fffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) [ 1224.818110] __x64_sys_sendfile64+0x1d1/0x210 [ 1224.819064] ? __ia32_sys_sendfile+0x220/0x220 [ 1224.819855] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1224.820759] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1224.821647] do_syscall_64+0x33/0x40 [ 1224.822290] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1224.823183] RIP: 0033:0x7fdfc7a14b19 [ 1224.823844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1224.827067] RSP: 002b:00007fdfc4f8a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1224.828381] RAX: ffffffffffffffda RBX: 00007fdfc7b27f60 RCX: 00007fdfc7a14b19 [ 1224.829611] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1224.830849] RBP: 00007fdfc4f8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1224.832092] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1224.833312] R13: 00007ffc53f2cc7f R14: 00007fdfc4f8a300 R15: 0000000000022000 05:51:46 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r1, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:51:46 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, 0x0, 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:51:46 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 12) fallocate(r0, 0x0, 0x0, 0x1000002) 05:51:46 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 6) fallocate(r0, 0x0, 0x0, 0x1000002) 05:51:46 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r1, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1225.096915] FAULT_INJECTION: forcing a failure. [ 1225.096915] name failslab, interval 1, probability 0, space 0, times 0 [ 1225.099267] CPU: 0 PID: 7963 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 1225.100465] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1225.101902] Call Trace: [ 1225.102365] dump_stack+0x107/0x167 [ 1225.102969] should_fail.cold+0x5/0xa [ 1225.103651] ? create_object.isra.0+0x3a/0xa20 [ 1225.104436] should_failslab+0x5/0x20 [ 1225.105020] kmem_cache_alloc+0x5b/0x310 [ 1225.105653] create_object.isra.0+0x3a/0xa20 [ 1225.106387] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1225.107274] kmem_cache_alloc_trace+0x151/0x320 [ 1225.108083] __iomap_dio_rw+0x1ee/0x1110 [ 1225.108782] ? jbd2_journal_stop+0x188/0xdc0 [ 1225.109542] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1225.110332] ? ext4_orphan_add+0x253/0x9e0 [ 1225.111061] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1225.111905] ? ext4_empty_dir+0xae0/0xae0 [ 1225.112615] ? jbd2__journal_start+0xf3/0x7e0 [ 1225.113390] iomap_dio_rw+0x31/0x90 [ 1225.114021] ext4_file_write_iter+0xe0e/0x1530 [ 1225.114824] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1225.115605] ? kasan_save_stack+0x32/0x40 [ 1225.116315] ? kasan_save_stack+0x1b/0x40 [ 1225.117016] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1225.117882] ? iter_file_splice_write+0x165/0xc90 [ 1225.118718] ? direct_splice_actor+0x10f/0x170 [ 1225.119500] ? splice_direct_to_actor+0x387/0x980 [ 1225.120321] ? do_splice_direct+0x1c4/0x290 [ 1225.121077] ? do_sendfile+0x553/0x11e0 [ 1225.121748] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1225.122546] ? do_syscall_64+0x33/0x40 [ 1225.123220] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1225.124140] do_iter_readv_writev+0x476/0x750 [ 1225.124915] ? new_sync_write+0x660/0x660 [ 1225.125629] ? avc_policy_seqno+0x9/0x70 [ 1225.126323] ? selinux_file_permission+0x92/0x520 [ 1225.127160] ? security_file_permission+0xb1/0xe0 [ 1225.127997] do_iter_write+0x191/0x700 [ 1225.128663] ? trace_hardirqs_on+0x5b/0x180 [ 1225.129415] vfs_iter_write+0x70/0xa0 [ 1225.130070] iter_file_splice_write+0x726/0xc90 [ 1225.130891] ? generic_splice_sendpage+0x140/0x140 [ 1225.131755] ? security_file_permission+0xb1/0xe0 [ 1225.132600] ? generic_splice_sendpage+0x140/0x140 [ 1225.133452] direct_splice_actor+0x10f/0x170 [ 1225.134216] splice_direct_to_actor+0x387/0x980 [ 1225.135046] ? pipe_to_sendpage+0x380/0x380 [ 1225.135801] ? do_splice_to+0x160/0x160 [ 1225.136490] ? security_file_permission+0xb1/0xe0 [ 1225.137334] do_splice_direct+0x1c4/0x290 [ 1225.138055] ? splice_direct_to_actor+0x980/0x980 [ 1225.138899] ? avc_policy_seqno+0x9/0x70 [ 1225.139620] ? security_file_permission+0xb1/0xe0 [ 1225.140463] do_sendfile+0x553/0x11e0 [ 1225.141134] ? do_pwritev+0x270/0x270 [ 1225.141797] ? wait_for_completion_io+0x270/0x270 [ 1225.142638] ? rcu_read_lock_any_held+0x75/0xa0 [ 1225.143442] ? vfs_write+0x354/0xb10 [ 1225.144110] __x64_sys_sendfile64+0x1d1/0x210 [ 1225.144892] ? __ia32_sys_sendfile+0x220/0x220 [ 1225.145690] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1225.146604] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1225.147492] do_syscall_64+0x33/0x40 [ 1225.148131] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1225.149008] RIP: 0033:0x7f363f9a5b19 [ 1225.149651] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1225.152822] RSP: 002b:00007f363cf1b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1225.154149] RAX: ffffffffffffffda RBX: 00007f363fab8f60 RCX: 00007f363f9a5b19 [ 1225.155396] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1225.156621] RBP: 00007f363cf1b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1225.157866] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1225.159132] R13: 00007ffcaa1f774f R14: 00007f363cf1b300 R15: 0000000000022000 [ 1225.175318] FAULT_INJECTION: forcing a failure. [ 1225.175318] name failslab, interval 1, probability 0, space 0, times 0 [ 1225.177408] CPU: 1 PID: 7962 Comm: syz-executor.3 Not tainted 5.10.233 #1 [ 1225.178671] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1225.180315] Call Trace: [ 1225.180837] dump_stack+0x107/0x167 [ 1225.181559] should_fail.cold+0x5/0xa [ 1225.182315] ? create_object.isra.0+0x3a/0xa20 [ 1225.183361] should_failslab+0x5/0x20 [ 1225.184265] kmem_cache_alloc+0x5b/0x310 [ 1225.185226] ? igrab+0xc0/0xc0 [ 1225.186006] create_object.isra.0+0x3a/0xa20 [ 1225.186980] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1225.188119] __kmalloc+0x16e/0x390 [ 1225.188933] iter_file_splice_write+0x165/0xc90 [ 1225.190018] ? __fsnotify_parent+0x47a/0xb10 [ 1225.191063] ? generic_splice_sendpage+0x140/0x140 [ 1225.192197] ? pipe_to_user+0x170/0x170 [ 1225.193131] ? security_file_permission+0xb1/0xe0 [ 1225.194250] ? generic_splice_sendpage+0x140/0x140 [ 1225.195407] direct_splice_actor+0x10f/0x170 [ 1225.196429] splice_direct_to_actor+0x387/0x980 [ 1225.197514] ? pipe_to_sendpage+0x380/0x380 [ 1225.198519] ? do_splice_to+0x160/0x160 [ 1225.199461] ? security_file_permission+0xb1/0xe0 [ 1225.200581] do_splice_direct+0x1c4/0x290 [ 1225.201537] ? splice_direct_to_actor+0x980/0x980 [ 1225.202653] ? avc_policy_seqno+0x9/0x70 [ 1225.203594] ? security_file_permission+0xb1/0xe0 [ 1225.204709] do_sendfile+0x553/0x11e0 [ 1225.205594] ? do_pwritev+0x270/0x270 [ 1225.206479] ? wait_for_completion_io+0x270/0x270 [ 1225.207586] ? rcu_read_lock_any_held+0x75/0xa0 [ 1225.208704] ? vfs_write+0x354/0xb10 [ 1225.209631] __x64_sys_sendfile64+0x1d1/0x210 [ 1225.210753] ? __ia32_sys_sendfile+0x220/0x220 [ 1225.211864] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1225.213159] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1225.214423] do_syscall_64+0x33/0x40 [ 1225.215357] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1225.216602] RIP: 0033:0x7fdfc7a14b19 [ 1225.217512] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1225.222004] RSP: 002b:00007fdfc4f8a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1225.223862] RAX: ffffffffffffffda RBX: 00007fdfc7b27f60 RCX: 00007fdfc7a14b19 [ 1225.225609] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1225.227379] RBP: 00007fdfc4f8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1225.229138] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1225.230913] R13: 00007ffc53f2cc7f R14: 00007fdfc4f8a300 R15: 0000000000022000 05:51:46 executing program 0: clone3(&(0x7f0000003380)={0x101000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:51:46 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, 0x0, 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:52:00 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000004) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1238.798807] FAULT_INJECTION: forcing a failure. [ 1238.798807] name failslab, interval 1, probability 0, space 0, times 0 [ 1238.801463] CPU: 0 PID: 7988 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 1238.802973] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1238.804424] FAULT_INJECTION: forcing a failure. [ 1238.804424] name failslab, interval 1, probability 0, space 0, times 0 [ 1238.804802] Call Trace: [ 1238.804833] dump_stack+0x107/0x167 [ 1238.808750] should_fail.cold+0x5/0xa [ 1238.809591] ? __iomap_dio_rw+0x1ee/0x1110 [ 1238.810524] should_failslab+0x5/0x20 [ 1238.811370] kmem_cache_alloc_trace+0x55/0x320 [ 1238.812383] __iomap_dio_rw+0x1ee/0x1110 [ 1238.813288] ? jbd2_journal_stop+0x188/0xdc0 [ 1238.814261] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1238.815279] ? ext4_orphan_add+0x253/0x9e0 [ 1238.816206] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1238.817289] ? ext4_empty_dir+0xae0/0xae0 [ 1238.818197] ? jbd2__journal_start+0xf3/0x7e0 [ 1238.819201] iomap_dio_rw+0x31/0x90 [ 1238.820006] ext4_file_write_iter+0xe0e/0x1530 [ 1238.821026] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1238.822027] ? kasan_save_stack+0x32/0x40 [ 1238.822935] ? kasan_save_stack+0x1b/0x40 [ 1238.823849] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1238.824962] ? iter_file_splice_write+0x165/0xc90 [ 1238.826017] ? direct_splice_actor+0x10f/0x170 [ 1238.827019] ? splice_direct_to_actor+0x387/0x980 [ 1238.828084] ? do_splice_direct+0x1c4/0x290 [ 1238.829030] ? do_sendfile+0x553/0x11e0 [ 1238.829903] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1238.830926] ? do_syscall_64+0x33/0x40 [ 1238.831792] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1238.832972] do_iter_readv_writev+0x476/0x750 [ 1238.833964] ? new_sync_write+0x660/0x660 [ 1238.834874] ? avc_policy_seqno+0x9/0x70 [ 1238.835772] ? selinux_file_permission+0x92/0x520 [ 1238.836837] ? security_file_permission+0xb1/0xe0 [ 1238.837906] do_iter_write+0x191/0x700 [ 1238.838766] ? trace_hardirqs_on+0x5b/0x180 [ 1238.839729] vfs_iter_write+0x70/0xa0 [ 1238.840566] iter_file_splice_write+0x726/0xc90 [ 1238.841602] ? generic_splice_sendpage+0x140/0x140 [ 1238.842696] ? security_file_permission+0xb1/0xe0 [ 1238.843765] ? generic_splice_sendpage+0x140/0x140 [ 1238.844846] direct_splice_actor+0x10f/0x170 [ 1238.845815] splice_direct_to_actor+0x387/0x980 [ 1238.846846] ? pipe_to_sendpage+0x380/0x380 [ 1238.847811] ? do_splice_to+0x160/0x160 [ 1238.848685] ? security_file_permission+0xb1/0xe0 [ 1238.849756] do_splice_direct+0x1c4/0x290 [ 1238.850670] ? splice_direct_to_actor+0x980/0x980 [ 1238.851737] ? avc_policy_seqno+0x9/0x70 [ 1238.852638] ? security_file_permission+0xb1/0xe0 [ 1238.853707] do_sendfile+0x553/0x11e0 [ 1238.854555] ? do_pwritev+0x270/0x270 [ 1238.855412] ? wait_for_completion_io+0x270/0x270 [ 1238.856471] ? rcu_read_lock_any_held+0x75/0xa0 [ 1238.857487] ? vfs_write+0x354/0xb10 [ 1238.858304] __x64_sys_sendfile64+0x1d1/0x210 [ 1238.859296] ? __ia32_sys_sendfile+0x220/0x220 [ 1238.860301] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1238.861450] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1238.862587] do_syscall_64+0x33/0x40 [ 1238.863427] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1238.864551] RIP: 0033:0x7f363f9a5b19 [ 1238.865367] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1238.869412] RSP: 002b:00007f363cf1b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1238.871098] RAX: ffffffffffffffda RBX: 00007f363fab8f60 RCX: 00007f363f9a5b19 [ 1238.872663] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1238.874232] RBP: 00007f363cf1b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1238.875814] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1238.877383] R13: 00007ffcaa1f774f R14: 00007f363cf1b300 R15: 0000000000022000 [ 1238.878989] CPU: 1 PID: 7989 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 1238.880614] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1238.882523] Call Trace: [ 1238.883145] dump_stack+0x107/0x167 [ 1238.883996] should_fail.cold+0x5/0xa [ 1238.884886] ? alloc_pipe_info+0x10a/0x590 [ 1238.885870] should_failslab+0x5/0x20 [ 1238.886750] kmem_cache_alloc_trace+0x55/0x320 [ 1238.887213] FAULT_INJECTION: forcing a failure. [ 1238.887213] name failslab, interval 1, probability 0, space 0, times 0 [ 1238.887812] alloc_pipe_info+0x10a/0x590 [ 1238.891135] splice_direct_to_actor+0x774/0x980 [ 1238.892212] ? _cond_resched+0x12/0x80 [ 1238.893110] ? inode_security+0x107/0x140 [ 1238.894058] ? pipe_to_sendpage+0x380/0x380 [ 1238.895048] ? avc_policy_seqno+0x9/0x70 [ 1238.895987] ? selinux_file_permission+0x92/0x520 [ 1238.897097] ? do_splice_to+0x160/0x160 [ 1238.898009] ? security_file_permission+0xb1/0xe0 [ 1238.899132] do_splice_direct+0x1c4/0x290 [ 1238.900087] ? splice_direct_to_actor+0x980/0x980 [ 1238.901190] ? avc_policy_seqno+0x9/0x70 [ 1238.902127] ? security_file_permission+0xb1/0xe0 [ 1238.903255] do_sendfile+0x553/0x11e0 [ 1238.904143] ? do_pwritev+0x270/0x270 [ 1238.905020] ? wait_for_completion_io+0x270/0x270 [ 1238.906131] ? rcu_read_lock_any_held+0x75/0xa0 [ 1238.907202] ? vfs_write+0x354/0xb10 [ 1238.908059] __x64_sys_sendfile64+0x1d1/0x210 [ 1238.909090] ? __ia32_sys_sendfile+0x220/0x220 [ 1238.910145] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1238.911357] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1238.912546] do_syscall_64+0x33/0x40 [ 1238.913401] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1238.914577] RIP: 0033:0x7f269f6d0b19 [ 1238.915438] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1238.919667] RSP: 002b:00007f269cc46188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1238.921412] RAX: ffffffffffffffda RBX: 00007f269f7e3f60 RCX: 00007f269f6d0b19 [ 1238.923050] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1238.924696] RBP: 00007f269cc461d0 R08: 0000000000000000 R09: 0000000000000000 [ 1238.926337] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1238.927982] R13: 00007fff413112bf R14: 00007f269cc46300 R15: 0000000000022000 [ 1238.929653] CPU: 0 PID: 7984 Comm: syz-executor.3 Not tainted 5.10.233 #1 [ 1238.931183] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1238.933000] Call Trace: [ 1238.933580] dump_stack+0x107/0x167 [ 1238.934384] should_fail.cold+0x5/0xa [ 1238.935430] ? iter_file_splice_write+0x165/0xc90 [ 1238.936487] should_failslab+0x5/0x20 [ 1238.937324] __kmalloc+0x72/0x390 [ 1238.938098] iter_file_splice_write+0x165/0xc90 [ 1238.939131] ? __fsnotify_parent+0x47a/0xb10 [ 1238.940112] ? generic_splice_sendpage+0x140/0x140 [ 1238.941192] ? pipe_to_user+0x170/0x170 [ 1238.942077] ? security_file_permission+0xb1/0xe0 [ 1238.943145] ? generic_splice_sendpage+0x140/0x140 [ 1238.944223] direct_splice_actor+0x10f/0x170 [ 1238.945190] splice_direct_to_actor+0x387/0x980 [ 1238.946220] ? pipe_to_sendpage+0x380/0x380 [ 1238.947181] ? do_splice_to+0x160/0x160 [ 1238.948056] ? security_file_permission+0xb1/0xe0 [ 1238.949121] do_splice_direct+0x1c4/0x290 [ 1238.950030] ? splice_direct_to_actor+0x980/0x980 [ 1238.951095] ? avc_policy_seqno+0x9/0x70 [ 1238.951992] ? security_file_permission+0xb1/0xe0 [ 1238.953065] do_sendfile+0x553/0x11e0 [ 1238.953912] ? do_pwritev+0x270/0x270 [ 1238.954749] ? wait_for_completion_io+0x270/0x270 [ 1238.955813] ? rcu_read_lock_any_held+0x75/0xa0 [ 1238.956832] ? vfs_write+0x354/0xb10 [ 1238.957653] __x64_sys_sendfile64+0x1d1/0x210 [ 1238.958638] ? __ia32_sys_sendfile+0x220/0x220 [ 1238.959652] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1238.960807] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1238.961942] do_syscall_64+0x33/0x40 [ 1238.962758] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1238.963891] RIP: 0033:0x7fdfc7a14b19 [ 1238.964709] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1238.968766] RSP: 002b:00007fdfc4f8a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1238.970440] RAX: ffffffffffffffda RBX: 00007fdfc7b27f60 RCX: 00007fdfc7a14b19 [ 1238.972026] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1238.973591] RBP: 00007fdfc4f8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1238.975166] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1238.976731] R13: 00007ffc53f2cc7f R14: 00007fdfc4f8a300 R15: 0000000000022000 05:52:00 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 1) fallocate(r0, 0x0, 0x0, 0x1000002) 05:52:00 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 7) fallocate(r0, 0x0, 0x0, 0x1000002) 05:52:00 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 13) fallocate(r0, 0x0, 0x0, 0x1000002) 05:52:00 executing program 0: clone3(&(0x7f0000003380)={0xf0ff1f, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:52:00 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x8}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:52:00 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r1, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:52:00 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:52:00 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:52:00 executing program 0: clone3(&(0x7f0000003380)={0x1000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:52:00 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 2) fallocate(r0, 0x0, 0x0, 0x1000002) 05:52:00 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:52:00 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:52:00 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 14) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1239.240441] FAULT_INJECTION: forcing a failure. [ 1239.240441] name failslab, interval 1, probability 0, space 0, times 0 [ 1239.243625] CPU: 0 PID: 8007 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 1239.245099] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1239.247114] Call Trace: [ 1239.247676] dump_stack+0x107/0x167 [ 1239.248461] should_fail.cold+0x5/0xa [ 1239.249281] ? create_object.isra.0+0x3a/0xa20 [ 1239.250265] should_failslab+0x5/0x20 [ 1239.251079] kmem_cache_alloc+0x5b/0x310 [ 1239.251960] create_object.isra.0+0x3a/0xa20 [ 1239.252899] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1239.253999] kmem_cache_alloc_trace+0x151/0x320 [ 1239.255003] alloc_pipe_info+0x10a/0x590 [ 1239.255886] splice_direct_to_actor+0x774/0x980 [ 1239.256891] ? _cond_resched+0x12/0x80 [ 1239.257725] ? inode_security+0x107/0x140 [ 1239.258606] ? pipe_to_sendpage+0x380/0x380 [ 1239.259543] ? avc_policy_seqno+0x9/0x70 [ 1239.260408] ? selinux_file_permission+0x92/0x520 [ 1239.261441] ? do_splice_to+0x160/0x160 [ 1239.262289] ? security_file_permission+0xb1/0xe0 05:52:00 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 8) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1239.263344] do_splice_direct+0x1c4/0x290 [ 1239.264370] ? splice_direct_to_actor+0x980/0x980 [ 1239.265398] ? avc_policy_seqno+0x9/0x70 [ 1239.266299] ? security_file_permission+0xb1/0xe0 [ 1239.267346] do_sendfile+0x553/0x11e0 [ 1239.268196] ? do_pwritev+0x270/0x270 [ 1239.269042] ? wait_for_completion_io+0x270/0x270 [ 1239.270115] ? rcu_read_lock_any_held+0x75/0xa0 [ 1239.271150] ? vfs_write+0x354/0xb10 [ 1239.271975] __x64_sys_sendfile64+0x1d1/0x210 [ 1239.272961] ? __ia32_sys_sendfile+0x220/0x220 [ 1239.273976] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1239.275144] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1239.276282] do_syscall_64+0x33/0x40 [ 1239.277101] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1239.278233] RIP: 0033:0x7f269f6d0b19 [ 1239.279054] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1239.283133] RSP: 002b:00007f269cc46188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1239.284812] RAX: ffffffffffffffda RBX: 00007f269f7e3f60 RCX: 00007f269f6d0b19 [ 1239.286394] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1239.287982] RBP: 00007f269cc461d0 R08: 0000000000000000 R09: 0000000000000000 [ 1239.289568] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1239.291152] R13: 00007fff413112bf R14: 00007f269cc46300 R15: 0000000000022000 [ 1239.292468] FAULT_INJECTION: forcing a failure. [ 1239.292468] name failslab, interval 1, probability 0, space 0, times 0 [ 1239.295618] CPU: 1 PID: 8010 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 1239.297184] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1239.299090] Call Trace: [ 1239.299712] dump_stack+0x107/0x167 [ 1239.300548] should_fail.cold+0x5/0xa [ 1239.301423] ? create_object.isra.0+0x3a/0xa20 [ 1239.302473] should_failslab+0x5/0x20 [ 1239.303364] kmem_cache_alloc+0x5b/0x310 [ 1239.304291] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1239.305520] create_object.isra.0+0x3a/0xa20 [ 1239.306520] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1239.307702] kmem_cache_alloc+0x159/0x310 [ 1239.308650] ? __kernel_text_address+0x9/0x40 [ 1239.309679] jbd2__journal_start+0x190/0x7e0 [ 1239.310696] __ext4_journal_start_sb+0x214/0x390 [ 1239.311813] ext4_iomap_begin+0x485/0x700 [ 1239.312778] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1239.313894] ? kasan_save_stack+0x1b/0x40 [ 1239.314841] ? ext4_file_write_iter+0xe0e/0x1530 [ 1239.315936] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1239.317384] ? splice_direct_to_actor+0x387/0x980 [ 1239.318479] ? do_splice_direct+0x1c4/0x290 [ 1239.319481] ? do_sendfile+0x553/0x11e0 [ 1239.320384] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1239.321441] ? do_syscall_64+0x33/0x40 [ 1239.322327] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1239.323557] iomap_apply+0x164/0x810 [ 1239.324409] ? iomap_dio_rw+0x90/0x90 [ 1239.325287] ? trace_event_raw_event_iomap_apply+0x430/0x430 05:52:00 executing program 0: clone3(&(0x7f0000003380)={0x8000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) [ 1239.326637] ? mark_held_locks+0x9e/0xe0 [ 1239.327805] ? filemap_check_errors+0xa5/0x150 [ 1239.328857] __iomap_dio_rw+0x6cd/0x1110 [ 1239.329785] ? iomap_dio_rw+0x90/0x90 [ 1239.330673] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1239.331715] ? ext4_orphan_add+0x253/0x9e0 [ 1239.332658] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1239.333756] ? ext4_empty_dir+0xae0/0xae0 [ 1239.334688] ? jbd2__journal_start+0xf3/0x7e0 [ 1239.335711] iomap_dio_rw+0x31/0x90 [ 1239.336528] ext4_file_write_iter+0xe0e/0x1530 [ 1239.337565] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1239.338586] ? kasan_save_stack+0x32/0x40 [ 1239.339522] ? kasan_save_stack+0x1b/0x40 [ 1239.340443] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1239.341568] ? iter_file_splice_write+0x165/0xc90 [ 1239.342636] ? direct_splice_actor+0x10f/0x170 [ 1239.343657] ? splice_direct_to_actor+0x387/0x980 [ 1239.344736] ? do_splice_direct+0x1c4/0x290 [ 1239.345693] ? do_sendfile+0x553/0x11e0 [ 1239.346572] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1239.347617] ? do_syscall_64+0x33/0x40 [ 1239.348482] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1239.349685] do_iter_readv_writev+0x476/0x750 [ 1239.350690] ? new_sync_write+0x660/0x660 [ 1239.351622] ? avc_policy_seqno+0x9/0x70 [ 1239.352525] ? selinux_file_permission+0x92/0x520 [ 1239.353610] ? security_file_permission+0xb1/0xe0 [ 1239.354695] do_iter_write+0x191/0x700 [ 1239.355575] ? trace_hardirqs_on+0x5b/0x180 [ 1239.356547] vfs_iter_write+0x70/0xa0 [ 1239.357397] iter_file_splice_write+0x726/0xc90 [ 1239.358448] ? generic_splice_sendpage+0x140/0x140 [ 1239.359565] ? security_file_permission+0xb1/0xe0 [ 1239.360643] ? generic_splice_sendpage+0x140/0x140 [ 1239.361744] direct_splice_actor+0x10f/0x170 [ 1239.362733] splice_direct_to_actor+0x387/0x980 [ 1239.363789] ? pipe_to_sendpage+0x380/0x380 [ 1239.364764] ? do_splice_to+0x160/0x160 [ 1239.365652] ? security_file_permission+0xb1/0xe0 [ 1239.366734] do_splice_direct+0x1c4/0x290 [ 1239.367667] ? splice_direct_to_actor+0x980/0x980 [ 1239.368744] ? avc_policy_seqno+0x9/0x70 [ 1239.369656] ? security_file_permission+0xb1/0xe0 [ 1239.370745] do_sendfile+0x553/0x11e0 [ 1239.371617] ? do_pwritev+0x270/0x270 [ 1239.372470] ? wait_for_completion_io+0x270/0x270 [ 1239.372914] FAULT_INJECTION: forcing a failure. [ 1239.372914] name failslab, interval 1, probability 0, space 0, times 0 [ 1239.373545] ? rcu_read_lock_any_held+0x75/0xa0 [ 1239.373564] ? vfs_write+0x354/0xb10 [ 1239.373592] __x64_sys_sendfile64+0x1d1/0x210 [ 1239.378784] ? __ia32_sys_sendfile+0x220/0x220 [ 1239.379821] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1239.380995] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1239.382156] do_syscall_64+0x33/0x40 [ 1239.382984] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1239.384137] RIP: 0033:0x7f363f9a5b19 [ 1239.384968] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1239.389097] RSP: 002b:00007f363cf1b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1239.390803] RAX: ffffffffffffffda RBX: 00007f363fab8f60 RCX: 00007f363f9a5b19 [ 1239.392406] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1239.394004] RBP: 00007f363cf1b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1239.395619] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1239.397213] R13: 00007ffcaa1f774f R14: 00007f363cf1b300 R15: 0000000000022000 [ 1239.398837] CPU: 0 PID: 8014 Comm: syz-executor.3 Not tainted 5.10.233 #1 [ 1239.400314] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1239.402086] Call Trace: [ 1239.402652] dump_stack+0x107/0x167 [ 1239.403444] should_fail.cold+0x5/0xa [ 1239.404267] ? create_object.isra.0+0x3a/0xa20 [ 1239.405246] should_failslab+0x5/0x20 [ 1239.406060] kmem_cache_alloc+0x5b/0x310 [ 1239.406936] create_object.isra.0+0x3a/0xa20 [ 1239.407881] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1239.408971] kmem_cache_alloc+0x159/0x310 [ 1239.409865] jbd2__journal_start+0x190/0x7e0 [ 1239.410817] __ext4_journal_start_sb+0x214/0x390 [ 1239.411845] ext4_dirty_inode+0xbc/0x130 [ 1239.412711] ? ext4_setattr+0x20f0/0x20f0 [ 1239.413595] __mark_inode_dirty+0x492/0xd40 [ 1239.414518] ? security_inode_need_killpriv+0x79/0xa0 [ 1239.415638] generic_update_time+0x21c/0x370 [ 1239.416583] file_update_time+0x43a/0x520 [ 1239.417467] ? evict_inodes+0x470/0x470 [ 1239.418319] ? down_write_killable+0x180/0x180 [ 1239.419308] file_modified+0x7d/0xa0 [ 1239.420107] ext4_file_write_iter+0x8f8/0x1530 [ 1239.421098] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1239.422078] ? kasan_save_stack+0x32/0x40 [ 1239.422961] ? kasan_save_stack+0x1b/0x40 [ 1239.423850] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1239.424937] ? iter_file_splice_write+0x165/0xc90 [ 1239.425963] ? direct_splice_actor+0x10f/0x170 [ 1239.426944] ? splice_direct_to_actor+0x387/0x980 [ 1239.427984] ? do_splice_direct+0x1c4/0x290 [ 1239.428910] ? do_sendfile+0x553/0x11e0 [ 1239.429755] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1239.430746] ? do_syscall_64+0x33/0x40 [ 1239.431593] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1239.432741] do_iter_readv_writev+0x476/0x750 [ 1239.433705] ? new_sync_write+0x660/0x660 [ 1239.434590] ? avc_policy_seqno+0x9/0x70 [ 1239.435467] ? selinux_file_permission+0x92/0x520 [ 1239.436502] ? security_file_permission+0xb1/0xe0 [ 1239.437539] do_iter_write+0x191/0x700 [ 1239.438378] ? trace_hardirqs_on+0x5b/0x180 [ 1239.439313] vfs_iter_write+0x70/0xa0 [ 1239.440252] iter_file_splice_write+0x726/0xc90 [ 1239.441250] ? generic_splice_sendpage+0x140/0x140 [ 1239.442305] ? security_file_permission+0xb1/0xe0 [ 1239.443394] ? generic_splice_sendpage+0x140/0x140 [ 1239.444648] direct_splice_actor+0x10f/0x170 [ 1239.445789] splice_direct_to_actor+0x387/0x980 [ 1239.447128] ? pipe_to_sendpage+0x380/0x380 [ 1239.448269] ? do_splice_to+0x160/0x160 [ 1239.449305] ? security_file_permission+0xb1/0xe0 [ 1239.450572] do_splice_direct+0x1c4/0x290 [ 1239.451663] ? splice_direct_to_actor+0x980/0x980 [ 1239.453001] ? avc_policy_seqno+0x9/0x70 [ 1239.454084] ? security_file_permission+0xb1/0xe0 [ 1239.455357] do_sendfile+0x553/0x11e0 [ 1239.456453] ? do_pwritev+0x270/0x270 [ 1239.457453] ? wait_for_completion_io+0x270/0x270 [ 1239.458711] ? rcu_read_lock_any_held+0x75/0xa0 [ 1239.459943] ? vfs_write+0x354/0xb10 [ 1239.460916] __x64_sys_sendfile64+0x1d1/0x210 [ 1239.462083] ? __ia32_sys_sendfile+0x220/0x220 [ 1239.463317] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1239.464701] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1239.466052] do_syscall_64+0x33/0x40 [ 1239.467213] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1239.468598] RIP: 0033:0x7fdfc7a14b19 [ 1239.469573] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1239.474324] RSP: 002b:00007fdfc4f8a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1239.476123] RAX: ffffffffffffffda RBX: 00007fdfc7b27f60 RCX: 00007fdfc7a14b19 [ 1239.477629] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1239.479142] RBP: 00007fdfc4f8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1239.480646] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1239.482155] R13: 00007ffc53f2cc7f R14: 00007fdfc4f8a300 R15: 0000000000022000 05:52:16 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000005) fallocate(r0, 0x0, 0x0, 0x1000002) 05:52:16 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 15) fallocate(r0, 0x0, 0x0, 0x1000002) 05:52:16 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 9) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1254.563148] FAULT_INJECTION: forcing a failure. [ 1254.563148] name failslab, interval 1, probability 0, space 0, times 0 [ 1254.565747] CPU: 1 PID: 8028 Comm: syz-executor.3 Not tainted 5.10.233 #1 [ 1254.567295] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1254.569027] Call Trace: [ 1254.569574] dump_stack+0x107/0x167 [ 1254.570340] should_fail.cold+0x5/0xa [ 1254.571143] ? jbd2__journal_start+0x190/0x7e0 [ 1254.572132] should_failslab+0x5/0x20 [ 1254.572939] kmem_cache_alloc+0x5b/0x310 [ 1254.573790] jbd2__journal_start+0x190/0x7e0 [ 1254.574748] __ext4_journal_start_sb+0x214/0x390 [ 1254.575947] ext4_dirty_inode+0xbc/0x130 [ 1254.576983] ? ext4_setattr+0x20f0/0x20f0 [ 1254.578130] __mark_inode_dirty+0x492/0xd40 [ 1254.579278] ? security_inode_need_killpriv+0x79/0xa0 [ 1254.580622] generic_update_time+0x21c/0x370 [ 1254.581739] file_update_time+0x43a/0x520 05:52:16 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:52:16 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:52:16 executing program 0: clone3(&(0x7f0000003380)={0x10000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:52:16 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x8}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:52:16 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 3) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1254.582795] ? evict_inodes+0x470/0x470 [ 1254.584071] ? down_write_killable+0x180/0x180 [ 1254.585260] file_modified+0x7d/0xa0 [ 1254.586127] ext4_file_write_iter+0x8f8/0x1530 [ 1254.587093] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1254.588068] ? kasan_save_stack+0x32/0x40 [ 1254.588925] ? kasan_save_stack+0x1b/0x40 [ 1254.589778] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1254.590830] ? iter_file_splice_write+0x165/0xc90 [ 1254.591837] ? direct_splice_actor+0x10f/0x170 [ 1254.592782] ? splice_direct_to_actor+0x387/0x980 [ 1254.593808] ? do_splice_direct+0x1c4/0x290 [ 1254.594707] ? do_sendfile+0x553/0x11e0 [ 1254.595527] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1254.596512] ? do_syscall_64+0x33/0x40 [ 1254.597333] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1254.598441] do_iter_readv_writev+0x476/0x750 [ 1254.599377] ? new_sync_write+0x660/0x660 [ 1254.600266] ? avc_policy_seqno+0x9/0x70 [ 1254.601110] ? selinux_file_permission+0x92/0x520 [ 1254.602118] ? security_file_permission+0xb1/0xe0 [ 1254.603127] do_iter_write+0x191/0x700 [ 1254.603958] ? trace_hardirqs_on+0x5b/0x180 [ 1254.604879] vfs_iter_write+0x70/0xa0 [ 1254.605674] iter_file_splice_write+0x726/0xc90 [ 1254.606671] ? generic_splice_sendpage+0x140/0x140 [ 1254.607735] ? security_file_permission+0xb1/0xe0 [ 1254.608753] ? generic_splice_sendpage+0x140/0x140 [ 1254.609794] direct_splice_actor+0x10f/0x170 [ 1254.610723] splice_direct_to_actor+0x387/0x980 [ 1254.611726] ? pipe_to_sendpage+0x380/0x380 [ 1254.612639] ? do_splice_to+0x160/0x160 [ 1254.613475] ? security_file_permission+0xb1/0xe0 [ 1254.614501] do_splice_direct+0x1c4/0x290 [ 1254.615377] ? splice_direct_to_actor+0x980/0x980 [ 1254.616401] ? avc_policy_seqno+0x9/0x70 [ 1254.617260] ? security_file_permission+0xb1/0xe0 [ 1254.618289] do_sendfile+0x553/0x11e0 [ 1254.619103] ? do_pwritev+0x270/0x270 [ 1254.619921] ? wait_for_completion_io+0x270/0x270 [ 1254.620936] ? rcu_read_lock_any_held+0x75/0xa0 [ 1254.621912] ? vfs_write+0x354/0xb10 [ 1254.622699] __x64_sys_sendfile64+0x1d1/0x210 [ 1254.623653] ? __ia32_sys_sendfile+0x220/0x220 [ 1254.624631] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1254.625732] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1254.626826] do_syscall_64+0x33/0x40 [ 1254.627611] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1254.628707] RIP: 0033:0x7fdfc7a14b19 [ 1254.629495] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1254.633406] RSP: 002b:00007fdfc4f8a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1254.635013] RAX: ffffffffffffffda RBX: 00007fdfc7b27f60 RCX: 00007fdfc7a14b19 [ 1254.636533] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1254.638038] RBP: 00007fdfc4f8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1254.639542] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1254.641181] R13: 00007ffc53f2cc7f R14: 00007fdfc4f8a300 R15: 0000000000022000 [ 1254.655194] FAULT_INJECTION: forcing a failure. [ 1254.655194] name failslab, interval 1, probability 0, space 0, times 0 [ 1254.657792] CPU: 1 PID: 8035 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 1254.659232] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1254.660989] Call Trace: [ 1254.661573] dump_stack+0x107/0x167 [ 1254.662572] should_fail.cold+0x5/0xa [ 1254.663470] ? memcg_alloc_page_obj_cgroups+0x73/0x100 [ 1254.664595] should_failslab+0x5/0x20 [ 1254.665392] __kmalloc_node+0x76/0x420 [ 1254.666221] memcg_alloc_page_obj_cgroups+0x73/0x100 [ 1254.667304] memcg_slab_post_alloc_hook+0x1f0/0x430 [ 1254.668370] ? trace_hardirqs_on+0x5b/0x180 [ 1254.669284] kmem_cache_alloc_trace+0x169/0x320 [ 1254.670274] alloc_pipe_info+0x10a/0x590 [ 1254.671137] splice_direct_to_actor+0x774/0x980 [ 1254.672134] ? _cond_resched+0x12/0x80 [ 1254.672958] ? inode_security+0x107/0x140 [ 1254.673831] ? pipe_to_sendpage+0x380/0x380 [ 1254.674747] ? avc_policy_seqno+0x9/0x70 [ 1254.675601] ? selinux_file_permission+0x92/0x520 [ 1254.676636] ? do_splice_to+0x160/0x160 [ 1254.677478] ? security_file_permission+0xb1/0xe0 [ 1254.678508] do_splice_direct+0x1c4/0x290 [ 1254.679383] ? splice_direct_to_actor+0x980/0x980 [ 1254.680410] ? avc_policy_seqno+0x9/0x70 [ 1254.681274] ? security_file_permission+0xb1/0xe0 [ 1254.682317] do_sendfile+0x553/0x11e0 [ 1254.683133] ? do_pwritev+0x270/0x270 [ 1254.683960] ? wait_for_completion_io+0x270/0x270 [ 1254.684989] ? rcu_read_lock_any_held+0x75/0xa0 [ 1254.685973] ? vfs_write+0x354/0xb10 [ 1254.686763] __x64_sys_sendfile64+0x1d1/0x210 [ 1254.687717] ? __ia32_sys_sendfile+0x220/0x220 [ 1254.688687] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1254.689791] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1254.690882] do_syscall_64+0x33/0x40 [ 1254.691683] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1254.692766] RIP: 0033:0x7f269f6d0b19 [ 1254.693550] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1254.697441] RSP: 002b:00007f269cc46188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1254.699049] RAX: ffffffffffffffda RBX: 00007f269f7e3f60 RCX: 00007f269f6d0b19 [ 1254.700560] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1254.702080] RBP: 00007f269cc461d0 R08: 0000000000000000 R09: 0000000000000000 [ 1254.703592] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1254.705113] R13: 00007fff413112bf R14: 00007f269cc46300 R15: 0000000000022000 05:52:16 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:52:16 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x0) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1254.754001] FAULT_INJECTION: forcing a failure. [ 1254.754001] name failslab, interval 1, probability 0, space 0, times 0 [ 1254.757245] CPU: 1 PID: 8039 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 1254.758683] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1254.760444] Call Trace: [ 1254.760997] dump_stack+0x107/0x167 [ 1254.761765] should_fail.cold+0x5/0xa [ 1254.762577] ? ext4_find_extent+0xa77/0xd70 [ 1254.763502] should_failslab+0x5/0x20 [ 1254.764317] __kmalloc+0x72/0x390 [ 1254.765059] ext4_find_extent+0xa77/0xd70 [ 1254.765962] ext4_ext_map_blocks+0x1c8/0x5830 [ 1254.766922] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1254.768054] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1254.769251] ? ext4_ext_release+0x10/0x10 [ 1254.770152] ? lock_release+0x680/0x680 [ 1254.770997] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1254.772013] ? lock_downgrade+0x6d0/0x6d0 [ 1254.772903] ? down_read+0x10f/0x430 [ 1254.773689] ? down_write+0x160/0x160 [ 1254.774497] ? ext4_es_lookup_extent+0xc4/0xaa0 [ 1254.775486] ext4_map_blocks+0x8e1/0x1910 [ 1254.776376] ? kmem_cache_alloc+0x2a6/0x310 [ 1254.777287] ? __kernel_text_address+0x9/0x40 [ 1254.778234] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1254.779182] ? jbd2__journal_start+0xf3/0x7e0 [ 1254.780153] ? __ext4_journal_start_sb+0x214/0x390 [ 1254.781182] ? __ext4_journal_start_sb+0x1db/0x390 [ 1254.782224] ext4_iomap_begin+0x3ad/0x700 [ 1254.783116] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1254.784190] ? kasan_save_stack+0x1b/0x40 [ 1254.785068] ? ext4_file_write_iter+0xe0e/0x1530 [ 1254.786077] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1254.787413] ? splice_direct_to_actor+0x387/0x980 [ 1254.788435] ? do_splice_direct+0x1c4/0x290 [ 1254.789347] ? do_sendfile+0x553/0x11e0 [ 1254.790181] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1254.791161] ? do_syscall_64+0x33/0x40 [ 1254.791994] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1254.793134] iomap_apply+0x164/0x810 [ 1254.793930] ? iomap_dio_rw+0x90/0x90 [ 1254.794739] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1254.795986] ? mark_held_locks+0x9e/0xe0 [ 1254.796987] ? filemap_check_errors+0xa5/0x150 [ 1254.798151] __iomap_dio_rw+0x6cd/0x1110 [ 1254.799165] ? iomap_dio_rw+0x90/0x90 [ 1254.800154] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1254.801255] ? ext4_orphan_add+0x253/0x9e0 [ 1254.802268] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1254.803301] ? ext4_empty_dir+0xae0/0xae0 [ 1254.804193] ? jbd2__journal_start+0xf3/0x7e0 [ 1254.805136] iomap_dio_rw+0x31/0x90 [ 1254.806043] ext4_file_write_iter+0xe0e/0x1530 [ 1254.807046] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1254.808022] ? kasan_save_stack+0x32/0x40 [ 1254.808907] ? kasan_save_stack+0x1b/0x40 [ 1254.809763] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1254.810822] ? iter_file_splice_write+0x165/0xc90 [ 1254.811900] ? direct_splice_actor+0x10f/0x170 [ 1254.812854] ? splice_direct_to_actor+0x387/0x980 [ 1254.813867] ? do_splice_direct+0x1c4/0x290 [ 1254.814768] ? do_sendfile+0x553/0x11e0 [ 1254.815595] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1254.816575] ? do_syscall_64+0x33/0x40 [ 1254.817392] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1254.818503] do_iter_readv_writev+0x476/0x750 05:52:16 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x0) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1254.819445] ? new_sync_write+0x660/0x660 [ 1254.820577] ? avc_policy_seqno+0x9/0x70 [ 1254.821433] ? selinux_file_permission+0x92/0x520 [ 1254.822444] ? security_file_permission+0xb1/0xe0 [ 1254.823454] do_iter_write+0x191/0x700 [ 1254.824288] ? trace_hardirqs_on+0x5b/0x180 [ 1254.825225] vfs_iter_write+0x70/0xa0 [ 1254.826028] iter_file_splice_write+0x726/0xc90 [ 1254.827102] ? generic_splice_sendpage+0x140/0x140 [ 1254.828274] ? security_file_permission+0xb1/0xe0 [ 1254.829280] ? generic_splice_sendpage+0x140/0x140 [ 1254.830307] direct_splice_actor+0x10f/0x170 [ 1254.831231] splice_direct_to_actor+0x387/0x980 [ 1254.832224] ? pipe_to_sendpage+0x380/0x380 [ 1254.833135] ? do_splice_to+0x160/0x160 [ 1254.833964] ? security_file_permission+0xb1/0xe0 [ 1254.834979] do_splice_direct+0x1c4/0x290 [ 1254.835864] ? splice_direct_to_actor+0x980/0x980 [ 1254.836864] ? avc_policy_seqno+0x9/0x70 [ 1254.837715] ? security_file_permission+0xb1/0xe0 [ 1254.838734] do_sendfile+0x553/0x11e0 [ 1254.839554] ? do_pwritev+0x270/0x270 [ 1254.840366] ? wait_for_completion_io+0x270/0x270 [ 1254.841372] ? rcu_read_lock_any_held+0x75/0xa0 [ 1254.842347] ? vfs_write+0x354/0xb10 [ 1254.843142] __x64_sys_sendfile64+0x1d1/0x210 [ 1254.844101] ? __ia32_sys_sendfile+0x220/0x220 [ 1254.845064] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1254.846158] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1254.847237] do_syscall_64+0x33/0x40 [ 1254.848033] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1254.849099] RIP: 0033:0x7f363f9a5b19 [ 1254.849871] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1254.853746] RSP: 002b:00007f363cf1b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1254.855321] RAX: ffffffffffffffda RBX: 00007f363fab8f60 RCX: 00007f363f9a5b19 [ 1254.856804] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1254.858267] RBP: 00007f363cf1b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1254.859738] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1254.861200] R13: 00007ffcaa1f774f R14: 00007f363cf1b300 R15: 0000000000022000 05:52:16 executing program 0: clone3(&(0x7f0000003380)={0x11000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:52:16 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:52:16 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x0) fallocate(r0, 0x0, 0x0, 0x1000002) 05:52:16 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:52:16 executing program 6: openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002) 05:52:31 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 4) fallocate(r0, 0x0, 0x0, 0x1000002) 05:52:31 executing program 6: openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002) [ 1270.182404] FAULT_INJECTION: forcing a failure. [ 1270.182404] name failslab, interval 1, probability 0, space 0, times 0 [ 1270.184989] CPU: 1 PID: 8077 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 1270.186530] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1270.188397] Call Trace: [ 1270.188995] dump_stack+0x107/0x167 [ 1270.189815] should_fail.cold+0x5/0xa [ 1270.190664] ? create_object.isra.0+0x3a/0xa20 [ 1270.191687] should_failslab+0x5/0x20 [ 1270.192548] kmem_cache_alloc+0x5b/0x310 [ 1270.193451] ? create_object.isra.0+0x3ad/0xa20 [ 1270.194490] create_object.isra.0+0x3a/0xa20 [ 1270.195461] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1270.196598] __kmalloc_node+0x1ae/0x420 [ 1270.197483] memcg_alloc_page_obj_cgroups+0x73/0x100 [ 1270.198608] memcg_slab_post_alloc_hook+0x1f0/0x430 [ 1270.199707] ? trace_hardirqs_on+0x5b/0x180 [ 1270.200667] kmem_cache_alloc_trace+0x169/0x320 [ 1270.201702] alloc_pipe_info+0x10a/0x590 [ 1270.202605] splice_direct_to_actor+0x774/0x980 [ 1270.203637] ? _cond_resched+0x12/0x80 [ 1270.204504] ? inode_security+0x107/0x140 [ 1270.205419] ? pipe_to_sendpage+0x380/0x380 [ 1270.206366] ? avc_policy_seqno+0x9/0x70 [ 1270.207269] ? selinux_file_permission+0x92/0x520 [ 1270.208349] ? do_splice_to+0x160/0x160 [ 1270.209223] ? security_file_permission+0xb1/0xe0 [ 1270.210293] do_splice_direct+0x1c4/0x290 [ 1270.211219] ? splice_direct_to_actor+0x980/0x980 [ 1270.212288] ? avc_policy_seqno+0x9/0x70 [ 1270.213182] ? security_file_permission+0xb1/0xe0 [ 1270.214241] do_sendfile+0x553/0x11e0 [ 1270.215083] ? do_pwritev+0x270/0x270 [ 1270.215920] ? wait_for_completion_io+0x270/0x270 [ 1270.216981] ? rcu_read_lock_any_held+0x75/0xa0 [ 1270.217998] ? vfs_write+0x354/0xb10 [ 1270.218818] __x64_sys_sendfile64+0x1d1/0x210 [ 1270.219794] ? __ia32_sys_sendfile+0x220/0x220 [ 1270.220809] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1270.221955] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1270.223083] do_syscall_64+0x33/0x40 [ 1270.223894] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1270.225016] RIP: 0033:0x7f269f6d0b19 [ 1270.225827] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1270.229859] RSP: 002b:00007f269cc46188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1270.231509] RAX: ffffffffffffffda RBX: 00007f269f7e3f60 RCX: 00007f269f6d0b19 [ 1270.233278] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1270.234932] RBP: 00007f269cc461d0 R08: 0000000000000000 R09: 0000000000000000 [ 1270.236659] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1270.238381] R13: 00007fff413112bf R14: 00007f269cc46300 R15: 0000000000022000 05:52:31 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000006) fallocate(r0, 0x0, 0x0, 0x1000002) 05:52:31 executing program 0: clone3(&(0x7f0000003380)={0x1ffff000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:52:31 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 16) fallocate(r0, 0x0, 0x0, 0x1000002) 05:52:31 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r1, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:52:31 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 10) fallocate(r0, 0x0, 0x0, 0x1000002) 05:52:31 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x8}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) [ 1270.260714] FAULT_INJECTION: forcing a failure. [ 1270.260714] name failslab, interval 1, probability 0, space 0, times 0 [ 1270.263327] CPU: 1 PID: 8084 Comm: syz-executor.3 Not tainted 5.10.233 #1 [ 1270.264904] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1270.266913] Call Trace: [ 1270.267592] dump_stack+0x107/0x167 [ 1270.268410] should_fail.cold+0x5/0xa [ 1270.269316] ? create_object.isra.0+0x3a/0xa20 [ 1270.270307] should_failslab+0x5/0x20 [ 1270.271226] kmem_cache_alloc+0x5b/0x310 [ 1270.272333] create_object.isra.0+0x3a/0xa20 [ 1270.273277] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1270.274520] kmem_cache_alloc+0x159/0x310 [ 1270.275550] jbd2__journal_start+0x190/0x7e0 [ 1270.276517] __ext4_journal_start_sb+0x214/0x390 [ 1270.277543] ext4_file_write_iter+0xee9/0x1530 [ 1270.278638] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1270.279811] ? kasan_save_stack+0x32/0x40 [ 1270.281029] ? kasan_save_stack+0x1b/0x40 [ 1270.282121] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1270.283471] ? iter_file_splice_write+0x165/0xc90 [ 1270.284704] ? direct_splice_actor+0x10f/0x170 [ 1270.286038] ? splice_direct_to_actor+0x387/0x980 [ 1270.287339] ? do_splice_direct+0x1c4/0x290 [ 1270.288529] ? do_sendfile+0x553/0x11e0 [ 1270.289565] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1270.290942] ? do_syscall_64+0x33/0x40 [ 1270.292077] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1270.293440] do_iter_readv_writev+0x476/0x750 [ 1270.294720] ? new_sync_write+0x660/0x660 [ 1270.295769] ? avc_policy_seqno+0x9/0x70 [ 1270.296793] ? selinux_file_permission+0x92/0x520 [ 1270.298137] ? security_file_permission+0xb1/0xe0 [ 1270.299578] do_iter_write+0x191/0x700 [ 1270.300634] ? trace_hardirqs_on+0x5b/0x180 [ 1270.301724] vfs_iter_write+0x70/0xa0 [ 1270.302681] iter_file_splice_write+0x726/0xc90 [ 1270.303867] ? generic_splice_sendpage+0x140/0x140 [ 1270.305146] ? security_file_permission+0xb1/0xe0 [ 1270.306425] ? generic_splice_sendpage+0x140/0x140 [ 1270.307660] direct_splice_actor+0x10f/0x170 [ 1270.308807] splice_direct_to_actor+0x387/0x980 [ 1270.310046] ? pipe_to_sendpage+0x380/0x380 [ 1270.311337] ? do_splice_to+0x160/0x160 [ 1270.312391] ? security_file_permission+0xb1/0xe0 [ 1270.313743] do_splice_direct+0x1c4/0x290 [ 1270.314930] ? splice_direct_to_actor+0x980/0x980 [ 1270.316395] ? avc_policy_seqno+0x9/0x70 [ 1270.317413] ? security_file_permission+0xb1/0xe0 [ 1270.318621] do_sendfile+0x553/0x11e0 [ 1270.319581] ? do_pwritev+0x270/0x270 [ 1270.320537] ? wait_for_completion_io+0x270/0x270 [ 1270.321729] ? rcu_read_lock_any_held+0x75/0xa0 [ 1270.322983] ? vfs_write+0x354/0xb10 [ 1270.323945] __x64_sys_sendfile64+0x1d1/0x210 [ 1270.325280] ? __ia32_sys_sendfile+0x220/0x220 [ 1270.326546] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1270.327831] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1270.329110] do_syscall_64+0x33/0x40 [ 1270.330025] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1270.331408] RIP: 0033:0x7fdfc7a14b19 [ 1270.332449] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1270.337249] RSP: 002b:00007fdfc4f8a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1270.339120] RAX: ffffffffffffffda RBX: 00007fdfc7b27f60 RCX: 00007fdfc7a14b19 [ 1270.340874] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1270.342737] RBP: 00007fdfc4f8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1270.344515] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1270.346386] R13: 00007ffc53f2cc7f R14: 00007fdfc4f8a300 R15: 0000000000022000 05:52:31 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r1, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:52:31 executing program 0: clone3(&(0x7f0000003380)={0x3f000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:52:32 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:52:32 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r1, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:52:32 executing program 0: clone3(&(0x7f0000003380)={0x40000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:52:32 executing program 6: openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002) 05:52:32 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x8}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:52:32 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:52:47 executing program 0: clone3(&(0x7f0000003380)={0x100000800, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:52:47 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x0) 05:52:47 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x8}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:52:47 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 5) fallocate(r0, 0x0, 0x0, 0x1000002) 05:52:47 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 11) fallocate(r0, 0x0, 0x0, 0x1000002) 05:52:47 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000007) fallocate(r0, 0x0, 0x0, 0x1000002) 05:52:47 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:52:47 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000002) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1285.708683] FAULT_INJECTION: forcing a failure. [ 1285.708683] name failslab, interval 1, probability 0, space 0, times 0 [ 1285.711540] CPU: 1 PID: 8122 Comm: syz-executor.3 Not tainted 5.10.233 #1 [ 1285.713205] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1285.714994] Call Trace: [ 1285.715647] dump_stack+0x107/0x167 [ 1285.716383] should_fail.cold+0x5/0xa [ 1285.717164] ? jbd2__journal_start+0x190/0x7e0 [ 1285.718078] should_failslab+0x5/0x20 [ 1285.718841] kmem_cache_alloc+0x5b/0x310 [ 1285.719830] jbd2__journal_start+0x190/0x7e0 [ 1285.720896] __ext4_journal_start_sb+0x214/0x390 [ 1285.721981] ext4_file_write_iter+0xee9/0x1530 [ 1285.723042] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1285.724089] ? kasan_save_stack+0x32/0x40 [ 1285.725032] ? kasan_save_stack+0x1b/0x40 [ 1285.725981] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1285.727143] ? iter_file_splice_write+0x165/0xc90 [ 1285.728205] ? direct_splice_actor+0x10f/0x170 [ 1285.729268] ? splice_direct_to_actor+0x387/0x980 [ 1285.730370] ? do_splice_direct+0x1c4/0x290 [ 1285.731360] ? do_sendfile+0x553/0x11e0 [ 1285.732272] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1285.733378] ? do_syscall_64+0x33/0x40 [ 1285.734280] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1285.735391] do_iter_readv_writev+0x476/0x750 [ 1285.736305] ? new_sync_write+0x660/0x660 [ 1285.737163] ? avc_policy_seqno+0x9/0x70 [ 1285.737986] ? selinux_file_permission+0x92/0x520 [ 1285.739017] ? security_file_permission+0xb1/0xe0 [ 1285.740193] do_iter_write+0x191/0x700 [ 1285.741157] ? trace_hardirqs_on+0x5b/0x180 [ 1285.742154] vfs_iter_write+0x70/0xa0 [ 1285.742919] iter_file_splice_write+0x726/0xc90 [ 1285.743871] ? generic_splice_sendpage+0x140/0x140 [ 1285.744886] ? security_file_permission+0xb1/0xe0 [ 1285.745878] ? generic_splice_sendpage+0x140/0x140 [ 1285.746863] direct_splice_actor+0x10f/0x170 [ 1285.747767] splice_direct_to_actor+0x387/0x980 [ 1285.748117] FAULT_INJECTION: forcing a failure. [ 1285.748117] name failslab, interval 1, probability 0, space 0, times 0 [ 1285.748710] ? pipe_to_sendpage+0x380/0x380 [ 1285.748744] ? do_splice_to+0x160/0x160 [ 1285.748769] ? security_file_permission+0xb1/0xe0 [ 1285.754237] do_splice_direct+0x1c4/0x290 [ 1285.755075] ? splice_direct_to_actor+0x980/0x980 [ 1285.756047] ? avc_policy_seqno+0x9/0x70 [ 1285.756885] ? security_file_permission+0xb1/0xe0 [ 1285.757863] do_sendfile+0x553/0x11e0 [ 1285.758636] ? do_pwritev+0x270/0x270 [ 1285.759428] ? wait_for_completion_io+0x270/0x270 [ 1285.760404] ? rcu_read_lock_any_held+0x75/0xa0 [ 1285.761357] ? vfs_write+0x354/0xb10 [ 1285.762105] __x64_sys_sendfile64+0x1d1/0x210 [ 1285.763006] ? __ia32_sys_sendfile+0x220/0x220 [ 1285.763932] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1285.764991] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1285.766033] do_syscall_64+0x33/0x40 [ 1285.766793] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1285.767833] RIP: 0033:0x7fdfc7a14b19 [ 1285.768584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1285.772281] RSP: 002b:00007fdfc4f8a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1285.773809] RAX: ffffffffffffffda RBX: 00007fdfc7b27f60 RCX: 00007fdfc7a14b19 [ 1285.775227] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1285.776651] RBP: 00007fdfc4f8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1285.778075] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1285.779513] R13: 00007ffc53f2cc7f R14: 00007fdfc4f8a300 R15: 0000000000022000 [ 1285.780997] CPU: 0 PID: 8128 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 1285.782556] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1285.784461] Call Trace: [ 1285.785075] dump_stack+0x107/0x167 [ 1285.785925] should_fail.cold+0x5/0xa [ 1285.786801] ? iter_file_splice_write+0x165/0xc90 [ 1285.787922] should_failslab+0x5/0x20 [ 1285.788804] __kmalloc+0x72/0x390 [ 1285.789605] iter_file_splice_write+0x165/0xc90 [ 1285.790668] ? __fsnotify_parent+0x47a/0xb10 [ 1285.791689] ? generic_splice_sendpage+0x140/0x140 [ 1285.792820] ? pipe_to_user+0x170/0x170 [ 1285.793988] ? fsnotify_perm.part.0+0x6c/0x620 [ 1285.795054] ? security_file_permission+0xb1/0xe0 [ 1285.796171] ? generic_splice_sendpage+0x140/0x140 [ 1285.797317] direct_splice_actor+0x10f/0x170 [ 1285.798336] splice_direct_to_actor+0x387/0x980 [ 1285.799408] ? pipe_to_sendpage+0x380/0x380 [ 1285.800402] ? do_splice_to+0x160/0x160 [ 1285.801348] ? security_file_permission+0xb1/0xe0 [ 1285.802466] do_splice_direct+0x1c4/0x290 [ 1285.803438] ? splice_direct_to_actor+0x980/0x980 [ 1285.804549] ? avc_policy_seqno+0x9/0x70 [ 1285.805496] ? security_file_permission+0xb1/0xe0 [ 1285.806617] do_sendfile+0x553/0x11e0 [ 1285.807505] ? do_pwritev+0x270/0x270 [ 1285.808392] ? wait_for_completion_io+0x270/0x270 [ 1285.809516] ? rcu_read_lock_any_held+0x75/0xa0 [ 1285.810592] ? vfs_write+0x354/0xb10 [ 1285.811448] __x64_sys_sendfile64+0x1d1/0x210 [ 1285.812474] ? __ia32_sys_sendfile+0x220/0x220 [ 1285.813542] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1285.814754] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1285.815957] do_syscall_64+0x33/0x40 [ 1285.816834] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1285.818011] RIP: 0033:0x7f269f6d0b19 [ 1285.818872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1285.823107] RSP: 002b:00007f269cc46188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1285.824869] RAX: ffffffffffffffda RBX: 00007f269f7e3f60 RCX: 00007f269f6d0b19 [ 1285.826503] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1285.828164] RBP: 00007f269cc461d0 R08: 0000000000000000 R09: 0000000000000000 [ 1285.829799] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1285.831433] R13: 00007fff413112bf R14: 00007f269cc46300 R15: 0000000000022000 05:53:05 executing program 0: clone3(&(0x7f0000003380)={0x1b0bf1f000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:53:05 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 12) fallocate(r0, 0x0, 0x0, 0x1000002) 05:53:05 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x8}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:53:05 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000008) fallocate(r0, 0x0, 0x0, 0x1000002) 05:53:05 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 6) fallocate(r0, 0x0, 0x0, 0x1000002) 05:53:05 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x0) 05:53:05 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000003) fallocate(r0, 0x0, 0x0, 0x1000002) 05:53:05 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1303.694374] FAULT_INJECTION: forcing a failure. [ 1303.694374] name failslab, interval 1, probability 0, space 0, times 0 [ 1303.696171] CPU: 0 PID: 8142 Comm: syz-executor.3 Not tainted 5.10.233 #1 [ 1303.697303] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1303.698498] Call Trace: [ 1303.698875] dump_stack+0x107/0x167 [ 1303.699403] should_fail.cold+0x5/0xa [ 1303.699942] ? create_object.isra.0+0x3a/0xa20 [ 1303.700598] should_failslab+0x5/0x20 [ 1303.700832] FAULT_INJECTION: forcing a failure. [ 1303.700832] name failslab, interval 1, probability 0, space 0, times 0 [ 1303.701132] kmem_cache_alloc+0x5b/0x310 [ 1303.701149] create_object.isra.0+0x3a/0xa20 [ 1303.701172] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1303.705558] kmem_cache_alloc_trace+0x151/0x320 [ 1303.706233] __iomap_dio_rw+0x1ee/0x1110 [ 1303.706821] ? jbd2_journal_stop+0x188/0xdc0 [ 1303.707445] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1303.708086] ? ext4_orphan_add+0x253/0x9e0 [ 1303.708673] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1303.709380] ? ext4_empty_dir+0xae0/0xae0 [ 1303.709966] ? jbd2__journal_start+0xf3/0x7e0 [ 1303.710596] iomap_dio_rw+0x31/0x90 [ 1303.711112] ext4_file_write_iter+0xe0e/0x1530 [ 1303.711757] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1303.712400] ? kasan_save_stack+0x32/0x40 [ 1303.712972] ? kasan_save_stack+0x1b/0x40 [ 1303.713558] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1303.714261] ? iter_file_splice_write+0x165/0xc90 [ 1303.714940] ? direct_splice_actor+0x10f/0x170 [ 1303.715567] ? splice_direct_to_actor+0x387/0x980 [ 1303.716240] ? do_splice_direct+0x1c4/0x290 [ 1303.716833] ? do_sendfile+0x553/0x11e0 [ 1303.717385] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1303.718032] ? do_syscall_64+0x33/0x40 [ 1303.718568] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1303.719323] do_iter_readv_writev+0x476/0x750 [ 1303.719946] ? new_sync_write+0x660/0x660 [ 1303.720519] ? avc_policy_seqno+0x9/0x70 [ 1303.721082] ? selinux_file_permission+0x92/0x520 [ 1303.721755] ? security_file_permission+0xb1/0xe0 [ 1303.722425] do_iter_write+0x191/0x700 [ 1303.722975] ? trace_hardirqs_on+0x5b/0x180 [ 1303.723597] vfs_iter_write+0x70/0xa0 [ 1303.724128] iter_file_splice_write+0x726/0xc90 [ 1303.724809] ? generic_splice_sendpage+0x140/0x140 [ 1303.725516] ? security_file_permission+0xb1/0xe0 [ 1303.726216] ? generic_splice_sendpage+0x140/0x140 [ 1303.726906] direct_splice_actor+0x10f/0x170 [ 1303.727531] splice_direct_to_actor+0x387/0x980 [ 1303.728187] ? pipe_to_sendpage+0x380/0x380 [ 1303.728821] ? do_splice_to+0x160/0x160 [ 1303.729386] ? security_file_permission+0xb1/0xe0 [ 1303.730083] do_splice_direct+0x1c4/0x290 [ 1303.730666] ? splice_direct_to_actor+0x980/0x980 [ 1303.731351] ? avc_policy_seqno+0x9/0x70 [ 1303.731917] ? security_file_permission+0xb1/0xe0 [ 1303.732603] do_sendfile+0x553/0x11e0 [ 1303.733162] ? do_pwritev+0x270/0x270 [ 1303.733703] ? wait_for_completion_io+0x270/0x270 [ 1303.734379] ? rcu_read_lock_any_held+0x75/0xa0 [ 1303.735023] ? vfs_write+0x354/0xb10 [ 1303.735551] __x64_sys_sendfile64+0x1d1/0x210 [ 1303.736173] ? __ia32_sys_sendfile+0x220/0x220 [ 1303.736811] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1303.737555] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1303.738388] do_syscall_64+0x33/0x40 [ 1303.739054] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1303.740210] RIP: 0033:0x7fdfc7a14b19 [ 1303.740798] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1303.743479] RSP: 002b:00007fdfc4f8a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1303.744630] RAX: ffffffffffffffda RBX: 00007fdfc7b27f60 RCX: 00007fdfc7a14b19 [ 1303.745625] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1303.746619] RBP: 00007fdfc4f8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1303.747622] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1303.748611] R13: 00007ffc53f2cc7f R14: 00007fdfc4f8a300 R15: 0000000000022000 [ 1303.749707] CPU: 1 PID: 8154 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 1303.751328] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1303.753154] Call Trace: [ 1303.753763] dump_stack+0x107/0x167 [ 1303.754572] should_fail.cold+0x5/0xa [ 1303.755421] ? create_object.isra.0+0x3a/0xa20 [ 1303.756429] should_failslab+0x5/0x20 [ 1303.757284] kmem_cache_alloc+0x5b/0x310 [ 1303.758186] ? igrab+0xc0/0xc0 [ 1303.758897] create_object.isra.0+0x3a/0xa20 [ 1303.759855] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1303.760982] __kmalloc+0x16e/0x390 [ 1303.761798] iter_file_splice_write+0x165/0xc90 [ 1303.762824] ? __fsnotify_parent+0x47a/0xb10 [ 1303.763795] ? generic_splice_sendpage+0x140/0x140 [ 1303.764881] ? pipe_to_user+0x170/0x170 [ 1303.765790] ? security_file_permission+0xb1/0xe0 [ 1303.766863] ? generic_splice_sendpage+0x140/0x140 [ 1303.767954] direct_splice_actor+0x10f/0x170 [ 1303.768920] splice_direct_to_actor+0x387/0x980 [ 1303.769947] ? pipe_to_sendpage+0x380/0x380 [ 1303.770901] ? do_splice_to+0x160/0x160 [ 1303.771772] ? security_file_permission+0xb1/0xe0 [ 1303.772850] do_splice_direct+0x1c4/0x290 [ 1303.773787] ? splice_direct_to_actor+0x980/0x980 [ 1303.774859] ? avc_policy_seqno+0x9/0x70 [ 1303.775778] ? security_file_permission+0xb1/0xe0 [ 1303.776878] do_sendfile+0x553/0x11e0 [ 1303.777756] ? do_pwritev+0x270/0x270 [ 1303.778616] ? wait_for_completion_io+0x270/0x270 [ 1303.779712] ? rcu_read_lock_any_held+0x75/0xa0 [ 1303.780755] ? vfs_write+0x354/0xb10 [ 1303.781615] __x64_sys_sendfile64+0x1d1/0x210 [ 1303.782633] ? __ia32_sys_sendfile+0x220/0x220 [ 1303.783673] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1303.784835] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1303.786006] do_syscall_64+0x33/0x40 [ 1303.786841] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1303.787990] RIP: 0033:0x7f269f6d0b19 [ 1303.788827] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1303.792944] RSP: 002b:00007f269cc46188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1303.794666] RAX: ffffffffffffffda RBX: 00007f269f7e3f60 RCX: 00007f269f6d0b19 [ 1303.796293] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1303.797904] RBP: 00007f269cc461d0 R08: 0000000000000000 R09: 0000000000000000 [ 1303.799524] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1303.801136] R13: 00007fff413112bf R14: 00007f269cc46300 R15: 0000000000022000 05:53:05 executing program 0: clone3(&(0x7f0000003380)={0x10000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:53:05 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x0) fallocate(r0, 0x0, 0x0, 0x1000002) 05:53:26 executing program 0: clone3(&(0x7f0000003380)={0x29d23f11d000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:53:26 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000004) fallocate(r0, 0x0, 0x0, 0x1000002) 05:53:26 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x8}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:53:26 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000009) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1324.689749] FAULT_INJECTION: forcing a failure. [ 1324.689749] name failslab, interval 1, probability 0, space 0, times 0 [ 1324.692297] CPU: 1 PID: 8180 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 1324.693856] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1324.695676] Call Trace: [ 1324.696247] dump_stack+0x107/0x167 [ 1324.697037] should_fail.cold+0x5/0xa [ 1324.697868] ? iter_file_splice_write+0x165/0xc90 [ 1324.698932] should_failslab+0x5/0x20 [ 1324.699740] __kmalloc+0x72/0x390 [ 1324.700487] iter_file_splice_write+0x165/0xc90 [ 1324.701653] ? __fsnotify_parent+0x47a/0xb10 05:53:26 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 7) fallocate(r0, 0x0, 0x0, 0x1000002) 05:53:26 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 13) fallocate(r0, 0x0, 0x0, 0x1000002) 05:53:26 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x0) [ 1324.702954] ? generic_splice_sendpage+0x140/0x140 [ 1324.704145] ? pipe_to_user+0x170/0x170 [ 1324.705028] ? security_file_permission+0xb1/0xe0 [ 1324.706085] ? generic_splice_sendpage+0x140/0x140 [ 1324.707334] direct_splice_actor+0x10f/0x170 [ 1324.708291] splice_direct_to_actor+0x387/0x980 [ 1324.709447] ? pipe_to_sendpage+0x380/0x380 [ 1324.710638] ? do_splice_to+0x160/0x160 [ 1324.711599] ? security_file_permission+0xb1/0xe0 [ 1324.712814] do_splice_direct+0x1c4/0x290 [ 1324.713768] ? splice_direct_to_actor+0x980/0x980 [ 1324.714818] ? avc_policy_seqno+0x9/0x70 [ 1324.715880] ? security_file_permission+0xb1/0xe0 [ 1324.717163] do_sendfile+0x553/0x11e0 [ 1324.718157] ? do_pwritev+0x270/0x270 [ 1324.718999] ? wait_for_completion_io+0x270/0x270 [ 1324.720178] ? rcu_read_lock_any_held+0x75/0xa0 [ 1324.721454] ? vfs_write+0x354/0xb10 [ 1324.722385] __x64_sys_sendfile64+0x1d1/0x210 [ 1324.723363] ? __ia32_sys_sendfile+0x220/0x220 [ 1324.724498] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1324.725834] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1324.727179] do_syscall_64+0x33/0x40 [ 1324.728001] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1324.729347] RIP: 0033:0x7f269f6d0b19 [ 1324.730210] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1324.734752] RSP: 002b:00007f269cc46188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1324.736689] RAX: ffffffffffffffda RBX: 00007f269f7e3f60 RCX: 00007f269f6d0b19 [ 1324.738491] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1324.740252] RBP: 00007f269cc461d0 R08: 0000000000000000 R09: 0000000000000000 [ 1324.742046] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1324.743813] R13: 00007fff413112bf R14: 00007f269cc46300 R15: 0000000000022000 05:53:26 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x0) fallocate(r0, 0x0, 0x0, 0x1000002) 05:53:26 executing program 0: clone3(&(0x7f0000003380)={0x553a52bc9000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) [ 1324.818883] FAULT_INJECTION: forcing a failure. [ 1324.818883] name failslab, interval 1, probability 0, space 0, times 0 [ 1324.821917] CPU: 0 PID: 8189 Comm: syz-executor.3 Not tainted 5.10.233 #1 [ 1324.823797] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1324.825879] Call Trace: [ 1324.826566] dump_stack+0x107/0x167 [ 1324.827489] should_fail.cold+0x5/0xa [ 1324.828462] ? create_object.isra.0+0x3a/0xa20 [ 1324.829627] should_failslab+0x5/0x20 [ 1324.830613] kmem_cache_alloc+0x5b/0x310 [ 1324.831654] create_object.isra.0+0x3a/0xa20 [ 1324.832763] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1324.834037] kmem_cache_alloc+0x159/0x310 [ 1324.835105] jbd2__journal_start+0x190/0x7e0 [ 1324.836233] __ext4_journal_start_sb+0x214/0x390 [ 1324.837445] ext4_file_write_iter+0xee9/0x1530 [ 1324.838639] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1324.839790] ? kasan_save_stack+0x32/0x40 [ 1324.840818] ? kasan_save_stack+0x1b/0x40 [ 1324.841863] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1324.843175] ? iter_file_splice_write+0x165/0xc90 [ 1324.844369] ? direct_splice_actor+0x10f/0x170 [ 1324.845490] ? splice_direct_to_actor+0x387/0x980 [ 1324.846720] ? do_splice_direct+0x1c4/0x290 [ 1324.847809] ? do_sendfile+0x553/0x11e0 [ 1324.848820] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1324.849993] ? do_syscall_64+0x33/0x40 [ 1324.850951] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1324.852311] do_iter_readv_writev+0x476/0x750 [ 1324.853432] ? new_sync_write+0x660/0x660 [ 1324.854492] ? avc_policy_seqno+0x9/0x70 [ 1324.855520] ? selinux_file_permission+0x92/0x520 [ 1324.856707] ? security_file_permission+0xb1/0xe0 [ 1324.857938] do_iter_write+0x191/0x700 [ 1324.858946] ? trace_hardirqs_on+0x5b/0x180 [ 1324.860056] vfs_iter_write+0x70/0xa0 [ 1324.861013] iter_file_splice_write+0x726/0xc90 [ 1324.862177] ? generic_splice_sendpage+0x140/0x140 [ 1324.863443] ? security_file_permission+0xb1/0xe0 [ 1324.864656] ? generic_splice_sendpage+0x140/0x140 [ 1324.865898] direct_splice_actor+0x10f/0x170 [ 1324.867030] splice_direct_to_actor+0x387/0x980 [ 1324.868218] ? pipe_to_sendpage+0x380/0x380 [ 1324.869264] ? do_splice_to+0x160/0x160 [ 1324.870306] ? security_file_permission+0xb1/0xe0 [ 1324.871550] do_splice_direct+0x1c4/0x290 [ 1324.872458] ? splice_direct_to_actor+0x980/0x980 [ 1324.873497] ? avc_policy_seqno+0x9/0x70 [ 1324.874454] ? security_file_permission+0xb1/0xe0 [ 1324.875483] do_sendfile+0x553/0x11e0 [ 1324.876299] ? do_pwritev+0x270/0x270 [ 1324.877108] ? wait_for_completion_io+0x270/0x270 [ 1324.878140] ? rcu_read_lock_any_held+0x75/0xa0 [ 1324.879046] ? vfs_write+0x354/0xb10 [ 1324.879792] __x64_sys_sendfile64+0x1d1/0x210 [ 1324.880762] ? __ia32_sys_sendfile+0x220/0x220 [ 1324.881863] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1324.883131] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1324.884255] do_syscall_64+0x33/0x40 [ 1324.885031] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1324.886059] RIP: 0033:0x7fdfc7a14b19 [ 1324.886822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1324.890532] RSP: 002b:00007fdfc4f8a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1324.892191] RAX: ffffffffffffffda RBX: 00007fdfc7b27f60 RCX: 00007fdfc7a14b19 [ 1324.893575] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1324.894868] RBP: 