atime_needs_update+0x600/0x600
[ 3305.680394]  ? __fsnotify_parent+0x47a/0xb10
[ 3305.680781]  ? generic_splice_sendpage+0x140/0x140
[ 3305.681202]  ? pipe_to_user+0x170/0x170
[ 3305.681557]  ? security_file_permission+0xb1/0xe0
[ 3305.681973]  ? generic_splice_sendpage+0x140/0x140
[ 3305.682391]  direct_splice_actor+0x10f/0x170
[ 3305.682798]  splice_direct_to_actor+0x387/0x980
[ 3305.683200]  ? pipe_to_sendpage+0x380/0x380
[ 3305.683574]  ? do_splice_to+0x160/0x160
[ 3305.683920]  ? security_file_permission+0xb1/0xe0
[ 3305.684332]  do_splice_direct+0x1c4/0x290
[ 3305.684692]  ? splice_direct_to_actor+0x980/0x980
[ 3305.685103]  ? avc_policy_seqno+0x9/0x70
[ 3305.685458]  ? security_file_permission+0xb1/0xe0
[ 3305.685879]  do_sendfile+0x553/0x11e0
[ 3305.686213]  ? do_pwritev+0x270/0x270
[ 3305.686574]  ? wait_for_completion_io+0x270/0x270
[ 3305.686994]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3305.687391]  ? vfs_write+0x354/0xb10
[ 3305.687723]  __x64_sys_sendfile64+0x1d1/0x210
[ 3305.688116]  ? __ia32_sys_sendfile+0x220/0x220
[ 3305.688513]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3305.688965]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3305.689411]  do_syscall_64+0x33/0x40
[ 3305.689729]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3305.690166] RIP: 0033:0x7f5117aedb19
[ 3305.690506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3305.692059] RSP: 002b:00007f5115063188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3305.692706] RAX: ffffffffffffffda RBX: 00007f5117c00f60 RCX: 00007f5117aedb19
[ 3305.693312] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000000a
[ 3305.693912] RBP: 00007f51150631d0 R08: 0000000000000000 R09: 0000000000000000
[ 3305.698554] R10: 000000007ffffff9 R11: 0000000000000246 R12: 0000000000000001
[ 3305.699163] R13: 00007ffc6010669f R14: 00007f5115063300 R15: 0000000000022000
[ 3305.721983] FAULT_INJECTION: forcing a failure.
[ 3305.721983] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 3305.723152] CPU: 0 PID: 21163 Comm: syz-executor.7 Not tainted 5.10.226 #1
[ 3305.723742] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3305.724444] Call Trace:
[ 3305.724682]  dump_stack+0x107/0x167
[ 3305.725000]  should_fail.cold+0x5/0xa
[ 3305.725338]  _copy_to_user+0x2e/0x180
[ 3305.725669]  simple_read_from_buffer+0xcc/0x160
[ 3305.726070]  proc_fail_nth_read+0x198/0x230
[ 3305.726448]  ? proc_sessionid_read+0x230/0x230
[ 3305.727227]  ? security_file_permission+0xb1/0xe0
[ 3305.728721]  ? proc_sessionid_read+0x230/0x230
[ 3305.730103] FAULT_INJECTION: forcing a failure.
[ 3305.730103] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 3305.730509]  vfs_read+0x228/0x620
[ 3305.730531]  ksys_read+0x12d/0x260
[ 3305.732104]  ? vfs_write+0xb10/0xb10
[ 3305.732428]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3305.732873]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3305.733309]  do_syscall_64+0x33/0x40
[ 3305.733627]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3305.734066] RIP: 0033:0x7f745690369c
[ 3305.734384] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 3305.739919] RSP: 002b:00007f7453ec6170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 3305.740568] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f745690369c
[ 3305.741168] RDX: 000000000000000f RSI: 00007f7453ec61e0 RDI: 0000000000000004
[ 3305.741768] RBP: 00007f7453ec61d0 R08: 0000000000000000 R09: 0000000000000000
[ 3305.742362] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3305.742970] R13: 00007ffcd88828cf R14: 00007f7453ec6300 R15: 0000000000022000
[ 3305.743591] CPU: 1 PID: 21166 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3305.744193] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3305.744890] Call Trace:
[ 3305.745126]  dump_stack+0x107/0x167
[ 3305.745439]  should_fail.cold+0x5/0xa
[ 3305.745771]  _copy_from_user+0x2e/0x1b0
[ 3305.746115]  __do_sys_memfd_create+0x16d/0x450
[ 3305.746535]  ? memfd_file_seals_ptr+0x170/0x170
[ 3305.746941]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3305.747385]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3305.747826]  do_syscall_64+0x33/0x40
[ 3305.748148]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3305.748582] RIP: 0033:0x7f71ab262b19
[ 3305.748902] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3305.750462] RSP: 002b:00007f71a87d7f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[ 3305.751162] RAX: ffffffffffffffda RBX: 0000000020000c00 RCX: 00007f71ab262b19
[ 3305.751768] RDX: 00007f71a87d8000 RSI: 0000000000000000 RDI: 00007f71ab2bc0fb
[ 3305.752377] RBP: 0000000000000000 R08: 00007f71a87d7ff8 R09: ffffffffffffffff
[ 3305.752984] R10: 00007f71a87d7ffc R11: 0000000000000246 R12: 0000000020000940
[ 3305.753590] R13: 0000000020000980 R14: 0000000000000000 R15: 0000000020000c80
[ 3318.760633] FAULT_INJECTION: forcing a failure.
[ 3318.760633] name failslab, interval 1, probability 0, space 0, times 0
[ 3318.761679] CPU: 1 PID: 21175 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3318.762268] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3318.762982] Call Trace:
[ 3318.763218]  dump_stack+0x107/0x167
[ 3318.763531]  should_fail.cold+0x5/0xa
[ 3318.763861]  ? shmem_alloc_inode+0x18/0x40
[ 3318.764222]  should_failslab+0x5/0x20
[ 3318.764551]  kmem_cache_alloc+0x5b/0x310
[ 3318.764898]  ? shmem_destroy_inode+0x70/0x70
[ 3318.765272]  shmem_alloc_inode+0x18/0x40
[ 3318.765619]  ? shmem_destroy_inode+0x70/0x70
[ 3318.765991]  alloc_inode+0x63/0x240
[ 3318.766301]  new_inode+0x23/0x250
[ 3318.766612]  shmem_get_inode+0x15e/0xbc0
[ 3318.766979]  __shmem_file_setup+0xb8/0x320
[ 3318.767344]  ? _copy_from_user+0xfb/0x1b0
[ 3318.767703]  __do_sys_memfd_create+0x275/0x450
[ 3318.768093]  ? memfd_file_seals_ptr+0x170/0x170
[ 3318.768489]  ? memfd_fcntl+0x10f0/0x10f0
[ 3318.768845]  do_syscall_64+0x33/0x40
[ 3318.769165]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3318.769600] RIP: 0033:0x7f71ab262b19
[ 3318.769920] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3318.771485] RSP: 002b:00007f71a87d7f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[ 3318.772134] RAX: ffffffffffffffda RBX: 0000000020000c00 RCX: 00007f71ab262b19
[ 3318.772737] RDX: 00007f71a87d8000 RSI: 0000000000000000 RDI: 00007f71ab2bc0fb
[ 3318.773341] RBP: 0000000000000000 R08: 00007f71a87d7ff8 R09: ffffffffffffffff
[ 3318.773943] R10: 00007f71a87d7ffc R11: 0000000000000246 R12: 0000000020000940
[ 3318.774547] R13: 0000000020000980 R14: 0000000000000000 R15: 0000000020000c80
08:51:02 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8901, &(0x7f0000000100)="fb")
ioctl$INCFS_IOC_GET_FILLED_BLOCKS(r0, 0x80286722, &(0x7f00000000c0)={&(0x7f0000000000)=""/142, 0x8e, 0x3, 0xff})
r1 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
ioctl$sock_bt_hci(r1, 0x800448d3, &(0x7f0000000140)="d876b6a20e473d21c958dac551cd3e4cbc2cd1edd8190c3ee5aa84795072c54595b778d8e1f08127f94c8990da9c481b7f5e71951647280408c74d19cbd9a367eb55c533ca053e82f05a37414ff2a871e8bc893463df1ed74f576616d07cb0e312f9e22d6b594a638c50be973736a503674f")
pread64(r1, 0x0, 0x7ffffffff000, 0x806c54747f0000)

08:51:02 executing program 5:
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x8000, 0x0)
syz_80211_inject_frame(&(0x7f0000000200)=@broadcast, &(0x7f0000000040)=ANY=[@ANYRESHEX=r0], 0x34)
syz_80211_inject_frame(&(0x7f0000000080)=@device_b, &(0x7f00000000c0)=@mgmt_frame=@assoc_resp={@with_ht={{{0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, {0x5}, @device_b, @device_a, @initial, {0x9, 0x5}}, @ver_80211n={0x0, 0x20, 0x2, 0x3, 0x0, 0x2, 0x0, 0x0, 0x1}}, 0x2008, 0x4f, @random=0x400, @val={0x1, 0x2, [{}, {0x16}]}, @val={0x2d, 0x1a, {0x2000, 0x1, 0x2, 0x0, {0x2, 0x9e, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x1}, 0x1, 0x3, 0xb1}}, [{0xdd, 0x89, "40832a08c9258f1d53d7e880edb73d33d1140b46135ed2f504d3166b0d00ec67666687648664e8e4f8a864a40ac6346408a211c5f299d9d05c53be67604f1ddb045b81fc8a7316d7f74c4816f9806b65f0c810007b2607a39a7f69438289d70aa0bc6c038307f2de65802d0e08a6bbc02a1b004b268827fa84b4b803dd7c040434570f10e2001dc5a0"}, {0xdd, 0x49, "578490b17c30e01f8d31e9408dcd2f073d7e0248df800900bccd459d7cfc9d2cb0f9f5889d315b9f5812336538d35de9e8824f64445a4ff0eea5e98f9d9dad35f7d28d1b49abc0d962"}]}, 0x118)

08:51:02 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9) (fail_nth: 3)

08:51:02 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000)

08:51:02 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x48000000ffffff7f, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:51:02 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='cmdline\x00')
pread64(r0, 0x0, 0x7ffffffff01d, 0x201000000000204)

08:51:02 executing program 2:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x100000000000000, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x4100, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x0, 0x4, 0x6c, 0x5, 0x0, 0x4c, 0x8, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x2, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x9, 0x2, @perf_config_ext={0x8, 0x200}, 0x10000, 0x237, 0x8, 0x2, 0x7, 0x7, 0x2, 0x0, 0x8, 0x0, 0x1000}, 0xffffffffffffffff, 0x8, r0, 0x2)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x400448dd, &(0x7f0000000180)="a9")

08:51:02 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 4)

[ 3318.810915] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3318.817860] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3318.850155] FAULT_INJECTION: forcing a failure.
[ 3318.850155] name failslab, interval 1, probability 0, space 0, times 0
[ 3318.851229] CPU: 1 PID: 21179 Comm: syz-executor.0 Not tainted 5.10.226 #1
[ 3318.851810] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3318.852503] Call Trace:
[ 3318.852736]  dump_stack+0x107/0x167
[ 3318.853048]  should_fail.cold+0x5/0xa
[ 3318.853376]  ? __blkdev_direct_IO_simple+0x222/0x930
[ 3318.853815]  should_failslab+0x5/0x20
[ 3318.854144]  __kmalloc+0x72/0x390
[ 3318.854443]  ? iov_iter_alignment+0x1b1/0x810
[ 3318.858854]  __blkdev_direct_IO_simple+0x222/0x930
[ 3318.859276]  ? bd_link_disk_holder+0x710/0x710
[ 3318.859665]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3318.860104]  ? __lock_acquire+0xbb1/0x5b00
[ 3318.860466]  ? invalidate_inode_pages2_range+0xa19/0xc50
[ 3318.860923]  ? find_held_lock+0x2c/0x110
[ 3318.861274]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 3318.861807]  ? current_time+0x72/0x2c0
[ 3318.862134]  ? iov_iter_npages+0x1fd/0xa70
[ 3318.862494]  blkdev_direct_IO+0xb35/0x12a0
[ 3318.862873]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3318.863314]  ? ktime_get_coarse_real_ts64+0x15a/0x190
[ 3318.863747]  ? trace_hardirqs_on+0x5b/0x180
[ 3318.864111]  ? ktime_get_coarse_real_ts64+0x15a/0x190
[ 3318.864543]  ? ktime_get_coarse_real_ts64+0xfd/0x190
[ 3318.864973]  ? bd_prepare_to_claim+0x290/0x290
[ 3318.865360]  ? __mark_inode_dirty+0x12e/0xd40
[ 3318.865742]  ? generic_update_time+0x21c/0x370
[ 3318.866132]  ? filemap_check_errors+0xa5/0x150
[ 3318.866523]  generic_file_direct_write+0x20e/0x560
[ 3318.866964]  __generic_file_write_iter+0x235/0x5d0
[ 3318.867386]  blkdev_write_iter+0x298/0x550
[ 3318.867749]  ? bd_unlink_disk_holder+0x3f0/0x3f0
[ 3318.868150]  ? direct_splice_actor+0x10f/0x170
[ 3318.868536]  ? splice_direct_to_actor+0x387/0x980
[ 3318.868940]  ? do_splice_direct+0x1c4/0x290
[ 3318.869305]  ? do_sendfile+0x553/0x11e0
[ 3318.869642]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 3318.870033]  ? do_syscall_64+0x33/0x40
[ 3318.870363]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3318.870827]  do_iter_readv_writev+0x476/0x750
[ 3318.871207]  ? new_sync_write+0x660/0x660
[ 3318.871558]  ? avc_policy_seqno+0x9/0x70
[ 3318.871901]  ? selinux_file_permission+0x92/0x520
[ 3318.872311]  ? security_file_permission+0xb1/0xe0
[ 3318.872720]  do_iter_write+0x191/0x700
[ 3318.873049]  ? trace_hardirqs_on+0x5b/0x180
[ 3318.873415]  vfs_iter_write+0x70/0xa0
[ 3318.873739]  iter_file_splice_write+0x762/0xc30
[ 3318.874139]  ? generic_splice_sendpage+0x140/0x140
[ 3318.874564]  ? security_file_permission+0xb1/0xe0
[ 3318.874985]  ? generic_splice_sendpage+0x140/0x140
[ 3318.875397]  direct_splice_actor+0x10f/0x170
[ 3318.875769]  splice_direct_to_actor+0x387/0x980
[ 3318.876161]  ? pipe_to_sendpage+0x380/0x380
[ 3318.876526]  ? do_splice_to+0x160/0x160
[ 3318.876862]  ? security_file_permission+0xb1/0xe0
[ 3318.877270]  do_splice_direct+0x1c4/0x290
[ 3318.877618]  ? splice_direct_to_actor+0x980/0x980
[ 3318.878021]  ? avc_policy_seqno+0x9/0x70
[ 3318.878367]  ? security_file_permission+0xb1/0xe0
[ 3318.878795]  do_sendfile+0x553/0x11e0
[ 3318.879122]  ? do_pwritev+0x270/0x270
[ 3318.879447]  ? wait_for_completion_io+0x270/0x270
[ 3318.879857]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3318.880246]  ? vfs_write+0x354/0xb10
[ 3318.880565]  __x64_sys_sendfile64+0x1d1/0x210
[ 3318.880945]  ? __ia32_sys_sendfile+0x220/0x220
[ 3318.881333]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3318.881776]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3318.882211]  do_syscall_64+0x33/0x40
[ 3318.882526]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3318.882975] RIP: 0033:0x7f5117aedb19
[ 3318.883292] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3318.884817] RSP: 002b:00007f5115063188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3318.885453] RAX: ffffffffffffffda RBX: 00007f5117c00f60 RCX: 00007f5117aedb19
[ 3318.886049] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000000a
[ 3318.890680] RBP: 00007f51150631d0 R08: 0000000000000000 R09: 0000000000000000
[ 3318.891272] R10: 000000007ffffff9 R11: 0000000000000246 R12: 0000000000000001
[ 3318.891865] R13: 00007ffc6010669f R14: 00007f5115063300 R15: 0000000000022000
[ 3318.936357] FAULT_INJECTION: forcing a failure.
[ 3318.936357] name failslab, interval 1, probability 0, space 0, times 0
[ 3318.937438] CPU: 0 PID: 21200 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3318.938027] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3318.938754] Call Trace:
[ 3318.938989]  dump_stack+0x107/0x167
[ 3318.939302]  should_fail.cold+0x5/0xa
[ 3318.939630]  ? create_object.isra.0+0x3a/0xa20
[ 3318.940018]  should_failslab+0x5/0x20
[ 3318.940341]  kmem_cache_alloc+0x5b/0x310
[ 3318.940687]  create_object.isra.0+0x3a/0xa20
[ 3318.941059]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3318.941487]  kmem_cache_alloc+0x159/0x310
[ 3318.941841]  ? shmem_destroy_inode+0x70/0x70
[ 3318.942212]  shmem_alloc_inode+0x18/0x40
[ 3318.942554]  ? shmem_destroy_inode+0x70/0x70
[ 3318.942956]  alloc_inode+0x63/0x240
[ 3318.943264]  new_inode+0x23/0x250
[ 3318.943561]  shmem_get_inode+0x15e/0xbc0
[ 3318.943908]  __shmem_file_setup+0xb8/0x320
[ 3318.944266]  ? _copy_from_user+0xfb/0x1b0
[ 3318.944617]  __do_sys_memfd_create+0x275/0x450
[ 3318.945002]  ? memfd_file_seals_ptr+0x170/0x170
[ 3318.945397]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3318.945838]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3318.946271]  do_syscall_64+0x33/0x40
[ 3318.946596]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3318.947062] RIP: 0033:0x7f71ab262b19
[ 3318.947378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3318.948899] RSP: 002b:00007f71a87d7f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[ 3318.949537] RAX: ffffffffffffffda RBX: 0000000020000c00 RCX: 00007f71ab262b19
[ 3318.950129] RDX: 00007f71a87d8000 RSI: 0000000000000000 RDI: 00007f71ab2bc0fb
[ 3318.950752] RBP: 0000000000000000 R08: 00007f71a87d7ff8 R09: ffffffffffffffff
[ 3318.951343] R10: 00007f71a87d7ffc R11: 0000000000000246 R12: 0000000020000940
[ 3318.951931] R13: 0000000020000980 R14: 0000000000000000 R15: 0000000020000c80
08:51:02 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 5)

08:51:02 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200001000000)

08:51:02 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/raw\x00')
pread64(r0, 0x0, 0x0, 0x1)

08:51:02 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
ioctl$sock_SIOCGIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r0, 0x8982, &(0x7f0000000000)={0x3, 'wg0\x00', {0x2b5}, 0x7})
r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r1, &(0x7f0000000200)=""/84, 0x54, 0x200000047)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000080)={<r3=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r3, 0x3, r1, 0xa)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xc1, 0x6, 0x1, 0x89, 0x0, 0x1000, 0x42004, 0x4, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x6, 0x2, @perf_config_ext={0x8, 0x10001}, 0x8000, 0x7f, 0x5, 0x5, 0x4, 0x1, 0x1ff, 0x0, 0x8, 0x0, 0xe08}, r3, 0xe, r0, 0x9)
r4 = syz_open_dev$vcsa(&(0x7f0000000140), 0x0, 0x80102)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x7f, 0x4, 0x4, 0x0, 0x0, 0x0, 0x80, 0x2, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x200, 0x4, @perf_config_ext={0x5d93, 0x4}, 0x200, 0x40, 0x0, 0x0, 0x3, 0x0, 0x7, 0x0, 0x485a, 0x0, 0x2bb}, r3, 0xffffffffffffffff, r4, 0xa)
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)
socket$inet(0x2, 0x4, 0x7f)

08:51:02 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x7fffffffffffff)

08:51:02 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000180)="a9")
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x1}, 0x6)

08:51:02 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x0, 0x806c54747f0000)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r1, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file0\x00'})

08:51:02 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x48000000ffffff8c, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:51:02 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9) (fail_nth: 4)

[ 3319.026244] FAULT_INJECTION: forcing a failure.
[ 3319.026244] name failslab, interval 1, probability 0, space 0, times 0
[ 3319.028220] CPU: 1 PID: 21204 Comm: syz-executor.0 Not tainted 5.10.226 #1
[ 3319.028859] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3319.029686] Call Trace:
[ 3319.030010]  dump_stack+0x107/0x167
[ 3319.030325]  should_fail.cold+0x5/0xa
[ 3319.030761]  ? create_object.isra.0+0x3a/0xa20
[ 3319.031275]  should_failslab+0x5/0x20
[ 3319.031613]  kmem_cache_alloc+0x5b/0x310
[ 3319.032261]  create_object.isra.0+0x3a/0xa20
[ 3319.032694]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3319.033216]  kmem_cache_alloc+0x159/0x310
[ 3319.033576]  jbd2__journal_start+0x190/0x7e0
[ 3319.034053]  __ext4_journal_start_sb+0x214/0x390
[ 3319.034467]  ext4_dirty_inode+0xbc/0x130
[ 3319.034971]  ? ext4_setattr+0x2160/0x2160
[ 3319.035327]  __mark_inode_dirty+0x492/0xd40
[ 3319.035783]  generic_update_time+0x21c/0x370
[ 3319.036210]  file_update_time+0x43a/0x520
[ 3319.036562]  ? evict_inodes+0x420/0x420
[ 3319.036995]  ? down_write_killable+0x180/0x180
[ 3319.037390]  file_modified+0x7d/0xa0
[ 3319.037755]  ext4_file_write_iter+0x906/0x18d0
[ 3319.038200]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 3319.038586]  ? kasan_save_stack+0x32/0x40
[ 3319.039104]  ? kasan_save_stack+0x1b/0x40
[ 3319.039455]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3319.039973]  ? iter_file_splice_write+0x16d/0xc30
[ 3319.040379]  ? direct_splice_actor+0x10f/0x170
[ 3319.040811]  ? splice_direct_to_actor+0x387/0x980
[ 3319.041264]  ? do_splice_direct+0x1c4/0x290
[ 3319.041667]  ? do_sendfile+0x553/0x11e0
[ 3319.042063]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 3319.042455]  ? do_syscall_64+0x33/0x40
[ 3319.042873]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3319.043407]  do_iter_readv_writev+0x476/0x750
[ 3319.043836]  ? new_sync_write+0x660/0x660
[ 3319.044235]  ? avc_policy_seqno+0x9/0x70
[ 3319.044580]  ? selinux_file_permission+0x92/0x520
[ 3319.045085]  ? security_file_permission+0xb1/0xe0
[ 3319.045514]  do_iter_write+0x191/0x700
[ 3319.045935]  ? trace_hardirqs_on+0x5b/0x180
[ 3319.046313]  vfs_iter_write+0x70/0xa0
[ 3319.046723]  iter_file_splice_write+0x762/0xc30
[ 3319.047207]  ? generic_splice_sendpage+0x140/0x140
[ 3319.047677]  ? security_file_permission+0xb1/0xe0
[ 3319.048142]  ? generic_splice_sendpage+0x140/0x140
[ 3319.048557]  direct_splice_actor+0x10f/0x170
[ 3319.049020]  splice_direct_to_actor+0x387/0x980
[ 3319.049424]  ? pipe_to_sendpage+0x380/0x380
[ 3319.049841]  ? do_splice_to+0x160/0x160
[ 3319.050235]  ? security_file_permission+0xb1/0xe0
[ 3319.050737]  do_splice_direct+0x1c4/0x290
[ 3319.051169]  ? splice_direct_to_actor+0x980/0x980
[ 3319.051575]  ? avc_policy_seqno+0x9/0x70
[ 3319.052022]  ? security_file_permission+0xb1/0xe0
[ 3319.052436]  do_sendfile+0x553/0x11e0
[ 3319.052823]  ? do_pwritev+0x270/0x270
[ 3319.053197]  ? wait_for_completion_io+0x270/0x270
[ 3319.053614]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3319.054095]  ? vfs_write+0x354/0xb10
[ 3319.054417]  __x64_sys_sendfile64+0x1d1/0x210
[ 3319.054950]  ? __ia32_sys_sendfile+0x220/0x220
[ 3319.055367]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3319.055869]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3319.056365]  do_syscall_64+0x33/0x40
[ 3319.056760]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3319.057241] RIP: 0033:0x7f5117aedb19
[ 3319.057568] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3319.059396] RSP: 002b:00007f5115063188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3319.060127] RAX: ffffffffffffffda RBX: 00007f5117c00f60 RCX: 00007f5117aedb19
[ 3319.060769] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000000a
[ 3319.061409] RBP: 00007f51150631d0 R08: 0000000000000000 R09: 0000000000000000
[ 3319.062099] R10: 000000007ffffff9 R11: 0000000000000246 R12: 0000000000000001
[ 3319.062787] R13: 00007ffc6010669f R14: 00007f5115063300 R15: 0000000000022000
[ 3319.123400] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:51:02 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8901, &(0x7f0000001840)="fb")
syz_80211_inject_frame(&(0x7f0000000040)=@device_b, &(0x7f0000000080)=ANY=[@ANYRES64=r0], 0x34)

08:51:02 executing program 7:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x80c5, 0x400)
ioctl$BTRFS_IOC_GET_DEV_STATS(0xffffffffffffffff, 0xc4089434, &(0x7f0000000040)={<r1=>0x0, 0xf750, 0x0, [0x89f5, 0x5, 0x6f50, 0x7fff, 0x9], [0x7, 0x20, 0x3ff, 0x6c, 0x1, 0x6, 0x4, 0x200, 0xf9, 0x7fff, 0x1, 0x8, 0x5, 0x1, 0x0, 0x40, 0x5, 0xb334, 0x0, 0x8, 0x3f, 0x5, 0x47, 0xeddc, 0x5, 0x5, 0x34f, 0x2, 0x4, 0x9, 0x5, 0x1000, 0x0, 0xfff, 0x0, 0x2, 0x7fffffff, 0x400, 0x7, 0x2, 0x1, 0x401, 0x1ff, 0x7, 0x2, 0x7ff, 0x7, 0x2ff4, 0x1b2a, 0x9, 0x0, 0x4, 0x7, 0x8, 0x81, 0x6, 0x8b7, 0x6, 0xbed, 0x1, 0x0, 0x3, 0x9, 0x5, 0x5, 0x7, 0x40, 0x8, 0x0, 0x4, 0x42, 0xffffffffffffff80, 0x9, 0x2, 0x3f, 0x1, 0x7fff, 0x5, 0x7, 0x4, 0x2, 0x7, 0x5, 0x1ff, 0x1, 0x800, 0x20, 0x3, 0x81, 0xffff, 0x99ca, 0xfff, 0x271, 0x722, 0x8, 0x6, 0x9ee4, 0x2867, 0x3ff, 0x2, 0x4b, 0x5, 0x400, 0xffffffffffffffe0, 0x0, 0x2, 0x0, 0x1, 0x9831, 0x1, 0x100000000, 0x9, 0x4, 0x80000000, 0x1, 0x10000, 0x3, 0x3, 0x4, 0x0, 0x1]})
ioctl$BTRFS_IOC_GET_DEV_STATS(r0, 0xc4089434, &(0x7f0000000600)={r1, 0x100, 0x1, [0x5, 0x6, 0x5, 0x4, 0x9], [0x7, 0x0, 0x7fff, 0x5, 0x717, 0x0, 0x0, 0x401, 0x8000, 0x0, 0x200, 0x9, 0x1f, 0xbc3, 0x100000000, 0x4, 0x7f, 0x23, 0x400, 0xae6, 0x1c000000000, 0x4, 0x8, 0x5, 0x2, 0xff, 0x9, 0x80, 0x8, 0x5, 0x2400000, 0x4, 0x9, 0x6, 0x81, 0x80000000, 0x0, 0x3f, 0xebc, 0xa0, 0x4, 0x7ff, 0x5, 0x5ad, 0x8, 0x6, 0xffffffff7fffffff, 0x401, 0x8, 0x7, 0xfff, 0x9, 0xe5, 0x0, 0x3, 0x8221, 0xfffffffffffffff9, 0x2, 0x80000000, 0x100000000, 0x6, 0x5, 0x7f, 0x200, 0xfcf, 0x6ed6ca27, 0x1, 0x1, 0x4, 0xb, 0xffff, 0x100000001, 0xffffc00000000000, 0x314, 0x0, 0x6, 0xfffffffffffffffb, 0x3, 0x8000, 0x78, 0x1, 0x5, 0x356a, 0x3, 0xfffffffffffffffe, 0x2, 0x2, 0x9, 0x0, 0x230, 0x3, 0x4, 0xce919de, 0xc2b9, 0xfffffffffffffff9, 0x3, 0x3ff, 0x4ce4, 0x5, 0x6, 0x1, 0x1, 0xfffffffffffffffe, 0x2, 0x3, 0x4, 0x101, 0x8, 0x7f, 0x0, 0x7, 0xffffffffffffee25, 0xffffffff00000000, 0x7ff, 0x1, 0x80000001, 0x6, 0x2, 0x8001, 0x9, 0x20]})
r2 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r2, 0x0, 0x7ffffffff000, 0x200000000000)

08:51:02 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff})
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000380)=@IORING_OP_SENDMSG={0x9, 0x3, 0x0, r3, 0x0, &(0x7f0000000340)={&(0x7f0000000100)=@pppol2tpv3in6={0x18, 0x1, {0x0, r4, 0x0, 0x4, 0x2, 0x3, {0xa, 0x4e20, 0x3, @private2={0xfc, 0x2, '\x00', 0x1}, 0x1f}}}, 0x80, &(0x7f0000000300)=[{&(0x7f0000000200)="af4db6e9658d6d1f0854f742005430b3", 0x10}, {&(0x7f00000002c0)}], 0x2, &(0x7f0000000600)=[{0x80, 0x117, 0x3, "9d3f6eb99c55f949df8a2ce51a4926047bcc05bdc6405e45f4a083e491ea6138f5b43e464a2a07269b55f6e76a23fb9086434dad247df92ebdb42ba59ce265dcf585ded2e6e23c7f591267534345dbf4c1d4710f5a8e96c78ddd7fce669508ddcdfa5f24483746012fe59ca7233e83"}, {0x1010, 0x118, 0x5, "7b8afbe29cb8d3ddcbe52f99a7cd3875778caa70f676d99dd05498ebc242248424fbc78cef28a27afe7aadd115332e5a89a7e7ff8f77203af60975ec5fd554f353d6ddc063b3769b963ddb8cfa1060a5b526cd2f28a074b07aa9de2928e184864b8c5a192cd0215ddb0e8a3c0e76ae1ee401b6d90cdbca87c63b1f9e6e99bd65e105a051cfa82dc21b995f5f6ca975ed31e356725738bf2dd7688a748c2cdf0e0ebd0762a6370002e0918c92ccf54d6a94534f0224de7383437021dc732c260ab3c87c95d43f925fff36e772f68c53ba48214f3498acd60945e4e5307b9f9aebab76fe7ccc8212049b2edb6a9010e1ba8dfc313b1d4007f471caa1bd3e338dce07fa0f441354e8fb790bf743a399c3e373de299ee834d759b68d7681f7a709505a44e3c801bd144eb1c4f2b23baa4b2ce4dbf5b02357ecc9bc376446988842a91b7a21d9a8da9fde9da0fae75a99f2fe06410db920c639a498be86631bc770f485ef8e9246254b334867c0cbf196be3eafc743ff9a67b80829f20dcb8ddfc8c5c4a3fd1e9b2da95326d8318e50039bcee4a4e587a16577137d72108ad22ed54b435728f553c5f6cdc5a87b76b6212a89ad94441c2db63c99c8d13246c0ddf516fd1770d288348e817a2cd5c84a92347b02f69ad1c687e98e25c40ab2f931f369889666a6f9084a1677fe803b29c47e2518909047a2d0fdde0958f41bc8d605813d718d1b9d5635bb33b715ccc564cee2c4ee64323fa3da2b48272f743cd157770f197b0c03c52a5c37887459bd77011bb8ad8728a3f57ee9c0c11f8148033728acb2428bb90024e628e0809c8d9ab72746c39d605c7b2ee37077b2e42637126d890123aa72f3a30589c8572d30533ce7812f5f850920c31c88e153830e151ae239775432283ce1b683d6c323ffbb3a526daba28d95bb68a05c9cc49163a4f6eea5c165483b17000e5159fe0b9a32d48a7111865096c7757076a3d1a3573ba8761508ad71ed4f1418a7520d40bd6efbd918b3f07dad52bc54bc9aca436207f71681a2476979f34a05278424775b6f1f254dde08bddeb935217f01720c6709d38de31ff2367ea2d3de7095ebc01116419ad58c73b1fa10da792c549388f8eb6f82aa40843872d202d962309a2601908c9f985f4d14b8dacf6f411db8f0f85862ac91b62953aab6f91a179b2bb0922abdc524dded5fcbc0f596b0c99ebecf1b68bf215507b1b54576a8ef67ba567ee91a864cb29f0bde4a4d5a9200494fd539a3962c64f861421e6e75e07b938e2d5942ffbd2e28778914069eeee81d5cab416555cc8e844b673599054057831e2b56a3fc30b37a850f75bb99cdd7bc1ad20b275a7900a4cd76e2fbbed7376fc33a1579573d580748d9a5583e0ab51e9b208633bf7c15d18cab57a6e32ced281b46fdd5dbba662ae8cef107c777380ef7a531ba637c76d45c83d486facafa77292e92938021283c20edbb3c9bb0a2dcab9e062c3eb2455ffce6899154a5011cde1a2c67717845114abf5b60279e6de29358f4fa1435ff05471c02f0466ec158e2b5777e7b3d22fecb24a89503730cb7f48698acfb36b2f98ab5017c284dc59663229efd2dae868847559071bfd01edcf727d6612a9fc7bea3d109a685e2075907c6d6545c44b38d9c57c1072f3600fcdc926582eeb1ffbae178aefa2e7f6e84abf76368ab186aefe1c696190a7cf33caa553dc42cfd535ded79b37a45612505ed6d0ff2a88ad985aded3afe839f2aba7dd954f8b3cf918a3085bb5bdb14ced81d565ad8a06b1fa2674813f7027ff17f8cbf3cec7b9c20ae6500cf0058217643a9297abb2b7403c76a24f944fd9e9c9ecf65d608a889cf9a296f01d3e4edbee39a1a99e045f1a3c20d4fa2dd4def6f447fe51143e814bfae8b3d096188acc3e43e02781948f33ebce30152236f48e1cec0ec8804629a30597c6ef78705985ecdc90bc7328187aa63f49b907aa87de14d8e4f9120a86e32befa195769d3ef6a45dd87b376fa89ecdb777da078e7a39bf752602983e6126d07385350db1ecb62b08e06502aa6cc9f5f85a26d44abf81e2d53c65f238a01201ba4273d3e08713749bb9470c410df9d5f3c37c70d0d45ab74da2611a51f0d823ac8cb5cafdffe33b9e8d71b53b5e2f70814448b594ac3322a845ebcafa42ff06b0a9de21938590310aae262381c2e17a6bedabb68cd30de9016b450d4352b19d13d4c20b81c350d5fd8e5df2e4501911773cec73fde990b5903204e595d5ac32f6e64f5860a3b188b8a7cbbedfd4e3ea87d7d45d1d8c1bbba8a6fbcdb95bec79b40b8874cee6ac00afd527f08268ad6504638aa9237a875096bd03806e5c6e7a64a7d2de51fa99abf68bbb60299ed807d7e56797f0841d2fd9dd281c8acf98e33f8796ee7e7a9fb7eacc9dea4c00810392ce0e8544f2b82573727b24b6058c62a15861e9692718e814ff2c48dd2108a67703498fd0e274e2e7191f59a63d79e403045de4cf0149fb33bb17b6dead29a1f918ad38ce6e0fb104c4d590a05b59cd981c33fb9d9b848de22e8c768c80f1fd131a0b6ec962b95ad66e8a68f366f8b041f715501caf335cbfe25a7f95e0eb1c6bf784ba35746ef8b382ddd92fdd78cc19d2e2aa354ac7229b05df8efc57dfd2b77815bf805fcbba44ac768368a1efda4a84c7d9df34f0464e4052ae850998531bf39fc85eb8a089070d35a2891f52400c0480b8e80f58b102405b07df78889f4f6ed5a7bd48fee19a57afe9e16599c0bbb88b7022ccc25100015ebcabbeab672344a9dde2fc878bc6a34cd403ef0628da72367eeedadf84b62ff5934d30bbcbac5a501c71374bf1dd0e1126dfb05cf8480c89e6ced786d2bb52507f0244fb315bdd1bec6ef8b0bf1136434628057dad272e266f25748918a179c77ffd7a515217bef07ebb2f7e59ca4820b5269e92bc3f96fdfbf5ecd755041d7acb66fd3cfc73be77e6246766710f210cbc606e1487a921c272ba28b00d76254819375f5e0a0062888746787d7f6886c0c9d1fb5e807c8599b9351080c6687adff8564a1c4bb7f64b54bced1e01b1834d96014696ac37edff119baf8eae0754f019f29230d98ce8888e9288c4e8e30735e0ed8bbb8f758ec7365b6ed1a78966167fced55011989005a90c3e787b07fbdf181888385f62abc978b48f0d3750eea3df3cb1541a8c551b69f9662b7631b9b053ffabab20637f28a2171ae3327d987e3ab5b7b824edbfa48a7adbf760bfd37edb4eab283ac8f2cb8a56feb0ab7baf208f56b909006b35b36b51dd9a0c8b1cae8d8589dcf2aa89a859a5c4179358e690fdd63f3509bf8916ceee7acfbe6e23772108e0d14000c19336e77e629a2c16e7db599a000da0465a80d0b9e9b4c25bb5f874911ce616345e2622daf66f9de50d4d5ac3e871aa87f4631bfe7b6724e2d3d36f4f0a6e42cd465803e049cde40c02e386ec630293bca83495faa83220e53e2ff77b5e4aac6f92bdd969ab5feeb2962248bd5e63079b3e4786172926540fe98f11aeaf9aa66079e4ddfc84b6bb5aaa5411a0db5452f27428215508043496812cfe9f01502f1d1e037942173db68cc18fdc783afa8f3926d5fb15fc7d9a1d825fa04f7873dd692fc7474d3d07621e901a99ea024b7f62c0ae76de8a774ec883347e6cd1e372a1b492362152503c80bfebbe3145795d0aa61990e1c5e4a16a0d60ae33278d16497fd596754d8b10bea27965f4223d1d1cbdf23fa82d73d07f6d0fe0d737373bc6a58ff569c28b2e89cbb362c5e3349506b31955a134b0a7beaa23ebed802808a873ea4fe3438f74afbe4ac09c4b7e2cbab37acf6a6148eee0b863419b740c24562f626d45f82e6778fe757f45756ead34e6e92656d913e6bf8c781d974dcaf8a144736816dd819134083fd93dfa6780f1c536c1ec0e364a08f0abaab85d034252140fd7b0031f6934a083bf2f688e48a79bb08c4e3afa44ec7daf0b97f7b079467f7244cccd85d3a08d413500611113d3122bf5cfb834f34126a8a2c24964f748eb752d8405db65e297cfe5c2776e489e1badf861979419ecd4af876961b8e885acbd347414337d1fa4c3186658053ccad3eaa19dd5fd5e9f99e1148e2eeb2fe89714f0f043a922f0feb3c8f9d7a26cef32075d9f765d97cd07513d3fc89dce4d6058ed6d348d9748ac805320f73fb11f6752650fa1a1a2ebc0b73ba1dc4c4fcff19ae922049d5fd6cc11fd51a914528ee7001c470aba7a1d6163069c2b8ba30b6b19b42cb67708e3fcd74c0608e852ed045061d37e02747507678ed3ac4d34d759c9270bb9e2424cec77880dbaf0cfea96aa0a8fe234049754a80f0d6a14edeb65751a27ae19acdb1eb66c69faff4ba79e05897de31185cd3faeffe49b07818dc7e0287a76638fad9538597e16ac677b610cda35884a61f70f966ee722967b669184f01f9f5e20db7cb117c253f0f21f6b97d330f1be510f7f551290ea357e6c822b37de95480bfeba23db26d9ae5de0871de38b679271b6256d109add5a4411816828bfefa2de47a8c59282b925986456f13aa341d5e7a4a95ab38abe1d8920f50dc7b28ac260556526bb5ddef958fdc2214316a5e50cbcd6bce93488e4db080edc79eec2294445c0d438e9c0c0825614b0bae8dd6e25a307e8c4cc2e1180c6d74443a562f2a222bfc803da51c8f7e85219338854a8d30aa03e130c19ef56ff4cf3f002ae49acf30cd3ed747c1749d4c49bcbf34b84d939533c5daa34e390902af61c66ff84458e0d08ecfa4c2c0956b499dc26b0c06c80494ff0a68168fe8b7b38bcdd54f17f128aceb5c7756b4e17172dc32b19d44a9e8a88491f82cd476181b06490b6c56eee40a45573b1fe18909887eae013988932975cf6148bd0e73965a491f956dd8509861b3f97f925f85fbf89d9c044099fb2e7302ef44ba1ab35219b755ed6cee58c67c1c11b9fead85d1ba6abadbfe9620a3679a4ea490ed1f002b31186cfd8d5fb709fa6c0d6e5d41d0f6c6be04c69f65b970e13f1878f0de2bf021def7664a6d2336b19cc0bdf30f8293c53f55715de62e9fb79e0169188f9833b4b4825a47faf1cad8fcc106c6e3dff694afacd28671e66136018f01f22a4ee88b8726a4468d6009f32669287d0a4f08cd99a7963f95cf59bdc893780f3532feba58618f30d58f7d14dab975143853585b8af015988d3ba89dc2fec6346a38c31557144c6bf5954f6e2440ede74d5671b2e47a24c829e8d4098e08b338bd070b1026153a3362e7af0db1cc0f34c58464fea2a43c8c4849fe502523e748c99e4af99792e74e50c640f0282e53db116dcf4cc671d37ce64d17a62bb411e575a88438530f5cbd81c3e01908e9896ff691df63e8919318f0b68813a842b2b075575381c5b831aa1af113990cd171fe364e3f9a56fb55e09503cf6f5c7d994f02605f0eedeb7c76b3389a55948d97f9f4b2ac651f12d2261565c05e218b0fb647d1a69580d24017e37e29f0d30e982753755a97185e09fe770bed56b5078234ea7e934223c8d1b96b914f9663e423f69557c5363fa3efbfdbd871aed678afe409089258866f8be5c95b7a7fe483726381b4f583490f61df01285b2911737af6e9fcb83722ddbf7da9fa76a3ad51c848a406a5ce7b321c0238f6e6ba76c75bf8ec781032d3f1bc2eb5f5355bc77cd7c9b93b7b7daa34d69136f94ad1e95502c9f32d74185833c7c161f0926ee14a959aeefe2632398d97efe7f7924262c5f7fd0550dafff95669e3b0516a82933aa137ab6df5f08606512cd88ef402dd"}], 0x1090}, 0x0, 0x8018}, 0x5885d36)
pread64(r2, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000080)={<r5=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r5, 0x3, r1, 0xa)
syz_open_procfs(r5, &(0x7f0000000000)='net/kcm\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)

08:51:02 executing program 2:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffaf, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x10}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r2 = inotify_init1(0x800)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000880)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r3=>r2, @ANYBLOB="000000000000000066696c65f82a16ee0a9abf5e0000000000000000000000000000007437a74f886adaff9ff0f2171877469231a4f94ef01d2c59cc7f85341a8bbd5f143fa5114ba2f467abaae67ba57c75df9928323b0b2f77895e77631dbf02c6e922d8b171258f5e4251010a63826d2a4baa7ab80cbf668588454443a26eb1acdb4a6e97d1dee49ff5c5cf2cbc6878c37b92"])
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r3)
flock(r2, 0x2)
preadv(r2, &(0x7f00000006c0)=[{&(0x7f00000000c0)=""/124, 0x7c}, {&(0x7f00000001c0)=""/65, 0x41}, {&(0x7f0000000240)=""/146, 0x92}, {&(0x7f0000000300)=""/184, 0xb8}, {&(0x7f00000003c0)=""/135, 0x87}, {&(0x7f0000000000)=""/39, 0x27}, {&(0x7f0000000140)=""/22, 0x16}, {&(0x7f0000000480)=""/248, 0xf8}, {&(0x7f0000000580)=""/79, 0x4f}, {&(0x7f0000000600)=""/170, 0xaa}], 0xa, 0x8, 0x3)
ioctl$sock_bt_hci(r1, 0x400448dd, &(0x7f0000000180)="a9")

08:51:02 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x48000000fffffff6, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:51:02 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 6)

[ 3319.232462] FAULT_INJECTION: forcing a failure.
[ 3319.232462] name failslab, interval 1, probability 0, space 0, times 0
[ 3319.233137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3319.233463] CPU: 0 PID: 21235 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3319.238819] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3319.239505] Call Trace:
[ 3319.239737]  dump_stack+0x107/0x167
[ 3319.240048]  should_fail.cold+0x5/0xa
[ 3319.240375]  ? security_inode_alloc+0x34/0x160
[ 3319.240769]  should_failslab+0x5/0x20
[ 3319.241093]  kmem_cache_alloc+0x5b/0x310
[ 3319.241440]  security_inode_alloc+0x34/0x160
[ 3319.241812]  inode_init_always+0xa4e/0xd10
[ 3319.242170]  ? shmem_destroy_inode+0x70/0x70
[ 3319.242546]  alloc_inode+0x84/0x240
[ 3319.242889]  new_inode+0x23/0x250
[ 3319.243189]  shmem_get_inode+0x15e/0xbc0
[ 3319.243538]  __shmem_file_setup+0xb8/0x320
[ 3319.243894]  ? _copy_from_user+0xfb/0x1b0
[ 3319.244248]  __do_sys_memfd_create+0x275/0x450
[ 3319.244634]  ? memfd_file_seals_ptr+0x170/0x170
[ 3319.245031]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3319.245473]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3319.245911]  do_syscall_64+0x33/0x40
[ 3319.246227]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3319.246691] RIP: 0033:0x7f71ab262b19
[ 3319.247018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3319.248538] RSP: 002b:00007f71a87d7f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[ 3319.249173] RAX: ffffffffffffffda RBX: 0000000020000c00 RCX: 00007f71ab262b19
[ 3319.249766] RDX: 00007f71a87d8000 RSI: 0000000000000000 RDI: 00007f71ab2bc0fb
[ 3319.250357] RBP: 0000000000000000 R08: 00007f71a87d7ff8 R09: ffffffffffffffff
[ 3319.250988] R10: 00007f71a87d7ffc R11: 0000000000000246 R12: 0000000020000940
[ 3319.251586] R13: 0000000020000980 R14: 0000000000000000 R15: 0000000020000c80
08:51:02 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000)
ioctl$BTRFS_IOC_SNAP_DESTROY(0xffffffffffffffff, 0x5000940f, &(0x7f0000000600)={{r0}, "e4bd9ba594da98456f470adc1a652b2918ca9bb6649c71722c0821d62d028aec981c6d9dc1e12628e71e7f0711f28f81e88212b245802377f6a2de4c9fff4bb075653a6ea4449cf3b2e61d10276d251288a62ac3a0c5bb0d676cf782ffa41b22b1240a9e081f74e7b38285f81598702c7bb125074dccfc44f945d88d5931c2f83038155822b6f8abb50d4b674213124c6a7ad5378324b87bffbc4bac519457a02f2faf8a965993e42bf734292ca9e4a03d75ed6dff9057c8719bf9592c022e1e589be542bd848e8fd1df8136cb15bfb114e9fa4108991b8e730ed706bfb19dae423363711594ac916b6b1ef5900cd39957e121e56a4ba7cd5bcb3e2415cf6f06236fa5eadc5838428d6274c87f7b4c6647f6873c37f4816561abb974c01f5157dccac678b52c8fea78c532d44260f63567c08fd9b1ffb297505b683d1827c60bf780cb11ead5ac920366c5f95ba694d580a5441bce80adca347b22e7fce02ef34be425e2c2996e2db3e6bc5ad4adcf09dccc437f95423baffb986b7428ec3dead31f396c298dde2c00567c20d0bb7f51e4e130e27b02b567639d3164d47887c5642efab4558b2144ee8bacfbadd5b06f82c2cbf7f332f943e26752aab7a803b97ecaaaabb48e325295139305d9d4a471b0cf3f2b14ad8dc7eb59b232de6dd05b2dbbe8f3dee3967c4ad394a6ad66b48fdedfeace5d66cd236c24268b6d7e01765d3e33aea68fceab527ed704c44628fa13dee796007abdde303e43c98a956302e185280b078278b60e74ebf2ddb2c1bf8046f2a1ddefed5155825febea6c797be3830a56c84597aa4b7d7135dfa8fdcf8ffbb21f1fa6e50ee538d81b4d766379931c4bd9f567c61d123e573d4d280946bde79a8a7e330c9a36d4bcea5c5f99672649690460bc6a22ce7a9f7c66b76d266ce6d27fec4c05d4cfdfa21c1f1c6cf5b71f50d52617f6684e80ae59d1fa8a0f6c8ff29a7a119888b1e50eaca0c8f762938d61d4166819adc66760684227d47f6aa3d2f778b1d32c986da0ec369cccd4aac62761e10d5943d536c1f446f0ba3bd503f36c17965e96399680e53a0506e4bf8e6a8128f14bf91ba14e5335511f3eec4aac333efe583f474bd70406f2658196f921a41a8e098ebeb2740fde4a4778ecdbc631a52311ebc5e67aaaa37a6003f2e4b808358a8159bd7478eff7bd05d05c046975a16f12f37689a186044faf203f35e58e7858e872705901579699dcaa6f1a5982cd77cc27c9cbb2175c9e80e610845f4fb60d1e846068a8fe4a52940128b6221b041254bb7d37b7b8a32cc364a638f8bd5499df083b95d8fec3b4f1ed9afc3a1f55d4e22ae37168ab39ffedd6f39171b434e83e4b6e6d40e3596fd2d42ed70cf7165117154531db88548012a89fa30ffc8456ded382158e71a8b5edb1b6daa8a2649775bce0069b956dcdb61f69d0b748f739db4c22e5922dbbeb7589a78b855eb321342d606e4b05fb380b9d0996f660c27150ed52db51b1d9aa641550d5253651a855f4e770e4537dafa57434d5cfa5153ca05cbf598c2711580a3fe3ddb2166f02aeee7de3ffe66ef834620f90b30f05701b65714d8e66cc2d4ac2ff27cbe508353719b1b4228bedfa9cbd2f98256005452ddb9bb4be8fca1e5d002d03253d3fa45f7407bf54936ac4cd7885320ceb609bbd9f38ee6c9660a1fc525f585717633aa8c44113b02574262e8409e5d530861bf1f4693aaeb5d34346abbe8e1befe7408375202b579c42f3d7f81d98db6db48173e68fe5ad4240c2a67e8e7122fc48892badb22531ae8d14aaa5d106afcfb95affc43d8f606c90f8dd22ae5c6b31598fc18d32319232f5b34d0916085f9bc6cdcefb95c0d68e2dcfb87540dc8e6e12959ee85af3c7874da67f0edc78370743abec2a2aa9652a4337ea7a772741e73c73d2d9f3403fc72d173ccace4e5eda07bafbc98fcb3634388d3720adbcc4f20d5db062b14951945932afe0bb20cbe57311c3f5cb26c401d534728899f6cacb831631f2c1155f610a2a2250e4e60c5ac7c1fd1de87faf4c5170952a7ceea8ae5a728f3329da7571e50fc23c8745e7d0704bac181d426b47be51d09e9e6268a3a75343bbc01b520b545429572f1dded2fd05c5e4dec92aa2efd7f4ffaf40b3df7f083cf11d479d516f03274cb7862e7795289266438b24f4627f0145a10c2505a39b85e236a63a996c7dcfd1b31f109f1a98db30fa7214eba1c8877ce0230075eddee2142c71482a0e3f77571950d812c5f06921fde865703c3b5835e9851a9b9eb967cd31c53ed3f8f957544a2f6f382018c0f5be856dfbb2a2a1e45553ac12fc3ce85c38dbd1316d432a41b6a41d86635e4a033d02fa2b3ebd47ffb6e1561d8ec806ab66b07941b07aa9a65e689bdf072373f04c4e3d70ba156a052d97fc7b5d76af7b00e7661e4585d3a5ba2ffead1e76d70181b740429f2fd2c164522af005a7655dcd3fce58425b0e0037c4c36de8d52ede6f7eab1c29b155575b555b1e765d79cda4325d9466bc4f7932bc2b137b3da875df8adefdf26c5687a50f9e92b13decd479f4b0991a91030b2b763cac219590ee1de45b0eddb3288d5fcf0ff8e09e0dfc5b520f57de79c0a514bb90b4f661c472f9dab389edb5be06c93b4c219cf09e1b462f96f384e7e0293c9954d4f69e7da55c9132cfccd51c05b0b561c9c8e2a5f22650b763ae00abb7edb5ef73dfcb377d1c0e6afe0125b86b1e45132f1c0247a5f6058948d1becc2477ede89ac87af33154ccdbbc799bf521cd9f50d853dafd66308c156a88f7e038548c720335593f3f47371c9eab7ca581617f220c0bcfd8884bd34c99744e108de22f389d02c99d31849141a38db4e3a8f6018f46831ac8eff4cfe0b6474b023a3d67b023df747a624d537eae05fbe7cc68da6a86850a71d24f55fbc40db4a9decc8cdf0ede5e560917e43c6feaea2fa26d9319e4ff6450510a70f0b062060a58ab3ea10cfda683ecc685f4ff2fd37870e6c79a10bc3352e2b9962b228d1401758cf8b3e2492f56e1a66b23f972852c8136619ef8707b81b34b962b9f4c9ba6d024c0557c61a412a0653b3c592b367c8bdbed2adc51c2df64ee6539783e797dd1bcf757d81f8523458e5c75c68329f3b5a992888654304824f7939fd3b6d0ef40513dd870f013d0bbeb9e87c80d29db358c019e6f401db5771a196989e1d6be5c257e05856a56d2168a45fe8b57bc4dc76f394dc766087504e1fdd2f11e375a421092e0976af60b143d313f9accb2512fd139e20d998ff07b4ab371c333d8a0a1fc678889fc5c0cf38a8f979bf4df750d31f67ce5b643bc2449e53d7ecaf8ea6666310002ba2d43c0cfb68c1961b75d66ae065c18697773271e231a5bbc7e4dab2c12da164e65a8316c97941d8fe39ba6852b8a65203503d0d657043d8b769058f8730ec08d016a9e98a7a508527528069f34b8351b6fa16ef275921bd2ecdb90476ba1213d1634d93ea2ef262efc7f460d0918f4c8bda16a742550faae64522f4efe667f24d2d6a4b629626ba9d2d5a0f6b206a1529506f60ca30236c9b9e0c8ea7b747e3a789bd28684186baf9942dda139ad2288b1fbc91c148ecf4923e0c5b457d316425a39cad0bdb94c8d145927e1616a3371675d3ca1539cc891aceba5bc443d1867d9ce38b266511d40d95a01201e739458d5e557c7d6290be9046d583d6a947eae547440b58a89cb32aea1e168f677841c821d378fb06cd46563f19bcd5e293c8de4dac17a9dd12056a34ab58697986020bf37f886685ba2d238c26733653968c3773f1ab512c7ee28ba18feeb12570d25dd52740e8857070f5dced3444140b6dc9e5b67f4e774c2ee4b5dc258e27c5e558ff8ed706ac57c3a30720c3ec0eb62231f9f48d5971ec37fdbe58891edf6d7faa586223be1c8af074fa3fa614b2f674565356c3249fc2e6c4545bcb61557c5411adc8a38bffd56e42d6bfed4f911cda7abf6892592db12f83cd98a573ddd28478a7f305d7090701c7d54aa64b9d15b47412349da281caaf16de277a65bb37e361c51e8511cf033f3ff35808026a4ddea2aec6f9dc56180c737cbdc918a31fb862358563d887ca8038df0b173498de27b27975b69cf4a3886b693c3d4b06cc2cb7e5f2474ec6105f9f745461c0f2095bd2db3c1881e034f824745f35eaf4af0ab7f9b88fff29092e713217e30ec14113b689e222b9ba2b9be6dc37cdaa15aaa2e4fc67a8b0f4230403bf689d432f8cac3fec1658504885460d5d7f837c8250b9826ef759fd9d5aa391033defc9fae83d865441ec9e0ea1b252f55422e19814ad7e7d428e1c564cf1a48d68c27573795dc75f31b2c27e52b5364737807ecedda8b48156baf768c89764b6c2788bdbc02fa1d2e355ac0dc3a43f21d4a5d6b5b24f14d3830ecdd5fe563d235ccf21ad9eef6d1efd76d6a87a0cc36dcd7b92e482c8fe6f309842b95aaa4a8fc803365a07455c0ee2913f7d409bc5cb5d213de7dfe4ad86338af0597dbe5715b4f0712c8d39b99b7128ac609a2de53f9656590a3796ba2847a97b129ed54ef9f825df22ef84420bf501389bec34188f48a75a8703194589f2dd2976f071db00891da03dde88e081041175d2f99d48bf17c206d93198afbf648cee1a75a8c223d0a5d7130e982d741a58767c8fe64510f1ef053add3612bda53a721e7f978f3039a846fd05de9324fc8105687531b770a2e6ea4b68d25d4626385f1a4205bc670b139f34f11fa2b90eb02ce390c645cd4fd157e95b7a8803f6a172370e389e6ed7e958cd3a08a27b96a79e90bcb2ba88eece24ae01a08d25b27966ac16ccd3834b0d1cbfcf0d78670199b5f3d8ee77d3253be118de7ffd5f04b99a467f18610061a8ce43ac4406d213e61cbb08849c7e902aabb90ffefec82082e7bf9fda114d3798c096e8ea358122240f932f12520cc310d8feeb41c9d76fdd88f31c150323a68d3028aec582bb308fc1cd0f6beb173dd4146c6a967ed2d852d7963289019d20e8b410350463dbd7e66d23129a2d2159bb9a761dc681e60419818f9af1186d03f0a0565e83bff4d05ee4adaa6673c70dd3bdf19ffadafaddad75387c78e1101df61676f7a8be63ae8680d4504f632bea87a5fffe738eaa030c5d878721d973ad09dc3016d1ded9e094a013e9512df291c9817d7aa875e4f9b2fdeb926140135b6431adfbc90fbee874f7c9614d040b03c9dbea68738edf11f8f28e9b4da53a5ba117a1487052e0a4b0c76deabe3a45b6385e7092b12789e0e1bc0b1135b7e93db1d84a986d0dfc4ef73b51bc6347eec8da7d535fd749761964dd5a4d69a21a10096ad0444750ac68af4ad99ed1d05044d475001d4c5bc63620e94f8b5681a007bf00a1a61421effb74b371b417b897f379e2fba6ff2cbb8543090c085184255738ee79fa6fc286e74ca56db3a37051045e77b36f940da2d209c5e51f8566fcd4ae019c8a807bef0c43807ed5b53808e224cf480fa75822f09c90f67d226333d1c19ab4882bf798f28978dd6dcc42db62b244a966399f740462a31fbb7881679ae8b6875c1ddd72760f1b631d49d1f30a45bfaa70491f35f7379f39df2db41f2ea30eccfa0b2c9d9f4edc8344d10ae51ba39a732bd074598226e7d596891d122f0f058889352cbe318f7268cdcbcea6a7626fe9fb1592c075a5a3422e8fe682ebd58a3c50d83e4b1fdf68b648b54cc755f11239503196656602f5c9e1ffe231f903181154142e7fac42ebe1d417c511cab368009094ec4272e"})

08:51:02 executing program 3:
syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')

08:51:02 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x48000000fffffffe, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

[ 3319.537273] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:51:15 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)
r1 = fsopen(&(0x7f0000000200)='selinuxfs\x00', 0x1)
sendfile(r1, r0, &(0x7f0000000240)=0x1, 0x100000000)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r2, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r3, 0x8901, &(0x7f0000001840)="fb")
fadvise64(r3, 0x7, 0x3, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r2, &(0x7f0000000440)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000400)={&(0x7f0000001540)=ANY=[@ANYBLOB="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"], 0x11c}, 0x1, 0x0, 0x0, 0x10}, 0x20008000)
syz_io_uring_setup(0x2a6f, &(0x7f0000000000)={0x0, 0x9bcb, 0x1, 0x0, 0x5b, 0x0, r0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000080), &(0x7f00000000c0)=<r4=>0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x5, 0x2004, @fd_index=0x2, 0x5, &(0x7f0000000100)=""/178, 0xb2, 0x3}, 0x6)

08:51:15 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8901, &(0x7f0000001840)="fb")
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000000)={0x0, '\x00', {0xfffffffd}, 0x9})
close(r0)
syz_80211_inject_frame(&(0x7f0000000040)=@device_b, &(0x7f0000000080)=ANY=[@ANYBLOB="d9fab6b7e32daf95bf8b9f9018478c5464ab137686923fc181633be3502244ef741f50749bd5b6673b3b9ab49adad8eee806eb", @ANYRESHEX=r0], 0x34)
syz_80211_inject_frame(&(0x7f0000000100)=@broadcast, &(0x7f0000000140)=@mgmt_frame=@action_no_ack={@wo_ht={{0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1}, {0x3}, @device_b, @broadcast, @from_mac=@broadcast, {0x3, 0xf4e}}, @delba={0x3, 0x2, {{0x0, 0x1, 0x6}, 0x1f, {0xbd, 0x6, @broadcast}}}}, 0x26)

08:51:15 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9) (fail_nth: 5)

08:51:15 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00') (fail_nth: 1)

08:51:15 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0, {0x7}}, './file0\x00'})
mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x13, r1, 0xa514e000)

08:51:15 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 7)