00007fdfc4f8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1324.896354] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1324.897908] R13: 00007ffc53f2cc7f R14: 00007fdfc4f8a300 R15: 0000000000022000 05:53:26 executing program 0: clone3(&(0x7f0000003380)={0x2001000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:53:26 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x0) fallocate(r0, 0x0, 0x0, 0x1000002) 05:53:26 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 8) fallocate(r0, 0x0, 0x0, 0x1000002) 05:53:26 executing program 0: clone3(&(0x7f0000003380)={0x2020000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) [ 1325.044594] FAULT_INJECTION: forcing a failure. [ 1325.044594] name failslab, interval 1, probability 0, space 0, times 0 [ 1325.047559] CPU: 1 PID: 8201 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 1325.049415] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1325.051937] Call Trace: [ 1325.052645] dump_stack+0x107/0x167 [ 1325.053604] should_fail.cold+0x5/0xa [ 1325.054632] ? create_object.isra.0+0x3a/0xa20 [ 1325.055839] should_failslab+0x5/0x20 [ 1325.056842] kmem_cache_alloc+0x5b/0x310 [ 1325.057927] create_object.isra.0+0x3a/0xa20 [ 1325.059103] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1325.060561] kmem_cache_alloc+0x159/0x310 [ 1325.061652] jbd2__journal_start+0x190/0x7e0 [ 1325.062831] __ext4_journal_start_sb+0x214/0x390 [ 1325.064074] ext4_dirty_inode+0xbc/0x130 [ 1325.065136] ? ext4_setattr+0x20f0/0x20f0 [ 1325.066232] __mark_inode_dirty+0x492/0xd40 [ 1325.067274] ? security_inode_need_killpriv+0x79/0xa0 [ 1325.068410] generic_update_time+0x21c/0x370 [ 1325.069350] file_update_time+0x43a/0x520 [ 1325.070198] ? evict_inodes+0x470/0x470 [ 1325.071196] ? down_write_killable+0x180/0x180 [ 1325.072338] file_modified+0x7d/0xa0 [ 1325.073262] ext4_file_write_iter+0x8f8/0x1530 [ 1325.074456] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1325.075585] ? kasan_save_stack+0x32/0x40 [ 1325.076509] ? kasan_save_stack+0x1b/0x40 [ 1325.077351] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1325.078424] ? iter_file_splice_write+0x165/0xc90 [ 1325.079423] ? direct_splice_actor+0x10f/0x170 [ 1325.080358] ? splice_direct_to_actor+0x387/0x980 [ 1325.081350] ? do_splice_direct+0x1c4/0x290 [ 1325.082239] ? do_sendfile+0x553/0x11e0 [ 1325.083052] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1325.084033] ? do_syscall_64+0x33/0x40 [ 1325.084847] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1325.085955] do_iter_readv_writev+0x476/0x750 [ 1325.086918] ? new_sync_write+0x660/0x660 [ 1325.087776] ? avc_policy_seqno+0x9/0x70 [ 1325.088619] ? selinux_file_permission+0x92/0x520 [ 1325.089618] ? security_file_permission+0xb1/0xe0 [ 1325.090624] do_iter_write+0x191/0x700 [ 1325.091432] ? trace_hardirqs_on+0x5b/0x180 [ 1325.092350] vfs_iter_write+0x70/0xa0 [ 1325.093148] iter_file_splice_write+0x726/0xc90 [ 1325.094119] ? generic_splice_sendpage+0x140/0x140 [ 1325.095269] ? security_file_permission+0xb1/0xe0 [ 1325.096278] ? generic_splice_sendpage+0x140/0x140 [ 1325.097489] direct_splice_actor+0x10f/0x170 [ 1325.098484] splice_direct_to_actor+0x387/0x980 [ 1325.099439] ? pipe_to_sendpage+0x380/0x380 [ 1325.100463] ? do_splice_to+0x160/0x160 [ 1325.101384] ? security_file_permission+0xb1/0xe0 [ 1325.102612] do_splice_direct+0x1c4/0x290 [ 1325.103480] ? splice_direct_to_actor+0x980/0x980 [ 1325.104536] ? avc_policy_seqno+0x9/0x70 [ 1325.105372] ? security_file_permission+0xb1/0xe0 [ 1325.106388] do_sendfile+0x553/0x11e0 [ 1325.107304] ? do_pwritev+0x270/0x270 [ 1325.108272] ? wait_for_completion_io+0x270/0x270 [ 1325.109375] ? rcu_read_lock_any_held+0x75/0xa0 [ 1325.110545] ? vfs_write+0x354/0xb10 [ 1325.111350] __x64_sys_sendfile64+0x1d1/0x210 [ 1325.112466] ? __ia32_sys_sendfile+0x220/0x220 [ 1325.113513] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1325.114725] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1325.115942] do_syscall_64+0x33/0x40 [ 1325.116863] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1325.118167] RIP: 0033:0x7f269f6d0b19 [ 1325.119043] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1325.123465] RSP: 002b:00007f269cc46188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1325.125374] RAX: ffffffffffffffda RBX: 00007f269f7e3f60 RCX: 00007f269f6d0b19 [ 1325.127073] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 05:53:26 executing program 4: openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002) [ 1325.128723] RBP: 00007f269cc461d0 R08: 0000000000000000 R09: 0000000000000000 [ 1325.130582] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1325.132317] R13: 00007fff413112bf R14: 00007f269cc46300 R15: 0000000000022000 05:53:26 executing program 0: clone3(&(0x7f0000003380)={0x8000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:53:40 executing program 0: clone3(&(0x7f0000003380)={0x8000001000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:53:40 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x8}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:53:40 executing program 4: openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002) 05:53:40 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 14) fallocate(r0, 0x0, 0x0, 0x1000002) 05:53:40 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000005) fallocate(r0, 0x0, 0x0, 0x1000002) 05:53:40 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x10000000a) fallocate(r0, 0x0, 0x0, 0x1000002) 05:53:40 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 9) fallocate(r0, 0x0, 0x0, 0x1000002) 05:53:40 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 1) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1339.121344] FAULT_INJECTION: forcing a failure. [ 1339.121344] name failslab, interval 1, probability 0, space 0, times 0 [ 1339.122353] FAULT_INJECTION: forcing a failure. [ 1339.122353] name failslab, interval 1, probability 0, space 0, times 0 [ 1339.123908] CPU: 1 PID: 8223 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1339.123932] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1339.130074] Call Trace: [ 1339.130695] dump_stack+0x107/0x167 [ 1339.131534] should_fail.cold+0x5/0xa [ 1339.132399] ? alloc_pipe_info+0x10a/0x590 [ 1339.133379] should_failslab+0x5/0x20 [ 1339.134248] kmem_cache_alloc_trace+0x55/0x320 [ 1339.135317] alloc_pipe_info+0x10a/0x590 [ 1339.136238] splice_direct_to_actor+0x774/0x980 [ 1339.137279] ? _cond_resched+0x12/0x80 [ 1339.138151] ? inode_security+0x107/0x140 [ 1339.139114] ? pipe_to_sendpage+0x380/0x380 [ 1339.140091] ? avc_policy_seqno+0x9/0x70 [ 1339.140991] ? selinux_file_permission+0x92/0x520 [ 1339.142081] ? do_splice_to+0x160/0x160 [ 1339.142988] ? security_file_permission+0xb1/0xe0 [ 1339.144105] do_splice_direct+0x1c4/0x290 [ 1339.145033] ? splice_direct_to_actor+0x980/0x980 [ 1339.146129] ? avc_policy_seqno+0x9/0x70 [ 1339.147099] ? security_file_permission+0xb1/0xe0 [ 1339.148195] do_sendfile+0x553/0x11e0 [ 1339.149058] ? do_pwritev+0x270/0x270 [ 1339.149924] ? wait_for_completion_io+0x270/0x270 [ 1339.151052] ? rcu_read_lock_any_held+0x75/0xa0 [ 1339.152095] ? vfs_write+0x354/0xb10 [ 1339.152925] __x64_sys_sendfile64+0x1d1/0x210 [ 1339.153932] ? __ia32_sys_sendfile+0x220/0x220 [ 1339.154979] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1339.156156] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1339.157303] do_syscall_64+0x33/0x40 [ 1339.158160] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1339.159326] RIP: 0033:0x7fdf91659b19 [ 1339.160162] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1339.164276] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1339.165982] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1339.167590] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1339.169185] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1339.170808] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1339.172419] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 [ 1339.174049] CPU: 0 PID: 8225 Comm: syz-executor.3 Not tainted 5.10.233 #1 [ 1339.175553] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1339.175797] FAULT_INJECTION: forcing a failure. [ 1339.175797] name failslab, interval 1, probability 0, space 0, times 0 [ 1339.177348] Call Trace: [ 1339.177375] dump_stack+0x107/0x167 [ 1339.177397] should_fail.cold+0x5/0xa [ 1339.177425] ? create_object.isra.0+0x3a/0xa20 [ 1339.183008] should_failslab+0x5/0x20 [ 1339.183833] kmem_cache_alloc+0x5b/0x310 [ 1339.184717] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1339.185874] create_object.isra.0+0x3a/0xa20 [ 1339.186845] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1339.187943] kmem_cache_alloc+0x159/0x310 [ 1339.188853] ? __kernel_text_address+0x9/0x40 [ 1339.189836] jbd2__journal_start+0x190/0x7e0 [ 1339.190821] __ext4_journal_start_sb+0x214/0x390 [ 1339.191867] ext4_iomap_begin+0x485/0x700 [ 1339.192782] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1339.193848] ? kasan_save_stack+0x1b/0x40 [ 1339.194767] ? ext4_file_write_iter+0xe0e/0x1530 [ 1339.195801] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1339.197177] ? splice_direct_to_actor+0x387/0x980 [ 1339.198221] ? do_splice_direct+0x1c4/0x290 [ 1339.199182] ? do_sendfile+0x553/0x11e0 [ 1339.200040] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1339.201038] ? do_syscall_64+0x33/0x40 [ 1339.201882] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1339.203062] iomap_apply+0x164/0x810 [ 1339.203875] ? iomap_dio_rw+0x90/0x90 [ 1339.204723] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1339.205975] ? mark_held_locks+0x9e/0xe0 [ 1339.206905] ? filemap_check_errors+0xa5/0x150 [ 1339.207892] __iomap_dio_rw+0x6cd/0x1110 [ 1339.208773] ? iomap_dio_rw+0x90/0x90 [ 1339.209618] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1339.210618] ? ext4_orphan_add+0x253/0x9e0 [ 1339.211553] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1339.212618] ? ext4_empty_dir+0xae0/0xae0 [ 1339.213515] ? jbd2__journal_start+0xf3/0x7e0 [ 1339.214504] iomap_dio_rw+0x31/0x90 [ 1339.215316] ext4_file_write_iter+0xe0e/0x1530 [ 1339.216320] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1339.217308] ? kasan_save_stack+0x32/0x40 [ 1339.218202] ? kasan_save_stack+0x1b/0x40 [ 1339.219117] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1339.220212] ? iter_file_splice_write+0x165/0xc90 [ 1339.221257] ? direct_splice_actor+0x10f/0x170 [ 1339.222248] ? splice_direct_to_actor+0x387/0x980 [ 1339.223307] ? do_splice_direct+0x1c4/0x290 [ 1339.224241] ? do_sendfile+0x553/0x11e0 [ 1339.225103] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1339.226101] ? do_syscall_64+0x33/0x40 [ 1339.226982] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1339.228146] do_iter_readv_writev+0x476/0x750 [ 1339.229129] ? new_sync_write+0x660/0x660 [ 1339.230029] ? avc_policy_seqno+0x9/0x70 [ 1339.230930] ? selinux_file_permission+0x92/0x520 [ 1339.231977] ? security_file_permission+0xb1/0xe0 [ 1339.233047] do_iter_write+0x191/0x700 [ 1339.233898] ? trace_hardirqs_on+0x5b/0x180 [ 1339.234863] vfs_iter_write+0x70/0xa0 [ 1339.235703] iter_file_splice_write+0x726/0xc90 [ 1339.236734] ? generic_splice_sendpage+0x140/0x140 [ 1339.237829] ? security_file_permission+0xb1/0xe0 [ 1339.238895] ? generic_splice_sendpage+0x140/0x140 [ 1339.239965] direct_splice_actor+0x10f/0x170 [ 1339.240929] splice_direct_to_actor+0x387/0x980 [ 1339.241940] ? pipe_to_sendpage+0x380/0x380 [ 1339.242895] ? do_splice_to+0x160/0x160 [ 1339.243758] ? security_file_permission+0xb1/0xe0 [ 1339.244817] do_splice_direct+0x1c4/0x290 [ 1339.245719] ? splice_direct_to_actor+0x980/0x980 [ 1339.246782] ? avc_policy_seqno+0x9/0x70 [ 1339.247674] ? security_file_permission+0xb1/0xe0 [ 1339.248734] do_sendfile+0x553/0x11e0 [ 1339.249574] ? do_pwritev+0x270/0x270 [ 1339.250401] ? wait_for_completion_io+0x270/0x270 [ 1339.251466] ? rcu_read_lock_any_held+0x75/0xa0 [ 1339.252477] ? vfs_write+0x354/0xb10 [ 1339.253289] __x64_sys_sendfile64+0x1d1/0x210 [ 1339.254255] ? __ia32_sys_sendfile+0x220/0x220 [ 1339.255262] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1339.256410] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1339.257538] do_syscall_64+0x33/0x40 [ 1339.258351] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1339.259480] RIP: 0033:0x7fdfc7a14b19 [ 1339.260295] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1339.264286] RSP: 002b:00007fdfc4f8a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1339.265937] RAX: ffffffffffffffda RBX: 00007fdfc7b27f60 RCX: 00007fdfc7a14b19 [ 1339.267505] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1339.269055] RBP: 00007fdfc4f8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1339.270618] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1339.272182] R13: 00007ffc53f2cc7f R14: 00007fdfc4f8a300 R15: 0000000000022000 [ 1339.273770] CPU: 1 PID: 8228 Comm: syz-executor.1 Not tainted 5.10.233 #1 [ 1339.275365] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1339.277225] Call Trace: [ 1339.277827] dump_stack+0x107/0x167 [ 1339.278669] should_fail.cold+0x5/0xa [ 1339.279549] ? jbd2__journal_start+0x190/0x7e0 [ 1339.280590] should_failslab+0x5/0x20 [ 1339.281453] kmem_cache_alloc+0x5b/0x310 [ 1339.282378] jbd2__journal_start+0x190/0x7e0 [ 1339.283406] __ext4_journal_start_sb+0x214/0x390 [ 1339.284478] ext4_dirty_inode+0xbc/0x130 [ 1339.285390] ? ext4_setattr+0x20f0/0x20f0 [ 1339.286345] __mark_inode_dirty+0x492/0xd40 [ 1339.287349] ? security_inode_need_killpriv+0x79/0xa0 [ 1339.288519] generic_update_time+0x21c/0x370 [ 1339.289553] file_update_time+0x43a/0x520 [ 1339.290494] ? evict_inodes+0x470/0x470 [ 1339.291412] ? down_write_killable+0x180/0x180 [ 1339.292457] file_modified+0x7d/0xa0 [ 1339.293286] ext4_file_write_iter+0x8f8/0x1530 [ 1339.294328] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1339.295407] ? kasan_save_stack+0x32/0x40 [ 1339.296601] ? kasan_save_stack+0x1b/0x40 [ 1339.297546] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1339.298747] ? iter_file_splice_write+0x165/0xc90 [ 1339.299833] ? direct_splice_actor+0x10f/0x170 [ 1339.300871] ? splice_direct_to_actor+0x387/0x980 [ 1339.301975] ? do_splice_direct+0x1c4/0x290 [ 1339.302977] ? do_sendfile+0x553/0x11e0 [ 1339.303859] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1339.304838] ? do_syscall_64+0x33/0x40 [ 1339.305786] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1339.307102] do_iter_readv_writev+0x476/0x750 [ 1339.308242] ? new_sync_write+0x660/0x660 [ 1339.309109] ? avc_policy_seqno+0x9/0x70 [ 1339.309964] ? selinux_file_permission+0x92/0x520 [ 1339.310979] ? security_file_permission+0xb1/0xe0 [ 1339.312172] do_iter_write+0x191/0x700 [ 1339.313002] ? trace_hardirqs_on+0x5b/0x180 [ 1339.314160] vfs_iter_write+0x70/0xa0 [ 1339.315053] iter_file_splice_write+0x726/0xc90 [ 1339.316193] ? generic_splice_sendpage+0x140/0x140 [ 1339.317239] ? security_file_permission+0xb1/0xe0 [ 1339.318244] ? generic_splice_sendpage+0x140/0x140 [ 1339.319296] direct_splice_actor+0x10f/0x170 [ 1339.320214] splice_direct_to_actor+0x387/0x980 [ 1339.321365] ? pipe_to_sendpage+0x380/0x380 [ 1339.322550] ? do_splice_to+0x160/0x160 [ 1339.323450] ? security_file_permission+0xb1/0xe0 [ 1339.324472] do_splice_direct+0x1c4/0x290 [ 1339.325344] ? splice_direct_to_actor+0x980/0x980 [ 1339.326368] ? avc_policy_seqno+0x9/0x70 [ 1339.327334] ? security_file_permission+0xb1/0xe0 [ 1339.328428] do_sendfile+0x553/0x11e0 [ 1339.329284] ? do_pwritev+0x270/0x270 [ 1339.330180] ? wait_for_completion_io+0x270/0x270 [ 1339.331211] ? rcu_read_lock_any_held+0x75/0xa0 [ 1339.332182] ? vfs_write+0x354/0xb10 [ 1339.332959] __x64_sys_sendfile64+0x1d1/0x210 [ 1339.334081] ? __ia32_sys_sendfile+0x220/0x220 [ 1339.335359] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1339.336446] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1339.337529] do_syscall_64+0x33/0x40 [ 1339.338315] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1339.339435] RIP: 0033:0x7f269f6d0b19 [ 1339.340361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1339.344882] RSP: 002b:00007f269cc46188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1339.346496] RAX: ffffffffffffffda RBX: 00007f269f7e3f60 RCX: 00007f269f6d0b19 [ 1339.348025] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1339.349792] RBP: 00007f269cc461d0 R08: 0000000000000000 R09: 0000000000000000 [ 1339.351536] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1339.353208] R13: 00007fff413112bf R14: 00007f269cc46300 R15: 0000000000022000 05:53:40 executing program 0: clone3(&(0x7f0000003380)={0x10100000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:53:41 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000006) fallocate(r0, 0x0, 0x0, 0x1000002) 05:53:41 executing program 0: clone3(&(0x7f0000003380)={0x90bc523a550000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:53:41 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 2) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1339.515163] FAULT_INJECTION: forcing a failure. [ 1339.515163] name failslab, interval 1, probability 0, space 0, times 0 [ 1339.517713] CPU: 1 PID: 8244 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1339.519182] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1339.520906] Call Trace: [ 1339.521465] dump_stack+0x107/0x167 [ 1339.522224] should_fail.cold+0x5/0xa [ 1339.523048] ? create_object.isra.0+0x3a/0xa20 [ 1339.524106] should_failslab+0x5/0x20 [ 1339.524907] kmem_cache_alloc+0x5b/0x310 [ 1339.525759] create_object.isra.0+0x3a/0xa20 [ 1339.526684] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1339.527745] kmem_cache_alloc_trace+0x151/0x320 [ 1339.528729] alloc_pipe_info+0x10a/0x590 [ 1339.529583] splice_direct_to_actor+0x774/0x980 [ 1339.530565] ? _cond_resched+0x12/0x80 [ 1339.531395] ? inode_security+0x107/0x140 [ 1339.532267] ? pipe_to_sendpage+0x380/0x380 [ 1339.533164] ? avc_policy_seqno+0x9/0x70 [ 1339.534014] ? selinux_file_permission+0x92/0x520 [ 1339.535033] ? do_splice_to+0x160/0x160 [ 1339.535871] ? security_file_permission+0xb1/0xe0 [ 1339.536888] do_splice_direct+0x1c4/0x290 [ 1339.537764] ? splice_direct_to_actor+0x980/0x980 [ 1339.538778] ? avc_policy_seqno+0x9/0x70 [ 1339.539647] ? security_file_permission+0xb1/0xe0 [ 1339.540667] do_sendfile+0x553/0x11e0 [ 1339.541488] ? do_pwritev+0x270/0x270 [ 1339.542285] ? wait_for_completion_io+0x270/0x270 [ 1339.543317] ? rcu_read_lock_any_held+0x75/0xa0 [ 1339.544298] ? vfs_write+0x354/0xb10 [ 1339.545089] __x64_sys_sendfile64+0x1d1/0x210 [ 1339.546038] ? __ia32_sys_sendfile+0x220/0x220 [ 1339.547019] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1339.548127] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1339.549210] do_syscall_64+0x33/0x40 [ 1339.549995] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1339.551071] RIP: 0033:0x7fdf91659b19 [ 1339.551859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1339.555751] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1339.557347] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1339.558851] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1339.560388] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1339.561884] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1339.563401] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 05:53:41 executing program 0: clone3(&(0x7f0000003380)={0xd0113fd2290000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:53:41 executing program 0: clone3(&(0x7f0000003380)={0xf0f10b1b000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:53:41 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 15) fallocate(r0, 0x0, 0x0, 0x1000002) 05:53:41 executing program 4: openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002) [ 1339.877537] FAULT_INJECTION: forcing a failure. [ 1339.877537] name failslab, interval 1, probability 0, space 0, times 0 [ 1339.880139] CPU: 1 PID: 8256 Comm: syz-executor.3 Not tainted 5.10.233 #1 [ 1339.881621] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1339.883327] Call Trace: [ 1339.883875] dump_stack+0x107/0x167 [ 1339.884622] should_fail.cold+0x5/0xa [ 1339.885417] ? ext4_find_extent+0xa77/0xd70 [ 1339.886329] should_failslab+0x5/0x20 [ 1339.887146] __kmalloc+0x72/0x390 [ 1339.887882] ext4_find_extent+0xa77/0xd70 [ 1339.888793] ext4_ext_map_blocks+0x1c8/0x5830 [ 1339.889734] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1339.890831] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1339.891920] ? ext4_ext_release+0x10/0x10 [ 1339.892786] ? lock_release+0x680/0x680 [ 1339.893602] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1339.894575] ? lock_downgrade+0x6d0/0x6d0 [ 1339.895448] ? down_read+0x10f/0x430 [ 1339.896215] ? down_write+0x160/0x160 [ 1339.896997] ? ext4_es_lookup_extent+0xc4/0xaa0 [ 1339.897959] ext4_map_blocks+0x8e1/0x1910 [ 1339.898826] ? kmem_cache_alloc+0x2a6/0x310 [ 1339.899705] ? __kernel_text_address+0x9/0x40 [ 1339.900625] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1339.901541] ? jbd2__journal_start+0xf3/0x7e0 [ 1339.902460] ? __ext4_journal_start_sb+0x214/0x390 [ 1339.903482] ? __ext4_journal_start_sb+0x1db/0x390 [ 1339.904483] ext4_iomap_begin+0x3ad/0x700 [ 1339.905342] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1339.906343] ? kasan_save_stack+0x1b/0x40 [ 1339.907201] ? ext4_file_write_iter+0xe0e/0x1530 [ 1339.908177] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1339.909471] ? splice_direct_to_actor+0x387/0x980 [ 1339.910443] ? do_splice_direct+0x1c4/0x290 [ 1339.911333] ? do_sendfile+0x553/0x11e0 [ 1339.912132] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1339.913079] ? do_syscall_64+0x33/0x40 [ 1339.913890] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1339.914996] iomap_apply+0x164/0x810 [ 1339.915752] ? iomap_dio_rw+0x90/0x90 [ 1339.916527] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1339.917710] ? mark_held_locks+0x9e/0xe0 [ 1339.918552] ? filemap_check_errors+0xa5/0x150 [ 1339.919497] __iomap_dio_rw+0x6cd/0x1110 [ 1339.920317] ? iomap_dio_rw+0x90/0x90 [ 1339.921102] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1339.922030] ? ext4_orphan_add+0x253/0x9e0 [ 1339.922888] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1339.923879] ? ext4_empty_dir+0xae0/0xae0 [ 1339.924710] ? jbd2__journal_start+0xf3/0x7e0 [ 1339.925625] iomap_dio_rw+0x31/0x90 [ 1339.926367] ext4_file_write_iter+0xe0e/0x1530 [ 1339.927315] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1339.928241] ? kasan_save_stack+0x32/0x40 [ 1339.929089] ? kasan_save_stack+0x1b/0x40 [ 1339.929926] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1339.930968] ? iter_file_splice_write+0x165/0xc90 [ 1339.931947] ? direct_splice_actor+0x10f/0x170 [ 1339.932867] ? splice_direct_to_actor+0x387/0x980 [ 1339.933838] ? do_splice_direct+0x1c4/0x290 [ 1339.934740] ? do_sendfile+0x553/0x11e0 [ 1339.935548] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1339.936485] ? do_syscall_64+0x33/0x40 [ 1339.937270] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1339.938354] do_iter_readv_writev+0x476/0x750 [ 1339.939321] ? new_sync_write+0x660/0x660 [ 1339.940159] ? avc_policy_seqno+0x9/0x70 [ 1339.940971] ? selinux_file_permission+0x92/0x520 [ 1339.941932] ? security_file_permission+0xb1/0xe0 [ 1339.942935] do_iter_write+0x191/0x700 [ 1339.943710] ? trace_hardirqs_on+0x5b/0x180 [ 1339.944576] vfs_iter_write+0x70/0xa0 [ 1339.945343] iter_file_splice_write+0x726/0xc90 [ 1339.946281] ? generic_splice_sendpage+0x140/0x140 [ 1339.947314] ? security_file_permission+0xb1/0xe0 [ 1339.948280] ? generic_splice_sendpage+0x140/0x140 [ 1339.949264] direct_splice_actor+0x10f/0x170 [ 1339.950148] splice_direct_to_actor+0x387/0x980 [ 1339.951125] ? pipe_to_sendpage+0x380/0x380 [ 1339.951989] ? do_splice_to+0x160/0x160 [ 1339.952783] ? security_file_permission+0xb1/0xe0 [ 1339.953760] do_splice_direct+0x1c4/0x290 [ 1339.954591] ? splice_direct_to_actor+0x980/0x980 [ 1339.955595] ? avc_policy_seqno+0x9/0x70 [ 1339.956422] ? security_file_permission+0xb1/0xe0 [ 1339.957406] do_sendfile+0x553/0x11e0 [ 1339.958183] ? do_pwritev+0x270/0x270 [ 1339.958986] ? wait_for_completion_io+0x270/0x270 [ 1339.959954] ? rcu_read_lock_any_held+0x75/0xa0 [ 1339.960880] ? vfs_write+0x354/0xb10 [ 1339.961631] __x64_sys_sendfile64+0x1d1/0x210 [ 1339.962534] ? __ia32_sys_sendfile+0x220/0x220 [ 1339.963457] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1339.964502] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1339.965533] do_syscall_64+0x33/0x40 [ 1339.966282] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1339.967334] RIP: 0033:0x7fdfc7a14b19 [ 1339.968070] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1339.971710] RSP: 002b:00007fdfc4f8a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1339.973216] RAX: ffffffffffffffda RBX: 00007fdfc7b27f60 RCX: 00007fdfc7a14b19 [ 1339.974623] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1339.976048] RBP: 00007fdfc4f8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1339.977463] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1339.978882] R13: 00007ffc53f2cc7f R14: 00007fdfc4f8a300 R15: 0000000000022000 05:53:41 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x10000000c) fallocate(r0, 0x0, 0x0, 0x1000002) 05:53:41 executing program 0: clone3(&(0x7f0000003380)={0xf0ff1f00000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:53:41 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:53:41 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000007) fallocate(r0, 0x0, 0x0, 0x1000002) 05:53:41 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:53:41 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 3) fallocate(r0, 0x0, 0x0, 0x1000002) 05:53:41 executing program 0: clone3(&(0x7f0000003380)={0x100000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:53:41 executing program 0: clone3(&(0x7f0000003380)={0x800000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) [ 1340.285479] FAULT_INJECTION: forcing a failure. [ 1340.285479] name failslab, interval 1, probability 0, space 0, times 0 [ 1340.287783] CPU: 1 PID: 8276 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1340.289288] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1340.290697] Call Trace: [ 1340.291116] dump_stack+0x107/0x167 [ 1340.291702] should_fail.cold+0x5/0xa [ 1340.292328] ? alloc_pipe_info+0x1e5/0x590 [ 1340.293047] should_failslab+0x5/0x20 [ 1340.293677] __kmalloc+0x72/0x390 [ 1340.294235] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1340.295066] alloc_pipe_info+0x1e5/0x590 [ 1340.295725] splice_direct_to_actor+0x774/0x980 [ 1340.296467] ? _cond_resched+0x12/0x80 [ 1340.297090] ? inode_security+0x107/0x140 [ 1340.297745] ? pipe_to_sendpage+0x380/0x380 [ 1340.298433] ? avc_policy_seqno+0x9/0x70 [ 1340.299084] ? selinux_file_permission+0x92/0x520 [ 1340.299859] ? do_splice_to+0x160/0x160 [ 1340.300503] ? security_file_permission+0xb1/0xe0 [ 1340.301286] do_splice_direct+0x1c4/0x290 [ 1340.301958] ? splice_direct_to_actor+0x980/0x980 [ 1340.302735] ? avc_policy_seqno+0x9/0x70 [ 1340.303395] ? security_file_permission+0xb1/0xe0 [ 1340.304209] do_sendfile+0x553/0x11e0 [ 1340.304837] ? do_pwritev+0x270/0x270 [ 1340.305449] ? wait_for_completion_io+0x270/0x270 [ 1340.306233] ? rcu_read_lock_any_held+0x75/0xa0 [ 1340.306983] ? vfs_write+0x354/0xb10 [ 1340.307588] __x64_sys_sendfile64+0x1d1/0x210 [ 1340.308302] ? __ia32_sys_sendfile+0x220/0x220 [ 1340.309136] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1340.310151] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1340.311175] do_syscall_64+0x33/0x40 [ 1340.311857] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1340.312718] RIP: 0033:0x7fdf91659b19 [ 1340.313286] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1340.316166] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1340.317326] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1340.318405] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1340.319529] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1340.320716] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1340.321902] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 05:53:57 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:53:57 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x0) 05:53:57 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000008) fallocate(r0, 0x0, 0x0, 0x1000002) 05:53:57 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 16) fallocate(r0, 0x0, 0x0, 0x1000002) 05:53:57 executing program 0: clone3(&(0x7f0000003380)={0x1100000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:53:57 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x10000000d) fallocate(r0, 0x0, 0x0, 0x1000002) 05:53:57 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 4) fallocate(r0, 0x0, 0x0, 0x1000002) 05:53:57 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000002) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1355.623188] FAULT_INJECTION: forcing a failure. [ 1355.623188] name failslab, interval 1, probability 0, space 0, times 0 [ 1355.625828] CPU: 1 PID: 8290 Comm: syz-executor.3 Not tainted 5.10.233 #1 [ 1355.627682] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1355.629841] Call Trace: [ 1355.630515] dump_stack+0x107/0x167 [ 1355.631385] should_fail.cold+0x5/0xa [ 1355.632510] ? create_object.isra.0+0x3a/0xa20 [ 1355.633557] should_failslab+0x5/0x20 [ 1355.634430] kmem_cache_alloc+0x5b/0x310 [ 1355.635389] create_object.isra.0+0x3a/0xa20 [ 1355.636393] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1355.637562] __kmalloc+0x16e/0x390 [ 1355.638383] ext4_find_extent+0xa77/0xd70 [ 1355.639355] ext4_ext_map_blocks+0x1c8/0x5830 [ 1355.640534] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1355.641766] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1355.643114] ? ext4_ext_release+0x10/0x10 [ 1355.644146] ? lock_release+0x680/0x680 [ 1355.645060] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1355.646135] ? lock_downgrade+0x6d0/0x6d0 [ 1355.647091] ? down_read+0x10f/0x430 [ 1355.647936] ? down_write+0x160/0x160 [ 1355.648804] ? ext4_es_lookup_extent+0xc4/0xaa0 [ 1355.649859] ext4_map_blocks+0x8e1/0x1910 [ 1355.650812] ? kmem_cache_alloc+0x2a6/0x310 [ 1355.651788] ? __kernel_text_address+0x9/0x40 [ 1355.652818] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1355.653834] ? jbd2__journal_start+0xf3/0x7e0 [ 1355.654872] ? __ext4_journal_start_sb+0x214/0x390 [ 1355.655983] ? __ext4_journal_start_sb+0x1db/0x390 [ 1355.657107] ext4_iomap_begin+0x3ad/0x700 [ 1355.658052] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1355.659170] ? kasan_save_stack+0x1b/0x40 [ 1355.660108] ? ext4_file_write_iter+0xe0e/0x1530 [ 1355.661193] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1355.662609] ? splice_direct_to_actor+0x387/0x980 [ 1355.663713] ? do_splice_direct+0x1c4/0x290 [ 1355.664698] ? do_sendfile+0x553/0x11e0 [ 1355.665607] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1355.666667] ? do_syscall_64+0x33/0x40 [ 1355.667569] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1355.668800] iomap_apply+0x164/0x810 [ 1355.669651] ? iomap_dio_rw+0x90/0x90 [ 1355.670511] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1355.671853] ? mark_held_locks+0x9e/0xe0 [ 1355.672776] ? filemap_check_errors+0xa5/0x150 [ 1355.673816] __iomap_dio_rw+0x6cd/0x1110 [ 1355.674727] ? iomap_dio_rw+0x90/0x90 [ 1355.675629] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1355.676674] ? ext4_orphan_add+0x253/0x9e0 [ 1355.677647] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1355.678775] ? ext4_empty_dir+0xae0/0xae0 [ 1355.679723] ? jbd2__journal_start+0xf3/0x7e0 [ 1355.680759] iomap_dio_rw+0x31/0x90 [ 1355.681596] ext4_file_write_iter+0xe0e/0x1530 [ 1355.682658] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1355.683709] ? kasan_save_stack+0x32/0x40 [ 1355.684641] ? kasan_save_stack+0x1b/0x40 [ 1355.685577] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1355.686724] ? iter_file_splice_write+0x165/0xc90 [ 1355.687828] ? direct_splice_actor+0x10f/0x170 [ 1355.688867] ? splice_direct_to_actor+0x387/0x980 [ 1355.689960] ? do_splice_direct+0x1c4/0x290 [ 1355.690943] ? do_sendfile+0x553/0x11e0 [ 1355.691850] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1355.692910] ? do_syscall_64+0x33/0x40 [ 1355.693789] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1355.695008] do_iter_readv_writev+0x476/0x750 [ 1355.696048] ? new_sync_write+0x660/0x660 [ 1355.697008] ? avc_policy_seqno+0x9/0x70 [ 1355.697939] ? selinux_file_permission+0x92/0x520 [ 1355.699028] ? security_file_permission+0xb1/0xe0 [ 1355.700158] do_iter_write+0x191/0x700 [ 1355.701055] ? trace_hardirqs_on+0x5b/0x180 [ 1355.702059] vfs_iter_write+0x70/0xa0 [ 1355.702935] iter_file_splice_write+0x726/0xc90 [ 1355.704029] ? generic_splice_sendpage+0x140/0x140 [ 1355.705171] ? security_file_permission+0xb1/0xe0 [ 1355.706272] ? generic_splice_sendpage+0x140/0x140 [ 1355.707407] direct_splice_actor+0x10f/0x170 [ 1355.708424] splice_direct_to_actor+0x387/0x980 [ 1355.709313] FAULT_INJECTION: forcing a failure. [ 1355.709313] name failslab, interval 1, probability 0, space 0, times 0 [ 1355.709483] ? pipe_to_sendpage+0x380/0x380 [ 1355.712448] ? do_splice_to+0x160/0x160 [ 1355.713354] ? security_file_permission+0xb1/0xe0 [ 1355.714458] do_splice_direct+0x1c4/0x290 [ 1355.715423] ? splice_direct_to_actor+0x980/0x980 [ 1355.716520] ? avc_policy_seqno+0x9/0x70 [ 1355.717456] ? security_file_permission+0xb1/0xe0 [ 1355.718567] do_sendfile+0x553/0x11e0 [ 1355.719453] ? do_pwritev+0x270/0x270 [ 1355.720325] ? wait_for_completion_io+0x270/0x270 [ 1355.721434] ? rcu_read_lock_any_held+0x75/0xa0 [ 1355.722488] ? vfs_write+0x354/0xb10 [ 1355.723352] __x64_sys_sendfile64+0x1d1/0x210 [ 1355.724359] ? __ia32_sys_sendfile+0x220/0x220 [ 1355.725406] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1355.726577] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1355.727743] do_syscall_64+0x33/0x40 [ 1355.728579] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1355.729725] RIP: 0033:0x7fdfc7a14b19 [ 1355.730563] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1355.734686] RSP: 002b:00007fdfc4f8a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1355.736397] RAX: ffffffffffffffda RBX: 00007fdfc7b27f60 RCX: 00007fdfc7a14b19 [ 1355.737993] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1355.739607] RBP: 00007fdfc4f8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1355.741200] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1355.742789] R13: 00007ffc53f2cc7f R14: 00007fdfc4f8a300 R15: 0000000000022000 [ 1355.744426] CPU: 0 PID: 8302 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1355.745663] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1355.747101] Call Trace: [ 1355.747590] dump_stack+0x107/0x167 [ 1355.748239] should_fail.cold+0x5/0xa [ 1355.748910] ? create_object.isra.0+0x3a/0xa20 [ 1355.749737] should_failslab+0x5/0x20 [ 1355.750532] kmem_cache_alloc+0x5b/0x310 [ 1355.751414] create_object.isra.0+0x3a/0xa20 [ 1355.752282] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1355.753282] __kmalloc+0x16e/0x390 [ 1355.754005] alloc_pipe_info+0x1e5/0x590 [ 1355.754831] splice_direct_to_actor+0x774/0x980 [ 1355.755729] ? _cond_resched+0x12/0x80 [ 1355.756401] ? inode_security+0x107/0x140 [ 1355.757136] ? pipe_to_sendpage+0x380/0x380 [ 1355.757891] ? avc_policy_seqno+0x9/0x70 [ 1355.758613] ? selinux_file_permission+0x92/0x520 [ 1355.759496] ? do_splice_to+0x160/0x160 [ 1355.760200] ? security_file_permission+0xb1/0xe0 [ 1355.761054] do_splice_direct+0x1c4/0x290 [ 1355.761793] ? splice_direct_to_actor+0x980/0x980 [ 1355.762644] ? avc_policy_seqno+0x9/0x70 [ 1355.763383] ? security_file_permission+0xb1/0xe0 [ 1355.764243] do_sendfile+0x553/0x11e0 [ 1355.764921] ? do_pwritev+0x270/0x270 [ 1355.765608] ? wait_for_completion_io+0x270/0x270 [ 1355.766474] ? rcu_read_lock_any_held+0x75/0xa0 [ 1355.767328] ? vfs_write+0x354/0xb10 [ 1355.767982] __x64_sys_sendfile64+0x1d1/0x210 [ 1355.768788] ? __ia32_sys_sendfile+0x220/0x220 [ 1355.769618] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1355.770556] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1355.771487] do_syscall_64+0x33/0x40 [ 1355.772142] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1355.773049] RIP: 0033:0x7fdf91659b19 [ 1355.773735] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1355.777097] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1355.778448] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1355.779753] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1355.781048] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1355.782362] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1355.783671] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 05:53:57 executing program 0: clone3(&(0x7f0000003380)={0x3f00000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:53:57 executing program 0: clone3(&(0x7f0000003380)={0x4000000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:53:57 executing program 0: clone3(&(0x7f0000003380)={0xffffffff00000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:53:57 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:53:57 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x0) 05:53:57 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:53:57 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x10000000e) fallocate(r0, 0x0, 0x0, 0x1000002) 05:53:57 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000009) fallocate(r0, 0x0, 0x0, 0x1000002) 05:53:57 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 5) fallocate(r0, 0x0, 0x0, 0x1000002) 05:53:57 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 17) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1356.312238] FAULT_INJECTION: forcing a failure. [ 1356.312238] name failslab, interval 1, probability 0, space 0, times 0 [ 1356.313705] CPU: 0 PID: 8331 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1356.314546] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1356.315808] Call Trace: [ 1356.316148] dump_stack+0x107/0x167 [ 1356.316609] should_fail.cold+0x5/0xa [ 1356.317087] ? iter_file_splice_write+0x165/0xc90 [ 1356.317684] should_failslab+0x5/0x20 [ 1356.318160] __kmalloc+0x72/0x390 [ 1356.318592] iter_file_splice_write+0x165/0xc90 [ 1356.319173] ? __fsnotify_parent+0x47a/0xb10 [ 1356.319734] ? generic_splice_sendpage+0x140/0x140 [ 1356.320340] ? pipe_to_user+0x170/0x170 [ 1356.320838] ? security_file_permission+0xb1/0xe0 [ 1356.321436] ? generic_splice_sendpage+0x140/0x140 [ 1356.322043] direct_splice_actor+0x10f/0x170 [ 1356.322594] splice_direct_to_actor+0x387/0x980 [ 1356.323278] ? pipe_to_sendpage+0x380/0x380 [ 1356.323867] ? do_splice_to+0x160/0x160 [ 1356.324409] ? security_file_permission+0xb1/0xe0 [ 1356.325075] do_splice_direct+0x1c4/0x290 [ 1356.325640] ? splice_direct_to_actor+0x980/0x980 [ 1356.326284] ? avc_policy_seqno+0x9/0x70 [ 1356.326807] ? security_file_permission+0xb1/0xe0 [ 1356.327461] do_sendfile+0x553/0x11e0 [ 1356.327958] ? do_pwritev+0x270/0x270 [ 1356.328466] ? wait_for_completion_io+0x270/0x270 [ 1356.329121] ? rcu_read_lock_any_held+0x75/0xa0 [ 1356.329687] ? vfs_write+0x354/0xb10 [ 1356.330126] __x64_sys_sendfile64+0x1d1/0x210 [ 1356.330640] ? __ia32_sys_sendfile+0x220/0x220 [ 1356.331171] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1356.331835] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1356.332476] do_syscall_64+0x33/0x40 [ 1356.332951] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1356.333591] RIP: 0033:0x7fdf91659b19 [ 1356.334063] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1356.336396] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1356.337377] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1356.338299] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1356.339169] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1356.340080] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1356.340973] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 [ 1356.352872] FAULT_INJECTION: forcing a failure. [ 1356.352872] name failslab, interval 1, probability 0, space 0, times 0 [ 1356.354853] CPU: 0 PID: 8329 Comm: syz-executor.3 Not tainted 5.10.233 #1 [ 1356.355686] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1356.356700] Call Trace: [ 1356.357025] dump_stack+0x107/0x167 [ 1356.357484] should_fail.cold+0x5/0xa [ 1356.357947] ? __es_insert_extent+0xed1/0x1370 [ 1356.358507] should_failslab+0x5/0x20 [ 1356.358969] kmem_cache_alloc+0x5b/0x310 [ 1356.359489] __es_insert_extent+0xed1/0x1370 [ 1356.360025] ? do_raw_read_unlock+0x70/0x70 [ 1356.360557] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1356.361197] ext4_es_insert_extent+0x45d/0xf10 [ 1356.361760] ? ext4_es_scan_clu+0x2e0/0x2e0 [ 1356.362290] ? ext4_es_find_extent_range+0x1cb/0x460 [ 1356.362902] ? lock_downgrade+0x6d0/0x6d0 [ 1356.363413] ? __ext4_handle_dirty_super+0x100/0x100 [ 1356.364048] ? __es_find_extent_range+0x197/0x4b0 [ 1356.364671] ? do_raw_read_unlock+0x3b/0x70 [ 1356.365270] ext4_ext_map_blocks+0x1863/0x5830 [ 1356.365839] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1356.366497] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1356.367158] ? ext4_ext_release+0x10/0x10 [ 1356.367679] ? lock_release+0x680/0x680 [ 1356.368181] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1356.368756] ? lock_downgrade+0x6d0/0x6d0 [ 1356.369271] ? down_read+0x10f/0x430 [ 1356.369729] ? down_write+0x160/0x160 [ 1356.370319] ? ext4_es_lookup_extent+0xc4/0xaa0 [ 1356.370898] ext4_map_blocks+0x8e1/0x1910 [ 1356.371448] ? kmem_cache_alloc+0x2a6/0x310 [ 1356.371994] ? __kernel_text_address+0x9/0x40 [ 1356.372583] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1356.373212] ? jbd2__journal_start+0xf3/0x7e0 [ 1356.373833] ? __ext4_journal_start_sb+0x214/0x390 [ 1356.374503] ? __ext4_journal_start_sb+0x1db/0x390 [ 1356.375160] ext4_iomap_begin+0x3ad/0x700 [ 1356.375740] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1356.376381] ? kasan_save_stack+0x1b/0x40 [ 1356.376865] ? ext4_file_write_iter+0xe0e/0x1530 [ 1356.377427] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1356.378185] ? splice_direct_to_actor+0x387/0x980 [ 1356.378824] ? do_splice_direct+0x1c4/0x290 [ 1356.379403] ? do_sendfile+0x553/0x11e0 [ 1356.379953] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1356.380595] ? do_syscall_64+0x33/0x40 [ 1356.381124] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1356.381827] iomap_apply+0x164/0x810 [ 1356.382358] ? iomap_dio_rw+0x90/0x90 [ 1356.382879] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1356.383663] ? mark_held_locks+0x9e/0xe0 [ 1356.384179] ? filemap_check_errors+0xa5/0x150 [ 1356.384839] __iomap_dio_rw+0x6cd/0x1110 [ 1356.385419] ? iomap_dio_rw+0x90/0x90 [ 1356.385987] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1356.386642] ? ext4_orphan_add+0x253/0x9e0 [ 1356.387257] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1356.387967] ? ext4_empty_dir+0xae0/0xae0 [ 1356.388557] ? jbd2__journal_start+0xf3/0x7e0 [ 1356.389209] iomap_dio_rw+0x31/0x90 [ 1356.389734] ext4_file_write_iter+0xe0e/0x1530 [ 1356.390405] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1356.391057] ? kasan_save_stack+0x32/0x40 [ 1356.391656] ? kasan_save_stack+0x1b/0x40 [ 1356.392252] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1356.392973] ? iter_file_splice_write+0x165/0xc90 [ 1356.393658] ? direct_splice_actor+0x10f/0x170 [ 1356.394307] ? splice_direct_to_actor+0x387/0x980 [ 1356.394999] ? do_splice_direct+0x1c4/0x290 [ 1356.395627] ? do_sendfile+0x553/0x11e0 [ 1356.396205] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1356.396866] ? do_syscall_64+0x33/0x40 [ 1356.397418] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1356.398164] do_iter_readv_writev+0x476/0x750 [ 1356.398806] ? new_sync_write+0x660/0x660 [ 1356.399403] ? avc_policy_seqno+0x9/0x70 [ 1356.399959] ? selinux_file_permission+0x92/0x520 [ 1356.400646] ? security_file_permission+0xb1/0xe0 [ 1356.401348] do_iter_write+0x191/0x700 [ 1356.401903] ? trace_hardirqs_on+0x5b/0x180 [ 1356.402525] vfs_iter_write+0x70/0xa0 [ 1356.403067] iter_file_splice_write+0x726/0xc90 [ 1356.403662] ? generic_splice_sendpage+0x140/0x140 [ 1356.404250] ? security_file_permission+0xb1/0xe0 [ 1356.404807] ? generic_splice_sendpage+0x140/0x140 [ 1356.405385] direct_splice_actor+0x10f/0x170 [ 1356.405956] splice_direct_to_actor+0x387/0x980 [ 1356.406652] ? pipe_to_sendpage+0x380/0x380 [ 1356.407310] ? do_splice_to+0x160/0x160 [ 1356.407843] ? security_file_permission+0xb1/0xe0 [ 1356.408417] do_splice_direct+0x1c4/0x290 [ 1356.408892] ? splice_direct_to_actor+0x980/0x980 [ 1356.409454] ? avc_policy_seqno+0x9/0x70 [ 1356.409936] ? security_file_permission+0xb1/0xe0 [ 1356.410508] do_sendfile+0x553/0x11e0 [ 1356.410959] ? do_pwritev+0x270/0x270 [ 1356.411428] ? wait_for_completion_io+0x270/0x270 [ 1356.412032] ? rcu_read_lock_any_held+0x75/0xa0 [ 1356.412594] ? vfs_write+0x354/0xb10 [ 1356.413051] __x64_sys_sendfile64+0x1d1/0x210 [ 1356.413671] ? __ia32_sys_sendfile+0x220/0x220 [ 1356.414321] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1356.415052] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1356.415796] do_syscall_64+0x33/0x40 [ 1356.416334] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1356.417083] RIP: 0033:0x7fdfc7a14b19 [ 1356.417606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1356.420283] RSP: 002b:00007fdfc4f8a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1356.421327] RAX: ffffffffffffffda RBX: 00007fdfc7b27f60 RCX: 00007fdfc7a14b19 [ 1356.422340] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1356.423411] RBP: 00007fdfc4f8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1356.424337] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1356.425254] R13: 00007ffc53f2cc7f R14: 00007fdfc4f8a300 R15: 0000000000022000 05:54:14 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:54:14 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000003) fallocate(r0, 0x0, 0x0, 0x1000002) 05:54:14 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x10000000a) fallocate(r0, 0x0, 0x0, 0x1000002) 05:54:14 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x0) 05:54:14 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {0x8}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:54:14 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 6) fallocate(r0, 0x0, 0x0, 0x1000002) 05:54:14 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x10000000f) fallocate(r0, 0x0, 0x0, 0x1000002) 05:54:14 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 18) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1373.156630] FAULT_INJECTION: forcing a failure. [ 1373.156630] name failslab, interval 1, probability 0, space 0, times 0 [ 1373.159482] CPU: 1 PID: 8343 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1373.161166] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1373.163426] Call Trace: [ 1373.164109] dump_stack+0x107/0x167 [ 1373.164992] should_fail.cold+0x5/0xa [ 1373.165930] ? create_object.isra.0+0x3a/0xa20 [ 1373.167053] should_failslab+0x5/0x20 [ 1373.167979] kmem_cache_alloc+0x5b/0x310 [ 1373.168956] create_object.isra.0+0x3a/0xa20 [ 1373.170004] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1373.171234] __kmalloc+0x16e/0x390 [ 1373.172109] alloc_pipe_info+0x1e5/0x590 [ 1373.173097] splice_direct_to_actor+0x774/0x980 [ 1373.174232] ? _cond_resched+0x12/0x80 [ 1373.175172] ? inode_security+0x107/0x140 [ 1373.176178] ? pipe_to_sendpage+0x380/0x380 [ 1373.177213] ? avc_policy_seqno+0x9/0x70 [ 1373.178194] ? selinux_file_permission+0x92/0x520 [ 1373.179341] ? do_splice_to+0x160/0x160 [ 1373.180314] ? security_file_permission+0xb1/0xe0 [ 1373.181483] do_splice_direct+0x1c4/0x290 [ 1373.182473] ? splice_direct_to_actor+0x980/0x980 [ 1373.183635] ? avc_policy_seqno+0x9/0x70 [ 1373.184639] ? security_file_permission+0xb1/0xe0 [ 1373.185803] do_sendfile+0x553/0x11e0 [ 1373.186743] ? do_pwritev+0x270/0x270 [ 1373.187677] ? wait_for_completion_io+0x270/0x270 [ 1373.188870] ? rcu_read_lock_any_held+0x75/0xa0 [ 1373.189995] ? vfs_write+0x354/0xb10 [ 1373.190909] __x64_sys_sendfile64+0x1d1/0x210 [ 1373.192023] ? __ia32_sys_sendfile+0x220/0x220 [ 1373.193138] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1373.194416] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1373.195682] do_syscall_64+0x33/0x40 [ 1373.196604] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1373.197853] RIP: 0033:0x7fdf91659b19 05:54:14 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {0x11}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) [ 1373.199083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1373.203926] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1373.205810] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1373.207703] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1373.209598] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1373.211440] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1373.213335] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 [ 1373.228685] FAULT_INJECTION: forcing a failure. [ 1373.228685] name failslab, interval 1, probability 0, space 0, times 0 [ 1373.230105] CPU: 0 PID: 8355 Comm: syz-executor.3 Not tainted 5.10.233 #1 [ 1373.230887] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1373.231855] Call Trace: [ 1373.232164] dump_stack+0x107/0x167 [ 1373.232582] should_fail.cold+0x5/0xa [ 1373.233014] ? create_object.isra.0+0x3a/0xa20 [ 1373.233546] should_failslab+0x5/0x20 [ 1373.233987] kmem_cache_alloc+0x5b/0x310 [ 1373.234460] create_object.isra.0+0x3a/0xa20 [ 1373.234961] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1373.235545] kmem_cache_alloc+0x159/0x310 [ 1373.236030] __es_insert_extent+0xed1/0x1370 [ 1373.236530] ? do_raw_read_unlock+0x70/0x70 [ 1373.237024] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1373.237616] ext4_es_insert_extent+0x45d/0xf10 [ 1373.238135] ? ext4_es_scan_clu+0x2e0/0x2e0 [ 1373.238621] ? ext4_es_find_extent_range+0x1cb/0x460 [ 1373.239191] ? lock_downgrade+0x6d0/0x6d0 [ 1373.239661] ? __ext4_handle_dirty_super+0x100/0x100 [ 1373.240249] ? __es_find_extent_range+0x197/0x4b0 [ 1373.240802] ? do_raw_read_unlock+0x3b/0x70 [ 1373.241292] ext4_ext_map_blocks+0x1863/0x5830 [ 1373.241819] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1373.242416] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1373.243011] ? ext4_ext_release+0x10/0x10 [ 1373.243488] ? lock_release+0x680/0x680 [ 1373.243951] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1373.244487] ? lock_downgrade+0x6d0/0x6d0 [ 1373.244958] ? down_read+0x10f/0x430 [ 1373.245376] ? down_write+0x160/0x160 [ 1373.245805] ? ext4_es_lookup_extent+0xc4/0xaa0 [ 1373.246345] ext4_map_blocks+0x8e1/0x1910 [ 1373.246824] ? kmem_cache_alloc+0x2a6/0x310 [ 1373.247311] ? __kernel_text_address+0x9/0x40 [ 1373.247862] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1373.248397] ? jbd2__journal_start+0xf3/0x7e0 [ 1373.248949] ? __ext4_journal_start_sb+0x214/0x390 [ 1373.249551] ? __ext4_journal_start_sb+0x1db/0x390 [ 1373.250152] ext4_iomap_begin+0x3ad/0x700 [ 1373.250781] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1373.251371] ? kasan_save_stack+0x1b/0x40 [ 1373.251992] ? ext4_file_write_iter+0xe0e/0x1530 [ 1373.252573] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1373.253330] ? splice_direct_to_actor+0x387/0x980 [ 1373.253907] ? do_splice_direct+0x1c4/0x290 [ 1373.254430] ? do_sendfile+0x553/0x11e0 [ 1373.254909] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1373.255468] ? do_syscall_64+0x33/0x40 [ 1373.255956] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1373.256612] iomap_apply+0x164/0x810 [ 1373.257160] ? iomap_dio_rw+0x90/0x90 [ 1373.257624] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1373.258478] ? mark_held_locks+0x9e/0xe0 [ 1373.258984] ? filemap_check_errors+0xa5/0x150 [ 1373.259537] __iomap_dio_rw+0x6cd/0x1110 [ 1373.260139] ? iomap_dio_rw+0x90/0x90 [ 1373.260619] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1373.261295] ? ext4_orphan_add+0x253/0x9e0 [ 1373.261813] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1373.262535] ? ext4_empty_dir+0xae0/0xae0 [ 1373.263037] ? jbd2__journal_start+0xf3/0x7e0 [ 1373.263699] iomap_dio_rw+0x31/0x90 [ 1373.264150] ext4_file_write_iter+0xe0e/0x1530 [ 1373.264716] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1373.265267] ? kasan_save_stack+0x32/0x40 [ 1373.265876] ? kasan_save_stack+0x1b/0x40 [ 1373.266395] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1373.267051] ? iter_file_splice_write+0x165/0xc90 [ 1373.267679] ? direct_splice_actor+0x10f/0x170 [ 1373.268247] ? splice_direct_to_actor+0x387/0x980 [ 1373.268837] ? do_splice_direct+0x1c4/0x290 [ 1373.269372] ? do_sendfile+0x553/0x11e0 [ 1373.269862] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1373.270433] ? do_syscall_64+0x33/0x40 [ 1373.270913] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1373.271572] do_iter_readv_writev+0x476/0x750 [ 1373.272100] ? new_sync_write+0x660/0x660 [ 1373.272544] ? avc_policy_seqno+0x9/0x70 [ 1373.272980] ? selinux_file_permission+0x92/0x520 [ 1373.273499] ? security_file_permission+0xb1/0xe0 [ 1373.274021] do_iter_write+0x191/0x700 [ 1373.274441] ? trace_hardirqs_on+0x5b/0x180 [ 1373.274908] vfs_iter_write+0x70/0xa0 [ 1373.275319] iter_file_splice_write+0x726/0xc90 [ 1373.275835] ? generic_splice_sendpage+0x140/0x140 [ 1373.276434] ? security_file_permission+0xb1/0xe0 [ 1373.277032] ? generic_splice_sendpage+0x140/0x140 [ 1373.277638] direct_splice_actor+0x10f/0x170 [ 1373.278183] splice_direct_to_actor+0x387/0x980 [ 1373.278756] ? pipe_to_sendpage+0x380/0x380 [ 1373.279290] ? do_splice_to+0x160/0x160 [ 1373.279778] ? security_file_permission+0xb1/0xe0 [ 1373.280347] do_splice_direct+0x1c4/0x290 [ 1373.280844] ? splice_direct_to_actor+0x980/0x980 [ 1373.281439] ? avc_policy_seqno+0x9/0x70 [ 1373.281946] ? security_file_permission+0xb1/0xe0 [ 1373.282547] do_sendfile+0x553/0x11e0 [ 1373.283023] ? do_pwritev+0x270/0x270 [ 1373.283500] ? wait_for_completion_io+0x270/0x270 [ 1373.284079] ? rcu_read_lock_any_held+0x75/0xa0 [ 1373.284577] ? vfs_write+0x354/0xb10 [ 1373.284980] __x64_sys_sendfile64+0x1d1/0x210 [ 1373.285461] ? __ia32_sys_sendfile+0x220/0x220 [ 1373.285955] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1373.286521] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1373.287075] do_syscall_64+0x33/0x40 [ 1373.287476] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1373.288056] RIP: 0033:0x7fdfc7a14b19 [ 1373.288521] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1373.290780] RSP: 002b:00007fdfc4f8a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1373.291714] RAX: ffffffffffffffda RBX: 00007fdfc7b27f60 RCX: 00007fdfc7a14b19 [ 1373.292506] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1373.293271] RBP: 00007fdfc4f8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1373.294036] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1373.294800] R13: 00007ffc53f2cc7f R14: 00007fdfc4f8a300 R15: 0000000000022000 05:54:14 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {0x1100}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:54:15 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {0x3f00}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:54:15 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {0x4000}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:54:15 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {0x20010}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:54:15 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x10000000c) fallocate(r0, 0x0, 0x0, 0x1000002) 05:54:31 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 7) fallocate(r0, 0x0, 0x0, 0x1000002) 05:54:31 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 19) fallocate(r0, 0x0, 0x0, 0x1000002) 05:54:31 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:54:31 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000002) fallocate(r0, 0x0, 0x0, 0x1000002) 05:54:31 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000010) fallocate(r0, 0x0, 0x0, 0x1000002) 05:54:31 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {0x20200}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:54:31 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x10000000d) fallocate(r0, 0x0, 0x0, 0x1000002) 05:54:31 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000004) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1389.689401] FAULT_INJECTION: forcing a failure. [ 1389.689401] name failslab, interval 1, probability 0, space 0, times 0 [ 1389.692301] CPU: 1 PID: 8388 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1389.694061] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1389.695915] Call Trace: [ 1389.696530] dump_stack+0x107/0x167 [ 1389.697353] should_fail.cold+0x5/0xa [ 1389.698209] ? jbd2__journal_start+0x190/0x7e0 [ 1389.699244] should_failslab+0x5/0x20 [ 1389.700260] kmem_cache_alloc+0x5b/0x310 [ 1389.701189] jbd2__journal_start+0x190/0x7e0 [ 1389.702210] __ext4_journal_start_sb+0x214/0x390 [ 1389.703283] ext4_dirty_inode+0xbc/0x130 [ 1389.704355] ? ext4_setattr+0x20f0/0x20f0 [ 1389.705502] __mark_inode_dirty+0x492/0xd40 [ 1389.706563] ? security_inode_need_killpriv+0x79/0xa0 [ 1389.707748] generic_update_time+0x21c/0x370 [ 1389.708931] file_update_time+0x43a/0x520 [ 1389.709921] ? evict_inodes+0x470/0x470 [ 1389.710981] ? down_write_killable+0x180/0x180 [ 1389.712228] file_modified+0x7d/0xa0 [ 1389.713181] ext4_file_write_iter+0x8f8/0x1530 [ 1389.714312] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1389.715524] ? kasan_save_stack+0x32/0x40 [ 1389.716656] ? kasan_save_stack+0x1b/0x40 [ 1389.717587] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1389.718722] ? iter_file_splice_write+0x165/0xc90 [ 1389.719864] ? direct_splice_actor+0x10f/0x170 [ 1389.720989] ? splice_direct_to_actor+0x387/0x980 [ 1389.722080] ? do_splice_direct+0x1c4/0x290 [ 1389.723080] ? do_sendfile+0x553/0x11e0 [ 1389.724081] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1389.725396] ? do_syscall_64+0x33/0x40 [ 1389.726283] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1389.727635] do_iter_readv_writev+0x476/0x750 [ 1389.728653] ? new_sync_write+0x660/0x660 [ 1389.729585] ? avc_policy_seqno+0x9/0x70 [ 1389.730638] ? selinux_file_permission+0x92/0x520 [ 1389.732030] ? security_file_permission+0xb1/0xe0 [ 1389.733153] do_iter_write+0x191/0x700 [ 1389.734166] ? trace_hardirqs_on+0x5b/0x180 [ 1389.735150] vfs_iter_write+0x70/0xa0 [ 1389.736019] iter_file_splice_write+0x726/0xc90 [ 1389.737149] ? generic_splice_sendpage+0x140/0x140 [ 1389.738501] ? security_file_permission+0xb1/0xe0 [ 1389.739728] ? generic_splice_sendpage+0x140/0x140 [ 1389.740995] direct_splice_actor+0x10f/0x170 [ 1389.741985] splice_direct_to_actor+0x387/0x980 [ 1389.743042] ? pipe_to_sendpage+0x380/0x380 [ 1389.744067] ? do_splice_to+0x160/0x160 [ 1389.745093] ? security_file_permission+0xb1/0xe0 [ 1389.746407] do_splice_direct+0x1c4/0x290 [ 1389.747337] ? splice_direct_to_actor+0x980/0x980 [ 1389.748590] ? avc_policy_seqno+0x9/0x70 [ 1389.749650] ? security_file_permission+0xb1/0xe0 [ 1389.750959] do_sendfile+0x553/0x11e0 [ 1389.751877] ? do_pwritev+0x270/0x270 [ 1389.752762] ? wait_for_completion_io+0x270/0x270 [ 1389.753862] ? rcu_read_lock_any_held+0x75/0xa0 [ 1389.754910] ? vfs_write+0x354/0xb10 [ 1389.755756] __x64_sys_sendfile64+0x1d1/0x210 [ 1389.756766] ? __ia32_sys_sendfile+0x220/0x220 [ 1389.757793] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1389.759122] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1389.760283] do_syscall_64+0x33/0x40 [ 1389.761150] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1389.762405] RIP: 0033:0x7fdf91659b19 [ 1389.763444] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1389.767844] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1389.769585] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1389.771201] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1389.772825] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1389.774651] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1389.776459] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 05:54:31 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {0x80000}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) [ 1389.834316] FAULT_INJECTION: forcing a failure. [ 1389.834316] name failslab, interval 1, probability 0, space 0, times 0 [ 1389.836905] CPU: 1 PID: 8400 Comm: syz-executor.3 Not tainted 5.10.233 #1 [ 1389.838440] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1389.840330] Call Trace: [ 1389.840937] dump_stack+0x107/0x167 [ 1389.841768] should_fail.cold+0x5/0xa [ 1389.842641] ? create_object.isra.0+0x3a/0xa20 [ 1389.843685] should_failslab+0x5/0x20 [ 1389.844556] kmem_cache_alloc+0x5b/0x310 [ 1389.845493] create_object.isra.0+0x3a/0xa20 [ 1389.846492] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1389.847650] kmem_cache_alloc+0x159/0x310 [ 1389.848612] __es_insert_extent+0xed1/0x1370 [ 1389.849615] ? do_raw_read_unlock+0x70/0x70 [ 1389.850592] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1389.851772] ext4_es_insert_extent+0x45d/0xf10 [ 1389.852828] ? ext4_es_scan_clu+0x2e0/0x2e0 [ 1389.853793] ? ext4_es_find_extent_range+0x1cb/0x460 [ 1389.854937] ? lock_downgrade+0x6d0/0x6d0 [ 1389.855864] ? __ext4_handle_dirty_super+0x100/0x100 [ 1389.857003] ? __es_find_extent_range+0x197/0x4b0 [ 1389.858094] ? do_raw_read_unlock+0x3b/0x70 [ 1389.859068] ext4_ext_map_blocks+0x1863/0x5830 [ 1389.860108] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1389.861294] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1389.862480] ? ext4_ext_release+0x10/0x10 [ 1389.863422] ? lock_release+0x680/0x680 [ 1389.864319] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1389.865397] ? lock_downgrade+0x6d0/0x6d0 [ 1389.866356] ? down_read+0x10f/0x430 [ 1389.867197] ? down_write+0x160/0x160 [ 1389.868058] ? ext4_es_lookup_extent+0xc4/0xaa0 [ 1389.869134] ext4_map_blocks+0x8e1/0x1910 [ 1389.870089] ? kmem_cache_alloc+0x2a6/0x310 [ 1389.871062] ? __kernel_text_address+0x9/0x40 [ 1389.872096] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1389.873120] ? jbd2__journal_start+0xf3/0x7e0 [ 1389.874135] ? __ext4_journal_start_sb+0x214/0x390 [ 1389.875242] ? __ext4_journal_start_sb+0x1db/0x390 [ 1389.876366] ext4_iomap_begin+0x3ad/0x700 [ 1389.877321] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1389.878419] ? kasan_save_stack+0x1b/0x40 [ 1389.879347] ? ext4_file_write_iter+0xe0e/0x1530 [ 1389.880428] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1389.881848] ? splice_direct_to_actor+0x387/0x980 [ 1389.882929] ? do_splice_direct+0x1c4/0x290 [ 1389.883896] ? do_sendfile+0x553/0x11e0 [ 1389.884794] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1389.885835] ? do_syscall_64+0x33/0x40 [ 1389.886707] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1389.887918] iomap_apply+0x164/0x810 [ 1389.888762] ? iomap_dio_rw+0x90/0x90 [ 1389.889623] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1389.890926] ? mark_held_locks+0x9e/0xe0 [ 1389.891850] ? filemap_check_errors+0xa5/0x150 [ 1389.892888] __iomap_dio_rw+0x6cd/0x1110 [ 1389.893797] ? iomap_dio_rw+0x90/0x90 [ 1389.894670] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1389.895703] ? ext4_orphan_add+0x253/0x9e0 [ 1389.896661] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1389.897763] ? ext4_empty_dir+0xae0/0xae0 [ 1389.898701] ? jbd2__journal_start+0xf3/0x7e0 [ 1389.899729] iomap_dio_rw+0x31/0x90 [ 1389.900570] ext4_file_write_iter+0xe0e/0x1530 [ 1389.901622] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1389.902659] ? kasan_save_stack+0x32/0x40 [ 1389.903595] ? kasan_save_stack+0x1b/0x40 [ 1389.904532] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1389.905665] ? iter_file_splice_write+0x165/0xc90 [ 1389.906742] ? direct_splice_actor+0x10f/0x170 [ 1389.907773] ? splice_direct_to_actor+0x387/0x980 [ 1389.908870] ? do_splice_direct+0x1c4/0x290 [ 1389.909841] ? do_sendfile+0x553/0x11e0 [ 1389.910729] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1389.911779] ? do_syscall_64+0x33/0x40 [ 1389.912689] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1389.913893] do_iter_readv_writev+0x476/0x750 [ 1389.914909] ? new_sync_write+0x660/0x660 [ 1389.915856] ? avc_policy_seqno+0x9/0x70 [ 1389.916802] ? selinux_file_permission+0x92/0x520 [ 1389.917914] ? security_file_permission+0xb1/0xe0 [ 1389.919016] do_iter_write+0x191/0x700 [ 1389.919898] ? trace_hardirqs_on+0x5b/0x180 [ 1389.920893] vfs_iter_write+0x70/0xa0 [ 1389.921763] iter_file_splice_write+0x726/0xc90 [ 1389.922823] ? generic_splice_sendpage+0x140/0x140 [ 1389.923959] ? security_file_permission+0xb1/0xe0 [ 1389.925063] ? generic_splice_sendpage+0x140/0x140 [ 1389.926169] direct_splice_actor+0x10f/0x170 [ 1389.927171] splice_direct_to_actor+0x387/0x980 [ 1389.928230] ? pipe_to_sendpage+0x380/0x380 [ 1389.929221] ? do_splice_to+0x160/0x160 [ 1389.930114] ? security_file_permission+0xb1/0xe0 [ 1389.931202] do_splice_direct+0x1c4/0x290 [ 1389.932140] ? splice_direct_to_actor+0x980/0x980 [ 1389.933241] ? avc_policy_seqno+0x9/0x70 [ 1389.934180] ? security_file_permission+0xb1/0xe0 [ 1389.935283] do_sendfile+0x553/0x11e0 [ 1389.936159] ? do_pwritev+0x270/0x270 [ 1389.937028] ? wait_for_completion_io+0x270/0x270 [ 1389.938121] ? rcu_read_lock_any_held+0x75/0xa0 [ 1389.939166] ? vfs_write+0x354/0xb10 [ 1389.940017] __x64_sys_sendfile64+0x1d1/0x210 [ 1389.941041] ? __ia32_sys_sendfile+0x220/0x220 [ 1389.942090] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1389.943278] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1389.944457] do_syscall_64+0x33/0x40 [ 1389.945307] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1389.946464] RIP: 0033:0x7fdfc7a14b19 [ 1389.947313] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1389.951517] RSP: 002b:00007fdfc4f8a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1389.953257] RAX: ffffffffffffffda RBX: 00007fdfc7b27f60 RCX: 00007fdfc7a14b19 [ 1389.954867] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1389.956477] RBP: 00007fdfc4f8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1389.958086] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1389.959700] R13: 00007ffc53f2cc7f R14: 00007fdfc4f8a300 R15: 0000000000022000 05:54:31 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {0x101000}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:54:31 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {0xf0ff1f}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:54:31 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {0x1000000}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:54:46 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:54:46 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000005) fallocate(r0, 0x0, 0x0, 0x1000002) 05:54:46 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x10000000f) fallocate(r0, 0x0, 0x0, 0x1000002) 05:54:46 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 20) fallocate(r0, 0x0, 0x0, 0x1000002) 05:54:46 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {0x8000000}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:54:46 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000011) fallocate(r0, 0x0, 0x0, 0x1000002) 05:54:46 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 8) fallocate(r0, 0x0, 0x0, 0x1000002) 05:54:46 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 1) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1404.891608] FAULT_INJECTION: forcing a failure. [ 1404.891608] name failslab, interval 1, probability 0, space 0, times 0 [ 1404.895146] CPU: 1 PID: 8431 Comm: syz-executor.3 Not tainted 5.10.233 #1 [ 1404.896797] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1404.898838] Call Trace: [ 1404.899492] dump_stack+0x107/0x167 [ 1404.900380] should_fail.cold+0x5/0xa [ 1404.901524] ? create_object.isra.0+0x3a/0xa20 [ 1404.902595] FAULT_INJECTION: forcing a failure. [ 1404.902595] name failslab, interval 1, probability 0, space 0, times 0 [ 1404.902661] should_failslab+0x5/0x20 [ 1404.906060] kmem_cache_alloc+0x5b/0x310 [ 1404.907075] create_object.isra.0+0x3a/0xa20 [ 1404.908175] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1404.909474] __kmalloc+0x16e/0x390 [ 1404.910360] ext4_find_extent+0xa77/0xd70 [ 1404.911385] ? kfree+0xd7/0x340 [ 1404.912224] ext4_ext_map_blocks+0x1c8/0x5830 [ 1404.913391] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1404.914518] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1404.915617] ? ext4_ext_release+0x10/0x10 [ 1404.916488] ? ext4_map_blocks+0x5cd/0x1910 [ 1404.917421] ? lock_release+0x680/0x680 [ 1404.918250] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1404.919232] ? find_held_lock+0x2c/0x110 [ 1404.920090] ? down_write+0xe0/0x160 [ 1404.920863] ? down_write_killable+0x180/0x180 [ 1404.921841] ext4_map_blocks+0x63f/0x1910 [ 1404.922710] ? kmem_cache_alloc+0x2a6/0x310 [ 1404.923613] ? __kernel_text_address+0x9/0x40 [ 1404.924556] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1404.925515] ? jbd2__journal_start+0xf3/0x7e0 [ 1404.926463] ? __ext4_journal_start_sb+0x214/0x390 [ 1404.927486] ? __ext4_journal_start_sb+0x1db/0x390 [ 1404.928534] ext4_iomap_begin+0x3ad/0x700 [ 1404.929433] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1404.930465] ? kasan_save_stack+0x1b/0x40 [ 1404.931337] ? ext4_file_write_iter+0xe0e/0x1530 [ 1404.932324] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1404.933669] ? splice_direct_to_actor+0x387/0x980 [ 1404.934672] ? do_splice_direct+0x1c4/0x290 [ 1404.935563] ? do_sendfile+0x553/0x11e0 [ 1404.936382] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1404.937372] ? do_syscall_64+0x33/0x40 [ 1404.938176] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1404.939283] iomap_apply+0x164/0x810 [ 1404.940057] ? iomap_dio_rw+0x90/0x90 [ 1404.940856] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1404.942087] ? mark_held_locks+0x9e/0xe0 [ 1404.942948] ? filemap_check_errors+0xa5/0x150 [ 1404.943903] __iomap_dio_rw+0x6cd/0x1110 [ 1404.944744] ? iomap_dio_rw+0x90/0x90 [ 1404.945577] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1404.946529] ? ext4_orphan_add+0x253/0x9e0 [ 1404.947420] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1404.948445] ? ext4_empty_dir+0xae0/0xae0 [ 1404.949336] ? jbd2__journal_start+0xf3/0x7e0 [ 1404.950290] iomap_dio_rw+0x31/0x90 [ 1404.951052] ext4_file_write_iter+0xe0e/0x1530 [ 1404.952018] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1404.952995] ? kasan_save_stack+0x32/0x40 [ 1404.953866] ? kasan_save_stack+0x1b/0x40 [ 1404.954725] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1404.955796] ? iter_file_splice_write+0x165/0xc90 [ 1404.956795] ? direct_splice_actor+0x10f/0x170 [ 1404.957761] ? splice_direct_to_actor+0x387/0x980 [ 1404.958764] ? do_splice_direct+0x1c4/0x290 [ 1404.959660] ? do_sendfile+0x553/0x11e0 [ 1404.960482] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1404.961468] ? do_syscall_64+0x33/0x40 [ 1404.962284] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1404.963389] do_iter_readv_writev+0x476/0x750 [ 1404.964329] ? new_sync_write+0x660/0x660 [ 1404.965220] ? avc_policy_seqno+0x9/0x70 [ 1404.966064] ? selinux_file_permission+0x92/0x520 [ 1404.967072] ? security_file_permission+0xb1/0xe0 [ 1404.968088] do_iter_write+0x191/0x700 [ 1404.968904] ? trace_hardirqs_on+0x5b/0x180 [ 1404.969833] vfs_iter_write+0x70/0xa0 [ 1404.970629] iter_file_splice_write+0x726/0xc90 [ 1404.971612] ? generic_splice_sendpage+0x140/0x140 [ 1404.972655] ? security_file_permission+0xb1/0xe0 [ 1404.973693] ? generic_splice_sendpage+0x140/0x140 [ 1404.974715] direct_splice_actor+0x10f/0x170 [ 1404.975639] splice_direct_to_actor+0x387/0x980 [ 1404.976618] ? pipe_to_sendpage+0x380/0x380 [ 1404.977549] ? do_splice_to+0x160/0x160 [ 1404.978380] ? security_file_permission+0xb1/0xe0 [ 1404.979386] do_splice_direct+0x1c4/0x290 [ 1404.980259] ? splice_direct_to_actor+0x980/0x980 [ 1404.981281] ? avc_policy_seqno+0x9/0x70 [ 1404.982133] ? security_file_permission+0xb1/0xe0 [ 1404.983142] do_sendfile+0x553/0x11e0 [ 1404.983958] ? do_pwritev+0x270/0x270 [ 1404.984759] ? wait_for_completion_io+0x270/0x270 [ 1404.985798] ? rcu_read_lock_any_held+0x75/0xa0 [ 1404.986765] ? vfs_write+0x354/0xb10 [ 1404.987548] __x64_sys_sendfile64+0x1d1/0x210 [ 1404.988485] ? __ia32_sys_sendfile+0x220/0x220 [ 1404.989464] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1404.990552] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1404.991627] do_syscall_64+0x33/0x40 [ 1404.992411] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1404.993501] RIP: 0033:0x7fdfc7a14b19 [ 1404.994274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1404.998126] RSP: 002b:00007fdfc4f8a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1404.999710] RAX: ffffffffffffffda RBX: 00007fdfc7b27f60 RCX: 00007fdfc7a14b19 [ 1405.001240] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1405.002736] RBP: 00007fdfc4f8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1405.004231] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1405.005751] R13: 00007ffc53f2cc7f R14: 00007fdfc4f8a300 R15: 0000000000022000 [ 1405.007286] CPU: 0 PID: 8434 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1405.009066] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1405.011083] Call Trace: [ 1405.011661] dump_stack+0x107/0x167 [ 1405.012559] should_fail.cold+0x5/0xa [ 1405.013530] ? create_object.isra.0+0x3a/0xa20 [ 1405.014680] should_failslab+0x5/0x20 [ 1405.015526] kmem_cache_alloc+0x5b/0x310 [ 1405.016514] create_object.isra.0+0x3a/0xa20 [ 1405.017620] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1405.018880] kmem_cache_alloc+0x159/0x310 [ 1405.019787] jbd2__journal_start+0x190/0x7e0 [ 1405.020882] __ext4_journal_start_sb+0x214/0x390 [ 1405.021910] ext4_dirty_inode+0xbc/0x130 [ 1405.022777] ? ext4_setattr+0x20f0/0x20f0 [ 1405.023674] __mark_inode_dirty+0x492/0xd40 [ 1405.024609] ? security_inode_need_killpriv+0x79/0xa0 [ 1405.025728] generic_update_time+0x21c/0x370 [ 1405.026692] file_update_time+0x43a/0x520 [ 1405.027584] ? evict_inodes+0x470/0x470 [ 1405.028445] ? down_write_killable+0x180/0x180 [ 1405.029440] file_modified+0x7d/0xa0 [ 1405.030237] ext4_file_write_iter+0x8f8/0x1530 [ 1405.031227] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1405.032221] ? kasan_save_stack+0x32/0x40 [ 1405.033119] ? kasan_save_stack+0x1b/0x40 [ 1405.034013] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1405.035109] ? iter_file_splice_write+0x165/0xc90 [ 1405.036152] ? direct_splice_actor+0x10f/0x170 [ 1405.037150] ? splice_direct_to_actor+0x387/0x980 [ 1405.038203] ? do_splice_direct+0x1c4/0x290 [ 1405.039145] ? do_sendfile+0x553/0x11e0 [ 1405.040004] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1405.041024] ? do_syscall_64+0x33/0x40 [ 1405.041877] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1405.043047] do_iter_readv_writev+0x476/0x750 [ 1405.044038] ? new_sync_write+0x660/0x660 [ 1405.044939] ? avc_policy_seqno+0x9/0x70 [ 1405.045850] ? selinux_file_permission+0x92/0x520 [ 1405.046914] ? security_file_permission+0xb1/0xe0 [ 1405.047988] do_iter_write+0x191/0x700 [ 1405.048829] ? trace_hardirqs_on+0x5b/0x180 [ 1405.049920] vfs_iter_write+0x70/0xa0 [ 1405.050851] iter_file_splice_write+0x726/0xc90 [ 1405.051883] ? generic_splice_sendpage+0x140/0x140 [ 1405.052995] ? security_file_permission+0xb1/0xe0 [ 1405.054037] ? generic_splice_sendpage+0x140/0x140 [ 1405.055107] direct_splice_actor+0x10f/0x170 [ 1405.056075] splice_direct_to_actor+0x387/0x980 [ 1405.057086] ? pipe_to_sendpage+0x380/0x380 [ 1405.058040] ? do_splice_to+0x160/0x160 [ 1405.058914] ? security_file_permission+0xb1/0xe0 [ 1405.059983] do_splice_direct+0x1c4/0x290 [ 1405.060869] ? splice_direct_to_actor+0x980/0x980 [ 1405.061947] ? avc_policy_seqno+0x9/0x70 [ 1405.062853] ? security_file_permission+0xb1/0xe0 [ 1405.063936] do_sendfile+0x553/0x11e0 [ 1405.064763] ? do_pwritev+0x270/0x270 [ 1405.065620] ? wait_for_completion_io+0x270/0x270 [ 1405.066685] ? rcu_read_lock_any_held+0x75/0xa0 [ 1405.067685] ? vfs_write+0x354/0xb10 [ 1405.068518] __x64_sys_sendfile64+0x1d1/0x210 [ 1405.069520] ? __ia32_sys_sendfile+0x220/0x220 [ 1405.070547] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1405.071711] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1405.072826] do_syscall_64+0x33/0x40 [ 1405.073664] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1405.074802] RIP: 0033:0x7fdf91659b19 [ 1405.075608] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1405.079699] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1405.081419] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1405.083020] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1405.084585] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1405.086204] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1405.087774] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 [ 1405.096344] FAULT_INJECTION: forcing a failure. [ 1405.096344] name failslab, interval 1, probability 0, space 0, times 0 [ 1405.098798] CPU: 1 PID: 8432 Comm: syz-executor.4 Not tainted 5.10.233 #1 [ 1405.100221] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1405.101965] Call Trace: [ 1405.102524] dump_stack+0x107/0x167 [ 1405.103287] should_fail.cold+0x5/0xa [ 1405.104081] ? alloc_pipe_info+0x10a/0x590 [ 1405.104976] should_failslab+0x5/0x20 [ 1405.105797] kmem_cache_alloc_trace+0x55/0x320 [ 1405.106756] alloc_pipe_info+0x10a/0x590 [ 1405.107605] splice_direct_to_actor+0x774/0x980 [ 1405.108578] ? _cond_resched+0x12/0x80 [ 1405.109417] ? inode_security+0x107/0x140 [ 1405.110277] ? pipe_to_sendpage+0x380/0x380 [ 1405.111186] ? avc_policy_seqno+0x9/0x70 [ 1405.112037] ? selinux_file_permission+0x92/0x520 [ 1405.113061] ? do_splice_to+0x160/0x160 [ 1405.113885] ? security_file_permission+0xb1/0xe0 [ 1405.114904] do_splice_direct+0x1c4/0x290 [ 1405.115765] ? splice_direct_to_actor+0x980/0x980 [ 1405.116764] ? avc_policy_seqno+0x9/0x70 [ 1405.117651] ? security_file_permission+0xb1/0xe0 [ 1405.118663] do_sendfile+0x553/0x11e0 [ 1405.119465] ? do_pwritev+0x270/0x270 [ 1405.120260] ? wait_for_completion_io+0x270/0x270 [ 1405.121289] ? rcu_read_lock_any_held+0x75/0xa0 [ 1405.122254] ? vfs_write+0x354/0xb10 [ 1405.123035] __x64_sys_sendfile64+0x1d1/0x210 [ 1405.123969] ? __ia32_sys_sendfile+0x220/0x220 [ 1405.124925] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1405.126115] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1405.127305] do_syscall_64+0x33/0x40 [ 1405.128090] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1405.129180] RIP: 0033:0x7f0e6bf6bb19 [ 1405.129955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1405.133785] RSP: 002b:00007f0e694e1188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1405.135371] RAX: ffffffffffffffda RBX: 00007f0e6c07ef60 RCX: 00007f0e6bf6bb19 [ 1405.136857] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1405.138546] RBP: 00007f0e694e11d0 R08: 0000000000000000 R09: 0000000000000000 [ 1405.140182] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1405.141838] R13: 00007ffec00aeedf R14: 00007f0e694e1300 R15: 0000000000022000 05:54:46 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {0x10000200}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:54:46 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {0x11000000}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:54:46 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 2) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1405.280899] FAULT_INJECTION: forcing a failure. [ 1405.280899] name failslab, interval 1, probability 0, space 0, times 0 [ 1405.283737] CPU: 0 PID: 8447 Comm: syz-executor.4 Not tainted 5.10.233 #1 [ 1405.285302] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1405.287137] Call Trace: [ 1405.287711] dump_stack+0x107/0x167 [ 1405.288521] should_fail.cold+0x5/0xa [ 1405.289378] ? create_object.isra.0+0x3a/0xa20 [ 1405.290396] should_failslab+0x5/0x20 [ 1405.291237] kmem_cache_alloc+0x5b/0x310 [ 1405.292146] create_object.isra.0+0x3a/0xa20 [ 1405.293125] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1405.294256] kmem_cache_alloc_trace+0x151/0x320 [ 1405.295303] alloc_pipe_info+0x10a/0x590 [ 1405.296210] splice_direct_to_actor+0x774/0x980 [ 1405.297259] ? _cond_resched+0x12/0x80 [ 1405.298130] ? inode_security+0x107/0x140 [ 1405.299044] ? pipe_to_sendpage+0x380/0x380 [ 1405.299995] ? avc_policy_seqno+0x9/0x70 [ 1405.300885] ? selinux_file_permission+0x92/0x520 [ 1405.301960] ? do_splice_to+0x160/0x160 [ 1405.302831] ? security_file_permission+0xb1/0xe0 [ 1405.303908] do_splice_direct+0x1c4/0x290 [ 1405.304834] ? splice_direct_to_actor+0x980/0x980 [ 1405.305913] ? avc_policy_seqno+0x9/0x70 [ 1405.306818] ? security_file_permission+0xb1/0xe0 [ 1405.307895] do_sendfile+0x553/0x11e0 [ 1405.308749] ? do_pwritev+0x270/0x270 [ 1405.309606] ? wait_for_completion_io+0x270/0x270 [ 1405.310685] ? rcu_read_lock_any_held+0x75/0xa0 [ 1405.311718] ? vfs_write+0x354/0xb10 [ 1405.312545] __x64_sys_sendfile64+0x1d1/0x210 [ 1405.313548] ? __ia32_sys_sendfile+0x220/0x220 [ 1405.314568] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1405.315728] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1405.316874] do_syscall_64+0x33/0x40 [ 1405.317713] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1405.318854] RIP: 0033:0x7f0e6bf6bb19 [ 1405.319675] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1405.323773] RSP: 002b:00007f0e694e1188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1405.325475] RAX: ffffffffffffffda RBX: 00007f0e6c07ef60 RCX: 00007f0e6bf6bb19 [ 1405.327061] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1405.328647] RBP: 00007f0e694e11d0 R08: 0000000000000000 R09: 0000000000000000 [ 1405.330242] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1405.331820] R13: 00007ffec00aeedf R14: 00007f0e694e1300 R15: 0000000000022000 05:54:46 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {0x1ffff000}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:55:03 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {0x3f000000}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:55:03 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:55:03 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 21) fallocate(r0, 0x0, 0x0, 0x1000002) 05:55:03 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 9) fallocate(r0, 0x0, 0x0, 0x1000002) 05:55:03 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000006) fallocate(r0, 0x0, 0x0, 0x1000002) 05:55:03 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000010) fallocate(r0, 0x0, 0x0, 0x1000002) 05:55:03 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000023) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1421.762524] FAULT_INJECTION: forcing a failure. [ 1421.762524] name failslab, interval 1, probability 0, space 0, times 0 [ 1421.763961] CPU: 0 PID: 8461 Comm: syz-executor.4 Not tainted 5.10.233 #1 [ 1421.764762] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1421.765750] Call Trace: [ 1421.766068] dump_stack+0x107/0x167 [ 1421.766501] should_fail.cold+0x5/0xa [ 1421.766962] ? create_object.isra.0+0x3a/0xa20 [ 1421.767508] should_failslab+0x5/0x20 [ 1421.767964] kmem_cache_alloc+0x5b/0x310 [ 1421.768448] create_object.isra.0+0x3a/0xa20 [ 1421.768971] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1421.769585] kmem_cache_alloc_trace+0x151/0x320 [ 1421.770142] alloc_pipe_info+0x10a/0x590 [ 1421.770627] splice_direct_to_actor+0x774/0x980 [ 1421.771184] ? _cond_resched+0x12/0x80 [ 1421.771645] ? inode_security+0x107/0x140 [ 1421.772138] ? pipe_to_sendpage+0x380/0x380 [ 1421.772649] ? avc_policy_seqno+0x9/0x70 [ 1421.773130] ? selinux_file_permission+0x92/0x520 [ 1421.773707] ? do_splice_to+0x160/0x160 [ 1421.774179] ? security_file_permission+0xb1/0xe0 [ 1421.774755] do_splice_direct+0x1c4/0x290 [ 1421.775251] ? splice_direct_to_actor+0x980/0x980 [ 1421.775821] ? avc_policy_seqno+0x9/0x70 [ 1421.776304] ? security_file_permission+0xb1/0xe0 [ 1421.776880] do_sendfile+0x553/0x11e0 [ 1421.777338] ? do_pwritev+0x270/0x270 [ 1421.777797] ? wait_for_completion_io+0x270/0x270 [ 1421.778371] ? rcu_read_lock_any_held+0x75/0xa0 [ 1421.778923] ? vfs_write+0x354/0xb10 [ 1421.779370] __x64_sys_sendfile64+0x1d1/0x210 [ 1421.779900] ? __ia32_sys_sendfile+0x220/0x220 [ 1421.780445] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1421.781068] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1421.781691] do_syscall_64+0x33/0x40 [ 1421.782135] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1421.782748] RIP: 0033:0x7f0e6bf6bb19 [ 1421.783188] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1421.785374] RSP: 002b:00007f0e694e1188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1421.786279] RAX: ffffffffffffffda RBX: 00007f0e6c07ef60 RCX: 00007f0e6bf6bb19 [ 1421.787131] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1421.787972] RBP: 00007f0e694e11d0 R08: 0000000000000000 R09: 0000000000000000 [ 1421.788823] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1421.789679] R13: 00007ffec00aeedf R14: 00007f0e694e1300 R15: 0000000000022000 05:55:03 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 3) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1421.805243] FAULT_INJECTION: forcing a failure. [ 1421.805243] name failslab, interval 1, probability 0, space 0, times 0 [ 1421.806685] CPU: 0 PID: 8467 Comm: syz-executor.3 Not tainted 5.10.233 #1 [ 1421.807500] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1421.808497] Call Trace: [ 1421.808813] dump_stack+0x107/0x167 [ 1421.809253] should_fail.cold+0x5/0xa [ 1421.809719] ? ext4_mb_new_blocks+0x698/0x45c0 [ 1421.810263] should_failslab+0x5/0x20 [ 1421.810718] kmem_cache_alloc+0x5b/0x310 [ 1421.811207] ext4_mb_new_blocks+0x698/0x45c0 [ 1421.811736] ? trace_hardirqs_on+0x5b/0x180 [ 1421.812250] ? kasan_unpoison_shadow+0x33/0x50 [ 1421.812793] ? ext4_cache_extents+0x68/0x2d0 [ 1421.813313] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1421.813923] ? ext4_discard_preallocations+0xd80/0xd80 [ 1421.814551] ? ext4_ext_search_right+0x2e3/0xbd0 [ 1421.815119] ? ext4_inode_to_goal_block+0x320/0x430 [ 1421.815712] ext4_ext_map_blocks+0x1d49/0x5830 [ 1421.816271] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1421.816893] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1421.817522] ? ext4_ext_release+0x10/0x10 [ 1421.818027] ? ext4_map_blocks+0x5cd/0x1910 [ 1421.818548] ? lock_release+0x680/0x680 [ 1421.819017] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1421.819582] ? find_held_lock+0x2c/0x110 [ 1421.820077] ? down_write_killable+0x180/0x180 [ 1421.820626] ext4_map_blocks+0x63f/0x1910 [ 1421.821124] ? kmem_cache_alloc+0x2a6/0x310 [ 1421.821649] ? __kernel_text_address+0x9/0x40 [ 1421.822186] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1421.822726] ? jbd2__journal_start+0xf3/0x7e0 [ 1421.823263] ? __ext4_journal_start_sb+0x214/0x390 [ 1421.823850] ? __ext4_journal_start_sb+0x1db/0x390 [ 1421.824437] ext4_iomap_begin+0x3ad/0x700 [ 1421.825010] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1421.825655] ? kasan_save_stack+0x1b/0x40 [ 1421.826185] ? ext4_file_write_iter+0xe0e/0x1530 [ 1421.826759] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1421.827250] FAULT_INJECTION: forcing a failure. [ 1421.827250] name failslab, interval 1, probability 0, space 0, times 0 [ 1421.827473] ? splice_direct_to_actor+0x387/0x980 [ 1421.827483] ? do_splice_direct+0x1c4/0x290 [ 1421.827494] ? do_sendfile+0x553/0x11e0 [ 1421.827513] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1421.832196] ? do_syscall_64+0x33/0x40 [ 1421.832671] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1421.833313] iomap_apply+0x164/0x810 [ 1421.833776] ? iomap_dio_rw+0x90/0x90 [ 1421.834236] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1421.834924] ? mark_held_locks+0x9e/0xe0 [ 1421.835414] ? filemap_check_errors+0xa5/0x150 [ 1421.835956] __iomap_dio_rw+0x6cd/0x1110 [ 1421.836446] ? iomap_dio_rw+0x90/0x90 [ 1421.836908] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1421.837450] ? ext4_orphan_add+0x253/0x9e0 [ 1421.837963] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1421.838548] ? ext4_empty_dir+0xae0/0xae0 [ 1421.839042] ? jbd2__journal_start+0xf3/0x7e0 [ 1421.839575] iomap_dio_rw+0x31/0x90 [ 1421.840012] ext4_file_write_iter+0xe0e/0x1530 [ 1421.840563] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1421.841104] ? kasan_save_stack+0x32/0x40 [ 1421.841628] ? kasan_save_stack+0x1b/0x40 [ 1421.842122] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1421.842722] ? iter_file_splice_write+0x165/0xc90 [ 1421.843289] ? direct_splice_actor+0x10f/0x170 [ 1421.843827] ? splice_direct_to_actor+0x387/0x980 [ 1421.844394] ? do_splice_direct+0x1c4/0x290 [ 1421.844902] ? do_sendfile+0x553/0x11e0 [ 1421.845374] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1421.845930] ? do_syscall_64+0x33/0x40 [ 1421.846399] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1421.847047] do_iter_readv_writev+0x476/0x750 [ 1421.847580] ? new_sync_write+0x660/0x660 [ 1421.848072] ? avc_policy_seqno+0x9/0x70 [ 1421.848552] ? selinux_file_permission+0x92/0x520 [ 1421.849131] ? security_file_permission+0xb1/0xe0 [ 1421.849719] do_iter_write+0x191/0x700 [ 1421.850194] ? trace_hardirqs_on+0x5b/0x180 [ 1421.850708] vfs_iter_write+0x70/0xa0 [ 1421.851161] iter_file_splice_write+0x726/0xc90 [ 1421.851717] ? generic_splice_sendpage+0x140/0x140 [ 1421.852310] ? security_file_permission+0xb1/0xe0 [ 1421.852882] ? generic_splice_sendpage+0x140/0x140 [ 1421.853466] direct_splice_actor+0x10f/0x170 [ 1421.853997] splice_direct_to_actor+0x387/0x980 [ 1421.854556] ? pipe_to_sendpage+0x380/0x380 [ 1421.855067] ? do_splice_to+0x160/0x160 [ 1421.855539] ? security_file_permission+0xb1/0xe0 [ 1421.856116] do_splice_direct+0x1c4/0x290 [ 1421.856609] ? splice_direct_to_actor+0x980/0x980 [ 1421.857182] ? avc_policy_seqno+0x9/0x70 [ 1421.857671] ? security_file_permission+0xb1/0xe0 [ 1421.858250] do_sendfile+0x553/0x11e0 [ 1421.858706] ? do_pwritev+0x270/0x270 [ 1421.859162] ? wait_for_completion_io+0x270/0x270 [ 1421.859734] ? rcu_read_lock_any_held+0x75/0xa0 [ 1421.860280] ? vfs_write+0x354/0xb10 [ 1421.860724] __x64_sys_sendfile64+0x1d1/0x210 [ 1421.861256] ? __ia32_sys_sendfile+0x220/0x220 [ 1421.861808] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1421.862430] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1421.863041] do_syscall_64+0x33/0x40 [ 1421.863484] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1421.864094] RIP: 0033:0x7fdfc7a14b19 [ 1421.864542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1421.866743] RSP: 002b:00007fdfc4f8a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1421.867647] RAX: ffffffffffffffda RBX: 00007fdfc7b27f60 RCX: 00007fdfc7a14b19 [ 1421.868491] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1421.869337] RBP: 00007fdfc4f8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1421.870194] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1421.871036] R13: 00007ffc53f2cc7f R14: 00007fdfc4f8a300 R15: 0000000000022000 [ 1421.871914] CPU: 1 PID: 8469 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1421.873537] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1421.875377] Call Trace: [ 1421.875958] dump_stack+0x107/0x167 [ 1421.876774] should_fail.cold+0x5/0xa [ 1421.877637] ? jbd2__journal_start+0x190/0x7e0 [ 1421.878651] should_failslab+0x5/0x20 [ 1421.879490] kmem_cache_alloc+0x5b/0x310 [ 1421.880399] jbd2__journal_start+0x190/0x7e0 [ 1421.881381] __ext4_journal_start_sb+0x214/0x390 [ 1421.882443] ext4_dirty_inode+0xbc/0x130 [ 1421.883336] ? ext4_setattr+0x20f0/0x20f0 [ 1421.884256] __mark_inode_dirty+0x492/0xd40 [ 1421.885211] ? security_inode_need_killpriv+0x79/0xa0 [ 1421.886365] generic_update_time+0x21c/0x370 [ 1421.887338] file_update_time+0x43a/0x520 [ 1421.888261] ? evict_inodes+0x470/0x470 [ 1421.889145] ? down_write_killable+0x180/0x180 [ 1421.890171] file_modified+0x7d/0xa0 [ 1421.890979] ext4_file_write_iter+0x8f8/0x1530 [ 1421.892000] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1421.892998] ? kasan_save_stack+0x32/0x40 [ 1421.893939] ? kasan_save_stack+0x1b/0x40 [ 1421.894848] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1421.895955] ? iter_file_splice_write+0x165/0xc90 [ 1421.897008] ? direct_splice_actor+0x10f/0x170 [ 1421.898029] ? splice_direct_to_actor+0x387/0x980 [ 1421.899093] ? do_splice_direct+0x1c4/0x290 [ 1421.900010] ? do_sendfile+0x553/0x11e0 [ 1421.900845] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1421.901848] ? do_syscall_64+0x33/0x40 [ 1421.902688] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1421.903820] do_iter_readv_writev+0x476/0x750 [ 1421.904778] ? new_sync_write+0x660/0x660 [ 1421.905681] ? avc_policy_seqno+0x9/0x70 [ 1421.906631] ? selinux_file_permission+0x92/0x520 [ 1421.907785] ? security_file_permission+0xb1/0xe0 [ 1421.908945] do_iter_write+0x191/0x700 [ 1421.909950] ? trace_hardirqs_on+0x5b/0x180 [ 1421.910956] vfs_iter_write+0x70/0xa0 [ 1421.911848] iter_file_splice_write+0x726/0xc90 [ 1421.912949] ? generic_splice_sendpage+0x140/0x140 [ 1421.914144] ? security_file_permission+0xb1/0xe0 [ 1421.915281] ? generic_splice_sendpage+0x140/0x140 [ 1421.916417] direct_splice_actor+0x10f/0x170 [ 1421.917444] splice_direct_to_actor+0x387/0x980 [ 1421.918557] ? pipe_to_sendpage+0x380/0x380 [ 1421.919569] ? do_splice_to+0x160/0x160 [ 1421.920490] ? security_file_permission+0xb1/0xe0 [ 1421.921631] do_splice_direct+0x1c4/0x290 [ 1421.922611] ? splice_direct_to_actor+0x980/0x980 [ 1421.923733] ? avc_policy_seqno+0x9/0x70 05:55:03 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {0x40000000}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) [ 1421.924681] ? security_file_permission+0xb1/0xe0 [ 1421.926014] do_sendfile+0x553/0x11e0 [ 1421.926916] ? do_pwritev+0x270/0x270 [ 1421.927794] ? wait_for_completion_io+0x270/0x270 [ 1421.928889] ? rcu_read_lock_any_held+0x75/0xa0 [ 1421.929956] ? vfs_write+0x354/0xb10 [ 1421.930818] __x64_sys_sendfile64+0x1d1/0x210 [ 1421.931832] ? __ia32_sys_sendfile+0x220/0x220 [ 1421.932877] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1421.934097] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1421.935290] do_syscall_64+0x33/0x40 [ 1421.936150] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1421.937315] RIP: 0033:0x7fdf91659b19 05:55:03 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) [ 1421.938181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1421.942705] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1421.944832] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1421.946661] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1421.948360] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1421.949993] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1421.951619] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 05:55:03 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 22) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1422.010111] FAULT_INJECTION: forcing a failure. [ 1422.010111] name failslab, interval 1, probability 0, space 0, times 0 [ 1422.011558] CPU: 0 PID: 8484 Comm: syz-executor.3 Not tainted 5.10.233 #1 [ 1422.012445] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1422.013413] Call Trace: [ 1422.013739] dump_stack+0x107/0x167 [ 1422.014167] should_fail.cold+0x5/0xa [ 1422.014627] ? ext4_mb_new_blocks+0x698/0x45c0 [ 1422.015161] should_failslab+0x5/0x20 [ 1422.015607] kmem_cache_alloc+0x5b/0x310 [ 1422.016085] ext4_mb_new_blocks+0x698/0x45c0 [ 1422.016613] ? trace_hardirqs_on+0x5b/0x180 [ 1422.017121] ? kasan_unpoison_shadow+0x33/0x50 [ 1422.017665] ? ext4_cache_extents+0x68/0x2d0 [ 1422.018182] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1422.018770] ? ext4_discard_preallocations+0xd80/0xd80 [ 1422.019382] ? ext4_ext_search_right+0x2e3/0xbd0 [ 1422.019939] ? ext4_inode_to_goal_block+0x320/0x430 [ 1422.020532] ext4_ext_map_blocks+0x1d49/0x5830 [ 1422.021077] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1422.021695] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1422.022316] ? ext4_ext_release+0x10/0x10 [ 1422.022796] ? ext4_map_blocks+0x5cd/0x1910 [ 1422.023301] ? lock_release+0x680/0x680 [ 1422.023766] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1422.024319] ? find_held_lock+0x2c/0x110 [ 1422.024805] ? down_write_killable+0x180/0x180 [ 1422.025351] ext4_map_blocks+0x63f/0x1910 [ 1422.025848] ? kmem_cache_alloc+0x2a6/0x310 [ 1422.026352] ? __kernel_text_address+0x9/0x40 [ 1422.026879] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1422.027407] ? jbd2__journal_start+0xf3/0x7e0 [ 1422.027938] ? __ext4_journal_start_sb+0x214/0x390 [ 1422.028515] ? __ext4_journal_start_sb+0x1db/0x390 [ 1422.029093] ext4_iomap_begin+0x3ad/0x700 [ 1422.029589] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1422.030165] ? kasan_save_stack+0x1b/0x40 [ 1422.030662] ? ext4_file_write_iter+0xe0e/0x1530 [ 1422.031230] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1422.031960] ? splice_direct_to_actor+0x387/0x980 [ 1422.032527] ? do_splice_direct+0x1c4/0x290 [ 1422.033031] ? do_sendfile+0x553/0x11e0 [ 1422.033499] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1422.034050] ? do_syscall_64+0x33/0x40 [ 1422.034510] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1422.035135] iomap_apply+0x164/0x810 [ 1422.035572] ? iomap_dio_rw+0x90/0x90 [ 1422.036021] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1422.036708] ? mark_held_locks+0x9e/0xe0 [ 1422.037195] ? filemap_check_errors+0xa5/0x150 [ 1422.037738] __iomap_dio_rw+0x6cd/0x1110 [ 1422.038213] ? iomap_dio_rw+0x90/0x90 [ 1422.038672] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1422.039207] ? ext4_orphan_add+0x253/0x9e0 [ 1422.039695] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1422.040268] ? ext4_empty_dir+0xae0/0xae0 [ 1422.040750] ? jbd2__journal_start+0xf3/0x7e0 [ 1422.041287] iomap_dio_rw+0x31/0x90 [ 1422.041724] ext4_file_write_iter+0xe0e/0x1530 [ 1422.042270] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1422.042802] ? kasan_save_stack+0x32/0x40 [ 1422.043286] ? kasan_save_stack+0x1b/0x40 [ 1422.043829] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1422.044532] ? iter_file_splice_write+0x165/0xc90 [ 1422.045203] ? direct_splice_actor+0x10f/0x170 [ 1422.045862] ? splice_direct_to_actor+0x387/0x980 [ 1422.046518] ? do_splice_direct+0x1c4/0x290 [ 1422.047091] ? do_sendfile+0x553/0x11e0 [ 1422.047605] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1422.048215] ? do_syscall_64+0x33/0x40 [ 1422.048739] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1422.049446] do_iter_readv_writev+0x476/0x750 [ 1422.049990] ? new_sync_write+0x660/0x660 [ 1422.050478] ? avc_policy_seqno+0x9/0x70 [ 1422.050953] ? selinux_file_permission+0x92/0x520 [ 1422.051520] ? security_file_permission+0xb1/0xe0 [ 1422.052085] do_iter_write+0x191/0x700 [ 1422.052552] ? trace_hardirqs_on+0x5b/0x180 [ 1422.053056] vfs_iter_write+0x70/0xa0 [ 1422.053499] iter_file_splice_write+0x726/0xc90 [ 1422.054061] ? generic_splice_sendpage+0x140/0x140 [ 1422.054640] ? security_file_permission+0xb1/0xe0 [ 1422.055206] ? generic_splice_sendpage+0x140/0x140 [ 1422.055784] direct_splice_actor+0x10f/0x170 [ 1422.056302] splice_direct_to_actor+0x387/0x980 [ 1422.056846] ? pipe_to_sendpage+0x380/0x380 [ 1422.057353] ? do_splice_to+0x160/0x160 [ 1422.057821] ? security_file_permission+0xb1/0xe0 [ 1422.058393] do_splice_direct+0x1c4/0x290 [ 1422.058880] ? splice_direct_to_actor+0x980/0x980 [ 1422.059438] ? avc_policy_seqno+0x9/0x70 [ 1422.059920] ? security_file_permission+0xb1/0xe0 [ 1422.060490] do_sendfile+0x553/0x11e0 [ 1422.060945] ? do_pwritev+0x270/0x270 [ 1422.061396] ? wait_for_completion_io+0x270/0x270 [ 1422.061971] ? rcu_read_lock_any_held+0x75/0xa0 [ 1422.062515] ? vfs_write+0x354/0xb10 [ 1422.062951] __x64_sys_sendfile64+0x1d1/0x210 [ 1422.063474] ? __ia32_sys_sendfile+0x220/0x220 [ 1422.064008] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1422.064620] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1422.065223] do_syscall_64+0x33/0x40 [ 1422.065669] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1422.066273] RIP: 0033:0x7fdfc7a14b19 [ 1422.066712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1422.068867] RSP: 002b:00007fdfc4f8a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1422.069762] RAX: ffffffffffffffda RBX: 00007fdfc7b27f60 RCX: 00007fdfc7a14b19 [ 1422.070598] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1422.071425] RBP: 00007fdfc4f8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1422.072259] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1422.073088] R13: 00007ffc53f2cc7f R14: 00007fdfc4f8a300 R15: 0000000000022000 05:55:03 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x11, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:55:03 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 23) fallocate(r0, 0x0, 0x0, 0x1000002) 05:55:03 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1100, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) [ 1422.188593] FAULT_INJECTION: forcing a failure. [ 1422.188593] name failslab, interval 1, probability 0, space 0, times 0 [ 1422.190084] CPU: 0 PID: 8492 Comm: syz-executor.3 Not tainted 5.10.233 #1 [ 1422.191016] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1422.191979] Call Trace: [ 1422.192287] dump_stack+0x107/0x167 [ 1422.192722] should_fail.cold+0x5/0xa [ 1422.193170] ? ext4_mb_new_blocks+0x698/0x45c0 [ 1422.193719] should_failslab+0x5/0x20 [ 1422.194161] kmem_cache_alloc+0x5b/0x310 [ 1422.194636] ext4_mb_new_blocks+0x698/0x45c0 [ 1422.195155] ? trace_hardirqs_on+0x5b/0x180 [ 1422.195656] ? kasan_unpoison_shadow+0x33/0x50 [ 1422.196190] ? ext4_cache_extents+0x68/0x2d0 [ 1422.196697] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1422.197292] ? ext4_discard_preallocations+0xd80/0xd80 [ 1422.197917] ? ext4_ext_search_right+0x2e3/0xbd0 [ 1422.198471] ? ext4_inode_to_goal_block+0x320/0x430 [ 1422.199054] ext4_ext_map_blocks+0x1d49/0x5830 [ 1422.199601] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1422.200211] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1422.200825] ? ext4_ext_release+0x10/0x10 [ 1422.201310] ? ext4_map_blocks+0x5cd/0x1910 [ 1422.201818] ? lock_release+0x680/0x680 [ 1422.202279] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1422.202828] ? find_held_lock+0x2c/0x110 [ 1422.203314] ? down_write_killable+0x180/0x180 [ 1422.203857] ext4_map_blocks+0x63f/0x1910 [ 1422.204350] ? kmem_cache_alloc+0x2a6/0x310 [ 1422.204850] ? __kernel_text_address+0x9/0x40 [ 1422.205375] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1422.205913] ? jbd2__journal_start+0xf3/0x7e0 [ 1422.206443] ? __ext4_journal_start_sb+0x214/0x390 [ 1422.207023] ? __ext4_journal_start_sb+0x1db/0x390 [ 1422.207599] ext4_iomap_begin+0x3ad/0x700 [ 1422.208101] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1422.208673] ? kasan_save_stack+0x1b/0x40 [ 1422.209171] ? ext4_file_write_iter+0xe0e/0x1530 [ 1422.209735] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1422.210489] ? splice_direct_to_actor+0x387/0x980 [ 1422.211051] ? do_splice_direct+0x1c4/0x290 [ 1422.211562] ? do_sendfile+0x553/0x11e0 [ 1422.212023] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1422.212572] ? do_syscall_64+0x33/0x40 [ 1422.213031] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1422.213675] iomap_apply+0x164/0x810 [ 1422.214112] ? iomap_dio_rw+0x90/0x90 [ 1422.214563] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1422.215245] ? mark_held_locks+0x9e/0xe0 [ 1422.215737] ? filemap_check_errors+0xa5/0x150 [ 1422.216279] __iomap_dio_rw+0x6cd/0x1110 [ 1422.216756] ? iomap_dio_rw+0x90/0x90 [ 1422.217218] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1422.217761] ? ext4_orphan_add+0x253/0x9e0 [ 1422.218261] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1422.218841] ? ext4_empty_dir+0xae0/0xae0 [ 1422.219330] ? jbd2__journal_start+0xf3/0x7e0 [ 1422.219866] iomap_dio_rw+0x31/0x90 [ 1422.220299] ext4_file_write_iter+0xe0e/0x1530 [ 1422.220839] ? __switch_to+0x572/0xf70 [ 1422.221309] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1422.221856] ? io_schedule_timeout+0x140/0x140 [ 1422.222395] ? do_splice_direct+0x1c4/0x290 [ 1422.222902] ? do_sendfile+0x553/0x11e0 [ 1422.223373] ? do_syscall_64+0x33/0x40 [ 1422.223826] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1422.224461] do_iter_readv_writev+0x476/0x750 [ 1422.224994] ? new_sync_write+0x660/0x660 [ 1422.225486] ? avc_policy_seqno+0x9/0x70 [ 1422.225973] ? selinux_file_permission+0x92/0x520 [ 1422.226543] ? security_file_permission+0xb1/0xe0 [ 1422.227118] do_iter_write+0x191/0x700 [ 1422.227575] ? trace_hardirqs_on+0x5b/0x180 [ 1422.228094] vfs_iter_write+0x70/0xa0 [ 1422.228544] iter_file_splice_write+0x726/0xc90 [ 1422.229103] ? generic_splice_sendpage+0x140/0x140 [ 1422.229695] ? security_file_permission+0xb1/0xe0 [ 1422.230258] ? generic_splice_sendpage+0x140/0x140 [ 1422.230832] direct_splice_actor+0x10f/0x170 [ 1422.231351] splice_direct_to_actor+0x387/0x980 [ 1422.231899] ? pipe_to_sendpage+0x380/0x380 [ 1422.232405] ? do_splice_to+0x160/0x160 [ 1422.232875] ? security_file_permission+0xb1/0xe0 [ 1422.233444] do_splice_direct+0x1c4/0x290 [ 1422.233942] ? splice_direct_to_actor+0x980/0x980 [ 1422.234500] ? avc_policy_seqno+0x9/0x70 [ 1422.234982] ? security_file_permission+0xb1/0xe0 [ 1422.235549] do_sendfile+0x553/0x11e0 [ 1422.236010] ? do_pwritev+0x270/0x270 [ 1422.236459] ? wait_for_completion_io+0x270/0x270 [ 1422.237026] ? rcu_read_lock_any_held+0x75/0xa0 [ 1422.237582] ? vfs_write+0x354/0xb10 [ 1422.238020] __x64_sys_sendfile64+0x1d1/0x210 [ 1422.238553] ? __ia32_sys_sendfile+0x220/0x220 [ 1422.239092] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1422.239711] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1422.240316] do_syscall_64+0x33/0x40 [ 1422.240755] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1422.241360] RIP: 0033:0x7fdfc7a14b19 [ 1422.241802] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1422.243964] RSP: 002b:00007fdfc4f8a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1422.244855] RAX: ffffffffffffffda RBX: 00007fdfc7b27f60 RCX: 00007fdfc7a14b19 [ 1422.245701] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1422.246548] RBP: 00007fdfc4f8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1422.247385] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1422.248219] R13: 00007ffc53f2cc7f R14: 00007fdfc4f8a300 R15: 0000000000022000 05:55:03 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x3f00, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:55:03 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x4000, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:55:03 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 24) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1422.465674] FAULT_INJECTION: forcing a failure. [ 1422.465674] name failslab, interval 1, probability 0, space 0, times 0 [ 1422.468612] CPU: 1 PID: 8501 Comm: syz-executor.3 Not tainted 5.10.233 #1 [ 1422.470002] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1422.471677] Call Trace: [ 1422.472216] dump_stack+0x107/0x167 [ 1422.472956] should_fail.cold+0x5/0xa [ 1422.473738] ? ___slab_alloc+0x155/0x700 [ 1422.474649] ? create_object.isra.0+0x3a/0xa20 [ 1422.475709] should_failslab+0x5/0x20 [ 1422.476590] kmem_cache_alloc+0x5b/0x310 [ 1422.477533] create_object.isra.0+0x3a/0xa20 [ 1422.478577] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1422.479733] kmem_cache_alloc+0x159/0x310 [ 1422.480685] __es_insert_extent+0xed1/0x1370 [ 1422.481731] ext4_es_insert_extent+0x45d/0xf10 [ 1422.482792] ? ext4_es_scan_clu+0x2e0/0x2e0 [ 1422.483777] ? down_write_killable+0x180/0x180 [ 1422.484825] ext4_map_blocks+0x80b/0x1910 [ 1422.485798] ? __kernel_text_address+0x9/0x40 [ 1422.486834] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1422.487860] ? jbd2__journal_start+0xf3/0x7e0 [ 1422.488911] ? __ext4_journal_start_sb+0x214/0x390 [ 1422.490053] ? __ext4_journal_start_sb+0x1db/0x390 [ 1422.491183] ext4_iomap_begin+0x3ad/0x700 [ 1422.492143] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1422.493129] ? kasan_save_stack+0x1b/0x40 [ 1422.493967] ? ext4_file_write_iter+0xe0e/0x1530 [ 1422.494922] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1422.496191] ? splice_direct_to_actor+0x387/0x980 [ 1422.497159] ? do_splice_direct+0x1c4/0x290 [ 1422.498036] ? do_sendfile+0x553/0x11e0 [ 1422.498937] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1422.499996] ? do_syscall_64+0x33/0x40 [ 1422.500883] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1422.502110] iomap_apply+0x164/0x810 [ 1422.502961] ? iomap_dio_rw+0x90/0x90 [ 1422.503838] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1422.505168] ? mark_held_locks+0x9e/0xe0 [ 1422.506130] ? filemap_check_errors+0xa5/0x150 [ 1422.507181] __iomap_dio_rw+0x6cd/0x1110 [ 1422.508111] ? iomap_dio_rw+0x90/0x90 [ 1422.509002] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1422.510058] ? ext4_orphan_add+0x253/0x9e0 [ 1422.511023] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1422.512148] ? ext4_empty_dir+0xae0/0xae0 [ 1422.513090] ? jbd2__journal_start+0xf3/0x7e0 [ 1422.514139] iomap_dio_rw+0x31/0x90 [ 1422.514872] ext4_file_write_iter+0xe0e/0x1530 [ 1422.515798] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1422.516710] ? kasan_save_stack+0x32/0x40 [ 1422.517540] ? kasan_save_stack+0x1b/0x40 [ 1422.518378] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1422.519438] ? iter_file_splice_write+0x165/0xc90 [ 1422.520525] ? direct_splice_actor+0x10f/0x170 [ 1422.521555] ? splice_direct_to_actor+0x387/0x980 [ 1422.522651] ? do_splice_direct+0x1c4/0x290 [ 1422.523626] ? do_sendfile+0x553/0x11e0 [ 1422.524523] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1422.525589] ? do_syscall_64+0x33/0x40 [ 1422.526471] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1422.527690] do_iter_readv_writev+0x476/0x750 [ 1422.528709] ? new_sync_write+0x660/0x660 [ 1422.529652] ? avc_policy_seqno+0x9/0x70 [ 1422.530575] ? selinux_file_permission+0x92/0x520 [ 1422.531670] ? security_file_permission+0xb1/0xe0 [ 1422.532769] do_iter_write+0x191/0x700 [ 1422.533603] ? trace_hardirqs_on+0x5b/0x180 [ 1422.534470] vfs_iter_write+0x70/0xa0 [ 1422.535231] iter_file_splice_write+0x726/0xc90 [ 1422.536180] ? generic_splice_sendpage+0x140/0x140 [ 1422.537169] ? security_file_permission+0xb1/0xe0 [ 1422.538145] ? generic_splice_sendpage+0x140/0x140 [ 1422.539116] direct_splice_actor+0x10f/0x170 [ 1422.540093] splice_direct_to_actor+0x387/0x980 [ 1422.541173] ? pipe_to_sendpage+0x380/0x380 [ 1422.542183] ? do_splice_to+0x160/0x160 [ 1422.543101] ? security_file_permission+0xb1/0xe0 [ 1422.544224] do_splice_direct+0x1c4/0x290 [ 1422.545183] ? splice_direct_to_actor+0x980/0x980 [ 1422.546309] ? avc_policy_seqno+0x9/0x70 [ 1422.547259] ? security_file_permission+0xb1/0xe0 [ 1422.548386] do_sendfile+0x553/0x11e0 [ 1422.549283] ? do_pwritev+0x270/0x270 [ 1422.550181] ? wait_for_completion_io+0x270/0x270 [ 1422.551300] ? rcu_read_lock_any_held+0x75/0xa0 [ 1422.552351] ? vfs_write+0x354/0xb10 [ 1422.553117] __x64_sys_sendfile64+0x1d1/0x210 [ 1422.554040] ? __ia32_sys_sendfile+0x220/0x220 [ 1422.554979] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1422.556049] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1422.557105] do_syscall_64+0x33/0x40 [ 1422.557882] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1422.559020] RIP: 0033:0x7fdfc7a14b19 [ 1422.559877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1422.564112] RSP: 002b:00007fdfc4f8a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1422.565870] RAX: ffffffffffffffda RBX: 00007fdfc7b27f60 RCX: 00007fdfc7a14b19 [ 1422.567472] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1422.569090] RBP: 00007fdfc4f8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1422.570630] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1422.572029] R13: 00007ffc53f2cc7f R14: 00007fdfc4f8a300 R15: 0000000000022000 05:55:16 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20010, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:55:16 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 4) fallocate(r0, 0x0, 0x0, 0x1000002) 05:55:16 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 10) fallocate(r0, 0x0, 0x0, 0x1000002) 05:55:16 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000168) fallocate(r0, 0x0, 0x0, 0x1000002) 05:55:16 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000011) fallocate(r0, 0x0, 0x0, 0x1000002) 05:55:16 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000007) fallocate(r0, 0x0, 0x0, 0x1000002) 05:55:16 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 25) fallocate(r0, 0x0, 0x0, 0x1000002) 05:55:16 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) [ 1435.379165] FAULT_INJECTION: forcing a failure. [ 1435.379165] name failslab, interval 1, probability 0, space 0, times 0 [ 1435.382741] CPU: 0 PID: 8509 Comm: syz-executor.4 Not tainted 5.10.233 #1 [ 1435.384732] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1435.387316] Call Trace: [ 1435.388093] dump_stack+0x107/0x167 [ 1435.389163] should_fail.cold+0x5/0xa [ 1435.390291] ? create_object.isra.0+0x3a/0xa20 [ 1435.391627] should_failslab+0x5/0x20 [ 1435.392740] kmem_cache_alloc+0x5b/0x310 [ 1435.393936] create_object.isra.0+0x3a/0xa20 [ 1435.395231] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1435.396720] __kmalloc+0x16e/0x390 [ 1435.397771] alloc_pipe_info+0x1e5/0x590 [ 1435.398975] splice_direct_to_actor+0x774/0x980 [ 1435.400341] ? avc_policy_seqno+0x9/0x70 [ 1435.401535] ? __sanitizer_cov_trace_pc+0x45/0x60 [ 1435.402951] ? pipe_to_sendpage+0x380/0x380 [ 1435.404213] ? avc_policy_seqno+0x9/0x70 [ 1435.405403] ? selinux_file_permission+0x92/0x520 [ 1435.406834] ? do_splice_to+0x160/0x160 [ 1435.408012] ? security_file_permission+0xb1/0xe0 [ 1435.409449] do_splice_direct+0x1c4/0x290 [ 1435.410686] ? splice_direct_to_actor+0x980/0x980 [ 1435.412111] ? avc_policy_seqno+0x9/0x70 [ 1435.413321] ? security_file_permission+0xb1/0xe0 [ 1435.414768] do_sendfile+0x553/0x11e0 [ 1435.415760] ? do_pwritev+0x270/0x270 [ 1435.416742] ? wait_for_completion_io+0x270/0x270 [ 1435.417984] ? rcu_read_lock_any_held+0x75/0xa0 [ 1435.419184] ? vfs_write+0x354/0xb10 [ 1435.420142] __x64_sys_sendfile64+0x1d1/0x210 [ 1435.421294] ? __ia32_sys_sendfile+0x220/0x220 [ 1435.422491] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1435.423842] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1435.425167] do_syscall_64+0x33/0x40 [ 1435.426131] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1435.427444] RIP: 0033:0x7f0e6bf6bb19 [ 1435.428398] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1435.433125] RSP: 002b:00007f0e694e1188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1435.435089] RAX: ffffffffffffffda RBX: 00007f0e6c07ef60 RCX: 00007f0e6bf6bb19 [ 1435.436928] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1435.438784] RBP: 00007f0e694e11d0 R08: 0000000000000000 R09: 0000000000000000 [ 1435.440633] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1435.442481] R13: 00007ffec00aeedf R14: 00007f0e694e1300 R15: 0000000000022000 [ 1435.453321] FAULT_INJECTION: forcing a failure. [ 1435.453321] name failslab, interval 1, probability 0, space 0, times 0 [ 1435.455807] CPU: 1 PID: 8511 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1435.457280] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1435.459072] Call Trace: [ 1435.459640] dump_stack+0x107/0x167 [ 1435.460422] should_fail.cold+0x5/0xa [ 1435.461240] ? create_object.isra.0+0x3a/0xa20 [ 1435.462238] should_failslab+0x5/0x20 [ 1435.463058] kmem_cache_alloc+0x5b/0x310 [ 1435.463930] create_object.isra.0+0x3a/0xa20 [ 1435.464864] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1435.465954] kmem_cache_alloc+0x159/0x310 [ 1435.466860] jbd2__journal_start+0x190/0x7e0 [ 1435.467809] __ext4_journal_start_sb+0x214/0x390 [ 1435.468843] ext4_file_write_iter+0xee9/0x1530 [ 1435.469835] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1435.470823] ? kasan_save_stack+0x32/0x40 [ 1435.471706] ? kasan_save_stack+0x1b/0x40 [ 1435.472588] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1435.473676] ? iter_file_splice_write+0x165/0xc90 [ 1435.474925] ? direct_splice_actor+0x10f/0x170 [ 1435.475869] ? splice_direct_to_actor+0x387/0x980 [ 1435.476872] ? do_splice_direct+0x1c4/0x290 [ 1435.477761] ? do_sendfile+0x553/0x11e0 [ 1435.478611] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1435.479657] ? do_syscall_64+0x33/0x40 [ 1435.480561] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1435.481685] do_iter_readv_writev+0x476/0x750 [ 1435.482646] ? new_sync_write+0x660/0x660 [ 1435.483523] ? avc_policy_seqno+0x9/0x70 [ 1435.484380] ? selinux_file_permission+0x92/0x520 [ 1435.485391] ? security_file_permission+0xb1/0xe0 [ 1435.486423] do_iter_write+0x191/0x700 [ 1435.487240] ? trace_hardirqs_on+0x5b/0x180 [ 1435.488154] vfs_iter_write+0x70/0xa0 [ 1435.488950] iter_file_splice_write+0x726/0xc90 [ 1435.489936] ? generic_splice_sendpage+0x140/0x140 [ 1435.490987] ? security_file_permission+0xb1/0xe0 [ 1435.492005] ? generic_splice_sendpage+0x140/0x140 [ 1435.493029] direct_splice_actor+0x10f/0x170 [ 1435.493951] splice_direct_to_actor+0x387/0x980 [ 1435.494936] ? pipe_to_sendpage+0x380/0x380 [ 1435.495842] ? do_splice_to+0x160/0x160 [ 1435.496673] ? security_file_permission+0xb1/0xe0 [ 1435.497696] do_splice_direct+0x1c4/0x290 [ 1435.498589] ? splice_direct_to_actor+0x980/0x980 [ 1435.499606] ? avc_policy_seqno+0x9/0x70 [ 1435.500463] ? security_file_permission+0xb1/0xe0 [ 1435.501483] do_sendfile+0x553/0x11e0 [ 1435.502303] ? do_pwritev+0x270/0x270 [ 1435.503103] ? wait_for_completion_io+0x270/0x270 [ 1435.504127] ? rcu_read_lock_any_held+0x75/0xa0 [ 1435.505100] ? vfs_write+0x354/0xb10 [ 1435.505884] __x64_sys_sendfile64+0x1d1/0x210 [ 1435.506825] ? __ia32_sys_sendfile+0x220/0x220 [ 1435.507787] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1435.508893] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1435.509978] do_syscall_64+0x33/0x40 [ 1435.510774] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1435.511848] RIP: 0033:0x7fdf91659b19 [ 1435.512627] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1435.516477] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1435.518084] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1435.519579] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1435.521084] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1435.522581] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1435.524075] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 [ 1435.545241] FAULT_INJECTION: forcing a failure. [ 1435.545241] name failslab, interval 1, probability 0, space 0, times 0 [ 1435.548115] CPU: 0 PID: 8522 Comm: syz-executor.3 Not tainted 5.10.233 #1 [ 1435.549737] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1435.551547] Call Trace: [ 1435.552124] dump_stack+0x107/0x167 [ 1435.552910] should_fail.cold+0x5/0xa [ 1435.553741] ? mempool_alloc+0x148/0x360 [ 1435.554624] ? mempool_free_pages+0x20/0x20 [ 1435.555561] should_failslab+0x5/0x20 [ 1435.556379] kmem_cache_alloc+0x5b/0x310 [ 1435.557267] ? mempool_free_pages+0x20/0x20 [ 1435.558211] mempool_alloc+0x148/0x360 [ 1435.559051] ? mempool_resize+0x7d0/0x7d0 [ 1435.559946] ? lock_downgrade+0x6d0/0x6d0 [ 1435.560849] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1435.561932] bio_alloc_bioset+0x36e/0x600 [ 1435.562841] ? bvec_alloc+0x2f0/0x2f0 [ 1435.563676] ? iov_iter_npages+0x1fd/0xa70 [ 1435.564596] iomap_dio_bio_actor+0x518/0xef0 [ 1435.565594] iomap_dio_actor+0x36f/0x560 [ 1435.566498] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1435.567518] ? do_syscall_64+0x33/0x40 [ 1435.568360] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1435.569532] iomap_apply+0x289/0x810 [ 1435.570346] ? iomap_dio_rw+0x90/0x90 [ 1435.571184] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1435.572446] ? mark_held_locks+0x9e/0xe0 [ 1435.573341] ? filemap_check_errors+0xa5/0x150 [ 1435.574429] __iomap_dio_rw+0x6cd/0x1110 [ 1435.575306] ? iomap_dio_rw+0x90/0x90 [ 1435.576165] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1435.577177] ? ext4_orphan_add+0x253/0x9e0 [ 1435.578112] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1435.579187] ? ext4_empty_dir+0xae0/0xae0 [ 1435.580091] ? jbd2__journal_start+0xf3/0x7e0 [ 1435.581071] iomap_dio_rw+0x31/0x90 [ 1435.581872] ext4_file_write_iter+0xe0e/0x1530 [ 1435.582880] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1435.583876] ? kasan_save_stack+0x32/0x40 [ 1435.584778] ? kasan_save_stack+0x1b/0x40 [ 1435.585663] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1435.586755] ? iter_file_splice_write+0x165/0xc90 [ 1435.587787] ? direct_splice_actor+0x10f/0x170 [ 1435.588761] ? splice_direct_to_actor+0x387/0x980 [ 1435.589814] ? do_splice_direct+0x1c4/0x290 [ 1435.590746] ? do_sendfile+0x553/0x11e0 [ 1435.591591] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1435.592585] ? do_syscall_64+0x33/0x40 [ 1435.593418] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1435.594595] do_iter_readv_writev+0x476/0x750 [ 1435.595569] ? new_sync_write+0x660/0x660 [ 1435.596455] ? avc_policy_seqno+0x9/0x70 [ 1435.597327] ? selinux_file_permission+0x92/0x520 [ 1435.598451] ? security_file_permission+0xb1/0xe0 [ 1435.599173] do_iter_write+0x191/0x700 [ 1435.599724] ? trace_hardirqs_on+0x5b/0x180 [ 1435.600344] vfs_iter_write+0x70/0xa0 [ 1435.600890] iter_file_splice_write+0x726/0xc90 [ 1435.601550] ? generic_splice_sendpage+0x140/0x140 [ 1435.602277] ? security_file_permission+0xb1/0xe0 [ 1435.602963] ? generic_splice_sendpage+0x140/0x140 [ 1435.603648] direct_splice_actor+0x10f/0x170 [ 1435.604287] splice_direct_to_actor+0x387/0x980 [ 1435.604945] ? pipe_to_sendpage+0x380/0x380 [ 1435.605566] ? do_splice_to+0x160/0x160 [ 1435.606142] ? security_file_permission+0xb1/0xe0 [ 1435.606866] do_splice_direct+0x1c4/0x290 [ 1435.607443] ? splice_direct_to_actor+0x980/0x980 [ 1435.608127] ? avc_policy_seqno+0x9/0x70 [ 1435.608700] ? security_file_permission+0xb1/0xe0 [ 1435.609388] do_sendfile+0x553/0x11e0 [ 1435.609937] ? do_pwritev+0x270/0x270 [ 1435.610501] ? wait_for_completion_io+0x270/0x270 [ 1435.611191] ? rcu_read_lock_any_held+0x75/0xa0 [ 1435.611795] ? vfs_write+0x354/0xb10 [ 1435.612301] __x64_sys_sendfile64+0x1d1/0x210 [ 1435.612975] ? __ia32_sys_sendfile+0x220/0x220 [ 1435.613653] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1435.614390] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1435.615135] do_syscall_64+0x33/0x40 [ 1435.615674] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1435.616405] RIP: 0033:0x7fdfc7a14b19 [ 1435.616948] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1435.619601] RSP: 002b:00007fdfc4f8a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1435.620687] RAX: ffffffffffffffda RBX: 00007fdfc7b27f60 RCX: 00007fdfc7a14b19 [ 1435.621701] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1435.622729] RBP: 00007fdfc4f8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1435.623754] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1435.624775] R13: 00007ffc53f2cc7f R14: 00007fdfc4f8a300 R15: 0000000000022000 05:55:17 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20200, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:55:17 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x80000, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:55:17 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x101000, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:55:17 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf0ff1f, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:55:17 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x1000001da) fallocate(r0, 0x0, 0x0, 0x1000002) 05:55:17 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 5) fallocate(r0, 0x0, 0x0, 0x1000002) 05:55:17 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000008) fallocate(r0, 0x0, 0x0, 0x1000002) 05:55:17 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 26) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1436.102550] FAULT_INJECTION: forcing a failure. [ 1436.102550] name failslab, interval 1, probability 0, space 0, times 0 [ 1436.105579] CPU: 0 PID: 8544 Comm: syz-executor.4 Not tainted 5.10.233 #1 [ 1436.107332] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1436.109309] Call Trace: [ 1436.109951] dump_stack+0x107/0x167 [ 1436.110832] should_fail.cold+0x5/0xa [ 1436.111754] ? iter_file_splice_write+0x165/0xc90 [ 1436.112906] should_failslab+0x5/0x20 [ 1436.113821] __kmalloc+0x72/0x390 [ 1436.114668] iter_file_splice_write+0x165/0xc90 [ 1436.115777] ? __fsnotify_parent+0x47a/0xb10 [ 1436.116845] ? generic_splice_sendpage+0x140/0x140 [ 1436.118027] ? pipe_to_user+0x170/0x170 [ 1436.119004] ? security_file_permission+0xb1/0xe0 [ 1436.120154] ? generic_splice_sendpage+0x140/0x140 [ 1436.121327] direct_splice_actor+0x10f/0x170 [ 1436.122382] splice_direct_to_actor+0x387/0x980 [ 1436.123489] ? pipe_to_sendpage+0x380/0x380 [ 1436.124506] ? do_splice_to+0x160/0x160 [ 1436.125440] ? security_file_permission+0xb1/0xe0 [ 1436.126615] do_splice_direct+0x1c4/0x290 [ 1436.127585] ? splice_direct_to_actor+0x980/0x980 [ 1436.128713] ? avc_policy_seqno+0x9/0x70 [ 1436.129696] ? security_file_permission+0xb1/0xe0 [ 1436.130880] do_sendfile+0x553/0x11e0 [ 1436.131789] ? do_pwritev+0x270/0x270 [ 1436.132706] ? wait_for_completion_io+0x270/0x270 [ 1436.133877] ? rcu_read_lock_any_held+0x75/0xa0 [ 1436.134982] ? vfs_write+0x354/0xb10 [ 1436.135868] __x64_sys_sendfile64+0x1d1/0x210 [ 1436.136925] ? __ia32_sys_sendfile+0x220/0x220 [ 1436.138039] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1436.139314] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1436.140547] do_syscall_64+0x33/0x40 [ 1436.141447] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1436.142677] RIP: 0033:0x7f0e6bf6bb19 [ 1436.143576] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1436.147985] RSP: 002b:00007f0e694e1188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1436.149789] RAX: ffffffffffffffda RBX: 00007f0e6c07ef60 RCX: 00007f0e6bf6bb19 [ 1436.151500] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1436.153194] RBP: 00007f0e694e11d0 R08: 0000000000000000 R09: 0000000000000000 [ 1436.154909] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1436.156601] R13: 00007ffec00aeedf R14: 00007f0e694e1300 R15: 0000000000022000 [ 1436.164691] FAULT_INJECTION: forcing a failure. [ 1436.164691] name failslab, interval 1, probability 0, space 0, times 0 [ 1436.167441] CPU: 0 PID: 8546 Comm: syz-executor.3 Not tainted 5.10.233 #1 [ 1436.169076] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1436.171107] Call Trace: [ 1436.171744] dump_stack+0x107/0x167 [ 1436.172609] should_fail.cold+0x5/0xa [ 1436.173518] ? create_object.isra.0+0x3a/0xa20 [ 1436.174605] should_failslab+0x5/0x20 [ 1436.175497] kmem_cache_alloc+0x5b/0x310 [ 1436.176459] create_object.isra.0+0x3a/0xa20 [ 1436.177480] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1436.178716] kmem_cache_alloc+0x159/0x310 [ 1436.179729] __es_insert_extent+0xed1/0x1370 [ 1436.180807] ext4_es_insert_extent+0x45d/0xf10 [ 1436.181903] ? ext4_es_scan_clu+0x2e0/0x2e0 [ 1436.182986] ? down_write_killable+0x180/0x180 [ 1436.184104] ext4_map_blocks+0x80b/0x1910 [ 1436.185112] ? __kernel_text_address+0x9/0x40 [ 1436.186207] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1436.187279] ? jbd2__journal_start+0xf3/0x7e0 [ 1436.188373] ? __ext4_journal_start_sb+0x214/0x390 [ 1436.189545] ? __ext4_journal_start_sb+0x1db/0x390 [ 1436.190754] ext4_iomap_begin+0x3ad/0x700 [ 1436.191768] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1436.192948] ? kasan_save_stack+0x1b/0x40 [ 1436.193946] ? ext4_file_write_iter+0xe0e/0x1530 [ 1436.195110] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1436.196638] ? splice_direct_to_actor+0x387/0x980 [ 1436.197774] ? do_splice_direct+0x1c4/0x290 [ 1436.198808] ? do_sendfile+0x553/0x11e0 [ 1436.199756] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1436.200870] ? do_syscall_64+0x33/0x40 [ 1436.201801] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1436.203196] iomap_apply+0x164/0x810 [ 1436.204263] ? iomap_dio_rw+0x90/0x90 [ 1436.205346] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1436.206995] ? mark_held_locks+0x9e/0xe0 [ 1436.208163] ? filemap_check_errors+0xa5/0x150 [ 1436.209463] __iomap_dio_rw+0x6cd/0x1110 [ 1436.210621] ? iomap_dio_rw+0x90/0x90 [ 1436.211732] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1436.213021] ? ext4_orphan_add+0x253/0x9e0 [ 1436.214222] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1436.215605] ? ext4_empty_dir+0xae0/0xae0 [ 1436.216768] ? jbd2__journal_start+0xf3/0x7e0 [ 1436.218061] iomap_dio_rw+0x31/0x90 [ 1436.219099] ext4_file_write_iter+0xe0e/0x1530 [ 1436.220410] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1436.221696] ? kasan_save_stack+0x32/0x40 [ 1436.222879] ? kasan_save_stack+0x1b/0x40 [ 1436.224043] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1436.225468] ? iter_file_splice_write+0x165/0xc90 [ 1436.226833] ? direct_splice_actor+0x10f/0x170 [ 1436.228098] ? splice_direct_to_actor+0x387/0x980 [ 1436.229366] ? do_splice_direct+0x1c4/0x290 [ 1436.230473] ? do_sendfile+0x553/0x11e0 [ 1436.231443] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1436.232656] ? do_syscall_64+0x33/0x40 [ 1436.233681] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1436.235062] do_iter_readv_writev+0x476/0x750 [ 1436.236127] ? new_sync_write+0x660/0x660 [ 1436.237081] ? avc_policy_seqno+0x9/0x70 [ 1436.238012] ? selinux_file_permission+0x92/0x520 [ 1436.239134] ? security_file_permission+0xb1/0xe0 [ 1436.240382] do_iter_write+0x191/0x700 [ 1436.241451] ? trace_hardirqs_on+0x5b/0x180 [ 1436.242657] vfs_iter_write+0x70/0xa0 [ 1436.243721] iter_file_splice_write+0x726/0xc90 [ 1436.245020] ? generic_splice_sendpage+0x140/0x140 [ 1436.246432] ? security_file_permission+0xb1/0xe0 [ 1436.247756] ? generic_splice_sendpage+0x140/0x140 [ 1436.249102] direct_splice_actor+0x10f/0x170 [ 1436.250253] splice_direct_to_actor+0x387/0x980 [ 1436.251464] ? pipe_to_sendpage+0x380/0x380 [ 1436.252618] ? do_splice_to+0x160/0x160 [ 1436.253739] ? security_file_permission+0xb1/0xe0 [ 1436.255122] do_splice_direct+0x1c4/0x290 [ 1436.256292] ? splice_direct_to_actor+0x980/0x980 [ 1436.257649] ? avc_policy_seqno+0x9/0x70 [ 1436.258815] ? security_file_permission+0xb1/0xe0 [ 1436.260191] do_sendfile+0x553/0x11e0 [ 1436.261269] ? do_pwritev+0x270/0x270 [ 1436.262351] ? wait_for_completion_io+0x270/0x270 [ 1436.263709] ? rcu_read_lock_any_held+0x75/0xa0 [ 1436.264993] ? vfs_write+0x354/0xb10 [ 1436.265961] __x64_sys_sendfile64+0x1d1/0x210 [ 1436.267030] ? __ia32_sys_sendfile+0x220/0x220 [ 1436.268104] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1436.269330] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1436.270558] do_syscall_64+0x33/0x40 [ 1436.271446] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1436.272643] RIP: 0033:0x7fdfc7a14b19 [ 1436.273514] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1436.278311] RSP: 002b:00007fdfc4f8a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1436.280448] RAX: ffffffffffffffda RBX: 00007fdfc7b27f60 RCX: 00007fdfc7a14b19 [ 1436.282458] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1436.284429] RBP: 00007fdfc4f8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1436.286448] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1436.288447] R13: 00007ffc53f2cc7f R14: 00007fdfc4f8a300 R15: 0000000000022000 05:55:18 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1000000, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:55:18 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 11) fallocate(r0, 0x0, 0x0, 0x1000002) 05:55:18 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000023) fallocate(r0, 0x0, 0x0, 0x1000002) 05:55:18 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 6) fallocate(r0, 0x0, 0x0, 0x1000002) 05:55:18 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) [ 1436.451537] FAULT_INJECTION: forcing a failure. [ 1436.451537] name failslab, interval 1, probability 0, space 0, times 0 [ 1436.453283] CPU: 0 PID: 8554 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1436.454242] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1436.455183] Call Trace: [ 1436.455488] dump_stack+0x107/0x167 [ 1436.455915] should_fail.cold+0x5/0xa [ 1436.456355] ? jbd2__journal_start+0x190/0x7e0 [ 1436.456893] should_failslab+0x5/0x20 [ 1436.457346] kmem_cache_alloc+0x5b/0x310 [ 1436.457812] jbd2__journal_start+0x190/0x7e0 [ 1436.458327] __ext4_journal_start_sb+0x214/0x390 [ 1436.458870] ext4_file_write_iter+0xee9/0x1530 [ 1436.459395] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1436.459911] ? kasan_save_stack+0x32/0x40 [ 1436.460377] ? kasan_save_stack+0x1b/0x40 [ 1436.460842] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1436.461435] ? iter_file_splice_write+0x165/0xc90 [ 1436.461983] ? direct_splice_actor+0x10f/0x170 [ 1436.462506] ? splice_direct_to_actor+0x387/0x980 [ 1436.463055] ? do_splice_direct+0x1c4/0x290 [ 1436.463546] ? do_sendfile+0x553/0x11e0 [ 1436.463998] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1436.464518] ? do_syscall_64+0x33/0x40 [ 1436.464988] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1436.465587] do_iter_readv_writev+0x476/0x750 [ 1436.466115] ? new_sync_write+0x660/0x660 [ 1436.466575] ? avc_policy_seqno+0x9/0x70 [ 1436.467043] ? selinux_file_permission+0x92/0x520 [ 1436.467581] ? security_file_permission+0xb1/0xe0 [ 1436.468140] do_iter_write+0x191/0x700 [ 1436.468578] ? trace_hardirqs_on+0x5b/0x180 [ 1436.469085] vfs_iter_write+0x70/0xa0 [ 1436.469518] iter_file_splice_write+0x726/0xc90 [ 1436.470061] ? generic_splice_sendpage+0x140/0x140 [ 1436.470628] ? security_file_permission+0xb1/0xe0 [ 1436.471175] ? generic_splice_sendpage+0x140/0x140 [ 1436.471732] direct_splice_actor+0x10f/0x170 [ 1436.472224] splice_direct_to_actor+0x387/0x980 [ 1436.472751] ? pipe_to_sendpage+0x380/0x380 [ 1436.473264] ? do_splice_to+0x160/0x160 [ 1436.473713] ? security_file_permission+0xb1/0xe0 [ 1436.474264] do_splice_direct+0x1c4/0x290 [ 1436.474733] ? splice_direct_to_actor+0x980/0x980 [ 1436.475290] ? avc_policy_seqno+0x9/0x70 [ 1436.475754] ? security_file_permission+0xb1/0xe0 [ 1436.476299] do_sendfile+0x553/0x11e0 [ 1436.476739] ? do_pwritev+0x270/0x270 [ 1436.477205] ? wait_for_completion_io+0x270/0x270 [ 1436.477757] ? rcu_read_lock_any_held+0x75/0xa0 [ 1436.478289] ? vfs_write+0x354/0xb10 [ 1436.478713] __x64_sys_sendfile64+0x1d1/0x210 [ 1436.479218] ? __ia32_sys_sendfile+0x220/0x220 [ 1436.479728] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1436.480316] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1436.480914] do_syscall_64+0x33/0x40 [ 1436.481357] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1436.481929] RIP: 0033:0x7fdf91659b19 [ 1436.482365] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1436.484450] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1436.485336] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1436.486157] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1436.486967] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1436.487772] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1436.488574] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 [ 1436.527320] FAULT_INJECTION: forcing a failure. [ 1436.527320] name failslab, interval 1, probability 0, space 0, times 0 [ 1436.528825] CPU: 0 PID: 8562 Comm: syz-executor.4 Not tainted 5.10.233 #1 [ 1436.529639] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1436.530746] Call Trace: [ 1436.531133] dump_stack+0x107/0x167 [ 1436.531656] should_fail.cold+0x5/0xa [ 1436.532203] ? create_object.isra.0+0x3a/0xa20 [ 1436.532849] should_failslab+0x5/0x20 [ 1436.533394] kmem_cache_alloc+0x5b/0x310 [ 1436.533957] ? igrab+0xc0/0xc0 [ 1436.534429] create_object.isra.0+0x3a/0xa20 [ 1436.535058] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1436.535775] __kmalloc+0x16e/0x390 [ 1436.536276] iter_file_splice_write+0x165/0xc90 [ 1436.536930] ? __fsnotify_parent+0x47a/0xb10 [ 1436.537557] ? generic_splice_sendpage+0x140/0x140 [ 1436.538255] ? pipe_to_user+0x170/0x170 [ 1436.538789] ? security_file_permission+0xb1/0xe0 [ 1436.539396] ? generic_splice_sendpage+0x140/0x140 [ 1436.540049] direct_splice_actor+0x10f/0x170 [ 1436.540633] splice_direct_to_actor+0x387/0x980 [ 1436.541256] ? pipe_to_sendpage+0x380/0x380 [ 1436.541832] ? do_splice_to+0x160/0x160 [ 1436.542377] ? security_file_permission+0xb1/0xe0 [ 1436.543032] do_splice_direct+0x1c4/0x290 [ 1436.543585] ? splice_direct_to_actor+0x980/0x980 [ 1436.544241] ? avc_policy_seqno+0x9/0x70 [ 1436.544789] ? security_file_permission+0xb1/0xe0 [ 1436.545448] do_sendfile+0x553/0x11e0 [ 1436.545980] ? do_pwritev+0x270/0x270 [ 1436.546503] ? wait_for_completion_io+0x270/0x270 [ 1436.547153] ? rcu_read_lock_any_held+0x75/0xa0 [ 1436.547773] ? vfs_write+0x354/0xb10 [ 1436.548282] __x64_sys_sendfile64+0x1d1/0x210 [ 1436.548885] ? __ia32_sys_sendfile+0x220/0x220 [ 1436.549498] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1436.550206] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1436.550916] do_syscall_64+0x33/0x40 [ 1436.551437] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1436.552151] RIP: 0033:0x7f0e6bf6bb19 [ 1436.552674] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1436.555226] RSP: 002b:00007f0e694e1188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1436.556292] RAX: ffffffffffffffda RBX: 00007f0e6c07ef60 RCX: 00007f0e6bf6bb19 [ 1436.557285] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1436.558287] RBP: 00007f0e694e11d0 R08: 0000000000000000 R09: 0000000000000000 [ 1436.559284] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1436.560277] R13: 00007ffec00aeedf R14: 00007f0e694e1300 R15: 0000000000022000 05:55:18 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000000, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:55:18 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x10000200, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:55:18 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x11000000, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:55:18 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 12) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1436.858726] FAULT_INJECTION: forcing a failure. [ 1436.858726] name failslab, interval 1, probability 0, space 0, times 0 [ 1436.860614] CPU: 1 PID: 8575 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1436.861661] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1436.863158] Call Trace: [ 1436.863533] dump_stack+0x107/0x167 [ 1436.864140] should_fail.cold+0x5/0xa [ 1436.864823] ? create_object.isra.0+0x3a/0xa20 [ 1436.865596] should_failslab+0x5/0x20 [ 1436.866219] kmem_cache_alloc+0x5b/0x310 [ 1436.866903] create_object.isra.0+0x3a/0xa20 [ 1436.867520] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1436.868241] kmem_cache_alloc+0x159/0x310 [ 1436.868827] jbd2__journal_start+0x190/0x7e0 [ 1436.869448] __ext4_journal_start_sb+0x214/0x390 [ 1436.870122] ext4_file_write_iter+0xee9/0x1530 [ 1436.871002] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1436.871642] ? kasan_save_stack+0x32/0x40 [ 1436.872222] ? kasan_save_stack+0x1b/0x40 [ 1436.872830] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1436.873594] ? iter_file_splice_write+0x165/0xc90 [ 1436.874377] ? direct_splice_actor+0x10f/0x170 [ 1436.875016] ? splice_direct_to_actor+0x387/0x980 [ 1436.875907] ? do_splice_direct+0x1c4/0x290 [ 1436.876542] ? do_sendfile+0x553/0x11e0 [ 1436.877171] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1436.877856] ? do_syscall_64+0x33/0x40 [ 1436.878627] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1436.879470] do_iter_readv_writev+0x476/0x750 [ 1436.880195] ? new_sync_write+0x660/0x660 [ 1436.880978] ? avc_policy_seqno+0x9/0x70 [ 1436.881641] ? selinux_file_permission+0x92/0x520 [ 1436.882511] ? security_file_permission+0xb1/0xe0 [ 1436.883302] do_iter_write+0x191/0x700 [ 1436.883931] ? trace_hardirqs_on+0x5b/0x180 [ 1436.884708] vfs_iter_write+0x70/0xa0 [ 1436.885335] iter_file_splice_write+0x726/0xc90 [ 1436.886062] ? generic_splice_sendpage+0x140/0x140 [ 1436.886973] ? security_file_permission+0xb1/0xe0 [ 1436.887698] ? generic_splice_sendpage+0x140/0x140 [ 1436.888444] direct_splice_actor+0x10f/0x170 [ 1436.889033] splice_direct_to_actor+0x387/0x980 [ 1436.889665] ? pipe_to_sendpage+0x380/0x380 [ 1436.890260] ? do_splice_to+0x160/0x160 [ 1436.891039] ? security_file_permission+0xb1/0xe0 [ 1436.891771] do_splice_direct+0x1c4/0x290 [ 1436.892439] ? splice_direct_to_actor+0x980/0x980 [ 1436.893266] ? avc_policy_seqno+0x9/0x70 [ 1436.893925] ? security_file_permission+0xb1/0xe0 [ 1436.894760] do_sendfile+0x553/0x11e0 [ 1436.895394] ? do_pwritev+0x270/0x270 [ 1436.896001] ? wait_for_completion_io+0x270/0x270 [ 1436.896876] ? rcu_read_lock_any_held+0x75/0xa0 [ 1436.897631] ? vfs_write+0x354/0xb10 [ 1436.898245] __x64_sys_sendfile64+0x1d1/0x210 [ 1436.899045] ? __ia32_sys_sendfile+0x220/0x220 [ 1436.899762] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1436.900676] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1436.901481] do_syscall_64+0x33/0x40 [ 