08:51:15 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4900000000000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:51:15 executing program 3:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r1, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000080)={<r2=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r2, 0x3, r0, 0xa)
r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r4, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
r5 = socket$inet_icmp(0x2, 0x2, 0x1)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_WRITE={0x17, 0x4, 0x2004, @fd=r5, 0x48000000000000, &(0x7f00000000c0)="3cc0f66b2533db1746814ecd05f5bed564d94a10c05d9a5b722111d76b8fdebfb274db2f928b4482a0bb8dc98bf091b22a129ab221ba993d1ce71fb82a9414c8af694de4e4864f22d98d78016eeb746486fff664dd03ff10002e94cbb4b74dbe68eb7106fed705da6ce6e943c1961159895d55cc5f5faf7d0bb0c82a6fdac555769463ed4dd9e469be46af7be4e74369446dc4feb357a1d56b3a65a5d694479309167c7201ee495da777e43b", 0xac, 0x0, 0x1}, 0xf3e)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000080)={<r6=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r6, 0x3, r3, 0xa)
r7 = syz_open_procfs(r6, &(0x7f0000000040)='pagemap\x00')
r8 = fork()
perf_event_open(&(0x7f00000002c0)={0x5, 0x80, 0x81, 0x0, 0xee, 0x9, 0x0, 0x8, 0x0, 0x6, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x3, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x80000000, 0x0, @perf_config_ext={0x1, 0x3ff}, 0x50400, 0x1, 0x3, 0x7, 0x12b0, 0x74, 0x4, 0x0, 0x8, 0x0, 0x6}, r8, 0x1, 0xffffffffffffffff, 0x9)
pread64(r7, 0x0, 0x7ffffffff000, 0x806c54747f0000)
ioctl$BLKGETSIZE64(0xffffffffffffffff, 0x80081272, &(0x7f0000000000))

[ 3332.564826] FAULT_INJECTION: forcing a failure.
[ 3332.564826] name failslab, interval 1, probability 0, space 0, times 0
[ 3332.565870] CPU: 1 PID: 21262 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3332.566453] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3332.566914] FAULT_INJECTION: forcing a failure.
[ 3332.566914] name failslab, interval 1, probability 0, space 0, times 0
[ 3332.567184] Call Trace:
[ 3332.567215]  dump_stack+0x107/0x167
[ 3332.568694]  should_fail.cold+0x5/0xa
[ 3332.569022]  ? create_object.isra.0+0x3a/0xa20
[ 3332.569411]  should_failslab+0x5/0x20
[ 3332.569736]  kmem_cache_alloc+0x5b/0x310
[ 3332.570083]  create_object.isra.0+0x3a/0xa20
[ 3332.570455]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3332.570924]  kmem_cache_alloc+0x159/0x310
[ 3332.571284]  security_inode_alloc+0x34/0x160
[ 3332.571656]  inode_init_always+0xa4e/0xd10
[ 3332.572013]  ? shmem_destroy_inode+0x70/0x70
[ 3332.572386]  alloc_inode+0x84/0x240
[ 3332.572694]  new_inode+0x23/0x250
[ 3332.572991]  shmem_get_inode+0x15e/0xbc0
[ 3332.573340]  __shmem_file_setup+0xb8/0x320
[ 3332.573699]  ? _copy_from_user+0xfb/0x1b0
[ 3332.574053]  __do_sys_memfd_create+0x275/0x450
[ 3332.574438]  ? memfd_file_seals_ptr+0x170/0x170
[ 3332.574870]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3332.575316]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3332.575751]  do_syscall_64+0x33/0x40
[ 3332.576077]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3332.576519] RIP: 0033:0x7f71ab262b19
[ 3332.576843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3332.578399] RSP: 002b:00007f71a87d7f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[ 3332.579055] RAX: ffffffffffffffda RBX: 0000000020000c00 RCX: 00007f71ab262b19
[ 3332.579652] RDX: 00007f71a87d8000 RSI: 0000000000000000 RDI: 00007f71ab2bc0fb
[ 3332.580245] RBP: 0000000000000000 R08: 00007f71a87d7ff8 R09: ffffffffffffffff
[ 3332.580838] R10: 00007f71a87d7ffc R11: 0000000000000246 R12: 0000000020000940
[ 3332.581431] R13: 0000000020000980 R14: 0000000000000000 R15: 0000000020000c80
[ 3332.582049] CPU: 0 PID: 21260 Comm: syz-executor.2 Not tainted 5.10.226 #1
[ 3332.582652] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3332.583363] Call Trace:
[ 3332.583601]  dump_stack+0x107/0x167
[ 3332.583921]  should_fail.cold+0x5/0xa
[ 3332.584254]  ? getname_flags.part.0+0x50/0x4f0
[ 3332.584650]  should_failslab+0x5/0x20
[ 3332.584979]  kmem_cache_alloc+0x5b/0x310
[ 3332.585337]  getname_flags.part.0+0x50/0x4f0
[ 3332.585727]  getname+0x8e/0xd0
[ 3332.586016]  do_sys_openat2+0xf9/0x4d0
[ 3332.586361]  ? build_open_flags+0x6f0/0x6f0
[ 3332.586736]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3332.587167]  ? wait_for_completion_io+0x270/0x270
[ 3332.587591]  __x64_sys_openat+0x13f/0x1f0
[ 3332.587956]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3332.588325]  ? ksys_write+0x1a9/0x260
[ 3332.588666]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3332.589112]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3332.589558]  do_syscall_64+0x33/0x40
[ 3332.589879]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3332.590313] RIP: 0033:0x7f98c45cca04
[ 3332.590634] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3332.592179] RSP: 002b:00007f98c1b8f060 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3332.592831] RAX: ffffffffffffffda RBX: 00007f98c472cf60 RCX: 00007f98c45cca04
[ 3332.593437] RDX: 0000000000000002 RSI: 00007f98c1b8f0f0 RDI: 00000000ffffff9c
[ 3332.594038] RBP: 00007f98c1b8f0f0 R08: 0000000000000000 R09: 00007f98c1b8ef70
[ 3332.594634] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 3332.595242] R13: 00007fff6ecaf52f R14: 00007f98c1b8f300 R15: 0000000000022000
08:51:16 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00') (fail_nth: 2)

08:51:16 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4a00000000000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

[ 3332.656131] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:51:16 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x0, 0xfffffffffffffffe)

[ 3332.660477] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3332.672103] FAULT_INJECTION: forcing a failure.
[ 3332.672103] name failslab, interval 1, probability 0, space 0, times 0
[ 3332.673316] CPU: 1 PID: 21263 Comm: syz-executor.0 Not tainted 5.10.226 #1
[ 3332.673937] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3332.674661] Call Trace:
[ 3332.674907]  dump_stack+0x107/0x167
[ 3332.675221]  should_fail.cold+0x5/0xa
[ 3332.675552]  ? create_task_io_context+0x2c/0x430
[ 3332.675960]  should_failslab+0x5/0x20
[ 3332.676289]  kmem_cache_alloc_node+0x55/0x330
[ 3332.676677]  create_task_io_context+0x2c/0x430
[ 3332.677068]  submit_bio_checks+0x1382/0x1730
[ 3332.677450]  ? trace_event_raw_event_block_rq_requeue+0x560/0x560
[ 3332.677977]  ? __bio_add_page+0x328/0x430
[ 3332.678336]  submit_bio_noacct+0x82/0x1010
[ 3332.678698]  ? blk_queue_enter+0xc30/0xc30
[ 3332.679076]  ? bio_iov_iter_get_pages+0xa40/0x1200
[ 3332.679499]  submit_bio+0xf3/0x4e0
[ 3332.679804]  ? submit_bio_noacct+0x1010/0x1010
[ 3332.680196]  ? trace_hardirqs_on+0x5b/0x180
[ 3332.680568]  ? memset+0x20/0x50
[ 3332.680855]  ? __blkdev_direct_IO_simple+0x537/0x930
[ 3332.681286]  __blkdev_direct_IO_simple+0x51c/0x930
[ 3332.681710]  ? bd_link_disk_holder+0x710/0x710
[ 3332.682103]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3332.682548]  ? __lock_acquire+0xbb1/0x5b00
[ 3332.682941]  ? invalidate_inode_pages2_range+0xa19/0xc50
[ 3332.683401]  ? set_init_blocksize.isra.0+0x1a0/0x1a0
[ 3332.683829]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 3332.684362]  ? current_time+0x72/0x2c0
[ 3332.684692]  ? iov_iter_npages+0x1fd/0xa70
[ 3332.685051]  blkdev_direct_IO+0xb35/0x12a0
[ 3332.685409]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3332.685850]  ? ktime_get_coarse_real_ts64+0x15a/0x190
[ 3332.686281]  ? trace_hardirqs_on+0x5b/0x180
[ 3332.686645]  ? ktime_get_coarse_real_ts64+0x15a/0x190
[ 3332.687116]  ? ktime_get_coarse_real_ts64+0xfd/0x190
[ 3332.687547]  ? bd_prepare_to_claim+0x290/0x290
[ 3332.687933]  ? __mark_inode_dirty+0x12e/0xd40
[ 3332.688315]  ? generic_update_time+0x21c/0x370
[ 3332.688701]  ? filemap_check_errors+0xa5/0x150
[ 3332.689091]  generic_file_direct_write+0x20e/0x560
[ 3332.689510]  __generic_file_write_iter+0x235/0x5d0
08:51:16 executing program 6:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='children\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)

[ 3332.689928]  blkdev_write_iter+0x298/0x550
[ 3332.690631]  ? bd_unlink_disk_holder+0x3f0/0x3f0
[ 3332.691672]  ? direct_splice_actor+0x10f/0x170
[ 3332.692652]  ? splice_direct_to_actor+0x387/0x980
[ 3332.693694]  ? do_splice_direct+0x1c4/0x290
[ 3332.694627]  ? do_sendfile+0x553/0x11e0
[ 3332.695569]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 3332.696574]  ? do_syscall_64+0x33/0x40
[ 3332.697414]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3332.698569]  do_iter_readv_writev+0x476/0x750
[ 3332.699562]  ? new_sync_write+0x660/0x660
[ 3332.700459]  ? avc_policy_seqno+0x9/0x70
[ 3332.701337]  ? selinux_file_permission+0x92/0x520
[ 3332.702382]  ? security_file_permission+0xb1/0xe0
[ 3332.703445]  do_iter_write+0x191/0x700
[ 3332.704286]  ? trace_hardirqs_on+0x5b/0x180
[ 3332.705227]  vfs_iter_write+0x70/0xa0
[ 3332.706050]  iter_file_splice_write+0x762/0xc30
[ 3332.707082]  ? generic_splice_sendpage+0x140/0x140
[ 3332.708158]  ? security_file_permission+0xb1/0xe0
[ 3332.709202]  ? generic_splice_sendpage+0x140/0x140
[ 3332.710262]  direct_splice_actor+0x10f/0x170
[ 3332.711253]  splice_direct_to_actor+0x387/0x980
[ 3332.712260]  ? pipe_to_sendpage+0x380/0x380
[ 3332.713195]  ? do_splice_to+0x160/0x160
[ 3332.714054]  ? security_file_permission+0xb1/0xe0
[ 3332.715126]  do_splice_direct+0x1c4/0x290
[ 3332.716020]  ? splice_direct_to_actor+0x980/0x980
[ 3332.717058]  ? avc_policy_seqno+0x9/0x70
[ 3332.717938]  ? security_file_permission+0xb1/0xe0
[ 3332.719004]  do_sendfile+0x553/0x11e0
[ 3332.719833]  ? do_pwritev+0x270/0x270
[ 3332.720656]  ? wait_for_completion_io+0x270/0x270
[ 3332.721703]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3332.722710]  ? vfs_write+0x354/0xb10
[ 3332.723575]  __x64_sys_sendfile64+0x1d1/0x210
[ 3332.724610]  ? __ia32_sys_sendfile+0x220/0x220
[ 3332.725662]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3332.726864]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3332.728048]  do_syscall_64+0x33/0x40
[ 3332.728894]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3332.730059] RIP: 0033:0x7f5117aedb19
[ 3332.730922] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3332.735177] RSP: 002b:00007f5115063188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3332.736931] RAX: ffffffffffffffda RBX: 00007f5117c00f60 RCX: 00007f5117aedb19
[ 3332.738580] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000000a
[ 3332.740230] RBP: 00007f51150631d0 R08: 0000000000000000 R09: 0000000000000000
[ 3332.741875] R10: 000000007ffffff9 R11: 0000000000000246 R12: 0000000000000001
[ 3332.743533] R13: 00007ffc6010669f R14: 00007f5115063300 R15: 0000000000022000
[ 3332.769333] FAULT_INJECTION: forcing a failure.
[ 3332.769333] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3332.772092] CPU: 1 PID: 21284 Comm: syz-executor.2 Not tainted 5.10.226 #1
[ 3332.773682] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3332.775584] Call Trace:
[ 3332.776192]  dump_stack+0x107/0x167
[ 3332.777030]  should_fail.cold+0x5/0xa
[ 3332.777908]  __alloc_pages_nodemask+0x182/0x600
[ 3332.778989]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 3332.780369]  ? kmem_cache_alloc+0x301/0x310
[ 3332.781363]  alloc_pages_current+0x187/0x280
[ 3332.782380]  allocate_slab+0x26f/0x380
[ 3332.783285]  ___slab_alloc+0x470/0x700
[ 3332.784177]  ? getname_flags.part.0+0x50/0x4f0
[ 3332.785225]  ? __lockdep_reset_lock+0x180/0x180
[ 3332.786293]  ? getname_flags.part.0+0x50/0x4f0
[ 3332.787345]  ? kmem_cache_alloc+0x301/0x310
[ 3332.788335]  kmem_cache_alloc+0x301/0x310
[ 3332.789289]  getname_flags.part.0+0x50/0x4f0
[ 3332.790301]  getname+0x8e/0xd0
[ 3332.791046]  do_sys_openat2+0xf9/0x4d0
[ 3332.791940]  ? build_open_flags+0x6f0/0x6f0
[ 3332.792930]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3332.794038]  ? wait_for_completion_io+0x270/0x270
[ 3332.795164]  __x64_sys_openat+0x13f/0x1f0
[ 3332.796115]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3332.797094]  ? ksys_write+0x1a9/0x260
[ 3332.797984]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3332.799196]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3332.800376]  do_syscall_64+0x33/0x40
[ 3332.801222]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3332.802406] RIP: 0033:0x7f98c45cca04
[ 3332.803272] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3332.807530] RSP: 002b:00007f98c1b8f060 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3332.809275] RAX: ffffffffffffffda RBX: 00007f98c472cf60 RCX: 00007f98c45cca04
[ 3332.810930] RDX: 0000000000000002 RSI: 00007f98c1b8f0f0 RDI: 00000000ffffff9c
[ 3332.812559] RBP: 00007f98c1b8f0f0 R08: 0000000000000000 R09: 00007f98c1b8ef70
[ 3332.814195] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 3332.815871] R13: 00007fff6ecaf52f R14: 00007f98c1b8f300 R15: 0000000000022000
08:51:16 executing program 7:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r1, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000080)={<r2=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r2, 0x3, r0, 0xa)
r3 = syz_open_procfs(r2, &(0x7f00000005c0)='pagemap\x00')
pread64(r3, 0x0, 0x7ffffffff000, 0x200000000000)

08:51:16 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4b00000000000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:51:16 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f00000000c0), 0x0)
pread64(r0, &(0x7f0000000000)=""/186, 0xba, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x8901, &(0x7f0000001840)="fb")
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r1, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x8901, &(0x7f0000001840)="fb")
r3 = accept4$packet(0xffffffffffffffff, &(0x7f0000001600)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000001640)=0x14, 0x800)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r4, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r5, 0x8901, &(0x7f0000001840)="fb")
r6 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r6, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r7, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
io_submit(0x0, 0x9, &(0x7f0000002940)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x1, 0x7d6, 0xffffffffffffffff, &(0x7f0000000180)="1df2467ec8a0776dfced7fba2ee4081d5fe9df428f59a8dc20e661474f48b186498e2e4ea3d0d23850c48345947bb4717a978bf5fffa86", 0x37, 0x7, 0x0, 0x2, r0}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x6, 0x0, 0xffffffffffffffff, &(0x7f0000000200)="744a3ff8f9cc2c48ce04e1104350110ff7141ef105526416cb4d59c31306a1d588d1a00f4d12e07d159f029ed22c1e0ef2a61457b7f20278703d50e969661bb3f7e949824d4892b356087fa9fd600b20b87fc48701411e2bb54246a2197d937b05cd954e72627a6c91994e390f4e04b9fc761b27f39e837a7dfb50218be0d114a38708f22fad8dec5957d85e0dee5bceab8dcd088bfe928a975fc6096c1c4a2d8a7e552df503d8de88d08b9f8248461bc521930e7a9d93da52447507f57b26a855cc1823e3aa700632aad6", 0xcb, 0x5, 0x0, 0x1}, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x8, 0x7fff, 0xffffffffffffffff, &(0x7f0000000600)="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", 0x1000, 0x8, 0x0, 0x2}, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x6, 0x0, 0xffffffffffffffff, &(0x7f00000003c0)="1629be5e85f5eef2b483910d3af6d12f31eb2665ce8c19350600abeb80fe0cc5b149a585e772c12f0e1618f5d575d8e1e61a8829461d28571790da8e52a1dd44d1a3374af2b4b0a5ecd03ce13a8171a56097b8713856dd448b4cc2ef6c2122cb783a04a6b96de9d30a0bb9dff67780bdc95c5be3a30915be439c39bdf7f4dad56943fca32abf754ba8ea1be4b3e8a72613a3384df4e5c5ebe6c4638c258d90a077acddf2248024d969181b6b9d8c41747c6b", 0xb2, 0x40, 0x0, 0x3, r1}, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x6, 0x800, r2, &(0x7f00000029c0)="88d849eb7b93cb6eddca593dca2e56457d7a0a4beaf45b80fdc6b7318cc9a9421620a207ce20d5b58dc78418ce8a236e34234e0f40485dc9836915fb211f243a4870af02fb3d2966814e5113693ecc2efd14fc624b6e8d725888a465842abf524c7b23abdf43ff888ba199db6594641852881d63b59386f7a904d4bb399f775e92aaf14e7882612ebdded869be9486c24e25f4e378", 0x95, 0x89, 0x0, 0x1, r0}, &(0x7f00000016c0)={0x0, 0x0, 0x0, 0x5, 0x1, r3, &(0x7f0000001680)="f73ca2b248586c0062f9ae01d0418e2ae32db1c98bab2039561483f63e9ac4bda27c97d0674961b097c316b2c0501997542d272637ee", 0x36, 0x60000000, 0x0, 0x1, r4}, &(0x7f0000001780)={0x0, 0x0, 0x0, 0x2, 0x40, r5, &(0x7f0000001700)="d5bb6405b87b809485a607c7f015eb1f1c2a3fa5e16c069b1def509681ce990c5b75a4bcc07caf09780656696d3e44afad5f29b0a8214ace918e88b8b3f964f48c19687d2b69fbef226ad694ed6361adacc58a7d38b22d600bd067bfba164c87c6", 0x61, 0x3, 0x0, 0x2, r6}, &(0x7f00000027c0)={0x0, 0x0, 0x0, 0x7, 0x11e6, r0, &(0x7f00000017c0)="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", 0x1000, 0x20, 0x0, 0x5, r7}, &(0x7f0000002900)={0x0, 0x0, 0x0, 0x5, 0xcd, r0, &(0x7f0000002800)="937505a3bd71ff0d600ba641a56b64b534a9f2936370c5c87985138908e350e30a57dd5ee38e8e7c6261104ac6b5c4fed693dfe3b99d918fdc69a014a14b9b471416c2a92b72c06bd460926ae2413d5d12c181fb4373d86ae6caeb78a0c972dc372400b5af5e746a68ba4692e3dc05648420b1641df4b7a4fa91419d6dcc129639cd0d9e3c2a2250296210707d4be293d68aeb4704c302c42b782c3dd249b0de2259ba192d4eb2bebda9824b2b73ac15e5dd0c277957c6722aec01e63a697181d72ea5114a08bb25b119cc0d02d558b2b8a3e8228022eae8a9250589a7db50c400e50f1019a883f9758312b9", 0xec, 0x4, 0x0, 0x2, r0}])
mq_open(&(0x7f00000000c0)='#{\\$,\x00', 0x80, 0x4, &(0x7f0000000100)={0x3f, 0x7, 0x0, 0x9})
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)

08:51:16 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 8)

08:51:16 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00') (fail_nth: 3)

[ 3333.005942] FAULT_INJECTION: forcing a failure.
[ 3333.005942] name failslab, interval 1, probability 0, space 0, times 0
[ 3333.008652] CPU: 0 PID: 21304 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3333.010251] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3333.012176] Call Trace:
[ 3333.012776]  dump_stack+0x107/0x167
[ 3333.013629]  should_fail.cold+0x5/0xa
[ 3333.014502]  ? __d_alloc+0x2a/0x990
[ 3333.015343]  should_failslab+0x5/0x20
[ 3333.016232]  kmem_cache_alloc+0x5b/0x310
[ 3333.017153]  ? trace_hardirqs_on+0x5b/0x180
[ 3333.018140]  __d_alloc+0x2a/0x990
[ 3333.018955]  d_alloc_pseudo+0x19/0x70
[ 3333.019822]  alloc_file_pseudo+0xce/0x250
[ 3333.020779]  ? alloc_file+0x5a0/0x5a0
[ 3333.021655]  ? shmem_get_inode+0x55c/0xbc0
[ 3333.022632]  __shmem_file_setup+0x144/0x320
[ 3333.023639]  ? _copy_from_user+0xfb/0x1b0
[ 3333.024603]  __do_sys_memfd_create+0x275/0x450
[ 3333.025642]  ? memfd_file_seals_ptr+0x170/0x170
[ 3333.026713]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3333.027921]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3333.029104]  do_syscall_64+0x33/0x40
[ 3333.029968]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3333.031148] RIP: 0033:0x7f71ab262b19
[ 3333.032003] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3333.036234] RSP: 002b:00007f71a87d7f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[ 3333.037973] RAX: ffffffffffffffda RBX: 0000000020000c00 RCX: 00007f71ab262b19
[ 3333.039612] RDX: 00007f71a87d8000 RSI: 0000000000000000 RDI: 00007f71ab2bc0fb
[ 3333.041243] RBP: 0000000000000000 R08: 00007f71a87d7ff8 R09: ffffffffffffffff
[ 3333.042888] R10: 00007f71a87d7ffc R11: 0000000000000246 R12: 0000000020000940
[ 3333.044526] R13: 0000000020000980 R14: 0000000000000000 R15: 0000000020000c80
[ 3333.048789] FAULT_INJECTION: forcing a failure.
[ 3333.048789] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 3333.051523] CPU: 0 PID: 21305 Comm: syz-executor.2 Not tainted 5.10.226 #1
[ 3333.053118] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3333.055050] Call Trace:
[ 3333.055684]  dump_stack+0x107/0x167
[ 3333.056535]  should_fail.cold+0x5/0xa
[ 3333.057436]  strncpy_from_user+0x34/0x470
[ 3333.058403]  getname_flags.part.0+0x95/0x4f0
[ 3333.059429]  getname+0x8e/0xd0
[ 3333.060172]  do_sys_openat2+0xf9/0x4d0
[ 3333.061081]  ? build_open_flags+0x6f0/0x6f0
[ 3333.062082]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3333.063203]  ? wait_for_completion_io+0x270/0x270
[ 3333.064323]  __x64_sys_openat+0x13f/0x1f0
[ 3333.065273]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3333.066241]  ? ksys_write+0x1a9/0x260
[ 3333.067138]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3333.068342]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3333.069520]  do_syscall_64+0x33/0x40
[ 3333.070371]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3333.071558] RIP: 0033:0x7f98c45cca04
[ 3333.072408] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3333.076601] RSP: 002b:00007f98c1b8f060 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3333.078311] RAX: ffffffffffffffda RBX: 00007f98c472cf60 RCX: 00007f98c45cca04
[ 3333.079921] RDX: 0000000000000002 RSI: 00007f98c1b8f0f0 RDI: 00000000ffffff9c
[ 3333.081517] RBP: 00007f98c1b8f0f0 R08: 0000000000000000 R09: 00007f98c1b8ef70
[ 3333.083136] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 3333.084739] R13: 00007fff6ecaf52f R14: 00007f98c1b8f300 R15: 0000000000022000
[ 3333.128399] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3345.982201] FAULT_INJECTION: forcing a failure.
[ 3345.982201] name failslab, interval 1, probability 0, space 0, times 0
[ 3345.983212] CPU: 0 PID: 21312 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3345.983796] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3345.984490] Call Trace:
[ 3345.984722]  dump_stack+0x107/0x167
[ 3345.985034]  should_fail.cold+0x5/0xa
[ 3345.985361]  ? create_object.isra.0+0x3a/0xa20
[ 3345.985753]  should_failslab+0x5/0x20
[ 3345.986084]  kmem_cache_alloc+0x5b/0x310
[ 3345.986433]  create_object.isra.0+0x3a/0xa20
[ 3345.986807]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3345.987256]  kmem_cache_alloc+0x159/0x310
[ 3345.987606]  ? trace_hardirqs_on+0x5b/0x180
[ 3345.987976]  __d_alloc+0x2a/0x990
[ 3345.988277]  d_alloc_pseudo+0x19/0x70
[ 3345.988600]  alloc_file_pseudo+0xce/0x250
[ 3345.988950]  ? alloc_file+0x5a0/0x5a0
[ 3345.989277]  ? shmem_get_inode+0x55c/0xbc0
[ 3345.989640]  __shmem_file_setup+0x144/0x320
[ 3345.990007]  ? _copy_from_user+0xfb/0x1b0
[ 3345.990360]  __do_sys_memfd_create+0x275/0x450
[ 3345.990749]  ? memfd_file_seals_ptr+0x170/0x170
[ 3345.991171]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3345.991616]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3345.992055]  do_syscall_64+0x33/0x40
[ 3345.992373]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3345.992810] RIP: 0033:0x7f71ab262b19
[ 3345.993128] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3345.994672] RSP: 002b:00007f71a87d7f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[ 3346.011343] RAX: ffffffffffffffda RBX: 0000000020000c00 RCX: 00007f71ab262b19
[ 3346.011937] RDX: 00007f71a87d8000 RSI: 0000000000000000 RDI: 00007f71ab2bc0fb
[ 3346.012534] RBP: 0000000000000000 R08: 00007f71a87d7ff8 R09: ffffffffffffffff
[ 3346.013129] R10: 00007f71a87d7ffc R11: 0000000000000246 R12: 0000000020000940
[ 3346.013719] R13: 0000000020000980 R14: 0000000000000000 R15: 0000000020000c80
[ 3346.072023] FAULT_INJECTION: forcing a failure.
[ 3346.072023] name failslab, interval 1, probability 0, space 0, times 0
[ 3346.073104] CPU: 1 PID: 21330 Comm: syz-executor.2 Not tainted 5.10.226 #1
[ 3346.073733] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3346.074473] Call Trace:
[ 3346.074727]  dump_stack+0x107/0x167
[ 3346.079095]  should_fail.cold+0x5/0xa
[ 3346.079451]  ? __alloc_file+0x21/0x320
[ 3346.079815]  should_failslab+0x5/0x20
[ 3346.080169]  kmem_cache_alloc+0x5b/0x310
[ 3346.080557]  __alloc_file+0x21/0x320
[ 3346.080907]  alloc_empty_file+0x6d/0x170
[ 3346.081287]  path_openat+0xe6/0x2770
[ 3346.081635]  ? __lock_acquire+0x1657/0x5b00
[ 3346.082051]  ? path_lookupat+0x860/0x860
[ 3346.082430]  ? perf_trace_lock+0xac/0x490
[ 3346.082817]  ? lock_acquire+0x197/0x470
[ 3346.083208]  ? find_held_lock+0x2c/0x110
[ 3346.083587]  ? __lockdep_reset_lock+0x180/0x180
[ 3346.084027]  do_filp_open+0x190/0x3e0
[ 3346.084380]  ? may_open_dev+0xf0/0xf0
[ 3346.084744]  ? alloc_fd+0x2e7/0x670
[ 3346.085084]  ? lock_downgrade+0x6d0/0x6d0
[ 3346.085474]  ? do_raw_spin_lock+0x121/0x260
[ 3346.085876]  ? rwlock_bug.part.0+0x90/0x90
[ 3346.086277]  ? _raw_spin_unlock+0x1a/0x30
[ 3346.086662]  ? alloc_fd+0x2e7/0x670
[ 3346.087034]  do_sys_openat2+0x171/0x4d0
[ 3346.087410]  ? build_open_flags+0x6f0/0x6f0
[ 3346.087776]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3346.088206]  ? wait_for_completion_io+0x270/0x270
[ 3346.088661]  __x64_sys_openat+0x13f/0x1f0
[ 3346.089047]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3346.089445]  ? ksys_write+0x1a9/0x260
[ 3346.089781]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3346.090226]  ? syscall_enter_from_user_mode+0x1d/0x50
08:51:29 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)
r1 = syz_mount_image$msdos(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x8, 0x0, &(0x7f0000000080), 0x2002482, &(0x7f00000000c0)={[{@fat=@fmask={'fmask', 0x3d, 0x200}}, {@dots}, {@nodots}, {@nodots}, {@nodots}, {@nodots}, {@nodots}], [{@smackfsfloor={'smackfsfloor', 0x3d, 'pagemap\x00'}}, {@subj_role={'subj_role', 0x3d, ',+'}}, {@rootcontext={'rootcontext', 0x3d, 'root'}}, {@euid_gt={'euid>', 0xee01}}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@context={'context', 0x3d, 'system_u'}}, {@audit}]})
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x8901, &(0x7f0000001840)="fb")
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r1, 0x5000943f, &(0x7f0000000600)={{r2}, 0x0, 0x4, @inherit={0x78, &(0x7f0000000180)={0x1, 0x6, 0x400, 0x9, {0x8, 0x1, 0x1, 0x7fff, 0x3}, [0x7, 0x8, 0x200, 0x9, 0x7fff, 0x4]}}, @subvolid=0xfff})

08:51:29 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/fib_triestat\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
pidfd_getfd(r0, r1, 0x0)

08:51:29 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4c00000000000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:51:29 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9) (fail_nth: 6)

08:51:29 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
close(r0)
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)

08:51:29 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 9)

08:51:29 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00') (fail_nth: 4)

08:51:29 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r0, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
setsockopt$inet6_IPV6_PKTINFO(r0, 0x29, 0x32, &(0x7f0000000100)={@private0}, 0x14)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000000)={0x8, 0x9, 0x1, 'queue1\x00', 0xfffffffa})
r1 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r1, 0x0, 0x7ffffffff000, 0x806c54747f0000)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x8901, &(0x7f0000001840)="fb")
r3 = eventfd2(0x10000, 0x801)
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001a00), 0x41, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r5, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
openat(0xffffffffffffff9c, &(0x7f0000003cc0)='./file0\x00', 0x181000, 0x0)
ioctl$sock_bt_hci(r6, 0x8901, &(0x7f0000001840)="fb")
r7 = syz_open_dev$vcsa(&(0x7f0000003c00), 0x7fff, 0x151140)
io_submit(0x0, 0x8, &(0x7f0000003c80)=[&(0x7f0000001740)={0x0, 0x0, 0x0, 0x3, 0x8, r0, &(0x7f0000001640)="ffd3957132ed85ec9403d86e7754c511b6d23d97bc56120ee9e50667b0ff5f411c5148b1e3315ed6fb6196a086e36d5f0fc1997afa923aff537690929c7a5251fae2f992edc2e0bce0bdb256be41847155bb7948c0ba92b59c3452e16220b2fb0c09b8feef6b4f7c42e9154a38c4f6afcd9aab319575575d4d40be6e24442ead221a7ffd0cd0fdb430ee10c9aa73aaa0b8fa04ce8546505946594acfcf6ec60af8b6b34b48de0b79c7b3f25d405a2af277e48d1992c016b867bd3c6d5f2bf5c854dd60d20cab826c94c0e20f02028cd84098b9fbf84896502a2a3da741d2209316ff1c241270be671f1a2c70664c5c6b8c0267", 0xf3, 0x3, 0x0, 0x2, r0}, &(0x7f0000001840)={0x0, 0x0, 0x0, 0x8, 0x8001, r1, &(0x7f0000001780)="bfb1d6d08861d8e2245c9ad36c0a4c069c59410842a78b92d8cbcb1183ec218faa5445375ee041cf840c239a143de62a9ce0a5c8395f410af9ea1042be398ddff1f4c0cf12c0e51542e7fff211555adc6856cb492d9a62b37fc2c3673f89ace3a5a554875ab0a332561673a9a5c76718ca153a456f3a32cbc9decbc64f8a4c1623cf62843db39dbe522661a4d5876e8501953c792fc9e1aada1a312fd6f3f2eed4a9ad1d0190ba2ab9878a1ac9ca5e1693", 0xb1, 0x39, 0x0, 0x3, r1}, &(0x7f00000018c0)={0x0, 0x0, 0x0, 0x5, 0xd4, r2, &(0x7f0000001880)="0023581d2979eba7bfb6b2089c9b", 0xe, 0x1, 0x0, 0x3}, &(0x7f00000019c0)={0x0, 0x0, 0x0, 0x8, 0x3, r1, &(0x7f0000001900)="a9cc60559caf27635fcd95e3ce2d1ee235fba50928d04e22f015f2a63f3dd3c7a9da36547aca90f1a2fa13c604882774b7a1daa3c7104a90a2f796667b1c4c1371e8bccc0dd1e524c8cb4f1f3f2fd187a710e99d1c13b5d0edd222bc7ac2b805618ed44a4d3ff1ae4a86c189669674aa92c5064e2e894450d7b7b67f1a6fb5c99f8182700b0f79dedf842d7634432c7776525b8259222ca3d237aa", 0x9b, 0x3, 0x0, 0x3, r3}, &(0x7f0000001ac0)={0x0, 0x0, 0x0, 0x0, 0x7, r4, &(0x7f0000001a40)="2ba8e8111cbc11bed140fa4da10a369b3f6c6d74711685dffd04f158c1a74440ecd8f5cdb29b6fe75cf2a7a364c5568cb5b3b56a0cdb2a5c2ae739a2e5beb51311a2c1ad38d8fc477be2f539a408493463f089d07032c4b5e9683dbb69720d55aeba9930e9e9", 0x66, 0xdd3}, &(0x7f0000001b80)={0x0, 0x0, 0x0, 0x6, 0x101, 0xffffffffffffffff, &(0x7f0000003d00)="ec69ad1858158bc19c03003d5af06c0a1fd8b80ea54000e22df5573b247c8856dc4c041dc77a60d36a9219f6942392fc6779ea23255b975ad33cb699318223fb10ed89cdfc4f694d5241259d8086000000000000000000008653065255d697caa6f71fc693656b24be05f9df0d173fb2a2087d6bc938d30edfe7d549c1a63c382fa03eef565f93df20eb59de92826a1c8893b7b8ab6cede5afe783250de1a0411a3629d5e97430620a8c1c5dfd73f37c2c08fdec62d5edea4f160b4007eee4b0e01ef6b7b56013ab6d3e7ea9c65a4509a5910c08dfbad3f04f4b077d74f605dffa423353391df654a3028ac423a4", 0xee, 0x401, 0x0, 0x2, r5}, &(0x7f0000002bc0)={0x0, 0x0, 0x0, 0x0, 0xcd, r1, &(0x7f0000001bc0)="66b0782a07cbdc012f898f70081c584fc6f64d688ec8a73dc414b83d6ea25a2bd898f166022345e2a80df2904059bca3b1ea93033e892ec9aa1552f321e8fba15ac8a7067d483f21713c12c7a6241f25f34edf69b8345062c933a2cbe3ea5ae2e92b28dd0fd1d6944636c6c018fb2433202ee4d951537c032ee75dc53909e8c6f03e908e5739c057db97ee4883c3f1aa0175493dafa70c4bfe71f06b7ed2042121c3bfbe4ad373cb78cb5dd1b518baf971623b89cfbf2e8d04d500ce65b01c1a12ebd0655d4f52981d5aab8562ea4bf542264111673b30cb1d6d0093e94aec8b4d28ad57cbcd7885f90ba21b84a36694e01e47485eaa76673cc048d06e69ca2c3c34de66e75a05d103591554320911a4cf22fe0a2ff93be93046bedfc13eaf31a568bc5aae4397b35682c0334d847500bb8366a4830f7fa61c5d74e78abc12ef6a5e627c8dbca51ee021fe75d23ab619a06ee01f067945e234905e680b3d71dd0c0e328a51ed72f322ac7e46c4a349051187e63a52a9e9402ebb990b5e531abad06394d818ffc37b55352f1aee572ecc9e77b36989697b72c7f8d9670674cb9b554bd8ed3c45ebdb9ce1db23b6afd230c641470cd4e0bcc61353b504dd727b9541732ea65c401d2d77cba03e12c1bebc336ac2dea007c6eb5c98a35dd14fc6f15fcdd816e38a7c96857f9a00efca56eac76d6a3ad8da093896493c1e81136d560782334c652435120c1da91ed03ee09e24e37f2cabf70a116466722c375e97ee68ae717fe4e3aacf1d87439c990f97480ef95e5124c44f994aa181c303cc996f980fd3ed231498e4db176e9c2dece97f41d44bf0205821f302faced4b4a4a71dc91899e7eae37b756bc4016785638d38d45977c052f82a3707daeaece91ecf219d03ede95e978c914d214cda641af6cca46466d36247c86e91a7285102eaf98995457e31b1c88becafd9bf7f8b259abeea34b491228da7b50f3eadbe0e1092bc5bee1e56ddab7502fcd913ceff02a59cc3254d7ff9d9434b14d591da48fa88affac4f91a17615fa2824ae12721c2fac866a80a87bdefd67b0775eb18d3f4eb77ad872cb50d4ba68104f31af2363b0ddeb9420c020b94b239e80dec0eceed59f28af449dc7cfd90286c0fecd4178354d915a9c0d8ba14afc73c1e1b2de6869be470bb51291e9c4a48a4ecbd05666a61798edf5731979a7bd5a523e7dd05f71925b4203a324b262a244d184e00ddc549773fc823c8e125ccabbc2aa4c2a5349432a090b42504eaab80b9c80e38715e1e8aa504a771f8dd3da9efc109d696770a612a07e0f48f0865a9908f1dfb8cb90399f8756485aaf7abbf7c0d41cbbcfd03a6cd1cbf067e9580ca618e8572625715a34342297000c7eba3be96e471211abc760058fd657ebd55998043ef7f3177c72626ae2d828492d4269a5bb2e79bec5d4f133f9647cda9cb725de299a1c8a524b2b9f4930195ca11b9d4b9f8f864b2d14e52e7e8684229c12a05884cfed08da98c5d4dd2eae343e8ecc00f6dbd24dd74b3a6edbfa36337aa3447d61f0bf73d706252dbf6290427d5e192e10a3e19d4c068fcc12cbc56cdac88f24f41b81be5963d09334de62a55378e8bbf44865f74b4b125b04807ac8bf4ea33ffc73dd23c7da32cffe1d8ea5383f6223a8b11040aceb79978f1cb8590c218c05e5e36c37ff74c3576f7014cb1fc68a35e63d19f34d6cdb2915d4e69266d17847d74c72e4935d70044dd11ffa9cc88a44b7a6e913178b3a7312b87088c5939c40a70498c18e661da662b60ac472be641a995f2692b005d6ba5dfdf4b0f7e83005adb3e0d35ab4884c8d0b8d4745edab10aa1a7b25a6180a1d84a71ac0acd0e93e888f8fa0a4f94749f66e2428674d6ff966294f9583ca3505668ea4b43e56b36a1378e7f1ea6db5bb1757c9339b2b2aa32eff2ffe3b51dea7e900375aba9d9d5acd3417a27b279ab08c4385009069496df5e10a574d821315310cae3ba7da39e77945b09b34ec95be589021b5b5331094e2caec46d21ed5f7d280075359c27e3e040f27b66835c97f0aa89650165683ba83b632ddca4ab6d70a8422877d64980f25f4096e9ab1695d55a3e7435d1294228401afcc37cd667b56ae1fcab2a8550b383eccdafbc1eb74fa22365453548fbcde107c196791168bb5abb6812f0bb755ea421ab6dc4f8d2d02b8ad7f7cffb904225983b10dc786443cf4f4d543ec069367d04fec7fea5c2ca494b3997ae8ba5775aaa13b7804fed7205e59f9720f419ef15940bc17f63527ed9ed7c1f697fc7e989d27bdd6eba1af2f842265fab0f9543d4b79824956e117e8026cd87647d93cda438f44b7605619471066112330c1de2de2e9d4e01356f043df30dcca63eb30b34b8397e67f4b61a89ec3ac6909a08285924eb34d073c855a72d274b162e09ee1f5ac63cce801ec3ad0056128958b77d605749c419addfba56d39760066108c479bfb54a9ad1c7dddc06ca69200528096613567966a9d5498d54357fa14cbfdbc488f69b675596a91a28b3275ef6a75903a486b8e2af8760bda76c647a941ad8304455823b7689301e94b0440f5379050954e271e8dcbd4255cef819dce30be3a50e35767aa5d6ed5151d892d0739615c1e6c2f9195bb618d2b12cca7d629dafe17fbf0b1eea09325e25fdfba369daa22797082625f283ebaacdb7843a5d1a37ea8612faa536465cf02c319b95f8651bc69f4244e0eaa5c876b38dd5e832a28077d787daf2528cd7ee8936f337dddfea9ab3d7e059c3a62c971d26ec783bcdf71b5907a052baf259591dd8d025ebdbdd309a8179b67988e2fcfe0a5da72038168d05cc21e54a01f0843a8d1504a4d99d2083730313f5b750e0f8621d9a295355b72a807866c627fe490389d1a7852d00ce40ee7af8fe464032802a19909a9ee2bd31802b644f1f30a2e51f43adfa867a19c62d0098d04ce36f93c9826d517cba1f05175e48509127235179229f2c968fd073bef19532f47911b6970edbcc40771d827c3c0b821611d43ac41d86f2c041d08ced8404f1bb34bc351ccdf734acff3a63a8e49f8a35523bf821f544a394983be84e119f67008fa829c4df263b70bfc5d956c393cd5caaad154aaeca0221b8158298063d45d165c56ba9a073fec769bd1590459a74b59f6ebd7cd2fc0e7ea1afb37e9c0e6439727f27a43d4eb8b8801524e5f87e170df9e95e103d69c40316442b54ce57544e3ee392073453b7af0d565901daf8ca10403d1abef2b7a352ad79a35f50ec2f1bce2b714ea000b0734c5a947dbdfa17c2f3418993b4724817fe3907f599d9440a76033a4525a4b6bfff39cf11c8d15fae28ea39fcea87965be2cd767e7e081d991f7c58d01b6f5f085b18c60e25472bdb0fa2c5def6048225441ba33b5fec92e2d3b9409f3eb1a1cbf086250e28fb8d21dac86d7a2b217139b5531cd591c05ccc8b203311fed9508639a6715fc8b6765552e180bc9552bd5031a688d3701e4ae62f5cdadfc71067b10237d48eb6f146772f8bc2664c0a4da1ee01c53cb6381d5f5f6c2541b62f17456928c2ad23d255c1299fb0c23a35b4d47f1f5769c6e224df83ac7734f96f0b447aeecc054620e32c3dc71a853f1133a249c12d395a9d9ff6a85d6307372d859b6e078043b10bde8874ec0441738bdc8da4e7dc0e333783fabff24be63ad4aa5ea5040529dbe4da348fb1904f49c97d53df82acd324be88b08f204c569714dbec130c4eeee5452f1be322062a78a09c5fd69c074107248d6c0e8fccde6e90a265e3769bcf9faf0bc285b9d8844d38371be5b7b326a7f94771906d92f0e77d9d2c59bb6b7b1de15284efdc9a55b12b70e056ad6563f4fbabf06609798e976193346db423c5def2345bba6a20f766bad1a9818f245992a8ac7b3465a78f5e80b64cdb52aaaadb406d709b578e1b8659c3af805176d34d8bd3e569526490e975a5749a58761afd933fce8d98f625fefb91c359fd87d2438bf249f2a870bbf83ed89d605f5273d4ce523e6565da350445ac274a21851c52154451079b9041902c445ca3c9ccd48c4a457ce31d03884ffed7c1a3d058d3802f33181821b8c4a301798ba9398487cbefcfc9edaadf3f0e3b668865b66b9fda1460fd475471a62b2914e9b96b19c53c1ee681ad97228051b6a8a19eea6c35a8e3ba82c5bffefe2803f83755b5c87cf806a76f5bca6a7c787ed97ffad03aea833b7a710148adb5c51034cbf81dbb8aaa20d7bb922be86f921a87d85011ef83b170d40814fb095fa90786c22fa79e4c5420c98643a1dfd3b0d0b96ca0f8273b6b380cf991ce698df5d6e0fd56f2b13f89c3e026c6e90ff9e3a6c6d71a222be638477a6e2b6878be3566ad94fb2e8b3ec48a0321d5b40fbcc645dfc79e259b08abf22eb2ab8ba790651c8b154f0ccfa9efa7d66df1b85ecb764400c37cfa3292b6b12ac9285b51fcf85b4352af6fd59ff4645c70e033a6f8d6d6a4c34dd773de246ae5772751b2176c93d6d590e6fa1daab99cd5e94b96e53207b6b8d095794cfcbf18a573f97d5d55fb154da6a413471983184934560f48c7a657d7ba0188ed3a80b63790a8200290536aed8c48be1f2fb2565e9407732555626f0a67ff5fc3af388ce54a5f0a57ff357f6a4eece08e32bd335ac1ec7f5698e1226b79e3ce45459b925af4d592c7514efc13270c73451cbdbdfcd52b241ab865b637aabb55a63a35b347303f78a65b76db348b3de709d96da234d84c60de7806102f2420871ee6700537877d446d3d7c92bb1a48d077491962c90a39a72ee929cb0c67c6e01c34c38d40c0554847411cb99b1bf2152f26f67fb8621f8050f88a1f9c4f3641182be6ae4e1851ee9f36ae7304239f4b47ac77a94bdc0187b75c19ba21f616024c32ef0ba4717a8d2612766459819d690697413bfcc27782cd5b2dbcb81dfe7894774c9c306aec1ab249413201113e8853dd094aa3e170e72f3df7dcd0a4f8e8993490b09eb206ae9e4e6a4b297681c49be295ba3a7c6de05b0ea7d71d55ba218972ec40f919c0eaa85a90197720425fc64bed0bed245e520a452bcdf6e361f6f680972ebe4483e0e92bed31af55664600c611f0467318af0bc1e24f2b457ac0997aae75b62fe2ab09e5fec840d7c26ddc3faff748d96651f53df7e933b341833bb05512f39773c79c04ca2622fe19056adf15e95329d04f2bee07f3d3bd47d94e76a065ab21daddb6b7a51e1bcbdb7506a32e088303270eb4e41576122abea8f63adb2954d68491ecd3e82f0a2ec6bff2f4095dfc5cd045046b1339e054b33020b7c20b645814737a299e7f6c27f39e6cf8d3bd7c6311e4f089ee057fd8841dadbec28171f5948754c213cc6cb69e159353d16599ea48ece0a605221cbff0cec15afa3a2e33f9ca355723f57dc268023b0c8b35744f2908b24fb268d379a9309a4702259c954560e35eb0185a3fa28125a8d7f5c3c6b7a9364b9bf798afb429f53953f73ba57d70ae40404d9e182609f356ae0837a3af3943ea086a4223a508b378d10aec1e6b2da2433a0a103f2687a0f86d52e81ebc8e8001bb01d1dd54bf409f935d1993a276aaa2c93b7f11a550b2bc18d53df781b956bdc7d5423b53f95b76a8658f0047954b3177d0905bfa36f1109ca4338e7db27b169ef496d00ee2f4b581491e52a517862024ae55d36ae35717377b6d84d9656b04493bcea3690cc953a622d5cd52b01b9ffdf2281f24ccca24670e5d737c4be46d7d34c382b9eb48825e75d714776ffe570a5fa4ba29f6650395f7", 0x1000, 0x5, 0x0, 0x0, r0}, &(0x7f0000003c40)={0x0, 0x0, 0x0, 0x0, 0x0, r6, &(0x7f0000002c00)="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", 0x1000, 0x4f1, 0x0, 0x2, r7}])
readv(r0, &(0x7f0000000480)=[{&(0x7f0000000140)=""/34, 0x22}, {&(0x7f0000000180)=""/182, 0xb6}, {&(0x7f0000000240)=""/203, 0xcb}, {&(0x7f0000000340)=""/79, 0x4f}, {&(0x7f00000003c0)=""/28, 0x1c}, {&(0x7f0000000400)=""/117, 0x75}, {&(0x7f0000001540)=""/198, 0xc6}], 0x7)

[ 3346.090692]  do_syscall_64+0x33/0x40
[ 3346.099112]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3346.099571] RIP: 0033:0x7f98c45cca04
[ 3346.099918] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3346.101595] RSP: 002b:00007f98c1b8f060 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3346.102239] RAX: ffffffffffffffda RBX: 00007f98c472cf60 RCX: 00007f98c45cca04
[ 3346.102832] RDX: 0000000000000002 RSI: 00007f98c1b8f0f0 RDI: 00000000ffffff9c
[ 3346.103450] RBP: 00007f98c1b8f0f0 R08: 0000000000000000 R09: 00007f98c1b8ef70
[ 3346.104047] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 3346.104646] R13: 00007fff6ecaf52f R14: 00007f98c1b8f300 R15: 0000000000022000
08:51:29 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8901, &(0x7f0000001840)="fb")
syz_80211_inject_frame(&(0x7f0000000040)=@device_b, &(0x7f0000000080)=ANY=[@ANYRESOCT, @ANYRES64, @ANYRES32=r0], 0x34)
openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x121800, 0x0)

[ 3346.119780] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:51:29 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4d00000000000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

[ 3346.164004] FAULT_INJECTION: forcing a failure.
[ 3346.164004] name failslab, interval 1, probability 0, space 0, times 0
[ 3346.165152] CPU: 0 PID: 21337 Comm: syz-executor.0 Not tainted 5.10.226 #1
[ 3346.165777] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3346.166521] Call Trace:
[ 3346.166771]  dump_stack+0x107/0x167
[ 3346.167131]  should_fail.cold+0x5/0xa
[ 3346.167493]  ? create_object.isra.0+0x3a/0xa20
[ 3346.167933]  should_failslab+0x5/0x20
[ 3346.168297]  kmem_cache_alloc+0x5b/0x310
[ 3346.168666]  ? igrab+0xc0/0xc0
[ 3346.168966]  create_object.isra.0+0x3a/0xa20
[ 3346.169370]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3346.169834]  __kmalloc+0x16e/0x390
[ 3346.170168]  iter_file_splice_write+0x16d/0xc30
[ 3346.170606]  ? atime_needs_update+0x600/0x600
[ 3346.171039]  ? __fsnotify_parent+0x47a/0xb10
[ 3346.171468]  ? generic_splice_sendpage+0x140/0x140
[ 3346.171917]  ? pipe_to_user+0x170/0x170
[ 3346.172299]  ? security_file_permission+0xb1/0xe0
[ 3346.172752]  ? generic_splice_sendpage+0x140/0x140
[ 3346.173216]  direct_splice_actor+0x10f/0x170
[ 3346.173634]  splice_direct_to_actor+0x387/0x980
[ 3346.174061]  ? pipe_to_sendpage+0x380/0x380
[ 3346.174461]  ? do_splice_to+0x160/0x160
[ 3346.174851]  ? security_file_permission+0xb1/0xe0
[ 3346.175323]  do_splice_direct+0x1c4/0x290
[ 3346.175715]  ? splice_direct_to_actor+0x980/0x980
[ 3346.176152]  ? avc_policy_seqno+0x9/0x70
[ 3346.176528]  ? security_file_permission+0xb1/0xe0
[ 3346.176994]  do_sendfile+0x553/0x11e0
[ 3346.177360]  ? do_pwritev+0x270/0x270
[ 3346.177722]  ? wait_for_completion_io+0x270/0x270
[ 3346.178176]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3346.178598]  ? vfs_write+0x354/0xb10
[ 3346.178956]  __x64_sys_sendfile64+0x1d1/0x210
[ 3346.179381]  ? __ia32_sys_sendfile+0x220/0x220
[ 3346.179807]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3346.180295]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3346.180774]  do_syscall_64+0x33/0x40
[ 3346.181125]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3346.181599] RIP: 0033:0x7f5117aedb19
[ 3346.181951] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3346.183558] RSP: 002b:00007f5115042188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3346.184197] RAX: ffffffffffffffda RBX: 00007f5117c01020 RCX: 00007f5117aedb19
[ 3346.184795] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000000c
[ 3346.185389] RBP: 00007f51150421d0 R08: 0000000000000000 R09: 0000000000000000
[ 3346.185982] R10: 000000007ffffff9 R11: 0000000000000246 R12: 0000000000000001
[ 3346.186580] R13: 00007ffc6010669f R14: 00007f5115042300 R15: 0000000000022000
08:51:29 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x400448e0, &(0x7f0000001840)="fb")
ioctl$sock_SIOCGIFVLAN_GET_VLAN_VID_CMD(r0, 0x8982, &(0x7f0000000000))
pread64(r1, 0x0, 0x0, 0x1)

08:51:29 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
ioctl$TIOCSRS485(r0, 0x542f, &(0x7f0000000000)={0x8, 0xfffffffa, 0x1f})
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000)
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, 0x0)
stat(&(0x7f0000000440)='./file0\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
setresuid(0x0, r1, 0x0)
syz_mount_image$nfs4(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x100000001, 0x3, &(0x7f00000003c0)=[{&(0x7f0000000180)="8a51feaed52af859334181d7ee55ed6d4260113eb52a315fa8d78704de6519f532925c202da56c84563ebecf1c66bfcea45e4526316ec9c269796a08e13bff2ce66c58893daecd5be659b6d0bfafe1483aeacec5ba24d008a3ca57c56db87a7eef6fc72f48c9cfa1a6b707ee7b1b2d64cd246eaf14f8696d04eb18d762e489ecd9ea896449d443c6ed4aa6a49c9969158b7839c4d36ae02f082bbcc58b9ed0ae9e1497a5ee905db958d7894d4ef81f", 0xaf, 0xff}, {&(0x7f0000000240)="87fc6b02720e74658951a47d992016b5d738bf550a22fee48b8fbcbed337bdee02cc7090da4db6887c5c83d8aa521121498a95351b5f5ee08bb2a137ef4f95227949dd4abbc001e2fc4b80d6b78f3f4357f39595a7318126cc02ff6233f8ef9524bee871a4b0ceeb1cddcddc993d6a44aa4daaf91e60c55bf84d90f2c139e9b03c519cde9b7863abb1004c189b1c915049d3bd98f791a0598065555d87cea9c66eefe998e6096b57ebf6e4561b57214daee7c10a2ea35f20689e9b11f2f3eb64c430c48f8400e8ca9af77bef015f9a48eb558a6a9ddc6e54e00546de3784fd929d595c11bf5635fcd8be2c1a77d304063696e782a4", 0xf5, 0x9}, {&(0x7f0000000340)="d3aa2fe45a8c4ea4a926396608b6e6ae47695c54f4da8d3165960d753e96e2ad14755868cfbf1138ff88c0c9859b0e4581239bbc318fcb6cb99d04ba03c4731f06595e51ab9f45c3bd2fced61b9c46ecae09ee131cf05c16f485ef15d83623f55a8a5faf35003f56d21ae27f", 0x6c, 0x4}], 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB='\x00,/dev/nvram\x00,fowner<', @ANYRESDEC=0x0, @ANYBLOB="710f392664a98a1ced", @ANYRESDEC=r1, @ANYBLOB=',dont_appraise,\x00'])
r2 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000080), 0x482000, 0x0)
ioctl$TIOCGPTLCK(r2, 0x80045439, &(0x7f00000000c0))
readahead(r0, 0x1, 0x9)
ioctl$TIOCSBRK(r0, 0x5427)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x4}, 0x4)

[ 3346.492480] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:51:42 executing program 5:
syz_80211_inject_frame(&(0x7f0000000040)=@device_a={0x3}, &(0x7f0000000140)=ANY=[], 0x34)
syz_80211_inject_frame(&(0x7f0000000840), &(0x7f0000000880)=@ctrl_frame=@bar={{}, {0xddc}, @device_b, @device_b, @basic={{0x0, 0x0, 0x0, 0x0, 0x3}, {0x0, 0x1}}}, 0x14)
syz_80211_inject_frame(&(0x7f0000000000)=@device_b, &(0x7f0000000080)=@data_frame={@no_qos=@type11={{0x0, 0x2, 0x2, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1}, {0x5}, @broadcast, @device_b, @device_a, {0x6, 0xb6}, @device_b}, @random="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"}, 0x794)

08:51:42 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000)

08:51:42 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4e00000000000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

[ 3359.525427] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3359.528544] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3359.551080] FAULT_INJECTION: forcing a failure.
[ 3359.551080] name failslab, interval 1, probability 0, space 0, times 0
08:51:42 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00') (fail_nth: 5)

08:51:42 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9) (fail_nth: 7)

08:51:42 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 10)

08:51:42 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x8901, &(0x7f0000001840)="fb")
r3 = socket$nl_audit(0x10, 0x3, 0x9)
write$bt_hci(r2, &(0x7f00000000c0)=ANY=[@ANYBLOB="aba93ebbf611b1379dbe4ff536d68a037dac08013e0c017f"], 0x5)
ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0x0, r3, 0x1f, 0x1f, 0x1, 0x10001})
pread64(r1, 0x0, 0x0, 0x8)

08:51:42 executing program 7:
sendmsg$SEG6_CMD_SET_TUNSRC(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x60, 0x0, 0x100, 0x70bd26, 0x25dfdbfc, {}, [@SEG6_ATTR_DST={0x14, 0x1, @private2}, @SEG6_ATTR_SECRETLEN={0x5}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x8}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x7}, @SEG6_ATTR_SECRET={0xc, 0x4, [0x0, 0xe8]}, @SEG6_ATTR_SECRET={0x4}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x6}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x2}]}, 0x60}, 0x1, 0x0, 0x0, 0x4}, 0x80)
r0 = syz_open_dev$vcsa(&(0x7f0000000000), 0x400afe7, 0x52200)
ioctl$F2FS_IOC_DEFRAGMENT(r0, 0xc010f508, &(0x7f0000000040)={0x2, 0xee8})
r1 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r1, 0x0, 0x0, 0xc7e80000001)