1436.902045] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1436.902945] RIP: 0033:0x7fdf91659b19 [ 1436.903509] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1436.905992] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1436.907018] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1436.907982] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1436.908935] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1436.909891] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1436.910858] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 05:55:33 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 13) fallocate(r0, 0x0, 0x0, 0x1000002) 05:55:33 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000009) fallocate(r0, 0x0, 0x0, 0x1000002) 05:55:33 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000164) fallocate(r0, 0x0, 0x0, 0x1000002) 05:55:33 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) [ 1451.805355] FAULT_INJECTION: forcing a failure. [ 1451.805355] name failslab, interval 1, probability 0, space 0, times 0 [ 1451.808130] CPU: 1 PID: 8581 Comm: syz-executor.6 Not tainted 5.10.233 #1 05:55:33 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1ffff000, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) [ 1451.809785] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1451.812193] Call Trace: [ 1451.812927] dump_stack+0x107/0x167 [ 1451.813919] should_fail.cold+0x5/0xa [ 1451.814983] ? jbd2__journal_start+0x190/0x7e0 [ 1451.816230] should_failslab+0x5/0x20 [ 1451.817270] kmem_cache_alloc+0x5b/0x310 05:55:33 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000300) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1451.818395] ? __kernel_text_address+0x9/0x40 [ 1451.819859] jbd2__journal_start+0x190/0x7e0 05:55:33 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 27) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1451.821289] __ext4_journal_start_sb+0x214/0x390 [ 1451.822775] ext4_iomap_begin+0x485/0x700 [ 1451.823924] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1451.825254] ? kasan_save_stack+0x1b/0x40 [ 1451.826384] ? ext4_file_write_iter+0xe0e/0x1530 05:55:33 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 7) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1451.827927] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1451.829884] ? splice_direct_to_actor+0x387/0x980 [ 1451.831207] ? do_splice_direct+0x1c4/0x290 [ 1451.832384] ? do_sendfile+0x553/0x11e0 [ 1451.833463] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1451.834732] ? do_syscall_64+0x33/0x40 [ 1451.835899] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1451.837437] iomap_apply+0x164/0x810 [ 1451.838612] ? iomap_dio_rw+0x90/0x90 [ 1451.839802] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1451.841582] ? mark_held_locks+0x9e/0xe0 [ 1451.842909] ? filemap_check_errors+0xa5/0x150 [ 1451.844365] __iomap_dio_rw+0x6cd/0x1110 [ 1451.845572] ? iomap_dio_rw+0x90/0x90 [ 1451.846750] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1451.848267] ? ext4_orphan_add+0x253/0x9e0 [ 1451.849435] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1451.850970] ? ext4_empty_dir+0xae0/0xae0 [ 1451.852212] ? jbd2__journal_start+0xf3/0x7e0 [ 1451.853597] iomap_dio_rw+0x31/0x90 [ 1451.854843] ext4_file_write_iter+0xe0e/0x1530 [ 1451.856228] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1451.857774] ? kasan_save_stack+0x32/0x40 [ 1451.859123] ? kasan_save_stack+0x1b/0x40 [ 1451.860334] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1451.861804] ? iter_file_splice_write+0x165/0xc90 [ 1451.863368] ? direct_splice_actor+0x10f/0x170 [ 1451.864919] ? splice_direct_to_actor+0x387/0x980 [ 1451.866356] ? do_splice_direct+0x1c4/0x290 [ 1451.867783] ? do_sendfile+0x553/0x11e0 [ 1451.868877] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1451.870073] ? do_syscall_64+0x33/0x40 [ 1451.871240] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1451.872579] do_iter_readv_writev+0x476/0x750 [ 1451.873662] ? new_sync_write+0x660/0x660 [ 1451.874779] ? avc_policy_seqno+0x9/0x70 [ 1451.876047] ? selinux_file_permission+0x92/0x520 [ 1451.877318] ? security_file_permission+0xb1/0xe0 [ 1451.878791] do_iter_write+0x191/0x700 [ 1451.879826] ? trace_hardirqs_on+0x5b/0x180 [ 1451.880992] vfs_iter_write+0x70/0xa0 [ 1451.882144] iter_file_splice_write+0x726/0xc90 [ 1451.883434] ? generic_splice_sendpage+0x140/0x140 [ 1451.884803] ? security_file_permission+0xb1/0xe0 [ 1451.886153] ? generic_splice_sendpage+0x140/0x140 [ 1451.887434] direct_splice_actor+0x10f/0x170 [ 1451.888650] splice_direct_to_actor+0x387/0x980 05:55:33 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x3f000000, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) [ 1451.889996] ? pipe_to_sendpage+0x380/0x380 [ 1451.891148] ? do_splice_to+0x160/0x160 [ 1451.892116] ? security_file_permission+0xb1/0xe0 [ 1451.893474] do_splice_direct+0x1c4/0x290 [ 1451.894651] ? splice_direct_to_actor+0x980/0x980 [ 1451.896003] ? avc_policy_seqno+0x9/0x70 [ 1451.897212] ? security_file_permission+0xb1/0xe0 [ 1451.898476] do_sendfile+0x553/0x11e0 [ 1451.899574] ? do_pwritev+0x270/0x270 [ 1451.900615] ? wait_for_completion_io+0x270/0x270 [ 1451.901858] ? rcu_read_lock_any_held+0x75/0xa0 [ 1451.903195] ? vfs_write+0x354/0xb10 [ 1451.904236] __x64_sys_sendfile64+0x1d1/0x210 [ 1451.905427] ? __ia32_sys_sendfile+0x220/0x220 [ 1451.906653] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1451.908113] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1451.909520] do_syscall_64+0x33/0x40 [ 1451.910475] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1451.911795] RIP: 0033:0x7fdf91659b19 [ 1451.912896] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1451.917811] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1451.919872] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1451.921748] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1451.923511] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1451.925434] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1451.927253] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 [ 1451.935126] FAULT_INJECTION: forcing a failure. [ 1451.935126] name failslab, interval 1, probability 0, space 0, times 0 [ 1451.936829] CPU: 0 PID: 8590 Comm: syz-executor.4 Not tainted 5.10.233 #1 [ 1451.937763] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1451.938911] Call Trace: [ 1451.939281] dump_stack+0x107/0x167 [ 1451.939787] should_fail.cold+0x5/0xa [ 1451.940314] ? iter_file_splice_write+0x165/0xc90 [ 1451.940981] should_failslab+0x5/0x20 [ 1451.941519] __kmalloc+0x72/0x390 [ 1451.942011] iter_file_splice_write+0x165/0xc90 [ 1451.942672] ? __fsnotify_parent+0x47a/0xb10 [ 1451.943367] ? generic_splice_sendpage+0x140/0x140 [ 1451.944044] ? pipe_to_user+0x170/0x170 [ 1451.944464] FAULT_INJECTION: forcing a failure. [ 1451.944464] name failslab, interval 1, probability 0, space 0, times 0 [ 1451.944606] ? security_file_permission+0xb1/0xe0 [ 1451.947810] ? generic_splice_sendpage+0x140/0x140 [ 1451.948482] direct_splice_actor+0x10f/0x170 [ 1451.949080] splice_direct_to_actor+0x387/0x980 [ 1451.949720] ? pipe_to_sendpage+0x380/0x380 [ 1451.950313] ? do_splice_to+0x160/0x160 [ 1451.950865] ? security_file_permission+0xb1/0xe0 [ 1451.951532] do_splice_direct+0x1c4/0x290 [ 1451.952101] ? splice_direct_to_actor+0x980/0x980 [ 1451.952756] ? avc_policy_seqno+0x9/0x70 [ 1451.953311] ? security_file_permission+0xb1/0xe0 [ 1451.953980] do_sendfile+0x553/0x11e0 [ 1451.954510] ? do_pwritev+0x270/0x270 [ 1451.955040] ? wait_for_completion_io+0x270/0x270 [ 1451.955701] ? rcu_read_lock_any_held+0x75/0xa0 [ 1451.956336] ? vfs_write+0x354/0xb10 [ 1451.956850] __x64_sys_sendfile64+0x1d1/0x210 [ 1451.957465] ? __ia32_sys_sendfile+0x220/0x220 [ 1451.958092] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1451.958816] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1451.959523] do_syscall_64+0x33/0x40 [ 1451.960032] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1451.960734] RIP: 0033:0x7f0e6bf6bb19 [ 1451.961247] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1451.963764] RSP: 002b:00007f0e694e1188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1451.964806] RAX: ffffffffffffffda RBX: 00007f0e6c07ef60 RCX: 00007f0e6bf6bb19 [ 1451.965782] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1451.966760] RBP: 00007f0e694e11d0 R08: 0000000000000000 R09: 0000000000000000 [ 1451.967748] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1451.968718] R13: 00007ffec00aeedf R14: 00007f0e694e1300 R15: 0000000000022000 [ 1451.969714] CPU: 1 PID: 8597 Comm: syz-executor.3 Not tainted 5.10.233 #1 [ 1451.971316] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1451.973225] Call Trace: [ 1451.973841] dump_stack+0x107/0x167 [ 1451.974696] should_fail.cold+0x5/0xa [ 1451.975575] ? bvec_alloc+0x148/0x2f0 [ 1451.976454] should_failslab+0x5/0x20 [ 1451.977329] kmem_cache_alloc+0x5b/0x310 [ 1451.978277] bvec_alloc+0x148/0x2f0 [ 1451.979137] bio_alloc_bioset+0x40a/0x600 [ 1451.980096] ? bvec_alloc+0x2f0/0x2f0 [ 1451.980978] ? iov_iter_npages+0x1fd/0xa70 [ 1451.981961] iomap_dio_bio_actor+0x518/0xef0 [ 1451.983002] iomap_dio_actor+0x36f/0x560 [ 1451.983930] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1451.984989] ? do_syscall_64+0x33/0x40 [ 1451.985877] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1451.987108] iomap_apply+0x289/0x810 [ 1451.987999] ? iomap_dio_rw+0x90/0x90 [ 1451.988877] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1451.990200] ? mark_held_locks+0x9e/0xe0 [ 1451.991158] ? filemap_check_errors+0xa5/0x150 [ 1451.992215] __iomap_dio_rw+0x6cd/0x1110 [ 1451.993140] ? iomap_dio_rw+0x90/0x90 [ 1451.994033] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1451.995085] ? ext4_orphan_add+0x253/0x9e0 [ 1451.996051] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1451.997175] ? ext4_empty_dir+0xae0/0xae0 [ 1451.998122] ? jbd2__journal_start+0xf3/0x7e0 [ 1451.999167] iomap_dio_rw+0x31/0x90 [ 1452.000004] ext4_file_write_iter+0xe0e/0x1530 [ 1452.001066] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1452.002108] ? kasan_save_stack+0x32/0x40 [ 1452.003062] ? kasan_save_stack+0x1b/0x40 [ 1452.004000] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1452.005148] ? iter_file_splice_write+0x165/0xc90 [ 1452.006238] ? direct_splice_actor+0x10f/0x170 [ 1452.007281] ? splice_direct_to_actor+0x387/0x980 [ 1452.008370] ? do_splice_direct+0x1c4/0x290 [ 1452.009346] ? do_sendfile+0x553/0x11e0 [ 1452.010244] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1452.011306] ? do_syscall_64+0x33/0x40 [ 1452.012190] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1452.013409] do_iter_readv_writev+0x476/0x750 [ 1452.014432] ? new_sync_write+0x660/0x660 [ 1452.015377] ? avc_policy_seqno+0x9/0x70 [ 1452.016301] ? selinux_file_permission+0x92/0x520 [ 1452.017396] ? security_file_permission+0xb1/0xe0 [ 1452.018503] do_iter_write+0x191/0x700 [ 1452.019399] ? trace_hardirqs_on+0x5b/0x180 [ 1452.020396] vfs_iter_write+0x70/0xa0 [ 1452.021263] iter_file_splice_write+0x726/0xc90 [ 1452.022331] ? generic_splice_sendpage+0x140/0x140 [ 1452.023469] ? security_file_permission+0xb1/0xe0 [ 1452.024557] ? generic_splice_sendpage+0x140/0x140 [ 1452.025666] direct_splice_actor+0x10f/0x170 [ 1452.026672] splice_direct_to_actor+0x387/0x980 [ 1452.027726] ? pipe_to_sendpage+0x380/0x380 [ 1452.028705] ? do_splice_to+0x160/0x160 [ 1452.029648] ? security_file_permission+0xb1/0xe0 [ 1452.030758] do_splice_direct+0x1c4/0x290 [ 1452.031668] ? splice_direct_to_actor+0x980/0x980 [ 1452.032741] ? avc_policy_seqno+0x9/0x70 [ 1452.033649] ? security_file_permission+0xb1/0xe0 [ 1452.034748] do_sendfile+0x553/0x11e0 [ 1452.035609] ? do_pwritev+0x270/0x270 [ 1452.036459] ? wait_for_completion_io+0x270/0x270 [ 1452.037540] ? rcu_read_lock_any_held+0x75/0xa0 [ 1452.038579] ? vfs_write+0x354/0xb10 [ 1452.039420] __x64_sys_sendfile64+0x1d1/0x210 [ 1452.040411] ? __ia32_sys_sendfile+0x220/0x220 [ 1452.041425] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1452.042596] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1452.043768] do_syscall_64+0x33/0x40 [ 1452.044592] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1452.045725] RIP: 0033:0x7fdfc7a14b19 [ 1452.046549] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1452.050615] RSP: 002b:00007fdfc4f8a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1452.052298] RAX: ffffffffffffffda RBX: 00007fdfc7b27f60 RCX: 00007fdfc7a14b19 [ 1452.053874] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1452.055459] RBP: 00007fdfc4f8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1452.057026] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1452.058625] R13: 00007ffc53f2cc7f R14: 00007fdfc4f8a300 R15: 0000000000022000 05:55:33 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 14) fallocate(r0, 0x0, 0x0, 0x1000002) 05:55:33 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 8) fallocate(r0, 0x0, 0x0, 0x1000002) 05:55:33 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x40000000, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) [ 1452.139433] FAULT_INJECTION: forcing a failure. [ 1452.139433] name failslab, interval 1, probability 0, space 0, times 0 [ 1452.141001] CPU: 0 PID: 8605 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1452.141967] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1452.143182] Call Trace: [ 1452.143571] dump_stack+0x107/0x167 [ 1452.144196] should_fail.cold+0x5/0xa [ 1452.144710] ? create_object.isra.0+0x3a/0xa20 [ 1452.145280] should_failslab+0x5/0x20 [ 1452.145748] kmem_cache_alloc+0x5b/0x310 [ 1452.146266] create_object.isra.0+0x3a/0xa20 [ 1452.146815] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1452.147456] kmem_cache_alloc_trace+0x151/0x320 [ 1452.148127] __iomap_dio_rw+0x1ee/0x1110 [ 1452.148751] ? jbd2_journal_stop+0x188/0xdc0 [ 1452.149432] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1452.150134] ? ext4_orphan_add+0x253/0x9e0 [ 1452.150771] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1452.151490] ? ext4_empty_dir+0xae0/0xae0 [ 1452.152083] ? jbd2__journal_start+0xf3/0x7e0 [ 1452.152665] iomap_dio_rw+0x31/0x90 [ 1452.153109] ext4_file_write_iter+0xe0e/0x1530 [ 1452.153677] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1452.154252] ? kasan_save_stack+0x32/0x40 [ 1452.154857] ? kasan_save_stack+0x1b/0x40 [ 1452.155456] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1452.156188] ? iter_file_splice_write+0x165/0xc90 [ 1452.156915] ? direct_splice_actor+0x10f/0x170 [ 1452.157578] ? splice_direct_to_actor+0x387/0x980 [ 1452.158262] ? do_splice_direct+0x1c4/0x290 [ 1452.158871] ? do_sendfile+0x553/0x11e0 [ 1452.159434] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1452.160110] ? do_syscall_64+0x33/0x40 [ 1452.160666] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1452.161437] do_iter_readv_writev+0x476/0x750 [ 1452.162078] ? new_sync_write+0x660/0x660 [ 1452.162698] ? avc_policy_seqno+0x9/0x70 [ 1452.163307] ? selinux_file_permission+0x92/0x520 [ 1452.163926] ? security_file_permission+0xb1/0xe0 [ 1452.164613] do_iter_write+0x191/0x700 [ 1452.165168] ? trace_hardirqs_on+0x5b/0x180 [ 1452.165770] vfs_iter_write+0x70/0xa0 [ 1452.166317] iter_file_splice_write+0x726/0xc90 [ 1452.166979] ? generic_splice_sendpage+0x140/0x140 [ 1452.167659] ? security_file_permission+0xb1/0xe0 [ 1452.168352] ? generic_splice_sendpage+0x140/0x140 [ 1452.169061] direct_splice_actor+0x10f/0x170 [ 1452.169697] splice_direct_to_actor+0x387/0x980 [ 1452.170321] ? pipe_to_sendpage+0x380/0x380 [ 1452.170901] ? do_splice_to+0x160/0x160 [ 1452.171448] ? security_file_permission+0xb1/0xe0 [ 1452.172095] do_splice_direct+0x1c4/0x290 [ 1452.172644] ? splice_direct_to_actor+0x980/0x980 [ 1452.173324] ? avc_policy_seqno+0x9/0x70 [ 1452.173881] ? security_file_permission+0xb1/0xe0 [ 1452.174547] do_sendfile+0x553/0x11e0 [ 1452.175115] ? do_pwritev+0x270/0x270 [ 1452.175665] ? wait_for_completion_io+0x270/0x270 [ 1452.176300] ? rcu_read_lock_any_held+0x75/0xa0 [ 1452.176913] ? vfs_write+0x354/0xb10 [ 1452.177412] __x64_sys_sendfile64+0x1d1/0x210 [ 1452.178029] ? __ia32_sys_sendfile+0x220/0x220 [ 1452.178640] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1452.179336] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1452.180036] do_syscall_64+0x33/0x40 [ 1452.180560] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1452.181245] RIP: 0033:0x7fdf91659b19 [ 1452.181755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1452.184285] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1452.185335] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1452.186337] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1452.187329] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1452.188311] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1452.189238] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 [ 1452.214448] FAULT_INJECTION: forcing a failure. [ 1452.214448] name failslab, interval 1, probability 0, space 0, times 0 [ 1452.215985] CPU: 0 PID: 8609 Comm: syz-executor.4 Not tainted 5.10.233 #1 [ 1452.216874] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1452.217870] Call Trace: [ 1452.218235] dump_stack+0x107/0x167 [ 1452.218758] should_fail.cold+0x5/0xa [ 1452.219330] ? create_object.isra.0+0x3a/0xa20 [ 1452.219995] should_failslab+0x5/0x20 [ 1452.220539] kmem_cache_alloc+0x5b/0x310 [ 1452.221125] create_object.isra.0+0x3a/0xa20 [ 1452.221743] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1452.222493] kmem_cache_alloc+0x159/0x310 [ 1452.223159] jbd2__journal_start+0x190/0x7e0 [ 1452.223810] __ext4_journal_start_sb+0x214/0x390 [ 1452.224506] ext4_dirty_inode+0xbc/0x130 [ 1452.225094] ? ext4_setattr+0x20f0/0x20f0 [ 1452.225700] __mark_inode_dirty+0x492/0xd40 [ 1452.226349] ? security_inode_need_killpriv+0x79/0xa0 [ 1452.227127] generic_update_time+0x21c/0x370 [ 1452.227785] file_update_time+0x43a/0x520 [ 1452.228388] ? evict_inodes+0x470/0x470 [ 1452.228968] ? down_write_killable+0x180/0x180 [ 1452.229636] file_modified+0x7d/0xa0 [ 1452.230184] ext4_file_write_iter+0x8f8/0x1530 [ 1452.230873] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1452.231538] ? kasan_save_stack+0x32/0x40 [ 1452.232140] ? kasan_save_stack+0x1b/0x40 [ 1452.232738] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1452.233472] ? iter_file_splice_write+0x165/0xc90 [ 1452.234172] ? direct_splice_actor+0x10f/0x170 [ 1452.234840] ? splice_direct_to_actor+0x387/0x980 [ 1452.235548] ? do_splice_direct+0x1c4/0x290 [ 1452.236171] ? do_sendfile+0x553/0x11e0 [ 1452.236753] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1452.237428] ? do_syscall_64+0x33/0x40 [ 1452.237990] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1452.238770] do_iter_readv_writev+0x476/0x750 [ 1452.239431] ? new_sync_write+0x660/0x660 [ 1452.240047] ? avc_policy_seqno+0x9/0x70 [ 1452.240633] ? selinux_file_permission+0x92/0x520 [ 1452.241333] ? security_file_permission+0xb1/0xe0 [ 1452.242039] do_iter_write+0x191/0x700 [ 1452.242628] ? trace_hardirqs_on+0x5b/0x180 [ 1452.243276] vfs_iter_write+0x70/0xa0 [ 1452.243820] iter_file_splice_write+0x726/0xc90 [ 1452.244495] ? generic_splice_sendpage+0x140/0x140 [ 1452.245252] ? security_file_permission+0xb1/0xe0 [ 1452.245975] ? generic_splice_sendpage+0x140/0x140 [ 1452.246719] direct_splice_actor+0x10f/0x170 [ 1452.247386] splice_direct_to_actor+0x387/0x980 [ 1452.248088] ? pipe_to_sendpage+0x380/0x380 [ 1452.248739] ? do_splice_to+0x160/0x160 [ 1452.249309] ? security_file_permission+0xb1/0xe0 [ 1452.249908] do_splice_direct+0x1c4/0x290 [ 1452.250397] ? splice_direct_to_actor+0x980/0x980 [ 1452.250969] ? avc_policy_seqno+0x9/0x70 [ 1452.251453] ? security_file_permission+0xb1/0xe0 [ 1452.252030] do_sendfile+0x553/0x11e0 [ 1452.252484] ? do_pwritev+0x270/0x270 [ 1452.252936] ? wait_for_completion_io+0x270/0x270 [ 1452.253506] ? rcu_read_lock_any_held+0x75/0xa0 [ 1452.254056] ? vfs_write+0x354/0xb10 [ 1452.254493] __x64_sys_sendfile64+0x1d1/0x210 [ 1452.255029] ? __ia32_sys_sendfile+0x220/0x220 [ 1452.255573] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1452.256194] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1452.256802] do_syscall_64+0x33/0x40 [ 1452.257237] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1452.257839] RIP: 0033:0x7f0e6bf6bb19 [ 1452.258284] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1452.260463] RSP: 002b:00007f0e694e1188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1452.261366] RAX: ffffffffffffffda RBX: 00007f0e6c07ef60 RCX: 00007f0e6bf6bb19 [ 1452.262205] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1452.263053] RBP: 00007f0e694e11d0 R08: 0000000000000000 R09: 0000000000000000 [ 1452.263896] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1452.264744] R13: 00007ffec00aeedf R14: 00007f0e694e1300 R15: 0000000000022000 05:55:33 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x100000800, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:55:33 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1b0bf1f000, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:55:34 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x10000000000, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:55:34 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x29d23f11d000, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:55:34 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x10000000a) fallocate(r0, 0x0, 0x0, 0x1000002) 05:55:34 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x1000001da) fallocate(r0, 0x0, 0x0, 0x1000002) 05:55:49 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 9) fallocate(r0, 0x0, 0x0, 0x1000002) 05:55:49 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r2 = signalfd(r1, &(0x7f0000000040)={[0x8]}, 0x8) r3 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r6}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r6}}, 0x3ff) openat(r2, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r0, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:55:49 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000500) fallocate(r0, 0x0, 0x0, 0x1000002) 05:55:49 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000281) fallocate(r0, 0x0, 0x0, 0x1000002) 05:55:49 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 28) fallocate(r0, 0x0, 0x0, 0x1000002) 05:55:49 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 15) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1467.855935] FAULT_INJECTION: forcing a failure. [ 1467.855935] name failslab, interval 1, probability 0, space 0, times 0 [ 1467.857411] CPU: 1 PID: 8633 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1467.858253] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1467.859292] Call Trace: [ 1467.859623] dump_stack+0x107/0x167 [ 1467.860076] should_fail.cold+0x5/0xa [ 1467.860547] ? jbd2__journal_start+0x190/0x7e0 [ 1467.861114] should_failslab+0x5/0x20 [ 1467.861583] kmem_cache_alloc+0x5b/0x310 [ 1467.862093] ? __kernel_text_address+0x9/0x40 [ 1467.862648] jbd2__journal_start+0x190/0x7e0 [ 1467.863208] __ext4_journal_start_sb+0x214/0x390 [ 1467.863792] ext4_iomap_begin+0x485/0x700 [ 1467.864312] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1467.865070] ? kasan_save_stack+0x1b/0x40 [ 1467.865584] ? ext4_file_write_iter+0xe0e/0x1530 [ 1467.866172] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1467.866948] ? splice_direct_to_actor+0x387/0x980 [ 1467.867548] ? do_splice_direct+0x1c4/0x290 [ 1467.868080] ? do_sendfile+0x553/0x11e0 [ 1467.868567] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1467.869140] ? do_syscall_64+0x33/0x40 [ 1467.869618] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1467.870278] iomap_apply+0x164/0x810 [ 1467.870735] ? iomap_dio_rw+0x90/0x90 [ 1467.871214] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1467.871924] ? mark_held_locks+0x9e/0xe0 [ 1467.872432] ? filemap_check_errors+0xa5/0x150 [ 1467.872995] __iomap_dio_rw+0x6cd/0x1110 [ 1467.873494] ? iomap_dio_rw+0x90/0x90 [ 1467.873999] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1467.874692] ? ext4_orphan_add+0x253/0x9e0 [ 1467.875357] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1467.876085] ? ext4_empty_dir+0xae0/0xae0 [ 1467.876705] ? jbd2__journal_start+0xf3/0x7e0 [ 1467.877347] iomap_dio_rw+0x31/0x90 [ 1467.877876] ext4_file_write_iter+0xe0e/0x1530 [ 1467.878528] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1467.879161] ? kasan_save_stack+0x32/0x40 [ 1467.879764] ? kasan_save_stack+0x1b/0x40 [ 1467.880288] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1467.880906] ? iter_file_splice_write+0x165/0xc90 [ 1467.881490] ? direct_splice_actor+0x10f/0x170 [ 1467.882041] ? splice_direct_to_actor+0x387/0x980 [ 1467.882629] ? do_splice_direct+0x1c4/0x290 [ 1467.883153] ? do_sendfile+0x553/0x11e0 [ 1467.883643] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1467.884206] ? do_syscall_64+0x33/0x40 [ 1467.884674] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1467.885333] do_iter_readv_writev+0x476/0x750 [ 1467.885876] ? new_sync_write+0x660/0x660 [ 1467.886375] ? avc_policy_seqno+0x9/0x70 [ 1467.886865] ? selinux_file_permission+0x92/0x520 [ 1467.887453] ? security_file_permission+0xb1/0xe0 [ 1467.888038] do_iter_write+0x191/0x700 [ 1467.888509] ? trace_hardirqs_on+0x5b/0x180 [ 1467.889031] vfs_iter_write+0x70/0xa0 [ 1467.889486] iter_file_splice_write+0x726/0xc90 [ 1467.890053] ? generic_splice_sendpage+0x140/0x140 [ 1467.890651] ? security_file_permission+0xb1/0xe0 [ 1467.891243] ? generic_splice_sendpage+0x140/0x140 [ 1467.891830] direct_splice_actor+0x10f/0x170 [ 1467.892361] splice_direct_to_actor+0x387/0x980 [ 1467.892921] ? pipe_to_sendpage+0x380/0x380 [ 1467.893443] ? do_splice_to+0x160/0x160 [ 1467.893917] ? security_file_permission+0xb1/0xe0 [ 1467.894499] do_splice_direct+0x1c4/0x290 [ 1467.894997] ? splice_direct_to_actor+0x980/0x980 [ 1467.895594] ? avc_policy_seqno+0x9/0x70 [ 1467.896082] ? security_file_permission+0xb1/0xe0 [ 1467.896664] do_sendfile+0x553/0x11e0 [ 1467.897130] ? do_pwritev+0x270/0x270 [ 1467.897589] ? wait_for_completion_io+0x270/0x270 [ 1467.898169] ? rcu_read_lock_any_held+0x75/0xa0 [ 1467.898720] ? vfs_write+0x354/0xb10 [ 1467.899180] __x64_sys_sendfile64+0x1d1/0x210 [ 1467.899711] ? __ia32_sys_sendfile+0x220/0x220 [ 1467.900262] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1467.900885] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1467.901506] do_syscall_64+0x33/0x40 [ 1467.901950] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1467.902564] RIP: 0033:0x7fdf91659b19 [ 1467.903012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1467.905210] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1467.906117] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1467.906967] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1467.907825] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1467.908669] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1467.909520] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 05:55:49 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x10000000c) fallocate(r0, 0x0, 0x0, 0x1000002) 05:55:49 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x553a52bc9000, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) [ 1467.944704] FAULT_INJECTION: forcing a failure. 05:55:49 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2001000000000, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) [ 1467.944704] name failslab, interval 1, probability 0, space 0, times 0 [ 1467.947813] CPU: 0 PID: 8648 Comm: syz-executor.3 Not tainted 5.10.233 #1 [ 1467.949445] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1467.951324] Call Trace: [ 1467.951930] dump_stack+0x107/0x167 [ 1467.952756] should_fail.cold+0x5/0xa [ 1467.953618] ? kmem_cache_alloc+0x2a6/0x310 [ 1467.954594] ? create_object.isra.0+0x3a/0xa20 [ 1467.955649] should_failslab+0x5/0x20 [ 1467.956512] kmem_cache_alloc+0x5b/0x310 [ 1467.957431] ? mempool_alloc+0x155/0x360 [ 1467.958355] create_object.isra.0+0x3a/0xa20 [ 1467.959356] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1467.960506] kmem_cache_alloc+0x159/0x310 [ 1467.961453] bvec_alloc+0x148/0x2f0 [ 1467.962283] bio_alloc_bioset+0x40a/0x600 [ 1467.963238] ? bvec_alloc+0x2f0/0x2f0 [ 1467.964107] ? iov_iter_npages+0x1fd/0xa70 [ 1467.965215] iomap_dio_bio_actor+0x518/0xef0 [ 1467.966226] iomap_dio_actor+0x36f/0x560 [ 1467.967142] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1467.968208] ? do_syscall_64+0x33/0x40 [ 1467.969091] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1467.970297] iomap_apply+0x289/0x810 [ 1467.971143] ? iomap_dio_rw+0x90/0x90 [ 1467.972023] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1467.973333] ? mark_held_locks+0x9e/0xe0 [ 1467.974267] ? filemap_check_errors+0xa5/0x150 [ 1467.975117] FAULT_INJECTION: forcing a failure. [ 1467.975117] name failslab, interval 1, probability 0, space 0, times 0 [ 1467.975316] __iomap_dio_rw+0x6cd/0x1110 [ 1467.977616] ? iomap_dio_rw+0x90/0x90 [ 1467.978502] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1467.979547] ? ext4_orphan_add+0x253/0x9e0 [ 1467.980502] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1467.981613] ? ext4_empty_dir+0xae0/0xae0 [ 1467.982542] ? jbd2__journal_start+0xf3/0x7e0 [ 1467.983575] iomap_dio_rw+0x31/0x90 [ 1467.984402] ext4_file_write_iter+0xe0e/0x1530 [ 1467.985448] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1467.986476] ? kasan_save_stack+0x32/0x40 [ 1467.987424] ? kasan_save_stack+0x1b/0x40 [ 1467.988360] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1467.989500] ? iter_file_splice_write+0x165/0xc90 [ 1467.990581] ? direct_splice_actor+0x10f/0x170 [ 1467.991620] ? splice_direct_to_actor+0x387/0x980 [ 1467.992702] ? do_splice_direct+0x1c4/0x290 [ 1467.993675] ? do_sendfile+0x553/0x11e0 [ 1467.994569] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1467.995645] ? do_syscall_64+0x33/0x40 [ 1467.996524] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1467.997732] do_iter_readv_writev+0x476/0x750 [ 1467.998748] ? new_sync_write+0x660/0x660 [ 1467.999695] ? avc_policy_seqno+0x9/0x70 [ 1468.000613] ? selinux_file_permission+0x92/0x520 [ 1468.001705] ? security_file_permission+0xb1/0xe0 [ 1468.002977] do_iter_write+0x191/0x700 [ 1468.003984] ? trace_hardirqs_on+0x5b/0x180 [ 1468.005102] vfs_iter_write+0x70/0xa0 [ 1468.006006] iter_file_splice_write+0x726/0xc90 [ 1468.007187] ? generic_splice_sendpage+0x140/0x140 [ 1468.008351] ? security_file_permission+0xb1/0xe0 [ 1468.009480] ? generic_splice_sendpage+0x140/0x140 [ 1468.010638] direct_splice_actor+0x10f/0x170 [ 1468.011671] splice_direct_to_actor+0x387/0x980 [ 1468.012758] ? pipe_to_sendpage+0x380/0x380 [ 1468.013771] ? do_splice_to+0x160/0x160 [ 1468.014697] ? security_file_permission+0xb1/0xe0 [ 1468.015880] do_splice_direct+0x1c4/0x290 [ 1468.016860] ? splice_direct_to_actor+0x980/0x980 [ 1468.018016] ? avc_policy_seqno+0x9/0x70 [ 1468.018987] ? security_file_permission+0xb1/0xe0 [ 1468.020161] do_sendfile+0x553/0x11e0 [ 1468.021074] ? do_pwritev+0x270/0x270 [ 1468.021988] ? wait_for_completion_io+0x270/0x270 [ 1468.023154] ? rcu_read_lock_any_held+0x75/0xa0 [ 1468.024261] ? vfs_write+0x354/0xb10 [ 1468.025156] __x64_sys_sendfile64+0x1d1/0x210 [ 1468.026196] ? __ia32_sys_sendfile+0x220/0x220 [ 1468.027331] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1468.028556] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1468.029699] do_syscall_64+0x33/0x40 [ 1468.030550] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1468.031795] RIP: 0033:0x7fdfc7a14b19 [ 1468.032653] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1468.036953] RSP: 002b:00007fdfc4f8a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1468.038708] RAX: ffffffffffffffda RBX: 00007fdfc7b27f60 RCX: 00007fdfc7a14b19 [ 1468.040371] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1468.042022] RBP: 00007fdfc4f8a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1468.043698] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1468.045371] R13: 00007ffc53f2cc7f R14: 00007fdfc4f8a300 R15: 0000000000022000 05:55:49 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2020000000000, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) [ 1468.047073] CPU: 1 PID: 8647 Comm: syz-executor.4 Not tainted 5.10.233 #1 [ 1468.048190] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1468.049172] Call Trace: [ 1468.049486] dump_stack+0x107/0x167 [ 1468.049901] should_fail.cold+0x5/0xa [ 1468.050352] ? __iomap_dio_rw+0x1ee/0x1110 [ 1468.050875] should_failslab+0x5/0x20 [ 1468.051339] kmem_cache_alloc_trace+0x55/0x320 [ 1468.051856] __iomap_dio_rw+0x1ee/0x1110 [ 1468.052335] ? jbd2_journal_stop+0x188/0xdc0 [ 1468.052838] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1468.053373] ? ext4_orphan_add+0x253/0x9e0 [ 1468.053854] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1468.054423] ? ext4_empty_dir+0xae0/0xae0 [ 1468.054891] ? jbd2__journal_start+0xf3/0x7e0 [ 1468.055433] iomap_dio_rw+0x31/0x90 [ 1468.055850] ext4_file_write_iter+0xe0e/0x1530 [ 1468.056390] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1468.056909] ? kasan_save_stack+0x32/0x40 [ 1468.057399] ? kasan_save_stack+0x1b/0x40 [ 1468.057881] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1468.058468] ? iter_file_splice_write+0x165/0xc90 [ 1468.059012] ? direct_splice_actor+0x10f/0x170 [ 1468.059551] ? splice_direct_to_actor+0x387/0x980 [ 1468.060094] ? do_splice_direct+0x1c4/0x290 [ 1468.060601] ? do_sendfile+0x553/0x11e0 [ 1468.061050] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1468.061588] ? do_syscall_64+0x33/0x40 [ 1468.062030] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1468.062642] do_iter_readv_writev+0x476/0x750 [ 1468.063191] ? new_sync_write+0x660/0x660 [ 1468.063661] ? avc_policy_seqno+0x9/0x70 [ 1468.064148] ? selinux_file_permission+0x92/0x520 [ 1468.064717] ? security_file_permission+0xb1/0xe0 [ 1468.065302] do_iter_write+0x191/0x700 [ 1468.065763] ? trace_hardirqs_on+0x5b/0x180 [ 1468.066278] vfs_iter_write+0x70/0xa0 [ 1468.066720] iter_file_splice_write+0x726/0xc90 [ 1468.067287] ? generic_splice_sendpage+0x140/0x140 [ 1468.067869] ? security_file_permission+0xb1/0xe0 [ 1468.068448] ? generic_splice_sendpage+0x140/0x140 [ 1468.069021] direct_splice_actor+0x10f/0x170 [ 1468.069546] splice_direct_to_actor+0x387/0x980 [ 1468.070104] ? pipe_to_sendpage+0x380/0x380 [ 1468.070626] ? do_splice_to+0x160/0x160 [ 1468.071091] ? security_file_permission+0xb1/0xe0 [ 1468.071677] do_splice_direct+0x1c4/0x290 [ 1468.072169] ? splice_direct_to_actor+0x980/0x980 [ 1468.072730] ? avc_policy_seqno+0x9/0x70 [ 1468.073214] ? security_file_permission+0xb1/0xe0 [ 1468.073775] do_sendfile+0x553/0x11e0 [ 1468.074231] ? do_pwritev+0x270/0x270 [ 1468.074676] ? wait_for_completion_io+0x270/0x270 [ 1468.075266] ? rcu_read_lock_any_held+0x75/0xa0 [ 1468.075801] ? vfs_write+0x354/0xb10 [ 1468.076246] __x64_sys_sendfile64+0x1d1/0x210 [ 1468.076766] ? __ia32_sys_sendfile+0x220/0x220 [ 1468.077317] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1468.077918] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1468.078528] do_syscall_64+0x33/0x40 [ 1468.078963] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1468.079577] RIP: 0033:0x7f0e6bf6bb19 [ 1468.080007] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1468.082167] RSP: 002b:00007f0e694e1188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1468.083052] RAX: ffffffffffffffda RBX: 00007f0e6c07ef60 RCX: 00007f0e6bf6bb19 [ 1468.083896] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1468.084732] RBP: 00007f0e694e11d0 R08: 0000000000000000 R09: 0000000000000000 [ 1468.085573] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000001 [ 1468.086410] R13: 00007ffec00aeedf R14: 00007f0e694e1300 R15: 0000000000022000 05:55:49 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 16) fallocate(r0, 0x0, 0x0, 0x1000002) 05:55:49 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000000000000, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) [ 1468.196072] FAULT_INJECTION: forcing a failure. [ 1468.196072] name failslab, interval 1, probability 0, space 0, times 0 [ 1468.198843] CPU: 0 PID: 8659 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1468.200479] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1468.202344] Call Trace: [ 1468.202942] dump_stack+0x107/0x167 [ 1468.203781] should_fail.cold+0x5/0xa [ 1468.204649] ? create_object.isra.0+0x3a/0xa20 [ 1468.205688] should_failslab+0x5/0x20 [ 1468.206545] kmem_cache_alloc+0x5b/0x310 [ 1468.207476] create_object.isra.0+0x3a/0xa20 [ 1468.208461] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1468.209606] __kmalloc+0x16e/0x390 [ 1468.210413] ext4_find_extent+0xa77/0xd70 [ 1468.211365] ext4_ext_map_blocks+0x1c8/0x5830 [ 1468.212441] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1468.213617] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1468.214796] ? ext4_ext_release+0x10/0x10 [ 1468.215850] ? lock_release+0x680/0x680 [ 1468.216750] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1468.217813] ? lock_downgrade+0x6d0/0x6d0 [ 1468.218754] ? down_read+0x10f/0x430 [ 1468.219605] ? down_write+0x160/0x160 [ 1468.220459] ? ext4_es_lookup_extent+0xc4/0xaa0 [ 1468.221515] ext4_map_blocks+0x8e1/0x1910 [ 1468.222451] ? kmem_cache_alloc+0x2a6/0x310 [ 1468.223430] ? __kernel_text_address+0x9/0x40 [ 1468.224438] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1468.225446] ? jbd2__journal_start+0xf3/0x7e0 [ 1468.226462] ? __ext4_journal_start_sb+0x214/0x390 [ 1468.227572] ? __ext4_journal_start_sb+0x1db/0x390 [ 1468.228683] ext4_iomap_begin+0x3ad/0x700 [ 1468.229630] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1468.230729] ? lock_chain_count+0x20/0x20 [ 1468.231685] ? ext4_file_write_iter+0xe0e/0x1530 [ 1468.232766] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1468.234230] ? splice_direct_to_actor+0x387/0x980 [ 1468.235351] ? do_splice_direct+0x1c4/0x290 [ 1468.236362] ? do_sendfile+0x553/0x11e0 [ 1468.237262] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1468.238353] ? do_syscall_64+0x33/0x40 [ 1468.239259] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1468.240522] iomap_apply+0x164/0x810 [ 1468.241396] ? iomap_dio_rw+0x90/0x90 [ 1468.242301] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1468.243693] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1468.244930] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1468.246167] ? trace_hardirqs_on+0x5b/0x180 [ 1468.247200] ? filemap_check_errors+0xa5/0x150 [ 1468.248254] __iomap_dio_rw+0x6cd/0x1110 [ 1468.249185] ? iomap_dio_rw+0x90/0x90 [ 1468.250085] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1468.251119] ? ext4_orphan_add+0x253/0x9e0 [ 1468.252107] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1468.253240] ? ext4_empty_dir+0xae0/0xae0 [ 1468.254191] ? jbd2__journal_start+0xf3/0x7e0 [ 1468.255266] iomap_dio_rw+0x31/0x90 [ 1468.256104] ext4_file_write_iter+0xe0e/0x1530 [ 1468.257160] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1468.258205] ? kasan_save_stack+0x32/0x40 [ 1468.259206] ? kasan_save_stack+0x1b/0x40 [ 1468.260152] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1468.261310] ? iter_file_splice_write+0x165/0xc90 [ 1468.262426] ? direct_splice_actor+0x10f/0x170 [ 1468.263510] ? splice_direct_to_actor+0x387/0x980 [ 1468.264632] ? do_splice_direct+0x1c4/0x290 [ 1468.265657] ? do_sendfile+0x553/0x11e0 [ 1468.266581] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1468.267656] ? do_syscall_64+0x33/0x40 [ 1468.268537] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1468.269756] do_iter_readv_writev+0x476/0x750 [ 1468.270784] ? new_sync_write+0x660/0x660 [ 1468.271735] ? avc_policy_seqno+0x9/0x70 [ 1468.272675] ? selinux_file_permission+0x92/0x520 [ 1468.273797] ? security_file_permission+0xb1/0xe0 [ 1468.274915] do_iter_write+0x191/0x700 [ 1468.275838] ? trace_hardirqs_on+0x5b/0x180 [ 1468.276866] vfs_iter_write+0x70/0xa0 [ 1468.277772] iter_file_splice_write+0x726/0xc90 [ 1468.278872] ? generic_splice_sendpage+0x140/0x140 [ 1468.280033] ? security_file_permission+0xb1/0xe0 [ 1468.281116] ? generic_splice_sendpage+0x140/0x140 [ 1468.282240] direct_splice_actor+0x10f/0x170 [ 1468.283270] splice_direct_to_actor+0x387/0x980 [ 1468.284354] ? pipe_to_sendpage+0x380/0x380 [ 1468.285368] ? do_splice_to+0x160/0x160 [ 1468.286272] ? security_file_permission+0xb1/0xe0 [ 1468.287373] do_splice_direct+0x1c4/0x290 [ 1468.288325] ? splice_direct_to_actor+0x980/0x980 [ 1468.289455] ? avc_policy_seqno+0x9/0x70 [ 1468.290387] ? security_file_permission+0xb1/0xe0 [ 1468.291556] do_sendfile+0x553/0x11e0 [ 1468.292448] ? do_pwritev+0x270/0x270 [ 1468.293316] ? wait_for_completion_io+0x270/0x270 [ 1468.294492] ? rcu_read_lock_any_held+0x75/0xa0 [ 1468.295608] ? vfs_write+0x354/0xb10 [ 1468.296480] __x64_sys_sendfile64+0x1d1/0x210 [ 1468.297535] ? __ia32_sys_sendfile+0x220/0x220 [ 1468.298598] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1468.299835] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1468.301053] do_syscall_64+0x33/0x40 [ 1468.301930] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1468.303126] RIP: 0033:0x7fdf91659b19 [ 1468.304004] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1468.308313] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1468.310106] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1468.311810] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1468.313467] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1468.315142] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1468.316842] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 05:55:49 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 10) fallocate(r0, 0x0, 0x0, 0x1000002) 05:55:49 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000001000000, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) [ 1468.460562] FAULT_INJECTION: forcing a failure. [ 1468.460562] name failslab, interval 1, probability 0, space 0, times 0 [ 1468.463837] CPU: 1 PID: 8666 Comm: syz-executor.4 Not tainted 5.10.233 #1 [ 1468.465637] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1468.468067] Call Trace: [ 1468.468795] dump_stack+0x107/0x167 [ 1468.469693] should_fail.cold+0x5/0xa [ 1468.470744] ? create_object.isra.0+0x3a/0xa20 [ 1468.472030] should_failslab+0x5/0x20 [ 1468.473147] kmem_cache_alloc+0x5b/0x310 [ 1468.474371] create_object.isra.0+0x3a/0xa20 [ 1468.475524] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1468.476895] kmem_cache_alloc+0x159/0x310 [ 1468.478061] jbd2__journal_start+0x190/0x7e0 [ 1468.479374] __ext4_journal_start_sb+0x214/0x390 [ 1468.480623] ext4_file_write_iter+0xee9/0x1530 [ 1468.481932] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1468.483218] ? kasan_save_stack+0x32/0x40 [ 1468.484307] ? kasan_save_stack+0x1b/0x40 [ 1468.485476] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1468.486847] ? iter_file_splice_write+0x165/0xc90 [ 1468.488162] ? direct_splice_actor+0x10f/0x170 [ 1468.489385] ? splice_direct_to_actor+0x387/0x980 [ 1468.490798] ? do_splice_direct+0x1c4/0x290 [ 1468.491964] ? do_sendfile+0x553/0x11e0 [ 1468.493050] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1468.494359] ? do_syscall_64+0x33/0x40 [ 1468.495361] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1468.496952] do_iter_readv_writev+0x476/0x750 [ 1468.498068] ? new_sync_write+0x660/0x660 [ 1468.499232] ? avc_policy_seqno+0x9/0x70 [ 1468.500391] ? selinux_file_permission+0x92/0x520 [ 1468.501803] ? security_file_permission+0xb1/0xe0 [ 1468.503123] do_iter_write+0x191/0x700 [ 1468.504182] ? trace_hardirqs_on+0x5b/0x180 [ 1468.505415] vfs_iter_write+0x70/0xa0 [ 1468.506436] iter_file_splice_write+0x726/0xc90 [ 1468.507761] ? generic_splice_sendpage+0x140/0x140 [ 1468.509124] ? security_file_permission+0xb1/0xe0 [ 1468.510451] ? generic_splice_sendpage+0x140/0x140 [ 1468.511807] direct_splice_actor+0x10f/0x170 [ 1468.513108] splice_direct_to_actor+0x387/0x980 [ 1468.514340] ? pipe_to_sendpage+0x380/0x380 [ 1468.515513] ? do_splice_to+0x160/0x160 [ 1468.516473] ? security_file_permission+0xb1/0xe0 [ 1468.517819] do_splice_direct+0x1c4/0x290 [ 1468.518809] ? splice_direct_to_actor+0x980/0x980 [ 1468.520203] ? avc_policy_seqno+0x9/0x70 [ 1468.521384] ? security_file_permission+0xb1/0xe0 [ 1468.522653] do_sendfile+0x553/0x11e0 [ 1468.523687] ? do_pwritev+0x270/0x270 [ 1468.524752] ? wait_for_completion_io+0x270/0x270 [ 1468.526236] ? rcu_read_lock_any_held+0x75/0xa0 [ 1468.527543] ? vfs_write+0x354/0xb10 [ 1468.528470] __x64_sys_sendfile64+0x1d1/0x210 [ 1468.529715] ? __ia32_sys_sendfile+0x220/0x220 [ 1468.530977] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1468.532567] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1468.533866] do_syscall_64+0x33/0x40 [ 1468.534873] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1468.536297] RIP: 0033:0x7f0e6bf6bb19 [ 1468.537505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1468.542475] RSP: 002b:00007f0e694e1188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1468.544676] RAX: ffffffffffffffda RBX: 00007f0e6c07ef60 RCX: 00007f0e6bf6bb19 [ 1468.546590] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1468.548783] RBP: 00007f0e694e11d0 R08: 0000000000000000 R09: 0000000000000000 [ 1468.550676] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1468.552578] R13: 00007ffec00aeedf R14: 00007f0e694e1300 R15: 0000000000022000 05:55:50 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x10100000000000, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:55:50 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000600) fallocate(r0, 0x0, 0x0, 0x1000002) 05:56:05 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000700) fallocate(r0, 0x0, 0x0, 0x1000002) 05:56:05 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000300) fallocate(r0, 0x0, 0x0, 0x1000002) 05:56:05 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 11) fallocate(r0, 0x0, 0x0, 0x1000002) 05:56:05 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r2 = signalfd(r1, &(0x7f0000000040)={[0x8]}, 0x8) r3 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r6}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r6}}, 0x3ff) openat(r2, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r0, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:56:05 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x90bc523a550000, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:56:05 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x10000000d) fallocate(r0, 0x0, 0x0, 0x1000002) 05:56:05 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:56:05 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 17) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1484.029444] FAULT_INJECTION: forcing a failure. [ 1484.029444] name failslab, interval 1, probability 0, space 0, times 0 [ 1484.032474] CPU: 1 PID: 8693 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1484.034146] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1484.036212] Call Trace: [ 1484.036966] dump_stack+0x107/0x167 [ 1484.038007] should_fail.cold+0x5/0xa [ 1484.038955] ? create_object.isra.0+0x3a/0xa20 [ 1484.040210] should_failslab+0x5/0x20 [ 1484.041174] kmem_cache_alloc+0x5b/0x310 [ 1484.042362] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1484.043661] create_object.isra.0+0x3a/0xa20 [ 1484.045012] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1484.046268] kmem_cache_alloc+0x159/0x310 [ 1484.047473] ? __kernel_text_address+0x9/0x40 [ 1484.048602] jbd2__journal_start+0x190/0x7e0 [ 1484.049668] __ext4_journal_start_sb+0x214/0x390 [ 1484.050785] ext4_iomap_begin+0x485/0x700 [ 1484.051799] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1484.053172] ? kasan_save_stack+0x1b/0x40 [ 1484.054045] ? ext4_file_write_iter+0xe0e/0x1530 [ 1484.055498] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1484.056973] ? splice_direct_to_actor+0x387/0x980 [ 1484.057965] ? do_splice_direct+0x1c4/0x290 [ 1484.059046] ? do_sendfile+0x553/0x11e0 [ 1484.059994] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1484.061238] ? do_syscall_64+0x33/0x40 [ 1484.062232] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1484.063426] iomap_apply+0x164/0x810 [ 1484.064422] ? iomap_dio_rw+0x90/0x90 [ 1484.065497] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1484.067038] ? mark_held_locks+0x9e/0xe0 [ 1484.068003] ? filemap_check_errors+0xa5/0x150 [ 1484.069234] __iomap_dio_rw+0x6cd/0x1110 [ 1484.070269] ? iomap_dio_rw+0x90/0x90 [ 1484.071150] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1484.072281] ? ext4_orphan_add+0x253/0x9e0 [ 1484.073241] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1484.074571] ? ext4_empty_dir+0xae0/0xae0 [ 1484.075501] ? jbd2__journal_start+0xf3/0x7e0 [ 1484.076739] iomap_dio_rw+0x31/0x90 [ 1484.077570] ext4_file_write_iter+0xe0e/0x1530 [ 1484.078742] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1484.079937] ? kasan_save_stack+0x32/0x40 [ 1484.080988] ? kasan_save_stack+0x1b/0x40 [ 1484.082010] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1484.083161] ? iter_file_splice_write+0x165/0xc90 [ 1484.084397] ? direct_splice_actor+0x10f/0x170 [ 1484.085696] ? splice_direct_to_actor+0x387/0x980 [ 1484.086776] ? do_splice_direct+0x1c4/0x290 [ 1484.087776] ? do_sendfile+0x553/0x11e0 [ 1484.088669] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1484.089854] ? do_syscall_64+0x33/0x40 [ 1484.090863] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1484.092206] do_iter_readv_writev+0x476/0x750 [ 1484.093470] ? new_sync_write+0x660/0x660 [ 1484.094492] ? avc_policy_seqno+0x9/0x70 05:56:05 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xd0113fd2290000, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) [ 1484.095552] ? selinux_file_permission+0x92/0x520 [ 1484.096790] ? security_file_permission+0xb1/0xe0 [ 1484.098049] do_iter_write+0x191/0x700 [ 1484.099157] ? trace_hardirqs_on+0x5b/0x180 [ 1484.100488] vfs_iter_write+0x70/0xa0 [ 1484.101583] iter_file_splice_write+0x726/0xc90 [ 1484.103033] ? generic_splice_sendpage+0x140/0x140 [ 1484.104205] ? security_file_permission+0xb1/0xe0 [ 1484.105446] ? generic_splice_sendpage+0x140/0x140 [ 1484.106657] direct_splice_actor+0x10f/0x170 [ 1484.107894] splice_direct_to_actor+0x387/0x980 [ 1484.108863] ? pipe_to_sendpage+0x380/0x380 [ 1484.110125] ? do_splice_to+0x160/0x160 [ 1484.111340] ? security_file_permission+0xb1/0xe0 [ 1484.112403] do_splice_direct+0x1c4/0x290 [ 1484.113360] ? splice_direct_to_actor+0x980/0x980 [ 1484.114352] ? avc_policy_seqno+0x9/0x70 [ 1484.115501] ? security_file_permission+0xb1/0xe0 [ 1484.116871] do_sendfile+0x553/0x11e0 [ 1484.117746] ? do_pwritev+0x270/0x270 [ 1484.118743] ? wait_for_completion_io+0x270/0x270 [ 1484.119981] ? rcu_read_lock_any_held+0x75/0xa0 [ 1484.121190] ? vfs_write+0x354/0xb10 [ 1484.122254] __x64_sys_sendfile64+0x1d1/0x210 [ 1484.123350] ? __ia32_sys_sendfile+0x220/0x220 [ 1484.124395] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1484.125737] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1484.127124] do_syscall_64+0x33/0x40 [ 1484.128102] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1484.129408] RIP: 0033:0x7fdf91659b19 [ 1484.130386] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1484.134977] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1484.136937] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1484.138901] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1484.140819] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1484.142428] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1484.144292] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 [ 1484.156565] FAULT_INJECTION: forcing a failure. [ 1484.156565] name failslab, interval 1, probability 0, space 0, times 0 [ 1484.159262] CPU: 1 PID: 8692 Comm: syz-executor.4 Not tainted 5.10.233 #1 [ 1484.160802] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1484.162701] Call Trace: [ 1484.163296] dump_stack+0x107/0x167 [ 1484.164141] should_fail.cold+0x5/0xa [ 1484.165015] ? __iomap_dio_rw+0x1ee/0x1110 [ 1484.165991] should_failslab+0x5/0x20 [ 1484.166867] kmem_cache_alloc_trace+0x55/0x320 [ 1484.167953] __iomap_dio_rw+0x1ee/0x1110 [ 1484.168886] ? jbd2_journal_stop+0x188/0xdc0 [ 1484.169895] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1484.170929] ? ext4_orphan_add+0x253/0x9e0 [ 1484.171879] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1484.172973] ? ext4_empty_dir+0xae0/0xae0 [ 1484.173930] ? jbd2__journal_start+0xf3/0x7e0 [ 1484.174967] iomap_dio_rw+0x31/0x90 [ 1484.175812] ext4_file_write_iter+0xe0e/0x1530 [ 1484.176861] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1484.177912] ? kasan_save_stack+0x32/0x40 [ 1484.178870] ? kasan_save_stack+0x1b/0x40 [ 1484.179831] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1484.180987] ? iter_file_splice_write+0x165/0xc90 [ 1484.182113] ? direct_splice_actor+0x10f/0x170 [ 1484.183146] ? splice_direct_to_actor+0x387/0x980 [ 1484.184245] ? do_splice_direct+0x1c4/0x290 [ 1484.185208] ? do_sendfile+0x553/0x11e0 [ 1484.186109] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1484.187168] ? do_syscall_64+0x33/0x40 [ 1484.188057] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1484.189254] do_iter_readv_writev+0x476/0x750 [ 1484.190241] ? new_sync_write+0x660/0x660 [ 1484.191199] ? avc_policy_seqno+0x9/0x70 [ 1484.192128] ? selinux_file_permission+0x92/0x520 [ 1484.193226] ? security_file_permission+0xb1/0xe0 [ 1484.194320] do_iter_write+0x191/0x700 [ 1484.195291] ? trace_hardirqs_on+0x5b/0x180 [ 1484.196331] vfs_iter_write+0x70/0xa0 [ 1484.197185] iter_file_splice_write+0x726/0xc90 [ 1484.198280] ? generic_splice_sendpage+0x140/0x140 [ 1484.199414] ? security_file_permission+0xb1/0xe0 [ 1484.200547] ? generic_splice_sendpage+0x140/0x140 [ 1484.201665] direct_splice_actor+0x10f/0x170 [ 1484.202689] splice_direct_to_actor+0x387/0x980 [ 1484.203766] ? pipe_to_sendpage+0x380/0x380 [ 1484.204754] ? do_splice_to+0x160/0x160 [ 1484.205702] ? security_file_permission+0xb1/0xe0 [ 1484.206817] do_splice_direct+0x1c4/0x290 [ 1484.207753] ? splice_direct_to_actor+0x980/0x980 [ 1484.208756] ? avc_policy_seqno+0x9/0x70 [ 1484.209613] ? security_file_permission+0xb1/0xe0 [ 1484.210864] do_sendfile+0x553/0x11e0 [ 1484.211701] ? do_pwritev+0x270/0x270 [ 1484.212718] ? wait_for_completion_io+0x270/0x270 [ 1484.214111] ? rcu_read_lock_any_held+0x75/0xa0 [ 1484.215433] ? vfs_write+0x354/0xb10 [ 1484.216360] __x64_sys_sendfile64+0x1d1/0x210 [ 1484.217403] ? __ia32_sys_sendfile+0x220/0x220 [ 1484.218457] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1484.219660] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1484.220863] do_syscall_64+0x33/0x40 [ 1484.221726] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1484.222902] RIP: 0033:0x7f0e6bf6bb19 [ 1484.223775] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1484.228022] RSP: 002b:00007f0e694e1188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1484.229770] RAX: ffffffffffffffda RBX: 00007f0e6c07ef60 RCX: 00007f0e6bf6bb19 [ 1484.231407] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1484.233054] RBP: 00007f0e694e11d0 R08: 0000000000000000 R09: 0000000000000000 [ 1484.234696] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1484.236343] R13: 00007ffec00aeedf R14: 00007f0e694e1300 R15: 0000000000022000 05:56:05 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf0f10b1b000000, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:56:05 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf0ff1f00000000, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:56:05 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 12) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1484.468044] FAULT_INJECTION: forcing a failure. [ 1484.468044] name failslab, interval 1, probability 0, space 0, times 0 [ 1484.469598] CPU: 0 PID: 8712 Comm: syz-executor.4 Not tainted 5.10.233 #1 [ 1484.470611] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1484.471780] Call Trace: [ 1484.472160] dump_stack+0x107/0x167 [ 1484.472679] should_fail.cold+0x5/0xa [ 1484.473221] ? create_object.isra.0+0x3a/0xa20 [ 1484.473867] should_failslab+0x5/0x20 [ 1484.474401] kmem_cache_alloc+0x5b/0x310 [ 1484.474973] create_object.isra.0+0x3a/0xa20 [ 1484.475588] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1484.476313] kmem_cache_alloc_trace+0x151/0x320 [ 1484.476977] __iomap_dio_rw+0x1ee/0x1110 [ 1484.477565] ? jbd2_journal_stop+0x188/0xdc0 [ 1484.478184] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1484.478831] ? ext4_orphan_add+0x253/0x9e0 [ 1484.479429] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1484.480133] ? ext4_empty_dir+0xae0/0xae0 [ 1484.480712] ? jbd2__journal_start+0xf3/0x7e0 [ 1484.481346] iomap_dio_rw+0x31/0x90 [ 1484.481861] ext4_file_write_iter+0xe0e/0x1530 [ 1484.482516] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1484.483161] ? kasan_save_stack+0x32/0x40 [ 1484.483745] ? kasan_save_stack+0x1b/0x40 [ 1484.484344] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1484.485221] ? iter_file_splice_write+0x165/0xc90 [ 1484.485937] ? direct_splice_actor+0x10f/0x170 [ 1484.486613] ? splice_direct_to_actor+0x387/0x980 [ 1484.487319] ? do_splice_direct+0x1c4/0x290 [ 1484.487963] ? do_sendfile+0x553/0x11e0 [ 1484.488538] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1484.489215] ? do_syscall_64+0x33/0x40 [ 1484.489788] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1484.490583] do_iter_readv_writev+0x476/0x750 [ 1484.491248] ? new_sync_write+0x660/0x660 [ 1484.491871] ? avc_policy_seqno+0x9/0x70 [ 1484.492468] ? selinux_file_permission+0x92/0x520 [ 1484.493179] ? security_file_permission+0xb1/0xe0 [ 1484.493894] do_iter_write+0x191/0x700 [ 1484.494471] ? trace_hardirqs_on+0x5b/0x180 [ 1484.495116] vfs_iter_write+0x70/0xa0 [ 1484.495682] iter_file_splice_write+0x726/0xc90 [ 1484.496394] ? generic_splice_sendpage+0x140/0x140 [ 1484.497137] ? security_file_permission+0xb1/0xe0 [ 1484.497851] ? generic_splice_sendpage+0x140/0x140 [ 1484.498574] direct_splice_actor+0x10f/0x170 [ 1484.499225] splice_direct_to_actor+0x387/0x980 [ 1484.499936] ? pipe_to_sendpage+0x380/0x380 [ 1484.500572] ? do_splice_to+0x160/0x160 [ 1484.501153] ? security_file_permission+0xb1/0xe0 [ 1484.501872] do_splice_direct+0x1c4/0x290 [ 1484.502482] ? splice_direct_to_actor+0x980/0x980 [ 1484.503192] ? avc_policy_seqno+0x9/0x70 [ 1484.503804] ? security_file_permission+0xb1/0xe0 [ 1484.504522] do_sendfile+0x553/0x11e0 [ 1484.505096] ? do_pwritev+0x270/0x270 [ 1484.505662] ? wait_for_completion_io+0x270/0x270 [ 1484.506373] ? rcu_read_lock_any_held+0x75/0xa0 [ 1484.507053] ? vfs_write+0x354/0xb10 [ 1484.507606] __x64_sys_sendfile64+0x1d1/0x210 [ 1484.508275] ? __ia32_sys_sendfile+0x220/0x220 [ 1484.508955] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1484.509736] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1484.510509] do_syscall_64+0x33/0x40 [ 1484.511055] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1484.511817] RIP: 0033:0x7f0e6bf6bb19 [ 1484.512357] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1484.515037] RSP: 002b:00007f0e694e1188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1484.516205] RAX: ffffffffffffffda RBX: 00007f0e6c07ef60 RCX: 00007f0e6bf6bb19 [ 1484.517241] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1484.518292] RBP: 00007f0e694e11d0 R08: 0000000000000000 R09: 0000000000000000 [ 1484.519347] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1484.520419] R13: 00007ffec00aeedf R14: 00007f0e694e1300 R15: 0000000000022000 05:56:06 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000500) fallocate(r0, 0x0, 0x0, 0x1000002) 05:56:06 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x100000000000000, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:56:06 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x800000000000000, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:56:06 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000900) fallocate(r0, 0x0, 0x0, 0x1000002) 05:56:06 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 18) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1484.743081] FAULT_INJECTION: forcing a failure. [ 1484.743081] name failslab, interval 1, probability 0, space 0, times 0 [ 1484.744928] CPU: 0 PID: 8725 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1484.745871] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1484.747012] Call Trace: [ 1484.747377] dump_stack+0x107/0x167 [ 1484.747896] should_fail.cold+0x5/0xa [ 1484.748426] ? create_object.isra.0+0x3a/0xa20 [ 1484.749057] should_failslab+0x5/0x20 [ 1484.749582] kmem_cache_alloc+0x5b/0x310 [ 1484.750159] create_object.isra.0+0x3a/0xa20 [ 1484.750774] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1484.751487] __kmalloc+0x16e/0x390 [ 1484.752000] ext4_find_extent+0xa77/0xd70 [ 1484.752591] ext4_ext_map_blocks+0x1c8/0x5830 [ 1484.753226] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1484.753962] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1484.754700] ? ext4_ext_release+0x10/0x10 [ 1484.755290] ? lock_release+0x680/0x680 [ 1484.755873] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1484.756535] ? lock_downgrade+0x6d0/0x6d0 [ 1484.757142] ? down_read+0x10f/0x430 [ 1484.757686] ? down_write+0x160/0x160 [ 1484.758235] ? ext4_es_lookup_extent+0xc4/0xaa0 [ 1484.758918] ext4_map_blocks+0x8e1/0x1910 [ 1484.759524] ? kmem_cache_alloc+0x2a6/0x310 [ 1484.760161] ? __kernel_text_address+0x9/0x40 [ 1484.760814] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1484.761465] ? jbd2__journal_start+0xf3/0x7e0 [ 1484.762124] ? __ext4_journal_start_sb+0x214/0x390 [ 1484.762833] ? __ext4_journal_start_sb+0x1db/0x390 [ 1484.763549] ext4_iomap_begin+0x3ad/0x700 [ 1484.764170] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1484.764871] ? kasan_save_stack+0x1b/0x40 [ 1484.765476] ? ext4_file_write_iter+0xe0e/0x1530 [ 1484.766165] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1484.767077] ? splice_direct_to_actor+0x387/0x980 [ 1484.767783] ? do_splice_direct+0x1c4/0x290 [ 1484.768404] ? do_sendfile+0x553/0x11e0 [ 1484.768971] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1484.769634] ? do_syscall_64+0x33/0x40 [ 1484.770195] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1484.770967] iomap_apply+0x164/0x810 [ 1484.771508] ? iomap_dio_rw+0x90/0x90 [ 1484.772063] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1484.772904] ? mark_held_locks+0x9e/0xe0 [ 1484.773505] ? filemap_check_errors+0xa5/0x150 [ 1484.774174] __iomap_dio_rw+0x6cd/0x1110 [ 1484.774760] ? iomap_dio_rw+0x90/0x90 [ 1484.775331] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1484.775978] ? ext4_orphan_add+0x253/0x9e0 [ 1484.776589] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1484.777298] ? ext4_empty_dir+0xae0/0xae0 [ 1484.777896] ? jbd2__journal_start+0xf3/0x7e0 [ 1484.778552] iomap_dio_rw+0x31/0x90 [ 1484.779085] ext4_file_write_iter+0xe0e/0x1530 [ 1484.779759] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1484.780430] ? kasan_save_stack+0x32/0x40 [ 1484.781031] ? kasan_save_stack+0x1b/0x40 [ 1484.781634] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1484.782378] ? iter_file_splice_write+0x165/0xc90 [ 1484.783076] ? direct_splice_actor+0x10f/0x170 [ 1484.783731] ? splice_direct_to_actor+0x387/0x980 [ 1484.784433] ? do_splice_direct+0x1c4/0x290 [ 1484.785055] ? do_sendfile+0x553/0x11e0 [ 1484.785625] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1484.786291] ? do_syscall_64+0x33/0x40 [ 1484.786855] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1484.787635] do_iter_readv_writev+0x476/0x750 [ 1484.788305] ? new_sync_write+0x660/0x660 [ 1484.788911] ? avc_policy_seqno+0x9/0x70 [ 1484.789502] ? selinux_file_permission+0x92/0x520 [ 1484.790201] ? security_file_permission+0xb1/0xe0 [ 1484.790907] do_iter_write+0x191/0x700 [ 1484.791478] ? trace_hardirqs_on+0x5b/0x180 [ 1484.792063] vfs_iter_write+0x70/0xa0 05:56:06 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x10000000f) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1484.792512] iter_file_splice_write+0x726/0xc90 [ 1484.793203] ? generic_splice_sendpage+0x140/0x140 [ 1484.793771] ? security_file_permission+0xb1/0xe0 [ 1484.794336] ? generic_splice_sendpage+0x140/0x140 [ 1484.794907] direct_splice_actor+0x10f/0x170 [ 1484.795429] splice_direct_to_actor+0x387/0x980 [ 1484.795981] ? pipe_to_sendpage+0x380/0x380 [ 1484.796487] ? do_splice_to+0x160/0x160 [ 1484.796950] ? security_file_permission+0xb1/0xe0 [ 1484.797517] do_splice_direct+0x1c4/0x290 [ 1484.798002] ? splice_direct_to_actor+0x980/0x980 [ 1484.798562] ? avc_policy_seqno+0x9/0x70 [ 1484.799041] ? security_file_permission+0xb1/0xe0 [ 1484.799609] do_sendfile+0x553/0x11e0 [ 1484.800069] ? do_pwritev+0x270/0x270 [ 1484.800516] ? wait_for_completion_io+0x270/0x270 [ 1484.801086] ? rcu_read_lock_any_held+0x75/0xa0 [ 1484.801629] ? vfs_write+0x354/0xb10 [ 1484.802066] __x64_sys_sendfile64+0x1d1/0x210 [ 1484.802587] ? __ia32_sys_sendfile+0x220/0x220 [ 1484.803124] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1484.803735] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1484.804346] do_syscall_64+0x33/0x40 [ 1484.804779] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1484.805380] RIP: 0033:0x7fdf91659b19 [ 1484.805821] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1484.807970] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1484.808864] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1484.809710] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1484.810541] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1484.811376] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1484.812223] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 05:56:06 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1100000000000000, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:56:19 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000010) fallocate(r0, 0x0, 0x0, 0x1000002) 05:56:19 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r2 = signalfd(r1, &(0x7f0000000040)={[0x8]}, 0x8) r3 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r6}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r6}}, 0x3ff) openat(r2, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r0, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:56:19 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000a00) fallocate(r0, 0x0, 0x0, 0x1000002) 05:56:19 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000002) fallocate(r0, 0x0, 0x0, 0x1000002) 05:56:19 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000600) fallocate(r0, 0x0, 0x0, 0x1000002) 05:56:19 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x3f00000000000000, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:56:19 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 13) fallocate(r0, 0x0, 0x0, 0x1000002) 05:56:19 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 19) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1498.158372] FAULT_INJECTION: forcing a failure. [ 1498.158372] name failslab, interval 1, probability 0, space 0, times 0 [ 1498.159799] CPU: 1 PID: 8751 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1498.160678] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1498.161723] Call Trace: [ 1498.162060] dump_stack+0x107/0x167 [ 1498.162524] should_fail.cold+0x5/0xa [ 1498.163010] ? create_object.isra.0+0x3a/0xa20 [ 1498.163589] should_failslab+0x5/0x20 [ 1498.164073] kmem_cache_alloc+0x5b/0x310 [ 1498.164604] create_object.isra.0+0x3a/0xa20 [ 1498.165161] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1498.165805] kmem_cache_alloc+0x159/0x310 [ 1498.166338] __es_insert_extent+0xed1/0x1370 [ 1498.166898] ? do_raw_read_unlock+0x70/0x70 [ 1498.167448] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1498.168119] ext4_es_insert_extent+0x45d/0xf10 [ 1498.168706] ? ext4_es_scan_clu+0x2e0/0x2e0 [ 1498.169251] ? ext4_es_find_extent_range+0x1cb/0x460 [ 1498.169893] ? lock_downgrade+0x6d0/0x6d0 [ 1498.170419] ? __ext4_handle_dirty_super+0x100/0x100 [ 1498.171056] ? __es_find_extent_range+0x197/0x4b0 [ 1498.171663] ? do_raw_read_unlock+0x3b/0x70 [ 1498.172212] ext4_ext_map_blocks+0x1863/0x5830 [ 1498.172803] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1498.173465] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1498.174131] ? ext4_ext_release+0x10/0x10 [ 1498.174662] ? lock_release+0x680/0x680 [ 1498.175162] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1498.175753] ? lock_downgrade+0x6d0/0x6d0 [ 1498.176292] ? down_read+0x10f/0x430 [ 1498.176755] ? down_write+0x160/0x160 [ 1498.177232] ? ext4_es_lookup_extent+0xc4/0xaa0 [ 1498.177822] ext4_map_blocks+0x8e1/0x1910 [ 1498.178346] ? kmem_cache_alloc+0x2a6/0x310 [ 1498.178886] ? __kernel_text_address+0x9/0x40 [ 1498.179444] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1498.180010] ? jbd2__journal_start+0xf3/0x7e0 [ 1498.180582] ? __ext4_journal_start_sb+0x214/0x390 [ 1498.181195] ? __ext4_journal_start_sb+0x1db/0x390 [ 1498.181812] ext4_iomap_begin+0x3ad/0x700 [ 1498.182341] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1498.182957] ? kasan_save_stack+0x1b/0x40 [ 1498.183476] ? ext4_file_write_iter+0xe0e/0x1530 [ 1498.184071] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1498.184871] ? splice_direct_to_actor+0x387/0x980 [ 1498.185470] ? do_splice_direct+0x1c4/0x290 [ 1498.186009] ? do_sendfile+0x553/0x11e0 [ 1498.186499] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1498.187078] ? do_syscall_64+0x33/0x40 [ 1498.187564] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1498.188243] iomap_apply+0x164/0x810 [ 1498.188713] ? iomap_dio_rw+0x90/0x90 [ 1498.189194] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1498.189924] ? mark_held_locks+0x9e/0xe0 [ 1498.190441] ? filemap_check_errors+0xa5/0x150 [ 1498.191014] __iomap_dio_rw+0x6cd/0x1110 [ 1498.191521] ? iomap_dio_rw+0x90/0x90 [ 1498.192011] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1498.192594] ? ext4_orphan_add+0x253/0x9e0 [ 1498.193124] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1498.193736] ? ext4_empty_dir+0xae0/0xae0 [ 1498.194254] ? jbd2__journal_start+0xf3/0x7e0 [ 1498.194819] iomap_dio_rw+0x31/0x90 [ 1498.195275] ext4_file_write_iter+0xe0e/0x1530 [ 1498.195849] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1498.196422] ? kasan_save_stack+0x32/0x40 [ 1498.196934] ? kasan_save_stack+0x1b/0x40 [ 1498.197448] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1498.198074] ? iter_file_splice_write+0x165/0xc90 [ 1498.198670] ? direct_splice_actor+0x10f/0x170 [ 1498.199236] ? splice_direct_to_actor+0x387/0x980 [ 1498.199831] ? do_splice_direct+0x1c4/0x290 [ 1498.200372] ? do_sendfile+0x553/0x11e0 [ 