[ 3359.553448] CPU: 0 PID: 21371 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3359.557055] FAULT_INJECTION: forcing a failure.
[ 3359.557055] name failslab, interval 1, probability 0, space 0, times 0
[ 3359.559167] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3359.559172] Call Trace:
[ 3359.559192]  dump_stack+0x107/0x167
[ 3359.559207]  should_fail.cold+0x5/0xa
[ 3359.562207]  ? __alloc_file+0x21/0x320
[ 3359.562647]  should_failslab+0x5/0x20
[ 3359.563079]  kmem_cache_alloc+0x5b/0x310
[ 3359.563496]  __alloc_file+0x21/0x320
[ 3359.563883]  alloc_empty_file+0x6d/0x170
[ 3359.564284]  alloc_file+0x5e/0x5a0
[ 3359.564665]  alloc_file_pseudo+0x16a/0x250
[ 3359.565077]  ? alloc_file+0x5a0/0x5a0
[ 3359.565476]  ? shmem_get_inode+0x55c/0xbc0
[ 3359.565918]  __shmem_file_setup+0x144/0x320
[ 3359.566361]  ? _copy_from_user+0xfb/0x1b0
[ 3359.566770]  __do_sys_memfd_create+0x275/0x450
[ 3359.567202]  ? memfd_file_seals_ptr+0x170/0x170
[ 3359.567601]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3359.568046]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3359.568498]  do_syscall_64+0x33/0x40
[ 3359.568816]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3359.569249] RIP: 0033:0x7f71ab262b19
[ 3359.569568] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3359.571117] RSP: 002b:00007f71a87d7f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[ 3359.571772] RAX: ffffffffffffffda RBX: 0000000020000c00 RCX: 00007f71ab262b19
[ 3359.572372] RDX: 00007f71a87d8000 RSI: 0000000000000000 RDI: 00007f71ab2bc0fb
[ 3359.572970] RBP: 0000000000000000 R08: 00007f71a87d7ff8 R09: ffffffffffffffff
[ 3359.573581] R10: 00007f71a87d7ffc R11: 0000000000000246 R12: 0000000020000940
[ 3359.574182] R13: 0000000020000980 R14: 0000000000000000 R15: 0000000020000c80
[ 3359.574805] CPU: 1 PID: 21372 Comm: syz-executor.2 Not tainted 5.10.226 #1
[ 3359.579623] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3359.579840] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3359.580310] Call Trace:
[ 3359.580326]  dump_stack+0x107/0x167
[ 3359.581583]  should_fail.cold+0x5/0xa
[ 3359.581905]  ? create_object.isra.0+0x3a/0xa20
[ 3359.582291]  should_failslab+0x5/0x20
[ 3359.582612]  kmem_cache_alloc+0x5b/0x310
[ 3359.582960]  create_object.isra.0+0x3a/0xa20
[ 3359.583365]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3359.583793]  kmem_cache_alloc+0x159/0x310
[ 3359.584146]  __alloc_file+0x21/0x320
[ 3359.584460]  alloc_empty_file+0x6d/0x170
[ 3359.584808]  path_openat+0xe6/0x2770
[ 3359.585120]  ? __lock_acquire+0x1657/0x5b00
[ 3359.585492]  ? path_lookupat+0x860/0x860
[ 3359.585834]  ? perf_trace_lock+0xac/0x490
[ 3359.586181]  ? lock_acquire+0x197/0x470
[ 3359.586514]  ? find_held_lock+0x2c/0x110
[ 3359.586858]  ? __lockdep_reset_lock+0x180/0x180
[ 3359.587280]  do_filp_open+0x190/0x3e0
[ 3359.587601]  ? may_open_dev+0xf0/0xf0
[ 3359.587928]  ? alloc_fd+0x2e7/0x670
[ 3359.588238]  ? lock_downgrade+0x6d0/0x6d0
[ 3359.588590]  ? do_raw_spin_lock+0x121/0x260
[ 3359.588956]  ? rwlock_bug.part.0+0x90/0x90
[ 3359.589319]  ? _raw_spin_unlock+0x1a/0x30
[ 3359.589668]  ? alloc_fd+0x2e7/0x670
[ 3359.589984]  do_sys_openat2+0x171/0x4d0
[ 3359.590323]  ? build_open_flags+0x6f0/0x6f0
[ 3359.590686]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3359.591104]  ? wait_for_completion_io+0x270/0x270
[ 3359.591524]  __x64_sys_openat+0x13f/0x1f0
[ 3359.591874]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3359.592230]  ? ksys_write+0x1a9/0x260
[ 3359.592557]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3359.592996]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3359.593431]  do_syscall_64+0x33/0x40
[ 3359.593746]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3359.594174] RIP: 0033:0x7f98c45cca04
[ 3359.594489] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3359.596031] RSP: 002b:00007f98c1b8f060 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3359.596673] RAX: ffffffffffffffda RBX: 00007f98c472cf60 RCX: 00007f98c45cca04
[ 3359.597268] RDX: 0000000000000002 RSI: 00007f98c1b8f0f0 RDI: 00000000ffffff9c
[ 3359.597863] RBP: 00007f98c1b8f0f0 R08: 0000000000000000 R09: 00007f98c1b8ef70
[ 3359.598458] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 3359.599065] R13: 00007fff6ecaf52f R14: 00007f98c1b8f300 R15: 0000000000022000
08:51:43 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)
r1 = syz_mount_image$nfs(&(0x7f0000005e80), &(0x7f0000005ec0)='./file0\x00', 0xffff, 0x0, &(0x7f0000007200), 0x4000, &(0x7f0000000280)={[{'\xfe\x00'}, {}, {'pagemap\x00'}, {'pagemap\x00'}, {'pagemap\x00'}], [{@rootcontext={'rootcontext', 0x3d, 'root'}}, {@fsuuid={'fsuuid', 0x3d, {[0x64, 0x31, 0x30, 0x37, 0x35, 0x33, 0x35, 0x65], 0x2d, [0x33, 0x32, 0x36, 0x33], 0x2d, [0x35, 0x36, 0x39, 0x38], 0x2d, [0x31, 0x34, 0x65, 0x62], 0x2d, [0x35, 0x63, 0x62, 0x65, 0x33, 0x65, 0x0, 0x32]}}}, {@audit}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@func={'func', 0x3d, 'FIRMWARE_CHECK'}}, {@func={'func', 0x3d, 'BPRM_CHECK'}}]})
ioctl$EXT4_IOC_GROUP_EXTEND(r1, 0x40086607, &(0x7f0000007380)=0x1)
fstatfs(r0, &(0x7f0000000000)=""/148)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r2, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
r3 = socket$packet(0x11, 0x2, 0x300)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00', <r5=>0x0})
bind$packet(r3, &(0x7f0000000240)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14)
execveat(0xffffffffffffffff, &(0x7f00000004c0)='./file0\x00', &(0x7f0000001640)=[&(0x7f0000001540)='{%@$\x00', &(0x7f0000001580)='.\x00', &(0x7f00000015c0)='\x00', &(0x7f0000001600)='\\^|)+%\x00'], &(0x7f0000001700)=[&(0x7f0000001680)=')\x00', &(0x7f00000016c0)='\x00'], 0x1000)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r6, 0x8901, &(0x7f0000001840)="fb")
ioctl$FS_IOC_SETFLAGS(r6, 0x40086602, &(0x7f0000000340)=0x10000)
r7 = memfd_create(&(0x7f0000000380)='root', 0x9)
fstatfs(r7, &(0x7f00000003c0)=""/251)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000001740)={0x5, 0xffff3d7d, 0x9, 0x6, 0x9})
accept$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000140)=0x14)
sendmsg$ETHTOOL_MSG_RINGS_SET(r2, &(0x7f0000000200)={&(0x7f00000000c0), 0xc, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000329bd7000fbdbdf251000000008000900900e030000000000df449900", @ANYRES32=r5, @ANYBLOB="08000100", @ANYRES32=r8, @ANYBLOB], 0x30}, 0x1, 0x0, 0x0, 0x20000800}, 0x4000000)

[ 3359.640470] nfs: Unknown parameter 'þ'
08:51:43 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 11)

08:51:43 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/rpc\x00')
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x40, 0x83, 0x78, 0x30, 0x0, 0x81, 0x10, 0xa, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, @perf_bp={&(0x7f0000000000), 0x8}, 0x11c50, 0x1, 0x6, 0x3, 0x83d9, 0x8001, 0x401, 0x0, 0x20, 0x0, 0x328e}, 0xffffffffffffffff, 0x8, r0, 0x2)
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)

08:51:43 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4f00000000000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

[ 3359.668806] FAULT_INJECTION: forcing a failure.
[ 3359.668806] name failslab, interval 1, probability 0, space 0, times 0
[ 3359.669842] CPU: 0 PID: 21370 Comm: syz-executor.0 Not tainted 5.10.226 #1
[ 3359.670434] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3359.671137] Call Trace:
[ 3359.671370]  dump_stack+0x107/0x167
[ 3359.671681]  should_fail.cold+0x5/0xa
[ 3359.672011]  ? mempool_alloc+0x148/0x360
[ 3359.672355]  ? mempool_free_pages+0x20/0x20
[ 3359.672724]  should_failslab+0x5/0x20
[ 3359.673057]  kmem_cache_alloc+0x5b/0x310
[ 3359.673405]  ? mempool_free_pages+0x20/0x20
[ 3359.673773]  mempool_alloc+0x148/0x360
[ 3359.674110]  ? mempool_resize+0x7d0/0x7d0
[ 3359.674462]  ? trace_hardirqs_on+0x5b/0x180
[ 3359.674833]  ? ktime_get_coarse_real_ts64+0x15a/0x190
[ 3359.675285]  ? ktime_get_coarse_real_ts64+0xfd/0x190
[ 3359.675716]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3359.676164]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 3359.676618]  ? trace_hardirqs_on+0x5b/0x180
[ 3359.676987]  bio_alloc_bioset+0x36e/0x600
[ 3359.677340]  ? bvec_alloc+0x2f0/0x2f0
[ 3359.677666]  ? errseq_check+0x4b/0x90
[ 3359.677988]  ? file_check_and_advance_wb_err+0xbb/0x280
[ 3359.678442]  blkdev_issue_flush+0x20/0x1a0
[ 3359.678805]  blkdev_fsync+0x8e/0xd0
[ 3359.679131]  ? thaw_bdev+0x1a0/0x1a0
[ 3359.679456]  vfs_fsync_range+0x13d/0x230
[ 3359.679804]  blkdev_write_iter+0x3e4/0x550
[ 3359.680165]  ? bd_unlink_disk_holder+0x3f0/0x3f0
[ 3359.680568]  ? direct_splice_actor+0x10f/0x170
[ 3359.680954]  ? splice_direct_to_actor+0x387/0x980
[ 3359.681359]  ? do_splice_direct+0x1c4/0x290
[ 3359.681725]  ? do_sendfile+0x553/0x11e0
[ 3359.682063]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 3359.682454]  ? do_syscall_64+0x33/0x40
[ 3359.682783]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3359.683254]  do_iter_readv_writev+0x476/0x750
[ 3359.683636]  ? new_sync_write+0x660/0x660
[ 3359.683988]  ? avc_policy_seqno+0x9/0x70
[ 3359.684333]  ? selinux_file_permission+0x92/0x520
[ 3359.684747]  ? security_file_permission+0xb1/0xe0
[ 3359.685161]  do_iter_write+0x191/0x700
[ 3359.685494]  ? trace_hardirqs_on+0x5b/0x180
[ 3359.685862]  vfs_iter_write+0x70/0xa0
[ 3359.686187]  iter_file_splice_write+0x762/0xc30
[ 3359.686593]  ? generic_splice_sendpage+0x140/0x140
[ 3359.687022]  ? security_file_permission+0xb1/0xe0
[ 3359.687451]  ? generic_splice_sendpage+0x140/0x140
[ 3359.687869]  direct_splice_actor+0x10f/0x170
[ 3359.688242]  splice_direct_to_actor+0x387/0x980
[ 3359.688637]  ? pipe_to_sendpage+0x380/0x380
[ 3359.689008]  ? do_splice_to+0x160/0x160
[ 3359.689345]  ? security_file_permission+0xb1/0xe0
[ 3359.689754]  do_splice_direct+0x1c4/0x290
[ 3359.690105]  ? splice_direct_to_actor+0x980/0x980
[ 3359.690509]  ? avc_policy_seqno+0x9/0x70
[ 3359.690861]  ? security_file_permission+0xb1/0xe0
[ 3359.695298]  do_sendfile+0x553/0x11e0
[ 3359.695625]  ? do_pwritev+0x270/0x270
[ 3359.695948]  ? wait_for_completion_io+0x270/0x270
[ 3359.696353]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3359.696741]  ? vfs_write+0x354/0xb10
[ 3359.697059]  __x64_sys_sendfile64+0x1d1/0x210
[ 3359.697438]  ? __ia32_sys_sendfile+0x220/0x220
[ 3359.697826]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3359.698277]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3359.698708]  do_syscall_64+0x33/0x40
[ 3359.698835] FAULT_INJECTION: forcing a failure.
[ 3359.698835] name failslab, interval 1, probability 0, space 0, times 0
[ 3359.699023]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3359.700382] RIP: 0033:0x7f5117aedb19
[ 3359.700697] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3359.702217] RSP: 002b:00007f5115063188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3359.702853] RAX: ffffffffffffffda RBX: 00007f5117c00f60 RCX: 00007f5117aedb19
[ 3359.703474] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000000a
[ 3359.704069] RBP: 00007f51150631d0 R08: 0000000000000000 R09: 0000000000000000
[ 3359.704666] R10: 000000007ffffff9 R11: 0000000000000246 R12: 0000000000000001
[ 3359.705263] R13: 00007ffc6010669f R14: 00007f5115063300 R15: 0000000000022000
[ 3359.705874] CPU: 1 PID: 21390 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3359.706460] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3359.707169] Call Trace:
[ 3359.707397]  dump_stack+0x107/0x167
[ 3359.707709]  should_fail.cold+0x5/0xa
[ 3359.708034]  ? create_object.isra.0+0x3a/0xa20
[ 3359.708424]  should_failslab+0x5/0x20
[ 3359.708448] nfs: Unknown parameter 'þ'
[ 3359.708746]  kmem_cache_alloc+0x5b/0x310
[ 3359.708766]  create_object.isra.0+0x3a/0xa20
[ 3359.709783]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3359.710214]  kmem_cache_alloc+0x159/0x310
[ 3359.710570]  __alloc_file+0x21/0x320
[ 3359.710890]  alloc_empty_file+0x6d/0x170
[ 3359.711252]  alloc_file+0x5e/0x5a0
[ 3359.711558]  alloc_file_pseudo+0x16a/0x250
[ 3359.711916]  ? alloc_file+0x5a0/0x5a0
[ 3359.712245]  ? shmem_get_inode+0x55c/0xbc0
[ 3359.712610]  __shmem_file_setup+0x144/0x320
[ 3359.712982]  ? _copy_from_user+0xfb/0x1b0
[ 3359.713338]  __do_sys_memfd_create+0x275/0x450
[ 3359.713728]  ? memfd_file_seals_ptr+0x170/0x170
[ 3359.714127]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3359.714572]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3359.715009]  do_syscall_64+0x33/0x40
[ 3359.715349]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3359.715778] RIP: 0033:0x7f71ab262b19
[ 3359.716094] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3359.717625] RSP: 002b:00007f71a87d7f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[ 3359.718266] RAX: ffffffffffffffda RBX: 0000000020000c00 RCX: 00007f71ab262b19
[ 3359.718863] RDX: 00007f71a87d8000 RSI: 0000000000000000 RDI: 00007f71ab2bc0fb
[ 3359.719486] RBP: 0000000000000000 R08: 00007f71a87d7ff8 R09: ffffffffffffffff
[ 3359.720083] R10: 00007f71a87d7ffc R11: 0000000000000246 R12: 0000000020000940
[ 3359.720681] R13: 0000000020000980 R14: 0000000000000000 R15: 0000000020000c80
08:51:43 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00') (fail_nth: 6)

08:51:43 executing program 7:
syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x0, 0x0, 0x0, 0x5, "77004a6efdff00", 0x0, 0x3})
ioctl$TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, &(0x7f00000001c0)=0x1)
r0 = pidfd_open(0x0, 0x0)
r1 = syz_open_procfs(0x0, 0x0)
pwritev2(r1, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000180), 0xc, 0x0, 0x1, 0x0, 0x0, 0x8010}, 0x40)
fcntl$dupfd(0xffffffffffffffff, 0x0, r0)
fallocate(0xffffffffffffffff, 0x4, 0xa8, 0x7)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000280), &(0x7f00000002c0)=@md5={0x1, "8300d0914308f7bdf554a1f3de3c544f"}, 0x11, 0x7)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2e, &(0x7f0000000040)={0x0, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @remote, 0x2}}}, 0x108)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2f, &(0x7f0000000040)={0x0, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @private0}}}, 0x108)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
r2 = add_key$fscrypt_v1(&(0x7f0000000080), &(0x7f00000000c0)={'fscrypt:', @desc2}, &(0x7f0000000100)={0x0, "b8a594566ce2865b97c739c2af129632b8a98a222c38203a1ea0c11928cf16dddbc2755b20573edb9a2588b68f6a0e2f220d98ba9daec7455195350342174a0d"}, 0x48, 0xfffffffffffffffc)
keyctl$link(0x8, r2, r2)
keyctl$link(0x8, r2, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)

08:51:43 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/udp\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)

08:51:43 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r2, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000080)={<r3=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r3, 0x3, r1, 0xa)
syz_open_procfs(r3, &(0x7f0000000000)='net/nf_conntrack\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)

[ 3359.800385] FAULT_INJECTION: forcing a failure.
[ 3359.800385] name failslab, interval 1, probability 0, space 0, times 0
[ 3359.801439] CPU: 1 PID: 21395 Comm: syz-executor.2 Not tainted 5.10.226 #1
[ 3359.802020] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3359.802714] Call Trace:
[ 3359.802947]  dump_stack+0x107/0x167
[ 3359.803291]  should_fail.cold+0x5/0xa
[ 3359.803622]  ? security_file_alloc+0x34/0x170
[ 3359.804006]  should_failslab+0x5/0x20
[ 3359.804332]  kmem_cache_alloc+0x5b/0x310
[ 3359.804683]  security_file_alloc+0x34/0x170
[ 3359.805055]  __alloc_file+0xb7/0x320
[ 3359.805374]  alloc_empty_file+0x6d/0x170
[ 3359.805720]  path_openat+0xe6/0x2770
[ 3359.806038]  ? __lock_acquire+0x1657/0x5b00
[ 3359.806415]  ? path_lookupat+0x860/0x860
[ 3359.806759]  ? perf_trace_lock+0xac/0x490
[ 3359.807119]  ? lock_acquire+0x197/0x470
[ 3359.807462]  ? find_held_lock+0x2c/0x110
[ 3359.807809]  ? __lockdep_reset_lock+0x180/0x180
[ 3359.808206]  do_filp_open+0x190/0x3e0
[ 3359.808528]  ? may_open_dev+0xf0/0xf0
[ 3359.808856]  ? alloc_fd+0x2e7/0x670
[ 3359.809166]  ? lock_downgrade+0x6d0/0x6d0
[ 3359.809519]  ? do_raw_spin_lock+0x121/0x260
[ 3359.809885]  ? rwlock_bug.part.0+0x90/0x90
[ 3359.810250]  ? _raw_spin_unlock+0x1a/0x30
[ 3359.810599]  ? alloc_fd+0x2e7/0x670
[ 3359.810916]  do_sys_openat2+0x171/0x4d0
[ 3359.811277]  ? build_open_flags+0x6f0/0x6f0
[ 3359.811643]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3359.812064]  ? wait_for_completion_io+0x270/0x270
[ 3359.812479]  __x64_sys_openat+0x13f/0x1f0
[ 3359.812829]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3359.813185]  ? ksys_write+0x1a9/0x260
[ 3359.813512]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3359.813961]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3359.814397]  do_syscall_64+0x33/0x40
[ 3359.814715]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3359.815180] RIP: 0033:0x7f98c45cca04
[ 3359.815508] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3359.817069] RSP: 002b:00007f98c1b8f060 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3359.817729] RAX: ffffffffffffffda RBX: 00007f98c472cf60 RCX: 00007f98c45cca04
[ 3359.818339] RDX: 0000000000000002 RSI: 00007f98c1b8f0f0 RDI: 00000000ffffff9c
[ 3359.818938] RBP: 00007f98c1b8f0f0 R08: 0000000000000000 R09: 00007f98c1b8ef70
[ 3359.819563] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 3359.820161] R13: 00007fff6ecaf52f R14: 00007f98c1b8f300 R15: 0000000000022000
[ 3359.922521] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3359.925830] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:51:57 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9) (fail_nth: 8)

08:51:57 executing program 5:
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000000)={<r0=>0xffffffffffffffff, 0x40, 0x8f0d383, 0xffff})
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r1}, './file0\x00'})
syz_80211_inject_frame(&(0x7f0000000040)=@device_a={0x3}, &(0x7f0000000140)=ANY=[], 0x34)
syz_80211_inject_frame(&(0x7f0000000100)=@device_b, &(0x7f0000000140)=@mgmt_frame=@deauth={@wo_ht={{0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1}, {0x81}, @broadcast, @broadcast, @from_mac, {0x5, 0x2}}, 0x31, @void}, 0x1a)

08:51:57 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 12)

[ 3374.046195] FAULT_INJECTION: forcing a failure.
[ 3374.046195] name failslab, interval 1, probability 0, space 0, times 0
[ 3374.047253] CPU: 1 PID: 21416 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3374.047844] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3374.048547] Call Trace:
[ 3374.048779]  dump_stack+0x107/0x167
[ 3374.049093]  should_fail.cold+0x5/0xa
[ 3374.049421]  ? security_file_alloc+0x34/0x170
[ 3374.049806]  should_failslab+0x5/0x20
[ 3374.050135]  kmem_cache_alloc+0x5b/0x310
[ 3374.050485]  security_file_alloc+0x34/0x170
[ 3374.050853]  __alloc_file+0xb7/0x320
[ 3374.051174]  alloc_empty_file+0x6d/0x170
[ 3374.051553]  alloc_file+0x5e/0x5a0
[ 3374.051858]  alloc_file_pseudo+0x16a/0x250
[ 3374.052215]  ? alloc_file+0x5a0/0x5a0
[ 3374.052544]  ? shmem_get_inode+0x55c/0xbc0
[ 3374.052906]  __shmem_file_setup+0x144/0x320
[ 3374.053308]  ? _copy_from_user+0xfb/0x1b0
[ 3374.053666]  __do_sys_memfd_create+0x275/0x450
[ 3374.054079]  ? memfd_file_seals_ptr+0x170/0x170
[ 3374.054478]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3374.054922]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3374.059411]  do_syscall_64+0x33/0x40
[ 3374.059730]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3374.060161] RIP: 0033:0x7f71ab262b19
[ 3374.060478] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3374.062037] RSP: 002b:00007f71a87d7f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[ 3374.062716] RAX: ffffffffffffffda RBX: 0000000020000c00 RCX: 00007f71ab262b19
[ 3374.063379] RDX: 00007f71a87d8000 RSI: 0000000000000000 RDI: 00007f71ab2bc0fb
[ 3374.063994] RBP: 0000000000000000 R08: 00007f71a87d7ff8 R09: ffffffffffffffff
[ 3374.064591] R10: 00007f71a87d7ffc R11: 0000000000000246 R12: 0000000020000940
[ 3374.065185] R13: 0000000020000980 R14: 0000000000000000 R15: 0000000020000c80
[ 3374.082200] FAULT_INJECTION: forcing a failure.
[ 3374.082200] name failslab, interval 1, probability 0, space 0, times 0
08:51:57 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pipe2(&(0x7f0000000040)={<r1=>0xffffffffffffffff}, 0x4000)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x8901, &(0x7f0000001840)="fb")
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
setresuid(0x0, r3, 0x0)
r4 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000240)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470000000f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f00000000c0)=ANY=[])
r5 = getegid()
setresgid(r5, r5, 0x0)
fchownat(r4, &(0x7f00000000c0)='./file1\x00', 0x0, r5, 0x1000)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r2, @ANYRES32=r3, @ANYRES32=r5, @ANYBLOB="2e4d66696c653282"])
ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0)
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r6, 0x8901, &(0x7f0000001840)="fb")
fcntl$F_SET_RW_HINT(r6, 0x40c, &(0x7f0000000000)=0x2)

08:51:57 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)
open_by_handle_at(r0, &(0x7f0000000000)=@FILEID_UDF_WITH_PARENT={0x14, 0x52, {{0x1, 0x2, 0x0, 0x8}, 0x6, 0x5}}, 0x40)
recvmmsg$unix(r0, &(0x7f0000001fc0)=[{{&(0x7f0000000040)=@abs, 0x6e, &(0x7f00000004c0)=[{&(0x7f00000000c0)=""/192, 0xc0}, {&(0x7f0000000180)=""/114, 0x72}, {&(0x7f0000000200)=""/61, 0x3d}, {&(0x7f0000000240)=""/66, 0x42}, {&(0x7f00000002c0)=""/200, 0xc8}, {&(0x7f00000003c0)=""/118, 0x76}, {&(0x7f0000000440)=""/86, 0x56}], 0x7, &(0x7f0000000540)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x20}}, {{&(0x7f0000000600), 0x6e, &(0x7f0000000840)=[{&(0x7f0000000580)=""/38, 0x26}, {&(0x7f0000000680)=""/179, 0xb3}, {&(0x7f0000000740)=""/255, 0xff}], 0x3, &(0x7f0000000880)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xd0}}, {{&(0x7f0000000980)=@abs, 0x6e, &(0x7f0000001b80)=[{&(0x7f0000000a00)=""/4096, 0x1000}, {&(0x7f0000001a00)=""/121, 0x79}, {&(0x7f0000001a80)=""/181, 0xb5}, {&(0x7f0000001b40)=""/22, 0x16}], 0x4, &(0x7f0000001bc0)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {<r1=>0x0}}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x158}}, {{&(0x7f0000001d40)=@abs, 0x6e, &(0x7f0000001dc0), 0x0, &(0x7f0000001e00)=[@cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x70}}, {{0x0, 0x0, &(0x7f0000001f80)=[{&(0x7f0000001e80)=""/227, 0xe3}], 0x1}}], 0x5, 0x2042, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r3, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000080)={<r4=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r4, 0x3, r2, 0xa)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r5, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
kcmp$KCMP_EPOLL_TFD(r1, r4, 0x7, r0, &(0x7f0000002100)={r5, r0, 0xffff})

08:51:57 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x5000000000000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:51:57 executing program 6:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0xab, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f00000002c0)=<r2=>0x0)
perf_event_open(&(0x7f0000000240)={0x4, 0x80, 0x2, 0x0, 0xa8, 0xf5, 0x0, 0x5, 0x1000, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x4, @perf_bp={&(0x7f0000000200), 0x1}, 0x2000, 0x2, 0x6, 0x7, 0x1, 0x4, 0x81, 0x0, 0xca, 0x0, 0xffff}, r2, 0xf, 0xffffffffffffffff, 0x9)
close(r0)
pread64(r1, &(0x7f00000000c0)=""/83, 0x53, 0x200000048)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/diskstats\x00', 0x0, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000080)={<r3=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0xff, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r3, 0x3, 0xffffffffffffffff, 0x2)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='children\x00')
pread64(r4, 0x0, 0x7ffffffff000, 0x200000000000000)

08:51:57 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00') (fail_nth: 7)

[ 3374.087397] CPU: 1 PID: 21420 Comm: syz-executor.2 Not tainted 5.10.226 #1
[ 3374.095804] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3374.096514] Call Trace:
[ 3374.096752]  dump_stack+0x107/0x167
[ 3374.097096]  should_fail.cold+0x5/0xa
[ 3374.097427]  ? create_object.isra.0+0x3a/0xa20
[ 3374.097817]  should_failslab+0x5/0x20
[ 3374.098141]  kmem_cache_alloc+0x5b/0x310
[ 3374.098485]  ? percpu_ref_put_many.constprop.0+0x4e/0x110
[ 3374.098950]  create_object.isra.0+0x3a/0xa20
[ 3374.099352]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3374.099784]  kmem_cache_alloc+0x159/0x310
[ 3374.100142]  security_file_alloc+0x34/0x170
[ 3374.100508]  __alloc_file+0xb7/0x320
[ 3374.100825]  alloc_empty_file+0x6d/0x170
[ 3374.101175]  path_openat+0xe6/0x2770
[ 3374.101496]  ? __lock_acquire+0x1657/0x5b00
[ 3374.101870]  ? path_lookupat+0x860/0x860
[ 3374.102217]  ? perf_trace_lock+0xac/0x490
[ 3374.102566]  ? lock_acquire+0x197/0x470
[ 3374.102901]  ? find_held_lock+0x2c/0x110
08:51:57 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 13)

[ 3374.103274]  ? __lockdep_reset_lock+0x180/0x180
[ 3374.103676]  do_filp_open+0x190/0x3e0
[ 3374.104003]  ? may_open_dev+0xf0/0xf0
[ 3374.104333]  ? alloc_fd+0x2e7/0x670
[ 3374.104642]  ? lock_downgrade+0x6d0/0x6d0
[ 3374.104994]  ? do_raw_spin_lock+0x121/0x260
[ 3374.105361]  ? rwlock_bug.part.0+0x90/0x90
[ 3374.105729]  ? _raw_spin_unlock+0x1a/0x30
[ 3374.106091]  ? alloc_fd+0x2e7/0x670
[ 3374.111537]  do_sys_openat2+0x171/0x4d0
[ 3374.111879]  ? build_open_flags+0x6f0/0x6f0
[ 3374.112245]  ? sched_ttwu_pending+0x20b/0x360
[ 3374.112631]  __x64_sys_openat+0x13f/0x1f0
[ 3374.112981]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3374.113343]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3374.113785]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3374.114219]  do_syscall_64+0x33/0x40
[ 3374.114534]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3374.114965] RIP: 0033:0x7f98c45cca04
[ 3374.115357] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3374.116917] RSP: 002b:00007f98c1b8f060 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3374.117553] RAX: ffffffffffffffda RBX: 00007f98c472cf60 RCX: 00007f98c45cca04
[ 3374.118148] RDX: 0000000000000002 RSI: 00007f98c1b8f0f0 RDI: 00000000ffffff9c
[ 3374.118742] RBP: 00007f98c1b8f0f0 R08: 0000000000000000 R09: 00007f98c1b8ef70
[ 3374.119383] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 3374.119984] R13: 00007fff6ecaf52f R14: 00007f98c1b8f300 R15: 0000000000022000
[ 3374.122106] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3374.129086] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3374.146285] FAULT_INJECTION: forcing a failure.
[ 3374.146285] name failslab, interval 1, probability 0, space 0, times 0
[ 3374.153728] CPU: 0 PID: 21414 Comm: syz-executor.0 Not tainted 5.10.226 #1
[ 3374.154311] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3374.155005] Call Trace:
[ 3374.155258]  dump_stack+0x107/0x167
[ 3374.155577]  should_fail.cold+0x5/0xa
[ 3374.155910]  ? create_object.isra.0+0x3a/0xa20
[ 3374.156318]  should_failslab+0x5/0x20
[ 3374.156646]  kmem_cache_alloc+0x5b/0x310
[ 3374.156996]  create_object.isra.0+0x3a/0xa20
[ 3374.157372]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3374.157808]  kmem_cache_alloc+0x159/0x310
[ 3374.158165]  ? mempool_free_pages+0x20/0x20
[ 3374.158539]  mempool_alloc+0x148/0x360
[ 3374.158876]  ? mempool_resize+0x7d0/0x7d0
[ 3374.159260]  ? trace_hardirqs_on+0x5b/0x180
[ 3374.159678]  ? ktime_get_coarse_real_ts64+0x15a/0x190
[ 3374.160161]  ? ktime_get_coarse_real_ts64+0xfd/0x190
[ 3374.160651]  ? bd_prepare_to_claim+0x290/0x290
[ 3374.161081]  bio_alloc_bioset+0x36e/0x600
[ 3374.161466]  ? generic_update_time+0x21c/0x370
[ 3374.161888]  ? bvec_alloc+0x2f0/0x2f0
[ 3374.162245]  ? filemap_check_errors+0xa5/0x150
[ 3374.162668]  ? errseq_check+0x4b/0x90
[ 3374.163025]  ? file_check_and_advance_wb_err+0xbb/0x280
[ 3374.163542]  blkdev_issue_flush+0x20/0x1a0
[ 3374.163908]  blkdev_fsync+0x8e/0xd0
[ 3374.164220]  ? thaw_bdev+0x1a0/0x1a0
[ 3374.164541]  vfs_fsync_range+0x13d/0x230
[ 3374.164889]  blkdev_write_iter+0x3e4/0x550
[ 3374.165251]  ? bd_unlink_disk_holder+0x3f0/0x3f0
[ 3374.165656]  ? direct_splice_actor+0x10f/0x170
[ 3374.166039]  ? splice_direct_to_actor+0x387/0x980
[ 3374.166445]  ? do_splice_direct+0x1c4/0x290
[ 3374.166812]  ? do_sendfile+0x553/0x11e0
[ 3374.167148]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 3374.167598]  ? do_syscall_64+0x33/0x40
[ 3374.167968]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3374.168474]  do_iter_readv_writev+0x476/0x750
[ 3374.168907]  ? new_sync_write+0x660/0x660
[ 3374.169295]  ? avc_policy_seqno+0x9/0x70
[ 3374.169680]  ? selinux_file_permission+0x92/0x520
[ 3374.170149]  ? security_file_permission+0xb1/0xe0
[ 3374.170625]  do_iter_write+0x191/0x700
[ 3374.170993]  ? trace_hardirqs_on+0x5b/0x180
[ 3374.171416]  vfs_iter_write+0x70/0xa0
[ 3374.171744]  iter_file_splice_write+0x762/0xc30
[ 3374.172149]  ? generic_splice_sendpage+0x140/0x140
[ 3374.172580]  ? security_file_permission+0xb1/0xe0
[ 3374.172988]  ? generic_splice_sendpage+0x140/0x140
[ 3374.173446]  direct_splice_actor+0x10f/0x170
[ 3374.173822]  splice_direct_to_actor+0x387/0x980
[ 3374.174246]  ? pipe_to_sendpage+0x380/0x380
[ 3374.174612]  ? do_splice_to+0x160/0x160
[ 3374.174950]  ? security_file_permission+0xb1/0xe0
[ 3374.175403]  do_splice_direct+0x1c4/0x290
[ 3374.175785]  ? splice_direct_to_actor+0x980/0x980
[ 3374.176224]  ? avc_policy_seqno+0x9/0x70
[ 3374.176606]  ? security_file_permission+0xb1/0xe0
[ 3374.177059]  do_sendfile+0x553/0x11e0
[ 3374.177436]  ? do_pwritev+0x270/0x270
[ 3374.177793]  ? wait_for_completion_io+0x270/0x270
[ 3374.178276]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3374.178702]  ? vfs_write+0x354/0xb10
[ 3374.179057]  __x64_sys_sendfile64+0x1d1/0x210
[ 3374.179527]  ? __ia32_sys_sendfile+0x220/0x220
[ 3374.179919]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3374.180361]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3374.180796]  do_syscall_64+0x33/0x40
[ 3374.181110]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3374.181540] RIP: 0033:0x7f5117aedb19
[ 3374.181861] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3374.183522] RSP: 002b:00007f5115063188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3374.184232] RAX: ffffffffffffffda RBX: 00007f5117c00f60 RCX: 00007f5117aedb19
[ 3374.184884] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000000a
[ 3374.185541] RBP: 00007f51150631d0 R08: 0000000000000000 R09: 0000000000000000
[ 3374.186180] R10: 000000007ffffff9 R11: 0000000000000246 R12: 0000000000000001
[ 3374.186826] R13: 00007ffc6010669f R14: 00007f5115063300 R15: 0000000000022000
[ 3374.215945] FAT-fs (loop7): Unrecognized mount option "./file1" or missing value
[ 3374.217132] FAULT_INJECTION: forcing a failure.
[ 3374.217132] name failslab, interval 1, probability 0, space 0, times 0
[ 3374.218169] CPU: 1 PID: 21440 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3374.218797] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3374.219512] Call Trace:
[ 3374.219743]  dump_stack+0x107/0x167
[ 3374.220054]  should_fail.cold+0x5/0xa
[ 3374.220379]  ? create_object.isra.0+0x3a/0xa20
[ 3374.220769]  should_failslab+0x5/0x20
[ 3374.221093]  kmem_cache_alloc+0x5b/0x310
[ 3374.221444]  ? percpu_ref_put_many.constprop.0+0x4e/0x110
[ 3374.221909]  create_object.isra.0+0x3a/0xa20
[ 3374.222294]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3374.222765]  kmem_cache_alloc+0x159/0x310
[ 3374.223126]  security_file_alloc+0x34/0x170
[ 3374.223552]  __alloc_file+0xb7/0x320
[ 3374.223867]  alloc_empty_file+0x6d/0x170
[ 3374.224211]  alloc_file+0x5e/0x5a0
[ 3374.224522]  alloc_file_pseudo+0x16a/0x250
[ 3374.224877]  ? alloc_file+0x5a0/0x5a0
[ 3374.225204]  ? shmem_get_inode+0x55c/0xbc0
[ 3374.225572]  __shmem_file_setup+0x144/0x320
[ 3374.225937]  ? _copy_from_user+0xfb/0x1b0
[ 3374.226288]  __do_sys_memfd_create+0x275/0x450
[ 3374.226674]  ? memfd_file_seals_ptr+0x170/0x170
[ 3374.227072]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3374.227558]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3374.227995]  do_syscall_64+0x33/0x40
[ 3374.228315]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3374.228745] RIP: 0033:0x7f71ab262b19
[ 3374.229062] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3374.230585] RSP: 002b:00007f71a87d7f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[ 3374.231235] RAX: ffffffffffffffda RBX: 0000000020000c00 RCX: 00007f71ab262b19
[ 3374.231865] RDX: 00007f71a87d8000 RSI: 0000000000000000 RDI: 00007f71ab2bc0fb
[ 3374.232493] RBP: 0000000000000000 R08: 00007f71a87d7ff8 R09: ffffffffffffffff
[ 3374.233101] R10: 00007f71a87d7ffc R11: 0000000000000246 R12: 0000000020000940
[ 3374.233710] R13: 0000000020000980 R14: 0000000000000000 R15: 0000000020000c80
[ 3374.440833] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3389.096213] FAULT_INJECTION: forcing a failure.
[ 3389.096213] name failslab, interval 1, probability 0, space 0, times 0
[ 3389.097307] CPU: 0 PID: 21450 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3389.097905] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3389.098603] Call Trace:
[ 3389.098839]  dump_stack+0x107/0x167
[ 3389.099153]  should_fail.cold+0x5/0xa
[ 3389.103588]  ? getname_flags.part.0+0x50/0x4f0
[ 3389.103982]  should_failslab+0x5/0x20
[ 3389.104308]  kmem_cache_alloc+0x5b/0x310
[ 3389.104656]  getname_flags.part.0+0x50/0x4f0
[ 3389.105031]  getname+0x8e/0xd0
[ 3389.105311]  do_sys_openat2+0xf9/0x4d0
[ 3389.105643]  ? build_open_flags+0x6f0/0x6f0
[ 3389.106010]  ? find_held_lock+0x2c/0x110
[ 3389.106370]  ? do_syscall_64+0x33/0x40
[ 3389.106739]  __x64_sys_openat+0x13f/0x1f0
[ 3389.107092]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3389.107527]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3389.107988]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3389.108457]  do_syscall_64+0x33/0x40
[ 3389.108791]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3389.109236] RIP: 0033:0x7f71ab215a04
[ 3389.109575] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3389.111155] RSP: 002b:00007f71a87d7ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3389.111857] RAX: ffffffffffffffda RBX: 00007f71ab2ac970 RCX: 00007f71ab215a04
[ 3389.112545] RDX: 0000000000000002 RSI: 00007f71a87d8000 RDI: 00000000ffffff9c
[ 3389.113192] RBP: 00007f71a87d8000 R08: 0000000000000000 R09: ffffffffffffffff
[ 3389.113862] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 3389.114508] R13: 0000000000000004 R14: 0000000020000c00 R15: 0000000000000000
08:52:12 executing program 7:
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [<r0=>0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x100}, 0x40000040)
ioctl$AUTOFS_IOC_EXPIRE(r0, 0x810c9365, &(0x7f0000000180)={{0x0, 0xa2b}, 0x100, './file0\x00'})
r1 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r1, 0x0, 0x7ffffffff000, 0x200000000000)

08:52:12 executing program 3:
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8901, &(0x7f0000001840)="fb")
r1 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
r2 = socket(0x29, 0x5, 0xf6)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r3=>r2, @out_args}, './file0\x00'})
sendfile(r0, r1, &(0x7f0000000040)=0x1, 0x6c9)
socket$inet6_udp(0xa, 0x2, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r4, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
renameat(r4, &(0x7f00000000c0)='./file0\x00', r3, &(0x7f0000000100)='./file0\x00')
r5 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r5, 0x0, 0x7ffffffff000, 0x806c54747f0000)

08:52:12 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8901, &(0x7f0000001840)="fb")
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x8901, &(0x7f0000001840)="fb")
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r3, 0x8901, &(0x7f0000001840)="fb")
syz_80211_inject_frame(&(0x7f0000000000)=@device_b, &(0x7f0000000100)=ANY=[@ANYRESDEC=r0, @ANYRES32=r1, @ANYRESHEX=r2, @ANYRES32=r2, @ANYBLOB="b195d73ecbd05e6ca9761da8cd19a1916f467b45a6f4f7b3d08f01f1e33617915d5d8b6dbd208f9f86a040715fc92ecf16018302127a31682b3921cee16e9b6227af867e5c20db01e4352e66789925addaaefbf95ebb36e196c4c63fd3eed5468db7825ec7a90be6b258d719603d9f70caf784759a169fd0394ac67aea74875d3e3583205391d9dd", @ANYRES16, @ANYRES64=r2, @ANYRES16, @ANYRESDEC=r0, @ANYRES16=r2, @ANYRESHEX, @ANYRESHEX=r3], 0x34)

08:52:12 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 14)

08:52:12 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00') (fail_nth: 8)

08:52:12 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x5100000000000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:52:12 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9) (fail_nth: 9)

08:52:12 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='pagemap\x00')
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r1, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r2=>r0, {0x5}}, './file0\x00'})
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r3, 0x8901, &(0x7f0000001840)="fb")
io_uring_register$IORING_REGISTER_FILES(r2, 0x2, &(0x7f0000000080)=[r3, r0, r0], 0x3)
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)

[ 3389.140832] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3389.149818] FAULT_INJECTION: forcing a failure.
[ 3389.149818] name failslab, interval 1, probability 0, space 0, times 0
[ 3389.150965] CPU: 0 PID: 21462 Comm: syz-executor.2 Not tainted 5.10.226 #1
[ 3389.151632] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3389.152400] Call Trace:
[ 3389.152673]  dump_stack+0x107/0x167
[ 3389.153044]  should_fail.cold+0x5/0xa
[ 3389.153423]  ? proc_thread_self_get_link+0x1a8/0x210
[ 3389.153938]  should_failslab+0x5/0x20
[ 3389.154320]  kmem_cache_alloc_trace+0x55/0x320
[ 3389.154772]  proc_thread_self_get_link+0x1a8/0x210
[ 3389.155246]  ? proc_setup_self+0x390/0x390
[ 3389.155688]  step_into+0x1595/0x1ce0
[ 3389.156063]  ? lookup_fast+0x6e0/0x6e0
[ 3389.156442]  ? try_to_unlazy_next+0x4f0/0x4f0
[ 3389.156911]  walk_component+0x171/0x6a0
[ 3389.157321]  ? trace_hardirqs_on+0x5b/0x180
[ 3389.157757]  ? handle_dots.part.0+0x15c0/0x15c0
[ 3389.158230]  ? security_inode_permission+0xcb/0x100
[ 3389.158736]  link_path_walk.part.0+0x699/0xbf0
[ 3389.159201]  ? walk_component+0x6a0/0x6a0
[ 3389.159612]  ? percpu_counter_add_batch+0x8b/0x140
[ 3389.160049]  path_openat+0x25d/0x2770
[ 3389.160387]  ? perf_trace_run_bpf_submit+0xf5/0x190
[ 3389.160866]  ? path_lookupat+0x860/0x860
[ 3389.161218]  ? perf_trace_lock+0x2bd/0x490
[ 3389.161586]  ? lock_acquire+0x197/0x470
[ 3389.161928]  ? find_held_lock+0x2c/0x110
[ 3389.162282]  ? __lockdep_reset_lock+0x180/0x180
[ 3389.162695]  do_filp_open+0x190/0x3e0
[ 3389.163023]  ? may_open_dev+0xf0/0xf0
[ 3389.163399]  ? rwlock_bug.part.0+0x90/0x90
[ 3389.163798]  ? _raw_spin_unlock+0x1a/0x30
[ 3389.164157]  ? alloc_fd+0x2e7/0x670
[ 3389.164495]  do_sys_openat2+0x171/0x4d0
[ 3389.164842]  ? build_open_flags+0x6f0/0x6f0
[ 3389.165211]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3389.165630]  ? wait_for_completion_io+0x270/0x270
[ 3389.166056]  __x64_sys_openat+0x13f/0x1f0
[ 3389.166416]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3389.166777]  ? ksys_write+0x1a9/0x260
[ 3389.167116]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3389.167879]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3389.168387]  do_syscall_64+0x33/0x40
[ 3389.168774]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3389.169262] RIP: 0033:0x7f98c45cca04
[ 3389.169630] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3389.171402] RSP: 002b:00007f98c1b8f060 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3389.172139] RAX: ffffffffffffffda RBX: 00007f98c472cf60 RCX: 00007f98c45cca04
[ 3389.172814] RDX: 0000000000000002 RSI: 00007f98c1b8f0f0 RDI: 00000000ffffff9c
[ 3389.173477] RBP: 00007f98c1b8f0f0 R08: 0000000000000000 R09: 00007f98c1b8ef70
[ 3389.174136] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 3389.174813] R13: 00007fff6ecaf52f R14: 00007f98c1b8f300 R15: 0000000000022000
08:52:12 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000)
readv(r0, &(0x7f00000000c0)=[{&(0x7f0000000000)=""/164, 0xa4}], 0x1)

08:52:12 executing program 6:
pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0x200000000000000)

[ 3389.266682] FAULT_INJECTION: forcing a failure.
[ 3389.266682] name failslab, interval 1, probability 0, space 0, times 0
[ 3389.267983] CPU: 0 PID: 21452 Comm: syz-executor.0 Not tainted 5.10.226 #1
[ 3389.268631] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3389.269403] Call Trace:
[ 3389.269678]  dump_stack+0x107/0x167
[ 3389.270033]  should_fail.cold+0x5/0xa
[ 3389.270404]  ? iter_file_splice_write+0x16d/0xc30
[ 3389.270879]  should_failslab+0x5/0x20
[ 3389.271250]  __kmalloc+0x72/0x390
[ 3389.271583]  iter_file_splice_write+0x16d/0xc30
[ 3389.272005]  ? atime_needs_update+0x600/0x600
[ 3389.272459]  ? __fsnotify_parent+0x47a/0xb10
[ 3389.272906]  ? generic_splice_sendpage+0x140/0x140
[ 3389.273382]  ? pipe_to_user+0x170/0x170
[ 3389.273789]  ? security_file_permission+0xb1/0xe0
[ 3389.274261]  ? generic_splice_sendpage+0x140/0x140
[ 3389.274767]  direct_splice_actor+0x10f/0x170
[ 3389.275216]  splice_direct_to_actor+0x387/0x980
[ 3389.279701]  ? pipe_to_sendpage+0x380/0x380
[ 3389.280115]  ? do_splice_to+0x160/0x160
[ 3389.280502]  ? security_file_permission+0xb1/0xe0
[ 3389.280968]  do_splice_direct+0x1c4/0x290
[ 3389.281366]  ? splice_direct_to_actor+0x980/0x980
[ 3389.281845]  ? avc_policy_seqno+0x9/0x70
[ 3389.282251]  ? security_file_permission+0xb1/0xe0
[ 3389.282734]  do_sendfile+0x553/0x11e0
[ 3389.283117]  ? do_pwritev+0x270/0x270
[ 3389.283507]  ? wait_for_completion_io+0x270/0x270
[ 3389.283984]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3389.284430]  ? vfs_write+0x354/0xb10
[ 3389.284803]  __x64_sys_sendfile64+0x1d1/0x210
[ 3389.285240]  ? __ia32_sys_sendfile+0x220/0x220
[ 3389.285689]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3389.286201]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3389.286698]  do_syscall_64+0x33/0x40
[ 3389.287063]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3389.287581] RIP: 0033:0x7f5117aedb19
[ 3389.287947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3389.289644] RSP: 002b:00007f5115063188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3389.290367] RAX: ffffffffffffffda RBX: 00007f5117c00f60 RCX: 00007f5117aedb19
[ 3389.291041] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000000a
[ 3389.291742] RBP: 00007f51150631d0 R08: 0000000000000000 R09: 0000000000000000
[ 3389.292412] R10: 000000007ffffff9 R11: 0000000000000246 R12: 0000000000000001
[ 3389.293094] R13: 00007ffc6010669f R14: 00007f5115063300 R15: 0000000000022000
08:52:12 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
fallocate(r1, 0x2, 0x200, 0x8)
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000)

08:52:12 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x5200000000000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:52:12 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9) (fail_nth: 10)

08:52:12 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 15)

08:52:12 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)
pipe(&(0x7f0000000040)={<r1=>0xffffffffffffffff})
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r3, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000080)={<r4=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r4, 0x3, r2, 0xa)
syz_open_procfs(r4, &(0x7f0000000080)='auxv\x00')
syz_genetlink_get_family_id$team(&(0x7f0000000000), r1)

08:52:12 executing program 6:
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000040)=<r0=>0x0)
syz_open_procfs(r0, &(0x7f0000000000)='net/rt_cache\x00')
r1 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x2, 0x1a, 0x1}, 0x18)
pread64(r1, 0x0, 0xfffffffffffffe3a, 0x8)

[ 3389.401772] FAULT_INJECTION: forcing a failure.
[ 3389.401772] name failslab, interval 1, probability 0, space 0, times 0
[ 3389.403220] CPU: 0 PID: 21488 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3389.403953] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3389.404734] Call Trace:
[ 3389.404996]  dump_stack+0x107/0x167
[ 3389.405356]  should_fail.cold+0x5/0xa
[ 3389.405734]  ? create_object.isra.0+0x3a/0xa20
[ 3389.406174]  should_failslab+0x5/0x20
[ 3389.406549]  kmem_cache_alloc+0x5b/0x310
[ 3389.406949]  create_object.isra.0+0x3a/0xa20
[ 3389.407379]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3389.411960]  kmem_cache_alloc+0x159/0x310
[ 3389.412363]  getname_flags.part.0+0x50/0x4f0
[ 3389.412791]  getname+0x8e/0xd0
[ 3389.413107]  do_sys_openat2+0xf9/0x4d0
[ 3389.413482]  ? build_open_flags+0x6f0/0x6f0
[ 3389.413901]  ? find_held_lock+0x2c/0x110
[ 3389.414305]  ? do_syscall_64+0x33/0x40
[ 3389.414688]  __x64_sys_openat+0x13f/0x1f0
[ 3389.415094]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3389.415545]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3389.416135]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3389.416734]  do_syscall_64+0x33/0x40
[ 3389.417168]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3389.417743] RIP: 0033:0x7f71ab215a04
[ 3389.418200] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3389.420322] RSP: 002b:00007f71a87d7ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3389.421122] RAX: ffffffffffffffda RBX: 00007f71ab2ac970 RCX: 00007f71ab215a04
[ 3389.421904] RDX: 0000000000000002 RSI: 00007f71a87d8000 RDI: 00000000ffffff9c
[ 3389.422733] RBP: 00007f71a87d8000 R08: 0000000000000000 R09: ffffffffffffffff
[ 3389.423549] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 3389.424325] R13: 0000000000000004 R14: 0000000020000c00 R15: 0000000000000000
08:52:12 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00') (fail_nth: 9)

[ 3389.448176] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:52:12 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000)
setsockopt$inet_buf(r0, 0x0, 0x3f, &(0x7f0000000000)="63cdcc8e6d94c1a26dbc2118ca1e67c09c398462f2c29d37692204230828d5ab5e00d9ff3db26b3fd4c0183c45860b1e82c8405f62e1e92615c7de9dbe0f697d516e6747e664ac62bdb5b6b91c56c8a8d3d8404e02f6de14d025c800fe8f5e8e852dd2022dc0dec77a74507adbc6789667235d778ccf645ac85fa261949a627b28750d0cf0fc4016c9c751192213d41da0c494a3a1fbc17afd1a80aa9b7b2882049cdd1af14f0fbdb3ea2e26036fbc3b4715db4c9c5bb2639e23e18d73a1f44cf5870ce556f4f0ce02c407851866e325ee0c", 0xd2)

[ 3389.477870] FAULT_INJECTION: forcing a failure.
[ 3389.477870] name failslab, interval 1, probability 0, space 0, times 0
[ 3389.478922] CPU: 1 PID: 21499 Comm: syz-executor.2 Not tainted 5.10.226 #1
[ 3389.479600] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3389.480380] Call Trace:
[ 3389.480648]  dump_stack+0x107/0x167
[ 3389.481009]  should_fail.cold+0x5/0xa
[ 3389.481428]  ? find_held_lock+0x2c/0x110
[ 3389.481831]  ? create_object.isra.0+0x3a/0xa20
[ 3389.482305]  should_failslab+0x5/0x20
[ 3389.482666]  kmem_cache_alloc+0x5b/0x310
[ 3389.483078]  ? __task_pid_nr_ns+0x16a/0x4f0
[ 3389.483580]  create_object.isra.0+0x3a/0xa20
[ 3389.483967]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3389.484408]  kmem_cache_alloc_trace+0x151/0x320
[ 3389.484806]  proc_thread_self_get_link+0x1a8/0x210
[ 3389.485219]  ? proc_setup_self+0x390/0x390
[ 3389.485572]  step_into+0x1595/0x1ce0
[ 3389.485893]  ? lookup_fast+0x6e0/0x6e0
[ 3389.486267]  ? try_to_unlazy_next+0x4f0/0x4f0
[ 3389.486656]  walk_component+0x171/0x6a0
[ 3389.487003]  ? trace_hardirqs_on+0x5b/0x180
[ 3389.487397]  ? handle_dots.part.0+0x15c0/0x15c0
[ 3389.487903]  ? security_inode_permission+0xcb/0x100
[ 3389.488390]  link_path_walk.part.0+0x699/0xbf0
[ 3389.488840]  ? walk_component+0x6a0/0x6a0
[ 3389.489250]  ? percpu_counter_add_batch+0x8b/0x140
[ 3389.489735]  path_openat+0x25d/0x2770
[ 3389.490122]  ? path_lookupat+0x860/0x860
[ 3389.490522]  ? perf_trace_lock+0xac/0x490
[ 3389.490925]  ? lock_acquire+0x197/0x470
[ 3389.491310]  ? find_held_lock+0x2c/0x110
[ 3389.492058]  ? __lockdep_reset_lock+0x180/0x180
[ 3389.492866]  do_filp_open+0x190/0x3e0
[ 3389.493512]  ? may_open_dev+0xf0/0xf0
[ 3389.494167]  ? rwlock_bug.part.0+0x90/0x90
[ 3389.494888]  ? _raw_spin_unlock+0x1a/0x30
[ 3389.495590]  ? alloc_fd+0x2e7/0x670
[ 3389.495952]  do_sys_openat2+0x171/0x4d0
[ 3389.496348]  ? build_open_flags+0x6f0/0x6f0
[ 3389.496772]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3389.497254]  ? wait_for_completion_io+0x270/0x270
[ 3389.497730]  __x64_sys_openat+0x13f/0x1f0
[ 3389.498133]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3389.498546]  ? ksys_write+0x1a9/0x260
[ 3389.498924]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3389.499521]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3389.499960]  do_syscall_64+0x33/0x40
[ 3389.500284]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3389.500721] RIP: 0033:0x7f98c45cca04
[ 3389.501041] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3389.502565] RSP: 002b:00007f98c1b8f060 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3389.503207] RAX: ffffffffffffffda RBX: 00007f98c472cf60 RCX: 00007f98c45cca04
[ 3389.504846] RDX: 0000000000000002 RSI: 00007f98c1b8f0f0 RDI: 00000000ffffff9c
[ 3389.506837] RBP: 00007f98c1b8f0f0 R08: 0000000000000000 R09: 00007f98c1b8ef70
[ 3389.508392] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 3389.509683] R13: 00007fff6ecaf52f R14: 00007f98c1b8f300 R15: 0000000000022000
08:52:12 executing program 5:
ioctl$CDROMMULTISESSION(0xffffffffffffffff, 0x5310, &(0x7f0000000140)={@msf={0xbf, 0x80, 0x5}, 0x1})
fallocate(0xffffffffffffffff, 0x20, 0x8, 0xfffffffffffffe00)
getsockopt$IP6T_SO_GET_REVISION_MATCH(0xffffffffffffffff, 0x29, 0x44, &(0x7f0000000000)={'TPROXY\x00'}, &(0x7f0000000a00)=0x1e)
syz_80211_inject_frame(&(0x7f0000000040), &(0x7f0000000180)=ANY=[@ANYRESHEX, @ANYRESHEX=0x0], 0x34)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r0, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
ioctl$CDROM_SEND_PACKET(r0, 0x5393, &(0x7f0000000b40)={"b483eb5d353242534864717b", &(0x7f0000000a40)="78f27051cd5388df2305caa6885264ef9ed0a453585fa18ae4e0a1e2db2577492919b429a3e7f18265c247a30609196c94fd2ffff44d859734b3f02209131230d4c2d686e6973d", 0x47, 0x90, &(0x7f0000000ac0)={0x5, 0x0, 0x9, 0x7, 0x0, 0x0, 0x0, "cd278afe", 0x4, "b32186d5", 0x2, 0xa, 0x5, "314ebc", "eb1d866110385868444f59fb77c21445acd02e02c617919bfddb9ea65b403753e11d1865fcd7edc837c2dd9923ba"}, 0x1, 0x2, 0x101, &(0x7f0000000b00)})
syz_80211_inject_frame(&(0x7f0000000080)=@broadcast, &(0x7f00000000c0)=ANY=[@ANYBLOB="84006d00a1cd63e145995142110000010770006020004808645dd09a24d40000130862a9eaddb25e6b6900100202a22768fb2c5bad43007009088a820e25f199002044099b92e572512751800040120034198cae4ada64dd00200f047553f31ebf23b75c"], 0x66)
ioctl$DVD_WRITE_STRUCT(0xffffffffffffffff, 0x5390, &(0x7f00000001c0)=@type=0x1)

[ 3389.557747] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3389.558268] FAULT_INJECTION: forcing a failure.
[ 3389.558268] name failslab, interval 1, probability 0, space 0, times 0
[ 3389.561138] CPU: 1 PID: 21490 Comm: syz-executor.0 Not tainted 5.10.226 #1
[ 3389.561816] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3389.562600] Call Trace:
[ 3389.562867]  dump_stack+0x107/0x167
[ 3389.563220]  should_fail.cold+0x5/0xa
[ 3389.563847]  ? create_object.isra.0+0x3a/0xa20
[ 3389.564640]  should_failslab+0x5/0x20
[ 3389.565215] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3389.565324]  kmem_cache_alloc+0x5b/0x310
[ 3389.565346]  ? igrab+0xc0/0xc0
[ 3389.567573]  create_object.isra.0+0x3a/0xa20
[ 3389.567997]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3389.568515]  __kmalloc+0x16e/0x390
[ 3389.568863]  iter_file_splice_write+0x16d/0xc30
[ 3389.569300]  ? atime_needs_update+0x600/0x600
[ 3389.569743]  ? __fsnotify_parent+0x47a/0xb10
[ 3389.570206]  ? generic_splice_sendpage+0x140/0x140
[ 3389.570684]  ? pipe_to_user+0x170/0x170
[ 3389.571081]  ? security_file_permission+0xb1/0xe0
[ 3389.571583]  ? generic_splice_sendpage+0x140/0x140
[ 3389.572007]  direct_splice_actor+0x10f/0x170
[ 3389.572430]  splice_direct_to_actor+0x387/0x980
[ 3389.572830]  ? pipe_to_sendpage+0x380/0x380
[ 3389.573222]  ? do_splice_to+0x160/0x160
[ 3389.573569]  ? security_file_permission+0xb1/0xe0
[ 3389.573978]  do_splice_direct+0x1c4/0x290
[ 3389.574366]  ? splice_direct_to_actor+0x980/0x980
[ 3389.574786]  ? avc_policy_seqno+0x9/0x70
[ 3389.575141]  ? security_file_permission+0xb1/0xe0
[ 3389.575633]  do_sendfile+0x553/0x11e0
[ 3389.576009]  ? do_pwritev+0x270/0x270
[ 3389.576385]  ? wait_for_completion_io+0x270/0x270
[ 3389.576853]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3389.577304]  ? vfs_write+0x354/0xb10
[ 3389.577695]  __x64_sys_sendfile64+0x1d1/0x210
[ 3389.578129]  ? __ia32_sys_sendfile+0x220/0x220
[ 3389.578600]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3389.579097]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3389.579677]  do_syscall_64+0x33/0x40
[ 3389.579998]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3389.580433] RIP: 0033:0x7f5117aedb19
[ 3389.580754] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3389.582304] RSP: 002b:00007f5115063188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3389.582973] RAX: ffffffffffffffda RBX: 00007f5117c00f60 RCX: 00007f5117aedb19
[ 3389.583995] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000000a
[ 3389.585489] RBP: 00007f51150631d0 R08: 0000000000000000 R09: 0000000000000000
[ 3389.586904] R10: 000000007ffffff9 R11: 0000000000000246 R12: 0000000000000002
[ 3389.587882] R13: 00007ffc6010669f R14: 00007f5115063300 R15: 0000000000022000
[ 3389.873130] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3389.875620] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:52:27 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x5300000000000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

[ 3404.341199] FAULT_INJECTION: forcing a failure.
[ 3404.341199] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 3404.342353] CPU: 1 PID: 21525 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3404.343001] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3404.343813] Call Trace:
[ 3404.344049]  dump_stack+0x107/0x167
[ 3404.344360]  should_fail.cold+0x5/0xa
[ 3404.344687]  strncpy_from_user+0x34/0x470
[ 3404.345041]  getname_flags.part.0+0x95/0x4f0
[ 3404.345412]  getname+0x8e/0xd0
[ 3404.345686]  do_sys_openat2+0xf9/0x4d0
[ 3404.346016]  ? build_open_flags+0x6f0/0x6f0
[ 3404.346388]  ? find_held_lock+0x2c/0x110
[ 3404.346736]  ? do_syscall_64+0x33/0x40
[ 3404.347071]  __x64_sys_openat+0x13f/0x1f0
[ 3404.347420]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3404.347837]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3404.348346]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3404.348832]  do_syscall_64+0x33/0x40
[ 3404.349177]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3404.349662] RIP: 0033:0x7f71ab215a04
[ 3404.350018] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3404.351785] RSP: 002b:00007f71a87d7ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3404.352428] RAX: ffffffffffffffda RBX: 00007f71ab2ac970 RCX: 00007f71ab215a04
[ 3404.353021] RDX: 0000000000000002 RSI: 00007f71a87d8000 RDI: 00000000ffffff9c
[ 3404.353658] RBP: 00007f71a87d8000 R08: 0000000000000000 R09: ffffffffffffffff
[ 3404.354282] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 3404.354875] R13: 0000000000000004 R14: 0000000020000c00 R15: 0000000000000000
08:52:27 executing program 3:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)

08:52:27 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r0, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r3=>0x0})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)={0x40, r4, 0x5, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r5}, @val={0xc}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x3f}]]}, 0x40}}, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_CONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)={0x40, r7, 0x5, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r8}, @val={0xc}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x3f}]]}, 0x40}}, 0x0)
sendmsg$NL80211_CMD_PROBE_MESH_LINK(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0x58, r4, 0x800, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r8}, @val={0xc, 0x99, {0x0, 0xe}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_FRAME={0x23, 0x33, @mgmt_frame=@action_no_ack={@with_ht={{{0x0, 0x0, 0xe, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, {0x6115}, @broadcast, @broadcast, @initial, {0x4, 0x7}}, @ver_80211n={0x0, 0xd47, 0x2, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1}}, @vht_op_mode_ntf={0x15, 0x2, {0x1, 0x1, 0x0, 0x0, 0x1}}}}]}, 0x58}, 0x1, 0x0, 0x0, 0x48000}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)={0x40, r2, 0x5, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r3}, @val={0xc}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x3f}]]}, 0x40}}, 0x0)
sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x38, r2, 0x200, 0x70bd27, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x41}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x57}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x71}]}, 0x38}, 0x1, 0x0, 0x0, 0x4850}, 0x8000)
r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r9, 0x8901, &(0x7f0000001840)="fb")
r10 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r10, 0x8901, &(0x7f0000001840)="fb")
syz_80211_inject_frame(&(0x7f0000000040)=@device_a={0x3}, &(0x7f0000000080)=ANY=[@ANYRES16=r9, @ANYRES32, @ANYRES32, @ANYRESDEC=r9, @ANYRESHEX=r10, @ANYRES16, @ANYRESHEX=r9], 0x34)

08:52:27 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 16)

08:52:27 executing program 7:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r1, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000080)={<r2=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r2, 0x3, r0, 0xa)
r3 = getpgrp(r2)
r4 = syz_open_procfs(r3, &(0x7f0000000000)='net/udplite6\x00')
r5 = openat$cgroup_devices(r1, &(0x7f00000000c0)='devices.allow\x00', 0x2, 0x0)
r6 = syz_open_procfs(r2, &(0x7f0000000100)='children\x00')
dup2(r5, r6)
pread64(r4, 0x0, 0x7ffffffff000, 0x200000000000)