1498.200861] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1498.201438] ? do_syscall_64+0x33/0x40 [ 1498.201914] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1498.202577] do_iter_readv_writev+0x476/0x750 [ 1498.203136] ? new_sync_write+0x660/0x660 [ 1498.203650] ? avc_policy_seqno+0x9/0x70 [ 1498.204154] ? selinux_file_permission+0x92/0x520 [ 1498.204761] ? security_file_permission+0xb1/0xe0 [ 1498.205367] do_iter_write+0x191/0x700 [ 1498.205852] ? trace_hardirqs_on+0x5b/0x180 [ 1498.206396] vfs_iter_write+0x70/0xa0 [ 1498.206872] iter_file_splice_write+0x726/0xc90 [ 1498.207455] ? generic_splice_sendpage+0x140/0x140 [ 1498.208075] ? security_file_permission+0xb1/0xe0 [ 1498.208681] ? generic_splice_sendpage+0x140/0x140 [ 1498.209290] direct_splice_actor+0x10f/0x170 [ 1498.209837] splice_direct_to_actor+0x387/0x980 [ 1498.210420] ? pipe_to_sendpage+0x380/0x380 [ 1498.210960] ? do_splice_to+0x160/0x160 [ 1498.211450] ? security_file_permission+0xb1/0xe0 [ 1498.212056] do_splice_direct+0x1c4/0x290 [ 1498.212576] ? splice_direct_to_actor+0x980/0x980 [ 1498.213174] ? avc_policy_seqno+0x9/0x70 [ 1498.213681] ? security_file_permission+0xb1/0xe0 [ 1498.214287] do_sendfile+0x553/0x11e0 [ 1498.214767] ? do_pwritev+0x270/0x270 [ 1498.215237] ? wait_for_completion_io+0x270/0x270 [ 1498.215833] ? rcu_read_lock_any_held+0x75/0xa0 [ 1498.216414] ? vfs_write+0x354/0xb10 [ 1498.216873] __x64_sys_sendfile64+0x1d1/0x210 [ 1498.217425] ? __ia32_sys_sendfile+0x220/0x220 [ 1498.217991] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1498.218635] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1498.219273] do_syscall_64+0x33/0x40 [ 1498.219732] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1498.220369] RIP: 0033:0x7fdf91659b19 [ 1498.220828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1498.223101] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1498.224050] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1498.224929] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1498.225804] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1498.226679] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1498.227558] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 05:56:19 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x4000000000000000, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:56:19 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:56:19 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xffffffff00000000, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:56:19 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x2}, 0x58) 05:56:20 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x3}, 0x58) 05:56:20 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x4}, 0x58) 05:56:20 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0xb}, 0x58) 05:56:20 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0xf}, 0x58) 05:56:34 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x4000}, 0x58) 05:56:34 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000011) fallocate(r0, 0x0, 0x0, 0x1000002) 05:56:34 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000b00) fallocate(r0, 0x0, 0x0, 0x1000002) 05:56:34 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000700) fallocate(r0, 0x0, 0x0, 0x1000002) 05:56:34 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 20) fallocate(r0, 0x0, 0x0, 0x1000002) 05:56:34 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000003) fallocate(r0, 0x0, 0x0, 0x1000002) 05:56:34 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000002) fallocate(r0, 0x0, 0x0, 0x1000002) 05:56:34 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) [ 1513.290205] FAULT_INJECTION: forcing a failure. [ 1513.290205] name failslab, interval 1, probability 0, space 0, times 0 [ 1513.291544] CPU: 1 PID: 8797 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1513.292322] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1513.293293] Call Trace: [ 1513.293626] dump_stack+0x107/0x167 [ 1513.294049] should_fail.cold+0x5/0xa [ 1513.294493] ? create_object.isra.0+0x3a/0xa20 [ 1513.295020] should_failslab+0x5/0x20 [ 1513.295459] kmem_cache_alloc+0x5b/0x310 [ 1513.295924] create_object.isra.0+0x3a/0xa20 [ 1513.296445] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1513.297037] __kmalloc+0x16e/0x390 [ 1513.297478] ext4_find_extent+0xa77/0xd70 [ 1513.297981] ? kfree+0xd7/0x340 [ 1513.298395] ext4_ext_map_blocks+0x1c8/0x5830 [ 1513.298959] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1513.299606] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1513.300259] ? ext4_ext_release+0x10/0x10 [ 1513.300780] ? ext4_map_blocks+0x5cd/0x1910 [ 1513.301307] ? lock_release+0x680/0x680 [ 1513.301798] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1513.302388] ? find_held_lock+0x2c/0x110 [ 1513.302909] ? down_write+0xe0/0x160 [ 1513.303373] ? down_write_killable+0x180/0x180 [ 1513.303924] ext4_map_blocks+0x63f/0x1910 [ 1513.304437] ? kmem_cache_alloc+0x2a6/0x310 [ 1513.304984] ? __kernel_text_address+0x9/0x40 [ 1513.305554] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1513.306085] ? jbd2__journal_start+0xf3/0x7e0 [ 1513.306613] ? __ext4_journal_start_sb+0x214/0x390 [ 1513.307199] ? __ext4_journal_start_sb+0x1db/0x390 [ 1513.307760] ext4_iomap_begin+0x3ad/0x700 [ 1513.308290] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1513.308894] ? kasan_save_stack+0x1b/0x40 [ 1513.309411] ? ext4_file_write_iter+0xe0e/0x1530 [ 1513.310006] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1513.310740] ? splice_direct_to_actor+0x387/0x980 [ 1513.311285] ? do_splice_direct+0x1c4/0x290 [ 1513.311793] ? do_sendfile+0x553/0x11e0 [ 1513.312270] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1513.312830] ? do_syscall_64+0x33/0x40 [ 1513.313298] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1513.313938] iomap_apply+0x164/0x810 [ 1513.314385] ? iomap_dio_rw+0x90/0x90 [ 1513.314845] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1513.315531] ? mark_held_locks+0x9e/0xe0 [ 1513.315998] ? filemap_check_errors+0xa5/0x150 [ 1513.316568] __iomap_dio_rw+0x6cd/0x1110 [ 1513.317062] ? iomap_dio_rw+0x90/0x90 [ 1513.317540] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1513.318081] ? ext4_orphan_add+0x253/0x9e0 [ 1513.318610] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1513.319227] ? ext4_empty_dir+0xae0/0xae0 [ 1513.319744] ? jbd2__journal_start+0xf3/0x7e0 [ 1513.320307] iomap_dio_rw+0x31/0x90 [ 1513.320779] ext4_file_write_iter+0xe0e/0x1530 [ 1513.321346] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1513.321905] ? kasan_save_stack+0x32/0x40 [ 1513.322378] ? kasan_save_stack+0x1b/0x40 [ 1513.322901] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1513.323515] ? iter_file_splice_write+0x165/0xc90 [ 1513.324084] ? direct_splice_actor+0x10f/0x170 [ 1513.324622] ? splice_direct_to_actor+0x387/0x980 [ 1513.325206] ? do_splice_direct+0x1c4/0x290 [ 1513.325714] ? do_sendfile+0x553/0x11e0 [ 1513.326186] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1513.326763] ? do_syscall_64+0x33/0x40 [ 1513.327249] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1513.327916] do_iter_readv_writev+0x476/0x750 [ 1513.328457] ? new_sync_write+0x660/0x660 [ 1513.328988] ? avc_policy_seqno+0x9/0x70 [ 1513.329500] ? selinux_file_permission+0x92/0x520 [ 1513.330119] ? security_file_permission+0xb1/0xe0 [ 1513.330716] do_iter_write+0x191/0x700 [ 1513.331207] ? trace_hardirqs_on+0x5b/0x180 [ 1513.331744] vfs_iter_write+0x70/0xa0 [ 1513.332216] iter_file_splice_write+0x726/0xc90 [ 1513.332811] ? generic_splice_sendpage+0x140/0x140 [ 1513.333431] ? security_file_permission+0xb1/0xe0 [ 1513.334025] ? generic_splice_sendpage+0x140/0x140 [ 1513.334633] direct_splice_actor+0x10f/0x170 [ 1513.335178] splice_direct_to_actor+0x387/0x980 [ 1513.335754] ? pipe_to_sendpage+0x380/0x380 [ 1513.336293] ? do_splice_to+0x160/0x160 [ 1513.336795] ? security_file_permission+0xb1/0xe0 [ 1513.337377] do_splice_direct+0x1c4/0x290 [ 1513.337888] ? splice_direct_to_actor+0x980/0x980 [ 1513.338481] ? avc_policy_seqno+0x9/0x70 [ 1513.338998] ? security_file_permission+0xb1/0xe0 [ 1513.339577] do_sendfile+0x553/0x11e0 [ 1513.340045] ? do_pwritev+0x270/0x270 [ 1513.340497] ? wait_for_completion_io+0x270/0x270 [ 1513.341090] ? rcu_read_lock_any_held+0x75/0xa0 [ 1513.341664] ? vfs_write+0x354/0xb10 [ 1513.342137] __x64_sys_sendfile64+0x1d1/0x210 [ 1513.342689] ? __ia32_sys_sendfile+0x220/0x220 [ 1513.343262] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1513.343906] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1513.344538] do_syscall_64+0x33/0x40 [ 1513.345014] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1513.345677] RIP: 0033:0x7fdf91659b19 [ 1513.346117] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1513.348286] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1513.349199] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1513.350044] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1513.350886] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1513.351737] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1513.352588] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 05:56:49 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x57) 05:56:49 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000c00) fallocate(r0, 0x0, 0x0, 0x1000002) 05:56:49 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:56:49 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000004) fallocate(r0, 0x0, 0x0, 0x1000002) 05:56:49 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 21) fallocate(r0, 0x0, 0x0, 0x1000002) 05:56:49 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000003) fallocate(r0, 0x0, 0x0, 0x1000002) 05:56:49 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000023) fallocate(r0, 0x0, 0x0, 0x1000002) 05:56:49 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000900) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1527.610708] FAULT_INJECTION: forcing a failure. [ 1527.610708] name failslab, interval 1, probability 0, space 0, times 0 [ 1527.612439] CPU: 1 PID: 8825 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1527.613304] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1527.614356] Call Trace: [ 1527.614688] dump_stack+0x107/0x167 [ 1527.615160] should_fail.cold+0x5/0xa [ 1527.615638] ? ext4_mb_new_blocks+0x698/0x45c0 [ 1527.616203] should_failslab+0x5/0x20 [ 1527.616675] kmem_cache_alloc+0x5b/0x310 [ 1527.617196] ext4_mb_new_blocks+0x698/0x45c0 [ 1527.617758] ? trace_hardirqs_on+0x5b/0x180 [ 1527.618306] ? kasan_unpoison_shadow+0x33/0x50 [ 1527.619157] ? ext4_cache_extents+0x68/0x2d0 [ 1527.619836] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1527.620604] ? ext4_discard_preallocations+0xd80/0xd80 [ 1527.621428] ? ext4_ext_search_right+0x2e3/0xbd0 [ 1527.622152] ? ext4_inode_to_goal_block+0x320/0x430 [ 1527.622775] ext4_ext_map_blocks+0x1d49/0x5830 [ 1527.623347] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1527.623981] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1527.624642] ? ext4_ext_release+0x10/0x10 [ 1527.625166] ? ext4_map_blocks+0x5cd/0x1910 [ 1527.625720] ? lock_release+0x680/0x680 [ 1527.626223] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1527.626812] ? find_held_lock+0x2c/0x110 [ 1527.627336] ? down_write_killable+0x180/0x180 [ 1527.627913] ext4_map_blocks+0x63f/0x1910 [ 1527.628442] ? kmem_cache_alloc+0x2a6/0x310 [ 1527.628966] ? __kernel_text_address+0x9/0x40 [ 1527.629542] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1527.630106] ? jbd2__journal_start+0xf3/0x7e0 [ 1527.630651] ? __ext4_journal_start_sb+0x214/0x390 [ 1527.631270] ? __ext4_journal_start_sb+0x1db/0x390 [ 1527.631890] ext4_iomap_begin+0x3ad/0x700 [ 1527.632428] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1527.633044] ? kasan_save_stack+0x1b/0x40 [ 1527.633566] ? ext4_file_write_iter+0xe0e/0x1530 [ 1527.634162] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1527.634936] ? splice_direct_to_actor+0x387/0x980 [ 1527.635520] ? do_splice_direct+0x1c4/0x290 [ 1527.636047] ? do_sendfile+0x553/0x11e0 [ 1527.636529] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1527.637101] ? do_syscall_64+0x33/0x40 [ 1527.637576] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1527.638255] iomap_apply+0x164/0x810 [ 1527.638705] ? iomap_dio_rw+0x90/0x90 [ 1527.639209] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1527.640096] ? mark_held_locks+0x9e/0xe0 [ 1527.640615] ? filemap_check_errors+0xa5/0x150 [ 1527.641197] __iomap_dio_rw+0x6cd/0x1110 [ 1527.641718] ? iomap_dio_rw+0x90/0x90 [ 1527.642221] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1527.642802] ? ext4_orphan_add+0x253/0x9e0 [ 1527.643343] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1527.643955] ? ext4_empty_dir+0xae0/0xae0 [ 1527.644453] ? jbd2__journal_start+0xf3/0x7e0 [ 1527.645003] iomap_dio_rw+0x31/0x90 [ 1527.645479] ext4_file_write_iter+0xe0e/0x1530 [ 1527.646042] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1527.646594] ? kasan_save_stack+0x32/0x40 [ 1527.647094] ? kasan_save_stack+0x1b/0x40 [ 1527.647584] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1527.648195] ? iter_file_splice_write+0x165/0xc90 [ 1527.648762] ? direct_splice_actor+0x10f/0x170 [ 1527.649328] ? splice_direct_to_actor+0x387/0x980 [ 1527.649926] ? do_splice_direct+0x1c4/0x290 [ 1527.650455] ? do_sendfile+0x553/0x11e0 [ 1527.650945] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1527.651535] ? do_syscall_64+0x33/0x40 [ 1527.652027] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1527.652689] do_iter_readv_writev+0x476/0x750 [ 1527.653236] ? new_sync_write+0x660/0x660 [ 1527.653762] ? avc_policy_seqno+0x9/0x70 [ 1527.654277] ? selinux_file_permission+0x92/0x520 [ 1527.654864] ? security_file_permission+0xb1/0xe0 [ 1527.655488] do_iter_write+0x191/0x700 [ 1527.656003] ? trace_hardirqs_on+0x5b/0x180 [ 1527.656541] vfs_iter_write+0x70/0xa0 [ 1527.657047] iter_file_splice_write+0x726/0xc90 [ 1527.657659] ? generic_splice_sendpage+0x140/0x140 [ 1527.658273] ? security_file_permission+0xb1/0xe0 [ 1527.658948] ? generic_splice_sendpage+0x140/0x140 [ 1527.659613] direct_splice_actor+0x10f/0x170 [ 1527.660155] splice_direct_to_actor+0x387/0x980 [ 1527.660721] ? pipe_to_sendpage+0x380/0x380 [ 1527.661255] ? do_splice_to+0x160/0x160 [ 1527.661750] ? security_file_permission+0xb1/0xe0 [ 1527.662346] do_splice_direct+0x1c4/0x290 [ 1527.662845] ? splice_direct_to_actor+0x980/0x980 [ 1527.663429] ? avc_policy_seqno+0x9/0x70 [ 1527.663913] ? security_file_permission+0xb1/0xe0 [ 1527.664510] do_sendfile+0x553/0x11e0 [ 1527.664974] ? do_pwritev+0x270/0x270 [ 1527.665441] ? wait_for_completion_io+0x270/0x270 [ 1527.666028] ? rcu_read_lock_any_held+0x75/0xa0 [ 1527.666584] ? vfs_write+0x354/0xb10 [ 1527.667042] __x64_sys_sendfile64+0x1d1/0x210 [ 1527.667572] ? __ia32_sys_sendfile+0x220/0x220 [ 1527.668149] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1527.668772] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1527.669409] do_syscall_64+0x33/0x40 [ 1527.669848] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1527.670476] RIP: 0033:0x7fdf91659b19 [ 1527.670918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1527.673146] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1527.674074] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1527.674916] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1527.675761] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1527.676628] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1527.677485] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 05:56:49 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x200033d8) 05:57:03 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:57:03 executing program 0: close(0xffffffffffffffff) syz_mount_image$ext4(&(0x7f0000000180)='ext2\x00', &(0x7f0000000040)='./file0\x00', 0x40004, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000000100)="ed4100000093b200dff4655fe0f4655fe0f4655f0000080000000400045539545cee", 0x22, 0x2100}], 0x0, &(0x7f00000004c0)=ANY=[@ANYRES16=0x0, @ANYRESDEC]) io_setup(0x80000001, &(0x7f0000000280)) openat(0xffffffffffffffff, 0x0, 0x101142, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x32e, 0x0, 0x0}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, &(0x7f0000002a40)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x1, 0x10, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x18, 0x0, 0x23456}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) umount2(&(0x7f00000000c0)='./file0\x00', 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r2, 0x0, 0x0) listen(r2, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)=0x0) timer_create(0x7, &(0x7f0000000180)={0x0, 0xe, 0x1, @tid=r3}, &(0x7f0000000340)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)=0x0) timer_create(0x7, &(0x7f0000000180)={0x0, 0xe, 0x1, @tid=r4}, &(0x7f0000000340)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) 05:57:03 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000d00) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:03 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x1000001da) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:03 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 22) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:03 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000a00) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:03 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000004) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:03 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000005) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1541.843606] FAULT_INJECTION: forcing a failure. [ 1541.843606] name failslab, interval 1, probability 0, space 0, times 0 [ 1541.846863] CPU: 1 PID: 8856 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1541.848596] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1541.850702] Call Trace: [ 1541.851371] dump_stack+0x107/0x167 [ 1541.852295] should_fail.cold+0x5/0xa [ 1541.853264] ? create_object.isra.0+0x3a/0xa20 [ 1541.854456] should_failslab+0x5/0x20 [ 1541.855423] kmem_cache_alloc+0x5b/0x310 [ 1541.856465] create_object.isra.0+0x3a/0xa20 [ 1541.857583] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1541.858894] __kmalloc+0x16e/0x390 [ 1541.859084] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 1541.859697] ext4_find_extent+0xa77/0xd70 [ 1541.861910] ? kfree+0xd7/0x340 [ 1541.862710] ext4_ext_map_blocks+0x1c8/0x5830 [ 1541.863778] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1541.865006] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1541.866230] ? ext4_ext_release+0x10/0x10 [ 1541.867165] ? ext4_map_blocks+0x5cd/0x1910 [ 1541.868160] ? lock_release+0x680/0x680 [ 1541.869056] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1541.870177] ? find_held_lock+0x2c/0x110 [ 1541.871102] ? down_write+0xe0/0x160 [ 1541.871973] ? down_write_killable+0x180/0x180 [ 1541.873005] ext4_map_blocks+0x63f/0x1910 [ 1541.874025] ? kmem_cache_alloc+0x2a6/0x310 [ 1541.875157] ? __kernel_text_address+0x9/0x40 [ 1541.876350] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1541.877378] ? jbd2__journal_start+0xf3/0x7e0 [ 1541.878449] ? __ext4_journal_start_sb+0x214/0x390 [ 1541.879574] ? __ext4_journal_start_sb+0x1db/0x390 [ 1541.880709] ext4_iomap_begin+0x3ad/0x700 [ 1541.881651] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1541.882788] ? kasan_save_stack+0x1b/0x40 [ 1541.883765] ? ext4_file_write_iter+0xe0e/0x1530 [ 1541.884861] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1541.886338] ? splice_direct_to_actor+0x387/0x980 [ 1541.887445] ? do_splice_direct+0x1c4/0x290 [ 1541.888448] ? do_sendfile+0x553/0x11e0 [ 1541.889362] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1541.890459] ? do_syscall_64+0x33/0x40 [ 1541.891371] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1541.892613] iomap_apply+0x164/0x810 [ 1541.893457] ? iomap_dio_rw+0x90/0x90 [ 1541.894369] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1541.895716] ? mark_held_locks+0x9e/0xe0 [ 1541.896688] ? filemap_check_errors+0xa5/0x150 [ 1541.897772] __iomap_dio_rw+0x6cd/0x1110 [ 1541.898741] ? iomap_dio_rw+0x90/0x90 [ 1541.899646] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1541.900723] ? ext4_orphan_add+0x253/0x9e0 [ 1541.901701] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1541.902864] ? ext4_empty_dir+0xae0/0xae0 [ 1541.903828] ? jbd2__journal_start+0xf3/0x7e0 [ 1541.904882] iomap_dio_rw+0x31/0x90 [ 1541.905730] ext4_file_write_iter+0xe0e/0x1530 [ 1541.906831] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1541.907891] ? kasan_save_stack+0x32/0x40 [ 1541.908853] ? kasan_save_stack+0x1b/0x40 [ 1541.909853] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1541.911032] ? iter_file_splice_write+0x165/0xc90 [ 1541.912143] ? direct_splice_actor+0x10f/0x170 [ 1541.913198] ? splice_direct_to_actor+0x387/0x980 [ 1541.914329] ? do_splice_direct+0x1c4/0x290 [ 1541.915327] ? do_sendfile+0x553/0x11e0 [ 1541.916250] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1541.917334] ? do_syscall_64+0x33/0x40 [ 1541.918243] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1541.919493] do_iter_readv_writev+0x476/0x750 [ 1541.920552] ? new_sync_write+0x660/0x660 [ 1541.921525] ? avc_policy_seqno+0x9/0x70 [ 1541.922553] ? selinux_file_permission+0x92/0x520 [ 1541.923666] ? security_file_permission+0xb1/0xe0 [ 1541.924791] do_iter_write+0x191/0x700 [ 1541.925693] ? trace_hardirqs_on+0x5b/0x180 [ 1541.926711] vfs_iter_write+0x70/0xa0 [ 1541.927590] iter_file_splice_write+0x726/0xc90 [ 1541.928680] ? generic_splice_sendpage+0x140/0x140 [ 1541.929841] ? security_file_permission+0xb1/0xe0 [ 1541.930954] ? generic_splice_sendpage+0x140/0x140 [ 1541.932085] direct_splice_actor+0x10f/0x170 [ 1541.933106] splice_direct_to_actor+0x387/0x980 [ 1541.934193] ? pipe_to_sendpage+0x380/0x380 [ 1541.935192] ? do_splice_to+0x160/0x160 [ 1541.936104] ? security_file_permission+0xb1/0xe0 [ 1541.937228] do_splice_direct+0x1c4/0x290 [ 1541.938192] ? splice_direct_to_actor+0x980/0x980 [ 1541.939299] ? avc_policy_seqno+0x9/0x70 [ 1541.940242] ? security_file_permission+0xb1/0xe0 [ 1541.941362] do_sendfile+0x553/0x11e0 [ 1541.942257] ? do_pwritev+0x270/0x270 [ 1541.943139] ? wait_for_completion_io+0x270/0x270 [ 1541.944257] ? rcu_read_lock_any_held+0x75/0xa0 [ 1541.945331] ? vfs_write+0x354/0xb10 [ 1541.946203] __x64_sys_sendfile64+0x1d1/0x210 [ 1541.947239] ? __ia32_sys_sendfile+0x220/0x220 [ 1541.948303] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1541.949517] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1541.950723] do_syscall_64+0x33/0x40 [ 1541.951555] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1541.952739] RIP: 0033:0x7fdf91659b19 [ 1541.953603] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1541.957860] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1541.959619] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1541.961270] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1541.962923] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1541.964568] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1541.966218] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 [ 1542.035043] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue 05:57:03 executing program 0: r0 = clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)=0x0) timer_create(0x7, &(0x7f0000000180)={0x0, 0xe, 0x1, @tid=r1}, &(0x7f0000000340)) r2 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000200), 0x84542, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r3, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) timer_create(0x3, 0x0, &(0x7f0000000040)=0x0) timer_settime(r4, 0x0, &(0x7f0000000400)={{}, {0x77359400}}, 0x0) clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) timer_settime(r4, 0x1, &(0x7f0000000300)={{r5, r6+10000000}, {0x77359400}}, &(0x7f0000000380)) timer_settime(r4, 0x0, &(0x7f0000000680)={{0x77359400}, {0x77359400}}, &(0x7f00000006c0)) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x81f8943c, &(0x7f0000000480)) clone3(&(0x7f0000000240)={0x400, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {}, &(0x7f00000000c0)=""/168, 0xa8, &(0x7f0000000180)=""/43, &(0x7f00000001c0)=[r0, r1], 0x2, {r2}}, 0x58) openat$cgroup_ro(r2, &(0x7f00000002c0)='blkio.bfq.idle_time\x00', 0x0, 0x0) timer_create(0x5, &(0x7f0000000400)={0x0, 0x40, 0x0, @thr={&(0x7f0000000380)="bc9d25bbfd71e8a0021118d1aa85a40de1fa4a137e61d69db1095fae9367be6abf1f1d4f481724b73536f2d954fb81c28be19871220fa6debfe8c0bced763d264e9ead", &(0x7f0000000300)="1840d34ad380bd35c148f4a49bc575fc6d90404c"}}, &(0x7f0000000440)) 05:57:03 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000005) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:03 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000281) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:03 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000b00) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:03 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:57:03 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 23) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:03 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000006) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:04 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000ddf) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:04 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000006) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:04 executing program 0: ioctl$MON_IOCQ_RING_SIZE(0xffffffffffffffff, 0x9205) clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$BTRFS_IOC_SNAP_DESTROY(r0, 0x5000940f, &(0x7f0000000040)={{}, "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"}) [ 1542.606695] FAULT_INJECTION: forcing a failure. [ 1542.606695] name failslab, interval 1, probability 0, space 0, times 0 [ 1542.608194] CPU: 0 PID: 8900 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1542.608958] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1542.610013] Call Trace: [ 1542.610329] dump_stack+0x107/0x167 [ 1542.610736] should_fail.cold+0x5/0xa [ 1542.611171] ? __es_insert_extent+0xed1/0x1370 [ 1542.611697] should_failslab+0x5/0x20 [ 1542.612132] kmem_cache_alloc+0x5b/0x310 [ 1542.612609] __es_insert_extent+0xed1/0x1370 [ 1542.613132] ext4_es_insert_extent+0x45d/0xf10 [ 1542.613663] ? ext4_es_scan_clu+0x2e0/0x2e0 [ 1542.614189] ? down_write_killable+0x180/0x180 [ 1542.614715] ext4_map_blocks+0x80b/0x1910 [ 1542.615206] ? __kernel_text_address+0x9/0x40 [ 1542.615722] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1542.616256] ? jbd2__journal_start+0xf3/0x7e0 [ 1542.616781] ? __ext4_journal_start_sb+0x214/0x390 [ 1542.617356] ? __ext4_journal_start_sb+0x1db/0x390 [ 1542.617935] ext4_iomap_begin+0x3ad/0x700 [ 1542.618429] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1542.618991] ? kasan_save_stack+0x1b/0x40 [ 1542.619484] ? ext4_file_write_iter+0xe0e/0x1530 [ 1542.620040] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1542.620777] ? splice_direct_to_actor+0x387/0x980 [ 1542.621345] ? do_splice_direct+0x1c4/0x290 [ 1542.621848] ? do_sendfile+0x553/0x11e0 [ 1542.622317] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1542.622847] ? do_syscall_64+0x33/0x40 [ 1542.623276] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1542.623882] iomap_apply+0x164/0x810 [ 1542.624342] ? iomap_dio_rw+0x90/0x90 [ 1542.624811] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1542.625523] ? mark_held_locks+0x9e/0xe0 [ 1542.626040] ? filemap_check_errors+0xa5/0x150 [ 1542.626600] __iomap_dio_rw+0x6cd/0x1110 [ 1542.627098] ? iomap_dio_rw+0x90/0x90 [ 1542.627578] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1542.628133] ? ext4_orphan_add+0x253/0x9e0 [ 1542.628644] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1542.629239] ? ext4_empty_dir+0xae0/0xae0 [ 1542.629897] ? jbd2__journal_start+0xf3/0x7e0 [ 1542.630482] iomap_dio_rw+0x31/0x90 [ 1542.630942] ext4_file_write_iter+0xe0e/0x1530 [ 1542.631506] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1542.632055] ? kasan_save_stack+0x32/0x40 [ 1542.632544] ? kasan_save_stack+0x1b/0x40 [ 1542.633043] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1542.633649] ? iter_file_splice_write+0x165/0xc90 [ 1542.634250] ? direct_splice_actor+0x10f/0x170 [ 1542.634802] ? splice_direct_to_actor+0x387/0x980 [ 1542.635381] ? do_splice_direct+0x1c4/0x290 [ 1542.635929] ? do_sendfile+0x553/0x11e0 [ 1542.636437] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1542.637036] ? do_syscall_64+0x33/0x40 [ 1542.637537] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1542.638258] do_iter_readv_writev+0x476/0x750 [ 1542.638855] ? new_sync_write+0x660/0x660 [ 1542.639398] ? avc_policy_seqno+0x9/0x70 [ 1542.639921] ? selinux_file_permission+0x92/0x520 [ 1542.640617] ? security_file_permission+0xb1/0xe0 [ 1542.641353] do_iter_write+0x191/0x700 [ 1542.641937] ? trace_hardirqs_on+0x5b/0x180 [ 1542.642565] vfs_iter_write+0x70/0xa0 [ 1542.643112] iter_file_splice_write+0x726/0xc90 [ 1542.643800] ? generic_splice_sendpage+0x140/0x140 [ 1542.644515] ? security_file_permission+0xb1/0xe0 [ 1542.645205] ? generic_splice_sendpage+0x140/0x140 [ 1542.645927] direct_splice_actor+0x10f/0x170 [ 1542.646553] splice_direct_to_actor+0x387/0x980 [ 1542.647216] ? pipe_to_sendpage+0x380/0x380 [ 1542.647835] ? do_splice_to+0x160/0x160 [ 1542.648405] ? security_file_permission+0xb1/0xe0 [ 1542.649083] do_splice_direct+0x1c4/0x290 [ 1542.649586] ? splice_direct_to_actor+0x980/0x980 [ 1542.650179] ? avc_policy_seqno+0x9/0x70 [ 1542.650662] ? security_file_permission+0xb1/0xe0 [ 1542.651237] do_sendfile+0x553/0x11e0 [ 1542.651695] ? do_pwritev+0x270/0x270 [ 1542.652153] ? wait_for_completion_io+0x270/0x270 [ 1542.652731] ? rcu_read_lock_any_held+0x75/0xa0 [ 1542.653275] ? vfs_write+0x354/0xb10 [ 1542.653730] __x64_sys_sendfile64+0x1d1/0x210 [ 1542.654269] ? __ia32_sys_sendfile+0x220/0x220 [ 1542.654817] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1542.655435] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1542.656052] do_syscall_64+0x33/0x40 [ 1542.656501] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1542.657108] RIP: 0033:0x7fdf91659b19 [ 1542.657559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1542.659748] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1542.660647] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1542.661485] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1542.662338] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1542.663180] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1542.664027] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 05:57:04 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x0, 0x0, 0x3, 0x0, 0xa418b6d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = syz_open_procfs(0x0, &(0x7f0000000200)='net/if_inet6\x00') read(r1, &(0x7f00000002c0)=""/225, 0xe1) r2 = dup2(r0, r0) write$binfmt_elf64(r2, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], 0x3c7) r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x266d40) r4 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ptype\x00') io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000040)=[r1, r2, r0, r3, 0xffffffffffffffff, r4, r0], 0x7) fcntl$addseals(r1, 0x409, 0x8) read$snapshot(r1, &(0x7f0000000000)=""/152, 0x98) 05:57:04 executing program 0: listxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)=""/42, 0x2a) clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x9}, 0x58) r0 = eventfd2(0x8000, 0x1800) ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000080)={0xffffffffffffffff, 0x8, 0x189, 0x8001}) 05:57:04 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000300) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:04 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000c00) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:20 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000007) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:20 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000e00) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:20 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000d00) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:20 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 24) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:20 executing program 0: clone3(&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, {0xfffffffe}, 0x0, 0x0, 0x0, &(0x7f0000000080)=[0xffffffffffffffff], 0x1}, 0x58) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000000)={0x4}) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) 05:57:20 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000500) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:20 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:57:20 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000007) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:20 executing program 0: r0 = clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) r1 = syz_open_procfs(r0, &(0x7f0000000000)='net/netlink\x00') r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r2, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r3, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) sendfile(r2, r3, &(0x7f0000000080)=0x7fffffff, 0x1) fsetxattr$security_capability(r1, &(0x7f0000000040), &(0x7f0000000100)=@v3={0x3000000, [{0x7, 0x3}, {0x2}], 0xee00}, 0x18, 0x3) r4 = dup(r1) ioctl$RTC_IRQP_READ(r4, 0x8008700b, &(0x7f00000000c0)) [ 1558.999387] FAULT_INJECTION: forcing a failure. [ 1558.999387] name failslab, interval 1, probability 0, space 0, times 0 [ 1559.002455] CPU: 1 PID: 8942 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1559.004243] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1559.006443] Call Trace: [ 1559.007148] dump_stack+0x107/0x167 [ 1559.008124] should_fail.cold+0x5/0xa [ 1559.009146] ? create_object.isra.0+0x3a/0xa20 [ 1559.010363] should_failslab+0x5/0x20 [ 1559.011376] kmem_cache_alloc+0x5b/0x310 [ 1559.012459] create_object.isra.0+0x3a/0xa20 [ 1559.013600] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1559.014952] kmem_cache_alloc+0x159/0x310 [ 1559.016048] __es_insert_extent+0xed1/0x1370 [ 1559.017233] ext4_es_insert_extent+0x45d/0xf10 [ 1559.018454] ? ext4_es_scan_clu+0x2e0/0x2e0 [ 1559.019622] ? down_write_killable+0x180/0x180 [ 1559.020809] ext4_map_blocks+0x80b/0x1910 [ 1559.021887] ? __kernel_text_address+0x9/0x40 [ 1559.023115] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1559.024291] ? jbd2__journal_start+0xf3/0x7e0 [ 1559.025381] ? __ext4_journal_start_sb+0x214/0x390 [ 1559.026576] ? __ext4_journal_start_sb+0x1db/0x390 [ 1559.027918] ext4_iomap_begin+0x3ad/0x700 [ 1559.029061] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1559.030377] ? kasan_save_stack+0x1b/0x40 [ 1559.031606] ? ext4_file_write_iter+0xe0e/0x1530 [ 1559.032745] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1559.034295] ? splice_direct_to_actor+0x387/0x980 [ 1559.035585] ? do_splice_direct+0x1c4/0x290 [ 1559.036712] ? do_sendfile+0x553/0x11e0 [ 1559.037746] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1559.038969] ? do_syscall_64+0x33/0x40 [ 1559.039977] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1559.041365] iomap_apply+0x164/0x810 [ 1559.042337] ? iomap_dio_rw+0x90/0x90 [ 1559.043350] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1559.044856] ? mark_held_locks+0x9e/0xe0 [ 1559.045937] ? filemap_check_errors+0xa5/0x150 [ 1559.047162] __iomap_dio_rw+0x6cd/0x1110 [ 1559.048223] ? iomap_dio_rw+0x90/0x90 [ 1559.049247] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1559.050452] ? ext4_orphan_add+0x253/0x9e0 [ 1559.051573] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1559.052865] ? ext4_empty_dir+0xae0/0xae0 [ 1559.053940] ? jbd2__journal_start+0xf3/0x7e0 [ 1559.055129] iomap_dio_rw+0x31/0x90 [ 1559.056099] ext4_file_write_iter+0xe0e/0x1530 [ 1559.057313] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1559.058524] ? kasan_save_stack+0x32/0x40 [ 1559.059603] ? kasan_save_stack+0x1b/0x40 [ 1559.060674] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1559.061984] ? iter_file_splice_write+0x165/0xc90 [ 1559.063245] ? direct_splice_actor+0x10f/0x170 [ 1559.064399] ? splice_direct_to_actor+0x387/0x980 [ 1559.065590] ? do_splice_direct+0x1c4/0x290 [ 1559.066700] ? do_sendfile+0x553/0x11e0 [ 1559.067716] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1559.068902] ? do_syscall_64+0x33/0x40 [ 1559.069897] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1559.071285] do_iter_readv_writev+0x476/0x750 [ 1559.072444] ? new_sync_write+0x660/0x660 [ 1559.073505] ? avc_policy_seqno+0x9/0x70 [ 1559.074559] ? selinux_file_permission+0x92/0x520 [ 1559.075817] ? security_file_permission+0xb1/0xe0 [ 1559.077064] do_iter_write+0x191/0x700 [ 1559.078062] ? trace_hardirqs_on+0x5b/0x180 [ 1559.079246] vfs_iter_write+0x70/0xa0 [ 1559.080345] iter_file_splice_write+0x726/0xc90 [ 1559.081757] ? generic_splice_sendpage+0x140/0x140 [ 1559.083051] ? security_file_permission+0xb1/0xe0 [ 1559.084259] ? generic_splice_sendpage+0x140/0x140 [ 1559.085470] direct_splice_actor+0x10f/0x170 [ 1559.086594] splice_direct_to_actor+0x387/0x980 [ 1559.087837] ? pipe_to_sendpage+0x380/0x380 [ 1559.088978] ? do_splice_to+0x160/0x160 [ 1559.090027] ? security_file_permission+0xb1/0xe0 [ 1559.091343] do_splice_direct+0x1c4/0x290 [ 1559.092509] ? splice_direct_to_actor+0x980/0x980 [ 1559.093926] ? avc_policy_seqno+0x9/0x70 [ 1559.095118] ? security_file_permission+0xb1/0xe0 [ 1559.096557] do_sendfile+0x553/0x11e0 [ 1559.097694] ? do_pwritev+0x270/0x270 [ 1559.098817] ? wait_for_completion_io+0x270/0x270 [ 1559.100206] ? rcu_read_lock_any_held+0x75/0xa0 [ 1559.101540] ? vfs_write+0x354/0xb10 [ 1559.102634] __x64_sys_sendfile64+0x1d1/0x210 [ 1559.103935] ? __ia32_sys_sendfile+0x220/0x220 [ 1559.105260] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1559.106785] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1559.108302] do_syscall_64+0x33/0x40 [ 1559.109381] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1559.110877] RIP: 0033:0x7fdf91659b19 [ 1559.111948] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1559.117195] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1559.119384] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1559.121423] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1559.123481] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1559.125621] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1559.127742] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 05:57:20 executing program 0: setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x66, &(0x7f0000000000)=0x9, 0x4) r0 = syz_open_procfs(0x0, &(0x7f0000000200)='net/if_inet6\x00') read(r0, &(0x7f00000002c0)=""/225, 0xe1) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) write$binfmt_elf64(r1, &(0x7f0000000a00)=ANY=[@ANYBLOB="7f45ec8ab26827704b3500000001000003003e0000180000bd0300000000000040000000000000001e0300000000000006000000000238000100321f0008000100000070030000000500000000000000ff00000000000000a000000000000000010100000000000003000000000000001f000000000000005563cd9a58df47eb7fe1862c4d6716e03dda73ad79bdf1e9a003bcf3986c50d4e8aa28c957fb3d2f3a377ec19cccee4be2003b4f8551fca880d37a4b11600af6227109e9493fb7702e12a94b4c79f400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e100000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b384c5f2024997ba0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000048054c333b1844df79682d25ff54000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000200000000000000000000000000000000000000009139d4c0081fee640000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ca824ebda0c84196749bba61a02d950ed03c31d36ce1ad9b4e7c056a3acd9feb813360802486d4efed4d530e585bc699f4d6b47ba7bc9a9c3d8c2e2fe03cb819116f5af1dca9ec791d75cfb61da8d2544524a9434a1c795c00000000000000000000000005197ca73e75f8f95c680bae4da3d5d6563611c4fd797ce90c61a9021485c0ab5295437f585db3ca47c44cbcab392aca17898548ce36bc29323a3b0494813399f57c897989b73d27af72fcbf1b30dc50b8d50f79e8f6f5410eada5919225ad9527ea88e651c3c0eeb96ae480d0c2ff09b218ff004fc90fa60000000000000000177d28505472bd0b1e8ef9882ddde4c5ff9360d8df6bc2734f748fcab82a236de50454d88ff5a3259b1bda98934dd294fda0f408bdc3fde67bf188c1fcd2ee4b29193c7cfd43b16fcdcbfd1ef9f6c245e9d3a563eac0a04e08f65871109c5e7779b34a51eeae41b4d748eabee35dbdecee3fb38e394799c777dd5156c65b734f40647e0525c1c6d06e482829b3b047ccc05e8a5c0f18c8e9af7d098b1cb2789f550ec68aa894c100c23a2d8838d2605714a1c9"], 0x3c7) getsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0x7, &(0x7f0000000400)=0x1, &(0x7f0000000440)=0x4) r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x266d40) r3 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ptype\x00') io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000040)=[r0, r1, 0xffffffffffffffff, r2, 0xffffffffffffffff, r3, 0xffffffffffffffff], 0x7) ioctl$SNDRV_TIMER_IOCTL_SELECT(r3, 0x40345410, &(0x7f0000000180)={{0xffffffffffffffff, 0x3, 0x9, 0x3, 0x8}}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x200a842, &(0x7f00000000c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {}, 0x2c, {[{@cache_none}], [{@mask={'mask', 0x3d, 'MAY_EXEC'}}]}}) clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) lseek(0xffffffffffffffff, 0x0, 0x2) r4 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x4000, 0x0) copy_file_range(r4, 0x0, 0xffffffffffffffff, 0x0, 0x200f5ef, 0x0) read$hiddev(r4, &(0x7f00000003c0)=""/13, 0xd) r5 = open(&(0x7f0000000940)='./file0\x00', 0x53b39c48a4223229, 0x9) r6 = syz_open_dev$vcsa(&(0x7f0000000980), 0x9, 0x181) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r5, 0xc0189374, &(0x7f00000009c0)={{0x1, 0x1, 0x18, r6, {0x6}}, './file0\x00'}) sendmsg$nl_generic(r3, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000240)={&(0x7f0000000880)={0x84, 0x2c, 0x400, 0x70bd28, 0x25dfdbfb, {0x1a}, [@generic="96fc35c1b6986ed00dcc576e15c352c4b4ec89773f3a0b73b22f3639290270a386bb7a3658634acab18ed3b678", @generic="20b8704148f9ad215d82d72a541cc5f49e1e538abab0f2ff741d64d93ea24bc1722542442d6fce68998d6d5e1fb3ffaef74fd80165b0afdd3e404dc3d9530614bc79"]}, 0x84}, 0x1, 0x0, 0x0, 0x45}, 0x84) 05:57:21 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000e17) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:21 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000008) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:21 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 25) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:21 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000600) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:21 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000008) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:21 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000e00) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1559.612781] FAULT_INJECTION: forcing a failure. [ 1559.612781] name failslab, interval 1, probability 0, space 0, times 0 [ 1559.614338] CPU: 0 PID: 8969 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1559.615331] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1559.616521] Call Trace: [ 1559.616912] dump_stack+0x107/0x167 [ 1559.617438] should_fail.cold+0x5/0xa [ 1559.617997] ? mempool_alloc+0x148/0x360 [ 1559.618587] ? mempool_free_pages+0x20/0x20 [ 1559.619217] should_failslab+0x5/0x20 [ 1559.619767] kmem_cache_alloc+0x5b/0x310 [ 1559.620361] ? mempool_free_pages+0x20/0x20 [ 1559.620989] mempool_alloc+0x148/0x360 [ 1559.621555] ? mempool_resize+0x7d0/0x7d0 [ 1559.622154] ? lock_downgrade+0x6d0/0x6d0 [ 1559.622769] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1559.623491] bio_alloc_bioset+0x36e/0x600 [ 1559.624091] ? bvec_alloc+0x2f0/0x2f0 [ 1559.624646] ? iov_iter_npages+0x1fd/0xa70 [ 1559.625257] iomap_dio_bio_actor+0x518/0xef0 [ 1559.625898] iomap_dio_actor+0x36f/0x560 [ 1559.626483] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1559.627149] ? do_syscall_64+0x33/0x40 [ 1559.627707] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1559.628476] iomap_apply+0x289/0x810 [ 1559.629009] ? iomap_dio_rw+0x90/0x90 [ 1559.629559] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1559.630393] ? mark_held_locks+0x9e/0xe0 [ 1559.630995] ? filemap_check_errors+0xa5/0x150 [ 1559.631657] __iomap_dio_rw+0x6cd/0x1110 [ 1559.632238] ? iomap_dio_rw+0x90/0x90 [ 1559.632800] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1559.633458] ? ext4_orphan_add+0x253/0x9e0 [ 1559.634074] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1559.634790] ? ext4_empty_dir+0xae0/0xae0 [ 1559.635381] ? jbd2__journal_start+0xf3/0x7e0 [ 1559.636032] iomap_dio_rw+0x31/0x90 [ 1559.636559] ext4_file_write_iter+0xe0e/0x1530 [ 1559.637221] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1559.637868] ? kasan_save_stack+0x32/0x40 [ 1559.638469] ? kasan_save_stack+0x1b/0x40 [ 1559.639072] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1559.639802] ? iter_file_splice_write+0x165/0xc90 [ 1559.640491] ? direct_splice_actor+0x10f/0x170 [ 1559.641138] ? splice_direct_to_actor+0x387/0x980 [ 1559.641985] ? do_splice_direct+0x1c4/0x290 [ 1559.642617] ? do_sendfile+0x553/0x11e0 [ 1559.643181] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1559.643840] ? do_syscall_64+0x33/0x40 [ 1559.644399] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1559.645169] do_iter_readv_writev+0x476/0x750 [ 1559.645813] ? new_sync_write+0x660/0x660 [ 1559.646418] ? avc_policy_seqno+0x9/0x70 [ 1559.647000] ? selinux_file_permission+0x92/0x520 [ 1559.647691] ? security_file_permission+0xb1/0xe0 [ 1559.648394] do_iter_write+0x191/0x700 [ 1559.648955] ? trace_hardirqs_on+0x5b/0x180 [ 1559.649476] vfs_iter_write+0x70/0xa0 [ 1559.650026] iter_file_splice_write+0x726/0xc90 [ 1559.650711] ? generic_splice_sendpage+0x140/0x140 [ 1559.651431] ? security_file_permission+0xb1/0xe0 [ 1559.652127] ? generic_splice_sendpage+0x140/0x140 [ 1559.652828] direct_splice_actor+0x10f/0x170 [ 1559.653459] splice_direct_to_actor+0x387/0x980 [ 1559.654135] ? pipe_to_sendpage+0x380/0x380 [ 1559.654761] ? do_splice_to+0x160/0x160 [ 1559.655332] ? security_file_permission+0xb1/0xe0 [ 1559.656021] do_splice_direct+0x1c4/0x290 [ 1559.656612] ? splice_direct_to_actor+0x980/0x980 [ 1559.657299] ? avc_policy_seqno+0x9/0x70 [ 1559.657886] ? security_file_permission+0xb1/0xe0 [ 1559.658592] do_sendfile+0x553/0x11e0 [ 1559.659146] ? do_pwritev+0x270/0x270 [ 1559.659695] ? wait_for_completion_io+0x270/0x270 [ 1559.660383] ? rcu_read_lock_any_held+0x75/0xa0 [ 1559.661043] ? vfs_write+0x354/0xb10 [ 1559.661580] __x64_sys_sendfile64+0x1d1/0x210 [ 1559.662221] ? __ia32_sys_sendfile+0x220/0x220 [ 1559.662892] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1559.663647] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1559.664394] do_syscall_64+0x33/0x40 [ 1559.664929] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1559.665664] RIP: 0033:0x7fdf91659b19 [ 1559.666197] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1559.668844] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1559.669932] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1559.670959] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1559.671975] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1559.672993] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1559.674006] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 05:57:35 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000f00) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:35 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000009) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:35 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000009) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:35 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:57:35 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000f00) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:35 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000700) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:35 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 26) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:35 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'veth0_to_team\x00'}) r0 = syz_open_dev$rtc(&(0x7f0000000000), 0x100000000000000, 0x40000) signalfd4(r0, &(0x7f0000000040)={[0x400]}, 0x8, 0x800) [ 1574.195720] FAULT_INJECTION: forcing a failure. [ 1574.195720] name failslab, interval 1, probability 0, space 0, times 0 [ 1574.198415] CPU: 1 PID: 8990 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1574.200047] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1574.202011] Call Trace: [ 1574.202649] dump_stack+0x107/0x167 [ 1574.203728] should_fail.cold+0x5/0xa [ 1574.204634] ? create_object.isra.0+0x3a/0xa20 [ 1574.205962] should_failslab+0x5/0x20 [ 1574.206872] kmem_cache_alloc+0x5b/0x310 [ 1574.208054] ? quarantine_put+0x8b/0x1a0 [ 1574.209154] ? trace_hardirqs_on+0x5b/0x180 [ 1574.210315] create_object.isra.0+0x3a/0xa20 [ 1574.211485] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1574.213192] kmem_cache_alloc+0x159/0x310 [ 1574.214370] ? mempool_free_pages+0x20/0x20 [ 1574.215506] mempool_alloc+0x148/0x360 [ 1574.216390] ? mempool_resize+0x7d0/0x7d0 [ 1574.217540] ? lock_downgrade+0x6d0/0x6d0 [ 1574.218493] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1574.219863] bio_alloc_bioset+0x36e/0x600 [ 1574.220824] ? bvec_alloc+0x2f0/0x2f0 [ 1574.221872] ? iov_iter_npages+0x1fd/0xa70 [ 1574.222842] iomap_dio_bio_actor+0x518/0xef0 [ 1574.224087] iomap_dio_actor+0x36f/0x560 [ 1574.225129] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1574.226529] ? do_syscall_64+0x33/0x40 [ 1574.227431] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1574.228905] iomap_apply+0x289/0x810 [ 1574.229800] ? iomap_dio_rw+0x90/0x90 [ 1574.230843] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1574.232210] ? mark_held_locks+0x9e/0xe0 [ 1574.233333] ? filemap_check_errors+0xa5/0x150 [ 1574.234373] __iomap_dio_rw+0x6cd/0x1110 [ 1574.235503] ? iomap_dio_rw+0x90/0x90 [ 1574.236383] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1574.237671] ? ext4_orphan_add+0x253/0x9e0 [ 1574.238628] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1574.239993] ? ext4_empty_dir+0xae0/0xae0 [ 1574.241141] ? jbd2__journal_start+0xf3/0x7e0 [ 1574.242183] iomap_dio_rw+0x31/0x90 [ 1574.243209] ext4_file_write_iter+0xe0e/0x1530 [ 1574.244503] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1574.245757] ? kasan_save_stack+0x32/0x40 [ 1574.246893] ? kasan_save_stack+0x1b/0x40 [ 1574.248152] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1574.249345] ? iter_file_splice_write+0x165/0xc90 [ 1574.250545] ? direct_splice_actor+0x10f/0x170 [ 1574.251639] ? splice_direct_to_actor+0x387/0x980 [ 1574.252965] ? do_splice_direct+0x1c4/0x290 [ 1574.253998] ? do_sendfile+0x553/0x11e0 [ 1574.254963] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1574.256071] ? do_syscall_64+0x33/0x40 [ 1574.257005] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1574.258284] do_iter_readv_writev+0x476/0x750 [ 1574.259379] ? new_sync_write+0x660/0x660 [ 1574.260371] ? avc_policy_seqno+0x9/0x70 [ 1574.261339] ? selinux_file_permission+0x92/0x520 [ 1574.262492] ? security_file_permission+0xb1/0xe0 [ 1574.263662] do_iter_write+0x191/0x700 [ 1574.264603] ? trace_hardirqs_on+0x5b/0x180 [ 1574.265650] vfs_iter_write+0x70/0xa0 [ 1574.266564] iter_file_splice_write+0x726/0xc90 [ 1574.267701] ? generic_splice_sendpage+0x140/0x140 [ 1574.268897] ? security_file_permission+0xb1/0xe0 [ 1574.270054] ? generic_splice_sendpage+0x140/0x140 [ 1574.271242] direct_splice_actor+0x10f/0x170 [ 1574.272303] splice_direct_to_actor+0x387/0x980 [ 1574.273423] ? pipe_to_sendpage+0x380/0x380 [ 1574.274467] ? do_splice_to+0x160/0x160 [ 1574.275429] ? security_file_permission+0xb1/0xe0 [ 1574.276597] do_splice_direct+0x1c4/0x290 [ 1574.277591] ? splice_direct_to_actor+0x980/0x980 [ 1574.278743] ? avc_policy_seqno+0x9/0x70 [ 1574.279741] ? security_file_permission+0xb1/0xe0 [ 1574.280908] do_sendfile+0x553/0x11e0 [ 1574.281837] ? do_pwritev+0x270/0x270 [ 1574.282757] ? wait_for_completion_io+0x270/0x270 [ 1574.283927] ? rcu_read_lock_any_held+0x75/0xa0 [ 1574.285038] ? vfs_write+0x354/0xb10 [ 1574.285936] __x64_sys_sendfile64+0x1d1/0x210 [ 1574.287022] ? __ia32_sys_sendfile+0x220/0x220 [ 1574.288119] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1574.289383] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1574.290624] do_syscall_64+0x33/0x40 [ 1574.291536] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1574.292763] RIP: 0033:0x7fdf91659b19 [ 1574.293659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1574.298029] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1574.299853] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1574.301554] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1574.303270] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1574.304964] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1574.306544] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 05:57:35 executing program 0: ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)=0x0) timer_create(0x4, &(0x7f0000000000)={0x0, 0xe, 0x1, @tid=r0}, &(0x7f0000000040)) clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {0x3}, 0x0, 0x0, 0x0, &(0x7f0000003340)}, 0x58) 05:57:36 executing program 0: clone3(&(0x7f0000003380)={0x1a0000000, 0x0, 0x0, 0x0, {0x800000}, 0x0, 0x0, 0x0, &(0x7f0000000000)=[0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0], 0x4}, 0x58) 05:57:52 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r1, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) r2 = pidfd_getfd(r0, r1, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r3, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) sendfile(r3, r2, &(0x7f0000000040)=0x7, 0x8001) ioctl$BTRFS_IOC_DEFRAG(r1, 0x50009402, 0x0) 05:57:52 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:57:52 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x10000000a) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:52 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x10000ff01) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:52 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 27) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:52 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x10000000a) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:52 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000f55) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:52 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000900) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1590.672939] FAULT_INJECTION: forcing a failure. [ 1590.672939] name failslab, interval 1, probability 0, space 0, times 0 [ 1590.674506] CPU: 1 PID: 9027 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1590.675384] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1590.676541] Call Trace: [ 1590.676915] dump_stack+0x107/0x167 [ 1590.677431] should_fail.cold+0x5/0xa [ 1590.677967] ? bvec_alloc+0x148/0x2f0 [ 1590.678507] should_failslab+0x5/0x20 [ 1590.679040] kmem_cache_alloc+0x5b/0x310 [ 1590.679744] bvec_alloc+0x148/0x2f0 [ 1590.680575] bio_alloc_bioset+0x40a/0x600 [ 1590.681516] ? bvec_alloc+0x2f0/0x2f0 [ 1590.682363] ? iov_iter_npages+0x1fd/0xa70 [ 1590.683328] iomap_dio_bio_actor+0x518/0xef0 [ 1590.684366] iomap_dio_actor+0x36f/0x560 [ 1590.685283] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1590.686308] ? do_syscall_64+0x33/0x40 [ 1590.687185] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1590.688375] iomap_apply+0x289/0x810 [ 1590.689218] ? iomap_dio_rw+0x90/0x90 [ 1590.690066] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1590.691375] ? mark_held_locks+0x9e/0xe0 [ 1590.692293] ? filemap_check_errors+0xa5/0x150 [ 1590.693329] __iomap_dio_rw+0x6cd/0x1110 [ 1590.694223] ? iomap_dio_rw+0x90/0x90 [ 1590.695101] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1590.696117] ? ext4_orphan_add+0x253/0x9e0 [ 1590.697071] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1590.698158] ? ext4_empty_dir+0xae0/0xae0 [ 1590.699069] ? jbd2__journal_start+0xf3/0x7e0 [ 1590.700076] iomap_dio_rw+0x31/0x90 [ 1590.700883] ext4_file_write_iter+0xe0e/0x1530 [ 1590.701907] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1590.702936] ? kasan_save_stack+0x32/0x40 [ 1590.703858] ? kasan_save_stack+0x1b/0x40 [ 1590.704789] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1590.705905] ? iter_file_splice_write+0x165/0xc90 [ 1590.706989] ? direct_splice_actor+0x10f/0x170 [ 1590.708001] ? splice_direct_to_actor+0x387/0x980 [ 1590.709083] ? do_splice_direct+0x1c4/0x290 [ 1590.710033] ? do_sendfile+0x553/0x11e0 [ 1590.710927] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1590.711957] ? do_syscall_64+0x33/0x40 [ 1590.712833] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1590.714019] do_iter_readv_writev+0x476/0x750 [ 1590.715035] ? new_sync_write+0x660/0x660 [ 1590.715956] ? avc_policy_seqno+0x9/0x70 [ 1590.716872] ? selinux_file_permission+0x92/0x520 [ 1590.717939] ? security_file_permission+0xb1/0xe0 [ 1590.719036] do_iter_write+0x191/0x700 [ 1590.719909] ? trace_hardirqs_on+0x5b/0x180 [ 1590.720890] vfs_iter_write+0x70/0xa0 [ 1590.721736] iter_file_splice_write+0x726/0xc90 [ 1590.722801] ? generic_splice_sendpage+0x140/0x140 [ 1590.723909] ? security_file_permission+0xb1/0xe0 [ 1590.725000] ? generic_splice_sendpage+0x140/0x140 [ 1590.726083] direct_splice_actor+0x10f/0x170 [ 1590.727079] splice_direct_to_actor+0x387/0x980 [ 1590.728119] ? pipe_to_sendpage+0x380/0x380 [ 1590.729095] ? do_splice_to+0x160/0x160 [ 1590.730068] ? security_file_permission+0xb1/0xe0 [ 1590.731195] do_splice_direct+0x1c4/0x290 [ 1590.732124] ? splice_direct_to_actor+0x980/0x980 [ 1590.733235] ? avc_policy_seqno+0x9/0x70 [ 1590.734138] ? security_file_permission+0xb1/0xe0 [ 1590.735266] do_sendfile+0x553/0x11e0 [ 1590.736129] ? do_pwritev+0x270/0x270 [ 1590.737017] ? wait_for_completion_io+0x270/0x270 [ 1590.738084] ? rcu_read_lock_any_held+0x75/0xa0 [ 1590.739159] ? vfs_write+0x354/0xb10 [ 1590.739999] __x64_sys_sendfile64+0x1d1/0x210 [ 1590.741040] ? __ia32_sys_sendfile+0x220/0x220 [ 1590.742058] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1590.743273] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1590.744421] do_syscall_64+0x33/0x40 [ 1590.745283] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1590.746413] RIP: 0033:0x7fdf91659b19 [ 1590.747277] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1590.751342] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1590.753111] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1590.754684] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1590.756267] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1590.757843] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1590.759416] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 05:57:52 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x10000000c) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:52 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:57:52 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) ftruncate(0xffffffffffffffff, 0x10001) 05:57:52 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000a00) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:52 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x10000000c) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:52 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x10000000d) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:52 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x1fffffff5) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:52 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x10000ff01) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:52 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 28) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1591.364664] FAULT_INJECTION: forcing a failure. [ 1591.364664] name failslab, interval 1, probability 0, space 0, times 0 [ 1591.366347] CPU: 0 PID: 9067 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1591.367414] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1591.368589] Call Trace: [ 1591.368955] dump_stack+0x107/0x167 [ 1591.369453] should_fail.cold+0x5/0xa [ 1591.370000] ? create_object.isra.0+0x3a/0xa20 [ 1591.370625] should_failslab+0x5/0x20 [ 1591.371156] kmem_cache_alloc+0x5b/0x310 [ 1591.371768] ? quarantine_put+0x8b/0x1a0 [ 1591.372337] ? trace_hardirqs_on+0x5b/0x180 [ 1591.372919] create_object.isra.0+0x3a/0xa20 [ 1591.373516] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1591.374220] kmem_cache_alloc+0x159/0x310 [ 1591.374806] ? mempool_free_pages+0x20/0x20 [ 1591.375367] mempool_alloc+0x148/0x360 [ 1591.375946] ? mempool_resize+0x7d0/0x7d0 [ 1591.376553] ? lock_downgrade+0x6d0/0x6d0 [ 1591.377161] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1591.377882] bio_alloc_bioset+0x36e/0x600 [ 1591.378490] ? bvec_alloc+0x2f0/0x2f0 [ 1591.379056] ? iov_iter_npages+0x1fd/0xa70 [ 1591.379684] iomap_dio_bio_actor+0x518/0xef0 [ 1591.380336] iomap_dio_actor+0x36f/0x560 [ 1591.380929] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1591.381688] ? do_syscall_64+0x33/0x40 [ 1591.382347] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1591.383128] iomap_apply+0x289/0x810 [ 1591.383682] ? iomap_dio_rw+0x90/0x90 [ 1591.384244] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1591.385092] ? mark_held_locks+0x9e/0xe0 [ 1591.385698] ? filemap_check_errors+0xa5/0x150 [ 1591.386367] __iomap_dio_rw+0x6cd/0x1110 [ 1591.386976] ? iomap_dio_rw+0x90/0x90 [ 1591.387503] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1591.388180] ? ext4_orphan_add+0x253/0x9e0 [ 1591.388791] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1591.389508] ? ext4_empty_dir+0xae0/0xae0 [ 1591.390110] ? jbd2__journal_start+0xf3/0x7e0 [ 1591.390778] iomap_dio_rw+0x31/0x90 [ 1591.391316] ext4_file_write_iter+0xe0e/0x1530 [ 1591.392032] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1591.392723] ? kasan_save_stack+0x32/0x40 [ 1591.393326] ? kasan_save_stack+0x1b/0x40 [ 1591.393928] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1591.394666] ? iter_file_splice_write+0x165/0xc90 [ 1591.395378] ? direct_splice_actor+0x10f/0x170 [ 1591.395986] ? splice_direct_to_actor+0x387/0x980 [ 1591.396560] ? do_splice_direct+0x1c4/0x290 [ 1591.397059] ? do_sendfile+0x553/0x11e0 [ 1591.397552] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1591.398104] ? do_syscall_64+0x33/0x40 [ 1591.398567] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1591.399176] do_iter_readv_writev+0x476/0x750 [ 1591.399725] ? new_sync_write+0x660/0x660 [ 1591.400202] ? avc_policy_seqno+0x9/0x70 [ 1591.400681] ? selinux_file_permission+0x92/0x520 [ 1591.401230] ? security_file_permission+0xb1/0xe0 [ 1591.401806] do_iter_write+0x191/0x700 [ 1591.402256] ? trace_hardirqs_on+0x5b/0x180 [ 1591.402796] vfs_iter_write+0x70/0xa0 [ 1591.403235] iter_file_splice_write+0x726/0xc90 [ 1591.403832] ? generic_splice_sendpage+0x140/0x140 [ 1591.404396] ? security_file_permission+0xb1/0xe0 [ 1591.404969] ? generic_splice_sendpage+0x140/0x140 [ 1591.405528] direct_splice_actor+0x10f/0x170 [ 1591.406059] splice_direct_to_actor+0x387/0x980 [ 1591.406595] ? pipe_to_sendpage+0x380/0x380 [ 1591.407113] ? do_splice_to+0x160/0x160 [ 1591.407578] ? security_file_permission+0xb1/0xe0 [ 1591.408157] do_splice_direct+0x1c4/0x290 [ 1591.408639] ? splice_direct_to_actor+0x980/0x980 [ 1591.409221] ? avc_policy_seqno+0x9/0x70 [ 1591.409688] ? security_file_permission+0xb1/0xe0 [ 1591.410271] do_sendfile+0x553/0x11e0 [ 1591.410705] ? do_pwritev+0x270/0x270 [ 1591.411167] ? wait_for_completion_io+0x270/0x270 [ 1591.411747] ? rcu_read_lock_any_held+0x75/0xa0 [ 1591.412317] ? vfs_write+0x354/0xb10 [ 1591.412752] __x64_sys_sendfile64+0x1d1/0x210 [ 1591.413284] ? __ia32_sys_sendfile+0x220/0x220 [ 1591.413832] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1591.414485] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1591.415115] do_syscall_64+0x33/0x40 [ 1591.415549] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1591.416182] RIP: 0033:0x7fdf91659b19 [ 1591.416649] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1591.418812] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1591.419715] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1591.420539] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1591.421363] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1591.422185] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1591.423003] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 05:57:53 executing program 0: r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000400), 0x80000, 0x0) io_uring_enter(r0, 0x39f1, 0x25a, 0x2, &(0x7f0000000440)={[0x6]}, 0x8) clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) execveat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)=[&(0x7f0000000040)='\x00', 0xffffffffffffffff, &(0x7f0000000080)='-/*\x00'], &(0x7f0000000240)=[&(0x7f0000000100)='.\x00', &(0x7f0000000140)='\xf1)\x00', &(0x7f0000000180)=',\x00', &(0x7f00000001c0)='}#\\Y-\x00', &(0x7f0000000200)='}-\xb1%,!