08:52:27 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9) (fail_nth: 11)

08:52:27 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00') (fail_nth: 10)

08:52:27 executing program 6:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8901, &(0x7f0000001840)="fb")
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000100))
r1 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
openat$incfs(r1, &(0x7f00000000c0)='.pending_reads\x00', 0x80, 0x28)
pread64(r1, 0x0, 0xfffffec1, 0x1)
pread64(r1, &(0x7f0000000000)=""/172, 0xac, 0xfffffffffffffffc)

[ 3404.386489] FAULT_INJECTION: forcing a failure.
[ 3404.386489] name failslab, interval 1, probability 0, space 0, times 0
[ 3404.387481] CPU: 0 PID: 21527 Comm: syz-executor.2 Not tainted 5.10.226 #1
[ 3404.388143] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3404.388896] Call Trace:
[ 3404.389194]  dump_stack+0x107/0x167
[ 3404.389533]  should_fail.cold+0x5/0xa
[ 3404.389897]  ? __d_alloc+0x2a/0x990
[ 3404.390030] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3404.390250]  should_failslab+0x5/0x20
[ 3404.391429]  kmem_cache_alloc+0x5b/0x310
[ 3404.391827]  __d_alloc+0x2a/0x990
[ 3404.392131]  ? perf_trace_run_bpf_submit+0xf5/0x190
[ 3404.392611]  d_alloc_parallel+0x111/0x1bc0
[ 3404.393007]  ? __d_lookup_rcu+0x6d0/0x6d0
[ 3404.393366]  ? lock_acquire+0x197/0x470
[ 3404.393705]  ? find_held_lock+0x2c/0x110
[ 3404.394056]  ? lockdep_init_map_type+0x2c7/0x780
[ 3404.394463]  ? lockdep_init_map_type+0x2c7/0x780
[ 3404.394881]  __lookup_slow+0x193/0x490
[ 3404.395218]  ? lookup_open.isra.0+0x1270/0x1270
[ 3404.395693]  ? selinux_inode_permission+0x401/0x640
[ 3404.396185]  ? selinux_path_notify+0x4d0/0x4d0
[ 3404.396619]  walk_component+0x41e/0x6a0
[ 3404.396990]  ? handle_dots.part.0+0x15c0/0x15c0
[ 3404.397442]  ? security_inode_permission+0xcb/0x100
[ 3404.397943]  link_path_walk.part.0+0x699/0xbf0
[ 3404.398383]  ? walk_component+0x6a0/0x6a0
[ 3404.398762]  ? percpu_counter_add_batch+0x8b/0x140
[ 3404.399250]  path_openat+0x25d/0x2770
[ 3404.399676]  ? perf_trace_run_bpf_submit+0xf5/0x190
[ 3404.400145]  ? path_lookupat+0x860/0x860
[ 3404.400521]  ? perf_trace_lock+0x2bd/0x490
[ 3404.400928]  ? lock_acquire+0x197/0x470
[ 3404.401325]  ? find_held_lock+0x2c/0x110
[ 3404.401718]  ? __lockdep_reset_lock+0x180/0x180
[ 3404.402181]  do_filp_open+0x190/0x3e0
[ 3404.402538]  ? may_open_dev+0xf0/0xf0
[ 3404.402915]  ? simple_attr_release+0x50/0x50
[ 3404.403376]  ? _raw_spin_unlock+0x1a/0x30
[ 3404.407793]  ? alloc_fd+0x2e7/0x670
[ 3404.408152]  do_sys_openat2+0x171/0x4d0
[ 3404.408539]  ? build_open_flags+0x6f0/0x6f0
[ 3404.408963]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3404.409441]  ? wait_for_completion_io+0x270/0x270
[ 3404.409929]  __x64_sys_openat+0x13f/0x1f0
[ 3404.410384]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3404.410800]  ? ksys_write+0x1a9/0x260
[ 3404.411215]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3404.411744]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3404.412257]  do_syscall_64+0x33/0x40
[ 3404.412625]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3404.413122] RIP: 0033:0x7f98c45cca04
[ 3404.413480] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3404.415118] RSP: 002b:00007f98c1b8f060 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3404.415835] RAX: ffffffffffffffda RBX: 00007f98c472cf60 RCX: 00007f98c45cca04
[ 3404.416434] RDX: 0000000000000002 RSI: 00007f98c1b8f0f0 RDI: 00000000ffffff9c
[ 3404.417031] RBP: 00007f98c1b8f0f0 R08: 0000000000000000 R09: 00007f98c1b8ef70
[ 3404.417628] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 3404.418238] R13: 00007fff6ecaf52f R14: 00007f98c1b8f300 R15: 0000000000022000
08:52:27 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 17)

08:52:27 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x5400000000000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

[ 3404.483903] FAULT_INJECTION: forcing a failure.
[ 3404.483903] name failslab, interval 1, probability 0, space 0, times 0
[ 3404.484939] CPU: 1 PID: 21539 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3404.485521] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3404.486212] Call Trace:
[ 3404.486446]  dump_stack+0x107/0x167
[ 3404.486757]  should_fail.cold+0x5/0xa
[ 3404.487084]  ? __alloc_file+0x21/0x320
[ 3404.487415]  ? __alloc_file+0x21/0x320
[ 3404.487808]  should_failslab+0x5/0x20
[ 3404.488190]  kmem_cache_alloc+0x5b/0x310
[ 3404.488623]  __alloc_file+0x21/0x320
[ 3404.488986]  alloc_empty_file+0x6d/0x170
[ 3404.489372]  path_openat+0xe6/0x2770
[ 3404.489727]  ? __lock_acquire+0x1657/0x5b00
[ 3404.490148]  ? path_lookupat+0x860/0x860
[ 3404.490538]  ? perf_trace_lock+0xac/0x490
[ 3404.490921]  ? lock_acquire+0x197/0x470
[ 3404.491295]  ? find_held_lock+0x2c/0x110
[ 3404.491748]  ? __lockdep_reset_lock+0x180/0x180
[ 3404.492148]  do_filp_open+0x190/0x3e0
[ 3404.492502]  ? may_open_dev+0xf0/0xf0
[ 3404.492827]  ? alloc_fd+0x2e7/0x670
[ 3404.493135]  ? lock_downgrade+0x6d0/0x6d0
[ 3404.493492]  ? do_raw_spin_lock+0x121/0x260
[ 3404.493856]  ? rwlock_bug.part.0+0x90/0x90
[ 3404.494219]  ? _raw_spin_unlock+0x1a/0x30
[ 3404.494619]  ? alloc_fd+0x2e7/0x670
[ 3404.494936]  do_sys_openat2+0x171/0x4d0
[ 3404.495275]  ? build_open_flags+0x6f0/0x6f0
[ 3404.495677]  ? find_held_lock+0x2c/0x110
[ 3404.496071]  ? do_syscall_64+0x33/0x40
[ 3404.496452]  __x64_sys_openat+0x13f/0x1f0
[ 3404.496850]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3404.497259]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3404.497756]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3404.498242]  do_syscall_64+0x33/0x40
[ 3404.498604]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3404.499089] RIP: 0033:0x7f71ab215a04
[ 3404.499453] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3404.501047] RSP: 002b:00007f71a87d7ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3404.501685] RAX: ffffffffffffffda RBX: 00007f71ab2ac970 RCX: 00007f71ab215a04
[ 3404.502287] RDX: 0000000000000002 RSI: 00007f71a87d8000 RDI: 00000000ffffff9c
[ 3404.502882] RBP: 00007f71a87d8000 R08: 0000000000000000 R09: ffffffffffffffff
[ 3404.503511] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 3404.504204] R13: 0000000000000004 R14: 0000000020000c00 R15: 0000000000000000
08:52:27 executing program 7:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r1, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000080)={<r2=>0x0}, &(0x7f00000003c0)=0xc)
r3 = perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r2, 0x3, r0, 0xa)
r4 = syz_open_procfs(r2, &(0x7f00000005c0)='pagemap\x00')
close_range(r1, r3, 0x0)
pread64(r4, 0x0, 0x7ffffffff000, 0x200000000000)

[ 3404.519811] FAULT_INJECTION: forcing a failure.
[ 3404.519811] name failslab, interval 1, probability 0, space 0, times 0
[ 3404.520918] CPU: 0 PID: 21524 Comm: syz-executor.0 Not tainted 5.10.226 #1
[ 3404.521557] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3404.522329] Call Trace:
[ 3404.522630]  dump_stack+0x107/0x167
[ 3404.522988]  should_fail.cold+0x5/0xa
[ 3404.523355]  ? __blkdev_direct_IO_simple+0x222/0x930
[ 3404.523846]  should_failslab+0x5/0x20
[ 3404.524171]  __kmalloc+0x72/0x390
[ 3404.524470]  ? iov_iter_alignment+0x1b1/0x810
[ 3404.524852]  __blkdev_direct_IO_simple+0x222/0x930
[ 3404.525270]  ? bd_link_disk_holder+0x710/0x710
[ 3404.525662]  ? perf_trace_lock+0xac/0x490
[ 3404.526012]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3404.526450]  ? __lock_acquire+0xbb1/0x5b00
[ 3404.526819]  ? __lockdep_reset_lock+0x180/0x180
[ 3404.527213]  ? invalidate_inode_pages2_range+0xa19/0xc50
[ 3404.527707]  ? find_held_lock+0x2c/0x110
[ 3404.528073]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 3404.528625]  ? current_time+0x72/0x2c0
[ 3404.528979]  ? iov_iter_npages+0x1fd/0xa70
[ 3404.529367]  blkdev_direct_IO+0xb35/0x12a0
[ 3404.529757]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3404.530239]  ? ktime_get_coarse_real_ts64+0x15a/0x190
[ 3404.530715]  ? trace_hardirqs_on+0x5b/0x180
[ 3404.531113]  ? ktime_get_coarse_real_ts64+0x15a/0x190
[ 3404.531607]  ? ktime_get_coarse_real_ts64+0xfd/0x190
[ 3404.532082]  ? bd_prepare_to_claim+0x290/0x290
[ 3404.532517]  ? __mark_inode_dirty+0x12e/0xd40
[ 3404.532942]  ? generic_update_time+0x21c/0x370
[ 3404.533365]  ? filemap_check_errors+0xa5/0x150
[ 3404.533807]  generic_file_direct_write+0x20e/0x560
[ 3404.534276]  __generic_file_write_iter+0x235/0x5d0
[ 3404.534785]  blkdev_write_iter+0x298/0x550
[ 3404.535189]  ? bd_unlink_disk_holder+0x3f0/0x3f0
[ 3404.535656]  ? direct_splice_actor+0x10f/0x170
[ 3404.536043]  ? splice_direct_to_actor+0x387/0x980
[ 3404.536450]  ? do_splice_direct+0x1c4/0x290
[ 3404.536814]  ? do_sendfile+0x553/0x11e0
[ 3404.537149]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 3404.537538]  ? do_syscall_64+0x33/0x40
[ 3404.537866]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3404.538316]  do_iter_readv_writev+0x476/0x750
[ 3404.538705]  ? new_sync_write+0x660/0x660
[ 3404.539057]  ? avc_policy_seqno+0x9/0x70
[ 3404.539402]  ? selinux_file_permission+0x92/0x520
[ 3404.539866]  ? security_file_permission+0xb1/0xe0
[ 3404.540324]  do_iter_write+0x191/0x700
[ 3404.540687]  ? trace_hardirqs_on+0x5b/0x180
[ 3404.541098]  vfs_iter_write+0x70/0xa0
[ 3404.541467]  iter_file_splice_write+0x762/0xc30
[ 3404.541919]  ? generic_splice_sendpage+0x140/0x140
[ 3404.542404]  ? security_file_permission+0xb1/0xe0
[ 3404.542871]  ? generic_splice_sendpage+0x140/0x140
[ 3404.543344]  direct_splice_actor+0x10f/0x170
[ 3404.543782]  splice_direct_to_actor+0x387/0x980
[ 3404.544227]  ? pipe_to_sendpage+0x380/0x380
[ 3404.544646]  ? do_splice_to+0x160/0x160
[ 3404.545028]  ? security_file_permission+0xb1/0xe0
[ 3404.545491]  do_splice_direct+0x1c4/0x290
[ 3404.545890]  ? splice_direct_to_actor+0x980/0x980
[ 3404.546344]  ? avc_policy_seqno+0x9/0x70
[ 3404.546750]  ? security_file_permission+0xb1/0xe0
[ 3404.547221]  do_sendfile+0x553/0x11e0
[ 3404.547610]  ? do_pwritev+0x270/0x270
[ 3404.547939]  ? wait_for_completion_io+0x270/0x270
[ 3404.548346]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3404.548734]  ? vfs_write+0x354/0xb10
[ 3404.549054]  __x64_sys_sendfile64+0x1d1/0x210
[ 3404.549432]  ? __ia32_sys_sendfile+0x220/0x220
[ 3404.549819]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3404.550258]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3404.550699]  do_syscall_64+0x33/0x40
[ 3404.551016]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3404.551470] RIP: 0033:0x7f5117aedb19
[ 3404.551836] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3404.553492] RSP: 002b:00007f5115063188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3404.554171] RAX: ffffffffffffffda RBX: 00007f5117c00f60 RCX: 00007f5117aedb19
[ 3404.554859] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000000a
[ 3404.555542] RBP: 00007f51150631d0 R08: 0000000000000000 R09: 0000000000000000
[ 3404.556170] R10: 000000007ffffff9 R11: 0000000000000246 R12: 0000000000000002
[ 3404.556765] R13: 00007ffc6010669f R14: 00007f5115063300 R15: 0000000000022000
[ 3411.211838] Bluetooth: hci2: command 0x0406 tx timeout
08:52:42 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 18)

08:52:42 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000)
ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r0, 0x408c5333, &(0x7f0000000000)={0x4, 0x1, 0x0, 'queue1\x00', 0x6})

08:52:42 executing program 5:
syz_80211_inject_frame(&(0x7f0000000000)=@device_b, &(0x7f0000000080)=ANY=[@ANYRESDEC, @ANYRES32=0x0], 0x34)
syz_80211_inject_frame(&(0x7f0000000040)=@device_b, &(0x7f00000000c0)=@mgmt_frame=@action_no_ack={@with_ht={{{0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1}, {0x3}, @broadcast, @broadcast, @from_mac=@device_b, {0x8, 0x40}}, @ver_80211n={0x0, 0x40, 0x1, 0x3, 0x0, 0x0, 0x0, 0x0, 0x1}}, @sp_mp_close={0xf, 0x3, {{0x72, 0x6}, {0x75, 0x6, {0x1, 0x1f, @void, @val=0xa, @void}}}}}, 0x2e)

08:52:42 executing program 6:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/xfrm_stat\x00')
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
syz_open_procfs(0x0, &(0x7f00000001c0)='net/wireless\x00')
socket$nl_generic(0x10, 0x3, 0x10)
readv(0xffffffffffffffff, &(0x7f0000000180), 0x0)
r2 = openat$cgroup_ro(r0, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x0, 0x0)
pread64(r2, 0x0, 0x0, 0xb)

08:52:42 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x5500000000000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:52:42 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00') (fail_nth: 11)

08:52:42 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9) (fail_nth: 12)

08:52:42 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x400448e0, &(0x7f0000000040)="bc87ff2b0a55fb")
copy_file_range(0xffffffffffffffff, 0x0, r1, &(0x7f0000000000)=0xffffffff, 0x6, 0x0)

[ 3419.073372] FAULT_INJECTION: forcing a failure.
[ 3419.073372] name failslab, interval 1, probability 0, space 0, times 0
[ 3419.074836] CPU: 0 PID: 21562 Comm: syz-executor.2 Not tainted 5.10.226 #1
[ 3419.075639] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3419.076627] Call Trace:
[ 3419.076977]  dump_stack+0x107/0x167
[ 3419.077429]  should_fail.cold+0x5/0xa
[ 3419.077875] FAULT_INJECTION: forcing a failure.
[ 3419.077875] name failslab, interval 1, probability 0, space 0, times 0
[ 3419.077915]  ? create_object.isra.0+0x3a/0xa20
[ 3419.079614]  should_failslab+0x5/0x20
[ 3419.080476]  kmem_cache_alloc+0x5b/0x310
[ 3419.081322]  create_object.isra.0+0x3a/0xa20
[ 3419.082186]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3419.083187]  kmem_cache_alloc+0x159/0x310
[ 3419.084067]  __d_alloc+0x2a/0x990
[ 3419.084780]  ? perf_trace_run_bpf_submit+0xf5/0x190
[ 3419.085781]  d_alloc_parallel+0x111/0x1bc0
[ 3419.086674]  ? __d_lookup_rcu+0x6d0/0x6d0
[ 3419.087504]  ? lock_acquire+0x197/0x470
[ 3419.088034]  ? find_held_lock+0x2c/0x110
[ 3419.088418]  ? lockdep_init_map_type+0x2c7/0x780
[ 3419.088871]  ? lockdep_init_map_type+0x2c7/0x780
[ 3419.089306]  __lookup_slow+0x193/0x490
[ 3419.089671]  ? lookup_open.isra.0+0x1270/0x1270
[ 3419.090159]  ? selinux_inode_permission+0x401/0x640
[ 3419.090639]  ? selinux_path_notify+0x4d0/0x4d0
[ 3419.091080]  walk_component+0x41e/0x6a0
[ 3419.091452]  ? handle_dots.part.0+0x15c0/0x15c0
[ 3419.092145]  ? security_inode_permission+0xcb/0x100
[ 3419.093165]  link_path_walk.part.0+0x699/0xbf0
[ 3419.094104]  ? walk_component+0x6a0/0x6a0
[ 3419.094908]  ? percpu_counter_add_batch+0x8b/0x140
[ 3419.095844]  path_openat+0x25d/0x2770
[ 3419.096268]  ? perf_trace_run_bpf_submit+0xf5/0x190
[ 3419.096771]  ? path_lookupat+0x860/0x860
[ 3419.097151]  ? perf_trace_lock+0x2bd/0x490
[ 3419.097561]  ? lock_acquire+0x197/0x470
[ 3419.097948]  ? find_held_lock+0x2c/0x110
[ 3419.098341]  ? __lockdep_reset_lock+0x180/0x180
[ 3419.098789]  do_filp_open+0x190/0x3e0
[ 3419.099149]  ? may_open_dev+0xf0/0xf0
[ 3419.099530]  ? simple_attr_release+0x50/0x50
[ 3419.100086]  ? _raw_spin_unlock+0x1a/0x30
[ 3419.100482]  ? alloc_fd+0x2e7/0x670
[ 3419.100854]  do_sys_openat2+0x171/0x4d0
[ 3419.101247]  ? build_open_flags+0x6f0/0x6f0
[ 3419.101656]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3419.102086]  ? wait_for_completion_io+0x270/0x270
[ 3419.102516]  __x64_sys_openat+0x13f/0x1f0
[ 3419.102887]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3419.103291]  ? ksys_write+0x1a9/0x260
[ 3419.103679]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3419.105109]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3419.106515]  do_syscall_64+0x33/0x40
[ 3419.107530]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3419.108786] RIP: 0033:0x7f98c45cca04
[ 3419.109641] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3419.113545] RSP: 002b:00007f98c1b8f060 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3419.115069] RAX: ffffffffffffffda RBX: 00007f98c472cf60 RCX: 00007f98c45cca04
[ 3419.116183] RDX: 0000000000000002 RSI: 00007f98c1b8f0f0 RDI: 00000000ffffff9c
[ 3419.116859] RBP: 00007f98c1b8f0f0 R08: 0000000000000000 R09: 00007f98c1b8ef70
[ 3419.117539] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 3419.118257] R13: 00007fff6ecaf52f R14: 00007f98c1b8f300 R15: 0000000000022000
[ 3419.118998] CPU: 1 PID: 21557 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3419.119597] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3419.120376] Call Trace:
[ 3419.120638]  dump_stack+0x107/0x167
[ 3419.120992]  should_fail.cold+0x5/0xa
[ 3419.121370]  ? create_object.isra.0+0x3a/0xa20
[ 3419.121804]  should_failslab+0x5/0x20
[ 3419.122190]  kmem_cache_alloc+0x5b/0x310
[ 3419.122579]  create_object.isra.0+0x3a/0xa20
[ 3419.123002]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3419.123485]  kmem_cache_alloc+0x159/0x310
[ 3419.123920]  __alloc_file+0x21/0x320
[ 3419.124248]  alloc_empty_file+0x6d/0x170
[ 3419.124594]  path_openat+0xe6/0x2770
[ 3419.124912]  ? __lock_acquire+0x1657/0x5b00
[ 3419.125283]  ? path_lookupat+0x860/0x860
[ 3419.125625]  ? perf_trace_lock+0xac/0x490
[ 3419.125972]  ? lock_acquire+0x197/0x470
[ 3419.126305]  ? find_held_lock+0x2c/0x110
[ 3419.126648]  ? __lockdep_reset_lock+0x180/0x180
[ 3419.127047]  do_filp_open+0x190/0x3e0
[ 3419.127366]  ? may_open_dev+0xf0/0xf0
[ 3419.127690]  ? alloc_fd+0x2e7/0x670
[ 3419.128094]  ? lock_downgrade+0x6d0/0x6d0
[ 3419.128502]  ? do_raw_spin_lock+0x121/0x260
[ 3419.128914]  ? rwlock_bug.part.0+0x90/0x90
[ 3419.129322]  ? _raw_spin_unlock+0x1a/0x30
[ 3419.129705]  ? alloc_fd+0x2e7/0x670
[ 3419.130062]  do_sys_openat2+0x171/0x4d0
[ 3419.130436]  ? build_open_flags+0x6f0/0x6f0
[ 3419.130844]  ? find_held_lock+0x2c/0x110
[ 3419.131284]  ? do_syscall_64+0x33/0x40
[ 3419.131664]  __x64_sys_openat+0x13f/0x1f0
[ 3419.132079]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3419.132443]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3419.132883]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3419.133316]  do_syscall_64+0x33/0x40
[ 3419.133631]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3419.134058] RIP: 0033:0x7f71ab215a04
[ 3419.134375] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3419.135949] RSP: 002b:00007f71a87d7ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3419.136644] RAX: ffffffffffffffda RBX: 00007f71ab2ac970 RCX: 00007f71ab215a04
[ 3419.137292] RDX: 0000000000000002 RSI: 00007f71a87d8000 RDI: 00000000ffffff9c
[ 3419.137951] RBP: 00007f71a87d8000 R08: 0000000000000000 R09: ffffffffffffffff
[ 3419.138618] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 3419.139279] R13: 0000000000000004 R14: 0000000020000c00 R15: 0000000000000000
[ 3419.149898] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3419.166285] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:52:42 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r1, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
sendmsg$NL80211_CMD_ABORT_SCAN(r1, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x28, 0x0, 0x400, 0x70bd25, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0x1ff, 0x5a}}}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x280c0}, 0x4000)
ioctl$EVIOCGPROP(r0, 0x80404509, &(0x7f0000000000)=""/94)
pread64(r0, 0x0, 0x0, 0x1)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x8901, &(0x7f0000001840)="fb")
write(r2, &(0x7f0000000080)="f3745e8e94", 0x5)

08:52:42 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/crypto\x00', 0x0, 0x0)
copy_file_range(r1, &(0x7f0000000040)=0x6, r0, 0x0, 0x3bd4, 0x0)

08:52:42 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
socket$netlink(0x10, 0x3, 0xf)
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)

08:52:42 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00') (fail_nth: 12)

[ 3419.250614] FAULT_INJECTION: forcing a failure.
[ 3419.250614] name failslab, interval 1, probability 0, space 0, times 0
[ 3419.251826] CPU: 1 PID: 21566 Comm: syz-executor.0 Not tainted 5.10.226 #1
[ 3419.252474] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3419.253223] Call Trace:
[ 3419.253483]  dump_stack+0x107/0x167
[ 3419.253829]  should_fail.cold+0x5/0xa
[ 3419.254201]  ? create_object.isra.0+0x3a/0xa20
[ 3419.254634]  should_failslab+0x5/0x20
[ 3419.254995]  kmem_cache_alloc+0x5b/0x310
[ 3419.255387]  ? __blkdev_direct_IO_simple+0x222/0x930
[ 3419.256037]  create_object.isra.0+0x3a/0xa20
[ 3419.256806]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3419.257663]  __kmalloc+0x16e/0x390
[ 3419.258260]  ? iov_iter_alignment+0x1b1/0x810
[ 3419.259029]  __blkdev_direct_IO_simple+0x222/0x930
[ 3419.259870]  ? bd_link_disk_holder+0x710/0x710
[ 3419.260267]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3419.260708]  ? __lock_acquire+0xbb1/0x5b00
[ 3419.261071]  ? invalidate_inode_pages2_range+0xa19/0xc50
[ 3419.261528]  ? find_held_lock+0x2c/0x110
[ 3419.261873]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 3419.262412]  ? iov_iter_npages+0x1fd/0xa70
[ 3419.262774]  blkdev_direct_IO+0xb35/0x12a0
[ 3419.263146]  ? bd_prepare_to_claim+0x290/0x290
[ 3419.263538]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 3419.264106]  ? bd_prepare_to_claim+0x290/0x290
[ 3419.264545]  generic_file_direct_write+0x20e/0x560
[ 3419.265012]  __generic_file_write_iter+0x235/0x5d0
[ 3419.265472]  blkdev_write_iter+0x298/0x550
[ 3419.265876]  ? bd_unlink_disk_holder+0x3f0/0x3f0
[ 3419.266292]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 3419.266754]  ? trace_hardirqs_on+0x5b/0x180
[ 3419.267129]  do_iter_readv_writev+0x476/0x750
[ 3419.267509]  ? new_sync_write+0x660/0x660
[ 3419.267934]  ? avc_policy_seqno+0x9/0x70
[ 3419.268286]  ? selinux_file_permission+0x92/0x520
[ 3419.268698]  ? security_file_permission+0xb1/0xe0
[ 3419.269110]  do_iter_write+0x191/0x700
[ 3419.269448]  vfs_iter_write+0x70/0xa0
[ 3419.269774]  iter_file_splice_write+0x762/0xc30
[ 3419.270174]  ? generic_splice_sendpage+0x140/0x140
[ 3419.270608]  ? security_file_permission+0xb1/0xe0
[ 3419.271018]  ? generic_splice_sendpage+0x140/0x140
[ 3419.271437]  direct_splice_actor+0x10f/0x170
[ 3419.271871]  splice_direct_to_actor+0x387/0x980
[ 3419.272265]  ? pipe_to_sendpage+0x380/0x380
[ 3419.272626]  ? do_splice_to+0x160/0x160
[ 3419.272948]  ? security_file_permission+0xb1/0xe0
[ 3419.273352]  do_splice_direct+0x1c4/0x290
[ 3419.273711]  ? splice_direct_to_actor+0x980/0x980
[ 3419.274109]  ? avc_policy_seqno+0x9/0x70
[ 3419.274455]  ? security_file_permission+0xb1/0xe0
[ 3419.274854]  do_sendfile+0x553/0x11e0
[ 3419.275176]  ? do_pwritev+0x270/0x270
[ 3419.275511]  ? wait_for_completion_io+0x270/0x270
[ 3419.275959]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3419.276358]  ? vfs_write+0x354/0xb10
[ 3419.276676]  __x64_sys_sendfile64+0x1d1/0x210
[ 3419.277053]  ? __ia32_sys_sendfile+0x220/0x220
[ 3419.277439]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3419.277879]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3419.278312]  do_syscall_64+0x33/0x40
[ 3419.278633]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3419.279062] RIP: 0033:0x7f5117aedb19
[ 3419.279380] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3419.281024] RSP: 002b:00007f5115063188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3419.281723] RAX: ffffffffffffffda RBX: 00007f5117c00f60 RCX: 00007f5117aedb19
[ 3419.282375] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000000a
[ 3419.283039] RBP: 00007f51150631d0 R08: 0000000000000000 R09: 0000000000000000
[ 3419.283700] R10: 000000007ffffff9 R11: 0000000000000246 R12: 0000000000000002
[ 3419.284325] R13: 00007ffc6010669f R14: 00007f5115063300 R15: 0000000000022000
[ 3419.291869] FAULT_INJECTION: forcing a failure.
[ 3419.291869] name failslab, interval 1, probability 0, space 0, times 0
[ 3419.293142] CPU: 0 PID: 21590 Comm: syz-executor.2 Not tainted 5.10.226 #1
[ 3419.293772] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3419.294515] Call Trace:
[ 3419.294767]  dump_stack+0x107/0x167
[ 3419.295109]  should_fail.cold+0x5/0xa
[ 3419.295473]  ? proc_alloc_inode+0x18/0x200
[ 3419.295885]  should_failslab+0x5/0x20
[ 3419.296234]  kmem_cache_alloc+0x5b/0x310
[ 3419.296615]  ? find_held_lock+0x2c/0x110
[ 3419.297017]  ? proc_free_inode+0x20/0x20
[ 3419.297408]  proc_alloc_inode+0x18/0x200
[ 3419.297791]  ? proc_free_inode+0x20/0x20
[ 3419.298172]  alloc_inode+0x63/0x240
[ 3419.298515]  new_inode+0x23/0x250
[ 3419.298866]  proc_pid_make_inode+0x22/0x220
[ 3419.299288]  proc_pident_instantiate+0x81/0x320
[ 3419.299755]  proc_pident_lookup+0x1eb/0x270
[ 3419.300179]  __lookup_slow+0x252/0x490
[ 3419.300553]  ? lookup_open.isra.0+0x1270/0x1270
[ 3419.301009]  ? selinux_inode_permission+0x401/0x640
[ 3419.301470]  ? selinux_path_notify+0x4d0/0x4d0
[ 3419.301905]  walk_component+0x41e/0x6a0
[ 3419.302293]  ? handle_dots.part.0+0x15c0/0x15c0
[ 3419.302742]  ? security_inode_permission+0xcb/0x100
[ 3419.303236]  link_path_walk.part.0+0x699/0xbf0
[ 3419.303697]  ? walk_component+0x6a0/0x6a0
[ 3419.304091]  ? percpu_counter_add_batch+0x8b/0x140
[ 3419.304571]  path_openat+0x25d/0x2770
[ 3419.304916]  ? perf_trace_run_bpf_submit+0xf5/0x190
[ 3419.305371]  ? path_lookupat+0x860/0x860
[ 3419.305746]  ? perf_trace_lock+0x2bd/0x490
[ 3419.306136]  ? lock_acquire+0x197/0x470
[ 3419.306549]  ? find_held_lock+0x2c/0x110
[ 3419.306943]  ? __lockdep_reset_lock+0x180/0x180
[ 3419.307393]  do_filp_open+0x190/0x3e0
08:52:42 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)
pread64(r0, &(0x7f0000000080)=""/101, 0x65, 0x100000001)

[ 3419.307811]  ? may_open_dev+0xf0/0xf0
[ 3419.308191]  ? simple_attr_release+0x50/0x50
[ 3419.308622]  ? _raw_spin_unlock+0x1a/0x30
[ 3419.309004]  ? alloc_fd+0x2e7/0x670
[ 3419.320050]  do_sys_openat2+0x171/0x4d0
[ 3419.320428]  ? build_open_flags+0x6f0/0x6f0
[ 3419.320832]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3419.321290]  ? wait_for_completion_io+0x270/0x270
[ 3419.321755]  __x64_sys_openat+0x13f/0x1f0
[ 3419.322147]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3419.322537]  ? ksys_write+0x1a9/0x260
[ 3419.322901]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
08:52:42 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x5600000000000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

[ 3419.323387]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3419.328252]  do_syscall_64+0x33/0x40
[ 3419.328613]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3419.329089] RIP: 0033:0x7f98c45cca04
[ 3419.329441] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3419.331096] RSP: 002b:00007f98c1b8f060 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3419.331816] RAX: ffffffffffffffda RBX: 00007f98c472cf60 RCX: 00007f98c45cca04
[ 3419.332496] RDX: 0000000000000002 RSI: 00007f98c1b8f0f0 RDI: 00000000ffffff9c
[ 3419.333137] RBP: 00007f98c1b8f0f0 R08: 0000000000000000 R09: 00007f98c1b8ef70
[ 3419.333792] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 3419.334440] R13: 00007fff6ecaf52f R14: 00007f98c1b8f300 R15: 0000000000022000
08:52:42 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000000))

[ 3419.474336] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:52:56 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x5700000000000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:52:56 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x8901, &(0x7f0000001840)="fb")
preadv(r2, &(0x7f0000001500)=[{&(0x7f0000000000)=""/77, 0x4d}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_START(r1, 0x54a0)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000000)={<r3=>r0, 0x6, 0x5, 0x4})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r3)
fcntl$dupfd(r3, 0x406, r0)
openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x4901, 0x0)
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r4, 0x8901, &(0x7f0000001840)="fb")
getsockopt$SO_COOKIE(r4, 0x1, 0x39, &(0x7f0000000100), &(0x7f0000000140)=0x8)

08:52:56 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9) (fail_nth: 13)

08:52:56 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00') (fail_nth: 13)

08:52:56 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000)
preadv(r0, &(0x7f0000000100)=[{&(0x7f0000000000)=""/106, 0x6a}, {&(0x7f0000000080)=""/113, 0x71}], 0x2, 0x5, 0x891)
clock_gettime(0x0, &(0x7f0000000200)={<r1=>0x0, <r2=>0x0})
mq_timedsend(r0, &(0x7f0000000140)="e9db3d6f89438803f4927fdaccd4f95de300a6a68b9068b2842bff4c87d6abd109334534dbef63df22217c729143e281fa493fcad6f71c1d2936d712f0f9e8ee2b0fb38edee2e4c565017e7e06a7b60ded002d8940ccca3bb714b64451309109121c5307e394fb178401b9dde8dc628522953b0f5c41c9a168dce850e34c1076a43576bfe35ca261723fd9756565e9f9de649ba9e18763316b849ca4c3c751", 0x9f, 0xfff, &(0x7f0000000240)={r1, r2+60000000})

08:52:56 executing program 5:
syz_80211_inject_frame(&(0x7f0000000040)=@device_b, &(0x7f0000000000)=ANY=[@ANYRES16=0x0], 0x34)

08:52:56 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 19)

08:52:56 executing program 3:
syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')

[ 3433.529292] FAULT_INJECTION: forcing a failure.
[ 3433.529292] name failslab, interval 1, probability 0, space 0, times 0
[ 3433.531397] CPU: 0 PID: 21611 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3433.532269] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3433.532957] Call Trace:
[ 3433.533187]  dump_stack+0x107/0x167
[ 3433.533498]  should_fail.cold+0x5/0xa
[ 3433.533825]  ? security_file_alloc+0x34/0x170
[ 3433.534206]  should_failslab+0x5/0x20
[ 3433.534295] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3433.534536]  kmem_cache_alloc+0x5b/0x310
[ 3433.534555]  security_file_alloc+0x34/0x170
[ 3433.534574]  __alloc_file+0xb7/0x320
[ 3433.540234]  alloc_empty_file+0x6d/0x170
[ 3433.540580]  path_openat+0xe6/0x2770
[ 3433.540897]  ? __lock_acquire+0x1657/0x5b00
[ 3433.541269]  ? path_lookupat+0x860/0x860
[ 3433.541614]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3433.542056]  ? lock_acquire+0x197/0x470
[ 3433.542394]  ? find_held_lock+0x2c/0x110
[ 3433.542745]  do_filp_open+0x190/0x3e0
[ 3433.543069]  ? may_open_dev+0xf0/0xf0
[ 3433.543397]  ? alloc_fd+0x2e7/0x670
[ 3433.543707]  ? lock_downgrade+0x6d0/0x6d0
[ 3433.544128]  ? do_raw_spin_lock+0x121/0x260
[ 3433.544495]  ? rwlock_bug.part.0+0x90/0x90
[ 3433.544859]  ? _raw_spin_unlock+0x1a/0x30
[ 3433.545208]  ? alloc_fd+0x2e7/0x670
[ 3433.545524]  do_sys_openat2+0x171/0x4d0
[ 3433.545863]  ? build_open_flags+0x6f0/0x6f0
[ 3433.546228]  ? find_held_lock+0x2c/0x110
[ 3433.546575]  ? do_syscall_64+0x33/0x40
[ 3433.546908]  __x64_sys_openat+0x13f/0x1f0
[ 3433.547260]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3433.547623]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3433.548076]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3433.548519]  do_syscall_64+0x33/0x40
[ 3433.548835]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3433.549269] RIP: 0033:0x7f71ab215a04
[ 3433.549586] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3433.551115] RSP: 002b:00007f71a87d7ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3433.551754] RAX: ffffffffffffffda RBX: 00007f71ab2ac970 RCX: 00007f71ab215a04
[ 3433.552437] RDX: 0000000000000002 RSI: 00007f71a87d8000 RDI: 00000000ffffff9c
[ 3433.553042] RBP: 00007f71a87d8000 R08: 0000000000000000 R09: ffffffffffffffff
[ 3433.553647] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 3433.554255] R13: 0000000000000004 R14: 0000000020000c00 R15: 0000000000000000
[ 3433.572774] FAULT_INJECTION: forcing a failure.
[ 3433.572774] name failslab, interval 1, probability 0, space 0, times 0
[ 3433.573934] CPU: 1 PID: 21618 Comm: syz-executor.2 Not tainted 5.10.226 #1
[ 3433.574570] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3433.575332] Call Trace:
[ 3433.575579]  dump_stack+0x107/0x167
[ 3433.575928]  should_fail.cold+0x5/0xa
[ 3433.576268]  ? create_object.isra.0+0x3a/0xa20
[ 3433.576657]  should_failslab+0x5/0x20
[ 3433.576981]  kmem_cache_alloc+0x5b/0x310
[ 3433.577330]  create_object.isra.0+0x3a/0xa20
[ 3433.577702]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3433.578135]  kmem_cache_alloc+0x159/0x310
[ 3433.578486]  ? find_held_lock+0x2c/0x110
[ 3433.578833]  ? proc_free_inode+0x20/0x20
[ 3433.579179]  proc_alloc_inode+0x18/0x200
[ 3433.579522]  ? proc_free_inode+0x20/0x20
[ 3433.579863]  alloc_inode+0x63/0x240
[ 3433.580199]  new_inode+0x23/0x250
[ 3433.580500]  proc_pid_make_inode+0x22/0x220
[ 3433.580873]  proc_pident_instantiate+0x81/0x320
[ 3433.581272]  proc_pident_lookup+0x1eb/0x270
[ 3433.581647]  __lookup_slow+0x252/0x490
[ 3433.581980]  ? lookup_open.isra.0+0x1270/0x1270
[ 3433.582393]  ? selinux_inode_permission+0x401/0x640
[ 3433.582817]  ? selinux_path_notify+0x4d0/0x4d0
[ 3433.583209]  walk_component+0x41e/0x6a0
[ 3433.583549]  ? handle_dots.part.0+0x15c0/0x15c0
[ 3433.583965]  ? security_inode_permission+0xcb/0x100
[ 3433.584401]  link_path_walk.part.0+0x699/0xbf0
[ 3433.584796]  ? walk_component+0x6a0/0x6a0
[ 3433.585150]  ? percpu_counter_add_batch+0x8b/0x140
[ 3433.585574]  path_openat+0x25d/0x2770
[ 3433.585909]  ? path_lookupat+0x860/0x860
[ 3433.586257]  ? perf_trace_lock+0xac/0x490
[ 3433.586610]  ? lock_acquire+0x197/0x470
[ 3433.586950]  ? find_held_lock+0x2c/0x110
[ 3433.587300]  ? __lockdep_reset_lock+0x180/0x180
[ 3433.587701]  do_filp_open+0x190/0x3e0
[ 3433.588057]  ? may_open_dev+0xf0/0xf0
[ 3433.588395]  ? simple_attr_release+0x50/0x50
[ 3433.588778]  ? _raw_spin_unlock+0x1a/0x30
[ 3433.589132]  ? alloc_fd+0x2e7/0x670
[ 3433.589453]  do_sys_openat2+0x171/0x4d0
[ 3433.589796]  ? build_open_flags+0x6f0/0x6f0
[ 3433.590165]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3433.590579]  ? wait_for_completion_io+0x270/0x270
[ 3433.590996]  __x64_sys_openat+0x13f/0x1f0
[ 3433.591349]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3433.591708]  ? ksys_write+0x1a9/0x260
[ 3433.592060]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3433.592507]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3433.592945]  do_syscall_64+0x33/0x40
[ 3433.593263]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3433.593695] RIP: 0033:0x7f98c45cca04
[ 3433.594012] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3433.595549] RSP: 002b:00007f98c1b8f060 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3433.596219] RAX: ffffffffffffffda RBX: 00007f98c472cf60 RCX: 00007f98c45cca04
[ 3433.596819] RDX: 0000000000000002 RSI: 00007f98c1b8f0f0 RDI: 00000000ffffff9c
[ 3433.597425] RBP: 00007f98c1b8f0f0 R08: 0000000000000000 R09: 00007f98c1b8ef70
[ 3433.598025] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 3433.598624] R13: 00007fff6ecaf52f R14: 00007f98c1b8f300 R15: 0000000000022000
08:52:57 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
r1 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x300000e, 0x110, r0, 0x10000000)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x8901, &(0x7f0000001840)="fb")
syz_io_uring_submit(0x0, r1, &(0x7f00000000c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x5, 0x6000, @fd=r2, 0x2, &(0x7f0000000000)=""/192, 0xc0, 0x2}, 0x10001)
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000)

[ 3433.625771] FAULT_INJECTION: forcing a failure.
[ 3433.625771] name failslab, interval 1, probability 0, space 0, times 0
[ 3433.626942] CPU: 0 PID: 21620 Comm: syz-executor.0 Not tainted 5.10.226 #1
[ 3433.627526] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3433.628238] Call Trace:
[ 3433.628469]  dump_stack+0x107/0x167
[ 3433.628782]  should_fail.cold+0x5/0xa
[ 3433.629110]  ? mempool_alloc+0x148/0x360
[ 3433.629454]  ? mempool_free_pages+0x20/0x20
[ 3433.629822]  should_failslab+0x5/0x20
[ 3433.630149]  kmem_cache_alloc+0x5b/0x310
[ 3433.630496]  ? mempool_free_pages+0x20/0x20
[ 3433.630862]  mempool_alloc+0x148/0x360
[ 3433.631198]  ? mempool_resize+0x7d0/0x7d0
[ 3433.631549]  ? trace_hardirqs_on+0x5b/0x180
[ 3433.631949]  ? ktime_get_coarse_real_ts64+0x15a/0x190
[ 3433.632381]  ? ktime_get_coarse_real_ts64+0xfd/0x190
[ 3433.632811]  ? bd_prepare_to_claim+0x290/0x290
[ 3433.633204]  bio_alloc_bioset+0x36e/0x600
[ 3433.633552]  ? generic_update_time+0x21c/0x370
[ 3433.633936]  ? bvec_alloc+0x2f0/0x2f0
[ 3433.634254]  ? filemap_check_errors+0xa5/0x150
[ 3433.634637]  ? errseq_check+0x4b/0x90
[ 3433.634959]  ? file_check_and_advance_wb_err+0xbb/0x280
[ 3433.635409]  blkdev_issue_flush+0x20/0x1a0
[ 3433.635765]  blkdev_fsync+0x8e/0xd0
[ 3433.636087]  ? thaw_bdev+0x1a0/0x1a0
[ 3433.636405]  vfs_fsync_range+0x13d/0x230
[ 3433.636753]  blkdev_write_iter+0x3e4/0x550
[ 3433.637117]  ? bd_unlink_disk_holder+0x3f0/0x3f0
[ 3433.637521]  ? direct_splice_actor+0x10f/0x170
[ 3433.637904]  ? splice_direct_to_actor+0x387/0x980
[ 3433.638308]  ? do_splice_direct+0x1c4/0x290
[ 3433.638672]  ? do_sendfile+0x553/0x11e0
[ 3433.639008]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 3433.639396]  ? do_syscall_64+0x33/0x40
[ 3433.639724]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3433.640196]  do_iter_readv_writev+0x476/0x750
[ 3433.640577]  ? new_sync_write+0x660/0x660
[ 3433.640928]  ? avc_policy_seqno+0x9/0x70
[ 3433.641347]  ? selinux_file_permission+0x92/0x520
[ 3433.641811] audit: type=1400 audit(1727081577.048:77): avc:  denied  { execute } for  pid=21631 comm="syz-executor.7" path="/proc/21631/pagemap" dev="proc" ino=64094 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=file permissive=1
[ 3433.641866]  ? security_file_permission+0xb1/0xe0
[ 3433.644272]  do_iter_write+0x191/0x700
[ 3433.644673]  ? trace_hardirqs_on+0x5b/0x180
[ 3433.645122]  vfs_iter_write+0x70/0xa0
[ 3433.645515]  iter_file_splice_write+0x762/0xc30
[ 3433.645983]  ? generic_splice_sendpage+0x140/0x140
[ 3433.646414]  ? security_file_permission+0xb1/0xe0
[ 3433.646822]  ? generic_splice_sendpage+0x140/0x140
[ 3433.647237]  direct_splice_actor+0x10f/0x170
[ 3433.647610]  splice_direct_to_actor+0x387/0x980
[ 3433.648023]  ? pipe_to_sendpage+0x380/0x380
[ 3433.648388]  ? do_splice_to+0x160/0x160
[ 3433.648724]  ? security_file_permission+0xb1/0xe0
[ 3433.649133]  do_splice_direct+0x1c4/0x290
[ 3433.649481]  ? splice_direct_to_actor+0x980/0x980
[ 3433.649882]  ? avc_policy_seqno+0x9/0x70
[ 3433.650229]  ? security_file_permission+0xb1/0xe0
[ 3433.650640]  do_sendfile+0x553/0x11e0
[ 3433.650969]  ? do_pwritev+0x270/0x270
[ 3433.651293]  ? wait_for_completion_io+0x270/0x270
[ 3433.651700]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3433.652103]  ? vfs_write+0x354/0xb10
[ 3433.652424]  __x64_sys_sendfile64+0x1d1/0x210
[ 3433.652806]  ? __ia32_sys_sendfile+0x220/0x220
[ 3433.653196]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3433.653638]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3433.654072]  do_syscall_64+0x33/0x40
[ 3433.654389]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3433.654819] RIP: 0033:0x7f5117aedb19
[ 3433.655135] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3433.656679] RSP: 002b:00007f5115063188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3433.657317] RAX: ffffffffffffffda RBX: 00007f5117c00f60 RCX: 00007f5117aedb19
[ 3433.657913] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000000a
[ 3433.658509] RBP: 00007f51150631d0 R08: 0000000000000000 R09: 0000000000000000
[ 3433.659103] R10: 000000007ffffff9 R11: 0000000000000246 R12: 0000000000000002
[ 3433.659700] R13: 00007ffc6010669f R14: 00007f5115063300 R15: 0000000000022000
08:52:57 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x5800000000000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:52:57 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 20)

08:52:57 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/sockstat6\x00')
r1 = perf_event_open$cgroup(&(0x7f0000000080)={0x2, 0x80, 0x0, 0x0, 0x6a, 0x4, 0x0, 0x0, 0x1000, 0x2, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x2, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8001, 0x0, @perf_bp={&(0x7f0000000000), 0x2}, 0x10081, 0x7f, 0x7, 0x3, 0x9, 0x0, 0x3, 0x0, 0x4, 0x0, 0x7}, r0, 0xc, 0xffffffffffffffff, 0x9)
fallocate(r1, 0x5d, 0x94d, 0x6)
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r2 = clone3(&(0x7f0000000480)={0x5c244100, &(0x7f00000001c0), &(0x7f0000000200), &(0x7f0000000240), {0x6}, &(0x7f0000000280)=""/207, 0xcf, &(0x7f0000000380)=""/189, &(0x7f0000000440)=[0xffffffffffffffff], 0x1, {r0}}, 0x58)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r3, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x4, 0x80, 0x0, 0x97, 0x5, 0x4, 0x0, 0xfff, 0x10000, 0x4, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x7fff, 0x1, @perf_bp={&(0x7f0000000100), 0xc}, 0x180, 0x5, 0x6, 0x3, 0x0, 0x5, 0x0, 0x0, 0x192d7ba2, 0x0, 0x800}, r2, 0x6, r3, 0x3)
syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)={[{@mpol={'mpol', 0x3d, {'default', '=relative', @val={0x3a, [0x36, 0x2d, 0x33, 0x3a, 0x38, 0x2f]}}}}]})
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)

[ 3433.693735] FAULT_INJECTION: forcing a failure.
[ 3433.693735] name failslab, interval 1, probability 0, space 0, times 0
[ 3433.694948] CPU: 0 PID: 21635 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3433.695666] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3433.696502] Call Trace:
[ 3433.696779]  dump_stack+0x107/0x167
[ 3433.697156]  should_fail.cold+0x5/0xa
[ 3433.697551]  ? create_object.isra.0+0x3a/0xa20
[ 3433.698023]  should_failslab+0x5/0x20
[ 3433.698415]  kmem_cache_alloc+0x5b/0x310
[ 3433.698831]  ? percpu_ref_put_many.constprop.0+0x4e/0x110
[ 3433.699399]  create_object.isra.0+0x3a/0xa20
[ 3433.699850]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3433.700297]  kmem_cache_alloc+0x159/0x310
[ 3433.700657]  security_file_alloc+0x34/0x170
[ 3433.701026]  __alloc_file+0xb7/0x320
[ 3433.701343]  alloc_empty_file+0x6d/0x170
[ 3433.701690]  path_openat+0xe6/0x2770
[ 3433.702008]  ? __lock_acquire+0x1657/0x5b00
[ 3433.702381]  ? path_lookupat+0x860/0x860
[ 3433.702727]  ? perf_trace_lock+0xac/0x490
[ 3433.703078]  ? lock_acquire+0x197/0x470
[ 3433.703416]  ? find_held_lock+0x2c/0x110
[ 3433.703764]  ? __lockdep_reset_lock+0x180/0x180
[ 3433.708189]  do_filp_open+0x190/0x3e0
[ 3433.708509]  ? may_open_dev+0xf0/0xf0
[ 3433.708834]  ? alloc_fd+0x2e7/0x670
[ 3433.709141]  ? lock_downgrade+0x6d0/0x6d0
[ 3433.709491]  ? do_raw_spin_lock+0x121/0x260
[ 3433.709855]  ? rwlock_bug.part.0+0x90/0x90
[ 3433.710216]  ? _raw_spin_unlock+0x1a/0x30
[ 3433.710562]  ? alloc_fd+0x2e7/0x670
[ 3433.710876]  do_sys_openat2+0x171/0x4d0
[ 3433.711213]  ? build_open_flags+0x6f0/0x6f0
[ 3433.711572]  ? find_held_lock+0x2c/0x110
[ 3433.711928]  ? do_syscall_64+0x33/0x40
[ 3433.712262]  __x64_sys_openat+0x13f/0x1f0
[ 3433.712610]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3433.712984]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3433.713440]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3433.713872]  do_syscall_64+0x33/0x40
[ 3433.714187]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3433.714614] RIP: 0033:0x7f71ab215a04
[ 3433.714929] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3433.716467] RSP: 002b:00007f71a87d7ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3433.717103] RAX: ffffffffffffffda RBX: 00007f71ab2ac970 RCX: 00007f71ab215a04
[ 3433.717696] RDX: 0000000000000002 RSI: 00007f71a87d8000 RDI: 00000000ffffff9c
[ 3433.718292] RBP: 00007f71a87d8000 R08: 0000000000000000 R09: ffffffffffffffff
[ 3433.718885] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 3433.719478] R13: 0000000000000004 R14: 0000000020000c00 R15: 0000000000000000
08:52:57 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
ioctl$F2FS_IOC_GET_PIN_FILE(r1, 0x8004f50e, &(0x7f0000000000))
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)

08:52:57 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000)
pread64(0xffffffffffffffff, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000080)={<r1=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r1, 0x3, 0xffffffffffffffff, 0xa)
r2 = gettid()
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000600)={<r3=>0x0}, &(0x7f0000000640)=0xc)
r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r5, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000000080)={<r6=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x4, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x101}, r6, 0x3, r4, 0xa)
r7 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x0, 0x10000000000, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r8, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000000080)={<r9=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x40, 0x9, 0x7, 0x40000000004, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r9, 0x3, r7, 0xa)
r10 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r10, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
clone3(&(0x7f00000006c0)={0x80, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x39}, &(0x7f00000000c0)=""/241, 0xf1, &(0x7f00000001c0)=""/255, &(0x7f0000000680)=[0x0, 0x0, 0x0, 0x0, r1, r2, 0x0, r3, r6, r9], 0xa, {r10}}, 0x58)

08:52:57 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
[ 3433.754683] tmpfs: Bad value for 'mpol'
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9) (fail_nth: 14)

[ 3433.770761] tmpfs: Bad value for 'mpol'
08:52:57 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00') (fail_nth: 14)

[ 3433.837544] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:52:57 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x5d00000000000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

[ 3433.852106] FAULT_INJECTION: forcing a failure.
[ 3433.852106] name failslab, interval 1, probability 0, space 0, times 0
[ 3433.853254] CPU: 0 PID: 21650 Comm: syz-executor.0 Not tainted 5.10.226 #1
[ 3433.853835] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3433.854527] Call Trace:
[ 3433.854759]  dump_stack+0x107/0x167
[ 3433.855070]  should_fail.cold+0x5/0xa
[ 3433.855398]  ? create_object.isra.0+0x3a/0xa20
[ 3433.855787]  should_failslab+0x5/0x20
[ 3433.856131]  kmem_cache_alloc+0x5b/0x310
[ 3433.856480]  create_object.isra.0+0x3a/0xa20
[ 3433.856853]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3433.857283]  kmem_cache_alloc+0x159/0x310
[ 3433.857638]  ? mempool_free_pages+0x20/0x20
[ 3433.858002]  mempool_alloc+0x148/0x360
[ 3433.858335]  ? mempool_resize+0x7d0/0x7d0
[ 3433.858691]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3433.859134]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 3433.859589]  ? trace_hardirqs_on+0x5b/0x180
[ 3433.859973]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 3433.860435]  bio_alloc_bioset+0x36e/0x600
[ 3433.860788]  ? bvec_alloc+0x2f0/0x2f0
[ 3433.861113]  ? errseq_check+0x4b/0x90
[ 3433.861437]  ? file_check_and_advance_wb_err+0xbb/0x280
[ 3433.861891]  blkdev_issue_flush+0x20/0x1a0
[ 3433.862252]  blkdev_fsync+0x8e/0xd0
[ 3433.862560]  ? thaw_bdev+0x1a0/0x1a0
[ 3433.862879]  vfs_fsync_range+0x13d/0x230
[ 3433.863226]  blkdev_write_iter+0x3e4/0x550
[ 3433.863589]  ? bd_unlink_disk_holder+0x3f0/0x3f0
[ 3433.864006]  ? direct_splice_actor+0x10f/0x170
[ 3433.864395]  ? splice_direct_to_actor+0x387/0x980
[ 3433.864799]  ? do_splice_direct+0x1c4/0x290
[ 3433.865162]  ? do_sendfile+0x553/0x11e0
[ 3433.865499]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 3433.865889]  ? do_syscall_64+0x33/0x40
[ 3433.866218]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3433.866670]  do_iter_readv_writev+0x476/0x750
[ 3433.867052]  ? new_sync_write+0x660/0x660
[ 3433.867403]  ? avc_policy_seqno+0x9/0x70
[ 3433.867748]  ? selinux_file_permission+0x92/0x520
[ 3433.868181]  ? security_file_permission+0xb1/0xe0
[ 3433.868596]  do_iter_write+0x191/0x700
[ 3433.868928]  ? trace_hardirqs_on+0x5b/0x180
[ 3433.869299]  vfs_iter_write+0x70/0xa0
[ 3433.869625]  iter_file_splice_write+0x762/0xc30
[ 3433.870028]  ? generic_splice_sendpage+0x140/0x140
[ 3433.870455]  ? security_file_permission+0xb1/0xe0
[ 3433.870865]  ? generic_splice_sendpage+0x140/0x140
[ 3433.871280]  direct_splice_actor+0x10f/0x170
[ 3433.871654]  splice_direct_to_actor+0x387/0x980
[ 3433.872065]  ? pipe_to_sendpage+0x380/0x380
[ 3433.872434]  ? do_splice_to+0x160/0x160
[ 3433.872775]  ? security_file_permission+0xb1/0xe0
[ 3433.873187]  do_splice_direct+0x1c4/0x290
[ 3433.873540]  ? splice_direct_to_actor+0x980/0x980
[ 3433.873948]  ? avc_policy_seqno+0x9/0x70
[ 3433.874298]  ? security_file_permission+0xb1/0xe0
[ 3433.874713]  do_sendfile+0x553/0x11e0
[ 3433.875045]  ? do_pwritev+0x270/0x270
[ 3433.875371]  ? wait_for_completion_io+0x270/0x270
[ 3433.875782]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3433.876185]  ? vfs_write+0x354/0xb10
[ 3433.876506]  __x64_sys_sendfile64+0x1d1/0x210
[ 3433.876888]  ? __ia32_sys_sendfile+0x220/0x220
[ 3433.877278]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3433.877721]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3433.878158]  do_syscall_64+0x33/0x40
[ 3433.878474]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3433.878907] RIP: 0033:0x7f5117aedb19
[ 3433.879224] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3433.880770] RSP: 002b:00007f5115063188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3433.881409] RAX: ffffffffffffffda RBX: 00007f5117c00f60 RCX: 00007f5117aedb19
[ 3433.882005] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000000a
[ 3433.882600] RBP: 00007f51150631d0 R08: 0000000000000000 R09: 0000000000000000
[ 3433.883197] R10: 000000007ffffff9 R11: 0000000000000246 R12: 0000000000000002
[ 3433.883793] R13: 00007ffc6010669f R14: 00007f5115063300 R15: 0000000000022000
[ 3433.909133] FAULT_INJECTION: forcing a failure.
[ 3433.909133] name failslab, interval 1, probability 0, space 0, times 0
[ 3433.910132] CPU: 1 PID: 21656 Comm: syz-executor.2 Not tainted 5.10.226 #1
[ 3433.910713] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3433.911403] Call Trace:
[ 3433.911635]  dump_stack+0x107/0x167
[ 3433.911960]  should_fail.cold+0x5/0xa
[ 3433.912296]  ? security_inode_alloc+0x34/0x160
[ 3433.912687]  should_failslab+0x5/0x20
[ 3433.913014]  kmem_cache_alloc+0x5b/0x310
[ 3433.913368]  security_inode_alloc+0x34/0x160
[ 3433.913745]  inode_init_always+0xa4e/0xd10
[ 3433.914107]  ? proc_free_inode+0x20/0x20
[ 3433.914456]  alloc_inode+0x84/0x240
[ 3433.914767]  new_inode+0x23/0x250
[ 3433.915071]  proc_pid_make_inode+0x22/0x220
[ 3433.915447]  proc_pident_instantiate+0x81/0x320
[ 3433.915852]  proc_pident_lookup+0x1eb/0x270
[ 3433.916262]  __lookup_slow+0x252/0x490
[ 3433.916605]  ? lookup_open.isra.0+0x1270/0x1270
[ 3433.917021]  ? selinux_inode_permission+0x401/0x640
[ 3433.917456]  ? selinux_path_notify+0x4d0/0x4d0
[ 3433.917852]  walk_component+0x41e/0x6a0
[ 3433.918195]  ? handle_dots.part.0+0x15c0/0x15c0
[ 3433.918602]  ? security_inode_permission+0xcb/0x100
[ 3433.919038]  link_path_walk.part.0+0x699/0xbf0
[ 3433.919437]  ? walk_component+0x6a0/0x6a0
[ 3433.919794]  ? percpu_counter_add_batch+0x8b/0x140
[ 3433.920242]  path_openat+0x25d/0x2770
[ 3433.920574]  ? path_lookupat+0x860/0x860
[ 3433.920919]  ? perf_trace_lock+0xac/0x490
[ 3433.921267]  ? lock_acquire+0x197/0x470
[ 3433.921602]  ? find_held_lock+0x2c/0x110
[ 3433.921948]  ? __lockdep_reset_lock+0x180/0x180
[ 3433.922343]  do_filp_open+0x190/0x3e0
[ 3433.922666]  ? may_open_dev+0xf0/0xf0
[ 3433.923002]  ? simple_attr_release+0x50/0x50
[ 3433.923379]  ? _raw_spin_unlock+0x1a/0x30
[ 3433.923727]  ? alloc_fd+0x2e7/0x670
[ 3433.924062]  do_sys_openat2+0x171/0x4d0
[ 3433.924400]  ? build_open_flags+0x6f0/0x6f0
[ 3433.924765]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3433.925174]  ? wait_for_completion_io+0x270/0x270
[ 3433.925585]  __x64_sys_openat+0x13f/0x1f0
[ 3433.925934]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3433.926289]  ? ksys_write+0x1a9/0x260
[ 3433.926616]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3433.927061]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3433.927496]  do_syscall_64+0x33/0x40
[ 3433.927818]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3433.928271] RIP: 0033:0x7f98c45cca04
[ 3433.928589] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3433.930115] RSP: 002b:00007f98c1b8f060 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3433.930756] RAX: ffffffffffffffda RBX: 00007f98c472cf60 RCX: 00007f98c45cca04
[ 3433.931353] RDX: 0000000000000002 RSI: 00007f98c1b8f0f0 RDI: 00000000ffffff9c
[ 3433.931962] RBP: 00007f98c1b8f0f0 R08: 0000000000000000 R09: 00007f98c1b8ef70
[ 3433.932558] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 3433.933155] R13: 00007fff6ecaf52f R14: 00007f98c1b8f300 R15: 0000000000022000
08:52:57 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)
r1 = signalfd(r0, &(0x7f0000000040), 0x8)
preadv(r1, &(0x7f0000000180)=[{&(0x7f0000000080)=""/215, 0xd7}], 0x1, 0x7, 0x8)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x8901, &(0x7f0000001840)="fb")
read(r2, &(0x7f0000000000)=""/44, 0x2c)

08:52:57 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r0, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
r1 = epoll_create(0x2)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f0000000000)={{0x1, 0x1, 0x18, r1, {0xbe50}}, './file0\x00'})
syz_80211_inject_frame(&(0x7f0000000040)=@device_a={0x3}, &(0x7f0000000140)=ANY=[], 0x34)

08:52:57 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)
r1 = syz_io_uring_setup(0x6c75, &(0x7f00000002c0), &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r1, 0x0, 0x0}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(r4, r3, 0x0, 0x8001)
r5 = syz_io_uring_setup(0x6c75, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r5, 0x0, 0x0}, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
syz_io_uring_submit(r8, r7, 0x0, 0x8001)
r9 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r10 = inotify_init1(0x1000)
r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r9, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000500)=@IORING_OP_FILES_UPDATE={0x14, 0x5, 0x0, 0x0, 0x3f, &(0x7f00000004c0)=[0xffffffffffffffff, r9, r9, r10], 0x4, 0x0, 0x0, {0x0, r11}}, 0x3)
syz_io_uring_submit(r4, r7, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x2, 0x0, r0, &(0x7f0000000040)=0x80, &(0x7f0000000080)=@pppol2tpv3, 0x0, 0x800, 0x0, {0x0, r11}}, 0x9)
openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x18000, 0x0)

08:52:57 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 21)

[ 3434.017281] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:52:57 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8000000000000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

[ 3434.049954] FAULT_INJECTION: forcing a failure.
[ 3434.049954] name failslab, interval 1, probability 0, space 0, times 0
[ 3434.050953] CPU: 1 PID: 21670 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3434.051538] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3434.052249] Call Trace:
[ 3434.052484]  dump_stack+0x107/0x167
[ 3434.052797]  should_fail.cold+0x5/0xa
[ 3434.053131]  ? __kthread_create_on_node+0xd1/0x400
[ 3434.053551]  should_failslab+0x5/0x20
[ 3434.053879]  kmem_cache_alloc_trace+0x55/0x320
[ 3434.054273]  ? loop_info64_to_compat+0x5f0/0x5f0
[ 3434.054677]  __kthread_create_on_node+0xd1/0x400
[ 3434.055082]  ? __kthread_parkme+0x1d0/0x1d0
[ 3434.055460]  ? __mutex_lock+0x4fe/0x10b0
[ 3434.055807]  ? loop_configure+0xcb9/0x1490
[ 3434.056187]  ? do_raw_spin_unlock+0x4f/0x220
[ 3434.056563]  ? loop_info64_to_compat+0x5f0/0x5f0
[ 3434.056968]  kthread_create_on_node+0xbb/0x100
[ 3434.057357]  ? __kthread_create_on_node+0x400/0x400
[ 3434.057783]  ? lockdep_init_map_type+0x2c7/0x780
[ 3434.058186]  ? lockdep_init_map_type+0x2c7/0x780
[ 3434.058597]  loop_configure+0x3e7/0x1490
[ 3434.058952]  lo_ioctl+0xa72/0x1760
[ 3434.059260]  ? avc_has_extended_perms+0x7f1/0xf40
[ 3434.059675]  ? loop_set_status_old+0x250/0x250
[ 3434.060084]  ? avc_ss_reset+0x180/0x180
[ 3434.060425]  ? find_held_lock+0x2c/0x110
[ 3434.060781]  ? __lock_acquire+0xbb1/0x5b00
[ 3434.061181]  ? selinux_bprm_creds_for_exec+0xb60/0xb60
[ 3434.061628]  ? generic_block_fiemap+0x60/0x60
[ 3434.062009]  ? lock_downgrade+0x6d0/0x6d0
[ 3434.062362]  ? build_open_flags+0x6f0/0x6f0
[ 3434.062729]  ? find_held_lock+0x2c/0x110
[ 3434.063079]  ? loop_set_status_old+0x250/0x250
[ 3434.063468]  blkdev_ioctl+0x291/0x710
[ 3434.063795]  ? blkdev_common_ioctl+0x1930/0x1930
[ 3434.064217]  ? selinux_file_ioctl+0xb6/0x270
[ 3434.064597]  block_ioctl+0xf9/0x140
[ 3434.064908]  ? blkdev_read_iter+0x1c0/0x1c0
[ 3434.065282]  __x64_sys_ioctl+0x19a/0x210
[ 3434.065632]  do_syscall_64+0x33/0x40
[ 3434.065951]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3434.066387] RIP: 0033:0x7f71ab2628d7
[ 3434.066707] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3434.068263] RSP: 002b:00007f71a87d7f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 3434.068909] RAX: ffffffffffffffda RBX: 00007f71ab2ac970 RCX: 00007f71ab2628d7
[ 3434.069510] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[ 3434.070110] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[ 3434.070712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[ 3434.071315] R13: 0000000000000004 R14: 0000000020000c00 R15: 0000000000000000
[ 3434.321260] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3448.098303] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3448.100308] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:53:11 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9) (fail_nth: 15)

08:53:11 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
fsetxattr$security_ima(r0, &(0x7f0000000000), &(0x7f0000000140)=@v2={0x3, 0x1, 0x5, 0x8, 0x5d, "24ebaa150e6dcb5fdf82e18f690188613b0d8518499ff803cdff472876549c861d063b2d740bbbb803d1bbb1f01719d730d3eee7782e38bba3e09966ba6e1cbd46508b20857bc0b355efc16df13d778a991fba45a2f66ff625b299c504"}, 0x66, 0x2)
pread64(r0, 0x0, 0x0, 0x806c54747f0002)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r2, 0x400c6615, &(0x7f00000000c0)={0x0, @adiantum, 0x0, @desc3})
connect$unix(r1, &(0x7f00000001c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)

08:53:11 executing program 5:
syz_80211_inject_frame(&(0x7f0000000040)=@device_a={0x3}, &(0x7f0000000140)=ANY=[], 0x34)
syz_80211_inject_frame(&(0x7f0000000000)=@device_b, &(0x7f0000000080)=@ctrl_frame=@rts={{}, {0x9}, @device_b, @broadcast}, 0x10)

08:53:11 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00') (fail_nth: 15)

08:53:11 executing program 7:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r1, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000080)={<r2=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r2, 0x3, r0, 0xa)
r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r4, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000080)={<r5=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r5, 0x3, r3, 0xa)
r6 = syz_open_procfs(r5, &(0x7f00000000c0)='numa_maps\x00')
ioctl$KDGKBTYPE(r6, 0x4b33, &(0x7f0000000000))
pread64(r6, 0x0, 0x0, 0x200000000000)

[ 3448.115417] FAULT_INJECTION: forcing a failure.
[ 3448.115417] name failslab, interval 1, probability 0, space 0, times 0
[ 3448.116525] CPU: 1 PID: 21692 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3448.117106] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3448.117803] Call Trace:
[ 3448.118035]  dump_stack+0x107/0x167
[ 3448.118347]  should_fail.cold+0x5/0xa
[ 3448.118680]  ? create_object.isra.0+0x3a/0xa20
[ 3448.119075]  should_failslab+0x5/0x20
[ 3448.119405]  kmem_cache_alloc+0x5b/0x310
[ 3448.119759]  create_object.isra.0+0x3a/0xa20
[ 3448.120151]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3448.120663]  kmem_cache_alloc_trace+0x151/0x320
[ 3448.121147]  ? loop_info64_to_compat+0x5f0/0x5f0
[ 3448.121635]  __kthread_create_on_node+0xd1/0x400
[ 3448.122124]  ? __kthread_parkme+0x1d0/0x1d0
[ 3448.122581]  ? __mutex_lock+0x4fe/0x10b0
[ 3448.122996]  ? loop_configure+0xcb9/0x1490
[ 3448.123431]  ? do_raw_spin_unlock+0x4f/0x220
[ 3448.123886]  ? loop_info64_to_compat+0x5f0/0x5f0
[ 3448.124359]  kthread_create_on_node+0xbb/0x100
[ 3448.124832]  ? __kthread_create_on_node+0x400/0x400
[ 3448.125349]  ? lockdep_init_map_type+0x2c7/0x780
[ 3448.125846]  ? lockdep_init_map_type+0x2c7/0x780
[ 3448.126344]  loop_configure+0x3e7/0x1490
[ 3448.126771]  lo_ioctl+0xa72/0x1760
[ 3448.127147]  ? avc_has_extended_perms+0x7f1/0xf40
[ 3448.127653]  ? loop_set_status_old+0x250/0x250
[ 3448.128150]  ? avc_ss_reset+0x180/0x180
[ 3448.128488]  ? find_held_lock+0x2c/0x110
[ 3448.128838]  ? __lock_acquire+0xbb1/0x5b00
[ 3448.129223]  ? selinux_bprm_creds_for_exec+0xb60/0xb60
[ 3448.129662]  ? generic_block_fiemap+0x60/0x60
[ 3448.130037]  ? lock_downgrade+0x6d0/0x6d0
[ 3448.130386]  ? build_open_flags+0x6f0/0x6f0
[ 3448.130746]  ? find_held_lock+0x2c/0x110
[ 3448.131090]  ? loop_set_status_old+0x250/0x250
[ 3448.131471]  blkdev_ioctl+0x291/0x710
[ 3448.131793]  ? blkdev_common_ioctl+0x1930/0x1930
[ 3448.132213]  ? selinux_file_ioctl+0xb6/0x270
[ 3448.132587]  block_ioctl+0xf9/0x140
[ 3448.132893]  ? blkdev_read_iter+0x1c0/0x1c0
[ 3448.133255]  __x64_sys_ioctl+0x19a/0x210
[ 3448.133597]  do_syscall_64+0x33/0x40
[ 3448.133910]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3448.134339] RIP: 0033:0x7f71ab2628d7
[ 3448.134653] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3448.136183] RSP: 002b:00007f71a87d7f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 3448.136828] RAX: ffffffffffffffda RBX: 00007f71ab2ac970 RCX: 00007f71ab2628d7
[ 3448.137425] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[ 3448.138021] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[ 3448.138616] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[ 3448.139206] R13: 0000000000000004 R14: 0000000020000c00 R15: 0000000000000000
08:53:11 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0xff07040000000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:53:11 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 22)

08:53:11 executing program 6:
prctl$PR_GET_THP_DISABLE(0x2a)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)={0x40, r1, 0x5, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r2}, @val={0xc}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x3f}]]}, 0x40}}, 0x0)
sendmsg$NL80211_CMD_SET_KEY(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x50, r1, 0x200, 0x70bd27, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_KEY_DEFAULT_TYPES={0x14, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}]}, @NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "b9947fee32887d480f11e50378"}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x14, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
r3 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r3, 0x0, 0x7ffffffff000, 0x200000000000000)

08:53:11 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f0000000000)='\x00', 0x0, r0)
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)

08:53:11 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000000000000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

[ 3448.195241] FAULT_INJECTION: forcing a failure.
08:53:11 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x8901, &(0x7f0000001840)="fb")
dup3(r1, r2, 0x0)
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r3, 0x8901, &(0x7f0000001840)="fb")
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000000)={0x0, <r4=>0x0})
fcntl$lock(r3, 0x6, &(0x7f0000000040)={0x2, 0x4, 0xe80c, 0x401, r4})

[ 3448.195241] name failslab, interval 1, probability 0, space 0, times 0
[ 3448.197711] CPU: 0 PID: 21705 Comm: syz-executor.2 Not tainted 5.10.226 #1
[ 3448.198300] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3448.199000] Call Trace:
[ 3448.199234]  dump_stack+0x107/0x167
[ 3448.199549]  should_fail.cold+0x5/0xa
[ 3448.199878]  ? create_object.isra.0+0x3a/0xa20
[ 3448.200290]  should_failslab+0x5/0x20
[ 3448.200618]  kmem_cache_alloc+0x5b/0x310
[ 3448.200976]  create_object.isra.0+0x3a/0xa20
[ 3448.201354]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3448.201789]  kmem_cache_alloc+0x159/0x310
[ 3448.202153]  security_inode_alloc+0x34/0x160
[ 3448.202531]  inode_init_always+0xa4e/0xd10
[ 3448.202893]  ? proc_free_inode+0x20/0x20
[ 3448.203243]  alloc_inode+0x84/0x240
[ 3448.203557]  new_inode+0x23/0x250
[ 3448.203862]  proc_pid_make_inode+0x22/0x220
[ 3448.204267]  proc_pident_instantiate+0x81/0x320
[ 3448.204666]  proc_pident_lookup+0x1eb/0x270
[ 3448.205039]  __lookup_slow+0x252/0x490
[ 3448.205372]  ? lookup_open.isra.0+0x1270/0x1270
[ 3448.205784]  ? selinux_inode_permission+0x401/0x640
[ 3448.206207]  ? selinux_path_notify+0x4d0/0x4d0
[ 3448.206601]  walk_component+0x41e/0x6a0
[ 3448.206939]  ? handle_dots.part.0+0x15c0/0x15c0
[ 3448.207338]  ? security_inode_permission+0xcb/0x100
[ 3448.207766]  link_path_walk.part.0+0x699/0xbf0
[ 3448.208175]  ? walk_component+0x6a0/0x6a0
[ 3448.208530]  ? percpu_counter_add_batch+0x8b/0x140
[ 3448.208954]  path_openat+0x25d/0x2770
[ 3448.209289]  ? path_lookupat+0x860/0x860
[ 3448.209638]  ? perf_trace_lock+0xac/0x490
[ 3448.209990]  ? lock_acquire+0x197/0x470
[ 3448.210328]  ? find_held_lock+0x2c/0x110
[ 3448.210677]  ? __lockdep_reset_lock+0x180/0x180
[ 3448.211083]  do_filp_open+0x190/0x3e0
[ 3448.211407]  ? may_open_dev+0xf0/0xf0
08:53:11 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r2, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc0189379, &(0x7f0000000080)=ANY=[@ANYBLOB="0100000001000000180061bb", @ANYRES32=r2, @ANYBLOB="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"])

[ 3448.211743]  ? simple_attr_release+0x50/0x50
[ 3448.212138]  ? _raw_spin_unlock+0x1a/0x30
[ 3448.212492]  ? alloc_fd+0x2e7/0x670
[ 3448.212813]  do_sys_openat2+0x171/0x4d0
[ 3448.213155]  ? build_open_flags+0x6f0/0x6f0
[ 3448.213524]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3448.213945]  ? wait_for_completion_io+0x270/0x270
[ 3448.214361]  __x64_sys_openat+0x13f/0x1f0
[ 3448.216507]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3448.216869]  ? ksys_write+0x1a9/0x260
[ 3448.217197]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3448.217640]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3448.218073]  do_syscall_64+0x33/0x40
[ 3448.218388]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3448.218817] RIP: 0033:0x7f98c45cca04
[ 3448.219133] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3448.220683] RSP: 002b:00007f98c1b6e060 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3448.221320] RAX: ffffffffffffffda RBX: 00007f98c472d020 RCX: 00007f98c45cca04
[ 3448.221915] RDX: 0000000000000002 RSI: 00007f98c1b6e0f0 RDI: 00000000ffffff9c
[ 3448.222511] RBP: 00007f98c1b6e0f0 R08: 0000000000000000 R09: 00007f98c1b6df70
[ 3448.223110] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 3448.223703] R13: 00007fff6ecaf52f R14: 00007f98c1b6e300 R15: 0000000000022000
[ 3448.280646] FAULT_INJECTION: forcing a failure.
[ 3448.280646] name failslab, interval 1, probability 0, space 0, times 0
[ 3448.281713] CPU: 0 PID: 21687 Comm: syz-executor.0 Not tainted 5.10.226 #1
[ 3448.282294] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3448.282998] Call Trace:
[ 3448.283230]  dump_stack+0x107/0x167
[ 3448.283552]  should_fail.cold+0x5/0xa
[ 3448.283878]  ? iter_file_splice_write+0x16d/0xc30
[ 3448.284331]  ? iter_file_splice_write+0x16d/0xc30
[ 3448.284741]  should_failslab+0x5/0x20
[ 3448.285065]  __kmalloc+0x72/0x390
[ 3448.285364]  iter_file_splice_write+0x16d/0xc30
[ 3448.285756]  ? atime_needs_update+0x600/0x600
[ 3448.286148]  ? ext4_file_read_iter+0x187/0x4c0
[ 3448.286539]  ? generic_splice_sendpage+0x140/0x140
[ 3448.286963]  ? pipe_to_user+0x170/0x170
[ 3448.287310]  ? security_file_permission+0xb1/0xe0
[ 3448.287718]  ? generic_splice_sendpage+0x140/0x140
[ 3448.288180]  direct_splice_actor+0x10f/0x170
[ 3448.288556]  splice_direct_to_actor+0x387/0x980
[ 3448.288952]  ? pipe_to_sendpage+0x380/0x380
[ 3448.289319]  ? do_splice_to+0x160/0x160
[ 3448.289659]  ? security_file_permission+0xb1/0xe0
[ 3448.290069]  do_splice_direct+0x1c4/0x290
[ 3448.290422]  ? splice_direct_to_actor+0x980/0x980
[ 3448.290829]  ? avc_policy_seqno+0x9/0x70
[ 3448.291179]  ? security_file_permission+0xb1/0xe0
[ 3448.291593]  do_sendfile+0x553/0x11e0
[ 3448.291923]  ? do_pwritev+0x270/0x270
[ 3448.292284]  ? wait_for_completion_io+0x270/0x270
[ 3448.292697]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3448.293090]  ? vfs_write+0x354/0xb10
[ 3448.293411]  __x64_sys_sendfile64+0x1d1/0x210
[ 3448.293793]  ? __ia32_sys_sendfile+0x220/0x220
[ 3448.294184]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3448.294627]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3448.295065]  do_syscall_64+0x33/0x40
[ 3448.295382]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3448.295815] RIP: 0033:0x7f5117aedb19
[ 3448.296145] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3448.297679] RSP: 002b:00007f5115063188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3448.298322] RAX: ffffffffffffffda RBX: 00007f5117c00f60 RCX: 00007f5117aedb19
[ 3448.298923] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000000a
[ 3448.299521] RBP: 00007f51150631d0 R08: 0000000000000000 R09: 0000000000000000
[ 3448.300160] R10: 000000007ffffff9 R11: 0000000000000246 R12: 0000000000000002
[ 3448.300761] R13: 00007ffc6010669f R14: 00007f5115063300 R15: 0000000000022000
[ 3448.442286] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:53:25 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 23)

08:53:25 executing program 5:
r0 = semget$private(0x0, 0x2, 0x686)
semctl$IPC_RMID(r0, 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000080)={<r1=>0x0, <r2=>0x0})
semtimedop(r0, &(0x7f0000000040)=[{0x2, 0x20, 0x1800}, {0x4, 0x7}, {0x0, 0xa6d, 0x1000}], 0x3, &(0x7f00000000c0)={r1, r2+60000000})
semop(r0, &(0x7f0000000000)=[{0x4, 0x9bb, 0x1000}, {0x2, 0x3, 0x800}, {0x4, 0xffff, 0x1000}, {0x2, 0x7, 0x800}, {0x4, 0x7e4e, 0x1800}, {0x2, 0x6, 0x1800}, {0x3, 0xffff}, {0x3, 0x5}], 0x8)
r3 = semget$private(0x0, 0x4, 0x20)
clock_gettime(0x0, &(0x7f0000000140)={<r4=>0x0, <r5=>0x0})
semtimedop(r3, &(0x7f0000000100)=[{0x4, 0x3ff, 0x1800}], 0x1, &(0x7f0000000180)={r4, r5+60000000})

08:53:25 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000)
ioctl$FAT_IOCTL_GET_VOLUME_ID(r0, 0x80047213, &(0x7f0000000000))
clock_gettime(0x0, &(0x7f0000004f40)={<r1=>0x0, <r2=>0x0})
recvmmsg$unix(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000140)=""/54, 0x36}, {&(0x7f0000000180)=""/203, 0xcb}], 0x2}}, {{&(0x7f00000002c0), 0x6e, &(0x7f00000026c0)=[{&(0x7f0000000340)=""/96, 0x60}, {&(0x7f00000003c0)=""/169, 0xa9}, {&(0x7f0000000480)=""/9, 0x9}, {&(0x7f0000001600)=""/4096, 0x1000}, {&(0x7f00000004c0)=""/41, 0x29}, {&(0x7f0000000500)=""/128, 0x80}, {&(0x7f0000000580)=""/8, 0x8}, {&(0x7f0000002600)=""/134, 0x86}], 0x8, &(0x7f0000002740)=[@cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x58}}, {{&(0x7f00000027c0), 0x6e, &(0x7f0000003a00)=[{&(0x7f0000002840)=""/247, 0xf7}, {&(0x7f0000002940)=""/4096, 0x1000}, {&(0x7f0000003940)=""/76, 0x4c}, {&(0x7f00000039c0)=""/56, 0x38}], 0x4, &(0x7f0000003a40)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f0000003a80)=@abs, 0x6e, &(0x7f0000003bc0)=[{&(0x7f0000003b00)=""/18, 0x12}, {&(0x7f0000003b40)=""/82, 0x52}], 0x2}}, {{0x0, 0x0, &(0x7f0000003d80)=[{&(0x7f0000003c00)=""/122, 0x7a}, {&(0x7f0000003c80)=""/252, 0xfc}], 0x2, &(0x7f0000003dc0)=[@rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {<r3=>0x0}}}], 0xf0}}, {{&(0x7f0000003ec0)=@abs, 0x6e, &(0x7f00000040c0)=[{&(0x7f0000003f40)=""/144, 0x90}, {&(0x7f0000004000)=""/188, 0xbc}], 0x2}}, {{&(0x7f0000004100)=@abs, 0x6e, &(0x7f00000044c0)=[{&(0x7f0000004180)=""/132, 0x84}, {&(0x7f0000004240)=""/247, 0xf7}, {&(0x7f0000004340)=""/208, 0xd0}, {&(0x7f0000004440)=""/111, 0x6f}], 0x4, &(0x7f0000004500)=[@cred={{0x1c}}, @cred={{0x1c}}], 0x40}}, {{0x0, 0x0, &(0x7f00000045c0)=[{&(0x7f0000004540)=""/75, 0x4b}, {0xffffffffffffffff}], 0x2, &(0x7f0000004600)=[@rights={{0x10}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x110}}, {{&(0x7f0000004740), 0x6e, &(0x7f0000004b80)=[{&(0x7f00000047c0)=""/14, 0xe}, {&(0x7f0000004800)=""/245, 0xf5}, {&(0x7f0000004900)=""/230, 0xe6}, {&(0x7f0000004a00)=""/243, 0xf3}, {&(0x7f0000004b00)=""/63, 0x3f}, {&(0x7f0000004b40)=""/34, 0x22}], 0x6, &(0x7f0000004c00)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xf8}}], 0x9, 0x102, &(0x7f0000004f80)={r1, r2+10000000})
r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r5, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000000080)={<r6=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r6, 0x3, r4, 0xa)
r7 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000005000), 0x101001, 0x0)
clone3(&(0x7f0000005040)={0x810000, &(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0), {0x2b}, &(0x7f0000000100)=""/48, 0x30, &(0x7f0000000600)=""/4096, &(0x7f0000004fc0)=[r3, 0xffffffffffffffff, r6], 0x3, {r7}}, 0x58)

08:53:25 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x0, 0x6c5)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
pread64(r1, &(0x7f00000000c0)=""/194, 0xc2, 0x3)

08:53:25 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9) (fail_nth: 16)

08:53:25 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000000000000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:53:25 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00') (fail_nth: 16)

[ 3462.334289] FAULT_INJECTION: forcing a failure.
[ 3462.334289] name failslab, interval 1, probability 0, space 0, times 0
[ 3462.335408] CPU: 1 PID: 21737 Comm: syz-executor.2 Not tainted 5.10.226 #1
[ 3462.336043] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3462.336802] Call Trace:
[ 3462.337055]  dump_stack+0x107/0x167
[ 3462.337392]  should_fail.cold+0x5/0xa
[ 3462.337744]  ? __d_alloc+0x2a/0x990
[ 3462.338078]  should_failslab+0x5/0x20
[ 3462.338434]  kmem_cache_alloc+0x5b/0x310
[ 3462.338820]  __d_alloc+0x2a/0x990
[ 3462.339157]  d_alloc_parallel+0x111/0x1bc0
[ 3462.339554]  ? __d_lookup+0x396/0x760
[ 3462.339905]  ? lock_downgrade+0x6d0/0x6d0
[ 3462.340300]  ? find_held_lock+0x2c/0x110
[ 3462.340658]  ? __d_lookup_rcu+0x6d0/0x6d0
[ 3462.341010]  ? __d_lookup+0x3bf/0x760
[ 3462.341337]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3462.341785]  lookup_open.isra.0+0x962/0x1270
[ 3462.342160]  ? vfs_tmpfile+0x350/0x350
[ 3462.342510]  ? __mnt_want_write+0x196/0x280
[ 3462.342878]  path_openat+0x972/0x2770
[ 3462.343211]  ? path_lookupat+0x860/0x860
[ 3462.343560]  ? perf_trace_lock+0xac/0x490
[ 3462.343910]  ? lock_acquire+0x197/0x470
[ 3462.344267]  ? find_held_lock+0x2c/0x110
[ 3462.344656]  ? __lockdep_reset_lock+0x180/0x180
[ 3462.345091]  do_filp_open+0x190/0x3e0
[ 3462.345442]  ? may_open_dev+0xf0/0xf0
[ 3462.345808]  ? simple_attr_release+0x50/0x50
[ 3462.346222]  ? _raw_spin_unlock+0x1a/0x30
[ 3462.346611]  ? alloc_fd+0x2e7/0x670
[ 3462.346962]  do_sys_openat2+0x171/0x4d0
[ 3462.347334]  ? build_open_flags+0x6f0/0x6f0
[ 3462.347740]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3462.348194]  ? wait_for_completion_io+0x270/0x270
[ 3462.348669]  __x64_sys_openat+0x13f/0x1f0
[ 3462.349055]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3462.349445]  ? ksys_write+0x1a9/0x260
[ 3462.349805]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3462.350276]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3462.350749]  do_syscall_64+0x33/0x40
[ 3462.351096]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3462.351565] RIP: 0033:0x7f98c45cca04
[ 3462.351908] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3462.353566] RSP: 002b:00007f98c1b8f060 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3462.354253] RAX: ffffffffffffffda RBX: 00007f98c472cf60 RCX: 00007f98c45cca04
[ 3462.354870] RDX: 0000000000000002 RSI: 00007f98c1b8f0f0 RDI: 00000000ffffff9c
[ 3462.355503] RBP: 00007f98c1b8f0f0 R08: 0000000000000000 R09: 00007f98c1b8ef70
[ 3462.356150] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 3462.356823] R13: 00007fff6ecaf52f R14: 00007f98c1b8f300 R15: 0000000000022000
08:53:25 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
getsockopt$IP_SET_OP_GET_FNAME(r0, 0x1, 0x53, &(0x7f0000000040)={0x8, 0x7, 0x0, 'syz1\x00'}, &(0x7f0000000080)=0x2c)
r1 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
fallocate(0xffffffffffffffff, 0x4, 0x797e, 0x0)
pread64(r1, 0x0, 0x7ffffffff000, 0x806c54747f0000)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r1, 0xc018937a, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r2=>r1, {0x34c}}, './file0\x00'})
ioctl$BLKRRPART(r2, 0x125f, 0x0)

08:53:25 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000)
r1 = socket(0x11, 0x5, 0xc5b)
writev(r1, &(0x7f0000000080)=[{&(0x7f0000000000)="353ddb4bebf033d28f9ee004c549f4479e1de0c5bb5d1db614fc7623d065b9dfbf97f07b490c069f43d9085b4effb1b825dcca04c958393e572babb7ee501b2774bb123b80f2ae5fb00bf612fd0fd0f860d609fd59e342d04236e7cbfe56287c9d8ff95ae4d16246ccd7a5d345c1bda1d21a", 0x72}], 0x1)

[ 3462.389082] FAULT_INJECTION: forcing a failure.
[ 3462.389082] name failslab, interval 1, probability 0, space 0, times 0
[ 3462.390366] CPU: 0 PID: 21731 Comm: syz-executor.0 Not tainted 5.10.226 #1
[ 3462.391000] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3462.391740] Call Trace:
[ 3462.391979]  dump_stack+0x107/0x167
[ 3462.392326]  should_fail.cold+0x5/0xa
[ 3462.392674]  ? create_object.isra.0+0x3a/0xa20
[ 3462.393090]  should_failslab+0x5/0x20
[ 3462.393444]  kmem_cache_alloc+0x5b/0x310
[ 3462.393821]  ? igrab+0xc0/0xc0
[ 3462.394126]  create_object.isra.0+0x3a/0xa20
[ 3462.394530]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3462.395002]  __kmalloc+0x16e/0x390
[ 3462.395338]  iter_file_splice_write+0x16d/0xc30
[ 3462.395762]  ? atime_needs_update+0x600/0x600
[ 3462.396180]  ? __fsnotify_parent+0x47a/0xb10
[ 3462.396629]  ? generic_splice_sendpage+0x140/0x140
[ 3462.397087]  ? pipe_to_user+0x170/0x170
[ 3462.397471]  ? security_file_permission+0xb1/0xe0
[ 3462.397912]  ? generic_splice_sendpage+0x140/0x140
[ 3462.398352]  direct_splice_actor+0x10f/0x170
[ 3462.398767]  splice_direct_to_actor+0x387/0x980
[ 3462.399201]  ? pipe_to_sendpage+0x380/0x380
[ 3462.399606]  ? do_splice_to+0x160/0x160
[ 3462.399980]  ? security_file_permission+0xb1/0xe0
[ 3462.400467]  do_splice_direct+0x1c4/0x290
[ 3462.400915]  ? splice_direct_to_actor+0x980/0x980
[ 3462.401419]  ? avc_policy_seqno+0x9/0x70
[ 3462.401858]  ? security_file_permission+0xb1/0xe0
[ 3462.402372]  do_sendfile+0x553/0x11e0
[ 3462.402782]  ? do_pwritev+0x270/0x270
[ 3462.403191]  ? wait_for_completion_io+0x270/0x270
[ 3462.403699]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3462.404183]  ? vfs_write+0x354/0xb10
[ 3462.404254] FAULT_INJECTION: forcing a failure.
[ 3462.404254] name failslab, interval 1, probability 0, space 0, times 0
[ 3462.404531]  __x64_sys_sendfile64+0x1d1/0x210
[ 3462.404551]  ? __ia32_sys_sendfile+0x220/0x220
[ 3462.406214]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3462.406668]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3462.407108]  do_syscall_64+0x33/0x40
[ 3462.407426]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3462.407866] RIP: 0033:0x7f5117aedb19
[ 3462.408186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3462.413745] RSP: 002b:00007f5115063188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3462.414383] RAX: ffffffffffffffda RBX: 00007f5117c00f60 RCX: 00007f5117aedb19
[ 3462.414980] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000000a
[ 3462.415578] RBP: 00007f51150631d0 R08: 0000000000000000 R09: 0000000000000000
[ 3462.416174] R10: 000000007ffffff9 R11: 0000000000000246 R12: 0000000000000002
[ 3462.416800] R13: 00007ffc6010669f R14: 00007f5115063300 R15: 0000000000022000
[ 3462.417419] CPU: 1 PID: 21742 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3462.418052] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3462.418797] Call Trace:
[ 3462.419046]  dump_stack+0x107/0x167
[ 3462.419391]  should_fail.cold+0x5/0xa
[ 3462.419758]  ? __kernfs_new_node+0xd4/0x860
[ 3462.420167]  should_failslab+0x5/0x20
[ 3462.420574]  kmem_cache_alloc+0x5b/0x310
[ 3462.420961]  __kernfs_new_node+0xd4/0x860
[ 3462.421358]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 3462.421798]  ? perf_trace_lock+0xac/0x490
[ 3462.422183]  ? perf_trace_lock+0xac/0x490
[ 3462.422574]  ? lock_chain_count+0x20/0x20
[ 3462.422964]  ? __lockdep_reset_lock+0x180/0x180
[ 3462.423399]  ? __lockdep_reset_lock+0x180/0x180
[ 3462.423838]  ? update_load_avg+0x162/0x1870
[ 3462.424279]  ? find_held_lock+0x2c/0x110
[ 3462.425097]  kernfs_new_node+0x18d/0x250
[ 3462.425905]  kernfs_create_dir_ns+0x49/0x160
[ 3462.426765]  internal_create_group+0x793/0xb30
[ 3462.427669]  ? set_user_nice.part.0+0x2fd/0x760
[ 3462.428424]  ? sysfs_remove_group+0x170/0x170
[ 3462.428848]  ? lockdep_init_map_type+0x2c7/0x780
[ 3462.429296]  ? blk_queue_flag_set+0x22/0x30
[ 3462.429694]  ? __loop_update_dio+0x2d2/0x690
[ 3462.430100]  loop_configure+0x958/0x1490
[ 3462.430488]  lo_ioctl+0xa72/0x1760
[ 3462.430823]  ? avc_has_extended_perms+0x7f1/0xf40
[ 3462.431263]  ? loop_set_status_old+0x250/0x250
[ 3462.431683]  ? avc_ss_reset+0x180/0x180
[ 3462.432057]  ? find_held_lock+0x2c/0x110
[ 3462.432468]  ? __lock_acquire+0xbb1/0x5b00
[ 3462.432865]  ? selinux_bprm_creds_for_exec+0xb60/0xb60
[ 3462.433304]  ? generic_block_fiemap+0x60/0x60
[ 3462.433680]  ? lock_downgrade+0x6d0/0x6d0
[ 3462.434027]  ? build_open_flags+0x6f0/0x6f0
[ 3462.434387]  ? find_held_lock+0x2c/0x110
[ 3462.434733]  ? loop_set_status_old+0x250/0x250
[ 3462.435116]  blkdev_ioctl+0x291/0x710
[ 3462.435438]  ? blkdev_common_ioctl+0x1930/0x1930
[ 3462.435843]  ? selinux_file_ioctl+0xb6/0x270
[ 3462.436234]  block_ioctl+0xf9/0x140
[ 3462.436587]  ? blkdev_read_iter+0x1c0/0x1c0
[ 3462.436990]  __x64_sys_ioctl+0x19a/0x210
[ 3462.437371]  do_syscall_64+0x33/0x40
[ 3462.437721]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3462.438190] RIP: 0033:0x7f71ab2628d7
[ 3462.438539] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3462.440192] RSP: 002b:00007f71a87d7f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 3462.440897] RAX: ffffffffffffffda RBX: 00007f71ab2ac970 RCX: 00007f71ab2628d7
[ 3462.441550] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[ 3462.442199] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[ 3462.442847] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[ 3462.443495] R13: 0000000000000004 R14: 0000000020000c00 R15: 0000000000000000
08:53:25 executing program 6:
r0 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ff2000/0xb000)=nil, 0xb000, 0x4, 0x4010, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r0, 0x0, &(0x7f0000000040)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x4, 0x2007, @fd, 0x9, 0x0, 0x0, 0x17, 0x1, {0x2}}, 0x4)
r1 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r1, 0x0, 0x7ffffffff000, 0x200000000000000)

08:53:25 executing program 5:
kexec_load(0x1f, 0x6, &(0x7f0000001380)=[{&(0x7f0000000080)="2d84c48b97a313160533b9b25a8c9918be8150f88d813019208854893fb8049602c7c469380dd4593c6c86689f707feb2d741c93b362f8bd55b2a9822d6e38cb37b3a1ea70f092c3b460454332008aa8f40459a6d18b23d5d9a324e23867a158356fde529899d2e18f209b5e8c55686d9047ba2dfb356de95ba5af6f12274bba046c021afd4624bb37d3a98001d697eb115201a369d1f61845dc665a6581a0cda8f540534c7777156c4a88701d472bf94bc2f5b9574cdc801e071a92979bde2e3b9d509378fafb1ace5e85a30563397ad29ad0a31607", 0xd6, 0x3ff, 0x2}, {&(0x7f0000000180)="21d9d91a9433922d8e84b384be7231020fbcb0a72042956ee5ca51f533f2ba641b85b18eb575542f67774a0e1f6e672f7297b70f5a068ace93acee44e9ff2e3e612d0c1073da70c199b72e3d6fe2eac9069f671c8a9f1722a4c93ea542936b2a4129dec8061eed5aac3bbcc00ce0936ab3d89f946e6f0a2be315e02591f61d682467e5dffd6473b78e2b81dc46677ae680d1ae568285c21869661945cc20a46bffe453ac1501274c12f34fcbf911365255cfbe9e8380925a6e6c1b8a949199d499a56d9cab37e3b9ce8856851268755a8f3e39", 0xd3, 0x3, 0x8000000000000}, {&(0x7f0000000280)="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", 0x1000, 0x3, 0x100000001}, {&(0x7f0000001280)="c6b493c6446a491733319ec31ecbc77ae0257c70bcca2d6e2204631913eaad8a20d02592eca4ec9aa6a2880122bc0fc35606c65c9acd617197d5126c7083a3763f4b354313bdcf86f3877cb3feeae0c6ac13e11a4c57c66eedcd91341b037b1d494446ebaecf2a7c11c59345e2bfeb39e46f807a07cadd48cb0b589818c8fe14ce678559361fee49338a3ffc93ae504df15034fef02775ffcc72c2fe4c643962602104043695c7052417069d2ae7c2c76acb6211", 0xb4, 0x7fffffff, 0x80}, {&(0x7f0000000000)="22c3e28df657d4489dd9b36c73067c8161416531618a6a51d773a18fefb0350f4725bbd5e4878e239020438ea6e55b63062668029440e913f04fc8150b19", 0x3e, 0x2, 0x9}, {&(0x7f0000001340)="5bf3feee2d3f7957d4a98999a0", 0xd, 0x4, 0xffffffffffffff80}], 0x140000)
syz_80211_inject_frame(&(0x7f0000000040)=@device_a={0x3}, &(0x7f0000000140)=ANY=[], 0x34)

08:53:25 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r0, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
ioctl$CDROMEJECT(r0, 0x5309)
r1 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r1, 0x0, 0x7ffffffff000, 0x806c54747f0000)

[ 3462.513365] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:53:25 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9) (fail_nth: 17)

08:53:25 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00') (fail_nth: 17)

08:53:25 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000000000000, 0x5, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:53:26 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)
r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r2, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000080)={<r3=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r3, 0x3, r1, 0xa)
fcntl$lock(r0, 0x26, &(0x7f0000000000)={0x2, 0x2, 0x9b, 0x5, r3})

[ 3462.641223] FAULT_INJECTION: forcing a failure.
[ 3462.641223] name failslab, interval 1, probability 0, space 0, times 0
[ 3462.642230] CPU: 1 PID: 21768 Comm: syz-executor.2 Not tainted 5.10.226 #1
[ 3462.642809] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3462.643499] Call Trace:
[ 3462.643731]  dump_stack+0x107/0x167
[ 3462.644044]  should_fail.cold+0x5/0xa
[ 3462.644418]  ? create_object.isra.0+0x3a/0xa20
[ 3462.644848]  should_failslab+0x5/0x20
[ 3462.645187]  kmem_cache_alloc+0x5b/0x310
[ 3462.645563]  create_object.isra.0+0x3a/0xa20
[ 3462.645964]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3462.646440]  kmem_cache_alloc+0x159/0x310
[ 3462.646830]  __d_alloc+0x2a/0x990
[ 3462.647161]  d_alloc_parallel+0x111/0x1bc0
[ 3462.647553]  ? __d_lookup+0x396/0x760
[ 3462.647905]  ? lock_downgrade+0x6d0/0x6d0
[ 3462.648299]  ? find_held_lock+0x2c/0x110
[ 3462.648682]  ? __d_lookup_rcu+0x6d0/0x6d0
[ 3462.649066]  ? __d_lookup+0x3bf/0x760
[ 3462.649420]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3462.649902]  lookup_open.isra.0+0x962/0x1270
[ 3462.650309]  ? vfs_tmpfile+0x350/0x350
[ 3462.650691]  ? __mnt_want_write+0x196/0x280
[ 3462.651085]  path_openat+0x972/0x2770
[ 3462.651443]  ? path_lookupat+0x860/0x860
[ 3462.651821]  ? perf_trace_lock+0xac/0x490
[ 3462.652215]  ? lock_acquire+0x197/0x470
[ 3462.652596]  ? find_held_lock+0x2c/0x110
[ 3462.652974]  ? __lockdep_reset_lock+0x180/0x180
[ 3462.653402]  do_filp_open+0x190/0x3e0
[ 3462.653752]  ? may_open_dev+0xf0/0xf0
[ 3462.654116]  ? simple_attr_release+0x50/0x50
[ 3462.654187] FAULT_INJECTION: forcing a failure.
[ 3462.654187] name failslab, interval 1, probability 0, space 0, times 0
[ 3462.654508]  ? _raw_spin_unlock+0x1a/0x30
[ 3462.654524]  ? alloc_fd+0x2e7/0x670
[ 3462.654548]  do_sys_openat2+0x171/0x4d0
[ 3462.654570]  ? build_open_flags+0x6f0/0x6f0
[ 3462.654584]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3462.654603]  ? wait_for_completion_io+0x270/0x270
[ 3462.657953]  __x64_sys_openat+0x13f/0x1f0
[ 3462.658315]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3462.658693]  ? ksys_write+0x1a9/0x260
[ 3462.659030]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3462.659479]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3462.659935]  do_syscall_64+0x33/0x40
[ 3462.660273]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3462.660710] RIP: 0033:0x7f98c45cca04
[ 3462.661025] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3462.662552] RSP: 002b:00007f98c1b8f060 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3462.663197] RAX: ffffffffffffffda RBX: 00007f98c472cf60 RCX: 00007f98c45cca04
[ 3462.663796] RDX: 0000000000000002 RSI: 00007f98c1b8f0f0 RDI: 00000000ffffff9c
[ 3462.664462] RBP: 00007f98c1b8f0f0 R08: 0000000000000000 R09: 00007f98c1b8ef70
[ 3462.665075] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 3462.665689] R13: 00007fff6ecaf52f R14: 00007f98c1b8f300 R15: 0000000000022000
[ 3462.666312] CPU: 0 PID: 21763 Comm: syz-executor.0 Not tainted 5.10.226 #1
[ 3462.666946] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3462.667693] Call Trace:
[ 3462.667943]  dump_stack+0x107/0x167
[ 3462.668296]  should_fail.cold+0x5/0xa
[ 3462.668660]  ? ext4_mb_new_blocks+0x698/0x45c0
[ 3462.669091]  should_failslab+0x5/0x20
[ 3462.669445]  kmem_cache_alloc+0x5b/0x310
[ 3462.669833]  ext4_mb_new_blocks+0x698/0x45c0
[ 3462.670257]  ? trace_hardirqs_on+0x5b/0x180
[ 3462.670667]  ? kasan_unpoison_shadow+0x33/0x50
[ 3462.671098]  ? ext4_cache_extents+0x68/0x2d0
[ 3462.671511]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3462.671984]  ? ext4_discard_preallocations+0xd80/0xd80
[ 3462.672472]  ? ext4_ext_search_right+0x2e3/0xbd0
[ 3462.672871]  ? ext4_inode_to_goal_block+0x320/0x430
[ 3462.673296]  ext4_ext_map_blocks+0x1d49/0x5830
[ 3462.673693]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3462.674129]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 3462.674504]  ? _raw_spin_unlock_irq+0x27/0x30
[ 3462.674881]  ? _raw_spin_unlock_irq+0x1f/0x30
[ 3462.675263]  ? finish_task_switch+0x126/0x5d0
[ 3462.675641]  ? ext4_ext_release+0x10/0x10
[ 3462.675994]  ? ext4_map_blocks+0x5cd/0x1910
[ 3462.676412]  ? lock_release+0x680/0x680
08:53:26 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 24)

08:53:26 executing program 7:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r1, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000080)={<r2=>0x0}, &(0x7f00000003c0)=0xc)
r3 = dup(r1)
ioctl$sock_inet_SIOCSIFNETMASK(r3, 0x891c, &(0x7f00000000c0)={'veth0_to_bridge\x00', {0x2, 0x0, @multicast2}})
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_bp={&(0x7f0000000000), 0x4}, 0x6080, 0x1006, 0x9, 0x7, 0x10000, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r2, 0x3, r0, 0xa)
r4 = syz_open_procfs(r2, &(0x7f00000005c0)='pagemap\x00')
pread64(r4, 0x0, 0x7ffffffff000, 0x200000000000)

[ 3462.676775]  ? io_schedule_timeout+0x140/0x140
[ 3462.684647]  ? ext4_es_lookup_extent+0x48d/0xaa0
[ 3462.685092]  ? find_held_lock+0x2c/0x110
[ 3462.685549]  ? down_write_killable+0x180/0x180
[ 3462.686031]  ext4_map_blocks+0x63f/0x1910
[ 3462.686447]  ? kmem_cache_alloc+0x2a6/0x310
[ 3462.686855]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 3462.687281]  ? jbd2__journal_start+0xf3/0x7e0
[ 3462.687753]  ? __ext4_journal_start_sb+0x214/0x390
[ 3462.688266]  ? __ext4_journal_start_sb+0x1db/0x390
[ 3462.688740]  ext4_iomap_begin+0x3ad/0x700
[ 3462.689145]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 3462.689612]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 3462.690191]  ? splice_direct_to_actor+0x387/0x980
[ 3462.690651]  iomap_apply+0x164/0x810
[ 3462.691005]  ? iomap_dio_rw+0x90/0x90
[ 3462.691368]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 3462.691917]  ? mark_held_locks+0x9e/0xe0
[ 3462.692338]  ? filemap_check_errors+0xa5/0x150
[ 3462.692777]  __iomap_dio_rw+0x6cd/0x1110
[ 3462.693165]  ? iomap_dio_rw+0x90/0x90
[ 3462.693542]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 3462.693970]  ? ext4_orphan_add+0x253/0x9e0
[ 3462.694368]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 3462.694824]  ? ext4_empty_dir+0xae0/0xae0
[ 3462.695217]  ? jbd2__journal_start+0xf3/0x7e0
[ 3462.695644]  iomap_dio_rw+0x31/0x90
[ 3462.695987]  ext4_file_write_iter+0xb26/0x18d0
[ 3462.696473]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 3462.696897]  ? kasan_save_stack+0x32/0x40
[ 3462.697281]  ? kasan_save_stack+0x1b/0x40
[ 3462.697671]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3462.698147]  ? iter_file_splice_write+0x16d/0xc30
[ 3462.698596]  ? direct_splice_actor+0x10f/0x170
[ 3462.699015]  ? splice_direct_to_actor+0x387/0x980
[ 3462.699464]  ? do_splice_direct+0x1c4/0x290
[ 3462.699855]  ? do_sendfile+0x553/0x11e0
[ 3462.700272]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 3462.700672]  ? do_syscall_64+0x33/0x40
[ 3462.700999]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3462.701456]  do_iter_readv_writev+0x476/0x750
[ 3462.701839]  ? new_sync_write+0x660/0x660
[ 3462.702188]  ? avc_policy_seqno+0x9/0x70
[ 3462.702531]  ? selinux_file_permission+0x92/0x520
[ 3462.702943]  ? security_file_permission+0xb1/0xe0
[ 3462.703356]  do_iter_write+0x191/0x700
[ 3462.703687]  ? trace_hardirqs_on+0x5b/0x180
[ 3462.704061]  vfs_iter_write+0x70/0xa0
[ 3462.704479]  iter_file_splice_write+0x762/0xc30
[ 3462.704930]  ? generic_splice_sendpage+0x140/0x140
[ 3462.705409]  ? security_file_permission+0xb1/0xe0
[ 3462.705863]  ? generic_splice_sendpage+0x140/0x140
[ 3462.706317]  direct_splice_actor+0x10f/0x170
[ 3462.706736]  splice_direct_to_actor+0x387/0x980
[ 3462.707180]  ? pipe_to_sendpage+0x380/0x380
[ 3462.707591]  ? do_splice_to+0x160/0x160
[ 3462.707971]  ? security_file_permission+0xb1/0xe0
[ 3462.708758]  do_splice_direct+0x1c4/0x290
[ 3462.709647]  ? splice_direct_to_actor+0x980/0x980
[ 3462.710664]  ? avc_policy_seqno+0x9/0x70
[ 3462.711530]  ? security_file_permission+0xb1/0xe0
[ 3462.712377]  do_sendfile+0x553/0x11e0
[ 3462.712744]  ? do_pwritev+0x270/0x270
[ 3462.713105]  ? wait_for_completion_io+0x270/0x270
[ 3462.713561]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3462.713983]  ? vfs_write+0x354/0xb10
[ 3462.714335]  __x64_sys_sendfile64+0x1d1/0x210
[ 3462.714745]  ? __ia32_sys_sendfile+0x220/0x220
[ 3462.715159]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3462.715639]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3462.716112]  do_syscall_64+0x33/0x40
[ 3462.716527]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3462.716990] RIP: 0033:0x7f5117aedb19
[ 3462.717337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3462.718958] RSP: 002b:00007f5115063188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3462.719617] RAX: ffffffffffffffda RBX: 00007f5117c00f60 RCX: 00007f5117aedb19
[ 3462.720255] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000000a
[ 3462.721604] RBP: 00007f51150631d0 R08: 0000000000000000 R09: 0000000000000000
[ 3462.722880] R10: 000000007ffffff9 R11: 0000000000000246 R12: 0000000000000002
[ 3462.724146] R13: 00007ffc6010669f R14: 00007f5115063300 R15: 0000000000022000
08:53:26 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000000000000, 0x9, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:53:26 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r3=>0x0})
ioctl$AUTOFS_DEV_IOCTL_READY(r0, 0xc0189376, &(0x7f0000000040)={{0x1, 0x1, 0x18, r1, {0x8000}}, '.\x00'})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)={0x1c, r4, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}}, 0x1c}}, 0x0)
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000)

08:53:26 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)
recvmmsg$unix(r0, &(0x7f0000002bc0)=[{{&(0x7f0000000000), 0x6e, &(0x7f0000000100)=[{&(0x7f0000000080)=""/127, 0x7f}], 0x1, &(0x7f0000000140)=ANY=[@ANYBLOB="1c0000000000000001000076001e456c", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="34000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0xa8}}, {{&(0x7f0000000200)=@abs, 0x6e, &(0x7f0000000380)=[{&(0x7f0000000280)=""/144, 0x90}, {&(0x7f0000000340)=""/21, 0x15}], 0x2, &(0x7f00000003c0)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xa8}}, {{&(0x7f0000000480)=@abs, 0x6e, &(0x7f0000002a00)=[{&(0x7f0000000500)=""/62, 0x3e}, {&(0x7f0000000600)=""/130, 0x82}, {&(0x7f0000000540)=""/77, 0x4d}, {&(0x7f00000006c0)=""/83, 0x53}, {&(0x7f0000000740)=""/255, 0xff}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000001840)=""/4096, 0x1000}, {&(0x7f0000002840)=""/93, 0x5d}, {&(0x7f00000028c0)=""/79, 0x4f}, {&(0x7f0000002940)=""/179, 0xb3}], 0xa, &(0x7f0000002ac0)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xd0}}], 0x3, 0x2001, &(0x7f0000002c80)={0x77359400})

[ 3462.813053] FAULT_INJECTION: forcing a failure.
[ 3462.813053] name failslab, interval 1, probability 0, space 0, times 0
[ 3462.814123] CPU: 0 PID: 21777 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3462.814746] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3462.815495] Call Trace:
[ 3462.815758]  dump_stack+0x107/0x167
[ 3462.816112]  should_fail.cold+0x5/0xa
[ 3462.816504]  ? create_object.isra.0+0x3a/0xa20
[ 3462.816930]  should_failslab+0x5/0x20
[ 3462.817287]  kmem_cache_alloc+0x5b/0x310
[ 3462.828451]  create_object.isra.0+0x3a/0xa20
[ 3462.828862]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3462.829334]  kmem_cache_alloc+0x159/0x310
[ 3462.829731]  __kernfs_new_node+0xd4/0x860
[ 3462.830125]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 3462.830570]  ? lock_acquire+0x197/0x470
[ 3462.830939]  ? lock_chain_count+0x20/0x20
[ 3462.831329]  ? lock_acquire+0x197/0x470
[ 3462.831699]  ? task_rq_lock+0xab/0x270
[ 3462.832066]  ? lock_release+0x680/0x680
[ 3462.832465]  ? find_held_lock+0x2c/0x110
[ 3462.832861]  kernfs_new_node+0x18d/0x250
[ 3462.833246]  kernfs_create_dir_ns+0x49/0x160
[ 3462.833660]  internal_create_group+0x793/0xb30
[ 3462.834079]  ? set_user_nice.part.0+0x2fd/0x760
[ 3462.834469]  ? sysfs_remove_group+0x170/0x170
[ 3462.834879]  ? lockdep_init_map_type+0x2c7/0x780
[ 3462.835320]  ? blk_queue_flag_set+0x22/0x30
[ 3462.835720]  ? __loop_update_dio+0x2d2/0x690
[ 3462.836142]  loop_configure+0x958/0x1490
[ 3462.836569]  lo_ioctl+0xa72/0x1760
[ 3462.836905]  ? avc_has_extended_perms+0x7f1/0xf40
[ 3462.837368]  ? loop_set_status_old+0x250/0x250
[ 3462.837793]  ? avc_ss_reset+0x180/0x180
[ 3462.838178]  ? find_held_lock+0x2c/0x110
[ 3462.838568]  ? __lock_acquire+0xbb1/0x5b00
[ 3462.838992]  ? selinux_bprm_creds_for_exec+0xb60/0xb60
[ 3462.839467]  ? generic_block_fiemap+0x60/0x60
[ 3462.839872]  ? lock_downgrade+0x6d0/0x6d0
[ 3462.840260]  ? build_open_flags+0x6f0/0x6f0
[ 3462.840678]  ? find_held_lock+0x2c/0x110
[ 3462.841059]  ? loop_set_status_old+0x250/0x250
[ 3462.841481]  blkdev_ioctl+0x291/0x710
[ 3462.841848]  ? blkdev_common_ioctl+0x1930/0x1930
[ 3462.842283]  ? selinux_file_ioctl+0xb6/0x270
[ 3462.842711]  block_ioctl+0xf9/0x140
[ 3462.843048]  ? blkdev_read_iter+0x1c0/0x1c0
[ 3462.843453]  __x64_sys_ioctl+0x19a/0x210
[ 3462.843844]  do_syscall_64+0x33/0x40
[ 3462.844188]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3462.844660] RIP: 0033:0x7f71ab2628d7
[ 3462.844977] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3462.846498] RSP: 002b:00007f71a87d7f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 3462.847134] RAX: ffffffffffffffda RBX: 00007f71ab2ac970 RCX: 00007f71ab2628d7
[ 3462.847727] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[ 3462.848372] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[ 3462.849018] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[ 3462.849677] R13: 0000000000000004 R14: 0000000020000c00 R15: 0000000000000000
08:53:26 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r0, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_CONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)={0x40, r2, 0x5, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r3}, @val={0xc}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x3f}]]}, 0x40}}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)={0x40, r5, 0x5, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r6}, @val={0xc}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x3f}]]}, 0x40}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000003180)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_CQM(r1, &(0x7f00000032c0)={&(0x7f0000003140)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000003280)={&(0x7f00000031c0)={0xa4, r5, 0x300, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_CQM={0x14, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_HYST={0x8, 0x2, 0x7}, @NL80211_ATTR_CQM_TXE_PKTS={0x8, 0x6, 0x8}]}, @NL80211_ATTR_CQM={0x54, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_HYST={0x8, 0x2, 0xffffe541}, @NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT={0x8, 0x3, 0x8}, @NL80211_ATTR_CQM_RSSI_THOLD={0x10, 0x1, [0x7, 0x7b2, 0x6]}, @NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT={0x8, 0x3, 0x80000000}, @NL80211_ATTR_CQM_RSSI_HYST={0x8, 0x2, 0xba2b}, @NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT={0x8, 0x3, 0x7}, @NL80211_ATTR_CQM_RSSI_HYST={0x8, 0x2, 0x4}, @NL80211_ATTR_CQM_TXE_RATE={0x8, 0x5, 0x22}, @NL80211_ATTR_CQM_TXE_RATE={0x8, 0x5, 0x2f}]}, @NL80211_ATTR_CQM={0xc, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_HYST={0x8, 0x2, 0x200}]}, @NL80211_ATTR_CQM={0x14, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_LEVEL={0x8, 0x9, 0x2}, @NL80211_ATTR_CQM_TXE_INTVL={0x8, 0x7, 0xcc}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x4000}, 0x98)
sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r0, &(0x7f00000030c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000003080)={&(0x7f0000000100)={0x2f7c, r2, 0x200, 0x70bd2d, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_NAN_FUNC={0x1a0, 0xf0, 0x0, 0x1, [@NL80211_NAN_FUNC_INSTANCE_ID={0x5, 0xf, 0x6}, @NL80211_NAN_FUNC_PUBLISH_BCAST={0x4}, @NL80211_NAN_FUNC_TTL={0x8, 0xa, 0xf0000000}, @NL80211_NAN_FUNC_CLOSE_RANGE={0x4}, @NL80211_NAN_FUNC_FOLLOW_UP_DEST={0xa, 0x8, @broadcast}, @NL80211_NAN_FUNC_TX_MATCH_FILTER={0x16c, 0xe, 0x0, 0x1, [{0xa9, 0x0, "e8de1caf2df814e6b2b5f528ca0473a7291a9df5b8ec7d0fb2d26d26b92f9f569a256904558587070b7c78c369c8338dbe0d8f470569774be238d5739cc4b947ed2ce0781c45bf7e0684c5caa90fb0e4498343707e9f8929932c8a6714ffc5a9ed55d1359f715f54716e393b32e3114d8d4154b33869fc89ff9def4b7f61f09614fe92d2df769bdd0092faa7982e34f43b57c42f0d9cacae3d598509b0b0827c57d2a866e7"}, {0xb9, 0x0, "a971bfd70953747de6518d9f6961c480e88e89dbf541481a250a6ad751e3af7e640b0a23afaa0f1df140b3c989ed9752a975c3b766da57ab4c9610be8420f530c918a0f6de96e140188edc22911763fc45ae2997d1f54ce7b862bc6e11e3de40f427011bbdeea382c171cb5daaa09228d1011fc80369e5ccb00da3a90d6bba20bad979cd403ae3758e93d70dd85ada19c7a1878b1b4ed1287113a5b4592ea3909c6d9a37cff9ff40a1807c26c8ec35d78f6f52617c"}]}, @NL80211_NAN_FUNC_FOLLOW_UP_DEST={0xa}]}, @NL80211_ATTR_NAN_FUNC={0x128, 0xf0, 0x0, 0x1, [@NL80211_NAN_FUNC_SERVICE_INFO={0xc9, 0xb, "cda313b89814a878f5c4b3bd5496696a557a638e1c6ac6a7a430f0e901fc7a6ccde3749a6f36021d45a6fb8c693f3746e10e6ca7ddb014c48266a77e27a894c6d654bfe8a017e9ae65185e271ad21a15d9a05073cc27a92b00ce8593ebc24acb680bd844021f814b9fcb60943849de8b0af895de61ac4efb332ca73430e4bd4b8c5f3c44ff8d68a62a7c93dcb3e94e75b555fd5d1a8ab9657e116fedac042d30c265717b723617fe2379193de95240d9146bfbc531ac14ed121d6358d6e9b9b50e45024c30"}, @NL80211_NAN_FUNC_SERVICE_ID={0xa, 0x2, "03902f7a1774"}, @NL80211_NAN_FUNC_SERVICE_INFO={0x2b, 0xb, "a179ed755ea4e31241ffa71ce2c76699e1eadcb7d81befce78910c7ba22b005a74c609a6c202c5"}, @NL80211_NAN_FUNC_FOLLOW_UP_REQ_ID={0x5, 0x7, 0x20}, @NL80211_NAN_FUNC_FOLLOW_UP_REQ_ID={0x5, 0x7, 0x1}, @NL80211_NAN_FUNC_TTL={0x8, 0xa, 0x73bd90e2}, @NL80211_NAN_FUNC_TERM_REASON={0x5, 0x10, 0x8}]}, @NL80211_ATTR_NAN_FUNC={0x470, 0xf0, 0x0, 0x1, [@NL80211_NAN_FUNC_RX_MATCH_FILTER={0x46c, 0xd, 0x0, 0x1, [{0x16, 0x0, "a2f2a1f3fbccc65557dfd6ed82a8c4819895"}, {0xdd, 0x0, "812b516c7d7ac96648b3135a0f5025e0482aacb55b26ce4d439dd9726a16f5aa62bf1ca7ea541caadea6b644951a28e3cd0054cf900e0d98a6a4441bba3258ace4af248c038d24323e951d0eb436d9660186e65130d09f0354be5f219a7248ef5906b136c729389b9ab6552af09a22084728c44d0743808ddef4e85c84558ab1ca833db0823650c5cdc9234261b7a26ea7fa2f9343a9be563a05cf3b34b8031fbf736e3a5d17069f8052e3855dd7ef67b49fd87f399a8cbb2c23329fa3732d1f22772fee72721068dc90a1f4665920ad733cb96aa757c7b328"}, {0xe0, 0x0, "2ef26cd94713a4d33a552419215201f0add37a38e23717d05d6fafdb8f2879836b1f28d1ff45a6671960ee15656f49f6075b0918cf1c4342476d7a004c28028745ea94067f421ec57c49b1d1b9443911bb259b4bc018215721ff1f7915ec47b25fcfdf5a699307d6ef1b044e82f5307fb4be5463d6cd20ca6378f1273534f7639bf2c428a0b86b46aa3f53c88b87cbc6731675ecf2748093924373deb975ac3b39ee68db600d2b924d7922bd5595ab7f89b759ffb4216dcdc2af0211c9b0ab08e11f0183ae19e1b95e135497205af59937148fad1f72678eda6b11fc"}, {0xff, 0x0, "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"}, {0x8c, 0x0, "901b40e3e79c9f2a74226627b5b3bf634291453f906d409f8dec9f4ed8343f4350cec02ad04ff8ed4e1e8e6b214720a2b13775b783f35878a9413b3d98b24df3c342da94acbebe2766ce385293dc09ce3e2f96d62855dfc2cbf9335bfaa58198ff571420e93558d5772c371dc25fd82a0e3f93faf1f017d286c51f8aa33de360d6dc2ae927b4a225"}, {0x47, 0x0, "fe3246cf5cf10a39bf54848f0f323b948c5333a1852604d7be2f0f8a871a0ad2823708624db9c113968f57abad772d83ccca07d8eb9bb2fcc05b8346bf9671730759e6"}, {0xba, 0x0, "34ea9d5deb00166b01eea4fe615850b2c70b542f42a05d098f7bc280d03d4bab821309f1297a5517e18377320c45a0402594c0107b5c3a85814054fe7c0db4647a2fe39d53dbdbd3f0edaecc1ef2536a22bbbac24b4235fa58bdf79c4f83e2989e12a7ef5fe73f162a283fa435e68e993d526bcd4161963232e9628271624dfc3b982a39639352efeed7725031b8c1963b04d779be4e11108c2bcb1b7aa52dc811b6ad409fedc79bf6691570337ede94125f533e8729"}]}]}, @NL80211_ATTR_NAN_FUNC={0xd8, 0xf0, 0x0, 0x1, [@NL80211_NAN_FUNC_FOLLOW_UP_DEST={0xa, 0x8, @device_b}, @NL80211_NAN_FUNC_CLOSE_RANGE={0x4}, @NL80211_NAN_FUNC_TX_MATCH_FILTER={0xbc, 0xe, 0x0, 0x1, [{0x44, 0x0, "5f2a854b66648e0e6a3219d2fde84c4459cba6b2e21fc1501d3ae3f297521232f429f04072d8e3f136cee9ae6e7c1bccf697bfa701a3f5e65b7ef5df4286a0ca"}, {0xa, 0x0, "09fe7f79a2ca"}, {0x65, 0x0, "637d08c9cc2c8db6e8b0ac26a0909295b3bf35f7abbfda34256794a3ea417f7ab9829d3eb652d846f2152a8f10eb7d01b8a0cec8772a6aa80ff49c89c9e36fa34dafd82a2452fcfe852b5d1adb3b91299e13ec107f65269b980ce58b0ac5781afa"}]}, @NL80211_NAN_FUNC_TYPE={0x5}]}, @NL80211_ATTR_NAN_FUNC={0x14c, 0xf0, 0x0, 0x1, [@NL80211_NAN_FUNC_FOLLOW_UP_DEST={0xa, 0x8, @device_b}, @NL80211_NAN_FUNC_FOLLOW_UP_DEST={0xa, 0x8, @broadcast}, @NL80211_NAN_FUNC_SUBSCRIBE_ACTIVE={0x4}, @NL80211_NAN_FUNC_PUBLISH_TYPE={0x5, 0x3, 0x3}, @NL80211_NAN_FUNC_RX_MATCH_FILTER={0xc, 0xd, 0x0, 0x1, [{0x8, 0x0, "cccf0b0f"}]}, @NL80211_NAN_FUNC_SRF={0x110, 0xc, 0x0, 0x1, [@NL80211_NAN_SRF_BF_IDX={0x5, 0x3, 0xa0}, @NL80211_NAN_SRF_BF={0x103, 0x2, "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"}]}, @NL80211_NAN_FUNC_PUBLISH_BCAST={0x4}, @NL80211_NAN_FUNC_PUBLISH_BCAST={0x4}]}, @NL80211_ATTR_NAN_FUNC={0x12e0, 0xf0, 0x0, 0x1, [@NL80211_NAN_FUNC_RX_MATCH_FILTER={0x1180, 0xd, 0x0, 0x1, [{0x1004, 0x0, "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"}, {0x3b, 0x0, "71be7a318868a56071659c679afdfa468b614bd9ccb45f3e088caaf031efc460cdd6e3211f46f7de49c12cdc680d3a3eb23f0855f9085f"}, {0x27, 0x0, "050dc0b2cc51c72484daa75c6971b8e0ebeb45191edda9f6cede562deb941694f05cd6"}, {0x18, 0x0, "a1c33f05a23d29926e3b4b39fcd62704dae3fc48"}, {0xfb, 0x0, "5d37f64771ba98d208834f18850a2a03b09529703413e4c8516d09c1b97aac84702bfaf98a9069c0d786d7611cb2992c311ecb8124953dfdf163f2db73a0b9401de3da3af8fab637b080c94729e68b392b3d31ad5bf57b16202fa87896071ab44ca2d2038189d05f3ec72bb604b0805cff2c4594bc33a3d76c23a951c44cd6f2b3c675bca86db2ea58a690feb71dd3cbab68b9d967acf8b10ac0a0a0ad3da1e25b6d940f36d7aae1fd58f5e9b0a163b09c8ebd907e59007b273ebad320c5291ae6490ffbba1893e4a75fb74542310d68bbe082d03957938abed4872b4bdd3869c8d3457b1fcd6e4e3b68084313c0dc5f55f4dc21731de5"}]}, @NL80211_NAN_FUNC_TTL={0x8, 0xa, 0x9}, @NL80211_NAN_FUNC_CLOSE_RANGE={0x4}, @NL80211_NAN_FUNC_CLOSE_RANGE={0x4}, @NL80211_NAN_FUNC_SERVICE_ID={0xa, 0x2, "0a2163df4687"}, @NL80211_NAN_FUNC_TERM_REASON={0x5, 0x10, 0x40}, @NL80211_NAN_FUNC_SERVICE_ID={0xa, 0x2, "ef4fbafaf9f5"}, @NL80211_NAN_FUNC_RX_MATCH_FILTER={0x12c, 0xd, 0x0, 0x1, [{0xe7, 0x0, "e4fa5ae3263978ae2e1f6377ba42afb8673c307c2e51155697f67f03bac7ac6a0b470cd6d5c88618854b58c61b3d9438f1e9e17f258a6831484a4299481b9979b3655ccba2129dc9a84e794dada0f917c699be7a6b208f2a0faf417afba11a17e70aa2747b666f5867d0eda51218cc99899e2f83301b3c49cd415ebd60aa4c3a372f776bac43eda5e124b3e90b2469c4cc6c71f04dfb30911926e9c85a3afdd65ca04be0e2edf251414a6adffb301e45ecc7b27736630e5ea7c6f89922ad7a7194ee04f2cb23b6c2b304943c2bb4f8f402de142dcbfdbd572b4f1debbaabc5fd23d755"}, {0x3d, 0x0, "f3f9c8c8afb17dcc50ff68ea2a6e28e66c2fd737feae474c36a58b2d4b264a3442570dea9acc9159200d8cc91f7272758556243d5bb78bc289"}]}]}, @NL80211_ATTR_NAN_FUNC={0x116c, 0xf0, 0x0, 0x1, [@NL80211_NAN_FUNC_TX_MATCH_FILTER={0x4}, @NL80211_NAN_FUNC_PUBLISH_BCAST={0x4}, @NL80211_NAN_FUNC_TX_MATCH_FILTER={0x107c, 0xe, 0x0, 0x1, [{0x24, 0x0, "17894656f26c9665f0508461bbd9b40371cef2fb9665ff89fcc0dd1fed3e8b77"}, {0x1004, 0x0, "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"}, {0x4d, 0x0, "1d488c557a1e20caa1ca38b8720d33fe4970ab84fe6da0e9cb4cf684a77c37e551704f0f0733bb06c8a835ba59ec4d38d318f74f61c0d324617711e1df4865f8e3675eb34ea77f7361"}]}, @NL80211_NAN_FUNC_SERVICE_ID={0xa, 0x2, "b5f2281b7e0e"}, @NL80211_NAN_FUNC_TYPE={0x5, 0x1, 0x1}, @NL80211_NAN_FUNC_SRF={0xac, 0xc, 0x0, 0x1, [@NL80211_NAN_SRF_MAC_ADDRS={0x40, 0x4, 0x0, 0x1, [{0xa}, {0xa, 0x6, @broadcast}, {0xa}, {0xa}, {0xa}]}, @NL80211_NAN_SRF_MAC_ADDRS={0x1c, 0x4, 0x0, 0x1, [{0xa, 0x6, @device_b}, {0xa, 0x6, @broadcast}]}, @NL80211_NAN_SRF_MAC_ADDRS={0x4c, 0x4, 0x0, 0x1, [{0xa}, {0xa}, {0xa}, {0xa, 0x6, @device_b}, {0xa}, {0xa, 0x6, @broadcast}]}]}, @NL80211_NAN_FUNC_TYPE={0x5}, @NL80211_NAN_FUNC_FOLLOW_UP_ID={0x5, 0x6, 0x8}, @NL80211_NAN_FUNC_FOLLOW_UP_DEST={0xa}, @NL80211_NAN_FUNC_FOLLOW_UP_REQ_ID={0x5, 0x7, 0x40}]}, @NL80211_ATTR_NAN_FUNC={0x1c0, 0xf0, 0x0, 0x1, [@NL80211_NAN_FUNC_SERVICE_ID={0xa, 0x2, "192eb594e12c"}, @NL80211_NAN_FUNC_SUBSCRIBE_ACTIVE={0x4}, @NL80211_NAN_FUNC_FOLLOW_UP_ID={0x5, 0x6, 0x64}, @NL80211_NAN_FUNC_SERVICE_INFO={0x58, 0xb, "635147df6c1e77d1c3dfae34cfddd0b50ea4c028f5995597d36d98395c2f8ff55bff31e48b22dd683a4b9b2e7dd2595bfdf657f3298d8330ad3b45eaf3f228fc6c64f6527cb488e73d3bcb0d12d9b294e698dee9"}, @NL80211_NAN_FUNC_SRF={0x14c, 0xc, 0x0, 0x1, [@NL80211_NAN_SRF_INCLUDE={0x4}, @NL80211_NAN_SRF_BF_IDX={0x5}, @NL80211_NAN_SRF_MAC_ADDRS={0x1c, 0x4, 0x0, 0x1, [{0xa}, {0xa, 0x6, @broadcast}]}, @NL80211_NAN_SRF_BF={0x103, 0x2, "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"}, @NL80211_NAN_SRF_BF_IDX={0x5, 0x3, 0x3}, @NL80211_NAN_SRF_MAC_ADDRS={0x10, 0x4, 0x0, 0x1, [{0xa, 0x6, @device_b}]}, @NL80211_NAN_SRF_INCLUDE={0x4}]}]}]}, 0x2f7c}}, 0x0)
pidfd_send_signal(0xffffffffffffffff, 0x2e, &(0x7f0000000040)={0x0, 0x9, 0x5e84df85}, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000003100)='cpuset\x00')
r8 = syz_open_procfs(0x0, &(0x7f0000000000)='net/icmp6\x00')
ioctl$VFAT_IOCTL_READDIR_BOTH(r4, 0x82307201, &(0x7f0000003300)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
pread64(r8, 0x0, 0x7ffffffff000, 0x806c54747f0000)