($\x00'], 0x100) syz_io_uring_setup(0x4cc8, &(0x7f0000000280)={0x0, 0x2bdc, 0x1, 0x1, 0x3a3}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000300)=0x0, &(0x7f0000000340)) syz_io_uring_submit(r1, 0x0, &(0x7f00000003c0)=@IORING_OP_LINK_TIMEOUT={0xf, 0x4, 0x0, 0x0, 0x0, &(0x7f0000000380)={0x77359400}, 0x1, 0x0, 0x1}, 0x5) 05:57:53 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x2880c0, 0x100) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:57:53 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000b00) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:07 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:58:07 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000c00) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:07 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x1fffffff5) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:07 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x10000000d) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:07 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x10000000f) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:07 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 29) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:07 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) lseek(r0, 0x0, 0x2) r1 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x4000, 0x0) copy_file_range(r1, 0x0, r0, 0x0, 0x200f5ef, 0x0) stat(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x1800000, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@access_any}, {@afid={'afid', 0x3d, 0x8d22}}, {@cache_fscache}, {@loose}], [{@fowner_eq}, {@uid_lt={'uid<', r2}}, {@fowner_eq}]}}) semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f0000001200)={{0x1, 0xee00, 0x0, 0x0, 0x0, 0x24, 0x2}, 0x1f, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffdd}) getresgid(&(0x7f00000010c0), &(0x7f0000001100)=0x0, &(0x7f0000001140)) semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f0000001200)={{0x1, 0xee00, r4, 0x0, 0x0, 0x24, 0x2}, 0x1f, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffdd}) fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000180)={{}, {}, [{0x2, 0x1}, {}, {}], {0x4, 0x1}, [{0x8, 0x4}, {0x8, 0x1, r4}, {0x8, 0x2, 0xee01}], {0x10, 0x2}, {0x20, 0x2}}, 0x54, 0x1) stat(&(0x7f00000001c0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r5, 0x0) getresgid(0x0, &(0x7f00000002c0)=0x0, &(0x7f0000001140)) semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f0000001200)={{0x1, 0xee00, r6, 0x0, 0x0, 0x24, 0x2}, 0x1f, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffdd}) getresgid(&(0x7f00000010c0), &(0x7f0000001100)=0x0, &(0x7f0000001140)) semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f0000001200)={{0x1, 0xee00, r7, 0x0, 0x0, 0x24, 0x2}, 0x1f, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffdd}) fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000180)={{}, {}, [{0x2, 0x1}, {}, {0x2, 0x0, r5}], {0x4, 0x1}, [{0x8, 0x4, r6}, {0x8, 0x1, r7}, {0x8, 0x2, 0xee01}], {0x10, 0x2}, {0x20, 0x2}}, 0x54, 0x1) fstat(r1, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setxattr$system_posix_acl(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='system.posix_acl_default\x00', &(0x7f0000000400)=ANY=[@ANYBLOB="02000000010002000000000002000000", @ANYRES32=r2, @ANYBLOB="040000000000000008000000", @ANYRES32=0x0, @ANYBLOB, @ANYRES32=0x0, @ANYBLOB="08000400", @ANYRES32=0x0, @ANYBLOB="08000600", @ANYRES32=r3, @ANYBLOB="08000400", @ANYRES32=r3, @ANYBLOB='\b\x00\b\x00', @ANYRES32=r7, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=r8, @ANYBLOB="10000400000000002000020000000000"], 0x64, 0x1) 05:58:07 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) creat(&(0x7f0000000040)='./file1\x00', 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1606.350582] FAULT_INJECTION: forcing a failure. [ 1606.350582] name failslab, interval 1, probability 0, space 0, times 0 [ 1606.353263] CPU: 1 PID: 9094 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1606.354951] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1606.357007] Call Trace: [ 1606.357704] dump_stack+0x107/0x167 [ 1606.358531] should_fail.cold+0x5/0xa [ 1606.359510] ? create_task_io_context+0x2c/0x430 [ 1606.360689] should_failslab+0x5/0x20 [ 1606.361540] kmem_cache_alloc_node+0x55/0x330 [ 1606.362777] create_task_io_context+0x2c/0x430 [ 1606.363921] submit_bio_checks+0x1382/0x1730 [ 1606.365071] ? lock_acquire+0x197/0x470 [ 1606.365983] ? trace_event_raw_event_block_rq_requeue+0x560/0x560 [ 1606.367468] ? lock_release+0x680/0x680 [ 1606.368374] ? find_held_lock+0x2c/0x110 [ 1606.369290] ? __bio_try_merge_page+0xb6/0x3a0 [ 1606.370412] submit_bio_noacct+0x82/0x1010 [ 1606.371600] ? blk_queue_enter+0xc30/0xc30 [ 1606.372584] submit_bio+0xf3/0x4e0 [ 1606.373383] ? submit_bio_noacct+0x1010/0x1010 [ 1606.374421] ? bio_alloc_bioset+0x2a1/0x600 [ 1606.375571] ? bio_add_pc_page+0x100/0x100 [ 1606.376532] ? bvec_alloc+0x2f0/0x2f0 [ 1606.377393] iomap_dio_submit_bio+0x295/0x360 [ 1606.378406] iomap_dio_bio_actor+0x4b3/0xef0 [ 1606.379410] iomap_dio_actor+0x36f/0x560 [ 1606.380329] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1606.381374] ? do_syscall_64+0x33/0x40 [ 1606.382264] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1606.383610] iomap_apply+0x289/0x810 [ 1606.384733] ? iomap_dio_rw+0x90/0x90 [ 1606.385592] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1606.387039] ? mark_held_locks+0x9e/0xe0 [ 1606.388106] ? filemap_check_errors+0xa5/0x150 [ 1606.389304] __iomap_dio_rw+0x6cd/0x1110 [ 1606.390367] ? iomap_dio_rw+0x90/0x90 [ 1606.391289] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1606.392498] ? ext4_orphan_add+0x253/0x9e0 [ 1606.393660] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1606.395011] ? ext4_empty_dir+0xae0/0xae0 [ 1606.396136] ? jbd2__journal_start+0xf3/0x7e0 [ 1606.397223] iomap_dio_rw+0x31/0x90 [ 1606.398231] ext4_file_write_iter+0xe0e/0x1530 [ 1606.399539] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1606.400641] ? kasan_save_stack+0x32/0x40 [ 1606.401724] ? kasan_save_stack+0x1b/0x40 [ 1606.402833] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1606.404208] ? iter_file_splice_write+0x165/0xc90 [ 1606.405373] ? direct_splice_actor+0x10f/0x170 [ 1606.406614] ? splice_direct_to_actor+0x387/0x980 [ 1606.407905] ? do_splice_direct+0x1c4/0x290 [ 1606.409169] ? do_sendfile+0x553/0x11e0 [ 1606.410123] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1606.411335] ? do_syscall_64+0x33/0x40 [ 1606.412410] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1606.413891] do_iter_readv_writev+0x476/0x750 [ 1606.414990] ? new_sync_write+0x660/0x660 [ 1606.416084] ? avc_policy_seqno+0x9/0x70 [ 1606.417019] ? selinux_file_permission+0x92/0x520 [ 1606.418229] ? security_file_permission+0xb1/0xe0 [ 1606.419575] do_iter_write+0x191/0x700 [ 1606.420677] ? trace_hardirqs_on+0x5b/0x180 [ 1606.421688] vfs_iter_write+0x70/0xa0 [ 1606.422640] iter_file_splice_write+0x726/0xc90 [ 1606.423901] ? generic_splice_sendpage+0x140/0x140 [ 1606.425288] ? security_file_permission+0xb1/0xe0 [ 1606.426564] ? generic_splice_sendpage+0x140/0x140 [ 1606.427912] direct_splice_actor+0x10f/0x170 [ 1606.428981] splice_direct_to_actor+0x387/0x980 [ 1606.430022] ? pipe_to_sendpage+0x380/0x380 [ 1606.430998] ? do_splice_to+0x160/0x160 [ 1606.431891] ? security_file_permission+0xb1/0xe0 [ 1606.433162] do_splice_direct+0x1c4/0x290 [ 1606.434250] ? splice_direct_to_actor+0x980/0x980 [ 1606.435527] ? avc_policy_seqno+0x9/0x70 [ 1606.436575] ? security_file_permission+0xb1/0xe0 [ 1606.437879] do_sendfile+0x553/0x11e0 [ 1606.438795] ? do_pwritev+0x270/0x270 [ 1606.439847] ? wait_for_completion_io+0x270/0x270 [ 1606.441196] ? rcu_read_lock_any_held+0x75/0xa0 [ 1606.442416] ? vfs_write+0x354/0xb10 [ 1606.443291] __x64_sys_sendfile64+0x1d1/0x210 [ 1606.444435] ? __ia32_sys_sendfile+0x220/0x220 [ 1606.445624] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1606.447088] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1606.448297] do_syscall_64+0x33/0x40 [ 1606.449133] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1606.450385] RIP: 0033:0x7fdf91659b19 [ 1606.451421] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1606.456245] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1606.458291] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1606.460180] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1606.462014] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1606.463835] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1606.465679] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 [ 1606.544794] 9pnet: Insufficient options for proto=fd 05:58:08 executing program 0: ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)=0x0) timer_create(0x7, &(0x7f0000000180)={0x0, 0xe, 0x1, @tid=r0}, &(0x7f0000000340)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)=0x0) timer_create(0x7, &(0x7f0000000180)={0x0, 0xe, 0x1, @tid=r1}, &(0x7f0000000340)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)=0x0) timer_create(0x7, &(0x7f0000000180)={0x0, 0xe, 0x1, @tid=r2}, &(0x7f0000000340)) clone3(&(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, {0x2a}, 0x0, 0x0, 0x0, &(0x7f0000000000)=[r2, r2], 0x2}, 0x58) 05:58:08 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x29c8c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:08 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:58:08 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000d00) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:08 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000010) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:08 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2, 0x2010, r2, 0x8000000) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r4, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r3, 0x0, &(0x7f0000000040)=@IORING_OP_WRITE_FIXED={0x5, 0x2, 0x8000, @fd=r4, 0x44, 0x10001, 0x8ee2, 0x8, 0x1, {0x3, r5}}, 0x5) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:08 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 30) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:08 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x10000000f) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1606.929382] FAULT_INJECTION: forcing a failure. [ 1606.929382] name failslab, interval 1, probability 0, space 0, times 0 [ 1606.930983] CPU: 0 PID: 9130 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1606.931790] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1606.932788] Call Trace: [ 1606.933101] dump_stack+0x107/0x167 [ 1606.933727] should_fail.cold+0x5/0xa [ 1606.934177] ? create_object.isra.0+0x3a/0xa20 [ 1606.934719] should_failslab+0x5/0x20 [ 1606.935175] kmem_cache_alloc+0x5b/0x310 [ 1606.935656] ? __lock_acquire+0x1657/0x5b00 [ 1606.936155] create_object.isra.0+0x3a/0xa20 [ 1606.936682] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1606.937247] kmem_cache_alloc_node+0x169/0x330 [ 1606.937811] create_task_io_context+0x2c/0x430 [ 1606.938319] submit_bio_checks+0x1382/0x1730 [ 1606.938846] ? lock_acquire+0x197/0x470 [ 1606.939287] ? trace_event_raw_event_block_rq_requeue+0x560/0x560 [ 1606.940018] ? lock_release+0x680/0x680 [ 1606.940483] ? find_held_lock+0x2c/0x110 [ 1606.940946] ? __bio_try_merge_page+0xb6/0x3a0 [ 1606.941448] submit_bio_noacct+0x82/0x1010 [ 1606.941977] ? blk_queue_enter+0xc30/0xc30 [ 1606.942600] submit_bio+0xf3/0x4e0 [ 1606.943080] ? submit_bio_noacct+0x1010/0x1010 [ 1606.943728] ? bio_alloc_bioset+0x2a1/0x600 [ 1606.944355] ? bio_add_pc_page+0x100/0x100 [ 1606.944955] ? bvec_alloc+0x2f0/0x2f0 [ 1606.945502] iomap_dio_submit_bio+0x295/0x360 [ 1606.946041] iomap_dio_bio_actor+0x4b3/0xef0 [ 1606.946566] iomap_dio_actor+0x36f/0x560 [ 1606.947054] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1606.947605] ? do_syscall_64+0x33/0x40 [ 1606.948050] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1606.948701] iomap_apply+0x289/0x810 [ 1606.949118] ? iomap_dio_rw+0x90/0x90 [ 1606.949563] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1606.950209] ? mark_held_locks+0x9e/0xe0 [ 1606.950707] ? filemap_check_errors+0xa5/0x150 [ 1606.951219] __iomap_dio_rw+0x6cd/0x1110 [ 1606.951699] ? iomap_dio_rw+0x90/0x90 [ 1606.952143] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1606.952688] ? ext4_orphan_add+0x253/0x9e0 [ 1606.953157] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1606.953739] ? ext4_empty_dir+0xae0/0xae0 [ 1606.954198] ? jbd2__journal_start+0xf3/0x7e0 [ 1606.954743] iomap_dio_rw+0x31/0x90 [ 1606.955150] ext4_file_write_iter+0xe0e/0x1530 [ 1606.955696] ? __switch_to+0x572/0xf70 [ 1606.956147] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1606.956693] ? io_schedule_timeout+0x140/0x140 [ 1606.957205] ? do_splice_direct+0x1c4/0x290 [ 1606.957722] ? do_sendfile+0x553/0x11e0 [ 1606.958160] ? do_syscall_64+0x33/0x40 [ 1606.958619] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1606.959220] do_iter_readv_writev+0x476/0x750 [ 1606.959756] ? new_sync_write+0x660/0x660 [ 1606.960230] ? avc_policy_seqno+0x9/0x70 [ 1606.960715] ? selinux_file_permission+0x92/0x520 [ 1606.961248] ? security_file_permission+0xb1/0xe0 [ 1606.961828] do_iter_write+0x191/0x700 [ 1606.962261] ? trace_hardirqs_on+0x5b/0x180 [ 1606.962744] vfs_iter_write+0x70/0xa0 [ 1606.963165] iter_file_splice_write+0x726/0xc90 [ 1606.963742] ? generic_splice_sendpage+0x140/0x140 [ 1606.964302] ? security_file_permission+0xb1/0xe0 [ 1606.964878] ? generic_splice_sendpage+0x140/0x140 [ 1606.965422] direct_splice_actor+0x10f/0x170 [ 1606.965949] splice_direct_to_actor+0x387/0x980 [ 1606.966464] ? pipe_to_sendpage+0x380/0x380 [ 1606.966989] ? do_splice_to+0x160/0x160 [ 1606.967432] ? security_file_permission+0xb1/0xe0 [ 1606.968018] do_splice_direct+0x1c4/0x290 [ 1606.968486] ? splice_direct_to_actor+0x980/0x980 [ 1606.969058] ? avc_policy_seqno+0x9/0x70 [ 1606.969506] ? security_file_permission+0xb1/0xe0 [ 1606.970084] do_sendfile+0x553/0x11e0 [ 1606.970512] ? do_pwritev+0x270/0x270 [ 1606.970970] ? wait_for_completion_io+0x270/0x270 [ 1606.971506] ? rcu_read_lock_any_held+0x75/0xa0 [ 1606.972055] ? vfs_write+0x354/0xb10 [ 1606.972508] __x64_sys_sendfile64+0x1d1/0x210 [ 1606.973047] ? __ia32_sys_sendfile+0x220/0x220 [ 1606.973594] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1606.974220] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1606.974847] do_syscall_64+0x33/0x40 [ 1606.975281] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1606.975882] RIP: 0033:0x7fdf91659b19 [ 1606.976333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1606.978499] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1606.979404] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1606.980251] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1606.981099] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1606.981942] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1606.982789] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 05:58:08 executing program 0: r0 = syz_open_dev$char_usb(0xc, 0xb4, 0x10000) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {r0}}, './file0\x00'}) r2 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x3000009, 0x10010, r1, 0x8000000) r3 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r6}}, 0x10000) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r3, 0x8000000) syz_io_uring_submit(r7, r5, &(0x7f00000002c0)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x5}, 0x80000001) r8 = socket$inet6_icmp(0xa, 0x2, 0x3a) sendfile(r8, r3, &(0x7f0000000140)=0xe05, 0x2) syz_io_uring_submit(r2, r5, &(0x7f0000000080)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x5, 0x0, r1, &(0x7f0000000040)={0x8}, r0}, 0x5) clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) r9 = mmap$IORING_OFF_CQ_RING(&(0x7f0000da4000/0x3000)=nil, 0x3000, 0x2000000, 0x4c030, r3, 0x8000000) r10 = mmap$IORING_OFF_SQES(&(0x7f0000cb7000/0x2000)=nil, 0x2000, 0x2000005, 0x11, r3, 0x10000000) r11 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r9, r10, &(0x7f00000001c0)=@IORING_OP_OPENAT={0x12, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000180)='./file0\x00', 0x4, 0x200c3, 0x23456, {0x0, r11}}, 0x401) 05:58:08 executing program 7: sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x20, 0x70bd2d, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x240480c0}, 0x4010) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:23 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:58:23 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000e00) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:23 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000300), 0x100, 0x0) r1 = accept4$unix(0xffffffffffffffff, &(0x7f0000000340), &(0x7f00000003c0)=0x6e, 0x80000) mount$9p_fd(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0), 0x18040c8, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@aname={'aname', 0x3d, 'version=9p2000'}}, {@version_L}, {@mmap}], [{@dont_hash}]}}) r2 = syz_open_dev$ptys(0xc, 0x3, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(r3, 0x0, 0x0) getresuid(&(0x7f0000000080), &(0x7f00000000c0)=0x0, &(0x7f0000000100)) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(r5, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x918c03, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',privport,debug=0x0000000000000007,version=9p2000,access=', @ANYRESDEC=r3, @ANYBLOB=',afid=0x0000000000008001,access=', @ANYRESDEC=r4, @ANYBLOB=',dfltgid=', @ANYRESHEX=0x0, @ANYBLOB="2c6673636f6e746578743d73796770656d7f752c657569643d", @ANYRESDEC=r5, @ANYBLOB=',\x00']) 05:58:23 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000011) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:23 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000010) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:23 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x101980, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:23 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 31) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:23 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r3, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r4, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r5, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) r6 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="1400000052000101000000000000006325a3b08f2e8502a0ab000000000095b696ad98389293f0844f974d39960b5f1d95e1cbbc1f680cb173caef5954eed478ea4587924846a469f3a6517f95853bdc86901322b6a40b3ec8f49963062f605f9d969dac79c8706017f6709b6a8fc05408cd4974e89dcbc0de6a418ab6"], 0x14}}, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000140)) r8 = syz_io_uring_complete(r7) faccessat2(r8, &(0x7f00000001c0)='./file0\x00', 0x160, 0x300) r9 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), r6) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r8, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x1c, r9, 0x100, 0x70bd26, 0x25dfdbff, {}, [@BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x15f}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x8001) sendmsg$BATADV_CMD_GET_TRANSTABLE_LOCAL(r5, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000280)={0x14, r9, 0x4, 0x70bd2a, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x80) copy_file_range(r3, &(0x7f0000000040), r4, &(0x7f0000000080)=0x2, 0x1d64, 0x0) [ 1622.209776] FAULT_INJECTION: forcing a failure. [ 1622.209776] name failslab, interval 1, probability 0, space 0, times 0 [ 1622.212761] CPU: 1 PID: 9171 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1622.214201] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1622.215947] Call Trace: [ 1622.216512] dump_stack+0x107/0x167 [ 1622.217295] should_fail.cold+0x5/0xa [ 1622.218106] ? mempool_alloc+0x148/0x360 [ 1622.218960] ? mempool_free_pages+0x20/0x20 [ 1622.219879] should_failslab+0x5/0x20 [ 1622.220731] kmem_cache_alloc+0x5b/0x310 [ 1622.221593] ? mempool_free_pages+0x20/0x20 [ 1622.222534] mempool_alloc+0x148/0x360 [ 1622.223366] ? mempool_resize+0x7d0/0x7d0 [ 1622.224275] ? mark_lock+0xf5/0x2df0 [ 1622.225102] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1622.226250] __sg_alloc_table+0x24e/0x390 [ 1622.227163] sg_alloc_table_chained+0x9b/0x1f0 [ 1622.228156] ? sg_alloc_table_chained+0x1f0/0x1f0 [ 1622.229215] scsi_alloc_sgtables+0x236/0xaf0 [ 1622.230187] ? scsi_cmd_runtime_exceeced+0x1d0/0x1d0 [ 1622.231295] ? lockdep_init_map_type+0x2c7/0x780 [ 1622.232336] sd_init_command+0x516/0x3550 [ 1622.233260] scsi_queue_rq+0xe5e/0x27f0 [ 1622.234139] blk_mq_dispatch_rq_list+0x372/0x1c40 [ 1622.235204] ? elv_rb_del+0x50/0xa0 [ 1622.235997] ? elv_rqhash_del+0x119/0x160 [ 1622.236900] ? blk_mq_dequeue_from_ctx+0x7f0/0x7f0 [ 1622.237976] ? dd_dispatch_request+0x1c0/0x990 [ 1622.238974] blk_mq_do_dispatch_sched+0x7f4/0xa00 [ 1622.240031] ? blk_mq_sched_mark_restart_hctx+0x80/0x80 [ 1622.241212] ? lock_acquire+0x197/0x470 [ 1622.242073] ? hctx_lock+0x7f/0x200 [ 1622.242869] __blk_mq_sched_dispatch_requests+0x2d7/0x450 [ 1622.244064] ? blk_mq_do_dispatch_sched+0xa00/0xa00 [ 1622.245171] blk_mq_sched_dispatch_requests+0xfd/0x1e0 [ 1622.246314] __blk_mq_run_hw_queue+0x12c/0x290 [ 1622.247308] ? blk_mq_start_request+0x3f0/0x3f0 [ 1622.248318] ? lock_acquire+0x197/0x470 [ 1622.249206] __blk_mq_delay_run_hw_queue+0x53f/0x5a0 [ 1622.250317] blk_mq_run_hw_queue+0x170/0x2f0 [ 1622.251277] ? blk_mq_delay_run_hw_queues+0x1f0/0x1f0 [ 1622.252402] ? dd_dispatch_request+0x990/0x990 [ 1622.253404] blk_mq_sched_insert_requests+0x247/0x720 [ 1622.254495] blk_mq_flush_plug_list+0x415/0x6c0 [ 1622.255513] ? blk_mq_insert_requests+0x450/0x450 [ 1622.256569] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1622.257836] blk_flush_plug_list+0x26c/0x3c0 [ 1622.258792] ? mark_held_locks+0x9e/0xe0 [ 1622.259685] ? blk_insert_cloned_request+0x450/0x450 [ 1622.260810] blk_finish_plug+0x50/0xa0 [ 1622.261661] __iomap_dio_rw+0xca0/0x1110 [ 1622.262566] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1622.263559] ? ext4_orphan_add+0x253/0x9e0 [ 1622.264481] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1622.265562] ? ext4_empty_dir+0xae0/0xae0 [ 1622.266464] ? jbd2__journal_start+0xf3/0x7e0 [ 1622.267450] iomap_dio_rw+0x31/0x90 [ 1622.268249] ext4_file_write_iter+0xe0e/0x1530 [ 1622.269263] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1622.270258] ? kasan_save_stack+0x32/0x40 [ 1622.271133] ? kasan_save_stack+0x1b/0x40 [ 1622.272032] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1622.273141] ? iter_file_splice_write+0x165/0xc90 [ 1622.274186] ? direct_splice_actor+0x10f/0x170 [ 1622.275180] ? splice_direct_to_actor+0x387/0x980 [ 1622.276221] ? do_splice_direct+0x1c4/0x290 [ 1622.277166] ? do_sendfile+0x553/0x11e0 [ 1622.278024] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1622.279032] ? do_syscall_64+0x33/0x40 [ 1622.279878] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1622.281047] do_iter_readv_writev+0x476/0x750 [ 1622.282024] ? new_sync_write+0x660/0x660 [ 1622.282924] ? avc_policy_seqno+0x9/0x70 [ 1622.283803] ? selinux_file_permission+0x92/0x520 [ 1622.284859] ? security_file_permission+0xb1/0xe0 [ 1622.285880] do_iter_write+0x191/0x700 [ 1622.286738] ? trace_hardirqs_on+0x5b/0x180 [ 1622.287691] vfs_iter_write+0x70/0xa0 [ 1622.288524] iter_file_splice_write+0x726/0xc90 [ 1622.289561] ? generic_splice_sendpage+0x140/0x140 [ 1622.290646] ? security_file_permission+0xb1/0xe0 [ 1622.291698] ? generic_splice_sendpage+0x140/0x140 [ 1622.292779] direct_splice_actor+0x10f/0x170 [ 1622.293736] splice_direct_to_actor+0x387/0x980 [ 1622.294749] ? pipe_to_sendpage+0x380/0x380 [ 1622.295693] ? do_splice_to+0x160/0x160 [ 1622.296563] ? security_file_permission+0xb1/0xe0 [ 1622.297631] do_splice_direct+0x1c4/0x290 [ 1622.298538] ? splice_direct_to_actor+0x980/0x980 [ 1622.299584] ? avc_policy_seqno+0x9/0x70 [ 1622.300475] ? security_file_permission+0xb1/0xe0 [ 1622.301521] do_sendfile+0x553/0x11e0 [ 1622.302311] ? do_pwritev+0x270/0x270 [ 1622.303112] ? wait_for_completion_io+0x270/0x270 [ 1622.304157] ? rcu_read_lock_any_held+0x75/0xa0 [ 1622.305136] ? vfs_write+0x354/0xb10 [ 1622.305929] __x64_sys_sendfile64+0x1d1/0x210 [ 1622.306859] ? __ia32_sys_sendfile+0x220/0x220 [ 1622.307822] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1622.308958] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1622.310047] do_syscall_64+0x33/0x40 [ 1622.310832] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1622.311910] RIP: 0033:0x7fdf91659b19 [ 1622.312703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1622.316564] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1622.318188] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1622.319689] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1622.321196] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1622.322695] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1622.324199] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 05:58:23 executing program 0: ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000000)={0x97cf, 0x9, 0x0, 0x5, 0x0, [0x80, 0xffffffff, 0x40, 0x1]}) r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x440020) fchmod(r0, 0x88) clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:58:23 executing program 0: ioctl$FS_IOC_READ_VERITY_METADATA(0xffffffffffffffff, 0xc0286687, &(0x7f0000000180)={0x2, 0x1f, 0x8a, &(0x7f0000000200)=""/138}) r0 = clone3(&(0x7f0000000000)={0x40001000, 0x0, 0x0, 0x0, {0x15}, 0x0, 0x0, 0x0, &(0x7f0000003340), 0x417a}, 0x58) r1 = openat$cgroup_type(0xffffffffffffffff, &(0x7f0000000100), 0x2, 0x0) fsetxattr$security_ima(r1, &(0x7f0000000140), &(0x7f0000000440)=ANY=[@ANYBLOB="009aab5b8feb2065f1270e6eff61be8c0364be88129d0cd219a2460f223b51eab35666419ed0e2a0776d1d"], 0xf, 0x1) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000002c0), 0x72b804, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r3, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) ioctl$BTRFS_IOC_INO_PATHS(r3, 0xc0389423, &(0x7f0000000340)={0x5, 0x30, [0xf5b, 0x36e3, 0x1f, 0x4], &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r3, 0x8010671f, &(0x7f0000000380)={&(0x7f0000000500)=""/112, 0x70}) perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0x7, 0x3, 0x10, 0x0, 0x0, 0x10000000000000, 0x1663, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x800, 0x1, @perf_bp={&(0x7f00000001c0)}, 0x5081, 0x5, 0x5, 0x9, 0x1, 0x100, 0x45, 0x0, 0x6ac4}, r0, 0x2, r2, 0x4) 05:58:38 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000f00) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:38 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:58:38 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa418b6d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000200)='net/if_inet6\x00') read(r1, &(0x7f00000002c0)=""/225, 0xe1) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r3, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000100)={'wlan1\x00'}) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r2, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) r4 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x800, 0x0) r5 = dup2(r0, r4) write$binfmt_elf64(r5, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], 0x3c7) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r6, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) readv(r6, &(0x7f0000000180)=[{&(0x7f0000000500)=""/177, 0xb1}, {&(0x7f00000005c0)=""/192, 0xc0}, {&(0x7f0000000100)}], 0x3) r7 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x266d40) r8 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ptype\x00') io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000040)=[r1, r5, r0, r7, 0xffffffffffffffff, r8, r0], 0x7) clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {0x30}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1, {r5}}, 0x58) 05:58:38 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 32) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:38 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000023) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:38 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r3 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x8882, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r3, 0xc0189373, &(0x7f0000000080)={{0x1, 0x1, 0x18, r2, {0x4}}, '.\x00'}) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:38 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000011) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:38 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)=0x0) timer_create(0x7, &(0x7f0000000180)={0x0, 0xe, 0x1, @tid=r3}, &(0x7f0000000340)) perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x53, 0x20, 0x80, 0x0, 0x0, 0x4a5, 0x20100, 0xb, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0xb, @perf_config_ext={0x9, 0xf}, 0x1280c, 0xef, 0x563, 0x9, 0x6, 0x3, 0x8, 0x0, 0x9, 0x0, 0x6}, r3, 0x9, r2, 0x8) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) r4 = openat2(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x600043, 0x24, 0x8}, 0x18) r5 = mq_open(&(0x7f00000001c0)='\x00', 0x1, 0x8, &(0x7f0000000200)={0x3, 0x0, 0x5, 0x8001}) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r4, 0xc018937d, &(0x7f0000000240)={{0x1, 0x1, 0x18, r5, {0xfffffffb}}, './file1\x00'}) [ 1637.003598] FAULT_INJECTION: forcing a failure. [ 1637.003598] name failslab, interval 1, probability 0, space 0, times 0 [ 1637.005158] CPU: 0 PID: 9203 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1637.006016] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1637.007049] Call Trace: [ 1637.007381] dump_stack+0x107/0x167 [ 1637.007837] should_fail.cold+0x5/0xa [ 1637.008319] ? create_object.isra.0+0x3a/0xa20 [ 1637.008890] should_failslab+0x5/0x20 [ 1637.009389] kmem_cache_alloc+0x5b/0x310 [ 1637.009907] create_object.isra.0+0x3a/0xa20 [ 1637.010461] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1637.011097] kmem_cache_alloc+0x159/0x310 [ 1637.011624] jbd2__journal_start+0x190/0x7e0 [ 1637.012177] __ext4_journal_start_sb+0x214/0x390 [ 1637.012783] ext4_dio_write_end_io+0x22b/0x600 [ 1637.013372] iomap_dio_complete+0x1a1/0x790 [ 1637.013914] ? ext4_es_delayed_clu+0x3d0/0x3d0 [ 1637.014489] iomap_dio_rw+0x63/0x90 [ 1637.014947] ext4_file_write_iter+0xe0e/0x1530 [ 1637.015528] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1637.016100] ? kasan_save_stack+0x32/0x40 [ 1637.016616] ? kasan_save_stack+0x1b/0x40 [ 1637.017131] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1637.017770] ? iter_file_splice_write+0x165/0xc90 [ 1637.018367] ? direct_splice_actor+0x10f/0x170 [ 1637.018931] ? splice_direct_to_actor+0x387/0x980 [ 1637.019529] ? do_splice_direct+0x1c4/0x290 [ 1637.020071] ? do_sendfile+0x553/0x11e0 [ 1637.020565] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1637.021153] ? do_syscall_64+0x33/0x40 [ 1637.021638] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1637.022306] do_iter_readv_writev+0x476/0x750 [ 1637.022865] ? new_sync_write+0x660/0x660 [ 1637.023386] ? avc_policy_seqno+0x9/0x70 [ 1637.023889] ? selinux_file_permission+0x92/0x520 [ 1637.024499] ? security_file_permission+0xb1/0xe0 [ 1637.025104] do_iter_write+0x191/0x700 [ 1637.025605] ? trace_hardirqs_on+0x5b/0x180 [ 1637.026148] vfs_iter_write+0x70/0xa0 [ 1637.026623] iter_file_splice_write+0x726/0xc90 [ 1637.027213] ? generic_splice_sendpage+0x140/0x140 [ 1637.027840] ? security_file_permission+0xb1/0xe0 [ 1637.028442] ? generic_splice_sendpage+0x140/0x140 [ 1637.029056] direct_splice_actor+0x10f/0x170 [ 1637.029616] splice_direct_to_actor+0x387/0x980 [ 1637.030208] ? pipe_to_sendpage+0x380/0x380 [ 1637.030751] ? do_splice_to+0x160/0x160 [ 1637.031250] ? security_file_permission+0xb1/0xe0 [ 1637.031851] do_splice_direct+0x1c4/0x290 [ 1637.032367] ? splice_direct_to_actor+0x980/0x980 [ 1637.032973] ? avc_policy_seqno+0x9/0x70 [ 1637.033502] ? security_file_permission+0xb1/0xe0 [ 1637.034100] do_sendfile+0x553/0x11e0 [ 1637.034580] ? do_pwritev+0x270/0x270 [ 1637.035054] ? wait_for_completion_io+0x270/0x270 [ 1637.035659] ? rcu_read_lock_any_held+0x75/0xa0 [ 1637.036229] ? vfs_write+0x354/0xb10 [ 1637.036702] __x64_sys_sendfile64+0x1d1/0x210 [ 1637.037265] ? __ia32_sys_sendfile+0x220/0x220 [ 1637.037839] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1637.038488] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1637.039125] do_syscall_64+0x33/0x40 [ 1637.039583] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1637.040224] RIP: 0033:0x7fdf91659b19 [ 1637.040682] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1637.042955] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1637.043904] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1637.044783] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1637.045679] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1637.046555] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1637.047436] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 05:58:38 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x1000001da) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:38 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x1fffffff5) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:38 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 33) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:38 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) io_submit(0x0, 0x1, &(0x7f0000000180)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x8, 0x0, r0, &(0x7f0000000040)="1698fde7c673b83cd8af39fe48cc5a1c182b6e01953f6464ad033dc131885a28460c545a14c1f2d330276ffc7af8f08f3f05bf39d10acf78052ec850b88485d2f64f558e58f8213453f640a8400adc606f7109b6756a07924e315174b9caa9f955e5533b2e5ae074f12fea3668345aa329edb199dedc8a3e407d48d15f8e1eb598c1d9cd956037249871c103950ebe72a8aef4f4a4b2c4335debbb7c9383baaf070dd79c0d64cffc66bd5dd4372c2fcffbd24e65829e138e80ac1c3ac81eb6d9b92c87788d06e1a77b6cb0bc674db85793d5af6ffbb6cd79cfc3b317d50ea410de02d2b104523d4433", 0xe9, 0x1, 0x0, 0x0, r1}]) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:38 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000023) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1637.420547] FAULT_INJECTION: forcing a failure. [ 1637.420547] name failslab, interval 1, probability 0, space 0, times 0 [ 1637.423198] CPU: 1 PID: 9227 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1637.424747] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1637.426645] Call Trace: [ 1637.427253] dump_stack+0x107/0x167 [ 1637.428090] should_fail.cold+0x5/0xa [ 1637.428961] ? mempool_alloc+0x148/0x360 [ 1637.429899] ? mempool_free_pages+0x20/0x20 [ 1637.430889] should_failslab+0x5/0x20 [ 1637.431760] kmem_cache_alloc+0x5b/0x310 [ 1637.432689] ? mempool_free_pages+0x20/0x20 [ 1637.433690] mempool_alloc+0x148/0x360 [ 1637.434593] ? mempool_resize+0x7d0/0x7d0 [ 1637.435545] ? mark_lock+0xf5/0x2df0 [ 1637.436393] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1637.437605] __sg_alloc_table+0x24e/0x390 [ 1637.438561] sg_alloc_table_chained+0x9b/0x1f0 [ 1637.439594] ? sg_alloc_table_chained+0x1f0/0x1f0 [ 1637.440693] scsi_alloc_sgtables+0x236/0xaf0 [ 1637.441709] ? scsi_cmd_runtime_exceeced+0x1d0/0x1d0 [ 1637.442865] ? lockdep_init_map_type+0x2c7/0x780 [ 1637.443955] sd_init_command+0x516/0x3550 [ 1637.444918] scsi_queue_rq+0xe5e/0x27f0 [ 1637.445846] blk_mq_dispatch_rq_list+0x372/0x1c40 [ 1637.446958] ? elv_rb_del+0x50/0xa0 [ 1637.447788] ? elv_rqhash_del+0x119/0x160 [ 1637.448729] ? blk_mq_dequeue_from_ctx+0x7f0/0x7f0 [ 1637.449887] ? dd_dispatch_request+0x1c0/0x990 [ 1637.450935] blk_mq_do_dispatch_sched+0x7f4/0xa00 [ 1637.452064] ? blk_mq_sched_mark_restart_hctx+0x80/0x80 [ 1637.453291] ? lock_acquire+0x197/0x470 [ 1637.454196] ? hctx_lock+0x7f/0x200 [ 1637.455033] __blk_mq_sched_dispatch_requests+0x2d7/0x450 [ 1637.456303] ? blk_mq_do_dispatch_sched+0xa00/0xa00 [ 1637.457464] blk_mq_sched_dispatch_requests+0xfd/0x1e0 [ 1637.458657] __blk_mq_run_hw_queue+0x12c/0x290 [ 1637.459695] ? blk_mq_start_request+0x3f0/0x3f0 [ 1637.460743] ? lock_acquire+0x197/0x470 [ 1637.461669] __blk_mq_delay_run_hw_queue+0x53f/0x5a0 [ 1637.462836] blk_mq_run_hw_queue+0x170/0x2f0 [ 1637.463840] ? blk_mq_delay_run_hw_queues+0x1f0/0x1f0 [ 1637.465024] ? dd_dispatch_request+0x990/0x990 [ 1637.466067] blk_mq_sched_insert_requests+0x247/0x720 [ 1637.467280] blk_mq_flush_plug_list+0x415/0x6c0 [ 1637.468361] ? blk_mq_insert_requests+0x450/0x450 [ 1637.469496] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1637.470841] blk_flush_plug_list+0x26c/0x3c0 [ 1637.471844] ? mark_held_locks+0x9e/0xe0 [ 1637.472802] ? blk_insert_cloned_request+0x450/0x450 [ 1637.473998] blk_finish_plug+0x50/0xa0 [ 1637.474898] __iomap_dio_rw+0xca0/0x1110 [ 1637.475854] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1637.476905] ? ext4_orphan_add+0x253/0x9e0 [ 1637.477899] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1637.479032] ? ext4_empty_dir+0xae0/0xae0 [ 1637.479987] ? jbd2__journal_start+0xf3/0x7e0 [ 1637.481032] iomap_dio_rw+0x31/0x90 [ 1637.481887] ext4_file_write_iter+0xe0e/0x1530 [ 1637.482955] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1637.484003] ? kasan_save_stack+0x32/0x40 [ 1637.484962] ? kasan_save_stack+0x1b/0x40 05:58:39 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) r3 = accept4$inet(r1, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r4, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) copy_file_range(r3, &(0x7f00000000c0)=0x2, r4, 0x0, 0x9, 0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)=0x0) timer_create(0x7, &(0x7f0000000180)={0x0, 0xe, 0x1, @tid=r5}, &(0x7f0000000340)) r6 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x8, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext, 0x0, 0x4, 0x0, 0x6, 0x8}, r5, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r7 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000c80)=ANY=[@ANYBLOB="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"], 0x98}}, 0x0) close_range(r7, r6, 0x0) r8 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), r7) sendmsg$DEVLINK_CMD_RATE_SET(r7, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x1c, r8, 0x4, 0x70bd2c, 0x25dfdbfe, {}, [@DEVLINK_ATTR_PORT_INDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40040}, 0x804) sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r0, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0xc0000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x7c, r8, 0x300, 0x70bd27, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, {0xd}, {0x5, 0x83, 0x1}}, {@pci={{0x8}, {0x11}}, {0xd}, {0x5}}]}, 0x7c}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000014) [ 1637.486169] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1637.487442] ? iter_file_splice_write+0x165/0xc90 [ 1637.488539] ? direct_splice_actor+0x10f/0x170 [ 1637.489584] ? splice_direct_to_actor+0x387/0x980 [ 1637.490673] ? do_splice_direct+0x1c4/0x290 [ 1637.491647] ? do_sendfile+0x553/0x11e0 [ 1637.492544] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1637.493612] ? do_syscall_64+0x33/0x40 [ 1637.494498] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1637.495715] do_iter_readv_writev+0x476/0x750 [ 1637.496738] ? new_sync_write+0x660/0x660 [ 1637.497687] ? avc_policy_seqno+0x9/0x70 [ 1637.498611] ? selinux_file_permission+0x92/0x520 [ 1637.499712] ? security_file_permission+0xb1/0xe0 [ 1637.500819] do_iter_write+0x191/0x700 [ 1637.501713] ? trace_hardirqs_on+0x5b/0x180 [ 1637.502702] vfs_iter_write+0x70/0xa0 [ 1637.503570] iter_file_splice_write+0x726/0xc90 [ 1637.504643] ? generic_splice_sendpage+0x140/0x140 [ 1637.505788] ? security_file_permission+0xb1/0xe0 [ 1637.506882] ? generic_splice_sendpage+0x140/0x140 [ 1637.507995] direct_splice_actor+0x10f/0x170 [ 1637.508997] splice_direct_to_actor+0x387/0x980 [ 1637.510072] ? pipe_to_sendpage+0x380/0x380 [ 1637.511057] ? do_splice_to+0x160/0x160 [ 1637.511960] ? security_file_permission+0xb1/0xe0 [ 1637.513066] do_splice_direct+0x1c4/0x290 [ 1637.514016] ? splice_direct_to_actor+0x980/0x980 [ 1637.515110] ? avc_policy_seqno+0x9/0x70 [ 1637.516034] ? security_file_permission+0xb1/0xe0 [ 1637.517143] do_sendfile+0x553/0x11e0 [ 1637.518028] ? do_pwritev+0x270/0x270 [ 1637.518910] __x64_sys_sendfile64+0x1d1/0x210 [ 1637.519925] ? __ia32_sys_sendfile+0x220/0x220 [ 1637.520973] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1637.522169] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1637.523337] do_syscall_64+0x33/0x40 [ 1637.524188] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1637.525360] RIP: 0033:0x7fdf91659b19 [ 1637.526208] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1637.530394] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1637.532120] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1637.533748] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1637.535367] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1637.536989] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1637.538609] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 [ 1637.631147] netlink: 124 bytes leftover after parsing attributes in process `syz-executor.5'. 05:58:39 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) socket$netlink(0x10, 0x3, 0x4) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:39 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000281) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:39 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x883c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) write$binfmt_aout(r1, &(0x7f0000000300)={{0x107, 0x5, 0x6, 0x286, 0x234, 0x2, 0x103, 0x1}, "4afb4b", ['\x00', '\x00', '\x00']}, 0x323) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:39 executing program 0: r0 = perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0x80, 0x40, 0x0, 0x3, 0x0, 0x8bbb, 0x50300, 0x4, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40, 0x0, @perf_config_ext={0x81}, 0x4a802, 0x81, 0x3, 0x3, 0x6, 0x40004, 0x5, 0x0, 0x4, 0x0, 0xffffffffffff2eb1}, 0x0, 0x1, 0xffffffffffffffff, 0x1) stat(&(0x7f0000000140)='./file0/file0\x00', &(0x7f0000000040)) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r1, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f00000002c0)={{0x1, 0x1, 0x18, r1, {0x7ff}}, './file0/file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file0/file0\x00'}) openat(0xffffffffffffffff, &(0x7f0000000280)='./file0/file0\x00', 0x1, 0x82) write$binfmt_script(r2, &(0x7f0000000180)={'#! ', './file0/file0', [{0x20, '\\d'}, {0x20, '-'}, {}, {}], 0xa, "23e4adbe51444781dbfc7633fe24515ee77e5ce6f9c9258bdd872371871be8f59185250f2677c296addd8a3433e28fdb6342abdb5a717553ba9ead00c46cd459ad9088891f69ef11d20c0874afce9a6e030c8cf0df6bd158b7a9256734146ac3b424252e54caba10adffc5d1a7cfe915cf7c38993e82703091c065f9fe2fad55c6ae681a20fbdd5720969179d84aad4a47bf5b2e9f90676767d4fa99f8456d93b15bc4fd393c37923e3214b6ecfba72dd1558c126948ee53a45d270860f2d1b1185d2912d8"}, 0xdd) clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:58:39 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 34) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:39 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:58:39 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000159) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1637.989618] FAULT_INJECTION: forcing a failure. [ 1637.989618] name failslab, interval 1, probability 0, space 0, times 0 [ 1637.992391] CPU: 1 PID: 9259 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1637.993950] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1637.995811] Call Trace: [ 1637.996405] dump_stack+0x107/0x167 [ 1637.997241] should_fail.cold+0x5/0xa [ 1637.998113] ? create_object.isra.0+0x3a/0xa20 [ 1637.999146] should_failslab+0x5/0x20 [ 1638.000007] kmem_cache_alloc+0x5b/0x310 [ 1638.000927] create_object.isra.0+0x3a/0xa20 [ 1638.001921] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1638.003072] kmem_cache_alloc+0x159/0x310 [ 1638.004017] start_this_handle+0x674/0x1390 [ 1638.005018] ? mark_held_locks+0x9e/0xe0 [ 1638.005944] ? __jbd2_journal_unfile_buffer+0xb0/0xb0 [ 1638.007111] ? trace_hardirqs_on+0x5b/0x180 [ 1638.008094] ? kmem_cache_alloc+0x2a6/0x310 [ 1638.009076] jbd2__journal_start+0x390/0x7e0 [ 1638.010094] __ext4_journal_start_sb+0x214/0x390 [ 1638.011182] ext4_dio_write_end_io+0x22b/0x600 [ 1638.012227] iomap_dio_complete+0x1a1/0x790 [ 1638.013208] ? ext4_es_delayed_clu+0x3d0/0x3d0 [ 1638.014246] iomap_dio_rw+0x63/0x90 [ 1638.015076] ext4_file_write_iter+0xe0e/0x1530 [ 1638.016126] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1638.017161] ? kasan_save_stack+0x32/0x40 [ 1638.018126] ? kasan_save_stack+0x1b/0x40 [ 1638.019067] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 05:58:39 executing program 7: r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000040)={0x0, {0x2, 0x0, @dev}, {0x2, 0x0, @dev}, {0x2, 0x0, @broadcast}, 0x142}) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) fallocate(r1, 0x0, 0x0, 0x1000002) [ 1638.020219] ? iter_file_splice_write+0x165/0xc90 [ 1638.021501] ? direct_splice_actor+0x10f/0x170 [ 1638.022532] ? splice_direct_to_actor+0x387/0x980 [ 1638.023618] ? do_splice_direct+0x1c4/0x290 [ 1638.024597] ? do_sendfile+0x553/0x11e0 [ 1638.025504] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1638.026562] ? do_syscall_64+0x33/0x40 [ 1638.027452] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1638.028678] do_iter_readv_writev+0x476/0x750 [ 1638.029712] ? new_sync_write+0x660/0x660 [ 1638.030657] ? avc_policy_seqno+0x9/0x70 [ 1638.031577] ? selinux_file_permission+0x92/0x520 [ 1638.032686] ? security_file_permission+0xb1/0xe0 [ 1638.033804] do_iter_write+0x191/0x700 [ 1638.034686] ? trace_hardirqs_on+0x5b/0x180 [ 1638.035665] vfs_iter_write+0x70/0xa0 [ 1638.036534] iter_file_splice_write+0x726/0xc90 [ 1638.037619] ? generic_splice_sendpage+0x140/0x140 [ 1638.038761] ? security_file_permission+0xb1/0xe0 [ 1638.039802] ? generic_splice_sendpage+0x140/0x140 [ 1638.040775] direct_splice_actor+0x10f/0x170 [ 1638.041658] splice_direct_to_actor+0x387/0x980 [ 1638.042583] ? pipe_to_sendpage+0x380/0x380 [ 1638.043445] ? do_splice_to+0x160/0x160 [ 1638.044235] ? security_file_permission+0xb1/0xe0 [ 1638.045198] do_splice_direct+0x1c4/0x290 [ 1638.046029] ? splice_direct_to_actor+0x980/0x980 [ 1638.046990] ? avc_policy_seqno+0x9/0x70 [ 1638.047808] ? security_file_permission+0xb1/0xe0 [ 1638.048772] do_sendfile+0x553/0x11e0 [ 1638.049548] ? do_pwritev+0x270/0x270 [ 1638.050310] ? wait_for_completion_io+0x270/0x270 [ 1638.051275] ? rcu_read_lock_any_held+0x75/0xa0 [ 1638.052195] ? vfs_write+0x354/0xb10 [ 1638.052945] __x64_sys_sendfile64+0x1d1/0x210 [ 1638.053851] ? __ia32_sys_sendfile+0x220/0x220 [ 1638.054773] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1638.055817] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1638.056861] do_syscall_64+0x33/0x40 [ 1638.057618] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1638.058638] RIP: 0033:0x7fdf91659b19 [ 1638.059398] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1638.063127] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1638.064635] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1638.066052] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1638.067453] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1638.068858] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1638.070269] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 05:58:39 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x882c2, 0x100) openat(r0, &(0x7f0000000080)='./file1\x00', 0x8f157e01413fcf38, 0x40) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:39 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa418b6d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000200)='net/if_inet6\x00') read(r1, &(0x7f00000002c0)=""/225, 0xe1) r2 = dup2(r0, r0) write$binfmt_elf64(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x3c7) r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x266d40) r4 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ptype\x00') io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000040)=[r1, r2, r0, r3, 0xffffffffffffffff, r4, r0], 0x7) fcntl$addseals(r1, 0x409, 0x8) ioctl$TUNGETVNETHDRSZ(r1, 0x800454d7, &(0x7f0000000000)) clone3(&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) r5 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) lseek(r5, 0x0, 0x2) r6 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x4000, 0x0) copy_file_range(r6, 0x0, r5, 0x0, 0x200f5ef, 0x0) openat$cgroup(r1, &(0x7f0000000080)='syz1\x00', 0x200002, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000240)=0x0) setresuid(r7, 0x0, r8) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r5, 0xc018937b, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000105623c3cd3aa71", @ANYRESOCT, @ANYRES32=r7, @ANYRES32=0x0, @ANYBLOB='./file0\x00']) 05:58:53 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:58:53 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_READ=@pass_buffer={0x16, 0x3, 0x2007, @fd_index=0x6, 0x2, &(0x7f0000000040)=""/16, 0x10, 0x11}, 0xfffffffe) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100000001) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) r1 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000) syz_io_uring_submit(r1, 0x0, &(0x7f00000002c0)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x5}, 0x80000001) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa418b6d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000200)='net/if_inet6\x00') read(r3, &(0x7f00000002c0)=""/225, 0xe1) r4 = dup2(r2, r2) write$binfmt_elf64(r4, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], 0x3c7) r5 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x266d40) r6 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ptype\x00') io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000040)=[r3, r4, r2, r5, 0xffffffffffffffff, r6, r2], 0x7) r7 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r7, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="000000000000000000000e000000"], 0x14}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x2, 0x0, r4, &(0x7f00000000c0), r7}, 0x7) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:53 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r1, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) sendfile(r1, 0xffffffffffffffff, 0x0, 0x100100000005) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:53 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x1000001da) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:53 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 35) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:53 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0x0], 0x1}, 0x58) r0 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000000, 0x10, 0xffffffffffffffff, 0x10000000) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r1, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)=ANY=[@ANYBLOB="14000002", @ANYRES16=0x0, @ANYBLOB="000000000000000000000e000000"], 0x14}}, 0x0) r2 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r5}}, 0x10000) syz_io_uring_submit(0x0, r0, &(0x7f0000000000)=@IORING_OP_FALLOCATE={0x11, 0x5, 0x0, @fd=r1, 0x6, 0x0, 0x8, 0x0, 0x0, {0x0, r5}}, 0x0) 05:58:53 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x14, 0x52, 0x101}, 0x14}}, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000140)) r5 = syz_io_uring_complete(r4) faccessat2(r5, &(0x7f00000001c0)='./file0\x00', 0x160, 0x300) r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), r3) lsetxattr$trusted_overlay_nlink(&(0x7f0000000180)='./file1\x00', &(0x7f0000000200), &(0x7f0000000240)={'U-', 0xf9da}, 0x16, 0x1) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r5, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x1c, r6, 0x100, 0x70bd26, 0x25dfdbff, {}, [@BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x15f}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x8001) sendmsg$BATADV_CMD_GET_NEIGHBORS(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000100)={&(0x7f0000000500)=ANY=[@ANYBLOB="0000000000000000bae232bf60230dc21cff03e14fef52c7d0bf576d094aa514124816f2ac7c782114d483a797c4633ec21dcaa5f5c4f62d0255c33fea63858d2ad0e0ede81fe9bf396720cb", @ANYRES16=r6, @ANYBLOB="00042dbd7000fbdbdf250900000005002d00010000000500330001000000080032000400000005002f000000000005002a0000000000080031002000000008003b004606000005002f0001000000"], 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x40080) r7 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000280), 0x12001, 0x0) unlinkat(r7, &(0x7f0000000300)='./file1\x00', 0x0) 05:58:53 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000300) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1651.939185] FAULT_INJECTION: forcing a failure. [ 1651.939185] name failslab, interval 1, probability 0, space 0, times 0 [ 1651.941076] CPU: 0 PID: 9294 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1651.942176] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1651.943360] Call Trace: [ 1651.943747] dump_stack+0x107/0x167 [ 1651.944278] should_fail.cold+0x5/0xa [ 1651.944822] ? create_object.isra.0+0x3a/0xa20 [ 1651.945479] should_failslab+0x5/0x20 [ 1651.946048] kmem_cache_alloc+0x5b/0x310 [ 1651.946643] create_object.isra.0+0x3a/0xa20 [ 1651.947287] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1651.948025] kmem_cache_alloc+0x159/0x310 [ 1651.948619] jbd2__journal_start+0x190/0x7e0 [ 1651.949279] __ext4_journal_start_sb+0x214/0x390 [ 1651.949971] ext4_dio_write_end_io+0x22b/0x600 [ 1651.950639] iomap_dio_complete+0x1a1/0x790 [ 1651.951273] ? ext4_es_delayed_clu+0x3d0/0x3d0 [ 1651.951942] iomap_dio_rw+0x63/0x90 [ 1651.952486] ext4_file_write_iter+0xe0e/0x1530 [ 1651.953158] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1651.953827] ? kasan_save_stack+0x32/0x40 [ 1651.954439] ? kasan_save_stack+0x1b/0x40 [ 1651.955042] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1651.955784] ? iter_file_splice_write+0x165/0xc90 [ 1651.956490] ? direct_splice_actor+0x10f/0x170 [ 1651.957150] ? splice_direct_to_actor+0x387/0x980 [ 1651.957863] ? do_splice_direct+0x1c4/0x290 [ 1651.958486] ? do_sendfile+0x553/0x11e0 [ 1651.959079] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1651.959743] ? do_syscall_64+0x33/0x40 [ 1651.960294] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1651.961076] do_iter_readv_writev+0x476/0x750 [ 1651.961724] ? new_sync_write+0x660/0x660 [ 1651.962354] ? avc_policy_seqno+0x9/0x70 [ 1651.962937] ? selinux_file_permission+0x92/0x520 [ 1651.963638] ? security_file_permission+0xb1/0xe0 [ 1651.964358] do_iter_write+0x191/0x700 [ 1651.964922] ? trace_hardirqs_on+0x5b/0x180 [ 1651.965573] vfs_iter_write+0x70/0xa0 [ 1651.966177] iter_file_splice_write+0x726/0xc90 [ 1651.966870] ? generic_splice_sendpage+0x140/0x140 [ 1651.967607] ? security_file_permission+0xb1/0xe0 [ 1651.968313] ? generic_splice_sendpage+0x140/0x140 [ 1651.969015] direct_splice_actor+0x10f/0x170 [ 1651.969651] splice_direct_to_actor+0x387/0x980 [ 1651.970342] ? pipe_to_sendpage+0x380/0x380 [ 1651.970973] ? do_splice_to+0x160/0x160 [ 1651.971549] ? security_file_permission+0xb1/0xe0 [ 1651.972245] do_splice_direct+0x1c4/0x290 [ 1651.972840] ? splice_direct_to_actor+0x980/0x980 [ 1651.973545] ? avc_policy_seqno+0x9/0x70 [ 1651.974137] ? security_file_permission+0xb1/0xe0 [ 1651.974822] do_sendfile+0x553/0x11e0 [ 1651.975383] ? do_pwritev+0x270/0x270 [ 1651.975941] ? wait_for_completion_io+0x270/0x270 [ 1651.976646] ? rcu_read_lock_any_held+0x75/0xa0 [ 1651.977325] ? vfs_write+0x354/0xb10 [ 1651.977876] __x64_sys_sendfile64+0x1d1/0x210 [ 1651.978520] ? __ia32_sys_sendfile+0x220/0x220 [ 1651.979184] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1651.979940] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1651.980697] do_syscall_64+0x33/0x40 [ 1651.981244] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1651.981997] RIP: 0033:0x7fdf91659b19 [ 1651.982533] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1651.985166] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1651.986291] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1651.987348] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1651.988382] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1651.989410] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1651.990446] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 05:58:53 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x4) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r2, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r3, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) copy_file_range(r2, &(0x7f0000000040)=0xfffffffffffffff7, r3, &(0x7f0000000080)=0x40000000, 0x0, 0x0) sendmsg$IPVS_CMD_NEW_DAEMON(r2, &(0x7f0000000340)={&(0x7f0000000240), 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x1c, 0x0, 0x400, 0x70bd2c, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20040080}, 0x40800) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r4, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000100), r1) sendmsg$BATADV_CMD_GET_MESH(r3, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x54, r5, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x1}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x7}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x80}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x9}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2a}}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @local}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000}, 0x4001) 05:58:53 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f00000001c0)={'syztnl2\x00', &(0x7f0000000040)={'syztnl0\x00', 0x0, 0x0, 0x8000, 0x5, 0x4, {{0x4a, 0x4, 0x0, 0x1, 0x128, 0x64, 0x0, 0xdc, 0x29, 0x0, @dev={0xac, 0x14, 0x14, 0xf}, @local, {[@ssrr={0x89, 0x1b, 0x6d, [@rand_addr=0x64010101, @local, @multicast2, @empty, @initdev={0xac, 0x1e, 0x1, 0x0}, @loopback]}, @generic={0x86, 0x9, "cb5840c3d62b61"}, @timestamp_addr={0x44, 0x44, 0x26, 0x1, 0x1, [{@private=0xa010101, 0x8000}, {@multicast2, 0x6}, {@loopback, 0xed}, {@multicast2, 0x8}, {@remote, 0x8}, {@dev={0xac, 0x14, 0x14, 0x11}, 0x4}, {@multicast2, 0x3}, {@remote, 0xfffff800}]}, @rr={0x7, 0x23, 0xe, [@broadcast, @empty, @dev={0xac, 0x14, 0x14, 0xd}, @rand_addr=0x64010100, @local, @private=0xa010102, @dev={0xac, 0x14, 0x14, 0xe}, @private=0xa010101]}, @generic={0x82, 0xe, "21b584e9200349dff94e2721"}, @cipso={0x86, 0x50, 0x3, [{0x1, 0x10, "0ac953094df2b8731b2f34cd359d"}, {0x5, 0x5, "6932cc"}, {0x6, 0x5, "2e53fe"}, {0x7, 0x11, "6792b63c4834e9cd094deab152b9a8"}, {0x7, 0x10, "ea3900d38e7ef4478c3ad92b8779"}, {0x6, 0x8, "5f49e18b118d"}, {0x7, 0x4, "f626"}, {0x6, 0x3, "84"}]}, @noop, @rr={0x7, 0x27, 0xcc, [@multicast2, @dev={0xac, 0x14, 0x14, 0x22}, @private=0xa010102, @rand_addr=0x64010101, @multicast1, @private=0xa010101, @local, @dev={0xac, 0x14, 0x14, 0xe}, @loopback]}]}}}}}) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002) 05:58:53 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {0x3}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:58:53 executing program 0: clone3(&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, {0x16}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0x0], 0x1}, 0x10) 05:58:53 executing program 0: r0 = clone3(&(0x7f0000000240)={0x152000, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x6}, &(0x7f00000000c0)=""/159, 0x9f, &(0x7f0000000180)=""/109, &(0x7f0000000200)}, 0x58) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)=0x0) timer_create(0x7, &(0x7f0000000180)={0x0, 0xe, 0x1, @tid=r1}, &(0x7f0000000340)) clone3(&(0x7f0000003380)={0x100080, 0x0, 0x0, 0x0, {}, 0x0, 0x4f, 0x0, &(0x7f00000002c0)=[0x0, r0, r1]}, 0x58) 05:58:53 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000281) fallocate(r0, 0x0, 0x0, 0x1000002) 05:58:54 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8}, 0x10000) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x5}, 0x80000001) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@caif=@util={0x25, "2f24771a23361fbab31f26e0d3e5be14"}, 0x0, 0x0, 0x0, {0x0, r7}}, 0x0) sendfile(r1, r2, 0x0, 0x100000001) syz_io_uring_setup(0x6673, &(0x7f0000000040)={0x0, 0x5300, 0x2, 0x0, 0x219, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000000c0)=0x0, &(0x7f0000000100)) openat(r1, &(0x7f0000000180)='./file1\x00', 0x541800, 0x80) r9 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r12 = io_uring_register$IORING_REGISTER_PERSONALITY(r9, 0x9, 0x0, 0x0) syz_io_uring_submit(r10, r11, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r12}}, 0x10000) syz_io_uring_submit(r8, 0x0, &(0x7f0000000140)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x5, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r12}}, 0x4) fallocate(r0, 0x4, 0x0, 0x1000002) 05:59:08 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) openat(r0, &(0x7f0000000040)='./file1/file0\x00', 0x680080, 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:59:08 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000500) fallocate(r0, 0x0, 0x0, 0x1000002) 05:59:08 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:59:08 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x406342, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r3 = syz_mount_image$nfs4(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x4, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="86707b5ed2049c4c33a29bf39d07e400d8dd0fbd493769b8e541134c9bf042fe537207669195", 0x26, 0x6}], 0x40000, &(0x7f0000000140)={[{'@^.'}, {'(.!}-b\'['}, {'-'}, {'\xbe^*}\xb9^)-\\$'}, {'\\:\'@:'}, {'$'}], [{@hash}]}) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000280)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r2, &(0x7f0000000600)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000300)={0x2b8, 0x0, 0x0, 0xbf7f, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r4}, @val={0xc, 0x99, {0x12, 0x20}}}}, [@NL80211_ATTR_EXTERNAL_AUTH_SUPPORT={0x4}, @acl_policy=[@NL80211_ATTR_MAC_ADDRS={0x1c, 0xa6, 0x0, 0x1, [{0xa, 0x6, @broadcast}, {0xa}]}, @NL80211_ATTR_ACL_POLICY={0x8}, @NL80211_ATTR_MAC_ADDRS={0x10, 0xa6, 0x0, 0x1, [{0xa, 0x6, @broadcast}]}, @NL80211_ATTR_MAC_ADDRS={0x34, 0xa6, 0x0, 0x1, [{0xa}, {0xa, 0x6, @broadcast}, {0xa}, {0xa, 0x6, @device_b}]}, @NL80211_ATTR_ACL_POLICY={0x8}], @NL80211_ATTR_SMPS_MODE={0x5, 0xd5, 0x2}, @NL80211_ATTR_TX_RATES={0x20c, 0x5a, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x28, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x57ac48b4e8f1060d}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x2, 0x6, 0x7, 0x2, 0x7, 0x68a6, 0x1f, 0xfa]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0xdc, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0xb, 0x2, [{0x2, 0x2}, {0x3, 0x4}, {0x2, 0x7}, {0x2, 0x6}, {0x3, 0x8}, {0x3, 0x7}, {0x7, 0x7}]}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_LEGACY={0x1c, 0x1, [0x36, 0x6c, 0x1b, 0xc, 0x19, 0xb, 0x4, 0x24, 0x0, 0x73, 0x4, 0x36, 0x3, 0x6c, 0x2, 0x6c, 0x60, 0x0, 0x60, 0x5, 0x5, 0x6, 0x36, 0x3a]}, @NL80211_TXRATE_LEGACY={0x1d, 0x1, [0x36, 0x9, 0x57, 0x0, 0x32, 0x60, 0xb, 0x18, 0x16, 0x48, 0x48, 0x5, 0x36, 0x9, 0x3, 0x2, 0x48, 0x5, 0x60, 0x2, 0xc, 0x4f, 0x16, 0xc, 0x0]}, @NL80211_TXRATE_LEGACY={0x17, 0x1, [0x16, 0x1b, 0x5, 0x12, 0xb, 0x9, 0x16, 0x1d, 0x3, 0x12, 0x4, 0x6c, 0xc, 0xc, 0xb, 0x5, 0x5, 0x14, 0x5]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_LEGACY={0x1f, 0x1, [0x5, 0x60, 0x36, 0x1, 0x36, 0x48, 0x30, 0x6, 0xc, 0x12, 0x1, 0x60, 0x36, 0x12, 0xc, 0xc, 0xb, 0x36, 0x12, 0x18, 0x4, 0x48, 0x9, 0x34, 0x30, 0x1b, 0x1b]}, @NL80211_TXRATE_HT={0x46, 0x2, [{0x3}, {0x7, 0x2}, {0x0, 0x1}, {0x2, 0x9}, {0x3, 0x7}, {0x2, 0x4}, {0x2, 0x2}, {0x5, 0x3}, {0x6, 0xa}, {0x4, 0x9}, {0x7, 0x6}, {0x4, 0x6}, {0x3, 0x3}, {0x2, 0x6}, {0x4, 0x1}, {0x3, 0x4}, {0x0, 0x2}, {0x0, 0x4}, {0x7, 0x9}, {0x5, 0x6}, {0x0, 0x5}, {0x2}, {0x6, 0xa}, {0x0, 0x3}, {0x0, 0x9}, {0x3, 0x7}, {0x1, 0x3}, {0x4, 0x7}, {0x1, 0xa}, {0x2, 0x9}, {0x1, 0x6}, {0x1, 0x6}, {0x3, 0x5}, {0x3, 0x1}, {0x0, 0x6}, {0x0, 0x7}, {0x4, 0x9}, {0x7, 0x8}, {0x6, 0xa}, {0x1, 0x1}, {0x3, 0x2}, {0x5, 0x4}, {0x6, 0x3}, {0x2}, {0x5}, {0x2}, {0x2, 0x6}, {0x0, 0x5}, {0x2, 0x4}, {0x5, 0x8}, {0x4, 0x2}, {0x3, 0x9}, {0x1, 0x7}, {0x1, 0x6}, {0x5, 0x8}, {0x6, 0x5}, {0x4, 0x8}, {0x1, 0x1}, {}, {0x4, 0x2}, {0x4, 0x9}, {0x2, 0x6}, {}, {0x3, 0x1}, {0x6, 0x2}, {0x0, 0x6}]}]}, @NL80211_BAND_6GHZ={0x20, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HT={0x14, 0x2, [{0x5, 0x8}, {0x2, 0xa}, {0x2, 0x7}, {0x3, 0xa}, {0x3, 0x6}, {0x0, 0x5}, {0x7, 0x4}, {0x2, 0x8}, {}, {0x4, 0x4}, {0x1, 0xa}, {0x5, 0x8}, {0x4, 0x2}, {0x5, 0x7}, {0x3, 0x3}, {0x6, 0x3}]}, @NL80211_TXRATE_GI={0x5}]}, @NL80211_BAND_5GHZ={0x44, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x6d, 0x72e2, 0x5, 0x1f, 0xd86d, 0xf490, 0x9, 0x36]}}, @NL80211_TXRATE_LEGACY={0x1d, 0x1, [0x24, 0x48, 0x2, 0x2, 0x3, 0x16, 0x30, 0x48, 0x24, 0x36, 0x12, 0x60, 0x4, 0x6c, 0x0, 0x5, 0x16, 0x1b, 0xc, 0x2, 0x6, 0x24, 0x48, 0x6c, 0x3]}, @NL80211_TXRATE_HT={0xb, 0x2, [{0x2, 0x3}, {0x7, 0x8}, {0x4}, {}, {0x2, 0x8}, {0x3, 0x8}, {0x0, 0x3}]}]}, @NL80211_BAND_6GHZ={0x4}, @NL80211_BAND_5GHZ={0x2c, 0x1, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HT={0xc, 0x2, [{0x0, 0x9}, {0x3, 0x1}, {0x3, 0x6}, {}, {0x6, 0x4}, {0x3, 0x3}, {0x0, 0x8}, {0x6}]}, @NL80211_TXRATE_LEGACY={0x11, 0x1, [0x60, 0x1, 0x1, 0x18, 0x9, 0x6c, 0x4, 0x12, 0x5, 0x0, 0x12, 0x0, 0x24]}]}, @NL80211_BAND_6GHZ={0x70, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HT={0x21, 0x2, [{0x0, 0x4}, {0x6, 0xa}, {0x7, 0x9}, {0x7}, {0x2, 0xa}, {0x0, 0x7}, {0x5, 0x3}, {0x5, 0xa}, {0x7, 0x8}, {0x0, 0x4}, {0x4, 0x4}, {0x0, 0x6}, {0x0, 0x2}, {0x6, 0x1}, {0x1}, {0x1}, {0x1, 0x1}, {0x1, 0x2}, {0x6, 0x4}, {0x0, 0x1}, {0x0, 0x4}, {0x5, 0x8}, {0x5, 0x6}, {0x0, 0x5}, {0x6, 0x5}, {0x4, 0x9}, {0x2}, {0x0, 0x9}, {0x6, 0x4}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x6, 0x7fff, 0xfffd, 0x200, 0x5, 0x1, 0x1f, 0x5]}}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_LEGACY={0x12, 0x1, [0x6, 0x5, 0x12, 0x24, 0x6, 0x4, 0x1, 0xc, 0x60, 0x24, 0x6, 0x18, 0x6, 0x18]}, @NL80211_TXRATE_GI={0x5}]}]}, @NL80211_ATTR_INACTIVITY_TIMEOUT={0x6, 0x96, 0x3ad}]}, 0x2b8}, 0x1, 0x0, 0x0, 0x8011}, 0xd9d440232b6a8a40) openat(r3, &(0x7f0000000180)='./file1\x00', 0x40100, 0x82) r5 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000680), 0x0, 0x0) ftruncate(r5, 0x7fff) r6 = openat$sndtimer(0xffffffffffffff9c, &(0x7f00000001c0), 0x40) sendfile(r6, r2, &(0x7f0000000200)=0xffff, 0x7) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:59:08 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000004480)='memory.numa_stat\x00', 0x0, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000005a80)=[{{&(0x7f0000000080), 0x6e, &(0x7f0000000340)=[{&(0x7f0000000100)=""/203, 0xcb}, {&(0x7f0000000200)=""/93, 0x5d}, {&(0x7f0000000280)=""/130, 0x82}], 0x3, &(0x7f0000000380)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x28}}, {{&(0x7f00000003c0)=@abs, 0x6e, &(0x7f0000002580)=[{&(0x7f0000000440)=""/114, 0x72}, {&(0x7f00000004c0)=""/4096, 0x1000}, {&(0x7f00000014c0)=""/4096, 0x1000}, {&(0x7f0000003400)=""/4096, 0x1000}, {&(0x7f00000024c0)=""/10, 0xa}, {&(0x7f0000002500)=""/18, 0x12}, {&(0x7f0000002540)=""/17, 0x11}], 0x7, &(0x7f0000002600)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xc0}}, {{&(0x7f00000026c0)=@abs, 0x6e, &(0x7f0000002880)=[{&(0x7f0000002740)=""/30, 0x1e}, {&(0x7f0000002780)=""/42, 0x2a}, {&(0x7f00000027c0)=""/159, 0x9f}], 0x3, &(0x7f00000028c0)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x70}}, {{&(0x7f0000002940), 0x6e, &(0x7f0000002e80)=[{&(0x7f00000029c0)=""/114, 0x72}, {&(0x7f0000002a40)=""/157, 0x9d}, {&(0x7f0000002b00)=""/145, 0x91}, {&(0x7f0000002bc0)=""/226, 0xe2}, {&(0x7f0000002cc0)=""/171, 0xab}, {&(0x7f0000002d80)=""/230, 0xe6}], 0x6}}, {{&(0x7f0000002f00), 0x6e, &(0x7f0000003180)=[{&(0x7f0000002f80)=""/66, 0x42}, {&(0x7f0000003000)=""/57, 0x39}, {&(0x7f0000003040)=""/245, 0xf5}, {&(0x7f0000003140)=""/5, 0x5}], 0x4, &(0x7f00000031c0)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x160}}, {{&(0x7f0000004400)=@abs, 0x6e, &(0x7f0000004480), 0x0, &(0x7f0000005e00)=ANY=[@ANYBLOB="1c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="004b2c599a80294623d672fdbe00e93346b764b1754c4f12a3000024d10000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="0000000024000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000020000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="0000000018000000000000000100000001000000", @ANYRES32, @ANYRES32], 0x128}}, {{&(0x7f0000004600)=@abs, 0x6e, &(0x7f0000005880)=[{&(0x7f0000004680)=""/4096, 0x1000}, {&(0x7f0000005680)=""/163, 0xa3}, {&(0x7f0000005740)=""/96, 0x60}, {&(0x7f00000057c0)=""/41, 0x29}, {&(0x7f0000005800)=""/119, 0x77}], 0x5, &(0x7f0000005900)=[@cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x78}}, {{&(0x7f0000005980)=@abs, 0x6e, &(0x7f0000005a40)=[{&(0x7f0000005a00)=""/33, 0x21}], 0x1}}], 0x8, 0x12000, &(0x7f0000005c80)={0x0, 0x989680}) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0xc86, &(0x7f0000005cc0)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@access_client}, {@access_client}, {@mmap}, {}, {@cache_loose}, {@fscache}, {@fscache}, {@access_client}], [{@uid_lt={'uid<', 0xffffffffffffffff}}, {@seclabel}, {@smackfshat={'smackfshat', 0x3d, '\\'}}, {@subj_type={'subj_type', 0x3d, '^+h'}}, {@subj_role={'subj_role', 0x3d, '+{-'}}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@permit_directio}]}}) 05:59:08 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r2, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) fsconfig$FSCONFIG_SET_FD(r0, 0x5, &(0x7f0000000040)='(\x00', 0x0, r2) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r3, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:59:08 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000300) fallocate(r0, 0x0, 0x0, 0x1000002) 05:59:08 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 36) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1666.733763] FAULT_INJECTION: forcing a failure. [ 1666.733763] name failslab, interval 1, probability 0, space 0, times 0 [ 1666.736773] CPU: 1 PID: 9356 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1666.738613] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1666.740574] Call Trace: [ 1666.741254] dump_stack+0x107/0x167 [ 1666.742234] should_fail.cold+0x5/0xa [ 1666.743220] ? create_object.isra.0+0x3a/0xa20 [ 1666.744565] should_failslab+0x5/0x20 [ 1666.745424] kmem_cache_alloc+0x5b/0x310 [ 1666.746443] ? igrab+0xc0/0xc0 [ 1666.747177] create_object.isra.0+0x3a/0xa20 [ 1666.748446] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1666.749772] __kmalloc+0x16e/0x390 [ 1666.750599] iter_file_splice_write+0x165/0xc90 [ 1666.751891] ? __fsnotify_parent+0x47a/0xb10 [ 1666.752860] ? generic_splice_sendpage+0x140/0x140 [ 1666.753842] ? pipe_to_user+0x170/0x170 [ 1666.754655] ? security_file_permission+0xb1/0xe0 [ 1666.755645] ? generic_splice_sendpage+0x140/0x140 [ 1666.756615] direct_splice_actor+0x10f/0x170 [ 1666.757497] splice_direct_to_actor+0x387/0x980 [ 1666.758524] ? pipe_to_sendpage+0x380/0x380 [ 1666.759389] ? do_splice_to+0x160/0x160 [ 1666.760169] ? security_file_permission+0xb1/0xe0 [ 1666.761237] do_splice_direct+0x1c4/0x290 [ 1666.762166] ? splice_direct_to_actor+0x980/0x980 [ 1666.763210] ? avc_policy_seqno+0x9/0x70 [ 1666.764125] ? security_file_permission+0xb1/0xe0 [ 1666.765342] do_sendfile+0x553/0x11e0 [ 1666.766325] ? do_pwritev+0x270/0x270 [ 1666.767416] ? wait_for_completion_io+0x270/0x270 [ 1666.768571] ? rcu_read_lock_any_held+0x75/0xa0 [ 1666.769792] ? vfs_write+0x354/0xb10 [ 1666.770833] __x64_sys_sendfile64+0x1d1/0x210 [ 1666.772009] ? __ia32_sys_sendfile+0x220/0x220 [ 1666.773188] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1666.774565] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1666.775926] do_syscall_64+0x33/0x40 [ 1666.776731] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1666.778007] RIP: 0033:0x7fdf91659b19 [ 1666.778745] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1666.782522] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1666.784169] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1666.785785] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1666.787412] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1666.789032] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1666.790448] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 05:59:08 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x20) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:59:08 executing program 0: ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)=0x0) timer_create(0x7, &(0x7f0000000180)={0x0, 0xe, 0x1, @tid=r0}, &(0x7f0000000340)) clone3(&(0x7f0000000240)={0x84000200, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000100), {0x2d}, &(0x7f00000001c0)=""/16, 0x10, &(0x7f0000000380)=""/4096, &(0x7f0000000200)=[r0], 0x1}, 0x58) clone3(&(0x7f0000000000)={0x800, 0x0, 0x0, 0x0, {0x2b}, 0x0, 0x0, 0x0, &(0x7f0000003340)}, 0x58) 05:59:08 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:59:08 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000500) fallocate(r0, 0x0, 0x0, 0x1000002) 05:59:08 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x80) r1 = openat$cgroup_freezer_state(r0, &(0x7f0000000040), 0x2, 0x0) ioctl$FIOCLEX(r1, 0x5451) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) mount$bind(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='\x00', &(0x7f00000001c0), 0x1a40c0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x2) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189373, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000100220000000000", @ANYRES32=r0, @ANYBLOB="ffffff7f000000002e2f66696c653100"]) write$P9_RSTAT(r4, &(0x7f00000000c0)={0x5a, 0x7d, 0x1, {0x0, 0x53, 0x6, 0x849a, {0x1, 0x0, 0x2}, 0xb940000, 0x1, 0x180000, 0x8, 0x1, '!', 0xe, 'freezer.state\x00', 0xe, 'freezer.state\x00', 0x3, '#)\''}}, 0x5a) 05:59:08 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000600) fallocate(r0, 0x0, 0x0, 0x1000002) 05:59:08 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:59:22 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 37) fallocate(r0, 0x0, 0x0, 0x1000002) 05:59:22 executing program 7: r0 = openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x200000, 0x31) sendmsg$NL80211_CMD_GET_WIPHY(r0, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x30, 0x0, 0x10, 0x70bd2d, 0x25dfdbfd, {{}, {@val={0x8, 0x1, 0x5e}, @val={0x8}, @val={0xc, 0x99, {0x7, 0x3f}}}}, ["", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x200048c0}, 0x90) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r2 = openat(r1, &(0x7f00000002c0)='./file1\x00', 0x515941, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="98030000320000042abd7000fddbdf251b00000008002d00", @ANYRES32=r2, @ANYBLOB="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"], 0x398}, 0x1, 0x0, 0x0, 0xc0048d4}, 0x404c005) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000700)={'wlan1\x00', 0x0}) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000940)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r4, @ANYBLOB="06110000050000000000000000653000c108ea1805feaa"]) sendmsg$NL80211_CMD_SET_WDS_PEER(r8, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x68, r6, 0x300, 0x70bd28, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@broadcast}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @random="9909f1fb258a"}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}]}, 0x68}, 0x1, 0x0, 0x0, 0x40}, 0x90) sendmsg$NL80211_CMD_SET_INTERFACE(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r6, 0x2ff, 0x70bd28, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_DEL_STATION(r0, &(0x7f0000000900)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000008c0)={&(0x7f0000000740)=ANY=[@ANYBLOB="54010000", @ANYRES16=r6, @ANYBLOB="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"], 0x154}, 0x1, 0x0, 0x0, 0x4000}, 0x20000040) sendfile(r2, r3, 0x0, 0x100000001) syz_open_procfs(0x0, &(0x7f0000000040)='sched\x00') ioctl$sock_inet_udp_SIOCOUTQ(r3, 0x5411, &(0x7f0000000140)) openat(r3, &(0x7f00000006c0)='./file1\x00', 0xc1c0, 0x4c) fallocate(r1, 0x0, 0x0, 0x1000002) 05:59:22 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:59:22 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000700) fallocate(r0, 0x0, 0x0, 