08:53:26 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00') (fail_nth: 18)

08:53:26 executing program 5:
syz_80211_inject_frame(&(0x7f0000000040), &(0x7f0000000180)=ANY=[@ANYBLOB="f4b810bbae3df221374f5d60e2a9094c7b7c9b3fa3969dea75135cb46e9173cad293ab6e54861f1404a261af89492ccdb15dc4dc52c33c30042b569a79bb80f54d3f92c3ef24b9a8c1de8457bc1ce7cd7bd98bb103dbbd5fe9a94ef3420fa2aac2e15a5e1aeb7783ba5098ea8965a8b308ac078265aa269e722cf0dc3f820b0ff7db54c96e57b8c263447b5dce30969fb49b87a2aaa0bceafa8f636ca643e03814893fac73b4086252e22c572ea345b35758b4a61cb94bdc0a32b32e8749b291babafbae", @ANYRES64], 0x34)

[ 3462.878152] FAULT_INJECTION: forcing a failure.
[ 3462.878152] name failslab, interval 1, probability 0, space 0, times 0
[ 3462.879189] CPU: 0 PID: 21785 Comm: syz-executor.2 Not tainted 5.10.226 #1
[ 3462.879782] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3462.880560] Call Trace:
[ 3462.880823]  dump_stack+0x107/0x167
[ 3462.881175]  should_fail.cold+0x5/0xa
[ 3462.881549]  ? proc_alloc_inode+0x18/0x200
[ 3462.881955]  should_failslab+0x5/0x20
[ 3462.882316]  kmem_cache_alloc+0x5b/0x310
[ 3462.882704]  ? proc_free_inode+0x20/0x20
[ 3462.883089]  proc_alloc_inode+0x18/0x200
[ 3462.883470]  ? proc_free_inode+0x20/0x20
[ 3462.883853]  alloc_inode+0x63/0x240
[ 3462.884194]  new_inode+0x23/0x250
[ 3462.884559]  proc_pid_make_inode+0x22/0x220
[ 3462.884978]  proc_fd_instantiate+0x55/0x1f0
[ 3462.885390]  proc_lookupfd+0x105/0x1f0
[ 3462.885764]  ? tid_fd_revalidate+0x2b0/0x2b0
[ 3462.886210]  lookup_open.isra.0+0x79f/0x1270
[ 3462.886636]  ? vfs_tmpfile+0x350/0x350
[ 3462.887047]  ? __mnt_want_write+0x196/0x280
[ 3462.887483]  path_openat+0x972/0x2770
[ 3462.887868]  ? path_lookupat+0x860/0x860
[ 3462.888270]  ? perf_trace_lock+0x2bd/0x490
[ 3462.888676]  ? lock_acquire+0x197/0x470
[ 3462.889048]  ? find_held_lock+0x2c/0x110
[ 3462.889454]  ? __lockdep_reset_lock+0x180/0x180
[ 3462.889900]  do_filp_open+0x190/0x3e0
[ 3462.890257]  ? may_open_dev+0xf0/0xf0
[ 3462.890658]  ? simple_attr_release+0x50/0x50
[ 3462.891090]  ? _raw_spin_unlock+0x1a/0x30
[ 3462.891483]  ? alloc_fd+0x2e7/0x670
[ 3462.891863]  do_sys_openat2+0x171/0x4d0
[ 3462.892253]  ? build_open_flags+0x6f0/0x6f0
[ 3462.892687]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3462.893146]  ? wait_for_completion_io+0x270/0x270
[ 3462.893614]  __x64_sys_openat+0x13f/0x1f0
[ 3462.894017]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3462.894408]  ? ksys_write+0x1a9/0x260
[ 3462.894780]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3462.895274]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3462.895760]  do_syscall_64+0x33/0x40
[ 3462.896131]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3462.896636] RIP: 0033:0x7f98c45cca04
[ 3462.896988] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3462.898655] RSP: 002b:00007f98c1b8f060 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3462.899368] RAX: ffffffffffffffda RBX: 00007f98c472cf60 RCX: 00007f98c45cca04
[ 3462.900020] RDX: 0000000000000002 RSI: 00007f98c1b8f0f0 RDI: 00000000ffffff9c
[ 3462.900710] RBP: 00007f98c1b8f0f0 R08: 0000000000000000 R09: 00007f98c1b8ef70
[ 3462.901360] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 3462.902030] R13: 00007fff6ecaf52f R14: 00007f98c1b8f300 R15: 0000000000022000
[ 3463.028358] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3467.723492] Bluetooth: hci2: command 0x0409 tx timeout
[ 3469.784370] Bluetooth: hci2: command 0x041b tx timeout
[ 3471.820490] Bluetooth: hci2: command 0x040f tx timeout
[ 3472.742959] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 3472.743916] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 3472.745714] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 3472.781174] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 3472.782591] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 3472.784226] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 3472.883219] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3473.201803] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3473.868993] Bluetooth: hci2: command 0x0419 tx timeout
[ 3486.592844] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3486.612745] FAULT_INJECTION: forcing a failure.
[ 3486.612745] name failslab, interval 1, probability 0, space 0, times 0
[ 3486.613750] CPU: 0 PID: 22274 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3486.614332] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3486.615029] Call Trace:
[ 3486.615262]  dump_stack+0x107/0x167
[ 3486.615575]  should_fail.cold+0x5/0xa
[ 3486.615905]  ? __kernfs_new_node+0xd4/0x860
[ 3486.616276]  should_failslab+0x5/0x20
[ 3486.616631]  kmem_cache_alloc+0x5b/0x310
[ 3486.616984]  __kernfs_new_node+0xd4/0x860
[ 3486.617340]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 3486.617529] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3486.617738]  ? kernfs_add_one+0x36e/0x4d0
[ 3486.617760]  ? mutex_lock_io_nested+0xf30/0xf30
[ 3486.617777]  ? perf_trace_lock+0xac/0x490
[ 3486.619580]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3486.619990]  kernfs_new_node+0x18d/0x250
[ 3486.620337]  __kernfs_create_file+0x51/0x350
[ 3486.620737]  sysfs_add_file_mode_ns+0x221/0x560
[ 3486.621138]  internal_create_group+0x324/0xb30
[ 3486.621527]  ? sysfs_remove_group+0x170/0x170
[ 3486.621908]  ? lockdep_init_map_type+0x2c7/0x780
[ 3486.622311]  ? blk_queue_flag_set+0x22/0x30
[ 3486.622674]  ? __loop_update_dio+0x2d2/0x690
[ 3486.623048]  loop_configure+0x958/0x1490
[ 3486.623401]  lo_ioctl+0xa72/0x1760
[ 3486.623705]  ? avc_has_extended_perms+0x7f1/0xf40
[ 3486.624114]  ? loop_set_status_old+0x250/0x250
[ 3486.624523]  ? avc_ss_reset+0x180/0x180
[ 3486.624869]  ? find_held_lock+0x2c/0x110
[ 3486.625221]  ? __lock_acquire+0xbb1/0x5b00
[ 3486.625611]  ? selinux_bprm_creds_for_exec+0xb60/0xb60
[ 3486.626053]  ? generic_block_fiemap+0x60/0x60
[ 3486.626430]  ? lock_downgrade+0x6d0/0x6d0
[ 3486.626780]  ? build_open_flags+0x6f0/0x6f0
[ 3486.627142]  ? find_held_lock+0x2c/0x110
[ 3486.627489]  ? loop_set_status_old+0x250/0x250
[ 3486.627873]  blkdev_ioctl+0x291/0x710
[ 3486.628196]  ? blkdev_common_ioctl+0x1930/0x1930
[ 3486.632627]  ? selinux_file_ioctl+0xb6/0x270
[ 3486.633002]  block_ioctl+0xf9/0x140
[ 3486.633311]  ? blkdev_read_iter+0x1c0/0x1c0
[ 3486.633677]  __x64_sys_ioctl+0x19a/0x210
[ 3486.634022]  do_syscall_64+0x33/0x40
[ 3486.634338]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3486.634767] RIP: 0033:0x7f71ab2628d7
[ 3486.635083] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3486.636652] RSP: 002b:00007f71a87d7f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 3486.637296] RAX: ffffffffffffffda RBX: 00007f71ab2ac970 RCX: 00007f71ab2628d7
[ 3486.637892] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[ 3486.638486] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[ 3486.639080] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[ 3486.639676] R13: 0000000000000004 R14: 0000000020000c00 R15: 0000000000000000
08:53:49 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9) (fail_nth: 18)

08:53:49 executing program 5:
syz_80211_inject_frame(&(0x7f0000000040)=@device_a={0x3}, &(0x7f0000000140)=ANY=[], 0x34)
syz_80211_inject_frame(&(0x7f0000000000)=@device_b, &(0x7f0000000080)=@data_frame={@no_qos=@type01={{0x0, 0x2, 0x6, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1}, {0x6}, @broadcast, @from_mac, @broadcast, {0x7, 0xb6}}, @random="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"}, 0x23d)

08:53:49 executing program 3:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x185100, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
sendmsg$nl_generic(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x33, 0x2, 0x70bd29, 0x25dfdbfd, {0xa}, [@typed={0x8, 0xb, 0x0, 0x0, @fd=r1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x4000800)
r2 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r2, 0x0, 0x7ffffffff000, 0x806c54747f0000)
getsockopt$bt_BT_POWER(r2, 0x112, 0x9, &(0x7f0000000140)=0x91, &(0x7f0000000180)=0x1)

08:53:49 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000)
pipe(&(0x7f0000000000))

08:53:49 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000000000000, 0xf, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:53:49 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 25)

08:53:49 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00') (fail_nth: 19)

08:53:49 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x8901, &(0x7f0000001840)="fb")
ioctl$sock_bt_hci(r2, 0x800448d7, &(0x7f00000000c0)="ba")
read(r1, &(0x7f0000000000)=""/181, 0xb5)
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)

[ 3486.644240] FAULT_INJECTION: forcing a failure.
[ 3486.644240] name failslab, interval 1, probability 0, space 0, times 0
[ 3486.645282] CPU: 0 PID: 22262 Comm: syz-executor.2 Not tainted 5.10.226 #1
[ 3486.645870] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3486.646568] Call Trace:
[ 3486.646801]  dump_stack+0x107/0x167
[ 3486.647119]  should_fail.cold+0x5/0xa
[ 3486.647450]  ? create_object.isra.0+0x3a/0xa20
[ 3486.647844]  should_failslab+0x5/0x20
[ 3486.648173]  kmem_cache_alloc+0x5b/0x310
[ 3486.652563]  create_object.isra.0+0x3a/0xa20
[ 3486.652941]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3486.653379]  kmem_cache_alloc+0x159/0x310
[ 3486.653740]  ? proc_free_inode+0x20/0x20
[ 3486.654089]  proc_alloc_inode+0x18/0x200
[ 3486.654434]  ? proc_free_inode+0x20/0x20
[ 3486.654780]  alloc_inode+0x63/0x240
[ 3486.655092]  new_inode+0x23/0x250
[ 3486.655399]  proc_pid_make_inode+0x22/0x220
[ 3486.655771]  proc_fd_instantiate+0x55/0x1f0
[ 3486.656143]  proc_lookupfd+0x105/0x1f0
[ 3486.656477]  ? tid_fd_revalidate+0x2b0/0x2b0
[ 3486.656901]  lookup_open.isra.0+0x79f/0x1270
[ 3486.657291]  ? vfs_tmpfile+0x350/0x350
[ 3486.657666]  ? __mnt_want_write+0x196/0x280
[ 3486.658051]  path_openat+0x972/0x2770
[ 3486.658399]  ? path_lookupat+0x860/0x860
[ 3486.658749]  ? perf_trace_lock+0x2bd/0x490
[ 3486.659113]  ? lock_acquire+0x197/0x470
[ 3486.659456]  ? find_held_lock+0x2c/0x110
[ 3486.659810]  ? __lockdep_reset_lock+0x180/0x180
[ 3486.660218]  do_filp_open+0x190/0x3e0
[ 3486.660573]  ? may_open_dev+0xf0/0xf0
[ 3486.660921]  ? simple_attr_release+0x50/0x50
[ 3486.661319]  ? _raw_spin_unlock+0x1a/0x30
[ 3486.661672]  ? alloc_fd+0x2e7/0x670
[ 3486.662005]  do_sys_openat2+0x171/0x4d0
[ 3486.662354]  ? build_open_flags+0x6f0/0x6f0
[ 3486.662724]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3486.663142]  ? wait_for_completion_io+0x270/0x270
[ 3486.663566]  __x64_sys_openat+0x13f/0x1f0
[ 3486.663924]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3486.664286]  ? ksys_write+0x1a9/0x260
[ 3486.664677]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3486.665123]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3486.665580]  do_syscall_64+0x33/0x40
[ 3486.665899]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3486.666331] RIP: 0033:0x7f98c45cca04
[ 3486.666649] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3486.668171] RSP: 002b:00007f98c1b8f060 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3486.668843] RAX: ffffffffffffffda RBX: 00007f98c472cf60 RCX: 00007f98c45cca04
[ 3486.669447] RDX: 0000000000000002 RSI: 00007f98c1b8f0f0 RDI: 00000000ffffff9c
[ 3486.670052] RBP: 00007f98c1b8f0f0 R08: 0000000000000000 R09: 00007f98c1b8ef70
[ 3486.670659] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 3486.671261] R13: 00007fff6ecaf52f R14: 00007f98c1b8f300 R15: 0000000000022000
08:53:50 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/psched\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000)

08:53:50 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='gid_map\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)
r1 = ioctl$TIOCGPTPEER(r0, 0x5441, 0x5e)
sendfile(r1, r0, &(0x7f0000000000)=0x6, 0x7fff)

08:53:50 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00') (fail_nth: 20)

[ 3486.752258] FAULT_INJECTION: forcing a failure.
[ 3486.752258] name failslab, interval 1, probability 0, space 0, times 0
[ 3486.753292] CPU: 0 PID: 22288 Comm: syz-executor.2 Not tainted 5.10.226 #1
[ 3486.753880] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3486.754570] Call Trace:
[ 3486.754808]  dump_stack+0x107/0x167
[ 3486.755129]  should_fail.cold+0x5/0xa
[ 3486.755462]  ? security_inode_alloc+0x34/0x160
[ 3486.755878]  should_failslab+0x5/0x20
[ 3486.756205]  kmem_cache_alloc+0x5b/0x310
[ 3486.756588]  security_inode_alloc+0x34/0x160
[ 3486.756970]  inode_init_always+0xa4e/0xd10
[ 3486.757330]  ? proc_free_inode+0x20/0x20
[ 3486.757683]  alloc_inode+0x84/0x240
[ 3486.757998]  new_inode+0x23/0x250
[ 3486.758306]  proc_pid_make_inode+0x22/0x220
[ 3486.758679]  proc_fd_instantiate+0x55/0x1f0
[ 3486.759053]  proc_lookupfd+0x105/0x1f0
[ 3486.759387]  ? tid_fd_revalidate+0x2b0/0x2b0
[ 3486.759783]  lookup_open.isra.0+0x79f/0x1270
[ 3486.760170]  ? vfs_tmpfile+0x350/0x350
[ 3486.760560]  ? __mnt_want_write+0x196/0x280
[ 3486.760945]  path_openat+0x972/0x2770
[ 3486.761290]  ? path_lookupat+0x860/0x860
[ 3486.761641]  ? perf_trace_lock+0x2bd/0x490
[ 3486.762004]  ? lock_acquire+0x197/0x470
[ 3486.762344]  ? find_held_lock+0x2c/0x110
[ 3486.762698]  ? __lockdep_reset_lock+0x180/0x180
[ 3486.763106]  do_filp_open+0x190/0x3e0
[ 3486.763432]  ? may_open_dev+0xf0/0xf0
[ 3486.763778]  ? simple_attr_release+0x50/0x50
[ 3486.764171]  ? _raw_spin_unlock+0x1a/0x30
[ 3486.768557]  ? alloc_fd+0x2e7/0x670
[ 3486.768888]  do_sys_openat2+0x171/0x4d0
[ 3486.769235]  ? build_open_flags+0x6f0/0x6f0
[ 3486.769604]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3486.770019]  ? wait_for_completion_io+0x270/0x270
[ 3486.770442]  __x64_sys_openat+0x13f/0x1f0
[ 3486.770797]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3486.771156]  ? ksys_write+0x1a9/0x260
[ 3486.771493]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3486.771938]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3486.772388]  do_syscall_64+0x33/0x40
[ 3486.772736]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3486.773169] RIP: 0033:0x7f98c45cca04
[ 3486.773488] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3486.775018] RSP: 002b:00007f98c1b8f060 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3486.775660] RAX: ffffffffffffffda RBX: 00007f98c472cf60 RCX: 00007f98c45cca04
[ 3486.776257] RDX: 0000000000000002 RSI: 00007f98c1b8f0f0 RDI: 00000000ffffff9c
[ 3486.776900] RBP: 00007f98c1b8f0f0 R08: 0000000000000000 R09: 00007f98c1b8ef70
[ 3486.777500] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 3486.778100] R13: 00007fff6ecaf52f R14: 00007f98c1b8f300 R15: 0000000000022000
[ 3486.798215] FAULT_INJECTION: forcing a failure.
[ 3486.798215] name failslab, interval 1, probability 0, space 0, times 0
[ 3486.799297] CPU: 0 PID: 22260 Comm: syz-executor.0 Not tainted 5.10.226 #1
[ 3486.799886] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3486.800608] Call Trace:
[ 3486.800839]  dump_stack+0x107/0x167
[ 3486.801150]  should_fail.cold+0x5/0xa
[ 3486.801477]  ? create_object.isra.0+0x3a/0xa20
[ 3486.801866]  should_failslab+0x5/0x20
[ 3486.802192]  kmem_cache_alloc+0x5b/0x310
[ 3486.802536]  ? mark_lock+0xf5/0x2df0
[ 3486.802857]  create_object.isra.0+0x3a/0xa20
[ 3486.803232]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3486.803667]  __kmalloc+0x16e/0x390
[ 3486.803977]  __blkdev_direct_IO_simple+0x222/0x930
[ 3486.804398]  ? bd_link_disk_holder+0x710/0x710
[ 3486.804815]  ? perf_trace_lock+0xac/0x490
[ 3486.805165]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3486.805605]  ? __lock_acquire+0xbb1/0x5b00
[ 3486.805966]  ? __lockdep_reset_lock+0x180/0x180
[ 3486.806359]  ? invalidate_inode_pages2_range+0xa19/0xc50
[ 3486.806820]  ? find_held_lock+0x2c/0x110
[ 3486.807169]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 3486.807698]  ? current_time+0x72/0x2c0
[ 3486.808026]  ? iov_iter_npages+0x1fd/0xa70
[ 3486.808387]  blkdev_direct_IO+0xb35/0x12a0
[ 3486.812779]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3486.813223]  ? ktime_get_coarse_real_ts64+0x15a/0x190
[ 3486.813657]  ? trace_hardirqs_on+0x5b/0x180
[ 3486.814023]  ? ktime_get_coarse_real_ts64+0x15a/0x190
[ 3486.814457]  ? ktime_get_coarse_real_ts64+0xfd/0x190
[ 3486.814886]  ? bd_prepare_to_claim+0x290/0x290
[ 3486.815271]  ? __mark_inode_dirty+0x12e/0xd40
[ 3486.815658]  ? generic_update_time+0x21c/0x370
[ 3486.816045]  ? filemap_check_errors+0xa5/0x150
[ 3486.816433]  generic_file_direct_write+0x20e/0x560
[ 3486.816877]  __generic_file_write_iter+0x235/0x5d0
[ 3486.817294]  blkdev_write_iter+0x298/0x550
[ 3486.817654]  ? bd_unlink_disk_holder+0x3f0/0x3f0
[ 3486.818057]  ? direct_splice_actor+0x10f/0x170
[ 3486.818441]  ? splice_direct_to_actor+0x387/0x980
[ 3486.818844]  ? do_splice_direct+0x1c4/0x290
[ 3486.819208]  ? do_sendfile+0x553/0x11e0
[ 3486.819544]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 3486.819936]  ? do_syscall_64+0x33/0x40
[ 3486.820265]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3486.820750]  do_iter_readv_writev+0x476/0x750
[ 3486.821142]  ? new_sync_write+0x660/0x660
[ 3486.821494]  ? avc_policy_seqno+0x9/0x70
[ 3486.821838]  ? selinux_file_permission+0x92/0x520
[ 3486.822258]  ? security_file_permission+0xb1/0xe0
[ 3486.822671]  do_iter_write+0x191/0x700
[ 3486.823001]  ? trace_hardirqs_on+0x5b/0x180
[ 3486.823382]  vfs_iter_write+0x70/0xa0
[ 3486.823706]  iter_file_splice_write+0x762/0xc30
[ 3486.824110]  ? generic_splice_sendpage+0x140/0x140
[ 3486.828579]  ? security_file_permission+0xb1/0xe0
[ 3486.828985]  ? generic_splice_sendpage+0x140/0x140
[ 3486.829396]  direct_splice_actor+0x10f/0x170
[ 3486.829769]  splice_direct_to_actor+0x387/0x980
[ 3486.830164]  ? pipe_to_sendpage+0x380/0x380
[ 3486.830530]  ? do_splice_to+0x160/0x160
[ 3486.830867]  ? security_file_permission+0xb1/0xe0
[ 3486.831278]  do_splice_direct+0x1c4/0x290
[ 3486.831627]  ? splice_direct_to_actor+0x980/0x980
[ 3486.832031]  ? avc_policy_seqno+0x9/0x70
[ 3486.832379]  ? security_file_permission+0xb1/0xe0
[ 3486.832825]  do_sendfile+0x553/0x11e0
[ 3486.833164]  ? do_pwritev+0x270/0x270
[ 3486.833491]  ? wait_for_completion_io+0x270/0x270
[ 3486.833901]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3486.834291]  ? vfs_write+0x354/0xb10
[ 3486.834611]  __x64_sys_sendfile64+0x1d1/0x210
[ 3486.834991]  ? __ia32_sys_sendfile+0x220/0x220
[ 3486.835378]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3486.835816]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3486.836250]  do_syscall_64+0x33/0x40
[ 3486.836594]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3486.837026] RIP: 0033:0x7f5117aedb19
[ 3486.837341] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3486.838861] RSP: 002b:00007f5115063188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3486.839497] RAX: ffffffffffffffda RBX: 00007f5117c00f60 RCX: 00007f5117aedb19
[ 3486.840090] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000000a
[ 3486.840710] RBP: 00007f51150631d0 R08: 0000000000000000 R09: 0000000000000000
[ 3486.841305] R10: 000000007ffffff9 R11: 0000000000000246 R12: 0000000000000002
[ 3486.841897] R13: 00007ffc6010669f R14: 00007f5115063300 R15: 0000000000022000
08:53:50 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r1, 0x8010671f, &(0x7f0000000080)={&(0x7f0000000000)=""/88, 0x58})
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000)

[ 3491.409324] Bluetooth: hci2: command 0x0409 tx timeout
[ 3493.450521] Bluetooth: hci2: command 0x041b tx timeout
[ 3495.500911] Bluetooth: hci2: command 0x040f tx timeout
[ 3496.604642] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 3496.606454] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 3496.613379] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 3496.642410] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 3496.644341] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 3496.646368] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 3496.789805] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3496.792220] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3497.102220] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3497.548907] Bluetooth: hci2: command 0x0419 tx timeout
08:54:13 executing program 5:
syz_80211_inject_frame(&(0x7f0000000040)=@device_a={0x3}, &(0x7f0000000140)=ANY=[], 0x34)
syz_80211_inject_frame(&(0x7f0000000000)=@device_b, &(0x7f0000000080)=@data_frame={@qos_ht={{{@type11={{0x0, 0x2, 0xd, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1}, {0x1}, @device_b, @broadcast, @device_a, {0xa, 0x7f}, @device_b}, {0xf, 0x0, 0x0, 0x0, 0x3}}, {@type11={{0x0, 0x2, 0xe, 0x1, 0x1, 0x0, 0x0, 0x1}, {0xff}, @device_a, @broadcast, @random="632189b8669f", {0x5}, @broadcast}, {0x1, 0x0, 0x1, 0x1, 0x6}}}, @ver_80211n={0x0, 0x2870, 0x1, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x1}}, @a_msdu=[{@device_a, @broadcast, 0xfa, "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"}]}, 0x14c)

08:54:13 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000000000000, 0x10, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:54:13 executing program 6:
sendmsg$NFT_MSG_GETSET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, 0xa, 0xa, 0x3, 0x0, 0x0, {0x7, 0x0, 0x1}, [@NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_KEY_TYPE={0x8, 0x4, 0x1, 0x0, 0xcd}]}, 0x24}, 0x1, 0x0, 0x0, 0x50}, 0x20000000)
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
r1 = openat2(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x10900, 0x100, 0x8}, 0x18)
ioctl$SCSI_IOCTL_GET_BUS_NUMBER(r1, 0x5386, &(0x7f0000000180))
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)

08:54:13 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00') (fail_nth: 21)

08:54:13 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 26)

08:54:13 executing program 3:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='environ\x00')
openat$random(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0)
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)

08:54:13 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9) (fail_nth: 19)

08:54:13 executing program 7:
r0 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NLBL_CALIPSO_C_ADD(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x44, r0, 0x20, 0x10001, 0x25dfdbfe, {}, [@NLBL_CALIPSO_A_DOI={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}]}, 0x44}, 0x1, 0x0, 0x0, 0x20010880}, 0x2004c000)
r1 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r1, 0x0, 0x7ffffffff000, 0x200000000000)

[ 3510.230607] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3510.234312] FAULT_INJECTION: forcing a failure.
[ 3510.234312] name failslab, interval 1, probability 0, space 0, times 0
[ 3510.235304] CPU: 0 PID: 22765 Comm: syz-executor.2 Not tainted 5.10.226 #1
[ 3510.235887] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3510.236580] Call Trace:
[ 3510.236835]  dump_stack+0x107/0x167
[ 3510.237158]  should_fail.cold+0x5/0xa
[ 3510.237491]  ? create_object.isra.0+0x3a/0xa20
[ 3510.237887]  should_failslab+0x5/0x20
[ 3510.238217]  kmem_cache_alloc+0x5b/0x310
[ 3510.238577]  create_object.isra.0+0x3a/0xa20
[ 3510.238955]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3510.239396]  kmem_cache_alloc+0x159/0x310
[ 3510.239765]  security_inode_alloc+0x34/0x160
[ 3510.240147]  inode_init_always+0xa4e/0xd10
[ 3510.240511]  ? proc_free_inode+0x20/0x20
[ 3510.240879]  alloc_inode+0x84/0x240
[ 3510.241195]  new_inode+0x23/0x250
[ 3510.241505]  proc_pid_make_inode+0x22/0x220
[ 3510.241883]  proc_fd_instantiate+0x55/0x1f0
[ 3510.242258]  proc_lookupfd+0x105/0x1f0
[ 3510.242595]  ? tid_fd_revalidate+0x2b0/0x2b0
[ 3510.242992]  lookup_open.isra.0+0x79f/0x1270
[ 3510.243384]  ? vfs_tmpfile+0x350/0x350
[ 3510.243630] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3510.243752]  ? __mnt_want_write+0x196/0x280
[ 3510.244852]  path_openat+0x972/0x2770
[ 3510.245198]  ? path_lookupat+0x860/0x860
[ 3510.245550]  ? perf_trace_lock+0x2bd/0x490
[ 3510.245914]  ? lock_acquire+0x197/0x470
[ 3510.246254]  ? find_held_lock+0x2c/0x110
[ 3510.246608]  ? __lockdep_reset_lock+0x180/0x180
[ 3510.247017]  do_filp_open+0x190/0x3e0
[ 3510.247345]  ? may_open_dev+0xf0/0xf0
[ 3510.247692]  ? simple_attr_release+0x50/0x50
[ 3510.248087]  ? _raw_spin_unlock+0x1a/0x30
[ 3510.248441]  ? alloc_fd+0x2e7/0x670
[ 3510.252791]  do_sys_openat2+0x171/0x4d0
[ 3510.253146]  ? build_open_flags+0x6f0/0x6f0
[ 3510.253512]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3510.253928]  ? wait_for_completion_io+0x270/0x270
[ 3510.254348]  __x64_sys_openat+0x13f/0x1f0
[ 3510.254701]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3510.255060]  ? ksys_write+0x1a9/0x260
[ 3510.255395]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3510.255838]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3510.256278]  do_syscall_64+0x33/0x40
[ 3510.256595]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3510.257046] RIP: 0033:0x7f98c45cca04
[ 3510.257365] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3510.258889] RSP: 002b:00007f98c1b8f060 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3510.259531] RAX: ffffffffffffffda RBX: 00007f98c472cf60 RCX: 00007f98c45cca04
[ 3510.260127] RDX: 0000000000000002 RSI: 00007f98c1b8f0f0 RDI: 00000000ffffff9c
[ 3510.260722] RBP: 00007f98c1b8f0f0 R08: 0000000000000000 R09: 00007f98c1b8ef70
[ 3510.261338] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 3510.261941] R13: 00007fff6ecaf52f R14: 00007f98c1b8f300 R15: 0000000000022000
[ 3510.286204] FAULT_INJECTION: forcing a failure.
[ 3510.286204] name failslab, interval 1, probability 0, space 0, times 0
[ 3510.287165] CPU: 0 PID: 22774 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3510.287749] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3510.288443] Call Trace:
08:54:13 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='numa_maps\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000)

[ 3510.288673]  dump_stack+0x107/0x167
[ 3510.289002]  should_fail.cold+0x5/0xa
[ 3510.289328]  ? create_object.isra.0+0x3a/0xa20
[ 3510.289721]  should_failslab+0x5/0x20
[ 3510.290048]  kmem_cache_alloc+0x5b/0x310
[ 3510.290401]  create_object.isra.0+0x3a/0xa20
[ 3510.290777]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3510.291213]  kmem_cache_alloc+0x159/0x310
[ 3510.291574]  __kernfs_new_node+0xd4/0x860
[ 3510.291934]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 3510.292337]  ? kernfs_add_one+0x36e/0x4d0
[ 3510.292699]  ? mutex_lock_io_nested+0xf30/0xf30
[ 3510.293112]  ? perf_trace_lock+0xac/0x490
[ 3510.293473]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3510.293887]  kernfs_new_node+0x18d/0x250
[ 3510.294238]  __kernfs_create_file+0x51/0x350
[ 3510.294615]  sysfs_add_file_mode_ns+0x221/0x560
[ 3510.295019]  internal_create_group+0x324/0xb30
[ 3510.295414]  ? sysfs_remove_group+0x170/0x170
[ 3510.295797]  ? lockdep_init_map_type+0x2c7/0x780
[ 3510.296203]  ? blk_queue_flag_set+0x22/0x30
[ 3510.296570]  ? __loop_update_dio+0x2d2/0x690
[ 3510.300974]  loop_configure+0x958/0x1490
[ 3510.301328]  lo_ioctl+0xa72/0x1760
[ 3510.301634]  ? avc_has_extended_perms+0x7f1/0xf40
[ 3510.302083]  ? loop_set_status_old+0x250/0x250
[ 3510.302565]  ? avc_ss_reset+0x180/0x180
[ 3510.302923]  ? find_held_lock+0x2c/0x110
[ 3510.303275]  ? __lock_acquire+0xbb1/0x5b00
[ 3510.303664]  ? selinux_bprm_creds_for_exec+0xb60/0xb60
[ 3510.304103]  ? generic_block_fiemap+0x60/0x60
[ 3510.304479]  ? lock_downgrade+0x6d0/0x6d0
[ 3510.304837]  ? build_open_flags+0x6f0/0x6f0
[ 3510.305199]  ? find_held_lock+0x2c/0x110
[ 3510.305546]  ? loop_set_status_old+0x250/0x250
[ 3510.305931]  blkdev_ioctl+0x291/0x710
[ 3510.306254]  ? blkdev_common_ioctl+0x1930/0x1930
[ 3510.306659]  ? selinux_file_ioctl+0xb6/0x270
[ 3510.307043]  block_ioctl+0xf9/0x140
[ 3510.307353]  ? blkdev_read_iter+0x1c0/0x1c0
[ 3510.307720]  __x64_sys_ioctl+0x19a/0x210
[ 3510.308067]  do_syscall_64+0x33/0x40
[ 3510.308384]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3510.308835] RIP: 0033:0x7f71ab2628d7
[ 3510.309170] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3510.310688] RSP: 002b:00007f71a87d7f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 3510.311326] RAX: ffffffffffffffda RBX: 00007f71ab2ac970 RCX: 00007f71ab2628d7
[ 3510.311919] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[ 3510.312514] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[ 3510.313124] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[ 3510.313722] R13: 0000000000000004 R14: 0000000020000c00 R15: 0000000000000000
08:54:13 executing program 6:
pread64(0xffffffffffffffff, 0x0, 0x0, 0x200004000000000)

08:54:13 executing program 3:
ioctl$BTRFS_IOC_WAIT_SYNC(0xffffffffffffffff, 0x40089416, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)

08:54:13 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000000000000, 0x14, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:54:13 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00') (fail_nth: 22)

08:54:13 executing program 3:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/sco\x00')
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
pread64(r1, 0x0, 0x0, 0x806c54747efffd)
ioctl$RTC_UIE_OFF(r0, 0x7004)

[ 3510.389589] FAULT_INJECTION: forcing a failure.
[ 3510.389589] name failslab, interval 1, probability 0, space 0, times 0
[ 3510.391328] CPU: 1 PID: 22767 Comm: syz-executor.0 Not tainted 5.10.226 #1
[ 3510.391908] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3510.392601] Call Trace:
[ 3510.392849]  dump_stack+0x107/0x167
[ 3510.393159]  should_fail.cold+0x5/0xa
[ 3510.393484]  ? mempool_alloc+0x148/0x360
[ 3510.393827]  ? mempool_free_pages+0x20/0x20
[ 3510.394195]  should_failslab+0x5/0x20
[ 3510.394518]  kmem_cache_alloc+0x5b/0x310
[ 3510.394864]  ? mempool_free_pages+0x20/0x20
[ 3510.395228]  mempool_alloc+0x148/0x360
[ 3510.395560]  ? mempool_resize+0x7d0/0x7d0
[ 3510.395910]  ? trace_hardirqs_on+0x5b/0x180
[ 3510.396280]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3510.396723]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 3510.397884]  ? trace_hardirqs_on+0x5b/0x180
[ 3510.398850]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 3510.400047]  bio_alloc_bioset+0x36e/0x600
[ 3510.400995]  ? bvec_alloc+0x2f0/0x2f0
[ 3510.401789]  ? file_check_and_advance_wb_err+0x45/0x280
[ 3510.402729]  ? errseq_check+0x4b/0x90
[ 3510.403375]  ? file_check_and_advance_wb_err+0xbb/0x280
[ 3510.404283]  blkdev_issue_flush+0x20/0x1a0
[ 3510.404930]  blkdev_fsync+0x8e/0xd0
[ 3510.405245]  ? thaw_bdev+0x1a0/0x1a0
[ 3510.405570]  vfs_fsync_range+0x13d/0x230
[ 3510.405928]  blkdev_write_iter+0x3e4/0x550
[ 3510.406293]  ? bd_unlink_disk_holder+0x3f0/0x3f0
[ 3510.406696]  ? direct_splice_actor+0x10f/0x170
[ 3510.407079]  ? splice_direct_to_actor+0x387/0x980
[ 3510.407483]  ? do_splice_direct+0x1c4/0x290
[ 3510.407846]  ? do_sendfile+0x553/0x11e0
[ 3510.408264]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 3510.408655]  ? do_syscall_64+0x33/0x40
[ 3510.409062]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3510.409515]  do_iter_readv_writev+0x476/0x750
[ 3510.409895]  ? new_sync_write+0x660/0x660
[ 3510.410244]  ? avc_policy_seqno+0x9/0x70
[ 3510.410587]  ? selinux_file_permission+0x92/0x520
[ 3510.410997]  ? security_file_permission+0xb1/0xe0
[ 3510.411408]  do_iter_write+0x191/0x700
[ 3510.411738]  ? trace_hardirqs_on+0x5b/0x180
[ 3510.412104]  vfs_iter_write+0x70/0xa0
[ 3510.412427]  iter_file_splice_write+0x762/0xc30
[ 3510.412890]  ? generic_splice_sendpage+0x140/0x140
[ 3510.413314]  ? security_file_permission+0xb1/0xe0
[ 3510.413720]  ? generic_splice_sendpage+0x140/0x140
[ 3510.414133]  direct_splice_actor+0x10f/0x170
[ 3510.414506]  splice_direct_to_actor+0x387/0x980
[ 3510.414900]  ? pipe_to_sendpage+0x380/0x380
[ 3510.415264]  ? do_splice_to+0x160/0x160
[ 3510.415600]  ? security_file_permission+0xb1/0xe0
[ 3510.416009]  do_splice_direct+0x1c4/0x290
[ 3510.416359]  ? splice_direct_to_actor+0x980/0x980
[ 3510.416820]  ? avc_policy_seqno+0x9/0x70
[ 3510.417536]  ? security_file_permission+0xb1/0xe0
[ 3510.418357]  do_sendfile+0x553/0x11e0
[ 3510.419006]  ? do_pwritev+0x270/0x270
[ 3510.419650]  ? wait_for_completion_io+0x270/0x270
[ 3510.420466]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3510.421048]  ? vfs_write+0x354/0xb10
[ 3510.421369]  __x64_sys_sendfile64+0x1d1/0x210
[ 3510.421749]  ? __ia32_sys_sendfile+0x220/0x220
[ 3510.422138]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3510.422579]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3510.423015]  do_syscall_64+0x33/0x40
[ 3510.423332]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3510.423764] RIP: 0033:0x7f5117aedb19
[ 3510.424081] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3510.425657] RSP: 002b:00007f5115063188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3510.426296] RAX: ffffffffffffffda RBX: 00007f5117c00f60 RCX: 00007f5117aedb19
[ 3510.426889] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000000a
[ 3510.427482] RBP: 00007f51150631d0 R08: 0000000000000000 R09: 0000000000000000
[ 3510.428075] R10: 000000007ffffff9 R11: 0000000000000246 R12: 0000000000000002
[ 3510.428667] R13: 00007ffc6010669f R14: 00007f5115063300 R15: 0000000000022000
08:54:13 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)

[ 3510.470920] FAULT_INJECTION: forcing a failure.
[ 3510.470920] name failslab, interval 1, probability 0, space 0, times 0
[ 3510.472911] CPU: 1 PID: 22790 Comm: syz-executor.2 Not tainted 5.10.226 #1
[ 3510.473487] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3510.474172] Call Trace:
[ 3510.474403]  dump_stack+0x107/0x167
[ 3510.474712]  should_fail.cold+0x5/0xa
[ 3510.475036]  ? getname_flags.part.0+0x50/0x4f0
[ 3510.475422]  should_failslab+0x5/0x20
[ 3510.475744]  kmem_cache_alloc+0x5b/0x310
[ 3510.476088]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3510.476528]  getname_flags.part.0+0x50/0x4f0
[ 3510.476970]  getname+0x8e/0xd0
[ 3510.477251]  do_sys_openat2+0xf9/0x4d0
[ 3510.477583]  ? security_file_free+0xaa/0xd0
[ 3510.477946]  ? build_open_flags+0x6f0/0x6f0
[ 3510.478315]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3510.478753]  ? call_rcu+0x435/0x9c0
[ 3510.479064]  __x64_sys_openat+0x13f/0x1f0
[ 3510.479413]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3510.479775]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3510.480216]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3510.480651]  do_syscall_64+0x33/0x40
[ 3510.481255]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3510.482127] RIP: 0033:0x7f98c45cca04
[ 3510.482753] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3510.485968] RSP: 002b:00007f98c1b8f060 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3510.487337] RAX: ffffffffffffffda RBX: 00007f98c472cf60 RCX: 00007f98c45cca04
[ 3510.488615] RDX: 0000000000000000 RSI: 00007f98c1b8f0f0 RDI: 00000000ffffff9c
[ 3510.489940] RBP: 00007f98c1b8f0f0 R08: 0000000000000000 R09: 00007f98c1b8ef70
[ 3510.491229] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 3510.492492] R13: 00007fff6ecaf52f R14: 00007f98c1b8f300 R15: 0000000000022000
08:54:13 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9) (fail_nth: 20)

[ 3510.547472] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3510.589530] FAULT_INJECTION: forcing a failure.
[ 3510.589530] name failslab, interval 1, probability 0, space 0, times 0
[ 3510.592153] CPU: 1 PID: 22800 Comm: syz-executor.0 Not tainted 5.10.226 #1
[ 3510.593564] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3510.595061] Call Trace:
[ 3510.595539]  dump_stack+0x107/0x167
[ 3510.596181]  should_fail.cold+0x5/0xa
[ 3510.596839]  ? create_object.isra.0+0x3a/0xa20
[ 3510.597229]  should_failslab+0x5/0x20
[ 3510.597554]  kmem_cache_alloc+0x5b/0x310
[ 3510.597903]  create_object.isra.0+0x3a/0xa20
[ 3510.598276]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3510.598708]  kmem_cache_alloc+0x159/0x310
[ 3510.599063]  ? mempool_free_pages+0x20/0x20
[ 3510.599428]  mempool_alloc+0x148/0x360
[ 3510.599762]  ? mempool_resize+0x7d0/0x7d0
[ 3510.600112]  ? trace_hardirqs_on+0x5b/0x180
[ 3510.600482]  ? ktime_get_coarse_real_ts64+0x15a/0x190
[ 3510.601150]  ? ktime_get_coarse_real_ts64+0xfd/0x190
[ 3510.602017]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3510.602903]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 3510.603813]  ? trace_hardirqs_on+0x5b/0x180
[ 3510.604544]  bio_alloc_bioset+0x36e/0x600
[ 3510.605038]  ? bvec_alloc+0x2f0/0x2f0
[ 3510.605362]  ? errseq_check+0x4b/0x90
[ 3510.605686]  ? file_check_and_advance_wb_err+0xbb/0x280
[ 3510.606137]  blkdev_issue_flush+0x20/0x1a0
[ 3510.606496]  blkdev_fsync+0x8e/0xd0
[ 3510.606802]  ? thaw_bdev+0x1a0/0x1a0
[ 3510.607120]  vfs_fsync_range+0x13d/0x230
[ 3510.607466]  blkdev_write_iter+0x3e4/0x550
[ 3510.607829]  ? bd_unlink_disk_holder+0x3f0/0x3f0
[ 3510.608232]  ? direct_splice_actor+0x10f/0x170
[ 3510.608615]  ? splice_direct_to_actor+0x387/0x980
[ 3510.609078]  ? do_splice_direct+0x1c4/0x290
[ 3510.609442]  ? do_sendfile+0x553/0x11e0
[ 3510.609779]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 3510.610168]  ? do_syscall_64+0x33/0x40
[ 3510.610496]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3510.610950]  do_iter_readv_writev+0x476/0x750
[ 3510.611331]  ? new_sync_write+0x660/0x660
[ 3510.611681]  ? avc_policy_seqno+0x9/0x70
[ 3510.612027]  ? selinux_file_permission+0x92/0x520
[ 3510.612439]  ? security_file_permission+0xb1/0xe0
[ 3510.612908]  do_iter_write+0x191/0x700
[ 3510.613240]  ? trace_hardirqs_on+0x5b/0x180
[ 3510.613611]  vfs_iter_write+0x70/0xa0
[ 3510.613937]  iter_file_splice_write+0x762/0xc30
[ 3510.614341]  ? generic_splice_sendpage+0x140/0x140
[ 3510.614768]  ? security_file_permission+0xb1/0xe0
[ 3510.615177]  ? generic_splice_sendpage+0x140/0x140
[ 3510.615592]  direct_splice_actor+0x10f/0x170
[ 3510.615966]  splice_direct_to_actor+0x387/0x980
[ 3510.616363]  ? pipe_to_sendpage+0x380/0x380
[ 3510.616737]  ? do_splice_to+0x160/0x160
[ 3510.617135]  ? security_file_permission+0xb1/0xe0
[ 3510.617546]  do_splice_direct+0x1c4/0x290
[ 3510.617896]  ? splice_direct_to_actor+0x980/0x980
[ 3510.618299]  ? avc_policy_seqno+0x9/0x70
[ 3510.618646]  ? security_file_permission+0xb1/0xe0
[ 3510.619057]  do_sendfile+0x553/0x11e0
[ 3510.619394]  ? do_pwritev+0x270/0x270
[ 3510.619718]  ? wait_for_completion_io+0x270/0x270
[ 3510.620125]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3510.620518]  ? vfs_write+0x354/0xb10
[ 3510.620879]  __x64_sys_sendfile64+0x1d1/0x210
[ 3510.621259]  ? __ia32_sys_sendfile+0x220/0x220
[ 3510.621645]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3510.622085]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3510.622518]  do_syscall_64+0x33/0x40
[ 3510.622832]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3510.623261] RIP: 0033:0x7f5117aedb19
[ 3510.623576] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3510.625158] RSP: 002b:00007f5115063188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3510.625866] RAX: ffffffffffffffda RBX: 00007f5117c00f60 RCX: 00007f5117aedb19
[ 3510.626525] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000000a
[ 3510.627185] RBP: 00007f51150631d0 R08: 0000000000000000 R09: 0000000000000000
[ 3510.627846] R10: 000000007ffffff9 R11: 0000000000000246 R12: 0000000000000002
[ 3510.628507] R13: 00007ffc6010669f R14: 00007f5115063300 R15: 0000000000022000
[ 3523.785239] FAULT_INJECTION: forcing a failure.
[ 3523.785239] name failslab, interval 1, probability 0, space 0, times 0
[ 3523.786240] CPU: 0 PID: 22814 Comm: syz-executor.2 Not tainted 5.10.226 #1
[ 3523.786820] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3523.787510] Call Trace:
[ 3523.787746]  dump_stack+0x107/0x167
[ 3523.788064]  should_fail.cold+0x5/0xa
[ 3523.788395]  ? create_object.isra.0+0x3a/0xa20
[ 3523.788790]  should_failslab+0x5/0x20
[ 3523.790205]  kmem_cache_alloc+0x5b/0x310
[ 3523.790557]  ? exit_to_user_mode_prepare+0x186/0x190
[ 3523.790989]  ? syscall_exit_to_user_mode+0x38/0x1d0
[ 3523.791431]  create_object.isra.0+0x3a/0xa20
[ 3523.791809]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3523.792250]  kmem_cache_alloc+0x159/0x310
[ 3523.792607]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3523.793077]  getname_flags.part.0+0x50/0x4f0
[ 3523.793463]  getname+0x8e/0xd0
[ 3523.793745]  do_sys_openat2+0xf9/0x4d0
[ 3523.794084]  ? security_file_free+0xaa/0xd0
[ 3523.794455]  ? build_open_flags+0x6f0/0x6f0
[ 3523.794835]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3523.795277]  ? call_rcu+0x435/0x9c0
[ 3523.795598]  __x64_sys_openat+0x13f/0x1f0
[ 3523.795955]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3523.796329]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3523.796778]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3523.797246]  do_syscall_64+0x33/0x40
[ 3523.797568]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3523.798008] RIP: 0033:0x7f98c45cca04
[ 3523.798327] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3523.799860] RSP: 002b:00007f98c1b8f060 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3523.800505] RAX: ffffffffffffffda RBX: 00007f98c472cf60 RCX: 00007f98c45cca04
[ 3523.801135] RDX: 0000000000000000 RSI: 00007f98c1b8f0f0 RDI: 00000000ffffff9c
[ 3523.801735] RBP: 00007f98c1b8f0f0 R08: 0000000000000000 R09: 00007f98c1b8ef70
[ 3523.802342] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 3523.802945] R13: 00007fff6ecaf52f R14: 00007f98c1b8f300 R15: 0000000000022000
08:54:27 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
dup3(r0, r1, 0x0)
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000)

08:54:27 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9) (fail_nth: 21)

08:54:27 executing program 3:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r3, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000080)={<r4=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r4, 0x3, r2, 0xa)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r5, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
perf_event_open(&(0x7f00000002c0)={0x0, 0x80, 0x5, 0x5, 0x3, 0x8e, 0x0, 0x4, 0x18002, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_config_ext={0x1f, 0xffff}, 0x8108, 0x1, 0x0, 0x8, 0x6, 0x6, 0x3, 0x0, 0x6, 0x0, 0x100000001}, r4, 0x0, r5, 0x8)
pread64(r1, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$BTRFS_IOC_QUOTA_CTL(r6, 0xc0109428, &(0x7f0000000200)={0x1, 0x7})
getsockopt$IP_VS_SO_GET_VERSION(r7, 0x0, 0x480, &(0x7f0000000100), &(0x7f0000000140)=0x40)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000080)={<r8=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r8, 0x3, r0, 0xa)
r9 = syz_open_procfs(r8, &(0x7f0000000000)='net/kcm\x00')
pread64(r9, 0x0, 0x7ffffffff000, 0x806c54747f0000)
ioctl$F2FS_IOC_START_VOLATILE_WRITE(0xffffffffffffffff, 0xf503, 0x0)

08:54:27 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000000000000, 0x2e, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:54:27 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00') (fail_nth: 23)

08:54:27 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
flistxattr(r0, &(0x7f0000000000)=""/25, 0x19)
inotify_add_watch(r0, &(0x7f0000000040)='./file0\x00', 0x100)
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)

08:54:27 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 27)

08:54:27 executing program 5:
syz_80211_inject_frame(&(0x7f0000000040)=@device_a={0x3}, &(0x7f0000000140)=ANY=[], 0x34)
syz_80211_inject_frame(&(0x7f0000000740), &(0x7f0000000780)=@mgmt_frame=@action_no_ack={@with_ht={{{0x0, 0x0, 0xe, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1}, {0xc3}, @device_a, @device_b, @initial, {0x7, 0x1}}, @ver_80211n={0x0, 0x4, 0x3, 0x2, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1}}, @vht_op_mode_ntf={0x15, 0x2, {0x3, 0x0, 0x0, 0x1, 0x1}}}, 0x1f)
syz_80211_inject_frame(&(0x7f0000000000), &(0x7f0000000080)=@mgmt_frame=@auth={@with_ht={{{0x0, 0x0, 0xb, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1}, {0x6}, @device_a, @device_a, @random="dfdb24212f5f", {0x3, 0x5}}, @ver_80211n={0x0, 0x2, 0x2, 0x1}}, 0x0, 0x0, 0x1a, @val={0x10, 0x1, 0xbb}, [{0xdd, 0x22, "ae0b4bdfc429586ca239a71c4aca95f3f306380f5ee1ca3390c88e93a00cdf3d8492"}, {0xdd, 0xd2, "86c250162b6fc62678eac9dfc79d722e4b9d8218fb402a6f7d4dc0d502542165a7b66fea11145577abc93a374b21f4ce78a3970c943ef11e7f0a2725f5ee6370eb43b64bb54e7a175151984caba15580295f7819f4264b97ef1d4228daac08497d0a0da3c129b7b3f56526a4464426759b4943dc0b6270f5d9b1f1a0466720713ef766d0fe497102779ce3e8da2f13c3bb44dc7106d99ad623540af1b343821a41885aed694a2f503c4c3f1a52cee2704b88618e59d5213586682c5607d5a7b03c0e9b56ea1c159858d4c2c6a73182119884"}, {0xdd, 0xbd, "72d665c31c917f7e8d5a34b25818f3bb79b7806f5d9ae890218e67a47ec599d612e1a691293e591c62676941b3a0d9d5588c860ec9f08ac34dad1db44a33c8fad05474fb8ed05d36c1703b11c995a06d3180e56e4b282ab604b3988be953280c8ff1d54122ff4094399f58d5edb0bb1eb37e6d1732baca0fec848aea366af2df3484bc33f07a7aa2ba530f98766b4df0592ea51d502647bbb16b4295917916933716b9be8e270b32b3f393b56ba3673ff6da7d3925521d2e168e7c89f4"}, {0xdd, 0x3e, "328b53dfe68b2ca323ec8e1bc80b9d28977df42b954321b5f43dfb47d778558c250da945c62fcc965f1c1337e2b860ddc5f66c87a2bf11d2ef44c6c5b989"}, {0xdd, 0xdc, "68da6828cbea1abe239775b0e8ada72db74d80f28fbf5e5ab17b631193750b1152163b98c6865c821210cf6bcd12669f8caa3bafc9a99492fd2ff23aa085b62eb6ad4ed41ef1c1a5f5d60bc1582dea5d69cfcb58a6951b586db2665d4a5ac029b6c6bd90fa347695c8ddf0f78c8ccf28dabb6a35150579a4988022097d7849b2538b4d55b74d3fe1410b4d3b4d9561a65afca7fdd0421815e99eac1a8f678e1ac8acf2dd26299cdc1612f8057c8b2ae9aec183f9c6722d27826c374c7737a530155987614a470b928779c04040be84b949dca5783337cdf8a416ee94"}, {0xdd, 0xf6, "732e6c126ebe1ecdbd3ebb05547a3a7e43d9030e6c6b7611bcd4b75d7bbfc4c24ebbd01d78430679f36182be2c898796c067df764b11a5192e81dfdb5222ee874104daa28be44202e174f303bdfefdbf3b628f627bb218553ff35d9830fa27e788d413136706d07e3b423a3e8e918aa2ccc70e81109ac62344b68d5a9e2d37a0c1c22dec5cd72522758c1f0a7e5105d377a9252358788b5504fd6c5bb591629fb0ce6be5a98e3268e00ed934c3e352d1d63861553de07a9aecfef55580044866b61a568b775a06038950fa6842bbfd980e0036f71b08dc2d4f74a2fc4b2d881a1bbef0e482395babcc7f575ae70796ea249e2c8b422c"}, {0xdd, 0x20, "1c72b02b3220f309757ccd1ff3d6f221073c8c59e1d358f2194bbd39b579cf39"}, {0xdd, 0xde, "7e6a0e7194fd989236789d2a05508a2301e2feba9ccbf4f57095711d0770eb77c762c8ba211446c60277b4c906bd9da8e6ef4a8504362f70e5ac993740dcbbca7c138a23cce4a8559247487771532a405190d7eddef45bb5d278d9c0c30107f4c7dbe0ef0ba72f364cfbb58447db2c3e424cd465580e431f7c1b367fd4f1f0319ef35c17258de5bdeadfd50e6815ccd829c8f8012b5b091baf5223c566100113d4499a8187838635732fa21f90c30ab7aeaeeea5cf86e6af310d765f713bb758b29c7b264ed4bec7f24f7f71f52c659a89d8fdb0f5d72825fa88b2ff444d"}, {0xdd, 0xfb, "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"}, {0xdd, 0xb8, "1b2bec77ae7f61bdd2b42df1930d1d8165452a3127819f052963bc2958396af1eab145274ae1a59093d4a465953cd628f61119587eee58962732bf90a1ca884945075124b1b50f3b04cab354724404cc70de3123adcdfc82958299eb312017315c5ed879eff680cbd9b1d02c66b4a9a904135d3fa6d7002e8253a7d3b3574949607b542726cc9562298d5e325e56d74cb288fdd0f0f19da482696af6fa3d0dbe8796460a94b59db120f1fbbb1aa1a4ce9e6eabb6d84c98a3"}]}, 0x6ab)

[ 3523.810283] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3523.821070] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3523.831133] FAULT_INJECTION: forcing a failure.
[ 3523.831133] name failslab, interval 1, probability 0, space 0, times 0
[ 3523.832246] CPU: 1 PID: 22821 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3523.832801] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3523.833470] Call Trace:
[ 3523.833689]  dump_stack+0x107/0x167
[ 3523.833984]  should_fail.cold+0x5/0xa
[ 3523.834295]  ? __kernfs_new_node+0xd4/0x860
[ 3523.834643]  should_failslab+0x5/0x20
[ 3523.834949]  kmem_cache_alloc+0x5b/0x310
[ 3523.835281]  __kernfs_new_node+0xd4/0x860
[ 3523.835623]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 3523.836001]  ? kernfs_add_one+0x36e/0x4d0
[ 3523.836338]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3523.836727]  ? wait_for_completion_io+0x270/0x270
[ 3523.837129]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 3523.837552]  kernfs_new_node+0x18d/0x250
[ 3523.837882]  __kernfs_create_file+0x51/0x350
[ 3523.838237]  sysfs_add_file_mode_ns+0x221/0x560
[ 3523.838621]  internal_create_group+0x324/0xb30
[ 3523.838992]  ? sysfs_remove_group+0x170/0x170
[ 3523.839354]  ? lockdep_init_map_type+0x2c7/0x780
[ 3523.839738]  ? blk_queue_flag_set+0x22/0x30
[ 3523.840083]  ? __loop_update_dio+0x2d2/0x690
[ 3523.840437]  loop_configure+0x958/0x1490
[ 3523.840771]  lo_ioctl+0xa72/0x1760
[ 3523.841081]  ? avc_has_extended_perms+0x7f1/0xf40
[ 3523.841475]  ? loop_set_status_old+0x250/0x250
[ 3523.841843]  ? avc_ss_reset+0x180/0x180
[ 3523.842163]  ? find_held_lock+0x2c/0x110
[ 3523.842499]  ? __lock_acquire+0xbb1/0x5b00
[ 3523.842872]  ? selinux_bprm_creds_for_exec+0xb60/0xb60
[ 3523.843291]  ? generic_block_fiemap+0x60/0x60
[ 3523.843648]  ? lock_downgrade+0x6d0/0x6d0
[ 3523.843981]  ? build_open_flags+0x6f0/0x6f0
[ 3523.844329]  ? find_held_lock+0x2c/0x110
[ 3523.844659]  ? loop_set_status_old+0x250/0x250
[ 3523.845037]  blkdev_ioctl+0x291/0x710
[ 3523.845345]  ? blkdev_common_ioctl+0x1930/0x1930
[ 3523.845726]  ? selinux_file_ioctl+0xb6/0x270
[ 3523.846083]  block_ioctl+0xf9/0x140
[ 3523.846374]  ? blkdev_read_iter+0x1c0/0x1c0
[ 3523.846720]  __x64_sys_ioctl+0x19a/0x210
[ 3523.847048]  do_syscall_64+0x33/0x40
[ 3523.847353]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3523.847759] RIP: 0033:0x7f71ab2628d7
[ 3523.848059] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3523.849517] RSP: 002b:00007f71a87d7f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 3523.850124] RAX: ffffffffffffffda RBX: 00007f71ab2ac970 RCX: 00007f71ab2628d7
[ 3523.850688] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[ 3523.851254] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[ 3523.851818] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[ 3523.852381] R13: 0000000000000004 R14: 0000000020000c00 R15: 0000000000000000
[ 3523.853726] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:54:27 executing program 7:
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x40001, 0x0)
r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5001, 0x0, 0x0, 0x0, 0x81}, 0x0, 0xffffffffffffffff, r0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r2, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000080)={<r3=>0x0}, &(0x7f00000003c0)=0xc)
r4 = perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r3, 0x3, r1, 0xa)
r5 = syz_open_procfs(r3, &(0x7f00000005c0)='pagemap\x00')
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r6, 0x8901, &(0x7f0000001840)="fb")
close_range(r4, r6, 0x0)
pread64(r5, 0x0, 0x7ffffffff000, 0x200000000000)

08:54:27 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)
ioctl$sock_inet_SIOCGIFNETMASK(r0, 0x891b, &(0x7f0000000040)={'tunl0\x00', {0x2, 0x0, @empty}})
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x6, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0xff, 0x1}, 0xe)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
readv(r1, &(0x7f0000000200)=[{&(0x7f0000000080)=""/83, 0x53}, {&(0x7f0000000100)=""/241, 0xf1}], 0x2)

08:54:27 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000000000000, 0x5d, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

[ 3523.913350] FAULT_INJECTION: forcing a failure.
[ 3523.913350] name failslab, interval 1, probability 0, space 0, times 0
[ 3523.914504] CPU: 0 PID: 22810 Comm: syz-executor.0 Not tainted 5.10.226 #1
[ 3523.915084] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3523.915775] Call Trace:
[ 3523.916006]  dump_stack+0x107/0x167
[ 3523.916316]  should_fail.cold+0x5/0xa
[ 3523.916642]  ? iter_file_splice_write+0x16d/0xc30
[ 3523.917152]  should_failslab+0x5/0x20
[ 3523.917474]  __kmalloc+0x72/0x390
[ 3523.917772]  iter_file_splice_write+0x16d/0xc30
[ 3523.918168]  ? atime_needs_update+0x600/0x600
[ 3523.918545]  ? __fsnotify_parent+0x47a/0xb10
[ 3523.918922]  ? generic_splice_sendpage+0x140/0x140
[ 3523.919332]  ? pipe_to_user+0x170/0x170
[ 3523.919679]  ? security_file_permission+0xb1/0xe0
[ 3523.920085]  ? generic_splice_sendpage+0x140/0x140
[ 3523.920496]  direct_splice_actor+0x10f/0x170
[ 3523.920867]  splice_direct_to_actor+0x387/0x980
[ 3523.921296]  ? pipe_to_sendpage+0x380/0x380
[ 3523.921662]  ? do_splice_to+0x160/0x160
[ 3523.922005]  ? security_file_permission+0xb1/0xe0
[ 3523.922415]  do_splice_direct+0x1c4/0x290
[ 3523.922764]  ? splice_direct_to_actor+0x980/0x980
[ 3523.923168]  ? avc_policy_seqno+0x9/0x70
[ 3523.923521]  ? security_file_permission+0xb1/0xe0
[ 3523.923934]  do_sendfile+0x553/0x11e0
[ 3523.924262]  ? do_pwritev+0x270/0x270
[ 3523.924589]  ? wait_for_completion_io+0x270/0x270
[ 3523.925077]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3523.925468]  ? vfs_write+0x354/0xb10
[ 3523.925786]  __x64_sys_sendfile64+0x1d1/0x210
[ 3523.926169]  ? __ia32_sys_sendfile+0x220/0x220
[ 3523.926564]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3523.927006]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3523.927441]  do_syscall_64+0x33/0x40
[ 3523.927756]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3523.928186] RIP: 0033:0x7f5117aedb19
[ 3523.928502] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3523.930069] RSP: 002b:00007f5115063188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3523.930706] RAX: ffffffffffffffda RBX: 00007f5117c00f60 RCX: 00007f5117aedb19
[ 3523.931299] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000000a
[ 3523.931893] RBP: 00007f51150631d0 R08: 0000000000000000 R09: 0000000000000000
[ 3523.932486] R10: 000000007ffffff9 R11: 0000000000000246 R12: 0000000000000002
[ 3523.933103] R13: 00007ffc6010669f R14: 00007f5115063300 R15: 0000000000022000
08:54:27 executing program 6:
r0 = add_key$keyring(&(0x7f00000004c0), &(0x7f0000000500)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
setresuid(0x0, r1, 0x0)
r2 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000240)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470000000f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f00000000c0)=ANY=[])
r3 = getegid()
setresgid(r3, r3, 0x0)
fchownat(r2, &(0x7f00000000c0)='./file1\x00', 0x0, r3, 0x1000)
keyctl$chown(0x4, r0, r1, r3)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000001540)='blacklist\x00', &(0x7f0000001600)=@secondary)
add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, r0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f00000002c0)=<r4=>0x0)
setpriority(0x0, r4, 0x800000000081)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
readv(r5, &(0x7f0000000280)=[{&(0x7f00000004c0)=""/4089, 0xff9}], 0x1)
perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0x2, 0x9, 0x1, 0x1f, 0x0, 0xd9, 0x800, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000040), 0x4}, 0x40000, 0xe486, 0xb5e, 0x8, 0x200, 0x28e, 0xffff, 0x0, 0x9, 0x0, 0x8}, r4, 0x0, r5, 0x9)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000002c0)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB])
fchownat(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', 0x0, 0x0, 0x1000)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0xfffffffffffffffd, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="01434430303101004c494e55582020202020202020202020202020202020202020202020202020204344524f4d2020202020202020202020202020202020202020202020202020200000000000000000b8000000000000b80000000000000000000000000000000000000000000000000000000000000000010000010100000100080800180000000000001813000000000000000000001500000000220017", 0x9f, 0x8000}, {&(0x7f0000010900)="8800170000000000001700080000000008007809140b2a3a0802000001000001010053500701beef005252050181505824016d4100000000416d03", 0x3b, 0xb800}], 0x0, &(0x7f0000000180)={[{@iocharset={'iocharset', 0x3d, 'cp861'}}]})
syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')

08:54:27 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 28)

08:54:27 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00') (fail_nth: 24)

[ 3524.016277] FAULT_INJECTION: forcing a failure.
[ 3524.016277] name failslab, interval 1, probability 0, space 0, times 0
[ 3524.017432] CPU: 0 PID: 22851 Comm: syz-executor.2 Not tainted 5.10.226 #1
[ 3524.018021] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3524.018715] Call Trace:
[ 3524.018950]  dump_stack+0x107/0x167
[ 3524.019267]  should_fail.cold+0x5/0xa
[ 3524.019598]  ? create_object.isra.0+0x3a/0xa20
[ 3524.019993]  should_failslab+0x5/0x20
[ 3524.020321]  kmem_cache_alloc+0x5b/0x310
[ 3524.020674]  ? exit_to_user_mode_prepare+0x186/0x190
[ 3524.021135]  ? syscall_exit_to_user_mode+0x38/0x1d0
[ 3524.021568]  create_object.isra.0+0x3a/0xa20
[ 3524.021947]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3524.022390]  kmem_cache_alloc+0x159/0x310
[ 3524.022757]  getname_flags.part.0+0x50/0x4f0
[ 3524.023141]  getname+0x8e/0xd0
[ 3524.023422]  do_sys_openat2+0xf9/0x4d0
[ 3524.023761]  ? security_file_free+0xaa/0xd0
[ 3524.024131]  ? build_open_flags+0x6f0/0x6f0
[ 3524.024513]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3524.024972]  ? call_rcu+0x435/0x9c0
[ 3524.025294]  __x64_sys_openat+0x13f/0x1f0
[ 3524.025652]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3524.026029]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3524.026475]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3524.026919]  do_syscall_64+0x33/0x40
[ 3524.027239]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3524.027678] RIP: 0033:0x7f98c45cca04
[ 3524.027997] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3524.029563] RSP: 002b:00007f98c1b8f060 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3524.030217] RAX: ffffffffffffffda RBX: 00007f98c472cf60 RCX: 00007f98c45cca04
[ 3524.030827] RDX: 0000000000000000 RSI: 00007f98c1b8f0f0 RDI: 00000000ffffff9c
[ 3524.031430] RBP: 00007f98c1b8f0f0 R08: 0000000000000000 R09: 00007f98c1b8ef70
[ 3524.032032] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 3524.032636] R13: 00007fff6ecaf52f R14: 00007f98c1b8f300 R15: 0000000000022000
[ 3524.033886] FAULT_INJECTION: forcing a failure.
[ 3524.033886] name failslab, interval 1, probability 0, space 0, times 0
[ 3524.035185] CPU: 0 PID: 22843 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3524.035904] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3524.036767] Call Trace:
[ 3524.037067]  dump_stack+0x107/0x167
[ 3524.037449]  should_fail.cold+0x5/0xa
[ 3524.037842]  ? create_object.isra.0+0x3a/0xa20
[ 3524.038314]  should_failslab+0x5/0x20
[ 3524.038701]  kmem_cache_alloc+0x5b/0x310
[ 3524.039112]  ? __lockdep_reset_lock+0x180/0x180
[ 3524.039586]  create_object.isra.0+0x3a/0xa20
[ 3524.040037]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3524.040569]  kmem_cache_alloc+0x159/0x310
[ 3524.041031]  __kernfs_new_node+0xd4/0x860
[ 3524.041466]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 3524.041949]  ? kernfs_add_one+0x36e/0x4d0
[ 3524.042393]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3524.042900]  ? wait_for_completion_io+0x270/0x270
[ 3524.043411]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 3524.043971]  kernfs_new_node+0x18d/0x250
[ 3524.044404]  __kernfs_create_file+0x51/0x350
[ 3524.044868]  sysfs_add_file_mode_ns+0x221/0x560
[ 3524.045368]  internal_create_group+0x324/0xb30
[ 3524.045823]  ? sysfs_remove_group+0x170/0x170
[ 3524.046267]  ? lockdep_init_map_type+0x2c7/0x780
[ 3524.046744]  ? blk_queue_flag_set+0x22/0x30
[ 3524.047177]  ? __loop_update_dio+0x2d2/0x690
[ 3524.047620]  loop_configure+0x958/0x1490
[ 3524.048044]  lo_ioctl+0xa72/0x1760
[ 3524.048404]  ? avc_has_extended_perms+0x7f1/0xf40
[ 3524.048899]  ? loop_set_status_old+0x250/0x250
[ 3524.049376]  ? avc_ss_reset+0x180/0x180
[ 3524.049789]  ? find_held_lock+0x2c/0x110
[ 3524.050230]  ? __lock_acquire+0xbb1/0x5b00
[ 3524.050703]  ? selinux_bprm_creds_for_exec+0xb60/0xb60
[ 3524.051250]  ? generic_block_fiemap+0x60/0x60
[ 3524.051720]  ? lock_downgrade+0x6d0/0x6d0
[ 3524.052150]  ? build_open_flags+0x6f0/0x6f0
[ 3524.052599]  ? find_held_lock+0x2c/0x110
[ 3524.053041]  ? loop_set_status_old+0x250/0x250
[ 3524.053518]  blkdev_ioctl+0x291/0x710
[ 3524.053923]  ? blkdev_common_ioctl+0x1930/0x1930
[ 3524.054421]  ? selinux_file_ioctl+0xb6/0x270
[ 3524.054880]  block_ioctl+0xf9/0x140
[ 3524.055257]  ? blkdev_read_iter+0x1c0/0x1c0
[ 3524.055699]  __x64_sys_ioctl+0x19a/0x210
[ 3524.056118]  do_syscall_64+0x33/0x40
[ 3524.056507]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3524.057054] RIP: 0033:0x7f71ab2628d7
[ 3524.057441] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3524.059360] RSP: 002b:00007f71a87d7f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 3524.060081] RAX: ffffffffffffffda RBX: 00007f71ab2ac970 RCX: 00007f71ab2628d7
[ 3524.060674] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[ 3524.061288] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[ 3524.061887] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[ 3524.062490] R13: 0000000000000004 R14: 0000000020000c00 R15: 0000000000000000
[ 3524.164546] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3524.166936] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
08:54:41 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9) (fail_nth: 22)

08:54:41 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)
fallocate(0xffffffffffffffff, 0x50, 0x320, 0x7)

08:54:41 executing program 5:
syz_80211_inject_frame(&(0x7f0000000040)=@device_a={0x3}, &(0x7f0000000140)=ANY=[], 0x34)
syz_80211_inject_frame(&(0x7f00000000c0)=@broadcast, &(0x7f0000000100)=@mgmt_frame=@deauth={@with_ht={{{0x0, 0x0, 0xc, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1}, {0x9}, @device_b, @device_a, @initial, {0x1, 0x81}}, @ver_80211n={0x0, 0x80, 0x2, 0x0, 0x0, 0x1}}, 0xc, @void}, 0x1e)
syz_80211_inject_frame(&(0x7f0000000000)=@device_b, &(0x7f0000000080)=@ctrl_frame=@cf_end_cf_ack={{}, {0x3f}, @device_b, @device_b}, 0x10)

08:54:41 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00') (fail_nth: 25)

08:54:41 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 29)

08:54:41 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r1, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r1, 0x10e, 0x2, &(0x7f0000000000)=0x10, 0x4)

08:54:41 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000000000000, 0xff0f, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

[ 3537.728114] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3537.729251] FAULT_INJECTION: forcing a failure.
[ 3537.729251] name failslab, interval 1, probability 0, space 0, times 0
[ 3537.730301] CPU: 0 PID: 22864 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3537.730909] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3537.731642] Call Trace:
[ 3537.731894]  dump_stack+0x107/0x167
[ 3537.732236]  should_fail.cold+0x5/0xa
[ 3537.732601]  ? __kernfs_new_node+0xd4/0x860
[ 3537.732996]  should_failslab+0x5/0x20
[ 3537.733369]  kmem_cache_alloc+0x5b/0x310
[ 3537.733750]  __kernfs_new_node+0xd4/0x860
[ 3537.734148]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 3537.734590]  ? kernfs_add_one+0x36e/0x4d0
[ 3537.734976]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3537.735414]  ? wait_for_completion_io+0x270/0x270
[ 3537.735861]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 3537.736347]  kernfs_new_node+0x18d/0x250
[ 3537.736730]  __kernfs_create_file+0x51/0x350
[ 3537.737174]  sysfs_add_file_mode_ns+0x221/0x560
[ 3537.737623]  internal_create_group+0x324/0xb30
[ 3537.738057]  ? sysfs_remove_group+0x170/0x170
[ 3537.738477]  ? lockdep_init_map_type+0x2c7/0x780
[ 3537.738914]  ? blk_queue_flag_set+0x22/0x30
[ 3537.739317]  ? __loop_update_dio+0x2d2/0x690
[ 3537.739728]  loop_configure+0x958/0x1490
[ 3537.740124]  lo_ioctl+0xa72/0x1760
[ 3537.740186] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3537.740436]  ? avc_has_extended_perms+0x7f1/0xf40
[ 3537.740457]  ? loop_set_status_old+0x250/0x250
[ 3537.742433]  ? avc_ss_reset+0x180/0x180
[ 3537.742885]  ? find_held_lock+0x2c/0x110
[ 3537.743351]  ? __lock_acquire+0xbb1/0x5b00
[ 3537.743863]  ? selinux_bprm_creds_for_exec+0xb60/0xb60
[ 3537.744450]  ? generic_block_fiemap+0x60/0x60
[ 3537.744949]  ? lock_downgrade+0x6d0/0x6d0
[ 3537.745424]  ? build_open_flags+0x6f0/0x6f0
[ 3537.745909]  ? find_held_lock+0x2c/0x110
[ 3537.746368]  ? loop_set_status_old+0x250/0x250
[ 3537.746870]  blkdev_ioctl+0x291/0x710
[ 3537.747294]  ? blkdev_common_ioctl+0x1930/0x1930
[ 3537.747822]  ? selinux_file_ioctl+0xb6/0x270
[ 3537.748314]  block_ioctl+0xf9/0x140
[ 3537.748717]  ? blkdev_read_iter+0x1c0/0x1c0
[ 3537.749213]  __x64_sys_ioctl+0x19a/0x210
[ 3537.749646]  do_syscall_64+0x33/0x40
[ 3537.750039]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3537.750588] RIP: 0033:0x7f71ab2628d7
[ 3537.750981] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3537.752878] RSP: 002b:00007f71a87d7f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 3537.753691] RAX: ffffffffffffffda RBX: 00007f71ab2ac970 RCX: 00007f71ab2628d7
[ 3537.754464] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[ 3537.755113] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[ 3537.755142] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3537.755707] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[ 3537.755716] R13: 0000000000000004 R14: 0000000020000c00 R15: 0000000000000000
08:54:41 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(0xffffffffffffffff, 0x0, 0x0, 0x401)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080), 0x20000, 0x0)
sendmsg$FOU_CMD_ADD(r1, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x4c, 0x0, 0x8, 0x70bd27, 0x25dfdbfc, {}, [@FOU_ATTR_IPPROTO={0x5, 0x3, 0x3a}, @FOU_ATTR_PEER_V4={0x8, 0x8, @broadcast}, @FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_TYPE={0x5}, @FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e22}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e24}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000044}, 0x0)
openat$bsg(0xffffffffffffff9c, &(0x7f0000000100), 0x4c2, 0x0)
ioctl$BTRFS_IOC_START_SYNC(r0, 0x80089418, &(0x7f0000000000))
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r2, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'lo\x00', <r3=>0x0})
bind$packet(0xffffffffffffffff, &(0x7f0000000240)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14)
socket$packet(0x11, 0x2, 0x300)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00', <r5=>0x0})
bind$packet(0xffffffffffffffff, &(0x7f0000000240)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @local}, 0x14)
r6 = socket$packet(0x11, 0x2, 0x300)
r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000140)={'lo\x00', <r8=>0x0})
bind$packet(r6, &(0x7f0000000240)={0x11, 0x0, r8, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f0000001540)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f0000001580)=ANY=[@ANYBLOB="0000905b72f2f31e4352643b3e0000", @ANYRES16=0x0, @ANYBLOB="010028bd7000fddbdf25150000006400018008000300020000000800030002000000080003000000000008000300030000001400020076657468305f746f5f626f6e6400000008000100", @ANYRES32=0x0, @ANYBLOB="14000200726f7365300000000000000000000000080003000100000008000100", @ANYRES32=r3, @ANYBLOB="4c00018014000200776c616e31000000000000000000000008000100", @ANYRES32=0x0, @ANYBLOB="08000300010000000800030001000000140002006e657464657673696d30000000000000080003000300000018000180140002006c6f0000000000000000000000000000580001801400020076657468305f746f5f7465616d00000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=r5, @ANYBLOB="140002007663616e300000000000000000000000080003000300000014000200626f6e64300000000000000000000000480001800800030002000000080003000100000008000300030000001400020076657468305f766c616e0000000000000800030000000000080003000000000008000100", @ANYRES32=r8, @ANYBLOB="14000180080003000200000008000100", @ANYRES32=0x0, @ANYBLOB], 0x190}, 0x1, 0x0, 0x0, 0x40009}, 0x4)
ioctl$CDROMREADALL(r2, 0x5318, &(0x7f0000000600))

08:54:41 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
r1 = getpid()
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000180)=<r2=>0x0)
r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r4, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000080)={<r5=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r5, 0x3, r3, 0xa)
r6 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r7, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
r8 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r8, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000300)={'wlan1\x00', <r9=>0x0})
sendmsg$NL80211_CMD_DEL_TX_TS(r8, &(0x7f0000000440)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000400)={&(0x7f0000000340)={0x60, 0x0, 0x100, 0x70bd2a, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_TSID={0x5}, @NL80211_ATTR_TSID={0x5, 0xd2, 0x1}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_TSID={0x5, 0xd2, 0xb}, @NL80211_ATTR_TSID={0x5, 0xd2, 0x9}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x60}, 0x1, 0x0, 0x0, 0x4004}, 0x800)
getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000000080)={<r10=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r10, 0x3, r6, 0xa)
r11 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='net/wireless\x00')
clone3(&(0x7f0000000240)={0x4000, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x5}, &(0x7f00000000c0)=""/18, 0x12, &(0x7f0000000100)=""/102, &(0x7f00000001c0)=[r1, r2, r5, r10, 0x0], 0x5, {r11}}, 0x58)
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)

08:54:41 executing program 6:
r0 = getpgid(0x0)
r1 = syz_open_procfs(r0, &(0x7f0000000040)='pagemap\x00')
pread64(r1, 0x0, 0x7ffffffff000, 0x200000000000000)
process_vm_writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)=""/205, 0xcd}], 0x1, &(0x7f0000000480)=[{&(0x7f0000000180)=""/90, 0x5a}, {&(0x7f0000000200)=""/40, 0x28}, {&(0x7f0000000240)=""/170, 0xaa}, {&(0x7f0000000300)=""/133, 0x85}, {&(0x7f00000003c0)=""/144, 0x90}], 0x5, 0x0)

[ 3537.890883] FAULT_INJECTION: forcing a failure.
[ 3537.890883] name failslab, interval 1, probability 0, space 0, times 0
[ 3537.892100] CPU: 0 PID: 22858 Comm: syz-executor.0 Not tainted 5.10.226 #1
[ 3537.892740] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3537.893521] Call Trace:
[ 3537.893785]  dump_stack+0x107/0x167
[ 3537.894139]  should_fail.cold+0x5/0xa
[ 3537.894501]  ? create_object.isra.0+0x3a/0xa20
[ 3537.894933]  should_failslab+0x5/0x20
[ 3537.895297]  kmem_cache_alloc+0x5b/0x310
[ 3537.895678]  ? igrab+0xc0/0xc0
[ 3537.895992]  create_object.isra.0+0x3a/0xa20
[ 3537.896407]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3537.896885]  __kmalloc+0x16e/0x390
[ 3537.897457]  iter_file_splice_write+0x16d/0xc30
[ 3537.898365]  ? atime_needs_update+0x600/0x600
[ 3537.899221]  ? __fsnotify_parent+0x47a/0xb10
[ 3537.900062]  ? generic_splice_sendpage+0x140/0x140
[ 3537.901006]  ? pipe_to_user+0x170/0x170
[ 3537.901507]  ? security_file_permission+0xb1/0xe0
[ 3537.901966]  ? generic_splice_sendpage+0x140/0x140
[ 3537.902427]  direct_splice_actor+0x10f/0x170
[ 3537.902847]  splice_direct_to_actor+0x387/0x980
[ 3537.903290]  ? pipe_to_sendpage+0x380/0x380
[ 3537.903701]  ? do_splice_to+0x160/0x160
[ 3537.904087]  ? security_file_permission+0xb1/0xe0
[ 3537.904545]  do_splice_direct+0x1c4/0x290
[ 3537.904940]  ? splice_direct_to_actor+0x980/0x980
[ 3537.905848]  ? avc_policy_seqno+0x9/0x70
[ 3537.906588]  ? security_file_permission+0xb1/0xe0
[ 3537.907462]  do_sendfile+0x553/0x11e0
[ 3537.908152]  ? do_pwritev+0x270/0x270
[ 3537.908825]  ? wait_for_completion_io+0x270/0x270
[ 3537.909855]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3537.910819]  ? vfs_write+0x354/0xb10
[ 3537.911594]  __x64_sys_sendfile64+0x1d1/0x210
[ 3537.912503]  ? __ia32_sys_sendfile+0x220/0x220
[ 3537.913275]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3537.913766]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3537.914253]  do_syscall_64+0x33/0x40
[ 3537.914606]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3537.915084] RIP: 0033:0x7f5117aedb19
[ 3537.915437] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3537.917220] RSP: 002b:00007f5115063188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3537.918691] RAX: ffffffffffffffda RBX: 00007f5117c00f60 RCX: 00007f5117aedb19
[ 3537.920063] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000000a
[ 3537.921279] RBP: 00007f51150631d0 R08: 0000000000000000 R09: 0000000000000000
[ 3537.921938] R10: 000000007ffffff9 R11: 0000000000000246 R12: 0000000000000002
[ 3537.922597] R13: 00007ffc6010669f R14: 00007f5115063300 R15: 0000000000022000
08:54:41 executing program 7:
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000680)={{0x1, 0x1, 0x18}, './file0\x00'})
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r0, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r1, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080))
sendmsg$NBD_CMD_RECONFIGURE(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000780)={&(0x7f00000006c0)={0x84, 0x0, 0x200, 0x70bd27, 0x25dfdbfe, {}, [@NBD_ATTR_TIMEOUT={0xc, 0x4, 0xfffffffffffffffe}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0xfff}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x4}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0xee96}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x9}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x4}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0xffb}, @NBD_ATTR_CLIENT_FLAGS={0xc}]}, 0x84}, 0x1, 0x0, 0x0, 0xc8c0}, 0x40)
r2 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
dup3(0xffffffffffffffff, r2, 0x0)
pread64(r2, 0x0, 0x7ffffffff000, 0x200000000000)

08:54:41 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r2, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000080)={<r3=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r3, 0x3, r1, 0xa)
recvmmsg$unix(r0, &(0x7f0000007600)=[{{&(0x7f0000000100), 0x6e, &(0x7f00000016c0)=[{&(0x7f00000002c0)=""/228, 0xe4}, {&(0x7f0000000400)=""/88, 0x58}, {&(0x7f0000001540)=""/156, 0x9c}, {&(0x7f0000001e00)=""/4096, 0x1000}, {&(0x7f0000000480)=""/119, 0x77}, {&(0x7f0000001600)=""/153, 0x99}, {&(0x7f0000000200)=""/4, 0x4}], 0x7, &(0x7f0000001740)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {<r4=>0x0}}}], 0xd8}}, {{0x0, 0x0, &(0x7f0000001880)=[{&(0x7f0000003600)=""/4096, 0x1000}, {&(0x7f0000001840)=""/24, 0x18}], 0x2, &(0x7f00000018c0)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xf0}}, {{&(0x7f00000019c0)=@abs, 0x6e, &(0x7f0000001c80)=[{&(0x7f0000001a40)=""/254, 0xfe}, {&(0x7f0000001b40)=""/190, 0xbe}, {&(0x7f0000001c00)=""/74, 0x4a}], 0x3, &(0x7f0000001cc0)=[@cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x68}}, {{&(0x7f0000002e00), 0x6e, &(0x7f0000001d40)=[{&(0x7f0000004600)=""/4096, 0x1000}], 0x1, &(0x7f0000002e80)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x120}}, {{0x0, 0x0, &(0x7f0000003440)=[{&(0x7f0000002fc0)=""/164, 0xa4}, {&(0x7f0000003080)=""/37, 0x25}, {&(0x7f00000030c0)=""/13, 0xd}, {&(0x7f0000003100)=""/206, 0xce}, {&(0x7f0000005600)=""/4096, 0x1000}, {&(0x7f0000003200)=""/60, 0x3c}, {&(0x7f0000003240)=""/250, 0xfa}, {&(0x7f0000006600)=""/4096, 0x1000}, {&(0x7f0000003340)=""/196, 0xc4}], 0x9, &(0x7f0000003500)=[@rights={{0x10}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x90}}], 0x5, 0x10020, 0x0)
r5 = syz_open_procfs(r4, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r5, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r5, 0x6, 0x21, &(0x7f0000000000)="e1fa78f196b3d20a4580276300890884", 0x10)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x4)
ioctl$CDROM_SELECT_SPEED(r6, 0x2275, 0x20000000)
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)

[ 3538.062521] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3538.064610] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3538.067053] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3538.169356] FAULT_INJECTION: forcing a failure.
[ 3538.169356] name failslab, interval 1, probability 0, space 0, times 0
[ 3538.170375] CPU: 1 PID: 22897 Comm: syz-executor.2 Not tainted 5.10.226 #1
[ 3538.170965] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3538.171672] Call Trace:
[ 3538.171916]  dump_stack+0x107/0x167
[ 3538.172238]  should_fail.cold+0x5/0xa
[ 3538.172577]  ? __alloc_file+0x21/0x320
[ 3538.172924]  should_failslab+0x5/0x20
[ 3538.173272]  kmem_cache_alloc+0x5b/0x310
[ 3538.173627]  __alloc_file+0x21/0x320
[ 3538.173946]  alloc_empty_file+0x6d/0x170
[ 3538.174291]  path_openat+0xe6/0x2770
[ 3538.174616]  ? __lock_acquire+0x1657/0x5b00
[ 3538.174995]  ? path_lookupat+0x860/0x860
[ 3538.175342]  ? perf_trace_lock+0xac/0x490
[ 3538.175703]  ? lock_acquire+0x197/0x470
[ 3538.176047]  ? find_held_lock+0x2c/0x110
[ 3538.176402]  ? __lockdep_reset_lock+0x180/0x180
[ 3538.176814]  do_filp_open+0x190/0x3e0
[ 3538.177154]  ? may_open_dev+0xf0/0xf0
[ 3538.177499]  ? alloc_fd+0x2e7/0x670
[ 3538.177816]  ? lock_downgrade+0x6d0/0x6d0
[ 3538.178172]  ? do_raw_spin_lock+0x121/0x260
[ 3538.178548]  ? rwlock_bug.part.0+0x90/0x90
[ 3538.178922]  ? _raw_spin_unlock+0x1a/0x30
[ 3538.179281]  ? alloc_fd+0x2e7/0x670
[ 3538.179626]  do_sys_openat2+0x171/0x4d0
[ 3538.179983]  ? security_file_free+0xaa/0xd0
[ 3538.180360]  ? build_open_flags+0x6f0/0x6f0
[ 3538.180753]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3538.181223]  ? call_rcu+0x435/0x9c0
[ 3538.181547]  __x64_sys_openat+0x13f/0x1f0
[ 3538.181900]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3538.182260]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3538.182714]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3538.183162]  do_syscall_64+0x33/0x40
[ 3538.183491]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3538.183938] RIP: 0033:0x7f98c45cca04
[ 3538.184262] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3538.185821] RSP: 002b:00007f98c1b6e060 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3538.186479] RAX: ffffffffffffffda RBX: 00007f98c472d020 RCX: 00007f98c45cca04
[ 3538.187090] RDX: 0000000000000000 RSI: 00007f98c1b6e0f0 RDI: 00000000ffffff9c
[ 3538.187696] RBP: 00007f98c1b6e0f0 R08: 0000000000000000 R09: 00007f98c1b6df70
[ 3538.188310] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 3538.188919] R13: 00007fff6ecaf52f R14: 00007f98c1b6e300 R15: 0000000000022000
[ 3551.678389] FAULT_INJECTION: forcing a failure.
[ 3551.678389] name failslab, interval 1, probability 0, space 0, times 0
[ 3551.680749] CPU: 0 PID: 22915 Comm: syz-executor.2 Not tainted 5.10.226 #1
[ 3551.682284] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3551.683881] Call Trace:
[ 3551.684350]  dump_stack+0x107/0x167
[ 3551.684998]  should_fail.cold+0x5/0xa
[ 3551.685815]  ? create_object.isra.0+0x3a/0xa20
[ 3551.686629]  should_failslab+0x5/0x20
[ 3551.687302]  kmem_cache_alloc+0x5b/0x310
[ 3551.688025]  create_object.isra.0+0x3a/0xa20
[ 3551.688802]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3551.689883]  kmem_cache_alloc+0x159/0x310
[ 3551.690636]  __alloc_file+0x21/0x320
[ 3551.691295]  alloc_empty_file+0x6d/0x170
[ 3551.692012]  path_openat+0xe6/0x2770
[ 3551.692672]  ? perf_trace_run_bpf_submit+0xf5/0x190
[ 3551.693426]  ? perf_trace_run_bpf_submit+0xf5/0x190
[ 3551.693857]  ? path_lookupat+0x860/0x860
[ 3551.694207]  ? perf_trace_lock+0x2bd/0x490
[ 3551.694568]  ? lock_acquire+0x197/0x470
[ 3551.694908]  ? find_held_lock+0x2c/0x110
[ 3551.695262]  ? __lockdep_reset_lock+0x180/0x180
[ 3551.695668]  do_filp_open+0x190/0x3e0
[ 3551.695994]  ? may_open_dev+0xf0/0xf0
[ 3551.696329]  ? alloc_fd+0x2e7/0x670
[ 3551.696642]  ? lock_downgrade+0x6d0/0x6d0
[ 3551.696999]  ? do_raw_spin_lock+0x121/0x260
[ 3551.701633] FAULT_INJECTION: forcing a failure.
[ 3551.701633] name failslab, interval 1, probability 0, space 0, times 0
[ 3551.705397]  ? rwlock_bug.part.0+0x90/0x90
[ 3551.705432]  ? _raw_spin_unlock+0x1a/0x30
[ 3551.705448]  ? alloc_fd+0x2e7/0x670
[ 3551.707351]  do_sys_openat2+0x171/0x4d0
[ 3551.707701]  ? security_file_free+0xaa/0xd0
[ 3551.708078]  ? build_open_flags+0x6f0/0x6f0
[ 3551.708464]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3551.708907]  ? call_rcu+0x435/0x9c0
[ 3551.709280]  __x64_sys_openat+0x13f/0x1f0
[ 3551.709647]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3551.710024]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3551.710474]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3551.710919]  do_syscall_64+0x33/0x40
[ 3551.711240]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3551.711677] RIP: 0033:0x7f98c45cca04
[ 3551.711998] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3551.713540] RSP: 002b:00007f98c1b8f060 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3551.714185] RAX: ffffffffffffffda RBX: 00007f98c472cf60 RCX: 00007f98c45cca04
[ 3551.714784] RDX: 0000000000000000 RSI: 00007f98c1b8f0f0 RDI: 00000000ffffff9c
[ 3551.715382] RBP: 00007f98c1b8f0f0 R08: 0000000000000000 R09: 00007f98c1b8ef70
[ 3551.715982] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 3551.716585] R13: 00007fff6ecaf52f R14: 00007f98c1b8f300 R15: 0000000000022000
08:54:55 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000000000000, 0x40800, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:54:55 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/if_inet6\x00')
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x8901, &(0x7f0000001840)="fb")
ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(r1, 0xf504, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x8901, &(0x7f0000001840)="fb")
pread64(r0, 0x0, 0x0, 0x1ff)
getdents(0xffffffffffffffff, &(0x7f0000000040)=""/7, 0x7)

08:54:55 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)
r1 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder-control\x00', 0x0, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000600)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x2, 0xdd, 0x1f, 0x30, 0x2, 0x3e, 0xa3bfefb, 0x3c7, 0x40, 0xc8, 0x618, 0x7, 0x38, 0x2, 0x7, 0x5, 0x2}, [{0x4, 0xaaf, 0x2, 0x1, 0x514, 0x6, 0x7, 0x8}, {0x5, 0x4, 0x100, 0x6, 0x723d, 0x3ff, 0x1}], "4831b9031618bafe53a2d6cc989ea724c77ae268868669278999d96b121bc35ecebd804f419994cfa8976c653e04d3dd4e87ca77f97caf83f789a223a0bd5fff242023886a4ffefec65dbf4dcd483413242df4deb8543b0cfc4eb3b166ea91dc83ffa269afff140e12092bfad6261078f3ca9b324f08358395e881cfb49a3a771fdc66e1b3cc6a9c094a1c2b65135bf30b7d100b1efbc96df67c2ced32b0d57d4efdf0570c5eb07c0d1fd169d8864b5c5f52cf2956abbb8321aa534798df72c56eec9aa5890360db94a3", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x97a)

08:54:55 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 30)

08:54:55 executing program 5:
ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, &(0x7f0000000180)={0x0, 0x8})
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xc}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='tracefs\x00', 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x20020, &(0x7f0000000140)={[{@gid}]})
syz_io_uring_setup(0x3167, &(0x7f0000000380)={0x0, 0x9b7a, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f00000002c0), &(0x7f0000000340))
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffa, 0x10000, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, @perf_bp={&(0x7f0000000100), 0xb}, 0x1c210, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x4}, 0x0, 0xd, 0xffffffffffffffff, 0x9)
mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x4000, 0x0, 0x0, 0x3)
r0 = pkey_alloc(0x0, 0x0)
mlock2(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0)
pkey_mprotect(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x5, r0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0x12, &(0x7f0000000200)=0x33e0, 0x4)
mremap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil)
mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4)
mlock(&(0x7f0000ffd000/0x3000)=nil, 0x3000)
mlock2(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1)

08:54:55 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9) (fail_nth: 23)

08:54:55 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00') (fail_nth: 26)

[ 3551.717228] CPU: 1 PID: 22916 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3551.725845] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3551.726598] Call Trace:
[ 3551.726850]  dump_stack+0x107/0x167
[ 3551.727197]  should_fail.cold+0x5/0xa
[ 3551.727555]  ? create_object.isra.0+0x3a/0xa20
[ 3551.727984]  should_failslab+0x5/0x20
[ 3551.728342]  kmem_cache_alloc+0x5b/0x310
[ 3551.728723]  ? __lockdep_reset_lock+0x180/0x180
[ 3551.729162]  create_object.isra.0+0x3a/0xa20
[ 3551.729606]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3551.730089]  kmem_cache_alloc+0x159/0x310
[ 3551.730487]  __kernfs_new_node+0xd4/0x860
[ 3551.730881]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 3551.731321]  ? kernfs_add_one+0x36e/0x4d0
[ 3551.731716]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3551.732161]  ? wait_for_completion_io+0x270/0x270
[ 3551.732604]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 3551.733083]  kernfs_new_node+0x18d/0x250
[ 3551.733483]  __kernfs_create_file+0x51/0x350
[ 3551.733881]  sysfs_add_file_mode_ns+0x221/0x560
[ 3551.734309]  internal_create_group+0x324/0xb30
[ 3551.734737]  ? sysfs_remove_group+0x170/0x170
[ 3551.735150]  ? lockdep_init_map_type+0x2c7/0x780
[ 3551.735596]  ? blk_queue_flag_set+0x22/0x30
[ 3551.735992]  ? __loop_update_dio+0x2d2/0x690
[ 3551.736396]  loop_configure+0x958/0x1490
[ 3551.736786]  lo_ioctl+0xa72/0x1760
[ 3551.737121]  ? avc_has_extended_perms+0x7f1/0xf40
[ 3551.737585]  ? loop_set_status_old+0x250/0x250
[ 3551.738007]  ? avc_ss_reset+0x180/0x180
[ 3551.738379]  ? find_held_lock+0x2c/0x110
[ 3551.738768]  ? __lock_acquire+0xbb1/0x5b00
[ 3551.739206]  ? selinux_bprm_creds_for_exec+0xb60/0xb60
[ 3551.739689]  ? generic_block_fiemap+0x60/0x60
[ 3551.740110]  ? lock_downgrade+0x6d0/0x6d0
[ 3551.740492]  ? build_open_flags+0x6f0/0x6f0
[ 3551.740888]  ? find_held_lock+0x2c/0x110
[ 3551.741280]  ? loop_set_status_old+0x250/0x250
[ 3551.741712]  blkdev_ioctl+0x291/0x710
[ 3551.742064]  ? blkdev_common_ioctl+0x1930/0x1930
[ 3551.742495]  ? selinux_file_ioctl+0xb6/0x270
[ 3551.742903]  block_ioctl+0xf9/0x140
[ 3551.743234]  ? blkdev_read_iter+0x1c0/0x1c0
[ 3551.743638]  __x64_sys_ioctl+0x19a/0x210
[ 3551.744014]  do_syscall_64+0x33/0x40
[ 3551.744358]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3551.744828] RIP: 0033:0x7f71ab2628d7
[ 3551.745160] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3551.746761] RSP: 002b:00007f71a87d7f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 3551.747456] RAX: ffffffffffffffda RBX: 00007f71ab2ac970 RCX: 00007f71ab2628d7
[ 3551.748104] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[ 3551.748747] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[ 3551.753430] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[ 3551.754068] R13: 0000000000000004 R14: 0000000020000c00 R15: 0000000000000000
08:54:55 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs_stats\x00')
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r4 = syz_io_uring_setup(0x368c, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000000}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000500))
pipe2(&(0x7f0000000540), 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
syz_io_uring_setup(0x3c99, &(0x7f0000000040)={0x0, 0xb414, 0x0, 0x1, 0x51, 0x0, r4}, &(0x7f0000ff4000/0xc000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000240), &(0x7f0000000280)=<r5=>0x0)
syz_io_uring_submit(r2, r5, &(0x7f0000000400)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd, 0x0, 0x0, 0x0, 0x1}, 0x80)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x3}, 0x5888}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r6, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
pread64(r0, &(0x7f0000000040)=""/10, 0xa, 0x80000001)
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000000)

08:54:55 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r0, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_VLAN(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40001700}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x44, r1, 0x100, 0x70bd2c, 0x25dfdbfe, {}, [@BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0xffffff7f}, @BATADV_ATTR_HARD_IFINDEX={0x8}, @BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x75}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x40}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x7}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x4)
r2 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r2, 0x0, 0x7ffffffff000, 0x806c54747f0000)

[ 3551.842066] FAULT_INJECTION: forcing a failure.
[ 3551.842066] name failslab, interval 1, probability 0, space 0, times 0
[ 3551.843885] CPU: 1 PID: 22912 Comm: syz-executor.0 Not tainted 5.10.226 #1
[ 3551.845509] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3551.846387] Call Trace:
[ 3551.847006]  dump_stack+0x107/0x167
[ 3551.847845]  should_fail.cold+0x5/0xa
[ 3551.848797]  ? __blkdev_direct_IO_simple+0x222/0x930
[ 3551.850049]  should_failslab+0x5/0x20
[ 3551.850481]  __kmalloc+0x72/0x390
[ 3551.851350]  ? iov_iter_alignment+0x1b1/0x810
[ 3551.851858]  __blkdev_direct_IO_simple+0x222/0x930
[ 3551.853092]  ? bd_link_disk_holder+0x710/0x710
[ 3551.853616]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3551.854923]  ? __lock_acquire+0xbb1/0x5b00
[ 3551.855403]  ? invalidate_inode_pages2_range+0xa19/0xc50
[ 3551.856754]  ? find_held_lock+0x2c/0x110
[ 3551.857223]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 3551.858821]  ? current_time+0x72/0x2c0
[ 3551.859270]  ? iov_iter_npages+0x1fd/0xa70
[ 3551.860334]  blkdev_direct_IO+0xb35/0x12a0
[ 3551.860816]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3551.862171]  ? ktime_get_coarse_real_ts64+0x15a/0x190
[ 3551.862737]  ? trace_hardirqs_on+0x5b/0x180
[ 3551.863813]  ? ktime_get_coarse_real_ts64+0x15a/0x190
[ 3551.864385]  ? ktime_get_coarse_real_ts64+0xfd/0x190
[ 3551.865641]  ? bd_prepare_to_claim+0x290/0x290
[ 3551.866156]  ? __mark_inode_dirty+0x12e/0xd40
[ 3551.867277]  ? generic_update_time+0x21c/0x370
[ 3551.867790]  ? filemap_check_errors+0xa5/0x150
[ 3551.868934]  generic_file_direct_write+0x20e/0x560
[ 3551.869497]  __generic_file_write_iter+0x235/0x5d0
[ 3551.870693]  blkdev_write_iter+0x298/0x550
[ 3551.871173]  ? bd_unlink_disk_holder+0x3f0/0x3f0
[ 3551.872335]  ? direct_splice_actor+0x10f/0x170
[ 3551.872848]  ? splice_direct_to_actor+0x387/0x980
[ 3551.874045]  ? do_splice_direct+0x1c4/0x290
[ 3551.874529]  ? do_sendfile+0x553/0x11e0
[ 3551.875513]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 3551.876034]  ? do_syscall_64+0x33/0x40
[ 3551.877033]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3551.877639]  do_iter_readv_writev+0x476/0x750
[ 3551.878747]  ? new_sync_write+0x660/0x660
[ 3551.879211]  ? avc_policy_seqno+0x9/0x70
[ 3551.880203]  ? selinux_file_permission+0x92/0x520
[ 3551.880749]  ? security_file_permission+0xb1/0xe0
[ 3551.881943]  do_iter_write+0x191/0x700
[ 3551.882387]  ? trace_hardirqs_on+0x5b/0x180
[ 3551.883438]  vfs_iter_write+0x70/0xa0
[ 3551.884383]  iter_file_splice_write+0x762/0xc30
[ 3551.884906]  ? generic_splice_sendpage+0x140/0x140
[ 3551.886136]  ? security_file_permission+0xb1/0xe0
[ 3551.886668]  ? generic_splice_sendpage+0x140/0x140
[ 3551.887884]  direct_splice_actor+0x10f/0x170
[ 3551.888368]  splice_direct_to_actor+0x387/0x980
[ 3551.889542]  ? pipe_to_sendpage+0x380/0x380
[ 3551.890013]  ? do_splice_to+0x160/0x160
[ 3551.891003]  ? security_file_permission+0xb1/0xe0
[ 3551.891535]  do_splice_direct+0x1c4/0x290
[ 3551.892550]  ? splice_direct_to_actor+0x980/0x980
[ 3551.893071]  ? avc_policy_seqno+0x9/0x70
[ 3551.894088]  ? security_file_permission+0xb1/0xe0
[ 3551.894621]  do_sendfile+0x553/0x11e0
[ 3551.895570]  ? do_pwritev+0x270/0x270
[ 3551.895994]  ? wait_for_completion_io+0x270/0x270
[ 3551.897177]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3551.897691]  ? vfs_write+0x354/0xb10
[ 3551.898609]  __x64_sys_sendfile64+0x1d1/0x210
[ 3551.899100]  ? __ia32_sys_sendfile+0x220/0x220
[ 3551.900234]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3551.900809]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3551.902087]  do_syscall_64+0x33/0x40
[ 3551.902505]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3551.903769] RIP: 0033:0x7f5117aedb19
[ 3551.904182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3551.908709] RSP: 002b:00007f5115063188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3551.909559] RAX: ffffffffffffffda RBX: 00007f5117c00f60 RCX: 00007f5117aedb19
[ 3551.911316] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000000a
[ 3551.913059] RBP: 00007f51150631d0 R08: 0000000000000000 R09: 0000000000000000
[ 3551.914824] R10: 000000007ffffff9 R11: 0000000000000246 R12: 0000000000000002
[ 3551.916586] R13: 00007ffc6010669f R14: 00007f5115063300 R15: 0000000000022000
08:54:55 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00') (fail_nth: 27)

08:54:55 executing program 7:
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000), 0x9)
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x7ffffffff000, 0x200000000000)

08:54:55 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 31)

08:54:55 executing program 7:
r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0)
pread64(r0, 0x0, 0x0, 0x0)

[ 3551.999159] FAULT_INJECTION: forcing a failure.
[ 3551.999159] name failslab, interval 1, probability 0, space 0, times 0
[ 3552.000274] CPU: 1 PID: 22935 Comm: syz-executor.2 Not tainted 5.10.226 #1
[ 3552.000896] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3552.001653] Call Trace:
[ 3552.001904]  dump_stack+0x107/0x167
[ 3552.002241]  should_fail.cold+0x5/0xa
[ 3552.002596]  ? security_file_alloc+0x34/0x170
[ 3552.003001]  should_failslab+0x5/0x20
[ 3552.003349]  kmem_cache_alloc+0x5b/0x310
[ 3552.003732]  security_file_alloc+0x34/0x170
[ 3552.004142]  __alloc_file+0xb7/0x320
[ 3552.004490]  alloc_empty_file+0x6d/0x170
[ 3552.004850]  path_openat+0xe6/0x2770
[ 3552.005181]  ? __lock_acquire+0x1657/0x5b00
[ 3552.005738]  ? path_lookupat+0x860/0x860
[ 3552.006671]  ? perf_trace_lock+0xac/0x490
[ 3552.007124]  ? lock_acquire+0x197/0x470
[ 3552.008074]  ? find_held_lock+0x2c/0x110
[ 3552.008509]  ? __lockdep_reset_lock+0x180/0x180
[ 3552.009597]  do_filp_open+0x190/0x3e0
[ 3552.009976]  ? may_open_dev+0xf0/0xf0
[ 3552.010819]  ? alloc_fd+0x2e7/0x670
[ 3552.011189]  ? lock_downgrade+0x6d0/0x6d0
[ 3552.012092]  ? do_raw_spin_lock+0x121/0x260
[ 3552.012520]  ? rwlock_bug.part.0+0x90/0x90
[ 3552.013502]  ? _raw_spin_unlock+0x1a/0x30
[ 3552.013950]  ? alloc_fd+0x2e7/0x670
[ 3552.014830]  do_sys_openat2+0x171/0x4d0
[ 3552.015286]  ? security_file_free+0xaa/0xd0
[ 3552.016331]  ? build_open_flags+0x6f0/0x6f0
[ 3552.016830]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3552.018110]  ? call_rcu+0x435/0x9c0
[ 3552.018517]  __x64_sys_openat+0x13f/0x1f0
[ 3552.019490]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3552.019951]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3552.021178]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3552.021780]  do_syscall_64+0x33/0x40
[ 3552.022271]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3552.022845] RIP: 0033:0x7f98c45cca04
[ 3552.023264] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3552.025258] RSP: 002b:00007f98c1b8f060 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3552.026186] RAX: ffffffffffffffda RBX: 00007f98c472cf60 RCX: 00007f98c45cca04
[ 3552.027037] RDX: 0000000000000000 RSI: 00007f98c1b8f0f0 RDI: 00000000ffffff9c
[ 3552.027844] RBP: 00007f98c1b8f0f0 R08: 0000000000000000 R09: 00007f98c1b8ef70
[ 3552.028692] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 3552.029624] R13: 00007fff6ecaf52f R14: 00007f98c1b8f300 R15: 0000000000022000
08:54:55 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9) (fail_nth: 24)

[ 3552.072221] FAULT_INJECTION: forcing a failure.
[ 3552.072221] name failslab, interval 1, probability 0, space 0, times 0
[ 3552.073288] CPU: 0 PID: 22942 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3552.073930] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3552.074691] Call Trace:
[ 3552.074945]  dump_stack+0x107/0x167
[ 3552.075273]  should_fail.cold+0x5/0xa
[ 3552.075646]  ? __kernfs_new_node+0xd4/0x860
[ 3552.076026]  should_failslab+0x5/0x20
[ 3552.076357]  kmem_cache_alloc+0x5b/0x310
[ 3552.076753]  __kernfs_new_node+0xd4/0x860
[ 3552.077135]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 3552.077584]  ? kernfs_add_one+0x36e/0x4d0
[ 3552.077988]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3552.078449]  ? wait_for_completion_io+0x270/0x270
[ 3552.078918]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 3552.079409]  kernfs_new_node+0x18d/0x250
[ 3552.079803]  __kernfs_create_file+0x51/0x350
[ 3552.080214]  sysfs_add_file_mode_ns+0x221/0x560
[ 3552.080652]  internal_create_group+0x324/0xb30
[ 3552.081090]  ? sysfs_remove_group+0x170/0x170
[ 3552.081524]  ? lockdep_init_map_type+0x2c7/0x780
[ 3552.081975]  ? blk_queue_flag_set+0x22/0x30
[ 3552.082382]  ? __loop_update_dio+0x2d2/0x690
[ 3552.082801]  loop_configure+0x958/0x1490
[ 3552.083197]  lo_ioctl+0xa72/0x1760
[ 3552.083536]  ? avc_has_extended_perms+0x7f1/0xf40
[ 3552.083988]  ? loop_set_status_old+0x250/0x250
[ 3552.084437]  ? avc_ss_reset+0x180/0x180
[ 3552.084810]  ? find_held_lock+0x2c/0x110
[ 3552.085206]  ? __lock_acquire+0xbb1/0x5b00
[ 3552.085664]  ? selinux_bprm_creds_for_exec+0xb60/0xb60
[ 3552.086159]  ? generic_block_fiemap+0x60/0x60
[ 3552.086578]  ? lock_downgrade+0x6d0/0x6d0
[ 3552.086964]  ? build_open_flags+0x6f0/0x6f0
[ 3552.087369]  ? find_held_lock+0x2c/0x110
[ 3552.087765]  ? loop_set_status_old+0x250/0x250
[ 3552.088188]  blkdev_ioctl+0x291/0x710
[ 3552.088553]  ? blkdev_common_ioctl+0x1930/0x1930
[ 3552.089005]  ? selinux_file_ioctl+0xb6/0x270
[ 3552.089442]  block_ioctl+0xf9/0x140
[ 3552.089784]  ? blkdev_read_iter+0x1c0/0x1c0
[ 3552.090187]  __x64_sys_ioctl+0x19a/0x210
[ 3552.090569]  do_syscall_64+0x33/0x40
[ 3552.090922]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3552.091391] RIP: 0033:0x7f71ab2628d7
[ 3552.091738] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3552.093434] RSP: 002b:00007f71a87d7f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 3552.094624] RAX: ffffffffffffffda RBX: 00007f71ab2ac970 RCX: 00007f71ab2628d7
[ 3552.095973] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[ 3552.097776] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[ 3552.098514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[ 3552.100272] R13: 0000000000000004 R14: 0000000020000c00 R15: 0000000000000000
08:54:55 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
r1 = socket$nl_audit(0x10, 0x3, 0x9)
dup2(r1, r0)
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)

08:54:55 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00') (fail_nth: 28)

[ 3552.275746] FAULT_INJECTION: forcing a failure.
[ 3552.275746] name failslab, interval 1, probability 0, space 0, times 0
[ 3552.276865] CPU: 0 PID: 22951 Comm: syz-executor.2 Not tainted 5.10.226 #1
[ 3552.278387] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3552.280345] Call Trace:
[ 3552.280993]  dump_stack+0x107/0x167
[ 3552.281514]  should_fail.cold+0x5/0xa
[ 3552.281878]  ? create_object.isra.0+0x3a/0xa20
[ 3552.282305]  should_failslab+0x5/0x20
[ 3552.282668]  kmem_cache_alloc+0x5b/0x310
[ 3552.283060]  ? percpu_ref_put_many.constprop.0+0x4e/0x110
[ 3552.283586]  create_object.isra.0+0x3a/0xa20
[ 3552.284000]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3552.284478]  kmem_cache_alloc+0x159/0x310
[ 3552.284889]  security_file_alloc+0x34/0x170
[ 3552.285328]  __alloc_file+0xb7/0x320
[ 3552.285695]  alloc_empty_file+0x6d/0x170
[ 3552.286089]  path_openat+0xe6/0x2770
[ 3552.286448]  ? perf_trace_run_bpf_submit+0xf5/0x190
[ 3552.286923]  ? perf_trace_run_bpf_submit+0xf5/0x190
[ 3552.287407]  ? path_lookupat+0x860/0x860
[ 3552.287799]  ? perf_trace_lock+0x2bd/0x490
[ 3552.288203]  ? lock_acquire+0x197/0x470
[ 3552.288574]  ? find_held_lock+0x2c/0x110
[ 3552.288958]  ? __lockdep_reset_lock+0x180/0x180
[ 3552.289430]  do_filp_open+0x190/0x3e0
[ 3552.289799]  ? may_open_dev+0xf0/0xf0
[ 3552.290175]  ? alloc_fd+0x2e7/0x670
[ 3552.290518]  ? lock_downgrade+0x6d0/0x6d0
[ 3552.290906]  ? do_raw_spin_lock+0x121/0x260
[ 3552.291320]  ? rwlock_bug.part.0+0x90/0x90
[ 3552.291734]  ? _raw_spin_unlock+0x1a/0x30
[ 3552.292089]  ? alloc_fd+0x2e7/0x670
[ 3552.292426]  do_sys_openat2+0x171/0x4d0
[ 3552.292773]  ? security_file_free+0xaa/0xd0
[ 3552.293143]  ? build_open_flags+0x6f0/0x6f0
[ 3552.293542]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3552.293986]  ? call_rcu+0x435/0x9c0
[ 3552.294307]  __x64_sys_openat+0x13f/0x1f0
[ 3552.294668]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3552.295049]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3552.295498]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3552.295942]  do_syscall_64+0x33/0x40
[ 3552.296264]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3552.296699] RIP: 0033:0x7f98c45cca04
[ 3552.297021] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3552.298557] RSP: 002b:00007f98c1b8f060 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3552.299202] RAX: ffffffffffffffda RBX: 00007f98c472cf60 RCX: 00007f98c45cca04
[ 3552.299802] RDX: 0000000000000000 RSI: 00007f98c1b8f0f0 RDI: 00000000ffffff9c
[ 3552.300401] RBP: 00007f98c1b8f0f0 R08: 0000000000000000 R09: 00007f98c1b8ef70
[ 3552.301002] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 3552.301621] R13: 00007fff6ecaf52f R14: 00007f98c1b8f300 R15: 0000000000022000
[ 3552.351897] FAULT_INJECTION: forcing a failure.
[ 3552.351897] name failslab, interval 1, probability 0, space 0, times 0
[ 3552.353708] CPU: 1 PID: 22952 Comm: syz-executor.0 Not tainted 5.10.226 #1
[ 3552.354473] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3552.355383] Call Trace:
[ 3552.355680]  dump_stack+0x107/0x167
[ 3552.356083]  should_fail.cold+0x5/0xa
[ 3552.356501]  ? create_object.isra.0+0x3a/0xa20
[ 3552.356989]  should_failslab+0x5/0x20
[ 3552.357425]  kmem_cache_alloc+0x5b/0x310
[ 3552.357891]  ? mark_lock+0xf5/0x2df0
[ 3552.358316]  create_object.isra.0+0x3a/0xa20
[ 3552.358807]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3552.359379]  __kmalloc+0x16e/0x390
[ 3552.359773]  ? iov_iter_alignment+0x1b1/0x810
[ 3552.360289]  __blkdev_direct_IO_simple+0x222/0x930
[ 3552.360825]  ? bd_link_disk_holder+0x710/0x710
[ 3552.361336]  ? perf_trace_lock+0xac/0x490
[ 3552.361796]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 3552.362366]  ? __lock_acquire+0xbb1/0x5b00
[ 3552.362837]  ? __lockdep_reset_lock+0x180/0x180
[ 3552.363362]  ? invalidate_inode_pages2_range+0xa19/0xc50
[ 3552.363953]  ? find_held_lock+0x2c/0x110
[ 3552.364404]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 3552.365093]  ? current_time+0x72/0x2c0
[ 3552.365527]  ? iov_iter_npages+0x1fd/0xa70
[ 3552.365996]  blkdev_direct_IO+0xb35/0x12a0
[ 3552.366477]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3552.367064]  ? ktime_get_coarse_real_ts64+0x15a/0x190
[ 3552.367632]  ? trace_hardirqs_on+0x5b/0x180
[ 3552.368126]  ? ktime_get_coarse_real_ts64+0x15a/0x190
[ 3552.368701]  ? ktime_get_coarse_real_ts64+0xfd/0x190
[ 3552.369188]  ? bd_prepare_to_claim+0x290/0x290
[ 3552.369622]  ? __mark_inode_dirty+0x12e/0xd40
[ 3552.370040]  ? generic_update_time+0x21c/0x370
[ 3552.370471]  ? filemap_check_errors+0xa5/0x150
[ 3552.370909]  generic_file_direct_write+0x20e/0x560
[ 3552.371388]  __generic_file_write_iter+0x235/0x5d0
[ 3552.371844]  blkdev_write_iter+0x298/0x550
[ 3552.372244]  ? bd_unlink_disk_holder+0x3f0/0x3f0
[ 3552.372690]  ? direct_splice_actor+0x10f/0x170
[ 3552.373104]  ? splice_direct_to_actor+0x387/0x980
[ 3552.373553]  ? do_splice_direct+0x1c4/0x290
[ 3552.373948]  ? do_sendfile+0x553/0x11e0
[ 3552.374320]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 3552.374766]  ? do_syscall_64+0x33/0x40
[ 3552.375139]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3552.375652]  do_iter_readv_writev+0x476/0x750
[ 3552.376072]  ? new_sync_write+0x660/0x660
[ 3552.376453]  ? avc_policy_seqno+0x9/0x70
[ 3552.376811]  ? selinux_file_permission+0x92/0x520
[ 3552.377257]  ? security_file_permission+0xb1/0xe0
[ 3552.377683]  do_iter_write+0x191/0x700
[ 3552.378017]  ? trace_hardirqs_on+0x5b/0x180
[ 3552.378391]  vfs_iter_write+0x70/0xa0
[ 3552.378723]  iter_file_splice_write+0x762/0xc30
[ 3552.379133]  ? generic_splice_sendpage+0x140/0x140
[ 3552.379569]  ? security_file_permission+0xb1/0xe0
[ 3552.379978]  ? generic_splice_sendpage+0x140/0x140
[ 3552.380392]  direct_splice_actor+0x10f/0x170
[ 3552.380771]  splice_direct_to_actor+0x387/0x980
[ 3552.381170]  ? pipe_to_sendpage+0x380/0x380
[ 3552.382683]  ? do_splice_to+0x160/0x160
[ 3552.383520]  ? security_file_permission+0xb1/0xe0
[ 3552.384536]  do_splice_direct+0x1c4/0x290
[ 3552.385327]  ? splice_direct_to_actor+0x980/0x980
[ 3552.385735]  ? avc_policy_seqno+0x9/0x70
[ 3552.386088]  ? security_file_permission+0xb1/0xe0
[ 3552.386504]  do_sendfile+0x553/0x11e0
[ 3552.386841]  ? do_pwritev+0x270/0x270
[ 3552.387168]  ? wait_for_completion_io+0x270/0x270
[ 3552.387580]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3552.387969]  ? vfs_write+0x354/0xb10
[ 3552.388292]  __x64_sys_sendfile64+0x1d1/0x210
[ 3552.388676]  ? __ia32_sys_sendfile+0x220/0x220
[ 3552.389068]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3552.389957]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3552.391056]  do_syscall_64+0x33/0x40
[ 3552.391831]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3552.392921] RIP: 0033:0x7f5117aedb19
[ 3552.393714] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3552.397623] RSP: 002b:00007f5115063188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3552.399212] RAX: ffffffffffffffda RBX: 00007f5117c00f60 RCX: 00007f5117aedb19
[ 3552.400720] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000000a
[ 3552.402220] RBP: 00007f51150631d0 R08: 0000000000000000 R09: 0000000000000000
[ 3552.403728] R10: 000000007ffffff9 R11: 0000000000000246 R12: 0000000000000002
[ 3552.405213] R13: 00007ffc6010669f R14: 00007f5115063300 R15: 0000000000022000
08:55:09 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='sessionid\x00')
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r3, 0x8901, &(0x7f0000001840)="fb")
ioctl$sock_bt_hci(r3, 0x400448cc, &(0x7f00000002c0)="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")
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x80004, &(0x7f0000000480)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@privport}, {@version_L}, {@access_client}, {@access_uid}], [{@smackfsroot={'smackfsroot', 0x3d, 'sessionid\x00'}}, {@seclabel}]}})
r4 = openat2(r1, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)={0x40000, 0xb2, 0x8}, 0x18)
bind$bt_hci(r4, &(0x7f0000000240)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)

08:55:09 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000000000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb07906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:55:09 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00') (fail_nth: 29)

08:55:09 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8901, &(0x7f0000001840)="fb")
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, &(0x7f0000000000)={0x0, 0x4}, 0x8)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r1, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
mq_timedsend(r1, &(0x7f00000001c0)="253d2efb3bfc5537e6f58a7157100b134528c901d0e411c2f20301e482ff5eb9c85460cbbc3dcd2b25a6d2e910706243e9bb8ffcd582d0720d6606342575de373e22a23fad7d8eb7d5ae9be1ac30555aa45455a02a36bcdbbee023132af598d82be720d327309b64295e7f92c3383f5edb14d2d28da3d5f4825dccce40f909b175a67637d524a28372d45e0d822af2472a0bc15ed790fbbca2fb55ad99abbfe6698526dc9097a1e2eececde4d24ff11413074ad1dfaef5c7214176b545f51e26afc7b6803eb986d50c3132c53969e6b12270a97675fcaa70937a2240109f94f9a611ad89b7b514f7baec4c000c5c0344b93a25c65e35980b4f5f6e2503edfc79fe31a0dda18d95e7c0a5ae5cab3c3a276819b78eea721749e001b65ad39f07da9d0a907463bfd734c25cbe3a3e6f7883d0f202096da16ee83e0237e92b8684360afcf9d8b607da268b95f2c5d869d84ee082dc335db2a7e53201089ec0a12208945900aee54e3dad4265354f43df81bc036fa52f9340e09398e7818f0f2f65c50c1fc99a0d5c4156dcc9a3535d7375f2fb73590e24fb0933785424242577c79eff12b4123fd1208cb15f6edb24bc98bb9ac1bd875af7b6652c7dd110669617946e00e965e099f0a42f22d2e0095432eb4f07020580d570565a5d01ef71fbb7e80ff60570f1a4990dc55ca7e74d27e16d2455c22b87c039920d9e69c2d5f5ba71ad68db27ff795424a1981e54448f44b96e4e932510918d254a938983e498294385f10178d3101d60feb2eb0d03a794a1ff70dca193261c145ab9110dd53ff08637d3d8878ef0f8414f5125b37da4cdb3efa3d71a699009aca21ad0470cf676fe8b0e7d1830b3ea8ddbbc725faecbb568315d5ad192f71130b14449b84ea1994a10633a616c606b053a6bd0920071724e809b1b9f1ddecf4fbce3fdc8c93babb4159eb3078bb2b2dfe21436d1557ad16cf355b3de48fcadde6dd47299d1bc95c3a3bb94e4b8f55ce0c3ab109548a5f4f2a940d37609b68d7201fbf013da1305a891c63ed72a2259e22bb86b84196343e2f4d054dc00ed613b091a0a41920d0d4bf24b3153c329a32860db833c11c70acd78f83abbd5f5407666174e634962b6f48024cfd2de96679a567d58c3edcb4a4cb42f6776757e80b0db21f2fbad97a03ab2acf99356a71ed701a6ba1e6ad884a9c05d9937bd26fc48a0be7728a1791dcce58f8078a8ff78c95151777b83471edf17429c688b47fdca8e911745feb6a65272c1d2be90692cd38c707f8827c725693c136da803da49a9077154fc1885a87d4b7a74d1a6f7055ae4afa8d632a18a8b36f2d111b93398e5e0eab3f772778266c5f303992d86a9ef43a224b5785279983348ea28249889f4c7443a1fc4ae6b001172dbe0d34a0d6a3ca44f4d864f05011bebd462d33356d13750dd90fbe00243f5a8e294ae2179129b78f62efe2ac9a80cb0d28c4a7a8ecfa632ebe9d2295b78ce615d1a54c599709838f857b87b4d06fb832a4fa74fedc2f7586ccabfa5b45943baa0591b0e8c460d830840228f05c59074d88153903a2b766b688f13254932129c8498b0114b9de0bf12bbb8e5338c1a79b4910a3524c25cdad45b14ad8ba4d019bb7078a8a8fb7d7a9e1bed9257a5c34f6366e5ad7e868d9e7e54c7184d5d3c149afb98fb1c98fb2d25d2a0e53897202294de62b0a3a775b4f6b5cca8a01699b30a01c4a4c173a2534962c328dfb4c41fc596903fb65b348d5a7357119d8afc6daa5689909dc45f97d63b9037fdeb9c2d12f8bea299c94d396d188931031a9fcff26015861238e66e21320acd4cf599a8872a905bffe6e70d11c7eb93ee6c63a1958a82a65a517bb6c7338fc71b05b9a1d866d1e2389b6c884cd26abd24dfcc395b54710131197a63dc862d0287a82a9797a1477c4a956118c49b4e30daf810c2c79baaf6b99a06f9a77a561df3c12a4c57598ef087b1b52f235b1e6fd9b4b1e94b922771cf7b40b59ec2265ff940d3388f30eef959831c70754cb38dcd0951bde2ba0e03857f2c47bce92d4cc20ebad54b57229443bd577356c64cbeb11d26a19b3cddda79f5f8ed307afceb88b858361b9549c16f5004b9994818697a527596de5600bc1343cbb315823a7d7ada9d6915ad31d339a535b493efc038b5486510ffb8f0c4fd7d78f50f9fba13bd390c71e0ac94ae6bf323996594aa8d3311e99c41b4b13a4a42890bc38a1a652c21b54ec9ba230b9a2196b6d58be2fac82d779482abb1de4c7440bbd6d22170be3fcba19c2e88c8d3696958f3d86730467c510d2c45c2c08fe50e5746c3c517d8e7a8e24e121539c660ccf1e37aa3b296c1238867ac1f28611feaad86dbd76b75d537dc38f3e21434c7d3ad7f5d67dbb93dfa7492ab3f7b3f660725b198dbb8525d7e2a3e364a482ffbea95d7d00e767ed4aa3f6efc686e31247c692f0eab7f4bcc97da32a572019dd6d0cd494527878f58d114a6933ef2bdedcaa3d586db6f0e3ea2d8fcc3037e42a0e14a08dd9a88dab7ee3765aea94e6b35d35b8634d5f9d0d66bfaef6168946b72326faadc485a2956ed1773a45155210d476cfb28bc8941f831ae33d1f367957fd0e37f1a9bb7ef288f5fa4534ac0cffab86df166c3dfe6655a898d414e4aa899aeadd45f04248b5e0ebe01b2b49b01b9d78b8afea5b325df25d838bca0c1a777f31f1f3256b4843c893d6dd0b86f8a411693257242bfb74f63fcee388e58c3cda8367ff198fb4b420e9230aaf4132eae2ab033ad60ef83e4d59115d9278a10a17eccc0ffc8b6b0621f45c6e82d04e236f4920f2eee0138a9200299fdecef1fe7539fc54d7e8533fcb5e26d5a17427cde8c6e8f70a521c863916145958d9776d95d3fef8814a87860fb85920ac789fd6fe89d3335295c96958d3a8e8843ec0bc3a82921d2f28717f6770637cc3ce289635f62e9a7c7d112828d08acbc66c0a526c7e0b5149137dcb78e1005338e06aa6132e565b99816918c92a40dd626846605ae4c5cb29f78274c7559427d054bc8208fbd4d8e73c15e98cfef6b95601f8e24533c1f348cd9c50f7c668ce9f7eb043083b6a93a9783d6398a53f890dc539121f7ec1f086d0bec2fe4e6a7a016dacc03897e09a162573b16e3abc1b973c77d97071e889adda66cd4f101d7d899b7701ff9c58f8617a19e59456d58dc21f464af28d80db3e184c35c3187aeb8254e0f0a94da7b9db8f45a6bd8eed64f6f4b09508b0bccf64b5e5ec2d7230c8510cdfe7dff0fd7cb406605f68a39bbdd53f684e804bf6d41aca83040d4fc37f7f67511872dd738cc523d53aed1aaaca9ced9b95930a8a8112f572ae497349ceaaf23ae6fc99c679083a0767e908bd409b1d0a78bac3bc3ff4272ce80c3f853b62492b93960358031ab6f4e924665bbab1170bdfa903a9a96e99c184baf4293bcea822dd5914f65dcbecdd1f7beaf3880518d6ad51402d145f186ab65992fa64251ac4e4a8ee852e2e7537047b97127f5eabe747ab15dde0ec6edb54ad5e45d755474815422911c2e4e038591ac2abe779a412f633f18f8e53b9bde2797b33e114cac357b424d4a4f7299d4275820c03c10e81bb74113cc1499043669fe0999ca639dfa3401bfb82ce6ce423354edfc340f216e7d49bf0fa082f1c9243c5022e9e2352c797a14ed5c43e55150426df923e6165c6527f225b652863a09903f04c3eb4bb745c8c0194d33f7bbbb45ddc9298225fd0cafb9257b38fb00710322969b92af408f29df70ec5cd8085bbb528096a32f556263820873b8c265c5997e31f78e9bd41d5d7ae16167fc1fa6545cfffa7d90a8f5b64663f6149b856008c3e3c787fbef9cba79bc695c83133e0aa606cdc6b8b1fc96eb9af15b0f9fe6a1fcee2c40b2df0438feec51d024858439407abe95e298d59142c6a807141201f83913b5629f72b219e8528f6811d4687a8f441b65ddcd2c676256b75a5fc8b80d00c0d717ddeca4354bb52e6bd41a1914bfc20d92e1340152895996d252a334352bc696ec7f406742d8452641204b0f92942c44dd46e4545188c8cfe0064183d8f1261e72f620f040a390ddabacf212f8678f730ff59b435094b764ab91b993de5262daf780a3fc1b878566e13ef28baabf00e9911698454f97211c958c19dc57f249760bb5b7823a9b4f5ab00c7037704527ffd147f405c6058b10b991e0b7daf046ae1d2b0072921dd6e6978a1915ecdccc95982e879bd77d79fedc2a04d6365d5d2a5f80f21232171d4660a9a1e54b5da7009dfead703ed294d5eee87034c7cdfc6540c3b82924f61e8576d90cd0b131b96442cc7486b5eb2e441614776d9821d296c7b3275c15b9453d0acba7822a34f5aa968b589d0113597b1b211feffe72351781143657936fb8a89958e34f5ef3a360d71be37f7f3abe80c11f47e3c3d1a578f012c127a29cd73b68b52e99a3992d37078dad62040cb729e2e115f01c9231f3110a2a9c0209c19d32edc50e81db8672fc65fdedbc2b270757ab632fdbcca8e21fbe8f13593df36402e7dd5c4a5016308c671adf755f52a1e1ea1501767409134a898cbdc5df52be07744c2694a41ac9d41b37af2bb7980fe297fb1d3883775e44d8beb07a486ad5d6e485c029b6f4015ab5e255943a8ad508c66f3b647c55359b721b0aea2034fcd20d8ec490c6c77af5e8b86e6f88ed3320fc3a149394f8406031692e0071548ac8295381149eee984f79b0be47b0aba04caab1497e1961365d7690909cee65299fa1a658307830cafa1ae9c7995a18bfbcab5adc8971a805ff49cefd68d2ca27929688c27207ec0a56be3f2989f853329a306e3b9963704415f431e3aeb93b23fefcfb2ab0df9fc4d4460c7c265b9f94efd521fa39477172f23ccd40c602516828a3bbf6c3081186290412e19b220cd46b436ab64d706f8826ad585a82063dfd4dd3fd0e6805e81909e6ccdd517c43fd50c1072b78f67e114978175336b11d7a4dd522a6dc386d0975dd1d0d479b65ff62f0c1ddb3722cffb612371cf1e3953ae278fddf808b7c267d9077e10f7531ed8db3c469b5d775e4a6f55b4b8b466f84bd3a1127f05f29906fe7cc41ac7a7031b5cd0089df71c84d18418be2d564f60c49ee90fca6261aff340be6ce6331c353120fd56d262ddd718eb2430ebeb8e08f99c87b0b0d42d6ebd273d083e89717e13c090420e3459eb3be7d1b55e3ce355efd42b398708f0e07d06d9133f7073456451eecf99ce5f620d80a9da0ecde0438ecd32580eedca7488ed5bc4d7b848313886f867ec769810299eb2bb57d725d748999dd0d4f7aa77716d4105c673a2f1fde63c41aa09af8f9233383cee7121976eb16cf8806fe697a774765d47e5eb87525b104fe73851b8dc705f0774a3b0067e73f4c0b2dcaa3b967d1f2ad7b43857725f87a74548a9fc7b0094d3dc061343862dad9590dd0a04a00dda486032356521cb85749aa68be6e682d97478a164f47153a8d2940d3732302fb97201c5f3affd2b829f479fb5bb5715015d0ef972d9661a1d46634eda7d35a4721b396aceb018bd3dd0f9f0583361d3ca2d0f53d22df0a8f8b18bed2dded2d6e3b62068e6e8208ae8b31b2d2c66c7d61fe2e215c31d4f8eb761d72cdb0f03ac2d237fb059ec0e446afaef197e2a7925cd2251f45ac15aa1032f986b474d7c0d814b5aed1a5f8a5f7d57771c0bfbc6b48b8be16a25d2e1cda8d75f93f5ecd4030b0aa2a87a6094c0d1009d077715bb744882bd6d0c6e018e0a7c807840b4591dae68b99560f6caa51f699", 0x1000, 0x6, &(0x7f00000011c0))
ioctl$AUTOFS_IOC_EXPIRE(r0, 0x810c9365, &(0x7f0000000080)={{0x1, 0x3f}, 0x100, './file0\x00'})
syz_80211_inject_frame(&(0x7f0000000040)=@device_a={0x3}, &(0x7f0000000140)=ANY=[], 0x34)
syz_io_uring_setup(0x21c8, &(0x7f0000001540)={0x0, 0xd701, 0x2, 0x1, 0x19c, 0x0, r1}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000015c0)=<r2=>0x0, &(0x7f0000001600))
r3 = syz_io_uring_setup(0x6c75, &(0x7f00000002c0), &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0)
syz_io_uring_submit(r6, r5, 0x0, 0x8001)
r7 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r8 = inotify_init1(0x1000)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000500)=@IORING_OP_FILES_UPDATE={0x14, 0x5, 0x0, 0x0, 0x3f, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r7, r8], 0x4, 0x0, 0x0, {0x0, r9}}, 0x3)
syz_io_uring_submit(r2, r5, &(0x7f0000001640)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r9}}, 0x8b2)

08:55:09 executing program 7:
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000000)=<r0=>0x0)
r1 = syz_open_procfs(r0, &(0x7f0000000040)='net/rt6_stats\x00')
pread64(r1, 0x0, 0x7ffffffff000, 0x200000000000)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r2, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
ioctl$PTP_PIN_GETFUNC2(r2, 0xc0603d0f, &(0x7f0000000080)={'\x00', 0x487, 0x0, 0x8b90})

08:55:09 executing program 6:
r0 = getpid()
r1 = syz_open_procfs(r0, &(0x7f00000005c0)='pagemap\x00')
pread64(r1, 0x0, 0x7ffffffff000, 0x200000000000000)

08:55:09 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 32)

08:55:09 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x18000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESOCT=r0], 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001f80)={0x53, 0xfffffffffffffffe, 0x33, 0x4e, @scatter={0xa, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/156, 0x9c}, {&(0x7f00000000c0)=""/59, 0x3b}, {&(0x7f0000000140)}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000280)=""/120, 0x78}, {&(0x7f0000000a00)=""/132, 0x84}, {&(0x7f0000000ac0)=""/222, 0xde}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/243, 0xf3}, {&(0x7f0000001cc0)=""/93, 0x5d}]}, &(0x7f00000001c0)="bcd4a71f23ba8a2bd1b677c4d974f9237e45c28a9b4b97ca535184d641e4920d20644a25a66abe70b8627a90ea188540821fc5", &(0x7f0000001ec0)=""/191, 0x9, 0x5, 0x1, &(0x7f0000001d40)})
sendfile(r1, r2, 0x0, 0x20d315)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0)
sendfile(r1, r3, &(0x7f00000000c0)=0x4, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
stat(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340))
r6 = dup2(r5, r4)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x3, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000180)=ANY=[@ANYRESOCT])
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0xa28002, 0x74)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0)
sendfile(r7, r6, 0x0, 0x7ffffff9) (fail_nth: 25)

[ 3565.980896] FAULT_INJECTION: forcing a failure.
[ 3565.980896] name failslab, interval 1, probability 0, space 0, times 0
[ 3565.983167] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3565.993951] CPU: 1 PID: 22977 Comm: syz-executor.2 Not tainted 5.10.226 #1
[ 3565.993960] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3565.993964] Call Trace:
[ 3565.993984]  dump_stack+0x107/0x167
[ 3565.993998]  should_fail.cold+0x5/0xa
[ 3565.994022]  ? proc_thread_self_get_link+0x1a8/0x210
[ 3565.997304]  should_failslab+0x5/0x20
[ 3565.997651]  kmem_cache_alloc_trace+0x55/0x320
[ 3565.998047]  proc_thread_self_get_link+0x1a8/0x210
[ 3565.998469]  ? proc_setup_self+0x390/0x390
[ 3565.998830]  step_into+0x1595/0x1ce0
[ 3565.999151]  ? lookup_fast+0x6e0/0x6e0
[ 3565.999483]  ? try_to_unlazy_next+0x4f0/0x4f0
[ 3565.999878]  walk_component+0x171/0x6a0
[ 3566.000218]  ? trace_hardirqs_on+0x5b/0x180
[ 3566.000594]  ? handle_dots.part.0+0x15c0/0x15c0
[ 3566.000996]  ? security_inode_permission+0xcb/0x100
[ 3566.001433]  link_path_walk.part.0+0x699/0xbf0
[ 3566.001835]  ? walk_component+0x6a0/0x6a0
[ 3566.002200]  ? percpu_counter_add_batch+0x8b/0x140
[ 3566.002637]  path_openat+0x25d/0x2770
[ 3566.002977]  ? path_lookupat+0x860/0x860
[ 3566.003325]  ? perf_trace_lock+0xac/0x490
[ 3566.003676]  ? lock_acquire+0x197/0x470
[ 3566.004014]  ? find_held_lock+0x2c/0x110
[ 3566.004368]  ? __lockdep_reset_lock+0x180/0x180
[ 3566.004781]  do_filp_open+0x190/0x3e0
[ 3566.005112]  ? may_open_dev+0xf0/0xf0
[ 3566.005457]  ? rwlock_bug.part.0+0x90/0x90
[ 3566.005826]  ? _raw_spin_unlock+0x1a/0x30
[ 3566.006177]  ? alloc_fd+0x2e7/0x670
[ 3566.006505]  do_sys_openat2+0x171/0x4d0
[ 3566.006844]  ? security_file_free+0xaa/0xd0
[ 3566.007209]  ? build_open_flags+0x6f0/0x6f0
[ 3566.007581]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3566.008021]  ? call_rcu+0x435/0x9c0
[ 3566.008333]  __x64_sys_openat+0x13f/0x1f0
[ 3566.008685]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3566.009048]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3566.009506]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3566.009953]  do_syscall_64+0x33/0x40
[ 3566.010271]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3566.010707] RIP: 0033:0x7f98c45cca04
[ 3566.011025] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3566.012568] RSP: 002b:00007f98c1b8f060 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 3566.013217] RAX: ffffffffffffffda RBX: 00007f98c472cf60 RCX: 00007f98c45cca04
[ 3566.013835] RDX: 0000000000000000 RSI: 00007f98c1b8f0f0 RDI: 00000000ffffff9c
[ 3566.014436] RBP: 00007f98c1b8f0f0 R08: 0000000000000000 R09: 00007f98c1b8ef70
[ 3566.015038] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 3566.015246] FAULT_INJECTION: forcing a failure.
[ 3566.015246] name failslab, interval 1, probability 0, space 0, times 0
[ 3566.015636] R13: 00007fff6ecaf52f R14: 00007f98c1b8f300 R15: 0000000000022000
[ 3566.017323] CPU: 0 PID: 22976 Comm: syz-executor.4 Not tainted 5.10.226 #1
[ 3566.017939] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3566.018634] Call Trace:
[ 3566.018867]  dump_stack+0x107/0x167
[ 3566.019179]  should_fail.cold+0x5/0xa
[ 3566.019509]  ? create_object.isra.0+0x3a/0xa20
[ 3566.019902]  should_failslab+0x5/0x20
[ 3566.020227]  kmem_cache_alloc+0x5b/0x310
[ 3566.020575]  ? __lockdep_reset_lock+0x180/0x180
[ 3566.020972]  create_object.isra.0+0x3a/0xa20
[ 3566.021345]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3566.021809]  kmem_cache_alloc+0x159/0x310
[ 3566.022171]  __kernfs_new_node+0xd4/0x860
[ 3566.022526]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 3566.022926]  ? kernfs_add_one+0x36e/0x4d0
[ 3566.023283]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3566.023693]  ? wait_for_completion_io+0x270/0x270
[ 3566.024102]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 3566.024550]  kernfs_new_node+0x18d/0x250
[ 3566.024898]  __kernfs_create_file+0x51/0x350
[ 3566.025272]  sysfs_add_file_mode_ns+0x221/0x560
[ 3566.025713]  internal_create_group+0x324/0xb30
[ 3566.026107]  ? sysfs_remove_group+0x170/0x170
[ 3566.026491]  ? lockdep_init_map_type+0x2c7/0x780
[ 3566.026897]  ? blk_queue_flag_set+0x22/0x30
[ 3566.027261]  ? __loop_update_dio+0x2d2/0x690
[ 3566.027637]  loop_configure+0x958/0x1490
[ 3566.027989]  lo_ioctl+0xa72/0x1760
[ 3566.028295]  ? avc_has_extended_perms+0x7f1/0xf40
[ 3566.028704]  ? loop_set_status_old+0x250/0x250
[ 3566.029099]  ? avc_ss_reset+0x180/0x180
[ 3566.029462]  ? find_held_lock+0x2c/0x110
[ 3566.029834]  ? __lock_acquire+0xbb1/0x5b00
[ 3566.030228]  ? selinux_bprm_creds_for_exec+0xb60/0xb60
[ 3566.030675]  ? generic_block_fiemap+0x60/0x60
[ 3566.031054]  ? lock_downgrade+0x6d0/0x6d0
[ 3566.031408]  ? build_open_flags+0x6f0/0x6f0
[ 3566.031772]  ? find_held_lock+0x2c/0x110
[ 3566.032120]  ? loop_set_status_old+0x250/0x250
[ 3566.032507]  blkdev_ioctl+0x291/0x710
[ 3566.032832]  ? blkdev_common_ioctl+0x1930/0x1930
[ 3566.033242]  ? selinux_file_ioctl+0xb6/0x270
[ 3566.033658]  block_ioctl+0xf9/0x140
[ 3566.033968]  ? blkdev_read_iter+0x1c0/0x1c0
[ 3566.034341]  __x64_sys_ioctl+0x19a/0x210
[ 3566.034688]  do_syscall_64+0x33/0x40
[ 3566.035004]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3566.035436] RIP: 0033:0x7f71ab2628d7
[ 3566.035753] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3566.037285] RSP: 002b:00007f71a87d7f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 3566.037960] RAX: ffffffffffffffda RBX: 00007f71ab2ac970 RCX: 00007f71ab2628d7
[ 3566.038700] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[ 3566.040038] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[ 3566.040940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[ 3566.041572] R13: 0000000000000004 R14: 0000000020000c00 R15: 0000000000000000
08:55:09 executing program 6:
r0 = syz_open_dev$loop(&(0x7f0000000000), 0x9, 0x40400)
readv(r0, &(0x7f0000000400)=[{&(0x7f0000000040)=""/250, 0xfa}, {&(0x7f0000000140)=""/44, 0x2c}, {&(0x7f0000000180)=""/134, 0x86}, {&(0x7f0000000240)=""/205, 0xcd}, {&(0x7f0000000600)=""/4096, 0x1000}, {&(0x7f0000000340)=""/192, 0xc0}], 0x6)
r1 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r1, 0x0, 0x0, 0x1fffffffffffffa)

08:55:09 executing program 7:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r1, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000080)={<r2=>0x0}, &(0x7f00000003c0)=0xc)
mmap$perf(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1000000, 0x80010, 0xffffffffffffffff, 0x10001)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r2, 0x3, r0, 0xa)
r3 = syz_open_procfs(r2, &(0x7f0000000000)='net/netlink\x00')
pread64(r3, 0x0, 0x7ffffffff000, 0x200000000000)

08:55:09 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000000000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb48906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

[ 3566.100747] FAULT_INJECTION: forcing a failure.
[ 3566.100747] name failslab, interval 1, probability 0, space 0, times 0
[ 3566.101881] CPU: 0 PID: 22980 Comm: syz-executor.0 Not tainted 5.10.226 #1
[ 3566.102465] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3566.103157] Call Trace:
[ 3566.103390]  dump_stack+0x107/0x167
[ 3566.103703]  should_fail.cold+0x5/0xa
[ 3566.104031]  ? mempool_alloc+0x148/0x360
[ 3566.104376]  ? mempool_free_pages+0x20/0x20
[ 3566.104746]  should_failslab+0x5/0x20
[ 3566.105072]  kmem_cache_alloc+0x5b/0x310
[ 3566.105450]  ? mempool_free_pages+0x20/0x20
[ 3566.105830]  mempool_alloc+0x148/0x360
[ 3566.106165]  ? mempool_resize+0x7d0/0x7d0
[ 3566.106516]  ? trace_hardirqs_on+0x5b/0x180
[ 3566.106884]  ? ktime_get_coarse_real_ts64+0x15a/0x190
[ 3566.107318]  ? ktime_get_coarse_real_ts64+0xfd/0x190
[ 3566.107751]  ? bd_prepare_to_claim+0x290/0x290
[ 3566.108143]  bio_alloc_bioset+0x36e/0x600
[ 3566.108495]  ? generic_update_time+0x21c/0x370
[ 3566.108881]  ? bvec_alloc+0x2f0/0x2f0
[ 3566.109201]  ? filemap_check_errors+0xa5/0x150
[ 3566.109622]  ? errseq_check+0x4b/0x90
[ 3566.109946]  ? file_check_and_advance_wb_err+0xbb/0x280
[ 3566.110410]  blkdev_issue_flush+0x20/0x1a0
[ 3566.110770]  blkdev_fsync+0x8e/0xd0
[ 3566.111077]  ? thaw_bdev+0x1a0/0x1a0
[ 3566.111394]  vfs_fsync_range+0x13d/0x230
[ 3566.111742]  blkdev_write_iter+0x3e4/0x550
[ 3566.112104]  ? bd_unlink_disk_holder+0x3f0/0x3f0
[ 3566.112508]  ? direct_splice_actor+0x10f/0x170
[ 3566.112892]  ? splice_direct_to_actor+0x387/0x980
[ 3566.113295]  ? do_splice_direct+0x1c4/0x290
[ 3566.113697]  ? do_sendfile+0x553/0x11e0
[ 3566.114035]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 3566.114426]  ? do_syscall_64+0x33/0x40
[ 3566.114756]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3566.115210]  do_iter_readv_writev+0x476/0x750
[ 3566.115594]  ? new_sync_write+0x660/0x660
[ 3566.115943]  ? avc_policy_seqno+0x9/0x70
[ 3566.116289]  ? selinux_file_permission+0x92/0x520
[ 3566.116700]  ? security_file_permission+0xb1/0xe0
[ 3566.117112]  do_iter_write+0x191/0x700
[ 3566.117475]  ? trace_hardirqs_on+0x5b/0x180
[ 3566.117853]  vfs_iter_write+0x70/0xa0
[ 3566.118179]  iter_file_splice_write+0x762/0xc30
[ 3566.118581]  ? generic_splice_sendpage+0x140/0x140
[ 3566.119007]  ? security_file_permission+0xb1/0xe0
[ 3566.119416]  ? generic_splice_sendpage+0x140/0x140
[ 3566.119830]  direct_splice_actor+0x10f/0x170
[ 3566.120203]  splice_direct_to_actor+0x387/0x980
[ 3566.120600]  ? pipe_to_sendpage+0x380/0x380
[ 3566.120965]  ? do_splice_to+0x160/0x160
[ 3566.121304]  ? security_file_permission+0xb1/0xe0
[ 3566.121753]  do_splice_direct+0x1c4/0x290
[ 3566.122106]  ? splice_direct_to_actor+0x980/0x980
[ 3566.122513]  ? avc_policy_seqno+0x9/0x70
[ 3566.122864]  ? security_file_permission+0xb1/0xe0
[ 3566.123278]  do_sendfile+0x553/0x11e0
[ 3566.123612]  ? do_pwritev+0x270/0x270
[ 3566.123937]  ? wait_for_completion_io+0x270/0x270
[ 3566.124352]  ? rcu_read_lock_any_held+0x75/0xa0
[ 3566.124748]  ? vfs_write+0x354/0xb10
[ 3566.125070]  __x64_sys_sendfile64+0x1d1/0x210
[ 3566.125489]  ? __ia32_sys_sendfile+0x220/0x220
[ 3566.125883]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3566.126323]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3566.126760]  do_syscall_64+0x33/0x40
[ 3566.127079]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3566.127510] RIP: 0033:0x7f5117aedb19
[ 3566.127826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3566.129361] RSP: 002b:00007f5115063188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3566.130039] RAX: ffffffffffffffda RBX: 00007f5117c00f60 RCX: 00007f5117aedb19
[ 3566.130633] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000000a
[ 3566.131228] RBP: 00007f51150631d0 R08: 0000000000000000 R09: 0000000000000000
[ 3566.131824] R10: 000000007ffffff9 R11: 0000000000000246 R12: 0000000000000002
[ 3566.132418] R13: 00007ffc6010669f R14: 00007f5115063300 R15: 0000000000022000
08:55:09 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='cpuset\x00')
r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r2, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000080)={<r3=>0x0}, &(0x7f00000003c0)=0xc)
clock_gettime(0x0, &(0x7f0000001d00)={<r4=>0x0, <r5=>0x0})
recvmmsg(r2, &(0x7f0000001c00)=[{{0x0, 0x0, &(0x7f00000015c0)=[{&(0x7f00000002c0)=""/177, 0xb1}, {&(0x7f0000000400)=""/237, 0xed}, {&(0x7f0000001540)=""/97, 0x61}, {&(0x7f0000000380)=""/29, 0x1d}], 0x4, &(0x7f0000001600)=""/2, 0x2}, 0xc43}, {{0x0, 0x0, &(0x7f0000001700)=[{&(0x7f0000001640)=""/54, 0x36}, {&(0x7f0000001680)=""/100, 0x64}], 0x2, &(0x7f0000001740)=""/30, 0x1e}, 0xa0}, {{0x0, 0x0, &(0x7f0000001940)=[{&(0x7f0000001780)=""/59, 0x3b}, {&(0x7f00000017c0)=""/134, 0x86}, {&(0x7f0000001880)=""/141, 0x8d}, {&(0x7f0000001e00)=""/4096, 0x1000}], 0x4, &(0x7f0000002e00)=""/4096, 0x1000}, 0x1000}, {{&(0x7f0000001980)=@vsock={0x28, 0x0, 0x0, @local}, 0x80, &(0x7f0000001b40)=[{&(0x7f0000001a00)=""/197, 0xc5}, {&(0x7f0000001b00)=""/14, 0xe}], 0x2, &(0x7f0000001b80)=""/76, 0x4c}, 0x7}], 0x4, 0x23, &(0x7f0000001d40)={r4, r5+60000000})
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r3, 0x3, r1, 0xa)
perf_event_open(&(0x7f0000000140)={0x0, 0x80, 0x0, 0x7f, 0xc5, 0x7, 0x0, 0x3, 0x185, 0x8, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x38, 0x4, @perf_bp={&(0x7f0000000100), 0x6}, 0x1b6, 0xffffffffffff0001, 0x7, 0x5, 0x5, 0x4fb, 0x427, 0x0, 0xcb6, 0x0, 0x400}, r3, 0x4, r0, 0x1)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r6, 0x8901, &(0x7f0000000040)="fb2e29a95636db96529b6a0e417d65a36ee0d2543a218715b6b2ca3f4e73b7298015cd875363588c182bedf4514329accb3f75721cd46390669182b8d5de2b1b816f479c3b3c43294d97b19e099e8c14290b8260533646846e8350e1381cc07d5a2acb0cafa8c505355ebe8e3f900dd0de788033a09b2371269acaba413bd3942e48622319fd6fd4e13e")
poll(&(0x7f0000000000)=[{r6, 0x1729}, {r0, 0x2200}], 0x2, 0xcaf)
pread64(r0, 0x0, 0x7ffffffff000, 0x806c54747f0000)
r7 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/mcfilter\x00')
preadv(r7, &(0x7f0000001500)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x2, 0x0, 0x0)
ioctl$sock_inet_tcp_SIOCOUTQNSD(r7, 0x894b, &(0x7f0000000200))

08:55:09 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r0, 0x0, 0x0, 0x2)

08:55:09 executing program 7:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00')
pread64(r1, &(0x7f0000000240)=""/83, 0x53, 0x200000048)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000080)={<r2=>0x0}, &(0x7f00000003c0)=0xc)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x6, 0x9, 0x3, 0x80, 0x0, 0x9, 0x8000c, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x4, 0x4}, 0x6080, 0x6, 0x9, 0x7, 0x4, 0x3, 0x0, 0x0, 0x3f81, 0x0, 0x9}, r2, 0x3, r0, 0xa)
r3 = syz_open_procfs(r2, &(0x7f0000000040)='net/ip6_tables_targets\x00')
pread64(r3, 0x0, 0x7ffffffff000, 0x200000000000)

[ 3566.221494] ------------[ cut here ]------------
[ 3566.222351] WARNING: CPU: 1 PID: 23001 at kernel/cgroup/cgroup.c:1395 cset_cgroup_from_root+0x1a8/0x2a0
[ 3566.223141] Modules linked in:
[ 3566.223426] CPU: 1 PID: 23001 Comm: syz-executor.3 Not tainted 5.10.226 #1
[ 3566.224009] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3566.224716] RIP: 0010:cset_cgroup_from_root+0x1a8/0x2a0
[ 3566.225169] Code: 50 08 00 be ff ff ff ff 48 c7 c7 08 3a 02 85 e8 6e 9e ad 02 31 ff 41 89 c4 89 c6 e8 d2 49 08 00 45 85 e4 75 07 e8 78 50 08 00 <0f> 0b e8 71 50 08 00 48 89 ea 83 e5 07 48 b8 00 00 00 00 00 fc ff
[ 3566.226720] RSP: 0018:ffff888053eb7b20 EFLAGS: 00010002
[ 3566.227171] RAX: 0000000000000930 RBX: ffff88800ee1b000 RCX: ffffc90007e1a000
[ 3566.227769] RDX: 0000000000040000 RSI: ffffffff81384ec8 RDI: 0000000000000005
[ 3566.228364] RBP: ffffffff85676efc R08: 0000000000000000 R09: 0000000000000003
[ 3566.228961] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000
[ 3566.229565] R13: ffff888017e58000 R14: ffff88805275dc00 R15: ffff88800c9839c0
[ 3566.230174] FS:  00007f1b9dbab700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[ 3566.230848] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 3566.231338] CR2: 0000001b2fe23000 CR3: 0000000041186000 CR4: 0000000000350ee0
[ 3566.231934] Call Trace:
[ 3566.232163]  ? __warn+0xe2/0x1f0
[ 3566.232452]  ? cset_cgroup_from_root+0x1a8/0x2a0
[ 3566.232854]  ? report_bug+0x1c1/0x210
[ 3566.233184]  ? handle_bug+0x41/0x90
[ 3566.233500]  ? exc_invalid_op+0x14/0x50
[ 3566.233851]  ? asm_exc_invalid_op+0x12/0x20
[ 3566.234225]  ? cset_cgroup_from_root+0x1a8/0x2a0
[ 3566.234624]  ? cset_cgroup_from_root+0x1a8/0x2a0
[ 3566.235029]  cgroup_path_ns_locked+0x6c/0x110
[ 3566.235418]  proc_cpuset_show+0x19a/0x510
[ 3566.235776]  proc_single_show+0x121/0x1f0
[ 3566.236134]  traverse.part.0+0xd7/0x620
[ 3566.236479]  seq_read_iter+0x934/0x12b0
[ 3566.236827]  seq_read+0x3dd/0x5b0
[ 3566.237123]  ? seq_read_iter+0x12b0/0x12b0
[ 3566.241520]  ? fsnotify_perm.part.0+0x22d/0x620
[ 3566.241924]  ? security_file_permission+0xb1/0xe0
[ 3566.242332]  ? seq_read_iter+0x12b0/0x12b0
[ 3566.242691]  vfs_read+0x228/0x620
[ 3566.243002]  __x64_sys_pread64+0x201/0x260
[ 3566.243360]  ? ksys_pread64+0x1b0/0x1b0
[ 3566.243701]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3566.244141]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3566.244581]  do_syscall_64+0x33/0x40
[ 3566.244896]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3566.245325] RIP: 0033:0x7f1ba0635b19
[ 3566.249676] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3566.251200] RSP: 002b:00007f1b9dbab188 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[ 3566.251838] RAX: ffffffffffffffda RBX: 00007f1ba0748f60 RCX: 00007f1ba0635b19
[ 3566.252439] RDX: 00007ffffffff000 RSI: 0000000000000000 RDI: 0000000000000003
[ 3566.253033] RBP: 00007f1ba068ff6d R08: 0000000000000000 R09: 0000000000000000
[ 3566.257656] R10: 00806c54747f0000 R11: 0000000000000246 R12: 0000000000000000
[ 3566.261440] R13: 00007ffdccd81fef R14: 00007f1b9dbab300 R15: 0000000000022000
[ 3566.262051] irq event stamp: 1266
[ 3566.262353] hardirqs last  enabled at (1265): [<ffffffff83e79118>] _raw_spin_unlock_irqrestore+0x38/0x40
[ 3566.263142] hardirqs last disabled at (1266): [<ffffffff83e78ece>] _raw_spin_lock_irq+0x3e/0x40
[ 3566.263888] softirqs last  enabled at (706): [<ffffffff8351c47d>] igmp_mcf_seq_start+0x53d/0x670
[ 3566.264639] softirqs last disabled at (704): [<ffffffff8351c25b>] igmp_mcf_seq_start+0x31b/0x670
[ 3566.265386] ---[ end trace 57d8451921b5cd33 ]---
08:55:09 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00') (fail_nth: 30)

08:55:09 executing program 7:
clone3(&(0x7f0000000180)={0x80011400, &(0x7f0000000000), &(0x7f0000000040)=<r0=>0x0, &(0x7f0000000080), {0x2e}, &(0x7f00000000c0)=""/42, 0x2a, &(0x7f0000000100)=""/59, &(0x7f0000000140)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0], 0xa}, 0x58)
r1 = syz_open_procfs(r0, &(0x7f0000000200)='setgroups\x00')
pread64(r1, 0x0, 0x7ffffffff000, 0x200000000000)

08:55:09 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000000c0)="13892a42a51deefe6c11ee55facc", 0xe, 0x0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4800000000000000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb49906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@shortname_lower}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x50100, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000180)=0x800)

08:55:09 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x0, 0x0, &(0x7f0000000c00), 0x8000, &(0x7f0000000c80)) (fail_nth: 33)

08:55:09 executing program 6:
recvmmsg$unix(0xffffffffffffffff, &(0x7f00000018c0)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)=""/117, 0x75}], 0x1}}, {{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f0000000380)=[{&(0x7f0000000140)=""/204, 0xcc}, {&(0x7f0000000240)=""/239, 0xef}, {&(0x7f0000000600)=""/4096, 0x1000}, {&(0x7f0000000340)=""/15, 0xf}], 0x4, &(0x7f00000003c0)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x10}}, @cred={{0x1c}}], 0x88}}, {{&(0x7f0000000480), 0x6e, &(0x7f0000000580)=[{&(0x7f0000000500)=""/86, 0x56}], 0x1, &(0x7f0000001600)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x90}}, {{0x0, 0x0, &(0x7f0000001780)=[{&(0x7f00000016c0)=""/186, 0xba}], 0x1, &(0x7f00000017c0)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r0=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xe8}}], 0x4, 0x140, &(0x7f00000019c0))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000001a40)=@IORING_OP_FILES_UPDATE={0x14, 0x4, 0x0, 0x0, 0x0, &(0x7f0000001a00)=[r0], 0x1}, 0xfffffffb)
r1 = syz_open_procfs(0x0, &(0x7f00000005c0)='pagemap\x00')
pread64(r1, 0x0, 0x7ffffffff000, 0x200000000000000)

[ 3566.348379] FAULT_INJECTION: forcing a failure.
[ 3566.348379] name failslab, interval 1, probability 0, space 0, times 0
[ 3566.349557] CPU: 0 PID: 23015 Comm: syz-executor.2 Tainted: G        W         5.10.226 #1
[ 3566.350259] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3566.350960] Call Trace:
[ 3566.351201]  dump_stack+0x107/0x167
[ 3566.351523]  should_fail.cold+0x5/0xa
[ 3566.351856]  ? find_held_lock+0x2c/0x110
[ 3566.352211]  ? create_object.isra.0+0x3a/0xa20
[ 3566.352611]  should_failslab+0x5/0x20
[ 3566.352944]  kmem_cache_alloc+0x5b/0x310
[ 3566.353296]  ? __task_pid_nr_ns+0x16a/0x4f0
[ 3566.353704]  create_object.isra.0+0x3a/0xa20
[ 3566.354084]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3566.354529]  kmem_cache_alloc_trace+0x151/0x320
[ 3566.354943]  proc_thread_self_get_link+0x1a8/0x210
[ 3566.355383]  ? proc_setup_self+0x390/0x390
[ 3566.355749]  step_into+0x1595/0x1ce0
[ 3566.356083]  ? lookup_fast+0x6e0/0x6e0
[ 3566.356432]  ? try_to_unlazy_next+0x4f0/0x4f0
[ 3566.356836]  walk_component+0x171/0x6a0
[ 3566.357194]  ? trace_hardirqs_on+0x5b/0x180
[ 3566.357603]  ? handle_dots.part.0+0x15c0/0x15c0
[ 3566.358024]  ? security_inode_permission+0xcb/0x100
[ 3566.358473]  link_path_walk.part.0+0x699/0xbf0
[ 3566.358499] ------------[ cut here ]------------
[ 3566.358880]  ? walk_component+0x6a0/0x6a0
[ 3566.359326] WARNING: CPU: 1 PID: 23016 at kernel/cgroup/cgroup.c:1395 cset_cgroup_from_root+0x1a8/0x2a0
[ 3566.359663]  ? percpu_counter_add_batch+0x8b/0x140
[ 3566.360436] Modules linked in:
[ 3566.360876]  path_openat+0x25d/0x2770
[ 3566.361133] CPU: 1 PID: 23016 Comm: syz-executor.3 Tainted: G        W         5.10.226 #1
[ 3566.361480]  ? perf_trace_run_bpf_submit+0xf5/0x190
[ 3566.362159] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3566.362177] RIP: 0010:cset_cgroup_from_root+0x1a8/0x2a0
[ 3566.362598]  ? path_lookupat+0x860/0x860
[ 3566.363287] Code: 50 08 00 be ff ff ff ff 48 c7 c7 08 3a 02 85 e8 6e 9e ad 02 31 ff 41 89 c4 89 c6 e8 d2 49 08 00 45 85 e4 75 07 e8 78 50 08 00 <0f> 0b e8 71 50 08 00 48 89 ea 83 e5 07 48 b8 00 00 00 00 00 fc ff
[ 3566.363728]  ? perf_trace_lock+0x2bd/0x490
[ 3566.364058] RSP: 0018:ffff88803aab7b20 EFLAGS: 00010016
[ 3566.365620]  ? lock_acquire+0x197/0x470
[ 3566.365969] RAX: 0000000000000175 RBX: ffff88800ee1b000 RCX: ffffc9000821c000
[ 3566.365982] RDX: 0000000000040000 RSI: ffffffff81384ec8 RDI: 0000000000000005
[ 3566.366430]  ? find_held_lock+0x2c/0x110
[ 3566.366753] RBP: ffffffff85676efc R08: 0000000000000000 R09: 0000000000000003
[ 3566.366765] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000
[ 3566.367372]  ? __lockdep_reset_lock+0x180/0x180
[ 3566.367952] R13: ffff888017e58000 R14: ffff88805275dc00 R15: ffff88800f8a0d00
[ 3566.367967] FS:  00007f1b9db8a700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[ 3566.368317]  do_filp_open+0x190/0x3e0
[ 3566.368899] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 3566.369514]  ? may_open_dev+0xf0/0xf0
[ 3566.369897] CR2: 0000001b2fe25000 CR3: 0000000041186000 CR4: 0000000000350ee0
[ 3566.369907] Call Trace:
[ 3566.370534]  ? rwlock_bug.part.0+0x90/0x90
[ 3566.371192]  ? __warn+0xe2/0x1f0
[ 3566.371519]  ? _raw_spin_unlock+0x1a/0x30
[ 3566.371993]  ? cset_cgroup_from_root+0x1a8/0x2a0
[ 3566.372314]  ? alloc_fd+0x2e7/0x670
[ 3566.372907]  ? report_bug+0x1c1/0x210
[ 3566.373146]  do_sys_openat2+0x171/0x4d0
[ 3566.377512]  ? handle_bug+0x41/0x90
[ 3566.377798]  ? security_file_free+0xaa/0xd0
[ 3566.378136]  ? exc_invalid_op+0x14/0x50
[ 3566.378530]  ? build_open_flags+0x6f0/0x6f0
[ 3566.378829]  ? asm_exc_invalid_op+0x12/0x20
[ 3566.379155]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3566.379475]  ? cset_cgroup_from_root+0x1a8/0x2a0
[ 3566.379772]  ? call_rcu+0x435/0x9c0
[ 3566.380128]  ? cset_cgroup_from_root+0x1a8/0x2a0
[ 3566.380464]  __x64_sys_openat+0x13f/0x1f0
[ 3566.380815]  cgroup_path_ns_locked+0x6c/0x110
[ 3566.381170]  ? __ia32_sys_open+0x1c0/0x1c0
[ 3566.381629]  proc_cpuset_show+0x19a/0x510
[ 3566.382029]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3566.382324]  proc_single_show+0x121/0x1f0
[ 3566.382715]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3566.383055]  traverse.part.0+0xd7/0x620
[ 3566.383430]  do_syscall_64+0x33/0x40
[ 3566.383778]  seq_read_iter+0x934/0x12b0
[ 3566.384117]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3566.384555]  ? find_held_lock+0x2c/0x110
[ 3566.384890] RIP: 0033:0x7f98c45cca04
[ 3566.385319]  seq_read+0x3dd/0x5b0
[ 3566.385663] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 3566.385970]  ? seq_read_iter+0x12b0/0x12b0
[ 3566.386296] RSP: 002b:00007f98c1b8f060 EFLAGS: 00000293
[ 3566.386734]  ? fsnotify_perm.part.0+0x22d/0x620
[ 3566.387057]  ORIG_RAX: 0000000000000101
[ 3566.387371]  ? security_file_permission+0xb1/0xe0
[ 3566.387656] RAX: ffffffffffffffda RBX: 00007f98c472cf60 RCX: 00007f98c45cca04
[ 3566.389174]  ? seq_read_iter+0x12b0/0x12b0
[ 3566.389542] RDX: 0000000000000000 RSI: 00007f98c1b8f0f0 RDI: 00000000ffffff9c
[ 3566.389989]  vfs_read+0x228/0x620
[ 3566.390371] RBP: 00007f98c1b8f0f0 R08: 0000000000000000 R09: 00007f98c1b8ef70
[ 3566.390705]  __x64_sys_pread64+0x201/0x260
[ 3566.391101] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 3566.391695]  ? ksys_pread64+0x1b0/0x1b0
[ 3566.392046] R13: 00007fff6ecaf52f R14: 00007f98c1b8f300 R15: 0000000000022000
[ 3566.392641]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 3566.395823]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 3566.396260]  do_syscall_64+0x33/0x40
[ 3566.396579]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3566.397009] RIP: 0033:0x7f1ba0635b19
[ 3566.397326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3566.398870] RSP: 002b:00007f1b9db8a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[ 3566.399509] RAX: ffffffffffffffda RBX: 00007f1ba0749020 RCX: 00007f1ba0635b19
[ 3566.400105] RDX: 00007ffffffff000 RSI: 0000000000000000 RDI: 0000000000000003
[ 3566.400701] RBP: 00007f1ba068ff6d R08: 0000000000000000 R09: 0000000000000000
[ 3566.401298] R10: 00806c54747f0000 R11: 0000000000000246 R12: 0000000000000000
[ 3566.405914] R13: 00007ffdccd81fef R14: 00007f1b9db8a300 R15: 0000000000022000
[ 3566.406519] irq event stamp: 598
[ 3566.406807] hardirqs last  enabled at (597): [<ffffffff83e79118>] _raw_spin_unlock_irqrestore+0x38/0x40
[ 3566.407582] hardirqs last disabled at (598): [<ffffffff83e78ece>] _raw_spin_lock_irq+0x3e/0x40
[ 3566.408296] softirqs last  enabled at (122): [<ffffffff84001092>] asm_call_irq_on_stack+0x12/0x20
[ 3566.409031] softirqs last disabled at (113): [<ffffffff84001092>] asm_call_irq_on_stack+0x12/0x20
[ 3566.409786] ---[ end trace 57d8451921b5cd34 ]---
[ 3566.418061] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3566.467682] FAULT_INJECTION: forcing a failure.
[ 3566.467682] name failslab, interval 1, probability 0, space 0, times 0
[ 3566.468717] CPU: 0 PID: 23027 Comm: syz-executor.4 Tainted: G        W         5.10.226 #1
[ 3566.469421] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3566.470121] Call Trace:
[ 3566.470355]  dump_stack+0x107/0x167
[ 3566.470670]  should_fail.cold+0x5/0xa
[ 3566.471000]  ? __kernfs_new_node+0xd4/0x860
[ 3566.471372]  should_failslab+0x5/0x20
[ 3566.471706]  kmem_cache_alloc+0x5b/0x310
[ 3566.472057]  __kernfs_new_node+0xd4/0x860
[ 3566.472417]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 3566.472821]  ? kernfs_add_one+0x36e/0x4d0
[ 3566.473179]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3566.473616]  ? wait_for_completion_io+0x270/0x270
[ 3566.474028]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 3566.474478]  kernfs_new_node+0x18d/0x250
[ 3566.474832]  __kernfs_create_file+0x51/0x350
[ 3566.475208]  sysfs_add_file_mode_ns+0x221/0x560
[ 3566.475609]  internal_create_group+0x324/0xb30
[ 3566.476002]  ? sysfs_remove_group+0x170/0x170
[ 3566.476387]  ? lockdep_init_map_type+0x2c7/0x780
[ 3566.476794]  ? blk_queue_flag_set+0x22/0x30
[ 3566.477161]  ? __loop_update_dio+0x2d2/0x690
[ 3566.477562]  loop_configure+0x958/0x1490
[ 3566.477916]  lo_ioctl+0xa72/0x1760
[ 3566.478223]  ? avc_has_extended_perms+0x7f1/0xf40
[ 3566.478635]  ? loop_set_status_old+0x250/0x250
[ 3566.479023]  ? avc_ss_reset+0x180/0x180
[ 3566.479362]  ? find_held_lock+0x2c/0x110
[ 3566.479715]  ? __lock_acquire+0xbb1/0x5b00
[ 3566.480102]  ? selinux_bprm_creds_for_exec+0xb60/0xb60
[ 3566.480548]  ? generic_block_fiemap+0x60/0x60
[ 3566.480927]  ? lock_downgrade+0x6d0/0x6d0
[ 3566.481280]  ? build_open_flags+0x6f0/0x6f0
[ 3566.481663]  ? find_held_lock+0x2c/0x110
[ 3566.482011]  ? loop_set_status_old+0x250/0x250
[ 3566.482397]  blkdev_ioctl+0x291/0x710
[ 3566.482722]  ? blkdev_common_ioctl+0x1930/0x1930
[ 3566.483125]  ? selinux_file_ioctl+0xb6/0x270
[ 3566.483501]  block_ioctl+0xf9/0x140
[ 3566.483811]  ? blkdev_read_iter+0x1c0/0x1c0
[ 3566.484178]  __x64_sys_ioctl+0x19a/0x210
[ 3566.484524]  do_syscall_64+0x33/0x40
[ 3566.484840]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 3566.485272] RIP: 0033:0x7f71ab2628d7
[ 3566.485614] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3566.487161] RSP: 002b:00007f71a87d7f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 3566.487803] RAX: ffffffffffffffda RBX: 00007f71ab2ac970 RCX: 00007f71ab2628d7
[ 3566.488400] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[ 3566.488999] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[ 3566.489621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[ 3566.490219] R13: 0000000000000004 R14: 0000000020000c00 R15: 0000000000000000

VM DIAGNOSIS:
08:55:10  Registers:
info registers vcpu 0
RAX=0000000000000000 RBX=5039a2e5e99f6d22 RCX=ffffffff8126dbee RDX=1ffff1100124e7b8
RSI=0000000000000008 RDI=ffffffff868686e0 RBP=ffff888009273e12 RSP=ffff88806ce09c70
R8 =0000000000000000 R9 =ffffffff868686e7 R10=fffffbfff0d0d0dc R11=0000000000000001
R12=ffff888009273480 R13=ffff888009273df0 R14=0000000000000001 R15=0000000000000000
RIP=ffffffff8126d530 RFL=00000016 [----AP-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f2c6b1a4900 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe7900000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f2c6a6200f0 CR3=000000000edf2000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ffffffffffffffffffffffffffffffff XMM01=30306234386136303638616663356134
XMM02=38303062343861363036386166633561 XMM03=2f6c616e72756f6a2f676f6c2f6e7572
XMM04=c78b1bea0c8a2df0000000000046f9e8 XMM05=d3fdd5f48436fbd700000000000aeab0
XMM06=4bfa49ddc7431ed400000000000ae968 XMM07=00000000000000000000000000000000
XMM08=44495f474f4c5359530069253d595449 XMM09=00000000000000000000000000000000
XMM10=20000000000000002000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000080010002 RBX=dffffc0000000000 RCX=ffffffff8131461e RDX=0000033e51c94a18
RSI=ffffffff8131464a RDI=0000000000000006 RBP=0000033e51c94a18 RSP=ffff88806cf09f20
R8 =0000000000000000 R9 =0000000000000000 R10=0000033e57063a51 R11=0000000000000001
R12=0000000000000046 R13=ffff88806cf2ea40 R14=0000033e57063a51 R15=0000000000000000
RIP=ffffffff81409f44 RFL=00000016 [----AP-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 ffffc90000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fac7e457718 CR3=000000004f202000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ffffffffffffff00ffffffffffffffff XMM01=ffffffffffffffffffffffffffffffff
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000
XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000