0x1000002) 05:59:22 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) getsockname$packet(0xffffffffffffffff, &(0x7f0000002800)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000002840)=0x14) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000002380)={&(0x7f00000022c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000002340)={&(0x7f0000002300)={0x28, 0x3c, 0x800, 0x70bd28, 0x25dfdbfe, {0xe}, [@typed={0x14, 0x78, 0x0, 0x0, @ipv6=@remote}]}, 0x28}, 0x1, 0x0, 0x0, 0x44000}, 0x48000) sendmsg$ETHTOOL_MSG_FEATURES_GET(0xffffffffffffffff, &(0x7f00000026c0)={&(0x7f0000002600)={0x10, 0x0, 0x0, 0x400100}, 0xc, &(0x7f0000002680)={&(0x7f0000002640)={0x28, 0x0, 0x100, 0x70bd2b, 0x25dfdbfb, {}, [@HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x200000c4}, 0x8800) r1 = openat(0xffffffffffffffff, &(0x7f0000002700)='./file0\x00', 0x5d3000, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004580)=[{{0x0, 0x0, &(0x7f0000002240)=[{&(0x7f0000000000)="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", 0x1000}, {&(0x7f0000001000)="9f4e852860e2d8816dd5ab59de35246c58d1074812993642d4f81fcc5b2b82f8e3dc7130ffc73c34471eafdd003af34d252ad904bc9a502d183dc945b8d82e84970d8766462e7e02934fe3d6a1d72ceeb4da3d1b653402a7d2b9199d749016886e0ab24cdd181bae6c9698dbd89ed9245ec9a7018e9a653c93e4860a798939a67a61d3a766ba89cb0990f20dcb0f98d5823806353694329a424cf782798dc6be6e5d32b838c1f3ee85ee2270dc9d3cb0311a63b773620918e0baaaaa286acfd44bfe", 0xc2}, {&(0x7f0000001100)="00cd05e301c7b8003ff4df94a5b86d17ba0ff689c6b50971d5f521f4da7f8e9f11e16ee37ce2fcfe39f8dc6115943e9fe8322f73652d37878bedaabca5ea256d1b2f238d8637c8d36fefc3d89001f837ff41a3fde284fb76c77ae182a2c40f", 0x5f}, {&(0x7f0000001180)="e99f33b05941c4958e4c3a4fb7ae260e139af07e116183c675190213393dfbfa8b8112aeeb2d89950b5448b1c9f26b379cc82533910c1b902a53da34766998a21e6e9106770d9e32050f6d1bd9c1347327365e6460a52a074d394f2574e4e7d8903788", 0x63}, {&(0x7f0000001200)="300d4eb83bdf059b1d651d8622494917ac8be1ea6e88d173a331ea19e9a800ccecb6be2194c419a9c68e01d9e0ba50429de0e16cb6ae", 0x36}, {&(0x7f0000001240)="35f0599c6f11b0f1eda79271fbcf1f7878249b2f13cffc99f15c7f7a8f4fa4cddf5dd20508868ec7fefeb3698524e9a36945fab166d9b2b34d9f053c35f41aaa01c98f5b031462dfacc8961d80701aa882ebb6461aed4604c923e623bdc7f64a3ddaa381658769278a2b1cf9513751d663602ef449de8a02cb95879d9119069e13443bf71ed5424108a8162b98bb59f2259a14c82abf5a044b3559da7011accaeca471737e12c63087e9fb5a2247109fdb77168d5e61a28f9615e2819d1ba0fd69bb46e63b649a98772d771354e10f3414f1ce00ce6b9765b4a55b3fa126331a20f96c69f9eb21439b40bb288aee05764a04a433861c90e37424c8d4e0a231c575fa9772bb92ef1cc23faa14b83d7fa1c0c8d5e0a7e99be99768096618618aa94381b48d3ddede946e749486b0c6e3d66822aaca87821355856d5ce622bee6dc92ee341c214377ee637eba68f3a95724c3e18339062b7f32b3f7c7eaf7df71e7ae66ed7dfe1b2c3ae45dc89f91d5820540c7a1588ad65d5f487e059c88f048334546dc10f1471783de2caa1bdc310139ce87a9682ea6602fecc44e005006d78816b3204c90fe2f49c824c55bd2a811ed6eea87f66ef5d94112098cbf69f40e73897baac7e79f26381ee35032384c42af1103acc5f79de8610e91308a4c91dd0ac096047debfbf42c7009ee0d0894916ab6e81ea0fb0507b26def1aef9ff487a895b995aaaa94bbc3e98492e4aea2d6a5ecab59fbd361bdf769fc8ed0889c245832f751889edd19a9384fa3e86cb47fefc6caa3fed7548b697658e21d58246a14c1810b52ca546ec913a7012000cc8574de6bceee6d64e157cfd035684d2f2d8c151d7ef34bb61d6dd94669c2b91758e90b4a95004dfbb41e9764d858ee35a3626313cca9df189e5b5efce88bc07194b1793ff743eaa3fa6523e468e010f7dc02035de2ac7d91850df782e2ce716aaf5a74ccfa3b3ad702f86dae488322c8f24fc8116bed7ed81c636d2f03ddf7bbca71d4b770f3a571a2f2cda681e14b3fea56f34cfbca9a39def00a25bcc846a68303a4d45e2e3d46ff4062cae35e1fb55f7e0f285b9db2c2368e9b694a3d37af94631fab46f40c4d2451d8cb0530004f9f4060339294606efa3525e10fe2b197d0394901f81ff33642ce4e948f450e9fce9fe832349ce9f99827a931816d0c5e9bb41965b4916f5b37e2eedb7ce2c23291fa6f75de8a815d80a3967ae4eda5cdd1ed55eafd26dde6a0b4d5e2ac812444c09b6abfd8d2df2b9023922bea891ed20c0b840edd532bf26d24c9bae20a49a64e26a0ad5c198761915ee4dd4d5c8a671c9fe48696e9d8fdc33805bf6dd9aee3515ec0614af8576612e656364dd958a5ce3316696af5c4db3865e272cb8bce3fef10b8b0c7613bbdf5801e78c15d124c78b8dd9cb42a71fb69cbb559260dcf1e2f9ab6c521ef2d6c90c7652725b60730a2cd68971eca928b0448982729b43146231ddfca722e933385423528fe3d7c42feb0440df9893148d008c6556c5c748fa290cf4e7ee41ae863b3d83da198daa00a848807d22fa2f0ab0516c42120619306306eae105f252a1e206681c02b8499d77da5c870b1ec3e54eaa0254a6d89ca2503e5a6739c04f68fd80479cb1936a33487650ebdb0276a94067c754942ad88e6cd8c9060a8a799bc81cccadbe3d6ce1b2c926f9cca7d68b9612e19469a8cb7f431bd627ae29ff56a9c7f6e8127f006cc5da8556297f30c85a94a2f8e3c0ffb073247e212490e62379661cbfe8bfd63f16850aff4b204352318658659d254ee4f7c15c04932bbf709614d972897777e78a366b0015bc62f65fd76adab487ff9806adfd3849da2afef71779c05206ffcb7f7d44fbe189f352552e8b60a497d6698f1fc3fd794c31039da2d831eb302f89246652d7cbb2a1a29c57dbb9cc14d391e1aade4a485f2d87f466f600258cff5f726dbb4a31dac4a7cf7ec6cb2c07a24da38b1375cd11fe67479ccaf08fc055a036f04dec666d247c5de6d93bfdab804431cba99aba7a9bf913e37fde355a0493dff334121cf04de7cab5d49ad9e1568c98aa170f91e27fe0c50db1307eb675da54a1cba8957c83faa407f2cf0a56bb1a2361d812842c2832f18d435b8ad0e1b068c4025363e3c7c87005044d648324c8a9116acc87b13969407f6b2e3e33a708e3302aca9222f7e300f20ba71d67ac9dd3905b0a958c2d816bb33c48703ed4e2d96d449c84979db14d2e44228d4605f0d70a89cb0f9d695b643caaa141d96f61f768eb16a498f2cdbee345390edd13192480b871daa28bbe18feda272a3f2ef0786b1ccae3710f621186e9814349ef212d6f04ee23750318cb120eaaa2e0278d41e45aac18e19efef3ace390c7c8ba7ead3bd83c2e04f35fa9d1b0f2b997ac389cb248dc94d9854c5a802591d44e8a779abae44a047f923ffe32c1d743238ece66e531222e65d7ce9ac75268091b68d618bf18f578d4e5818aeb94b4526499f380844da314fad568aac8e1e786635f5e9931ca0cdddd8f9fd54cb2c27ad174e791d00b37746e3cdf7c3213c4d6f9b2ea24b967d8e49189a1baf7da2e162dd4727868f68479d64488161eac20096fff5807579e793d7acb171769de2ce263852c85d1f9c4eb52ff9ae1cca247c690be5723437d8e42541998e28865ceb086c4ad5f8f90ce2e3da8db9583c98eaf19d725ae659366951e7006798b574b9843156e9e725af67826d768475682b3427959b6ad15e1d3f849e52ca1dbeecec0f751eed50013a3fedfb79fb7759b7d078d399dd37afc912bb25189b340905b2ed3adfcd556052614d91751aeb4fdeddee56122497a6b0e442ccd1f5b55c7e2385ebbafc6669b7f629d4143685417926fd2b8cbcf2a1ef82db0e3f94c2a9717318af73f51cd53e70d2bc54a45a9d79ca3c15e0d81a8dfad19f44ef1dd3d62828b5cc4079bf061fd55789c3da9bdb6e474d137f7d4407b7ab092194605697a36f0fb10682c09aaf25d05333b1c2ba732b0072c2e4de0ae817624bc301a4cead07b6da9a1875e1e1fa14a471a8aee3f73366d14983dba9a265a5bcf048ed1cc49cd83fca092e30227fe22cfcd24cdbdd491ae43ec79183d6a83d1824b94f1f7c48ca1db412f883c966cfb17a41fe714edabd410767f9d71ee467a8dd08e81acb5ac268da1f8f035e0022b146310acd1d3951df4cb6bea44389b17e1e273bd5f90de0672b316942683efd31bc0cc4ee68faaf2cd68db9e92b98465fcfb252946d13a1c0b557e07f6b3d1a2fd3e7971bc7b55cc0291fa46075866af5bb37d17811ab0229fb4e2c2db0e12e1b2d9c93fa56bade422dcc6a4f5dac24afa17194e7209590ec4c87c21f38075860ab40ee750f09a5059a9a9f61688dfdc951877deee220424eebdfe592812efb2f428622e01b1da2e57ce6aff2702a13aec0202650c55911aef8cf1244f13fc9ed3e5233af1d5a9bcebf408215c3fa2b939e72702ea903816cac9ce62ed28bd837c64084739ce654b08fe949d067eea7683fa3c75b5c56460816006005ba02bef56135458005bdf735c3c179c66cafe82319dfe67f86a26aa8c934dc6d0bc6f628039490660921a37cd2fc908681ecdd50fcd9cab1db7770cd1a278ff3291893bf5a460b0964e6e63a9eec07a991266233cb08f09cceb5ef3b8d7e7ff6c2c318e010a687b0560001144e92f5dc11f2aeff11e3f8111ddca6983e94352145878138e626b30e0d1ec01da83f29b2a1141598f56dea5fe828b918fbb76fddd13a49526eac24f6b91f352227066de0632173ea4c155d4a08d1eae35e3ceccec8c7b3d6895bfc9498126d902b3cd7caeffa615d4d95e9d61e2c0ca25080da313b944e5f45612ce359aa7644518aa6cf4534d69b386a0e327a52c0eec804cb2acb7b931911ed86bf8fc328908bf2a9036b5fbfaf3d4f51091dddfdc23ef1f19c454fdce4f665bac4c8a186a96f5bb8b21549de1ae252b30daed43e578eca7f59ed509e5792fb4a198b99b9773413feadd890c170c84261d764274fc15a2def65aab4d8a964d6d50ed61f943cf24b22c380744237084b7c81be36672c46b7d55d1b0f246a0cd6d2610ccd097d25f87d61b98be650ea38bb2121aedf767589bf95efbc43e97f8d89b21544e8e2389f18e5643c2f048a3f2436a1bb48317054341dc1923ca187e00fb305e61318afc88b4a7bec7755481e431c2928feb918ee5b10d1485b0c9e3c0af9e0c432a63cefe143be385d9fe6c3500f049cf96124361d28fe406418225a4b2a4f1d383dd578f73b55df2a533a373e4c19a07121609d369a43344cfd0171fe6e64b9acbd02c007b59671e37b56669464c74a0e324556898a3eed80a55b66c550f30284ce41d79be74895b9ddfa5957a76fd2a1d0789519b9b0968522a50dc366955b5c1282d3f45c1592d8f2894a555cb140c85e70ceb82d8a779c45cb98b286a261b33928d63e574af8602044d687add97c9a23a4b4eca67a4c4b4197f6411f0707e97d637c3350bb52ef0ff1702a576705807661b796daa87c1d3fab11f07a36a3d096c3663045106f924e847ff12d90ab7e52ace5ead1d1fd245d7cfb2c503bea46a7f842a0fd24e7e05179889cf2219adc2d5dabcdb37d088acc4b0bb9092e3abe216892168049712bb02e7fa553fb39009679c146c00309b5b4af36ccd65e86319d5e37672695a4929a93eb481d9b705bfc3dddf24249e4d129dc8349ee0e3e8f5fbdeb25cfbf1489b90f6a9840a3b3f14dd30d026763dbaecacb8119e66b98622cc2229884187045c371f717e044921d9b0474703aabf176ce57430f1efd38e937b92980ce7769927e977ea5615ae1b94104a8302ca8e850f21c8fef124692f4cf36a362c4373bbc1383f8cea54756c943ab53e2de0594fc54e5c77f0077fc4272c1837b174eeab3258b2893aeb19ecf164e99c44c5534da9e2456e1fdfa9928a44b2947a35cb84d0f96371c4dff1a61bb30b7d790b968d05fde033ab2360a7c14cc769031f0ad0d150b6f425bc5766b2f759cb0d8128612b2903e33ab3a0f51b05f050cc2ac7a5efdd2f253f5ff5d40498cba48396ef1b030d69de528e1cd1698ec1f20b07aa784b8ec2d924e8a08a0b496da142410232dac145a94e85ddbf1c6c5cb4857468e2fe80209cd3286ddb9c3caf9bddbb9646d473570657b99f14f205b0b2a06ab8f6ccd34eba8d6690c6a2f8d43b3bfbcf70eede45dcf9864deb0fa18a09079c261c64a4b73375fe4e7626c65505c135bbd5e6120475f6301a4684b179faff770de86859f3b2331403f5ab3407ab1058eea2f7ebd3dae350f64d8f8ed8df00f44b5551e75ab03ba7a95bccd5937d0c1f0a7f9e505d8572455e898c437640893e3a977c2d0085aa1b7b780ddcc635039ad0dedb826fcea78fe950d2f95a6e2c047a5d49732826bc356b961fd9649d6ddbfd1d8daf9ff438ee04504398c2cb76c204e422ab8739006c2befa7443bad29eb90573cfc4a637c088482a0846ad5b5e963cd45c2bbaae90225e726a880c8b4c61fb42df1fcee02bb9b87b17fb321f537f4bfe00337d8d01ebf5ed8dfd4d4d73eb7db848507edab715f86b281ab31373d346b11d577d9d724c552c84071b07f355702c91cc6559a2f74714258ffdd47483a181d0583727a4f61f3f6cc087da5be8e7acdec9ae5921692a7614dcc149286e2068c7fd639e0817c8a5dda11eba98f895a771ad64be4a4d6e64f370bcfc07fcacbb7dddd37e9e7a1e2b43171a420e27dffd5d8a5008d19ef9294261487a", 0x1000}], 0x6, &(0x7f00000022c0)}}, {{&(0x7f0000002480)={0xa, 0x4e24, 0x400, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x6}, 0x1c, &(0x7f00000025c0)=[{&(0x7f00000024c0)="f3e4e4c4a332afdbca43cdd058c55a0edcc43d377f42e36a42e3c711b2edae659d98ae814911f8ac6abd124e098953e0f0b68fefbb00efc79ae9b96937ed4941b8a4f1cefafb194cb7e4f79edddb8ef1e647693aa22a40063899faf6a01a4cb47f2a8895dd7e911d9f2b3b0e99d0397f417c2a7e009243230d4688b6cd13b94021e80622bba20171a51a46728d099f9bf2141401a4258e338e3489af8cdc875b34492e1f682cca76d1947fbbb7ce8f3ff94bada255adeabef3af5f8d6e5f6b5d1d7f267c885abfa8a5fddb9cd449c46378fc7bc55199fbc805113e9f59d8d7f2", 0xe0}], 0x1, &(0x7f0000002880)=[@flowinfo={{0x14, 0x29, 0xb, 0x9}}, @dontfrag={{0x14, 0x29, 0x3e, 0x8a}}, @pktinfo={{0x24, 0x29, 0x32, {@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, r0}}}, @rthdr_2292={{0x48, 0x29, 0x39, {0x2f, 0x6, 0x2, 0x0, 0x0, [@ipv4={'\x00', '\xff\xff', @remote}, @mcast1, @private0]}}}], 0xa0}}, {{&(0x7f0000002940)={0xa, 0x4e24, 0x35, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x7fff}, 0x1c, &(0x7f0000002bc0)=[{&(0x7f0000002980)="ef56b22e35686c7f3a00ad99830879089aea0ead076157a9e626c325f1f1fa847d8aa989276ef530a7ff9161a68042077de90e7fff4daad949248963e934cd71174ed1f87ce40f1cfc69901839cc13639442da35ebc05b4e4b9b029a497dcce48954ad9035d93d8fa0445e805ae78e79e9384914e72d09e950679b00a38f8e9a553e97135131be8b8675049b1c4cd2a7714655eb45f01f076df525f3b7a0a51a45e2fc6b26c7ad7773de1d", 0xab}, {&(0x7f0000002a40)="430e4e4f7b56a0d0b4febece8c6419ad0c5c3a373f40aa4f597fcf47654a9a501f4d20ad899fd3e1056ecb442a51894439c5f59972d00df1444a982b9968e5648ef6cce5b543ec507c6b2b8312909136af6385daf269efeb", 0x58}, {&(0x7f0000002ac0)="96d988a5d171adf4300f561f0363679986b8929122e554978cd05516420381eaec5e5d1fe89215d13109d311bc4b73c2c59fbd9cb4191241fc2a8ba97e4e3c1d6c31d0eca001e12b5770b9fe9fa0b11d6d0fab5fac5a1c032f34ef4aec6581dc7f2a3623f909a86ce488f6bf54416a591715f2ff169e5c09293195c18983b6d30e5a4b5f30", 0x85}, {&(0x7f0000002b80)="b35c1739cdb9", 0x6}], 0x4, &(0x7f0000002c00)=[@hoplimit_2292={{0x14, 0x29, 0x8, 0x1}}, @dontfrag={{0x14, 0x29, 0x3e, 0x10000}}, @rthdr={{0x28, 0x29, 0x39, {0xc, 0x2, 0x1, 0x0, 0x0, [@local]}}}], 0x58}}, {{&(0x7f0000002c80)={0xa, 0x4e20, 0x80000000, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x1}, 0x1c, &(0x7f0000002e40)=[{&(0x7f0000002cc0)}, {&(0x7f0000002d00)="bf3c0c747059e2de5b9ef0b4a1aef169cb98320b200186bcef1fe3cde9556326085e299058140135bc3bf1f3380c3f97cdf3d955a1b846bf86f2666d52fe922cf7323e43af1f2cb95c1fccc7a6432c7391bd70eba35c8a1a1ef6c4d86f0ab1392906122d7b70d9066cef221b9643876376e61414f45c26b270141e7cbc58990aac4cf138dd85a5226b1edbb1cb0692b4d9b4f40712dd3c51a1964ba7a0a51b281d7d8633156eb065b485e969eb79bc73421d1c4617a831e36b63cddb5d72447f2da2153cd8acd9fb49eab582dc4854", 0xcf}, {&(0x7f0000002e00)="b55e470aab12c3598e5405d044b4fe3b83d3a0c83409767606a958c8", 0x1c}], 0x3, &(0x7f0000002e80)=[@hoplimit={{0x14, 0x29, 0x34, 0x2}}, @rthdrdstopts={{0x28, 0x29, 0x37, {0x2b, 0x1, '\x00', [@jumbo={0xc2, 0x4, 0x3}, @enc_lim={0x4, 0x1, 0x7}]}}}, @dontfrag={{0x14, 0x29, 0x3e, 0x6}}, @dontfrag={{0x14, 0x29, 0x3e, 0x10001}}, @rthdrdstopts={{0xa8, 0x29, 0x37, {0x0, 0x11, '\x00', [@ra={0x5, 0x2, 0xb58}, @calipso={0x7, 0x20, {0x3, 0x6, 0x7f, 0xa000, [0x6, 0x7fffffff, 0x2]}}, @hao={0xc9, 0x10, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}, @generic={0xf9, 0x4f, "f30ebfcaeb10f1f7cd71ac56b2095d736a7c5f698fef71d8f015c71fd2f7e3be5c2982d71ba52e27d5bd13d96cef075d4c1194379ab45545fe6a7b5a40224734a5a985d3b761695d98b4992d4b81d7"}]}}}, @hopopts_2292={{0xa0, 0x29, 0x36, {0x33, 0x11, '\x00', [@hao={0xc9, 0x10, @loopback}, @calipso={0x7, 0x20, {0x3, 0x6, 0x5, 0x5, [0x9, 0x377a, 0x0]}}, @calipso={0x7, 0x40, {0x1, 0xe, 0xd4, 0x2, [0x0, 0x0, 0x9, 0xffffffffffffff81, 0x7a, 0x4, 0x8000]}}, @hao={0xc9, 0x10, @mcast1}]}}}, @tclass={{0x14, 0x29, 0x43, 0x101}}, @hoplimit_2292={{0x14}}, @tclass={{0x14, 0x29, 0x43, 0xcf}}], 0x200}}, {{&(0x7f0000003080)={0xa, 0x4e24, 0x1400, @dev={0xfe, 0x80, '\x00', 0x2a}, 0x8}, 0x1c, &(0x7f0000003280)=[{&(0x7f00000030c0)="dbddef41de8db1c999cde8a97e3d5852b502c36d42eefc5703ae9fe44b2eca98ddc1116c581f58b8c345ae2e4eacaf7f8cbfe360980adf61d30ae330599b43377945d4fef973f1af2b0be4f3196473cb54b26dbea2b1ed2f0da84d1dd204fba4ed", 0x61}, {&(0x7f0000003140)="f69dba9df04173ee01c8519b5ea596d029720a18efde6282137519fbf142b736ee0acc60cb2816efec5cd344def2900c8c57a16952769755c2c450243c93a6370a317246abf152b4169777acd32a243b81b51dae32c3cf88f62dc3ecd6b39a6311bb44dabed60cfc3b0e344abc977bbf0a", 0x71}, {&(0x7f00000031c0)="0e8de2742e285b95e33c76fe49b9e78997b7ccd86ba6aa5c9c979668b704621d1a8dbd2e8703a30b6b1225c6c5f80f6179dd48413c85b978baa353dc5ecb4830c59a09f2ad31f82f8671e997cbfa46931ceb9cdba6c04df12f94f19c0fbfcdab821fe4812cb1b79559212576707fe8f46a5f32319ac02e05212bb08f690f206abbdac0b5ddd45e334af1d75a62ccdfffc3ee0be336d9c6a9778a4ccbbd3af0a66a403582adcbb3628c5672087d7f2513766249dee27d05096dc932cdfe0dddc4", 0xc0}], 0x3, &(0x7f0000004400)=[@dstopts={{0xd8, 0x29, 0x37, {0x3a, 0x17, '\x00', [@enc_lim={0x4, 0x1, 0x2}, @pad1, @pad1, @generic={0x7a, 0x10, "b36472958edf96fb3ae94fd91630c2d9"}, @calipso={0x7, 0x38, {0x1, 0xc, 0xff, 0x400, [0x9, 0xc88, 0x8, 0x0, 0x400, 0x8]}}, @generic={0x7f, 0x66, "aecdee233f97915e2547b051e255a6cc3ab189a60663846ca178bd1064d08c1d56d838066bdf67d8c12de1565dcf8068b7c261058d006a17b95287f90e59d080809b33c9c1d949cd9350bd9ee38e96e317f9766be8e202fd58fd08a22441e56a2209e3106c8e"}]}}}, @tclass={{0x14, 0x29, 0x43, 0xffffffc0}}, @dontfrag={{0x14, 0x29, 0x3e, 0x8}}, @hopopts_2292={{0x18, 0x29, 0x36, {0x2f}}}], 0x120}}], 0x5, 0x4c001) write$binfmt_elf64(r1, &(0x7f0000003400)={{0x7f, 0x45, 0x4c, 0x46, 0x1, 0x5e, 0xb6, 0x81, 0x101, 0x3, 0x6, 0x2, 0x32d, 0x40, 0x3d, 0x81, 0x9, 0x38, 0x1, 0xfff, 0x4, 0x6}, [{0x6, 0xfff, 0x7, 0x7f, 0x8001, 0xaa, 0x2, 0x1}, {0x7, 0x864, 0x10001, 0x4, 0x3, 0xffffffffffffff00, 0x9, 0x1}], "285c29c65e07a542b90435a3bc781c9f11d491d1cb819a567261a1709fab9934843042a5d77a6c9847e0ad48cb407261c3d803f39b00c0d17338cdec782911ffb61a7c8a1ce23f21707e1e771be2181755a31b922cf4b210179a27adc8b3131f1042cee17a39dda30efa97fa266af9366ed4f7097e14b75f307e4de0690f4928e924e2f859ed7c93709885b30ee6168eed4b141c921e68d0d0919b174ee71e1d83865ac2bbbd939bb405df17fa9ecca81ac6b651ff85128fb3d8aeb70f82bafdc7dc", ['\x00']}, 0x272) 05:59:22 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000600) fallocate(r0, 0x0, 0x0, 0x1000002) 05:59:22 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_NOP={0x0, 0x3}, 0x2) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r3 = dup(r0) syz_io_uring_setup(0x1b70, &(0x7f0000000080)={0x0, 0xcb74, 0x8, 0x2, 0x26, 0x0, r3}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000100), &(0x7f0000000140)) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:59:22 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0xc82c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) fcntl$addseals(r1, 0x409, 0xd) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1680.752228] FAULT_INJECTION: forcing a failure. [ 1680.752228] name failslab, interval 1, probability 0, space 0, times 0 [ 1680.754811] CPU: 1 PID: 9408 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1680.756292] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1680.758096] Call Trace: [ 1680.758672] dump_stack+0x107/0x167 [ 1680.759479] should_fail.cold+0x5/0xa [ 1680.760310] ? create_object.isra.0+0x3a/0xa20 [ 1680.761398] should_failslab+0x5/0x20 [ 1680.762235] kmem_cache_alloc+0x5b/0x310 [ 1680.763138] ? igrab+0xc0/0xc0 [ 1680.763842] create_object.isra.0+0x3a/0xa20 [ 1680.764794] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1680.765899] __kmalloc+0x16e/0x390 [ 1680.766678] iter_file_splice_write+0x165/0xc90 [ 1680.767701] ? __fsnotify_parent+0x47a/0xb10 [ 1680.768672] ? generic_splice_sendpage+0x140/0x140 [ 1680.769739] ? pipe_to_user+0x170/0x170 [ 1680.770619] ? security_file_permission+0xb1/0xe0 [ 1680.771691] ? generic_splice_sendpage+0x140/0x140 [ 1680.772765] direct_splice_actor+0x10f/0x170 [ 1680.773729] splice_direct_to_actor+0x387/0x980 [ 1680.774764] ? pipe_to_sendpage+0x380/0x380 [ 1680.775709] ? do_splice_to+0x160/0x160 [ 1680.776569] ? security_file_permission+0xb1/0xe0 [ 1680.777621] do_splice_direct+0x1c4/0x290 [ 1680.778520] ? splice_direct_to_actor+0x980/0x980 [ 1680.779576] ? avc_policy_seqno+0x9/0x70 [ 1680.780467] ? security_file_permission+0xb1/0xe0 [ 1680.781522] do_sendfile+0x553/0x11e0 [ 1680.782362] ? do_pwritev+0x270/0x270 [ 1680.783211] ? wait_for_completion_io+0x270/0x270 [ 1680.784263] ? rcu_read_lock_any_held+0x75/0xa0 [ 1680.785268] ? vfs_write+0x354/0xb10 [ 1680.786104] __x64_sys_sendfile64+0x1d1/0x210 [ 1680.787060] ? __ia32_sys_sendfile+0x220/0x220 [ 1680.787992] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1680.789125] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1680.790322] do_syscall_64+0x33/0x40 [ 1680.791164] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1680.792486] RIP: 0033:0x7fdf91659b19 [ 1680.793432] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1680.797483] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1680.799347] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1680.801270] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1680.802924] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1680.804785] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1680.806524] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 05:59:22 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x402000, 0x0) lseek(r3, 0x401, 0x0) fallocate(r0, 0x0, 0x0, 0x1000002) 05:59:22 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) r0 = fcntl$getown(0xffffffffffffffff, 0x9) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) lseek(r2, 0x0, 0x2) r3 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x4000, 0x0) copy_file_range(r3, 0x0, r2, 0x0, 0x200f5ef, 0x0) clock_gettime(0x0, &(0x7f0000006300)={0x0, 0x0}) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000006080)=[{{&(0x7f00000001c0)=@abs, 0x6e, &(0x7f0000000580)=[{&(0x7f0000000240)=""/12, 0xc}, {&(0x7f0000000280)=""/117, 0x75}, {&(0x7f0000000300)=""/28, 0x1c}, {&(0x7f0000000340)=""/78, 0x4e}, {&(0x7f00000003c0)=""/169, 0xa9}, {&(0x7f0000000480)=""/38, 0x26}, {&(0x7f00000004c0)=""/143, 0x8f}], 0x7, &(0x7f0000000600)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x28}}, {{&(0x7f0000000640)=@abs, 0x6e, &(0x7f0000001a80)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/134, 0x86}, {&(0x7f0000001780)}, {&(0x7f00000017c0)=""/3, 0x3}, {&(0x7f0000001800)=""/232, 0xe8}, {&(0x7f0000001900)=""/171, 0xab}, {&(0x7f00000019c0)=""/157, 0x9d}], 0x7, &(0x7f0000001b00)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xb0}}, {{&(0x7f0000001bc0), 0x6e, &(0x7f00000020c0)=[{&(0x7f0000001c40)=""/102, 0x66}, {&(0x7f0000001cc0)=""/156, 0x9c}, {&(0x7f0000001d80)=""/138, 0x8a}, {&(0x7f0000001e40)=""/86, 0x56}, {&(0x7f0000001ec0)=""/125, 0x7d}, {&(0x7f0000001f40)=""/15, 0xf}, {&(0x7f0000001f80)=""/23, 0x17}, {&(0x7f0000001fc0)=""/36, 0x24}, {&(0x7f0000002000)=""/166, 0xa6}], 0x9}}, {{&(0x7f0000002180)=@abs, 0x6e, &(0x7f0000002240)=[{&(0x7f0000002200)=""/26, 0x1a}], 0x1, &(0x7f0000002280)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x140}}, {{&(0x7f00000023c0)=@abs, 0x6e, &(0x7f0000002580)=[{&(0x7f0000002440)=""/171, 0xab}, {&(0x7f0000002500)=""/69, 0x45}], 0x2, &(0x7f00000025c0)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x78}}, {{&(0x7f0000002640)=@abs, 0x6e, &(0x7f0000002900)=[{&(0x7f00000026c0)=""/11, 0xb}, {&(0x7f0000002700)=""/190, 0xbe}, {&(0x7f0000003400)=""/4096, 0x1000}, {&(0x7f00000027c0)}, {&(0x7f0000002800)=""/26, 0x1a}, {&(0x7f0000002840)=""/153, 0x99}], 0x6, &(0x7f0000002980)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x178}}, {{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000002b00)=""/48, 0x30}, {&(0x7f0000002b40)=""/188, 0xbc}, {&(0x7f0000002c00)=""/235, 0xeb}, {&(0x7f0000002d00)=""/148, 0x94}, {&(0x7f0000002dc0)=""/160, 0xa0}, {&(0x7f0000002e80)=""/147, 0x93}, {&(0x7f0000002f40)=""/86, 0x56}], 0x7, &(0x7f0000003040)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x28}}, {{&(0x7f0000003080)=@abs, 0x6e, &(0x7f00000031c0)=[{&(0x7f0000003100)=""/35, 0x23}, {&(0x7f0000003140)=""/72, 0x48}], 0x2, &(0x7f0000003200)=[@cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x38}}, {{&(0x7f0000003240), 0x6e, &(0x7f0000005740)=[{&(0x7f0000004400)=""/150, 0x96}, {&(0x7f00000044c0)=""/4096, 0x1000}, {&(0x7f00000054c0)=""/221, 0xdd}, {&(0x7f00000055c0)=""/167, 0xa7}, {&(0x7f0000005680)=""/136, 0x88}, {&(0x7f00000032c0)=""/29, 0x1d}], 0x6, &(0x7f00000057c0)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xa8}}, {{&(0x7f0000005880), 0x6e, &(0x7f0000005f40)=[{&(0x7f0000005900)=""/237, 0xed}, {&(0x7f0000005a00)=""/239, 0xef}, {&(0x7f0000005b00)=""/230, 0xe6}, {&(0x7f0000005c00)=""/67, 0x43}, {&(0x7f0000003300)=""/22, 0x16}, {&(0x7f0000005c80)=""/157, 0x9d}, {&(0x7f0000005d40)=""/24, 0x18}, {&(0x7f0000005d80)=""/28, 0x1c}, {&(0x7f0000005dc0)=""/230, 0xe6}, {&(0x7f0000005ec0)=""/116, 0x74}], 0xa, &(0x7f0000006000)=[@cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}}], 0xa, 0x0, &(0x7f0000006340)={r4, r5+60000000}) kcmp$KCMP_EPOLL_TFD(r0, 0x0, 0x7, r1, &(0x7f0000006380)={r2, r6, 0xfffffff9}) 05:59:22 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0xea882, 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x92000, 0x69) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:59:22 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 38) fallocate(r0, 0x0, 0x0, 0x1000002) 05:59:22 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000900) fallocate(r0, 0x0, 0x0, 0x1000002) 05:59:22 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000700) fallocate(r0, 0x0, 0x0, 0x1000002) 05:59:23 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x160080, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:59:23 executing program 5: r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000040)={[0x4]}, 0x8, 0x80800) r1 = openat(r0, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) fallocate(r1, 0x0, 0x0, 0x1000002) [ 1681.539324] FAULT_INJECTION: forcing a failure. [ 1681.539324] name failslab, interval 1, probability 0, space 0, times 0 [ 1681.541667] CPU: 0 PID: 9444 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1681.543102] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1681.544807] Call Trace: [ 1681.545359] dump_stack+0x107/0x167 [ 1681.546119] should_fail.cold+0x5/0xa [ 1681.546928] ? create_object.isra.0+0x3a/0xa20 [ 1681.547884] should_failslab+0x5/0x20 [ 1681.548676] kmem_cache_alloc+0x5b/0x310 [ 1681.549517] ? igrab+0xc0/0xc0 [ 1681.550195] create_object.isra.0+0x3a/0xa20 [ 1681.551128] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1681.552185] __kmalloc+0x16e/0x390 [ 1681.552928] iter_file_splice_write+0x165/0xc90 [ 1681.553895] ? __fsnotify_parent+0x47a/0xb10 [ 1681.554835] ? generic_splice_sendpage+0x140/0x140 [ 1681.555855] ? pipe_to_user+0x170/0x170 [ 1681.556699] ? security_file_permission+0xb1/0xe0 [ 1681.557712] ? generic_splice_sendpage+0x140/0x140 [ 1681.558744] direct_splice_actor+0x10f/0x170 [ 1681.559663] splice_direct_to_actor+0x387/0x980 [ 1681.560633] ? pipe_to_sendpage+0x380/0x380 [ 1681.561538] ? do_splice_to+0x160/0x160 [ 1681.562354] ? security_file_permission+0xb1/0xe0 [ 1681.563363] do_splice_direct+0x1c4/0x290 [ 1681.564214] ? splice_direct_to_actor+0x980/0x980 [ 1681.565195] ? avc_policy_seqno+0x9/0x70 [ 1681.566030] ? security_file_permission+0xb1/0xe0 [ 1681.567036] do_sendfile+0x553/0x11e0 [ 1681.567835] ? do_pwritev+0x270/0x270 [ 1681.568618] ? wait_for_completion_io+0x270/0x270 [ 1681.569609] ? rcu_read_lock_any_held+0x75/0xa0 [ 1681.570554] ? vfs_write+0x354/0xb10 [ 1681.571331] __x64_sys_sendfile64+0x1d1/0x210 [ 1681.572242] ? __ia32_sys_sendfile+0x220/0x220 [ 1681.573191] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1681.574261] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1681.575337] do_syscall_64+0x33/0x40 [ 1681.576097] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1681.577154] RIP: 0033:0x7fdf91659b19 [ 1681.577926] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1681.581694] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1681.583291] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1681.584761] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1681.586214] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1681.587664] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1681.589109] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 05:59:37 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r3, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) sendfile(r0, r3, &(0x7f0000000040)=0x3, 0x1) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:59:37 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa418b6d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000200)='net/if_inet6\x00') read(r1, &(0x7f00000002c0)=""/225, 0xe1) r2 = dup2(r0, r0) write$binfmt_elf64(r2, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], 0x3c7) r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x266d40) r4 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ptype\x00') io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000040)=[r1, r2, r0, r3, 0xffffffffffffffff, r4, r0], 0x7) ioctl$SNDRV_TIMER_IOCTL_SELECT(r4, 0x40345410, &(0x7f0000000100)={{0xffffffffffffffff, 0x3, 0x39, 0x3, 0x8}}) clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000080)=[0xffffffffffffffff], 0x1, {r4}}, 0x58) 05:59:37 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:59:37 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000900) fallocate(r0, 0x0, 0x0, 0x1000002) 05:59:37 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 39) fallocate(r0, 0x0, 0x0, 0x1000002) 05:59:37 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000a00) fallocate(r0, 0x0, 0x0, 0x1000002) 05:59:37 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x4, 0x9, 0x10001}) r3 = perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa418b6d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = syz_open_procfs(0x0, &(0x7f00000003c0)='net/ip_mr_vif\x00') read(r4, &(0x7f00000002c0)=""/225, 0xe1) r5 = dup2(0xffffffffffffffff, r3) write$binfmt_elf64(r5, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x3c7) r6 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x266d40) r7 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ptype\x00') io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000040)=[r4, r5, r3, r6, 0xffffffffffffffff, r7, r3], 0x7) lseek(0xffffffffffffffff, 0x0, 0x2) r8 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x4000, 0x0) copy_file_range(r8, 0x0, 0xffffffffffffffff, 0x0, 0x200f5ef, 0x0) perf_event_open(&(0x7f0000000180)={0x5, 0x80, 0xff, 0x6, 0x4, 0x5, 0x0, 0x6, 0x52610, 0x8, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0xc3, 0x4, @perf_bp={&(0x7f0000000100), 0x3}, 0x40002, 0x33, 0x401, 0x5, 0x9, 0x200, 0x0, 0x0, 0x101, 0x0, 0x4800000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x3) fcntl$addseals(r4, 0x409, 0x8) mknodat$null(r4, &(0x7f0000000080)='./file1\x00', 0x1000, 0x103) 05:59:37 executing program 5: r0 = open_tree(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x1100) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r1, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000000000000000000000e000000"], 0x14}}, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000140)=ANY=[@ANYBLOB="0100f7ed5bca36e89fc7c01d59d532f644869d4e181931bb62b5500a0000000000000000", @ANYRES32, @ANYRES32=0xee00, @ANYRES32, @ANYBLOB='./file1/file0\x00']) stat(&(0x7f00000001c0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r3, 0x0) getresgid(0x0, &(0x7f0000001100)=0x0, &(0x7f0000001140)) semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f0000001200)={{0x1, 0xee00, r4, 0x0, 0x0, 0x24, 0x2}, 0x1f, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffdd}) getresgid(&(0x7f00000010c0), &(0x7f0000001100)=0x0, &(0x7f0000001140)) semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f0000001200)={{0x1, 0xee00, r5, 0x0, 0x0, 0x24, 0x2}, 0x1f, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffdd}) fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000180)={{}, {}, [{0x2, 0x1}, {}, {0x2, 0x0, r3}], {0x4, 0x1}, [{0x8, 0x4, r4}, {0x8, 0x1, r5}, {0x8, 0x2, 0xee01}], {0x10, 0x2}, {0x20, 0x2}}, 0x54, 0x1) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000000100)={{0x1, 0x1, 0x18, r1, {r2, r5}}, './file1\x00'}) r6 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0, 0x0) r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r6, r7, 0x0, 0x100000001) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002) [ 1696.367389] FAULT_INJECTION: forcing a failure. [ 1696.367389] name failslab, interval 1, probability 0, space 0, times 0 [ 1696.370222] CPU: 0 PID: 9465 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1696.371915] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1696.373950] Call Trace: [ 1696.374611] dump_stack+0x107/0x167 [ 1696.375524] should_fail.cold+0x5/0xa [ 1696.376656] ? jbd2__journal_start+0x190/0x7e0 [ 1696.377783] should_failslab+0x5/0x20 [ 1696.378738] kmem_cache_alloc+0x5b/0x310 [ 1696.379781] jbd2__journal_start+0x190/0x7e0 [ 1696.381006] __ext4_journal_start_sb+0x214/0x390 [ 1696.382188] ext4_dirty_inode+0xbc/0x130 [ 1696.383189] ? ext4_setattr+0x20f0/0x20f0 [ 1696.384341] __mark_inode_dirty+0x492/0xd40 [ 1696.385403] generic_update_time+0x21c/0x370 [ 1696.386611] file_update_time+0x43a/0x520 [ 1696.387660] ? evict_inodes+0x470/0x470 [ 1696.388641] ? down_write_killable+0x180/0x180 [ 1696.389898] file_modified+0x7d/0xa0 [ 1696.390836] ext4_file_write_iter+0x8f8/0x1530 [ 1696.392113] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1696.393235] ? kasan_save_stack+0x32/0x40 [ 1696.394381] ? kasan_save_stack+0x1b/0x40 [ 1696.395413] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1696.396740] ? iter_file_splice_write+0x165/0xc90 [ 1696.398086] ? direct_splice_actor+0x10f/0x170 [ 1696.399272] ? splice_direct_to_actor+0x387/0x980 [ 1696.400571] ? do_splice_direct+0x1c4/0x290 [ 1696.401742] ? do_sendfile+0x553/0x11e0 [ 1696.402810] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1696.404079] ? do_syscall_64+0x33/0x40 [ 1696.405186] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1696.406932] do_iter_readv_writev+0x476/0x750 [ 1696.408358] ? new_sync_write+0x660/0x660 [ 1696.409448] ? avc_policy_seqno+0x9/0x70 [ 1696.410539] ? selinux_file_permission+0x92/0x520 [ 1696.411860] ? security_file_permission+0xb1/0xe0 [ 1696.412963] do_iter_write+0x191/0x700 [ 1696.414061] ? trace_hardirqs_on+0x5b/0x180 [ 1696.415103] vfs_iter_write+0x70/0xa0 [ 1696.416164] iter_file_splice_write+0x726/0xc90 [ 1696.417415] ? generic_splice_sendpage+0x140/0x140 [ 1696.418723] ? security_file_permission+0xb1/0xe0 [ 1696.419975] ? generic_splice_sendpage+0x140/0x140 [ 1696.421091] direct_splice_actor+0x10f/0x170 [ 1696.422324] splice_direct_to_actor+0x387/0x980 [ 1696.423401] ? pipe_to_sendpage+0x380/0x380 [ 1696.424607] ? do_splice_to+0x160/0x160 [ 1696.425563] ? security_file_permission+0xb1/0xe0 [ 1696.426918] do_splice_direct+0x1c4/0x290 [ 1696.428080] ? splice_direct_to_actor+0x980/0x980 [ 1696.429427] ? avc_policy_seqno+0x9/0x70 [ 1696.430577] ? security_file_permission+0xb1/0xe0 [ 1696.431963] do_sendfile+0x553/0x11e0 [ 1696.433053] ? do_pwritev+0x270/0x270 [ 1696.434125] ? wait_for_completion_io+0x270/0x270 [ 1696.435477] ? rcu_read_lock_any_held+0x75/0xa0 [ 1696.436552] ? vfs_write+0x354/0xb10 [ 1696.437595] __x64_sys_sendfile64+0x1d1/0x210 [ 1696.438709] ? __ia32_sys_sendfile+0x220/0x220 [ 1696.440009] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1696.441482] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1696.442931] do_syscall_64+0x33/0x40 [ 1696.443996] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1696.445435] RIP: 0033:0x7fdf91659b19 [ 1696.446482] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1696.451681] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1696.453824] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1696.455852] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1696.457894] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1696.459942] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1696.461971] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 05:59:38 executing program 0: mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x42, &(0x7f0000000080)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@msize={'msize', 0x3d, 0x5}}, {@afid={'afid', 0x3d, 0xc7e}}, {@access_client}, {@posixacl}, {@version_9p2000}, {@posixacl}, {@cachetag={'cachetag', 0x3d, '$\\&$+^'}}], [{@seclabel}, {@pcr={'pcr', 0x3d, 0x26}}]}}) bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000180)={0x1f, 0x100, @none, 0x9, 0x1}, 0xe) r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) connect$bt_l2cap(r0, &(0x7f0000000200)={0x1f, 0xfa, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x3000}, 0xe) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa418b6d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000200)='net/if_inet6\x00') read(r2, &(0x7f00000002c0)=""/225, 0xe1) r3 = dup2(r1, r1) write$binfmt_elf64(r3, &(0x7f0000000cc0)=ANY=[@ANYBLOB="7f45ec8ab26827704b3500000001000003003e0000180000bd0300000000000040000000000000001e0300000000000006000000000238000100321f0008000100000070030000000500000000000000ff00000000000000a000000000000000010100000000000003000000000000001f000000000000005563cd9a58df47eb7fe1862c4d6716e03dda73ad79bdf1e9a003bcf3986c50d4e8aa28c957fb3d2f3a377ec19cccee4be2003b4f8551fca880d37a4b11600af6227109e9493fb7702e12a94b4c79f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e100000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b384c5f2024997ba00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000009139d4c0081fee640000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ca824ebda0c84196749bba61a02d950ed03c31d36ce1ad9b4e7c056a3acd9feb813360802486d4efed4d530e585bc699f4d6b47ba7bc9a9c3d8c2e2fe03cb819116f5af1dca9ec7b1d75cfb61da8d2544524a9434a1c795c00000000000000000000000005197ca73e75f8f95c680bae4da3d5d6563611c4fd797ce90c61a9021485c0ab5295437f585db3ca47c44cbcab392aca17898548ce36bc29323a3b0494813399f57c897989b73d27af72fcbf1b30dc50b8d50f79e8f6f5410eada5919225ad9527ea88e651c3c0eeb96ae480d0c2ff09b218ff004fc90fa60000000000000000"], 0x3c7) r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x266d40) r5 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ptype\x00') io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000040)=[r2, r3, r1, r4, 0xffffffffffffffff, r5, r1], 0x7) fcntl$addseals(r2, 0x409, 0x8) connect$bt_l2cap(r2, &(0x7f0000000280)={0x1f, 0x56, @any, 0x9}, 0xe) ftruncate(0xffffffffffffffff, 0x1000003) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000)) connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000400)={0x1f, 0x0, @any, 0x1, 0x2}, 0xe) r6 = socket$nl_audit(0x10, 0x3, 0x9) ioctl$FS_IOC_SETVERSION(r6, 0x40087602, &(0x7f00000003c0)=0xfffffffffffffff8) ioctl$FICLONERANGE(r0, 0x4020940d, &(0x7f0000000240)={{r0}, 0x1f, 0x6, 0x6}) 05:59:38 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r3, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f0000000140)=0x0) openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0x591040, 0x40) clone3(&(0x7f00000001c0)={0x101100000, &(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0), {0x26}, &(0x7f0000000500)=""/4096, 0x1000, &(0x7f0000000100)=""/54, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, r4, 0x0], 0x8}, 0x58) sendfile(r3, r1, 0x0, 0x3b4) pread64(0xffffffffffffffff, &(0x7f0000000300)=""/159, 0x9f, 0x9) fallocate(r0, 0x0, 0x0, 0x1000002) 05:59:38 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r0, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="000000000000000000000e000000135155ad46c6ea7577a71d48abcf756c70116c39eca072802cfd123596fa17023ae8aa3956bfe6c110f278e7a3cb4e04"], 0x14}}, 0x0) bind(r0, &(0x7f0000000000)=@pptp={0x18, 0x2, {0x1, @multicast2}}, 0x80) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa418b6d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000200)='net/if_inet6\x00') read(r2, &(0x7f00000002c0)=""/225, 0xe1) r3 = dup2(r1, r1) write$binfmt_elf64(r3, &(0x7f0000000cc0)=ANY=[@ANYBLOB="7f45ec8ab26827704b3500000001000003003e0000180000bd0300000000000040000000000000001e0300000000000006000000000238000100321f0008000100000070030000000500000000000000ff00000000000000a000000000000000010100000000000003000000000000001f000000000000005563cd9a58df47eb7fe1862c4d6716e03dda73ad79bdf1e9a003bcf3986c50d4e8aa28c957fb3d2f3a377ec19cccee4be2003b4f8551fca880d37a4b11600af6227109e9493fb7702e12a94b4c79f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e100000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b384c5f2024997ba00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000009139d4c0081fee640000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ca824ebda0c84196749bba61a02d950ed03c31d36ce1ad9b4e7c056a3acd9feb813360802486d4efed4d530e585bc699f4d6b47ba7bc9a9c3d8c2e2fe03cb819116f5af1dca9ec7b1d75cfb61da8d2544524a9434a1c795c00000000000000000000000005197ca73e75f8f95c680bae4da3d5d6563611c4fd797ce90c61a9021485c0ab5295437f585db3ca47c44cbcab392aca17898548ce36bc29323a3b0494813399f57c897989b73d27af72fcbf1b30dc50b8d50f79e8f6f5410eada5919225ad9527ea88e651c3c0eeb96ae480d0c2ff09b218ff004fc90fa60000000000000000"], 0x3c7) r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x266d40) r5 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ptype\x00') io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000040)=[r2, r3, r1, r4, 0xffffffffffffffff, r5, r1], 0x7) r6 = openat(r3, &(0x7f0000000100)='./file0\x00', 0x42400, 0x118) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)=0x0) timer_create(0x7, &(0x7f0000000180)={0x0, 0xe, 0x1, @tid=r7}, &(0x7f0000000340)) syncfs(r0) perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0xa4, 0x20, 0x7, 0xfe, 0x0, 0x7, 0x1004d, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x2, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x70000, 0x7, @perf_config_ext={0xf7b, 0x1ff}, 0x2, 0x4, 0x3, 0x2, 0x1ff, 0x22, 0xda25, 0x0, 0x0, 0x0, 0x1}, r7, 0x1, r6, 0x9) clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 05:59:38 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:59:38 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000a00) fallocate(r0, 0x0, 0x0, 0x1000002) 05:59:38 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000b00) fallocate(r0, 0x0, 0x0, 0x1000002) 05:59:38 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 40) fallocate(r0, 0x0, 0x0, 0x1000002) 05:59:38 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0xe8940, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x10080, 0x0) [ 1697.139809] FAULT_INJECTION: forcing a failure. [ 1697.139809] name failslab, interval 1, probability 0, space 0, times 0 [ 1697.142513] CPU: 0 PID: 9509 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1697.144070] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1697.146052] Call Trace: [ 1697.146689] dump_stack+0x107/0x167 [ 1697.147522] should_fail.cold+0x5/0xa [ 1697.148434] ? create_object.isra.0+0x3a/0xa20 [ 1697.149505] should_failslab+0x5/0x20 [ 1697.150415] kmem_cache_alloc+0x5b/0x310 [ 1697.151386] create_object.isra.0+0x3a/0xa20 [ 1697.152433] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1697.153636] kmem_cache_alloc_trace+0x151/0x320 [ 1697.154756] __iomap_dio_rw+0x1ee/0x1110 [ 1697.155736] ? jbd2_journal_stop+0x188/0xdc0 [ 1697.156790] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1697.157744] ? ext4_orphan_add+0x253/0x9e0 [ 1697.158588] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1697.159551] ? ext4_empty_dir+0xae0/0xae0 [ 1697.160366] ? jbd2__journal_start+0xf3/0x7e0 [ 1697.161273] iomap_dio_rw+0x31/0x90 [ 1697.162004] ext4_file_write_iter+0xe0e/0x1530 [ 1697.162912] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1697.163828] ? kasan_save_stack+0x32/0x40 [ 1697.164644] ? kasan_save_stack+0x1b/0x40 [ 1697.165471] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1697.166499] ? iter_file_splice_write+0x165/0xc90 [ 1697.167475] ? direct_splice_actor+0x10f/0x170 [ 1697.168385] ? splice_direct_to_actor+0x387/0x980 [ 1697.169354] ? do_splice_direct+0x1c4/0x290 [ 1697.170215] ? do_sendfile+0x553/0x11e0 [ 1697.171000] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1697.171916] ? do_syscall_64+0x33/0x40 [ 1697.172692] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1697.173763] do_iter_readv_writev+0x476/0x750 [ 1697.174655] ? new_sync_write+0x660/0x660 [ 1697.175487] ? avc_policy_seqno+0x9/0x70 [ 1697.176281] ? selinux_file_permission+0x92/0x520 [ 1697.177229] ? security_file_permission+0xb1/0xe0 [ 1697.178190] do_iter_write+0x191/0x700 [ 1697.178957] ? trace_hardirqs_on+0x5b/0x180 [ 1697.179802] vfs_iter_write+0x70/0xa0 [ 1697.180556] iter_file_splice_write+0x726/0xc90 [ 1697.181479] ? generic_splice_sendpage+0x140/0x140 [ 1697.182568] ? security_file_permission+0xb1/0xe0 [ 1697.183601] ? generic_splice_sendpage+0x140/0x140 [ 1697.184532] direct_splice_actor+0x10f/0x170 [ 1697.185365] splice_direct_to_actor+0x387/0x980 [ 1697.186245] ? pipe_to_sendpage+0x380/0x380 [ 1697.187053] ? do_splice_to+0x160/0x160 [ 1697.187824] ? security_file_permission+0xb1/0xe0 [ 1697.188801] do_splice_direct+0x1c4/0x290 [ 1697.189648] ? splice_direct_to_actor+0x980/0x980 [ 1697.190631] ? avc_policy_seqno+0x9/0x70 [ 1697.191471] ? security_file_permission+0xb1/0xe0 [ 1697.192392] do_sendfile+0x553/0x11e0 [ 1697.193135] ? do_pwritev+0x270/0x270 [ 1697.193833] ? wait_for_completion_io+0x270/0x270 [ 1697.194776] ? rcu_read_lock_any_held+0x75/0xa0 [ 1697.195711] ? vfs_write+0x354/0xb10 [ 1697.196441] __x64_sys_sendfile64+0x1d1/0x210 [ 1697.197284] ? __ia32_sys_sendfile+0x220/0x220 [ 1697.198146] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1697.199107] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1697.200060] do_syscall_64+0x33/0x40 [ 1697.200749] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1697.201691] RIP: 0033:0x7fdf91659b19 [ 1697.202372] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1697.205612] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1697.206890] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1697.208100] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1697.209298] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1697.210495] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1697.211703] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 05:59:52 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 05:59:52 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000c00) fallocate(r0, 0x0, 0x0, 0x1000002) 05:59:52 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000b00) fallocate(r0, 0x0, 0x0, 0x1000002) 05:59:52 executing program 5: openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) 05:59:52 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x70, 0x0, 0x5e3) 05:59:52 executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NET_DM_CMD_STOP(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x400, 0x70bd26, 0x25dfdbfe, {}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x15) clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) mount$9p_fd(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x1, &(0x7f0000000180)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@dfltgid={'dfltgid', 0x3d, 0xffffffffffffffff}}, {@version_L}, {@access_uid}, {@cache_fscache}, {@version_9p2000}, {@access_uid={'access', 0x3d, 0xee00}}], [{@permit_directio}]}}) sendmsg$IEEE802154_START_REQ(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, 0x0, 0x400, 0x70bd29, 0x25dfdbfc, {}, [@IEEE802154_ATTR_SF_ORD={0x5, 0x18, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x810}, 0x0) 05:59:52 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x585e42, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 05:59:52 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 41) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1711.073118] FAULT_INJECTION: forcing a failure. [ 1711.073118] name failslab, interval 1, probability 0, space 0, times 0 [ 1711.075821] CPU: 0 PID: 9532 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1711.077431] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1711.079199] Call Trace: [ 1711.079782] dump_stack+0x107/0x167 [ 1711.080578] should_fail.cold+0x5/0xa [ 1711.081400] ? create_object.isra.0+0x3a/0xa20 [ 1711.082388] should_failslab+0x5/0x20 [ 1711.083204] kmem_cache_alloc+0x5b/0x310 [ 1711.084097] ? ext4_dirty_inode+0x107/0x130 [ 1711.085022] create_object.isra.0+0x3a/0xa20 [ 1711.085958] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1711.087058] kmem_cache_alloc+0x159/0x310 [ 1711.087980] jbd2__journal_start+0x190/0x7e0 [ 1711.088933] __ext4_journal_start_sb+0x214/0x390 [ 1711.089955] ext4_file_write_iter+0xee9/0x1530 [ 1711.090954] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1711.091950] ? kasan_save_stack+0x32/0x40 [ 1711.092847] ? kasan_save_stack+0x1b/0x40 [ 1711.093733] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1711.094813] ? iter_file_splice_write+0x165/0xc90 [ 1711.095871] ? direct_splice_actor+0x10f/0x170 [ 1711.096848] ? splice_direct_to_actor+0x387/0x980 [ 1711.097877] ? do_splice_direct+0x1c4/0x290 [ 1711.098804] ? do_sendfile+0x553/0x11e0 [ 1711.099653] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1711.100676] ? do_syscall_64+0x33/0x40 [ 1711.101514] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1711.102667] do_iter_readv_writev+0x476/0x750 [ 1711.103637] ? new_sync_write+0x660/0x660 [ 1711.104553] ? avc_policy_seqno+0x9/0x70 [ 1711.105421] ? selinux_file_permission+0x92/0x520 [ 1711.106465] ? security_file_permission+0xb1/0xe0 [ 1711.107505] do_iter_write+0x191/0x700 [ 1711.108380] ? trace_hardirqs_on+0x5b/0x180 [ 1711.109314] vfs_iter_write+0x70/0xa0 [ 1711.110139] iter_file_splice_write+0x726/0xc90 [ 1711.111153] ? generic_splice_sendpage+0x140/0x140 [ 1711.112256] ? security_file_permission+0xb1/0xe0 [ 1711.113294] ? generic_splice_sendpage+0x140/0x140 [ 1711.114352] direct_splice_actor+0x10f/0x170 [ 1711.115295] splice_direct_to_actor+0x387/0x980 [ 1711.116335] ? pipe_to_sendpage+0x380/0x380 [ 1711.117266] ? do_splice_to+0x160/0x160 [ 1711.118115] ? security_file_permission+0xb1/0xe0 [ 1711.119154] do_splice_direct+0x1c4/0x290 [ 1711.120078] ? splice_direct_to_actor+0x980/0x980 [ 1711.121108] ? avc_policy_seqno+0x9/0x70 [ 1711.121979] ? security_file_permission+0xb1/0xe0 [ 1711.123023] do_sendfile+0x553/0x11e0 [ 1711.123878] ? do_pwritev+0x270/0x270 [ 1711.124705] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1711.125829] ? asm_sysvec_call_function_single+0x12/0x20 [ 1711.126991] ? trace_hardirqs_on+0x5b/0x180 [ 1711.127940] __x64_sys_sendfile64+0x1d1/0x210 [ 1711.128901] ? __ia32_sys_sendfile+0x220/0x220 [ 1711.129886] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1711.131009] do_syscall_64+0x33/0x40 [ 1711.131828] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1711.132939] RIP: 0033:0x7fdf91659b19 [ 1711.133741] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1711.137889] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1711.139526] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1711.141063] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1711.142613] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1711.144174] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1711.145697] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 05:59:52 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x4142, 0x20) openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x430000, 0x78) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000000c0)={{{@in6=@private0, @in=@private, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{}, 0x0, @in=@dev}}, &(0x7f00000001c0)=0xe8) stat(&(0x7f00000001c0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r4, 0x0) getresgid(0x0, &(0x7f0000001100)=0x0, &(0x7f0000001140)) semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f0000001200)={{0x1, 0xee00, r5, 0x0, 0x0, 0x24, 0x2}, 0x1f, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffdd}) getresgid(&(0x7f00000010c0), &(0x7f0000001100)=0x0, &(0x7f0000001140)) semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f0000001200)={{0x1, 0xee00, r6, 0x0, 0x0, 0x24, 0x2}, 0x1f, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffdd}) fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000180)={{}, {}, [{0x2, 0x1}, {}, {0x2, 0x0, r4}], {0x4, 0x1}, [{0x8, 0x4, r5}, {0x8, 0x1, r6}, {0x8, 0x2, 0xee01}], {0x10, 0x2}, {0x20, 0x2}}, 0x54, 0x1) lchown(&(0x7f0000000080)='./file1\x00', r3, r5) fallocate(r0, 0x0, 0x0, 0x1000002) 05:59:52 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)}, 0x58) 05:59:53 executing program 7: r0 = open(&(0x7f0000000080)='./file1\x00', 0x5c780, 0xb) r1 = openat(r0, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x200000, 0x75) r3 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x78200, 0x9) sendfile(r2, r3, 0x0, 0x100000001) fallocate(r1, 0x0, 0x0, 0x1000002) 05:59:53 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) lseek(r1, 0x3, 0x2) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r1, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000040)={0x1c, 0x0, 0x0, 0x0, 0x0, {}, [@BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}]}, 0x1c}}, 0x4044004) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r2, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) sendfile(r1, r1, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r3, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_STATION(r3, &(0x7f0000000180)={&(0x7f0000000080), 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x24, r4, 0xc01, 0x70bd2b, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x8d}]}, 0x24}, 0x1, 0x0, 0x0, 0x4014}, 0x40000) 06:00:08 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 06:00:08 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x88242, 0x3c) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) lseek(r3, 0x0, 0x2) r4 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x4000, 0x0) lseek(r1, 0x1, 0x2) copy_file_range(r4, 0x0, r3, 0x0, 0x200f5ef, 0x0) ioctl$RFKILL_IOCTL_NOINPUT(r4, 0x5201) getsockopt$EBT_SO_GET_ENTRIES(r4, 0x0, 0x81, &(0x7f0000000200)={'nat\x00', 0x0, 0x3, 0xa9, [0x4, 0x100000001, 0x3, 0x2, 0x1, 0x4], 0x2, &(0x7f0000000040)=[{}, {}], &(0x7f00000000c0)=""/169}, &(0x7f0000000180)=0x78) fallocate(r0, 0x0, 0x0, 0x1000002) r5 = syz_open_dev$sg(&(0x7f0000000280), 0x2207e318, 0x902) syncfs(r5) 06:00:08 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) creat(&(0x7f0000000080)='./file1\x00', 0x84) fallocate(r0, 0x0, 0xf4, 0x6) creat(&(0x7f0000000040)='./file1\x00', 0x0) 06:00:08 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x500, 0x100) sendfile(r1, r2, 0x0, 0x100000001) creat(&(0x7f0000000040)='./file1\x00', 0x1e0) r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa418b6d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000200)='net/if_inet6\x00') read(r4, &(0x7f00000002c0)=""/225, 0xe1) r5 = dup2(r3, r3) write$binfmt_elf64(r5, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], 0x3c7) r6 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x266d40) r7 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ptype\x00') io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000040)=[r4, r5, r3, r6, 0xffffffffffffffff, r7, r3], 0x7) fcntl$addseals(r4, 0x409, 0x8) openat(r4, &(0x7f0000000080)='./file1\x00', 0x200, 0x0) write$P9_RREADDIR(r1, &(0x7f0000000180)={0x49, 0x29, 0x2, {0x6, [{{0x80, 0x4, 0x5}, 0x5, 0x81, 0x7, './file1'}, {{0x1, 0x0, 0x8}, 0x9, 0x7, 0x7, './file1'}]}}, 0x49) fallocate(r0, 0x0, 0x0, 0x1000002) 06:00:08 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000d00) fallocate(r0, 0x0, 0x0, 0x1000002) 06:00:08 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000c00) fallocate(r0, 0x0, 0x0, 0x1000002) 06:00:08 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 42) fallocate(r0, 0x0, 0x0, 0x1000002) 06:00:08 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)={0x50, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x31, 0xe, [@chsw_timing={0x68, 0x4}, @prep={0x83, 0x25, @ext={{}, 0x0, 0x0, @device_b, 0x0, @device_a, 0x0, 0x0, @broadcast}}]}]]}, 0x50}}, 0x0) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000240)={'vcan0\x00', 0x0}) connect$packet(r0, &(0x7f00000002c0)={0x11, 0x10, r3, 0x1, 0xff}, 0x14) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)={0x50, r6, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x31, 0xe, [@chsw_timing={0x68, 0x4}, @prep={0x83, 0x25, @ext={{}, 0x0, 0x0, @device_b, 0x0, @device_a, 0x0, 0x0, @broadcast}}]}]]}, 0x50}}, 0x0) sendfile(r5, r4, &(0x7f0000000300)=0x80000000, 0xa2) sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000029c0)={&(0x7f0000000440), 0xc, &(0x7f0000000480)={&(0x7f0000002800)={0x184, r2, 0x401, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_SCAN_SUPP_RATES={0x150, 0x7d, 0x0, 0x1, [@NL80211_BAND_6GHZ={0xe3, 0x3, "82c0daf1448e142c3d712f7b7e0ecbe811906629c38d0c09cae57b1030967f9b71e180b0eb4464de18a77c42e9d9a4cbf3f0af09d8a5e0cd32810814cc9efda35bd9f70cdedabdedf3b237435d3b9073df5e69c04f3b86ed1c3fe5d28e366f3f01e24b8d3d6b57e545b63f334b7c99fab5bf868dc31d2637726a034c5eaef8e31bb768669cb110d9713fc9078130809d2a51ca452dd3f2645f727f7d37dc5aa5282c18c24a88ecb1c25ba6d4b6e82feb1533d85107a43c12e64c9b87a83eddf324ebec7fe3e7056dc91ab4995039baafc558cf7092f1d9a028e451aae0ae95"}, @NL80211_BAND_2GHZ={0x66, 0x0, "2a6e11777888e4a4f5e83611cca9be1a8405bab5258f35272853a81a9fad8eeac9265d57b2fbf7ae462a1f2a8852370eb5dd1a06effb791ca92b231243e4943f0737803f10a41cc257b19ed7e22114a446ceffdf8f57e876a7d9a8ca58f00d67eb4d"}]}, @NL80211_ATTR_BG_SCAN_PERIOD={0x6, 0x98, 0x200}, @NL80211_ATTR_SCAN_SSIDS={0x10, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ibss_ssid}]}]}, 0x184}, 0x1, 0x0, 0x0, 0x4000010}, 0x1) writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000240)={'vcan0\x00', 0x0}) connect$packet(r4, &(0x7f00000002c0)={0x11, 0x10, r7, 0x1, 0xff}, 0x14) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002540)=[{{&(0x7f0000000100)={0x2, 0x4e23, @multicast2}, 0x10, &(0x7f0000000200)=[{&(0x7f0000000140)="eac37528389a00ae486cc32d4be1f2e8bfd1cdc39006238aad8e2ad830c5924216b98d9a307027846b", 0x29}, {&(0x7f0000000180)="899d4c158407537f20497d08ee0b31a7d6a1d45547dfeb5b2d45921438c1c40bc03dd8673b74c01652722203981658f3c90257ea63731c31c4cc4e9cd6eeb5bb22d7bcede3b5bc7783c0052ed3c36a6dc197d1d6ed0bdf9618e91c88c78290fedbb6c2ccbbca7d599c2b1b1443e85ceb5d1bae17dcd104c3a8bf0ad7c1716893", 0x80}], 0x2, &(0x7f0000000240)=[@ip_retopts={{0x60, 0x0, 0x7, {[@end, @lsrr={0x83, 0x7, 0x6f, [@private=0xffffffff]}, @noop, @timestamp_addr={0x44, 0x3c, 0xd8, 0x1, 0x0, [{@multicast2, 0x80000000}, {@local, 0xc60f}, {@private=0xa010102, 0x8001}, {@empty, 0xc162}, {@local, 0x101}, {@local}, {@multicast2, 0x8}]}, @generic={0x44, 0x6, "a22440f4"}, @ra={0x94, 0x4, 0x1}]}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @multicast2, @local}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x1}}], 0x98}}, {{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000300)="de40a6be421303b7af52ef400f5cd858320af8525522e3bf6d5fe77856779aed1db96130e8d712cb6a4d649cc2883529404c5540b757425acf4c896a1c4b18f23d8c633757213366", 0x48}], 0x1, &(0x7f0000002740)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac1e0001ac1414906701a057c13d4a39e71e75e4e0d5d7051100000000000000000000000100000081000000000000001c000000008000000003000008000000", @ANYRES32=0x0, @ANYBLOB="00000000ffffffff000000003800000000000000000000000700000083277700000000ac1414bbac14140be0000001ac1414bbac1e0101ac1414bb00000000000000000011000000000000000000000001000000f600000000000000"], 0xa8}}, {{&(0x7f00000004c0)={0x2, 0x4e24, @multicast2}, 0x10, &(0x7f00000016c0)=[{&(0x7f0000000500)="d6098539993187cfe0041f2c72842244", 0x10}, {&(0x7f0000000540)="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", 0x1000}, {&(0x7f0000001540)="bdb7aa7cca4c25fb463e7f109de213c1542d37ebbd0833a01a0a65bde64ed1548570855fb69fa18e3fd4fdc6906358599f5d6c2be1107320366219de699746b3814cd2ac90c055319674cc5154181b971865bb220e798d5700e386c21e0f546d14411d1a24defa3c3ff311f8068bca9614706a2124d3f191ac9858e8e756aed4cbafaba9da4a3c0e9b83c35545f0656161ce3a3cd2fa", 0x96}, {&(0x7f0000001600)="d375b645197745ae97e2b7dcc87fdf00b6b65a3de4cc96df788613d2803f0ad1a514cd10e554d8b6edbbfbd08e2ad022f7a0371704052b1e69b789539b33668bcd189bacd3b1c698232a6e43e50f14d51a0272b26e682de4354f53233451bf0506109ba37f1553766994040349960ff8a013986c5b103a849122ef05d3bfc303b35da5b5f4c2249d873eb9", 0x8b}], 0x4, &(0x7f0000001700)=[@ip_tos_int={{0x14, 0x0, 0x1, 0xffffffff}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x1c58a9d6}}, @ip_ttl={{0x14, 0x0, 0x2, 0x5}}, @ip_ttl={{0x14, 0x0, 0x2, 0x8}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r3, @empty, @multicast2}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r7, @rand_addr=0x64010101, @dev={0xac, 0x14, 0x14, 0x44}}}}], 0xa0}}, {{0x0, 0x0, &(0x7f0000001900)=[{&(0x7f00000017c0)="0a9c12830f95787f6d373afa2e420fdee3472432aa06ad44e4cc899a9bb14b913e5908e86c8efac18315bff0df6869e66e9cff6143e3bd06fa7d40718fb3b0732f311291e04721f169f6c3855a01e55ead598f3cb5b0e5dbd7", 0x59}, {&(0x7f0000001840)="0f329500ca2f3a638f739890026c868cab75db926c86961eaac1bfbc6ac03f90bd2a42eb8e8449721de1f38b5eb6023df031bdaf21484da2c83b850e5f7aff70fa095528c62ca831e03b192c663ad7a30daaae967f31eda1e2597a1122f8575243209781ffbc6d8a6fb5156c223927b70f1c3adaa546af581a104e9ab7eae172d3fd83ecbb2eb44b", 0x88}], 0x2, &(0x7f0000001940)=[@ip_retopts={{0x24, 0x0, 0x7, {[@lsrr={0x83, 0x7, 0x28, [@remote]}, @ssrr={0x89, 0xb, 0x5c, [@local, @dev={0xac, 0x14, 0x14, 0x32}]}]}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @remote, @local}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x4}}], 0x60}}, {{&(0x7f00000019c0)={0x2, 0x4e21, @loopback}, 0x10, &(0x7f0000001bc0)=[{&(0x7f0000001a00)="3542eb1ef7b269535f0e9a85d328c0c02e2234ae68012523c66f97d877bb5a5c56ee31a4210334cd086aac4196918bd9a66ab2331eda6aa664f5cbf4", 0x3c}, {&(0x7f0000001a40)="b5bcd8e7772bcbd792156c2d4e4e33264a268e035cda93de5818169a197f5703d805", 0x22}, {&(0x7f0000001a80)="b1bb11442d208dfdda04811c0e0a5573ef58037d1bf1d29b853e08b85f7e54d253d11ab7f698534a86d6b9c9679b954553b1a4918732288b0de1868e5ee3d5a58502", 0x42}, {&(0x7f0000001b00)="c53ffd40680e36b171526b2ff7613f6d183f77ba447530382743f3528810282734267618d7a8a3d6392d0ace6593b5d57d6d7319a1a510eb659c9c001b975ff3a0fcebd6bd9d5dcab28b4aa4eba37851df00e51b6a360be15d995706205b2c48bd1a3ddb540482834fb767b313a29198472b1567b14864a77373a74f221df139176eb3d50faf7ef4022881b9d3fc58488d5af4f6e5783b33b106c4b72e70e226d12d06ee1ab63293a01f0ba9d6d185d6f939b7e8eae572dc64e7", 0xba}], 0x4, &(0x7f0000001c00)=[@ip_ttl={{0x14, 0x0, 0x2, 0x1}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x1}}, @ip_retopts={{0x3c, 0x0, 0x7, {[@timestamp_addr={0x44, 0xc, 0xda, 0x1, 0xc, [{@rand_addr=0x64010100, 0x400}]}, @timestamp_addr={0x44, 0x1c, 0x32, 0x1, 0x7, [{@initdev={0xac, 0x1e, 0x1, 0x0}, 0x7f}, {@private=0xa010102, 0x7}, {@remote, 0xfffffff8}]}, @ra={0x94, 0x4, 0x1}]}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x80000001}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x7f}}, @ip_ttl={{0x14, 0x0, 0x2, 0x9}}, @ip_retopts={{0xd0, 0x0, 0x7, {[@cipso={0x86, 0x4b, 0x1, [{0x1, 0x12, "6a96893ee37511711699533e1ade34de"}, {0x0, 0x9, "e57418289d2a86"}, {0xc, 0xf, "6e3f7e6cb35767c09607dcd9e4"}, {0x2, 0x3, 'k'}, {0x0, 0x2}, {0x6, 0x5, "0f418f"}, {0x0, 0x11, "fcd389fd7366652dd51bdfc9691a68"}]}, @ssrr={0x89, 0x27, 0xb9, [@local, @empty, @remote, @multicast1, @broadcast, @dev={0xac, 0x14, 0x14, 0x2d}, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev={0xac, 0x14, 0x14, 0x36}, @multicast1]}, @ssrr={0x89, 0x7, 0xad, [@private=0xa010102]}, @timestamp_addr={0x44, 0xc, 0x28, 0x1, 0xc, [{@private=0xa010101, 0x4}]}, @lsrr={0x83, 0x7, 0xaa, [@multicast2]}, @timestamp_prespec={0x44, 0x24, 0x1f, 0x3, 0x4, [{@local, 0x80}, {@rand_addr=0x64010100, 0x5000}, {@private=0xa010101, 0x6}, {@multicast1, 0x1}]}, @generic={0x94, 0x10, "c5279db5aa367c101b8c3c2b30d6"}]}}}, @ip_retopts={{0x44, 0x0, 0x7, {[@timestamp_prespec={0x44, 0x34, 0x3b, 0x3, 0x8, [{@loopback, 0x7fff}, {@multicast1, 0x8}, {@rand_addr=0x64010101, 0x6}, {@multicast2, 0x6}, {@multicast1, 0x7}, {@local, 0xc2}]}]}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x8}}], 0x1e8}}, {{&(0x7f0000001e00)={0x2, 0x4e21, @multicast2}, 0x10, &(0x7f0000002140)=[{&(0x7f0000001e40)="fbe507e2e1a95e30d00c08b5e697ca6d868802639de3a7f5bd2a21da3c2ce7712a60a4c278bf86e6bf280d518608b762732b5ba300b66449b2c5e2af198371d177cf2f0b3593ec5f18d8357610a3062889b3519dd5484168edc075299ce60a2dd9806c7190a7780447836cbd92c5d9d1ec855f53d88015ac7cc7874fcfcbbeb010c7a4bf197b6091cb3c42abdf97e1b8b593063a782d328735c0ab7be388183bcce4b166893df5a4cb05f0a77964318a9bad1e61b17ebadf7e7dffd675a0e9d34b50fa2f555d30a1", 0xc8}, {&(0x7f0000001f40)="74d09bcd12ebc98b1fd9a166a17fe2453b1908ba1011965782e08d145ed3b3551dc5287386fb72f2ef79f649901cc7ddf12de41ae976881428ae688329b969dfd3a72bc120dc9b9eec57f9d2fb5a577dee3b8adf7b8fb732c96345df57a50eb3901aba989ac991203ac954986b2095100160190023ba175b8fa2c88473e1c6cf1eb13c93b36008d1d9834afac35cec6233ea770934fea4931b06efb167", 0x9d}, {&(0x7f0000002000)="eaa85afdc84003b100e30fb458aef29601cda616e73b576ea7044c242a1137dde240e7709087d36fdeb883afc18c0e9bdfed50f225272c972175f1003bcbcabd7179678cc721677c1e27a59b949ead33ce75060a9411d6eb721d549cc2fa0fd948c682bb11a8c042d9c179beb4b1f4f1f9ec8481c1f3b6bdd2bc40f6e75fe3b8f67045cb1cc1e451860db1c211ffb0fbee7ea7e2fc673b9ad1fb41bb702ed272136e3dffa726a1b9ebd9c143", 0xac}, {&(0x7f00000020c0)="f98504ddcab25731a97011", 0xb}, {&(0x7f0000002100)="0db6161618b581b13cda1010b7da05b2aff737762c64066ae1d6cf5f3e434a13f46a585e920bad142672b02abf8d670f1fd6a48ce7fd058e9868ebb283e2", 0x3e}], 0x5, &(0x7f00000021c0)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x18}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x4}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x5}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x7}}], 0x60}}, {{&(0x7f0000002240)={0x2, 0x4e22, @local}, 0x10, &(0x7f00000022c0)=[{&(0x7f0000002280)="96fa6e5d6995d6f0f3e6f765b2b9e75fb7de", 0x12}], 0x1, &(0x7f0000002300)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x4}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @rand_addr=0x64010100, @multicast1}}}, @ip_retopts={{0x34, 0x0, 0x7, {[@rr={0x7, 0xf, 0xe5, [@broadcast, @multicast2, @broadcast]}, @lsrr={0x83, 0x13, 0x55, [@local, @private=0xa010101, @loopback, @loopback]}]}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0xc}, @rand_addr=0x64010100}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x2}}], 0xa8}}, {{&(0x7f00000023c0)={0x2, 0x4e24, @multicast1}, 0x10, &(0x7f0000002440)=[{&(0x7f0000002400)="568e16", 0x3}, {&(0x7f0000003400)="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", 0x1000}], 0x2, &(0x7f0000002480)=[@ip_retopts={{0x64, 0x0, 0x7, {[@cipso={0x86, 0x29, 0x3, [{0x0, 0x5, "bfa0b1"}, {0x7, 0xa, "f45a8a9b0077af6b"}, {0x6, 0x4, ']]'}, {0x0, 0x6, "7e03314f"}, {0x2, 0x7, "be83a5dc00"}, {0x1, 0x3, "80"}]}, @generic={0x86, 0x2}, @ra={0x94, 0x4}, @cipso={0x86, 0x24, 0x2, [{0x6, 0x4, "b3d3"}, {0x7, 0xd, "6657c4d11d3eabad6c8197"}, {0x7, 0xd, "646b0da5569675e6a07ff7"}]}]}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @empty, @remote}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @private=0xa010102, @empty}}}], 0xa8}}], 0x8, 0x20000010) clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) r8 = socket$netlink(0x10, 0x3, 0x10) fsetxattr$security_selinux(r8, &(0x7f0000000000), &(0x7f0000000040)='system_u:object_r:inetd_child_exec_t:s0\x00', 0x28, 0x0) [ 1727.062707] FAULT_INJECTION: forcing a failure. [ 1727.062707] name failslab, interval 1, probability 0, space 0, times 0 [ 1727.066053] CPU: 0 PID: 9569 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1727.068001] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1727.070208] Call Trace: [ 1727.070910] dump_stack+0x107/0x167 [ 1727.071880] should_fail.cold+0x5/0xa [ 1727.072905] ? __iomap_dio_rw+0x1ee/0x1110 [ 1727.073956] should_failslab+0x5/0x20 [ 1727.074857] kmem_cache_alloc_trace+0x55/0x320 [ 1727.075947] __iomap_dio_rw+0x1ee/0x1110 [ 1727.076927] ? jbd2_journal_stop+0x188/0xdc0 [ 1727.077972] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1727.079058] ? ext4_orphan_add+0x253/0x9e0 [ 1727.080059] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1727.081234] ? ext4_empty_dir+0xae0/0xae0 [ 1727.082219] ? jbd2__journal_start+0xf3/0x7e0 [ 1727.083293] iomap_dio_rw+0x31/0x90 [ 1727.084161] ext4_file_write_iter+0xe0e/0x1530 [ 1727.085264] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1727.086344] ? kasan_save_stack+0x32/0x40 [ 1727.087328] ? kasan_save_stack+0x1b/0x40 [ 1727.088307] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1727.089520] ? iter_file_splice_write+0x165/0xc90 [ 1727.090663] ? direct_splice_actor+0x10f/0x170 [ 1727.091748] ? splice_direct_to_actor+0x387/0x980 [ 1727.092913] ? do_splice_direct+0x1c4/0x290 [ 1727.093936] ? do_sendfile+0x553/0x11e0 [ 1727.094876] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1727.095983] ? do_syscall_64+0x33/0x40 [ 1727.096918] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1727.098197] do_iter_readv_writev+0x476/0x750 [ 1727.099268] ? new_sync_write+0x660/0x660 [ 1727.100247] ? avc_policy_seqno+0x9/0x70 [ 1727.101215] ? selinux_file_permission+0x92/0x520 [ 1727.102361] ? security_file_permission+0xb1/0xe0 [ 1727.103509] do_iter_write+0x191/0x700 [ 1727.104467] ? trace_hardirqs_on+0x5b/0x180 [ 1727.105496] vfs_iter_write+0x70/0xa0 [ 1727.106400] iter_file_splice_write+0x726/0xc90 [ 1727.107517] ? generic_splice_sendpage+0x140/0x140 [ 1727.108705] ? security_file_permission+0xb1/0xe0 [ 1727.109849] ? generic_splice_sendpage+0x140/0x140 [ 1727.111008] direct_splice_actor+0x10f/0x170 [ 1727.112049] splice_direct_to_actor+0x387/0x980 [ 1727.113165] ? pipe_to_sendpage+0x380/0x380 [ 1727.114190] ? do_splice_to+0x160/0x160 [ 1727.115127] ? security_file_permission+0xb1/0xe0 [ 1727.116276] do_splice_direct+0x1c4/0x290 [ 1727.117265] ? splice_direct_to_actor+0x980/0x980 [ 1727.118402] ? avc_policy_seqno+0x9/0x70 [ 1727.119365] ? security_file_permission+0xb1/0xe0 [ 1727.120522] do_sendfile+0x553/0x11e0 [ 1727.121436] ? do_pwritev+0x270/0x270 [ 1727.122340] ? wait_for_completion_io+0x270/0x270 [ 1727.123483] ? rcu_read_lock_any_held+0x75/0xa0 [ 1727.124602] ? vfs_write+0x354/0xb10 [ 1727.125489] __x64_sys_sendfile64+0x1d1/0x210 [ 1727.126550] ? __ia32_sys_sendfile+0x220/0x220 [ 1727.127639] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1727.128891] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1727.130115] do_syscall_64+0x33/0x40 [ 1727.130997] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1727.132211] RIP: 0033:0x7fdf91659b19 [ 1727.133101] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1727.137354] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1727.139137] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1727.140794] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1727.142443] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1727.144099] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1727.145771] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 06:00:08 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 43) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1727.316983] audit: type=1400 audit(1737957608.891:141): avc: denied { relabelto } for pid=9582 comm="syz-executor.0" name="NETLINK" dev="sockfs" ino=35078 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:inetd_child_exec_t:s0 tclass=netlink_generic_socket permissive=1 [ 1727.338318] FAULT_INJECTION: forcing a failure. [ 1727.338318] name failslab, interval 1, probability 0, space 0, times 0 [ 1727.341104] CPU: 0 PID: 9587 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1727.342804] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1727.344724] Call Trace: [ 1727.345336] dump_stack+0x107/0x167 [ 1727.346184] should_fail.cold+0x5/0xa [ 1727.347063] ? jbd2__journal_start+0x190/0x7e0 [ 1727.348121] should_failslab+0x5/0x20 [ 1727.349009] kmem_cache_alloc+0x5b/0x310 [ 1727.349948] ? __kernel_text_address+0x9/0x40 [ 1727.350987] jbd2__journal_start+0x190/0x7e0 [ 1727.352011] __ext4_journal_start_sb+0x214/0x390 [ 1727.353126] ext4_iomap_begin+0x485/0x700 [ 1727.354097] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1727.355224] ? kasan_save_stack+0x1b/0x40 [ 1727.356179] ? ext4_file_write_iter+0xe0e/0x1530 [ 1727.357288] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1727.358747] ? splice_direct_to_actor+0x387/0x980 [ 1727.359855] ? do_splice_direct+0x1c4/0x290 [ 1727.360875] ? do_sendfile+0x553/0x11e0 [ 1727.361792] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1727.362860] ? do_syscall_64+0x33/0x40 [ 1727.363759] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1727.365003] iomap_apply+0x164/0x810 [ 1727.365862] ? iomap_dio_rw+0x90/0x90 [ 1727.366739] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1727.368081] ? mark_held_locks+0x9e/0xe0 [ 1727.369034] ? filemap_check_errors+0xa5/0x150 [ 1727.370105] __iomap_dio_rw+0x6cd/0x1110 [ 1727.371034] ? iomap_dio_rw+0x90/0x90 [ 1727.371930] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1727.372994] ? ext4_orphan_add+0x253/0x9e0 [ 1727.373968] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1727.375097] ? ext4_empty_dir+0xae0/0xae0 [ 1727.376050] ? jbd2__journal_start+0xf3/0x7e0 [ 1727.377099] iomap_dio_rw+0x31/0x90 [ 1727.377938] ext4_file_write_iter+0xe0e/0x1530 [ 1727.379003] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1727.380054] ? kasan_save_stack+0x32/0x40 [ 1727.381013] ? kasan_save_stack+0x1b/0x40 [ 1727.381963] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1727.383125] ? iter_file_splice_write+0x165/0xc90 [ 1727.384233] ? direct_splice_actor+0x10f/0x170 [ 1727.385289] ? splice_direct_to_actor+0x387/0x980 [ 1727.386393] ? do_splice_direct+0x1c4/0x290 [ 1727.387381] ? do_sendfile+0x553/0x11e0 [ 1727.388290] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1727.389359] ? do_syscall_64+0x33/0x40 [ 1727.390251] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1727.391482] do_iter_readv_writev+0x476/0x750 [ 1727.392533] ? new_sync_write+0x660/0x660 [ 1727.393489] ? avc_policy_seqno+0x9/0x70 [ 1727.394422] ? selinux_file_permission+0x92/0x520 [ 1727.395537] ? security_file_permission+0xb1/0xe0 [ 1727.396664] do_iter_write+0x191/0x700 [ 1727.397566] ? trace_hardirqs_on+0x5b/0x180 [ 1727.398570] vfs_iter_write+0x70/0xa0 [ 1727.399453] iter_file_splice_write+0x726/0xc90 [ 1727.400544] ? generic_splice_sendpage+0x140/0x140 [ 1727.401689] ? security_file_permission+0xb1/0xe0 [ 1727.402800] ? generic_splice_sendpage+0x140/0x140 [ 1727.403931] direct_splice_actor+0x10f/0x170 [ 1727.404968] splice_direct_to_actor+0x387/0x980 [ 1727.406043] ? pipe_to_sendpage+0x380/0x380 [ 1727.407046] ? do_splice_to+0x160/0x160 [ 1727.407968] ? security_file_permission+0xb1/0xe0 [ 1727.409104] do_splice_direct+0x1c4/0x290 [ 1727.410057] ? splice_direct_to_actor+0x980/0x980 [ 1727.411162] ? avc_policy_seqno+0x9/0x70 [ 1727.412102] ? security_file_permission+0xb1/0xe0 [ 1727.413239] do_sendfile+0x553/0x11e0 [ 1727.414127] ? do_pwritev+0x270/0x270 [ 1727.415008] ? wait_for_completion_io+0x270/0x270 [ 1727.416122] ? rcu_read_lock_any_held+0x75/0xa0 [ 1727.417198] ? vfs_write+0x354/0xb10 [ 1727.418063] __x64_sys_sendfile64+0x1d1/0x210 [ 1727.419102] ? __ia32_sys_sendfile+0x220/0x220 [ 1727.420165] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1727.421386] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1727.422590] do_syscall_64+0x33/0x40 [ 1727.423444] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1727.424637] RIP: 0033:0x7fdf91659b19 [ 1727.425493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1727.429739] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1727.431548] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1727.433190] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1727.434825] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1727.436464] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1727.438098] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 06:00:09 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) open(&(0x7f0000000040)='./file1\x00', 0x400000, 0x4) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x82540, 0x11b) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 06:00:09 executing program 0: r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x3210e09069aca6db, 0x0) ioctl$AUTOFS_IOC_READY(0xffffffffffffffff, 0x9360, 0x5) ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000001280)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r2, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB='\x00'/14], 0x14}}, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f00000012c0)={{0x1, 0x1, 0x18, r2, {0x1}}, './file0\x00'}) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r3, &(0x7f00000004c0)={&(0x7f00000003c0), 0x12, &(0x7f0000000480)={&(0x7f0000000400)={0x27}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x4004) dup(r3) r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000001200)='./cgroup.net/syz1\x00', 0x200002, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000001240)={0x0, r4, 0x2, 0x3ff, 0xfffffffffffffffd, 0x20}) preadv(r0, &(0x7f00000011c0)=[{&(0x7f0000000040)=""/123, 0x7b}, {&(0x7f00000000c0)=""/19, 0x13}, {&(0x7f0000000100)=""/4096, 0x1000}, {&(0x7f0000001100)=""/178, 0xb2}], 0x4, 0x1, 0x9) 06:00:09 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000d00) fallocate(r0, 0x0, 0x0, 0x1000002) 06:00:09 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000e00) fallocate(r0, 0x0, 0x0, 0x1000002) 06:00:09 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 44) fallocate(r0, 0x0, 0x0, 0x1000002) 06:00:09 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(r0, &(0x7f0000000000)='/proc/self/exe\x00', 0x4243, 0xe8) sendfile(r1, r2, 0x0, 0x100000001) ftruncate(r2, 0x9) fallocate(r0, 0xab5aa3ddffe6c085, 0x4, 0x800) openat(r1, &(0x7f0000000040)='./file1\x00', 0x141401, 0x17f) 06:00:09 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) openat(r2, &(0x7f0000000100)='./file1\x00', 0x88000, 0x50) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) r3 = timerfd_create(0x9, 0x800) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r4, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000480)={&(0x7f0000000080)={0x4c, 0x0, 0x0, 0x70bd2c, 0x25dfdbfb, {}, [@BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x20000e5}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x9}]}, 0x4c}}, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000040)={0x0, r4, 0x1, 0x401, 0x6, 0x7}) [ 1727.815651] FAULT_INJECTION: forcing a failure. [ 1727.815651] name failslab, interval 1, probability 0, space 0, times 0 [ 1727.818103] CPU: 1 PID: 9608 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1727.819295] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1727.820755] Call Trace: [ 1727.821224] dump_stack+0x107/0x167 [ 1727.821867] should_fail.cold+0x5/0xa [ 1727.822546] ? create_object.isra.0+0x3a/0xa20 [ 1727.823353] should_failslab+0x5/0x20 [ 1727.824025] kmem_cache_alloc+0x5b/0x310 [ 1727.824751] create_object.isra.0+0x3a/0xa20 [ 1727.825551] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1727.826463] __kmalloc+0x16e/0x390 [ 1727.827260] ext4_find_extent+0xa77/0xd70 [ 1727.828193] ext4_ext_map_blocks+0x1c8/0x5830 [ 1727.829155] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1727.830115] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1727.831088] ? ext4_ext_release+0x10/0x10 [ 1727.831849] ? ext4_map_blocks+0x5cd/0x1910 [ 1727.832719] ? lock_release+0x680/0x680 [ 1727.833454] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1727.834315] ? lock_downgrade+0x6d0/0x6d0 [ 1727.835077] ? down_write+0xe0/0x160 [ 1727.835742] ? down_write_killable+0x180/0x180 [ 1727.836579] ext4_map_blocks+0x63f/0x1910 [ 1727.837313] ? kmem_cache_alloc+0x2a6/0x310 [ 1727.838064] ? __kernel_text_address+0x9/0x40 [ 1727.838852] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1727.839638] ? jbd2__journal_start+0xf3/0x7e0 [ 1727.840443] ? __ext4_journal_start_sb+0x214/0x390 [ 1727.841301] ? __ext4_journal_start_sb+0x1db/0x390 [ 1727.842165] ext4_iomap_begin+0x3ad/0x700 [ 1727.842905] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1727.843766] ? kasan_save_stack+0x1b/0x40 [ 1727.844499] ? ext4_file_write_iter+0xe0e/0x1530 [ 1727.845336] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1727.846441] ? splice_direct_to_actor+0x387/0x980 [ 1727.847284] ? do_splice_direct+0x1c4/0x290 [ 1727.848038] ? do_sendfile+0x553/0x11e0 [ 1727.848901] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1727.849907] ? do_syscall_64+0x33/0x40 [ 1727.850757] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1727.851939] iomap_apply+0x164/0x810 [ 1727.852791] ? iomap_dio_rw+0x90/0x90 [ 1727.853652] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1727.854950] ? mark_held_locks+0x9e/0xe0 [ 1727.855873] ? filemap_check_errors+0xa5/0x150 [ 1727.856902] __iomap_dio_rw+0x6cd/0x1110 [ 1727.857802] ? iomap_dio_rw+0x90/0x90 [ 1727.858681] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1727.859702] ? ext4_orphan_add+0x253/0x9e0 [ 1727.860665] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1727.861767] ? ext4_empty_dir+0xae0/0xae0 [ 1727.862692] ? jbd2__journal_start+0xf3/0x7e0 [ 1727.863718] iomap_dio_rw+0x31/0x90 [ 1727.864591] ext4_file_write_iter+0xe0e/0x1530 [ 1727.865627] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1727.866649] ? kasan_save_stack+0x32/0x40 [ 1727.867582] ? kasan_save_stack+0x1b/0x40 [ 1727.868516] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1727.869640] ? iter_file_splice_write+0x165/0xc90 [ 1727.870703] ? direct_splice_actor+0x10f/0x170 [ 1727.871717] ? splice_direct_to_actor+0x387/0x980 [ 1727.872805] ? do_splice_direct+0x1c4/0x290 [ 1727.873772] ? do_sendfile+0x553/0x11e0 [ 1727.874665] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1727.875704] ? do_syscall_64+0x33/0x40 [ 1727.876587] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1727.877787] do_iter_readv_writev+0x476/0x750 [ 1727.878797] ? new_sync_write+0x660/0x660 [ 1727.879702] ? avc_policy_seqno+0x9/0x70 [ 1727.880605] ? selinux_file_permission+0x92/0x520 [ 1727.881686] ? security_file_permission+0xb1/0xe0 [ 1727.882752] do_iter_write+0x191/0x700 [ 1727.883600] ? trace_hardirqs_on+0x5b/0x180 [ 1727.884551] vfs_iter_write+0x70/0xa0 [ 1727.885387] iter_file_splice_write+0x726/0xc90 [ 1727.886396] ? generic_splice_sendpage+0x140/0x140 [ 1727.887473] ? security_file_permission+0xb1/0xe0 [ 1727.888537] ? generic_splice_sendpage+0x140/0x140 [ 1727.889588] direct_splice_actor+0x10f/0x170 [ 1727.890533] splice_direct_to_actor+0x387/0x980 [ 1727.891555] ? pipe_to_sendpage+0x380/0x380 [ 1727.892501] ? do_splice_to+0x160/0x160 [ 1727.893354] ? security_file_permission+0xb1/0xe0 [ 1727.894420] do_splice_direct+0x1c4/0x290 [ 1727.895320] ? splice_direct_to_actor+0x980/0x980 [ 1727.896345] ? avc_policy_seqno+0x9/0x70 [ 1727.897247] ? security_file_permission+0xb1/0xe0 [ 1727.898320] do_sendfile+0x553/0x11e0 [ 1727.899155] ? do_pwritev+0x270/0x270 [ 1727.899993] ? wait_for_completion_io+0x270/0x270 [ 1727.901065] ? rcu_read_lock_any_held+0x75/0xa0 [ 1727.902094] ? vfs_write+0x354/0xb10 [ 1727.902928] __x64_sys_sendfile64+0x1d1/0x210 [ 1727.903917] ? __ia32_sys_sendfile+0x220/0x220 [ 1727.904949] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1727.906114] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1727.907264] do_syscall_64+0x33/0x40 [ 1727.908099] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1727.909245] RIP: 0033:0x7fdf91659b19 [ 1727.910069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1727.914112] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1727.915717] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1727.917274] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1727.918853] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1727.920438] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1727.922000] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 06:00:09 executing program 0: r0 = clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) r1 = gettid() clone3(&(0x7f0000000480)={0x10000000, &(0x7f0000000240), &(0x7f0000000b40), &(0x7f00000002c0)=0x0, {0x2d}, &(0x7f0000000b80)=""/166, 0xa6, &(0x7f0000000c40)=""/127, &(0x7f0000000440)=[r0, r0, r0, r0], 0x4}, 0x58) r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa418b6d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rt_sigqueueinfo(r2, 0xa, &(0x7f0000000ac0)={0x2d, 0x7, 0x8}) r4 = syz_open_procfs(0x0, &(0x7f0000000200)='net/if_inet6\x00') read(r4, &(0x7f00000002c0)=""/225, 0xe1) r5 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000a80), 0x80000, 0x0) r6 = eventfd(0x1000) pidfd_getfd(r5, r6, 0x0) r7 = dup2(r3, r3) write$binfmt_elf64(r7, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x3c7) r8 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x266d40) r9 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ptype\x00') io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000040)=[r4, r7, r3, r8, 0xffffffffffffffff, r9, r3], 0x7) clone3(&(0x7f0000000540)={0x200, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x2c}, &(0x7f00000000c0)=""/230, 0xe6, &(0x7f00000001c0)=""/94, &(0x7f0000000500)=[r0, r0, r1, r0, r2], 0x5, {r7}}, 0x58) 06:00:09 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x1a9282, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) ioctl$FS_IOC_GET_ENCRYPTION_NONCE(r2, 0x8010661b, &(0x7f0000000040)) pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) pipe2(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) stat(&(0x7f0000000a00)='./file1/file0\x00', &(0x7f0000000a40)={0x0, 0x0, 0x0, 0x0, 0x0}) getresgid(0x0, &(0x7f0000001100)=0x0, &(0x7f0000001140)) semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f0000001200)={{0x1, 0xee00, r7, 0x0, 0x0, 0x24, 0x2}, 0x1f, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffdd}) getresgid(&(0x7f00000010c0), &(0x7f0000001100)=0x0, &(0x7f0000001140)) semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f0000001200)={{0x1, 0xee00, 0x0, 0x0, 0x0, 0xaa, 0x2}, 0x1f, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0xffdf}) r9 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r9, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) io_submit(0x0, 0x2, &(0x7f0000000280)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x5, 0x6, r4, &(0x7f0000001c80)="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", 0x1000, 0x7, 0x0, 0x2}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x5, 0xff, r9, &(0x7f0000000300)="70b7afe53af9d2b83a5f1fd9a5385ad93c899ed5ac526104bd4ab7c9fc1bda8ffadc7bb69d11faf62ff6d0fb334a7ad76f197896ea7ec07348e8e255ab051a99fb2c468c9f95359d4cdd57edf2544ac99a4672e8a67262e67a0954d5c853ed1b8672c22c71282e5fecd94b82821bf17305d0648b72afc0752706a76cedcb9618430ef87c2f079264e5e481834c15aa5ccdcc2a26a36dcf73e0522ac1709ce9fc54140c5d1720734851440a76d76daf", 0xaf, 0x8001, 0x0, 0x0, r5}]) ioctl$sock_SIOCSIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r0, 0x8983, &(0x7f0000000140)) recvmsg$unix(r0, &(0x7f00000009c0)={&(0x7f0000000580), 0x6e, &(0x7f00000008c0)=[{&(0x7f0000000440)=""/50, 0x32}, {&(0x7f0000000600)=""/231, 0xe7}, {&(0x7f0000000700)=""/135, 0x87}, {&(0x7f00000007c0)=""/235, 0xeb}], 0x4, &(0x7f0000000900)=ANY=[@ANYBLOB="28000000000000006501000000010000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="0000000010000000000000000100000001000000"], 0xb1}, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000180)='system.posix_acl_default\x00', &(0x7f0000000500)=ANY=[@ANYBLOB="02000000010000000000000002000100", @ANYRES32=0x0, @ANYBLOB="02000000", @ANYRES32=r6, @ANYBLOB="02000500", @ANYRES32=r6, @ANYBLOB="040001000000000008000400", @ANYRES32=r7, @ANYBLOB="08000400", @ANYRES32=r8, @ANYBLOB="12200200", @ANYRES32=0xee01, @ANYBLOB="10000200006b65e49d374c103245b9b7"], 0x54, 0x0) fchownat(r3, &(0x7f00000000c0)='./file1\x00', 0xee01, r8, 0x1000) fallocate(r0, 0x0, 0x0, 0x1000002) 06:00:09 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 06:00:09 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) stat(&(0x7f0000000040)='./file1\x00', &(0x7f0000000080)) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 06:00:25 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 45) fallocate(r0, 0x0, 0x0, 0x1000002) 06:00:25 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000e00) fallocate(r0, 0x0, 0x0, 0x1000002) 06:00:25 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) [ 1744.226313] FAULT_INJECTION: forcing a failure. [ 1744.226313] name failslab, interval 1, probability 0, space 0, times 0 [ 1744.227634] CPU: 1 PID: 9640 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1744.228404] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1744.229380] Call Trace: [ 1744.229693] dump_stack+0x107/0x167 [ 1744.230117] should_fail.cold+0x5/0xa [ 1744.230555] ? ext4_find_extent+0xa77/0xd70 [ 1744.231080] should_failslab+0x5/0x20 [ 1744.231528] __kmalloc+0x72/0x390 [ 1744.231937] ext4_find_extent+0xa77/0xd70 [ 1744.232421] ext4_ext_map_blocks+0x1c8/0x5830 [ 1744.232961] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1744.233557] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1744.234188] ? ext4_ext_release+0x10/0x10 [ 1744.234690] ? ext4_map_blocks+0x5cd/0x1910 [ 1744.235182] ? lock_release+0x680/0x680 [ 1744.235638] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1744.236186] ? lock_downgrade+0x6d0/0x6d0 [ 1744.236694] ? down_write+0xe0/0x160 [ 1744.237144] ? down_write_killable+0x180/0x180 [ 1744.237694] ext4_map_blocks+0x63f/0x1910 [ 1744.238187] ? kmem_cache_alloc+0x2a6/0x310 [ 1744.238698] ? __kernel_text_address+0x9/0x40 [ 1744.239232] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1744.239755] ? jbd2__journal_start+0xf3/0x7e0 [ 1744.240266] ? __ext4_journal_start_sb+0x214/0x390 [ 1744.240831] ? __ext4_journal_start_sb+0x1db/0x390 [ 1744.241403] ext4_iomap_begin+0x3ad/0x700 [ 1744.241894] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1744.242445] ? kasan_save_stack+0x1b/0x40 [ 1744.242933] ? ext4_file_write_iter+0xe0e/0x1530 [ 1744.243488] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1744.244223] ? splice_direct_to_actor+0x387/0x980 [ 1744.244780] ? do_splice_direct+0x1c4/0x290 [ 1744.245280] ? do_sendfile+0x553/0x11e0 [ 1744.245739] ? __x64_sys_sendfile64+0x1d1/0x210 06:00:25 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r0, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) ioctl$F2FS_IOC_RELEASE_COMPRESS_BLOCKS(r0, 0x8008f512, &(0x7f0000000000)) 06:00:25 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x2004, @fd_index=0x8, 0x6, 0x0, 0x0, 0x8, 0x0, {0x3}}, 0xfffffff9) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x113) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r3, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x110, r3, 0x9cb57000) 06:00:25 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1/file0\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 06:00:25 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000f00) fallocate(r0, 0x0, 0x0, 0x1000002) 06:00:25 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$TIOCGPTLCK(r4, 0x80045439, &(0x7f0000000300)) lseek(r3, 0x0, 0x2) r5 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x4000, 0x0) copy_file_range(r5, 0x0, r3, 0x0, 0x200f5ef, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(r6, 0x0, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f00000000c0)={0x0, 0x0}, &(0x7f0000000100)=0xc) r8 = socket$inet6_udplite(0xa, 0x2, 0x88) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f0000000080), 0x88, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r8}, 0x2c, {[{@noextend}], [{@uid_lt={'uid<', r6}}, {@uid_lt={'uid<', r7}}, {@fowner_eq}, {@smackfsfloor={'smackfsfloor', 0x3d, '#\\\xc2%'}}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x37, 0x36, 0x37, 0x64, 0x34, 0x61, 0x62, 0x63], 0x2d, [0x62, 0x38, 0x36, 0x39], 0x2d, [0x65, 0x32, 0x36, 0x61], 0x2d, [0x37, 0x64, 0x33], 0x2d, [0x36, 0x33, 0x37, 0x32, 0x31, 0x36, 0x38, 0x61]}}}, {@permit_directio}, {@subj_user}, {@fowner_eq={'fowner', 0x3d, 0xffffffffffffffff}}, {@pcr={'pcr', 0x3d, 0x34}}]}}) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1744.246272] ? do_syscall_64+0x33/0x40 [ 1744.246941] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1744.247568] iomap_apply+0x164/0x810 [ 1744.248006] ? iomap_dio_rw+0x90/0x90 [ 1744.248446] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1744.249127] ? mark_held_locks+0x9e/0xe0 [ 1744.249610] ? filemap_check_errors+0xa5/0x150 [ 1744.250139] __iomap_dio_rw+0x6cd/0x1110 [ 1744.250616] ? iomap_dio_rw+0x90/0x90 [ 1744.251075] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1744.251604] ? ext4_orphan_add+0x253/0x9e0 [ 1744.252098] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1744.252665] ? ext4_empty_dir+0xae0/0xae0 [ 1744.253146] ? jbd2__journal_start+0xf3/0x7e0 [ 1744.253671] iomap_dio_rw+0x31/0x90 [ 1744.254086] ext4_file_write_iter+0xe0e/0x1530 [ 1744.254620] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1744.255157] ? kasan_save_stack+0x32/0x40 [ 1744.255631] ? kasan_save_stack+0x1b/0x40 [ 1744.256099] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1744.256683] ? iter_file_splice_write+0x165/0xc90 [ 1744.257240] ? direct_splice_actor+0x10f/0x170 [ 1744.257763] ? splice_direct_to_actor+0x387/0x980 [ 1744.258308] ? do_splice_direct+0x1c4/0x290 [ 1744.258809] ? do_sendfile+0x553/0x11e0 [ 1744.259258] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1744.259789] ? do_syscall_64+0x33/0x40 [ 1744.260286] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1744.261060] do_iter_readv_writev+0x476/0x750 [ 1744.261692] ? new_sync_write+0x660/0x660 [ 1744.262216] ? avc_policy_seqno+0x9/0x70 [ 1744.262690] ? selinux_file_permission+0x92/0x520 [ 1744.263237] ? security_file_permission+0xb1/0xe0 [ 1744.263794] do_iter_write+0x191/0x700 [ 1744.264284] ? trace_hardirqs_on+0x5b/0x180 [ 1744.264911] vfs_iter_write+0x70/0xa0 [ 1744.265358] iter_file_splice_write+0x726/0xc90 [ 1744.265911] ? generic_splice_sendpage+0x140/0x140 [ 1744.266483] ? security_file_permission+0xb1/0xe0 [ 1744.267045] ? generic_splice_sendpage+0x140/0x140 [ 1744.267604] direct_splice_actor+0x10f/0x170 [ 1744.268116] splice_direct_to_actor+0x387/0x980 [ 1744.268653] ? pipe_to_sendpage+0x380/0x380 [ 1744.269160] ? do_splice_to+0x160/0x160 [ 1744.269619] ? security_file_permission+0xb1/0xe0 [ 1744.270177] do_splice_direct+0x1c4/0x290 [ 1744.270669] ? splice_direct_to_actor+0x980/0x980 [ 1744.271219] ? avc_policy_seqno+0x9/0x70 [ 1744.271691] ? security_file_permission+0xb1/0xe0 [ 1744.272249] do_sendfile+0x553/0x11e0 [ 1744.272698] ? do_pwritev+0x270/0x270 [ 1744.273145] ? wait_for_completion_io+0x270/0x270 [ 1744.273707] ? rcu_read_lock_any_held+0x75/0xa0 [ 1744.274234] ? vfs_write+0x354/0xb10 [ 1744.274685] __x64_sys_sendfile64+0x1d1/0x210 [ 1744.275192] ? __ia32_sys_sendfile+0x220/0x220 [ 1744.275733] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1744.276324] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1744.276922] do_syscall_64+0x33/0x40 [ 1744.277353] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1744.277942] RIP: 0033:0x7fdf91659b19 [ 1744.278374] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1744.280487] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1744.281379] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1744.282201] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1744.283031] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1744.283845] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1744.284667] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 06:00:25 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 46) fallocate(r0, 0x0, 0x0, 0x1000002) 06:00:25 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) r0 = syz_open_dev$mouse(&(0x7f0000000000), 0x8, 0x402280) write$cgroup_int(r0, &(0x7f0000000040)=0x5, 0x12) [ 1744.386298] FAULT_INJECTION: forcing a failure. [ 1744.386298] name failslab, interval 1, probability 0, space 0, times 0 [ 1744.389162] CPU: 0 PID: 9663 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1744.390728] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1744.392528] Call Trace: [ 1744.393111] dump_stack+0x107/0x167 [ 1744.393912] should_fail.cold+0x5/0xa [ 1744.394745] ? ext4_find_extent+0xa77/0xd70 [ 1744.395690] should_failslab+0x5/0x20 [ 1744.396505] __kmalloc+0x72/0x390 [ 1744.397282] ext4_find_extent+0xa77/0xd70 [ 1744.398202] ext4_ext_map_blocks+0x1c8/0x5830 [ 1744.399186] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1744.400347] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1744.401505] ? ext4_ext_release+0x10/0x10 [ 1744.402412] ? ext4_map_blocks+0x5cd/0x1910 [ 1744.403366] ? lock_release+0x680/0x680 [ 1744.404232] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1744.405288] ? lock_downgrade+0x6d0/0x6d0 [ 1744.406210] ? down_write+0xe0/0x160 [ 1744.407018] ? down_write_killable+0x180/0x180 [ 1744.408016] ext4_map_blocks+0x63f/0x1910 [ 1744.408950] ? kmem_cache_alloc+0x2a6/0x310 [ 1744.409885] ? __kernel_text_address+0x9/0x40 [ 1744.410853] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1744.411825] ? jbd2__journal_start+0xf3/0x7e0 [ 1744.412811] ? __ext4_journal_start_sb+0x214/0x390 [ 1744.413886] ? __ext4_journal_start_sb+0x1db/0x390 [ 1744.414959] ext4_iomap_begin+0x3ad/0x700 [ 1744.415866] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1744.416927] ? kasan_save_stack+0x1b/0x40 [ 1744.417840] ? ext4_file_write_iter+0xe0e/0x1530 [ 1744.418878] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1744.420241] ? splice_direct_to_actor+0x387/0x980 [ 1744.421304] ? do_splice_direct+0x1c4/0x290 [ 1744.422238] ? do_sendfile+0x553/0x11e0 [ 1744.423093] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1744.424092] ? do_syscall_64+0x33/0x40 [ 1744.424937] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1744.426114] iomap_apply+0x164/0x810 [ 1744.426924] ? iomap_dio_rw+0x90/0x90 [ 1744.427753] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1744.429021] ? mark_held_locks+0x9e/0xe0 [ 1744.429921] ? filemap_check_errors+0xa5/0x150 [ 1744.430915] __iomap_dio_rw+0x6cd/0x1110 [ 1744.431794] ? iomap_dio_rw+0x90/0x90 [ 1744.432636] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1744.433645] ? ext4_orphan_add+0x253/0x9e0 [ 1744.434559] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1744.435632] ? ext4_empty_dir+0xae0/0xae0 [ 1744.436518] ? jbd2__journal_start+0xf3/0x7e0 [ 1744.437518] iomap_dio_rw+0x31/0x90 [ 1744.438319] ext4_file_write_iter+0xe0e/0x1530 [ 1744.439325] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1744.440319] ? kasan_save_stack+0x32/0x40 [ 1744.441280] ? kasan_save_stack+0x1b/0x40 [ 1744.442177] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1744.443277] ? iter_file_splice_write+0x165/0xc90 [ 1744.444322] ? direct_splice_actor+0x10f/0x170 [ 1744.445320] ? splice_direct_to_actor+0x387/0x980 [ 1744.446359] ? do_splice_direct+0x1c4/0x290 [ 1744.447292] ? do_sendfile+0x553/0x11e0 [ 1744.448149] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1744.449168] ? do_syscall_64+0x33/0x40 [ 1744.450008] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1744.451177] do_iter_readv_writev+0x476/0x750 [ 1744.452154] ? new_sync_write+0x660/0x660 [ 1744.453063] ? avc_policy_seqno+0x9/0x70 [ 1744.453950] ? selinux_file_permission+0x92/0x520 [ 1744.454991] ? security_file_permission+0xb1/0xe0 [ 1744.456046] do_iter_write+0x191/0x700 [ 1744.456896] ? trace_hardirqs_on+0x5b/0x180 [ 1744.457846] vfs_iter_write+0x70/0xa0 [ 1744.458690] iter_file_splice_write+0x726/0xc90 [ 1744.459709] ? generic_splice_sendpage+0x140/0x140 [ 1744.460783] ? security_file_permission+0xb1/0xe0 [ 1744.461846] ? generic_splice_sendpage+0x140/0x140 [ 1744.462921] direct_splice_actor+0x10f/0x170 [ 1744.463878] splice_direct_to_actor+0x387/0x980 [ 1744.464889] ? pipe_to_sendpage+0x380/0x380 [ 1744.465835] ? do_splice_to+0x160/0x160 [ 1744.466694] ? security_file_permission+0xb1/0xe0 [ 1744.467751] do_splice_direct+0x1c4/0x290 [ 1744.468656] ? splice_direct_to_actor+0x980/0x980 [ 1744.469710] ? avc_policy_seqno+0x9/0x70 [ 1744.470599] ? security_file_permission+0xb1/0xe0 [ 1744.471657] do_sendfile+0x553/0x11e0 [ 1744.472501] ? do_pwritev+0x270/0x270 [ 1744.473343] ? wait_for_completion_io+0x270/0x270 [ 1744.474398] ? rcu_read_lock_any_held+0x75/0xa0 [ 1744.475397] ? vfs_write+0x354/0xb10 [ 1744.476224] __x64_sys_sendfile64+0x1d1/0x210 [ 1744.477204] ? __ia32_sys_sendfile+0x220/0x220 [ 1744.478200] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1744.479332] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1744.480446] do_syscall_64+0x33/0x40 [ 1744.481270] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1744.482380] RIP: 0033:0x7fdf91659b19 [ 1744.483174] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1744.487163] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1744.488800] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1744.490363] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1744.491898] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1744.493457] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1744.495005] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 06:00:39 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 47) fallocate(r0, 0x0, 0x0, 0x1000002) 06:00:39 executing program 0: write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000080), 0x12) r0 = syz_open_pts(0xffffffffffffffff, 0x80200) r1 = accept(0xffffffffffffffff, 0x0, &(0x7f00000000c0)) ioctl$TCGETS(r0, 0x5401, &(0x7f0000000140)) setsockopt$netlink_NETLINK_NO_ENOBUFS(r1, 0x10e, 0x5, &(0x7f0000000100)=0x3, 0x4) fsetxattr$security_capability(r0, &(0x7f0000000000), &(0x7f0000000040)=@v1={0x1000000, [{0x7, 0x100}]}, 0xc, 0x5) 06:00:39 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 06:00:39 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000000040)={{0x1, 0x1, 0x18, r1, {0x35, 0x2}}, './file1\x00'}) sendmsg$NL80211_CMD_RELOAD_REGDB(r3, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0xc0428c08}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, 0x0, 0x20, 0x70bd2a, 0x25dfdbff, {}, ["", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4048000}, 0x8080) 06:00:39 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000ecc) fallocate(r0, 0x0, 0x0, 0x1000002) 06:00:39 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) openat(r1, &(0x7f0000000040)='./file1\x00', 0x600000, 0x10) 06:00:39 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(r0, &(0x7f0000000040)='./file1\x00', 0x44e883, 0x0) sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000001) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r3, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)=ANY=[@ANYBLOB="14002000", @ANYRES16=0x0, @ANYBLOB="000000000000000000000e000000"], 0x14}}, 0x0) fstat(r3, &(0x7f0000000200)) r4 = gettid() r5 = getpgid(0x0) kcmp(r4, r5, 0x0, 0xffffffffffffffff, 0xffffffffffffffff) fallocate(r0, 0x0, 0x0, 0x1000002) syz_io_uring_setup(0x6e07, &(0x7f0000000080)={0x0, 0x4a2e, 0x8, 0x1, 0x1a8, 0x0, r2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000100), &(0x7f0000000140)=0x0) syz_io_uring_submit(0x0, r6, &(0x7f0000000180)=@IORING_OP_MADVISE={0x19, 0x2, 0x0, 0x0, 0x0, &(0x7f0000fff000/0x1000)=nil, 0x1000, 0x17, 0x1}, 0x6) ioctl$FIBMAP(r1, 0x1, &(0x7f00000001c0)=0x1) 06:00:39 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x10, 0x6f, 0x1000002) [ 1758.360707] FAULT_INJECTION: forcing a failure. [ 1758.360707] name failslab, interval 1, probability 0, space 0, times 0 [ 1758.362479] CPU: 0 PID: 9686 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1758.363297] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1758.364375] Call Trace: [ 1758.364697] dump_stack+0x107/0x167 [ 1758.365141] should_fail.cold+0x5/0xa [ 1758.365621] ? ext4_mb_new_blocks+0x698/0x45c0 [ 1758.366168] should_failslab+0x5/0x20 [ 1758.366679] kmem_cache_alloc+0x5b/0x310 [ 1758.367223] ext4_mb_new_blocks+0x698/0x45c0 [ 1758.367836] ? trace_hardirqs_on+0x5b/0x180 [ 1758.368446] ? ext4_cache_extents+0x148/0x2d0 [ 1758.369077] ? ext4_discard_preallocations+0xd80/0xd80 [ 1758.369829] ? ext4_ext_search_right+0x2e3/0xbd0 [ 1758.370533] ext4_ext_map_blocks+0x1d49/0x5830 [ 1758.371196] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1758.371951] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1758.372732] ? ext4_ext_release+0x10/0x10 [ 1758.373336] ? ext4_map_blocks+0x5cd/0x1910 [ 1758.373964] ? lock_release+0x680/0x680 [ 1758.374537] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1758.375212] ? lock_downgrade+0x6d0/0x6d0 [ 1758.375811] ? down_write_killable+0x180/0x180 [ 1758.376469] ext4_map_blocks+0x63f/0x1910 [ 1758.377057] ? kmem_cache_alloc+0x2a6/0x310 [ 1758.377699] ? __kernel_text_address+0x9/0x40 [ 1758.378332] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1758.378964] ? jbd2__journal_start+0xf3/0x7e0 [ 1758.379595] ? __ext4_journal_start_sb+0x214/0x390 [ 1758.380317] ? __ext4_journal_start_sb+0x1db/0x390 [ 1758.381012] ext4_iomap_begin+0x3ad/0x700 [ 1758.381614] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1758.382302] ? kasan_save_stack+0x1b/0x40 [ 1758.382892] ? ext4_file_write_iter+0xe0e/0x1530 [ 1758.383565] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1758.384484] ? splice_direct_to_actor+0x387/0x980 [ 1758.385186] ? do_splice_direct+0x1c4/0x290 [ 1758.385814] ? do_sendfile+0x553/0x11e0 [ 1758.386387] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1758.387051] ? do_syscall_64+0x33/0x40 [ 1758.387609] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1758.388379] iomap_apply+0x164/0x810 [ 1758.388905] ? iomap_dio_rw+0x90/0x90 [ 1758.389452] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1758.390285] ? mark_held_locks+0x9e/0xe0 [ 1758.390861] ? filemap_check_errors+0xa5/0x150 [ 1758.391514] __iomap_dio_rw+0x6cd/0x1110 [ 1758.392102] ? iomap_dio_rw+0x90/0x90 [ 1758.392662] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1758.393325] ? ext4_orphan_add+0x253/0x9e0 [ 1758.393895] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1758.394536] ? ext4_empty_dir+0xae0/0xae0 [ 1758.395074] ? jbd2__journal_start+0xf3/0x7e0 [ 1758.395743] iomap_dio_rw+0x31/0x90 [ 1758.396197] ext4_file_write_iter+0xe0e/0x1530 [ 1758.396774] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1758.397340] ? kasan_save_stack+0x32/0x40 [ 1758.397874] ? kasan_save_stack+0x1b/0x40 [ 1758.398385] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1758.399017] ? iter_file_splice_write+0x165/0xc90 [ 1758.399609] ? direct_splice_actor+0x10f/0x170 [ 1758.400171] ? splice_direct_to_actor+0x387/0x980 [ 1758.400779] ? do_splice_direct+0x1c4/0x290 [ 1758.401314] ? do_sendfile+0x553/0x11e0 [ 1758.401819] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1758.402396] ? do_syscall_64+0x33/0x40 [ 1758.402877] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1758.403540] do_iter_readv_writev+0x476/0x750 [ 1758.404090] ? new_sync_write+0x660/0x660 [ 1758.404564] ? avc_policy_seqno+0x9/0x70 [ 1758.405021] ? selinux_file_permission+0x92/0x520 [ 1758.405612] ? security_file_permission+0xb1/0xe0 [ 1758.406249] do_iter_write+0x191/0x700 [ 1758.406750] ? trace_hardirqs_on+0x5b/0x180 [ 1758.407305] vfs_iter_write+0x70/0xa0 [ 1758.407796] iter_file_splice_write+0x726/0xc90 [ 1758.408365] ? generic_splice_sendpage+0x140/0x140 [ 1758.408926] ? security_file_permission+0xb1/0xe0 [ 1758.409564] ? generic_splice_sendpage+0x140/0x140 [ 1758.410241] direct_splice_actor+0x10f/0x170 [ 1758.410792] splice_direct_to_actor+0x387/0x980 [ 1758.411437] ? pipe_to_sendpage+0x380/0x380 [ 1758.412042] ? do_splice_to+0x160/0x160 [ 1758.412574] ? security_file_permission+0xb1/0xe0 [ 1758.413201] do_splice_direct+0x1c4/0x290 [ 1758.413705] ? splice_direct_to_actor+0x980/0x980 [ 1758.414282] ? avc_policy_seqno+0x9/0x70 [ 1758.414759] ? security_file_permission+0xb1/0xe0 [ 1758.415435] do_sendfile+0x553/0x11e0 [ 1758.415885] ? do_pwritev+0x270/0x270 [ 1758.416352] ? wait_for_completion_io+0x270/0x270 [ 1758.416979] ? rcu_read_lock_any_held+0x75/0xa0 [ 1758.417581] ? vfs_write+0x354/0xb10 [ 1758.418059] __x64_sys_sendfile64+0x1d1/0x210 [ 1758.418625] ? __ia32_sys_sendfile+0x220/0x220 [ 1758.419213] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1758.419887] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1758.420544] do_syscall_64+0x33/0x40 [ 1758.421018] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1758.421681] RIP: 0033:0x7fdf91659b19 [ 1758.422153] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1758.424589] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1758.425641] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1758.426610] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1758.427592] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1758.428559] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1758.429535] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 06:00:39 executing program 0: clone3(&(0x7f0000000240)={0x20000000, &(0x7f0000000000)=0xffffffffffffffff, &(0x7f0000000040), &(0x7f0000000080)=0x0, {0x31}, &(0x7f00000000c0)=""/6, 0x6, &(0x7f0000000100)=""/215, &(0x7f0000000200)=[0x0, 0x0, 0xffffffffffffffff], 0x3}, 0x58) fsetxattr$trusted_overlay_redirect(r0, &(0x7f00000003c0), &(0x7f0000000400)='./file0\x00', 0x8, 0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa418b6d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000200)='net/if_inet6\x00') read(r3, &(0x7f00000002c0)=""/225, 0xe1) r4 = dup2(r2, r2) write$binfmt_elf64(r4, &(0x7f0000000cc0)=ANY=[@ANYBLOB="7f45ec8ab26827704b3500000001000003003e0000180000bd0300000000000040000000000000001e0300000000000006000000000238000100321f0008000100000070030000000500000000000000ff00000000000000a000000000000000010100000000000003000000000000001f000000000000005563cd9a58df47eb7fe1862c4d6716e03dda73ad79bdf1e9a003bcf3986c50d4e8aa28c957fb3d2f3a377ec19cccee4be2003b4f8551fca880d37a4b11600af6227109e9493fb7702e12a94b4c79f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e100000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b384c5f2024997ba00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000009139d4c0081fee640000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ca824ebda0c84196749bba61a02d950ed03c31d36ce1ad9b4e7c056a3acd9feb813360802486d4efed4d530e585bc699f4d6b47ba7bc9a9c3d8c2e2fe03cb819116f5af1dca9ec7b1d75cfb61da8d2544524a9434a1c795c00000000000000000000000005197ca73e75f8f95c680bae4da3d5d6563611c4fd797ce90c61a9021485c0ab5295437f585db3ca47c44cbcab392aca17898548ce36bc29323a3b0494813399f57c897989b73d27af72fcbf1b30dc50b8d50f79e8f6f5410eada5919225ad9527ea88e651c3c0eeb96ae480d0c2ff09b218ff004fc90fa60000000000000000"], 0x3c7) r5 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x266d40) r6 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ptype\x00') io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000040)=[r3, r4, r2, r5, 0xffffffffffffffff, r6, r2], 0x7) fcntl$addseals(r3, 0x409, 0x8) openat$cgroup_ro(r3, &(0x7f00000002c0)='blkio.bfq.io_service_time_recursive\x00', 0x0, 0x0) clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[r1], 0x400001f7}, 0x58) 06:00:40 executing program 0: clone3(&(0x7f0000003380)={0x4120000, 0x0, 0x0, 0x0, {0x1}, 0x0, 0x0, 0x0, &(0x7f0000003340)}, 0xb7) 06:00:40 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x2) ftruncate(r2, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r2, 0x40086602, &(0x7f0000000000)) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x10000) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0) r8 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r4, 0x8000000) syz_io_uring_submit(r8, r6, &(0x7f00000002c0)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x5}, 0x80000001) ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000080)={r2, 0xfffffffffffff8ff, 0x8000, 0x3f}) r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r6, &(0x7f00000000c0)=@IORING_OP_CLOSE={0x13, 0x4, 0x0, r9, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r10}}, 0x2) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r2, 0xc018937c, &(0x7f0000000040)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="00696c657e4b87"]) r11 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r11, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 06:00:40 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 48) fallocate(r0, 0x0, 0x0, 0x1000002) 06:00:40 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_JOIN_OCB(r0, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x38, 0x0, 0x8, 0x70bd2a, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x101, 0x64}}}}, [@NL80211_ATTR_CHANNEL_WIDTH={0x8}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x9}]}, 0x38}, 0x1, 0x0, 0x0, 0x24008805}, 0x20000000) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r0, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000001c0)={&(0x7f0000000080)={0x10c, r1, 0xe23, 0x70bd28, 0x25dfdbfd, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x2}, {0x6, 0x11, 0x1}, {0x8}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0xfffffffa}, {0x6, 0x11, 0x7ff}, {0x8, 0x15, 0x8}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x4}}, {0x8, 0xb, 0x8}, {0x6, 0x11, 0x24a2}, {0x8, 0x15, 0x3}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x9}, {0x6, 0x11, 0x2}, {0x8, 0x15, 0x7}}]}, 0x10c}, 0x1, 0x0, 0x0, 0x4000014}, 0x4004800) sendmsg$NFT_MSG_GETSETELEM(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000340), 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x20, 0xd, 0xa, 0x201, 0x0, 0x0, {0x3}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x14}, 0x4000000) clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) [ 1758.618240] FAULT_INJECTION: forcing a failure. [ 1758.618240] name failslab, interval 1, probability 0, space 0, times 0 [ 1758.619742] CPU: 0 PID: 9708 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1758.620509] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1758.621427] Call Trace: [ 1758.621742] dump_stack+0x107/0x167 [ 1758.622155] should_fail.cold+0x5/0xa [ 1758.622579] ? create_object.isra.0+0x3a/0xa20 [ 1758.623095] should_failslab+0x5/0x20 [ 1758.623522] kmem_cache_alloc+0x5b/0x310 [ 1758.623989] create_object.isra.0+0x3a/0xa20 [ 1758.624489] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1758.625157] kmem_cache_alloc+0x159/0x310 [ 1758.625640] ext4_mb_new_blocks+0x698/0x45c0 [ 1758.626146] ? trace_hardirqs_on+0x5b/0x180 [ 1758.626641] ? ext4_cache_extents+0x148/0x2d0 [ 1758.627144] ? ext4_discard_preallocations+0xd80/0xd80 [ 1758.627738] ? ext4_ext_search_right+0x2e3/0xbd0 [ 1758.628269] ext4_ext_map_blocks+0x1d49/0x5830 [ 1758.628790] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1758.629376] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1758.629994] ? ext4_ext_release+0x10/0x10 [ 1758.630469] ? ext4_map_blocks+0x5cd/0x1910 [ 1758.630966] ? lock_release+0x680/0x680 [ 1758.631415] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1758.631942] ? lock_downgrade+0x6d0/0x6d0 [ 1758.632416] ? down_write_killable+0x180/0x180 [ 1758.632943] ext4_map_blocks+0x63f/0x1910 [ 1758.633427] ? kmem_cache_alloc+0x2a6/0x310 [ 1758.633918] ? __kernel_text_address+0x9/0x40 [ 1758.634420] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1758.634921] ? jbd2__journal_start+0xf3/0x7e0 [ 1758.635430] ? __ext4_journal_start_sb+0x214/0x390 [ 1758.635981] ? __ext4_journal_start_sb+0x1db/0x390 [ 1758.636533] ext4_iomap_begin+0x3ad/0x700 [ 1758.637005] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1758.637562] ? kasan_save_stack+0x1b/0x40 [ 1758.638030] ? ext4_file_write_iter+0xe0e/0x1530 [ 1758.638564] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1758.639271] ? splice_direct_to_actor+0x387/0x980 [ 1758.639807] ? do_splice_direct+0x1c4/0x290 [ 1758.640286] ? do_sendfile+0x553/0x11e0 [ 1758.640731] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1758.641249] ? do_syscall_64+0x33/0x40 [ 1758.641699] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1758.642297] iomap_apply+0x164/0x810 [ 1758.642717] ? iomap_dio_rw+0x90/0x90 [ 1758.643146] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1758.643794] ? mark_held_locks+0x9e/0xe0 [ 1758.644260] ? filemap_check_errors+0xa5/0x150 [ 1758.644775] __iomap_dio_rw+0x6cd/0x1110 [ 1758.645238] ? iomap_dio_rw+0x90/0x90 [ 1758.645683] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1758.646194] ? ext4_orphan_add+0x253/0x9e0 [ 1758.646667] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1758.647218] ? ext4_empty_dir+0xae0/0xae0 [ 1758.647686] ? jbd2__journal_start+0xf3/0x7e0 [ 1758.648193] iomap_dio_rw+0x31/0x90 [ 1758.648601] ext4_file_write_iter+0xe0e/0x1530 [ 1758.649120] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1758.649638] ? kasan_save_stack+0x32/0x40 [ 1758.650106] ? kasan_save_stack+0x1b/0x40 [ 1758.650566] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1758.651132] ? iter_file_splice_write+0x165/0xc90 [ 1758.651670] ? direct_splice_actor+0x10f/0x170 [ 1758.652179] ? splice_direct_to_actor+0x387/0x980 [ 1758.652723] ? do_splice_direct+0x1c4/0x290 [ 1758.653204] ? do_sendfile+0x553/0x11e0 [ 1758.653654] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1758.654172] ? do_syscall_64+0x33/0x40 [ 1758.654608] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1758.655207] do_iter_readv_writev+0x476/0x750 [ 1758.655708] ? new_sync_write+0x660/0x660 [ 1758.656173] ? avc_policy_seqno+0x9/0x70 [ 1758.656627] ? selinux_file_permission+0x92/0x520 [ 1758.657169] ? security_file_permission+0xb1/0xe0 [ 1758.657723] do_iter_write+0x191/0x700 [ 1758.658163] ? trace_hardirqs_on+0x5b/0x180 [ 1758.658653] vfs_iter_write+0x70/0xa0 [ 1758.659079] iter_file_splice_write+0x726/0xc90 [ 1758.659608] ? generic_splice_sendpage+0x140/0x140 [ 1758.660164] ? security_file_permission+0xb1/0xe0 [ 1758.660706] ? generic_splice_sendpage+0x140/0x140 [ 1758.661252] direct_splice_actor+0x10f/0x170 [ 1758.661765] splice_direct_to_actor+0x387/0x980 [ 1758.662288] ? pipe_to_sendpage+0x380/0x380 [ 1758.662772] ? do_splice_to+0x160/0x160 [ 1758.663215] ? security_file_permission+0xb1/0xe0 [ 1758.663761] do_splice_direct+0x1c4/0x290 [ 1758.664225] ? splice_direct_to_actor+0x980/0x980 [ 1758.664893] ? avc_policy_seqno+0x9/0x70 [ 1758.665364] ? security_file_permission+0xb1/0xe0 [ 1758.665942] do_sendfile+0x553/0x11e0 [ 1758.666390] ? do_pwritev+0x270/0x270 [ 1758.666830] ? wait_for_completion_io+0x270/0x270 [ 1758.667388] ? rcu_read_lock_any_held+0x75/0xa0 [ 1758.667933] ? vfs_write+0x354/0xb10 [ 1758.668359] __x64_sys_sendfile64+0x1d1/0x210 [ 1758.668907] ? __ia32_sys_sendfile+0x220/0x220 [ 1758.669548] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1758.670258] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1758.670965] do_syscall_64+0x33/0x40 [ 1758.671474] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1758.672181] RIP: 0033:0x7fdf91659b19 [ 1758.672707] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1758.675277] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1758.676341] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1758.677390] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1758.678409] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1758.679395] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1758.680383] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 06:00:40 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc018937e, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, @out_args}, './file1\x00'}) r3 = openat(r2, &(0x7f0000000040)='./file1\x00', 0x0, 0x0) sendfile(r1, r3, 0x0, 0x100000001) r4 = syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000100)='./file1\x00', 0x1, 0x1, &(0x7f0000000200)=[{&(0x7f0000000140)="790ad0edc24a3c4789df8d1eeb6c592ebd25d796ad19677b4f179db8d909ae43344db8de677a2934ab5309ec694edd898b5e5eaf2f561d13630846ec923517170ff3144ac514ae39f851481bed45653ae9e80ff9db7f34a7ac5aa8dfa20983adc8b3834d233222e40c994707b3f68ba28c977db4ec4bae68635645175a3bdd3472fd6240281aca963d723a66e16e667da1228e16fcbf0adc1f78", 0x9a, 0x5a}], 0x100009, &(0x7f0000000300)={[{@uni_xlateno}, {@shortname_winnt}, {@utf8no}, {@numtail}, {@utf8}, {@shortname_winnt}, {@numtail}, {@shortname_lower}], [{@obj_user={'obj_user', 0x3d, '#((\x00'}}, {@measure}, {@hash}, {@audit}, {@defcontext={'defcontext', 0x3d, 'system_u'}}, {@fsmagic={'fsmagic', 0x3d, 0x2}}, {@fsname={'fsname', 0x3d, '&'}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r4, 0x800c6613, &(0x7f0000000240)=@v2={0x2, @aes128, 0x0, '\x00', @b}) fallocate(r0, 0x0, 0x0, 0x1000002) 06:00:40 executing program 0: clone3(&(0x7f0000003380)={0x2000, 0x0, 0x0, 0x0, {0x8}, 0x0, 0x0, 0x0, &(0x7f0000003340)}, 0x58) 06:00:40 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) creat(&(0x7f0000000040)='./file1\x00', 0x8) stat(&(0x7f0000000500)='./file1\x00', &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(r3, 0x0, 0x0) syz_mount_image$iso9660(&(0x7f0000000080), &(0x7f00000000c0)='./file1\x00', 0x400000000, 0x5, &(0x7f0000000480)=[{&(0x7f0000000100)="9b7076660ed64e8b2efe48408ff07e7407967b563fba01ad15d241eef2c759663252b57536f35bba6bff1f46638dd5a1ff8cd1153abf31be2210fd0cc524063711e55a7856f5cac7a91fe3224feec863cb195c0c3d23315725d5163ebedd456b9913523d2ab3a57e5d1366803f3c91897bee96968a92d51dccbd49333b6b89e3d41c3e349b6632dc0ea8e006862bdf", 0x8f, 0x1ff}, {&(0x7f00000001c0)="7248a89c59b703e6b965cbc5536b2647d3d68d4db602c7183f9333787f5bf7469cca7f6b993ba49c0c6e0085887f403e2ae1607a1fe9696db54052dcf6518e28f6bf0ebfb3ee", 0x46}, {&(0x7f0000000240)="dcbe8718", 0x4, 0x8d}, {&(0x7f0000000300)="b54934072ab6482ea9c527d559810db9a3a720ef9e312b0a3ab20691a969194ee4e4c35bb6d079183dfe93fed50262302ef939ea7d845a5bebc7f8dde8ac3e5b0d7c643fc0cf2735b3912cd4c5b25626563cf308cc9202db082da5b80de8a753e8c6aa4a4f7df1c9a1274b709f2490d4f439e6a2e7", 0x75, 0x9}, {&(0x7f0000000380)="1ef230affeab36cb36003ed02f01aec8b5bcc3f279537109f2611b95558bffbe1409e613059b55ba760ea1730b7a397b8bd05b48125557981dc5422af0ac95a57abf794e80f5bbf7c1aaed9e67968cd000e13146133e817fb0c352b0690845411a2e7e617f51552a1180024ec61ea05b202274ade340a865b213b507ef847d38986c1bb84b3500dd780efed7c554634deaae375d4b26226e4a6f62639d838f9558e773d8fe1428ed15da53634bb7f1cc15c216617ec8515a90ccd2a9c97616f7d917f9a1419a6efe9c018ee7850472a847dc3ab51fc066ee51e0d65bceb98b3717d6811201", 0xe5, 0xfffffffffffff093}], 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="6e6f726f636b2c757466382c6e6f636f6d707265737322736573732237e9df3078303030303030303030303030303034302c6769643d", @ANYRESHEX=r2, @ANYBLOB=',dmode=0x0000000000000007,obj_type=(),context=unconfined_u,smackfsroot=h$*,dont_measure,smackfstransmute=&[-,euid<', @ANYRESDEC=r3, @ANYBLOB=',\x00']) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r4, 0x0, 0x100000001) ioctl$TCSBRKP(r0, 0x5425, 0x80000000) fallocate(r0, 0x0, 0x0, 0x1000002) 06:00:40 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000ed4) fallocate(r0, 0x0, 0x0, 0x1000002) 06:00:40 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 49) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1759.048244] FAULT_INJECTION: forcing a failure. [ 1759.048244] name failslab, interval 1, probability 0, space 0, times 0 [ 1759.049816] CPU: 0 PID: 9733 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1759.050695] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1759.051680] Call Trace: [ 1759.052001] dump_stack+0x107/0x167 [ 1759.052432] should_fail.cold+0x5/0xa [ 1759.052877] ? ext4_find_extent+0xa77/0xd70 [ 1759.053383] should_failslab+0x5/0x20 [ 1759.053844] __kmalloc+0x72/0x390 [ 1759.054255] ext4_find_extent+0xa77/0xd70 [ 1759.054747] ext4_ext_map_blocks+0x1c8/0x5830 [ 1759.055283] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1759.055894] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1759.056512] ? ext4_ext_release+0x10/0x10 [ 1759.056999] ? ext4_map_blocks+0x5cd/0x1910 [ 1759.057508] ? lock_release+0x680/0x680 [ 1759.057974] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1759.058523] ? lock_downgrade+0x6d0/0x6d0 [ 1759.059023] ? down_write+0xe0/0x160 [ 1759.059461] ? down_write_killable+0x180/0x180 [ 1759.060003] ext4_map_blocks+0x63f/0x1910 [ 1759.060490] ? kmem_cache_alloc+0x2a6/0x310 [ 1759.060993] ? __kernel_text_address+0x9/0x40 [ 1759.061528] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1759.062055] ? jbd2__journal_start+0xf3/0x7e0 [ 1759.062584] ? __ext4_journal_start_sb+0x214/0x390 [ 1759.063164] ? __ext4_journal_start_sb+0x1db/0x390 [ 1759.063741] ext4_iomap_begin+0x3ad/0x700 [ 1759.064222] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1759.064792] ? kasan_save_stack+0x1b/0x40 [ 1759.065281] ? ext4_file_write_iter+0xe0e/0x1530 [ 1759.065853] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1759.066605] ? splice_direct_to_actor+0x387/0x980 [ 1759.067154] ? do_splice_direct+0x1c4/0x290 [ 1759.067653] ? do_sendfile+0x553/0x11e0 [ 1759.068107] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1759.068639] ? do_syscall_64+0x33/0x40 [ 1759.069089] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1759.069716] iomap_apply+0x164/0x810 [ 1759.070157] ? iomap_dio_rw+0x90/0x90 [ 1759.070732] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1759.071639] ? mark_held_locks+0x9e/0xe0 [ 1759.072165] ? filemap_check_errors+0xa5/0x150 [ 1759.072802] __iomap_dio_rw+0x6cd/0x1110 [ 1759.073350] ? iomap_dio_rw+0x90/0x90 [ 1759.073886] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1759.074511] ? ext4_orphan_add+0x253/0x9e0 [ 1759.075100] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1759.075787] ? ext4_empty_dir+0xae0/0xae0 [ 1759.076357] ? jbd2__journal_start+0xf3/0x7e0 [ 1759.076988] iomap_dio_rw+0x31/0x90 [ 1759.077503] ext4_file_write_iter+0xe0e/0x1530 [ 1759.078147] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1759.078791] ? kasan_save_stack+0x32/0x40 [ 1759.079362] ? kasan_save_stack+0x1b/0x40 [ 1759.079928] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1759.080619] ? iter_file_splice_write+0x165/0xc90 [ 1759.081232] ? direct_splice_actor+0x10f/0x170 [ 1759.081840] ? splice_direct_to_actor+0x387/0x980 [ 1759.082527] ? do_splice_direct+0x1c4/0x290 [ 1759.083130] ? do_sendfile+0x553/0x11e0 [ 1759.083599] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1759.084145] ? do_syscall_64+0x33/0x40 [ 1759.084612] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1759.085255] do_iter_readv_writev+0x476/0x750 [ 1759.085833] ? new_sync_write+0x660/0x660 [ 1759.086426] ? avc_policy_seqno+0x9/0x70 [ 1759.086919] ? selinux_file_permission+0x92/0x520 [ 1759.087483] ? security_file_permission+0xb1/0xe0 [ 1759.088054] do_iter_write+0x191/0x700 [ 1759.088520] ? trace_hardirqs_on+0x5b/0x180 [ 1759.089028] vfs_iter_write+0x70/0xa0 [ 1759.089485] iter_file_splice_write+0x726/0xc90 [ 1759.090037] ? generic_splice_sendpage+0x140/0x140 [ 1759.090627] ? security_file_permission+0xb1/0xe0 [ 1759.091192] ? generic_splice_sendpage+0x140/0x140 [ 1759.091766] direct_splice_actor+0x10f/0x170 [ 1759.092277] splice_direct_to_actor+0x387/0x980 [ 1759.092816] ? pipe_to_sendpage+0x380/0x380 [ 1759.093327] ? do_splice_to+0x160/0x160 [ 1759.093797] ? security_file_permission+0xb1/0xe0 [ 1759.094363] do_splice_direct+0x1c4/0x290 [ 1759.094853] ? splice_direct_to_actor+0x980/0x980 [ 1759.095416] ? avc_policy_seqno+0x9/0x70 [ 1759.095892] ? security_file_permission+0xb1/0xe0 [ 1759.096460] do_sendfile+0x553/0x11e0 [ 1759.096910] ? do_pwritev+0x270/0x270 [ 1759.097355] ? wait_for_completion_io+0x270/0x270 [ 1759.097932] ? rcu_read_lock_any_held+0x75/0xa0 [ 1759.098472] ? vfs_write+0x354/0xb10 [ 1759.098911] __x64_sys_sendfile64+0x1d1/0x210 [ 1759.099438] ? __ia32_sys_sendfile+0x220/0x220 [ 1759.099976] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1759.100597] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1759.101213] do_syscall_64+0x33/0x40 [ 1759.101663] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1759.102270] RIP: 0033:0x7fdf91659b19 [ 1759.102710] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1759.104862] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1759.105780] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1759.106614] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1759.107454] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1759.108283] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1759.109119] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 06:00:40 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 06:00:40 executing program 0: ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)=0x0) timer_create(0x7, &(0x7f0000000180)={0x0, 0xe, 0x1, @tid=r0}, &(0x7f0000000340)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)=0x0) timer_create(0x7, &(0x7f0000000180)={0x0, 0xe, 0x1, @tid=r1}, &(0x7f0000000340)) clone3(&(0x7f0000003380)={0x10c000300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000000)=[r0, r1], 0x2}, 0x58) 06:00:40 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x0, 0x5b) r3 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r6}}, 0x10000) r7 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x8, 0x8010, r0, 0x10000000) syz_io_uring_submit(r4, r7, &(0x7f0000000080)=@IORING_OP_FSYNC={0x3, 0x3, 0x0, @fd_index=0x5}, 0x4) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) stat(&(0x7f00000001c0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r8, 0x0) getresgid(0x0, &(0x7f0000001100)=0x0, &(0x7f0000001140)) semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f0000001200)={{0x1, 0xee00, r9, 0x0, 0x0, 0x24, 0x2}, 0x1f, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffdd}) getresgid(&(0x7f00000010c0), &(0x7f0000001100)=0x0, &(0x7f0000001140)) semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f0000001200)={{0x1, 0xee00, r10, 0x0, 0x0, 0x24, 0x2}, 0x1f, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffdd}) fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000180)={{}, {}, [{0x2, 0x1}, {}, {0x2, 0x0, r8}], {0x4, 0x1}, [{0x8, 0x4, r9}, {0x8, 0x1, r10}, {0x8, 0x2, 0xee01}], {0x10, 0x2}, {0x20, 0x2}}, 0x54, 0x1) mount$tmpfs(0x0, &(0x7f0000000140)='./file1\x00', &(0x7f0000000180), 0x200010, &(0x7f00000001c0)={[{@gid={'gid', 0x3d, r10}}, {@huge_within_size}], [{@uid_lt={'uid<', 0xffffffffffffffff}}, {@uid_eq={'uid', 0x3d, 0xffffffffffffffff}}, {@smackfshat={'smackfshat', 0x3d, '\x00'}}, {@dont_measure}]}) ioctl$IOC_PR_RESERVE(r2, 0x401070c9, &(0x7f0000000240)={0x8, 0xfff, 0x1}) 06:00:40 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x40000, 0x2) ioctl$F2FS_IOC_GET_PIN_FILE(r1, 0x8004f50e, &(0x7f0000000080)) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0xfffffffffffffffc) 06:00:40 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 50) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1759.402216] FAULT_INJECTION: forcing a failure. [ 1759.402216] name failslab, interval 1, probability 0, space 0, times 0 [ 1759.404805] CPU: 1 PID: 9749 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1759.406389] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1759.408258] Call Trace: [ 1759.408864] dump_stack+0x107/0x167 [ 1759.409708] should_fail.cold+0x5/0xa [ 1759.410648] ? __es_insert_extent+0xed1/0x1370 [ 1759.411748] should_failslab+0x5/0x20 [ 1759.412618] kmem_cache_alloc+0x5b/0x310 [ 1759.413568] __es_insert_extent+0xed1/0x1370 [ 1759.414591] ext4_es_insert_extent+0x45d/0xf10 [ 1759.415643] ? ext4_es_scan_clu+0x2e0/0x2e0 [ 1759.416621] ? lock_downgrade+0x6d0/0x6d0 [ 1759.417602] ? down_write_killable+0x180/0x180 [ 1759.418658] ext4_map_blocks+0x80b/0x1910 [ 1759.419610] ? __kernel_text_address+0x9/0x40 [ 1759.420654] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1759.421799] ? jbd2__journal_start+0xf3/0x7e0 [ 1759.422946] ? __ext4_journal_start_sb+0x214/0x390 [ 1759.424232] ? __ext4_journal_start_sb+0x1db/0x390 [ 1759.425358] ext4_iomap_begin+0x3ad/0x700 [ 1759.426337] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1759.427453] ? kasan_save_stack+0x1b/0x40 [ 1759.428399] ? ext4_file_write_iter+0xe0e/0x1530 [ 1759.429493] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1759.430953] ? splice_direct_to_actor+0x387/0x980 [ 1759.432277] ? do_splice_direct+0x1c4/0x290 [ 1759.433286] ? do_sendfile+0x553/0x11e0 [ 1759.434256] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1759.435359] ? do_syscall_64+0x33/0x40 [ 1759.436289] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1759.437590] iomap_apply+0x164/0x810 [ 1759.438483] ? iomap_dio_rw+0x90/0x90 [ 1759.439402] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1759.440786] ? mark_held_locks+0x9e/0xe0 [ 1759.441789] ? filemap_check_errors+0xa5/0x150 [ 1759.442887] __iomap_dio_rw+0x6cd/0x1110 [ 1759.443858] ? iomap_dio_rw+0x90/0x90 [ 1759.444910] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1759.446011] ? ext4_orphan_add+0x253/0x9e0 [ 1759.447085] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1759.448444] ? ext4_empty_dir+0xae0/0xae0 06:00:41 executing program 0: ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, &(0x7f0000000000)={'dummy0\x00', {0x2, 0x0, @initdev}}) clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) [ 1759.449421] ? jbd2__journal_start+0xf3/0x7e0 [ 1759.450664] iomap_dio_rw+0x31/0x90 [ 1759.451581] ext4_file_write_iter+0xe0e/0x1530 [ 1759.452887] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1759.454167] ? kasan_save_stack+0x32/0x40 [ 1759.455307] ? kasan_save_stack+0x1b/0x40 [ 1759.456464] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1759.457601] ? iter_file_splice_write+0x165/0xc90 [ 1759.458941] ? direct_splice_actor+0x10f/0x170 [ 1759.459947] ? splice_direct_to_actor+0x387/0x980 [ 1759.461282] ? do_splice_direct+0x1c4/0x290 [ 1759.462257] ? do_sendfile+0x553/0x11e0 [ 1759.463355] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1759.464412] ? do_syscall_64+0x33/0x40 [ 1759.465511] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1759.466702] do_iter_readv_writev+0x476/0x750 [ 1759.467962] ? new_sync_write+0x660/0x660 [ 1759.468876] ? avc_policy_seqno+0x9/0x70 06:00:41 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) ioctl$TUNGETDEVNETNS(r0, 0x54e3, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r5, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000500)) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x10000) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) r6 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000) syz_io_uring_submit(r6, r3, &(0x7f00000002c0)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x5, 0x0, @fd, 0x3}, 0x80000001) syz_io_uring_submit(0x0, r3, &(0x7f0000000040)=@IORING_OP_ASYNC_CANCEL={0xe, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x3ff) r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r8 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r8, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="001200000000000000000e0000002b4e8317"], 0x14}}, 0x0) r9 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r9, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) sendfile(r7, r8, 0x0, 0x7f) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1759.470023] ? selinux_file_permission+0x92/0x520 [ 1759.471345] ? security_file_permission+0xb1/0xe0 [ 1759.472442] do_iter_write+0x191/0x700 [ 1759.473527] ? trace_hardirqs_on+0x5b/0x180 [ 1759.474501] vfs_iter_write+0x70/0xa0 [ 1759.475675] iter_file_splice_write+0x726/0xc90 [ 1759.476783] ? generic_splice_sendpage+0x140/0x140 [ 1759.478175] ? security_file_permission+0xb1/0xe0 [ 1759.479272] ? generic_splice_sendpage+0x140/0x140 [ 1759.480638] direct_splice_actor+0x10f/0x170 [ 1759.481659] splice_direct_to_actor+0x387/0x980 [ 1759.482956] ? pipe_to_sendpage+0x380/0x380 [ 1759.483940] ? do_splice_to+0x160/0x160 [ 1759.485038] ? security_file_permission+0xb1/0xe0 [ 1759.486160] do_splice_direct+0x1c4/0x290 [ 1759.487315] ? splice_direct_to_actor+0x980/0x980 [ 1759.488396] ? avc_policy_seqno+0x9/0x70 [ 1759.489550] ? security_file_permission+0xb1/0xe0 [ 1759.490652] do_sendfile+0x553/0x11e0 [ 1759.491728] ? do_pwritev+0x270/0x270 [ 1759.492605] ? wait_for_completion_io+0x270/0x270 [ 1759.493965] ? rcu_read_lock_any_held+0x75/0xa0 [ 1759.495252] ? vfs_write+0x354/0xb10 [ 1759.496289] __x64_sys_sendfile64+0x1d1/0x210 [ 1759.497306] ? __ia32_sys_sendfile+0x220/0x220 [ 1759.498598] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1759.500045] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1759.501495] do_syscall_64+0x33/0x40 [ 1759.502533] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1759.503959] RIP: 0033:0x7fdf91659b19 [ 1759.504997] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1759.510138] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1759.512299] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1759.514320] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1759.516221] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1759.518238] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1759.520154] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 06:00:41 executing program 0: ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)=0x0) timer_create(0x7, &(0x7f0000000180)={0x0, 0xe, 0x1, @tid=r0}, &(0x7f0000000340)) timer_settime(0x0, 0x1, &(0x7f0000000000)={{0x0, 0x989680}, {0x77359400}}, &(0x7f0000000040)) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x2) ftruncate(r1, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r1, 0x40086602, &(0x7f0000000000)) clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[r0], 0x1, {r1}}, 0x58) 06:00:41 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000f00) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1759.836542] tmpfs: Unsupported parameter 'huge' 06:00:57 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 06:00:57 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) connect$bt_l2cap(r0, &(0x7f0000000040)={0x1f, 0x59, @any, 0xfffb}, 0xe) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x1e1400, 0x0) r3 = openat$cgroup_freezer_state(r1, &(0x7f00000000c0), 0x2, 0x0) sendfile(r3, r2, 0x0, 0x67f) fallocate(r0, 0x0, 0x0, 0x1000002) 06:00:57 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x10000ff01) fallocate(r0, 0x0, 0x0, 0x1000002) 06:00:57 executing program 5: openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x125140, 0x5) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r1, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) sendfile(r0, r1, 0x0, 0x100000001) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r2, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) fallocate(r2, 0x20, 0x0, 0xffff) 06:00:57 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x3151c0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 06:00:57 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 51) fallocate(r0, 0x0, 0x0, 0x1000002) 06:00:57 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r3 = openat$cgroup_procs(r1, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0) mmap(&(0x7f0000fec000/0x13000)=nil, 0x13000, 0x3, 0x30, r3, 0x1759c000) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 06:00:57 executing program 0: clone3(&(0x7f0000003380)={0x980000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) [ 1775.604815] FAULT_INJECTION: forcing a failure. [ 1775.604815] name failslab, interval 1, probability 0, space 0, times 0 [ 1775.607847] CPU: 1 PID: 9785 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1775.609496] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1775.611493] Call Trace: [ 1775.612146] dump_stack+0x107/0x167 [ 1775.613015] should_fail.cold+0x5/0xa [ 1775.613902] ? create_object.isra.0+0x3a/0xa20 [ 1775.615008] should_failslab+0x5/0x20 [ 1775.615894] kmem_cache_alloc+0x5b/0x310 [ 1775.616865] create_object.isra.0+0x3a/0xa20 [ 1775.617889] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1775.619115] kmem_cache_alloc+0x159/0x310 [ 1775.620106] ext4_mb_new_blocks+0x1fd8/0x45c0 [ 1775.621187] ? trace_hardirqs_on+0x5b/0x180 [ 1775.622206] ? ext4_cache_extents+0x148/0x2d0 [ 1775.623278] ? ext4_discard_preallocations+0xd80/0xd80 [ 1775.624545] ? ext4_ext_search_right+0x2e3/0xbd0 [ 1775.625793] ext4_ext_map_blocks+0x1d49/0x5830 [ 1775.626896] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1775.628131] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1775.629375] ? ext4_ext_release+0x10/0x10 [ 1775.630361] ? ext4_map_blocks+0x5cd/0x1910 [ 1775.631379] ? lock_release+0x680/0x680 [ 1775.632317] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1775.633427] ? lock_downgrade+0x6d0/0x6d0 [ 1775.634427] ? down_write_killable+0x180/0x180 [ 1775.635511] ext4_map_blocks+0x63f/0x1910 [ 1775.636489] ? kmem_cache_alloc+0x2a6/0x310 [ 1775.637500] ? __kernel_text_address+0x9/0x40 [ 1775.638580] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1775.639660] ? jbd2__journal_start+0xf3/0x7e0 [ 1775.640751] ? __ext4_journal_start_sb+0x214/0x390 [ 1775.641937] ? __ext4_journal_start_sb+0x1db/0x390 [ 1775.643130] ext4_iomap_begin+0x3ad/0x700 [ 1775.644145] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1775.645329] ? kasan_save_stack+0x1b/0x40 [ 1775.646337] ? ext4_file_write_iter+0xe0e/0x1530 [ 1775.647451] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1775.648981] ? splice_direct_to_actor+0x387/0x980 [ 1775.650149] ? do_splice_direct+0x1c4/0x290 [ 1775.651185] ? do_sendfile+0x553/0x11e0 [ 1775.652138] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1775.653246] ? do_syscall_64+0x33/0x40 [ 1775.654173] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1775.655427] iomap_apply+0x164/0x810 [ 1775.656302] ? iomap_dio_rw+0x90/0x90 [ 1775.657201] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1775.658571] ? mark_held_locks+0x9e/0xe0 [ 1775.659550] ? filemap_check_errors+0xa5/0x150 [ 1775.660622] __iomap_dio_rw+0x6cd/0x1110 [ 1775.661554] ? iomap_dio_rw+0x90/0x90 [ 1775.662464] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1775.663514] ? ext4_orphan_add+0x253/0x9e0 [ 1775.664495] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1775.665632] ? ext4_empty_dir+0xae0/0xae0 [ 1775.666597] ? jbd2__journal_start+0xf3/0x7e0 [ 1775.667649] iomap_dio_rw+0x31/0x90 [ 1775.668494] ext4_file_write_iter+0xe0e/0x1530 [ 1775.669573] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1775.670634] ? kasan_save_stack+0x32/0x40 [ 1775.671599] ? kasan_save_stack+0x1b/0x40 [ 1775.672555] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1775.673733] ? iter_file_splice_write+0x165/0xc90 [ 1775.674857] ? direct_splice_actor+0x10f/0x170 [ 1775.675913] ? splice_direct_to_actor+0x387/0x980 [ 1775.677025] ? do_splice_direct+0x1c4/0x290 [ 1775.678018] ? do_sendfile+0x553/0x11e0 [ 1775.679267] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1775.680533] ? do_syscall_64+0x33/0x40 [ 1775.681598] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1775.683078] do_iter_readv_writev+0x476/0x750 [ 1775.683756] ? new_sync_write+0x660/0x660 [ 1775.684586] ? avc_policy_seqno+0x9/0x70 [ 1775.685196] ? selinux_file_permission+0x92/0x520 [ 1775.686146] ? security_file_permission+0xb1/0xe0 [ 1775.686881] do_iter_write+0x191/0x700 [ 1775.687571] ? trace_hardirqs_on+0x5b/0x180 [ 1775.688302] vfs_iter_write+0x70/0xa0 [ 1775.688946] iter_file_splice_write+0x726/0xc90 [ 1775.689739] ? generic_splice_sendpage+0x140/0x140 [ 1775.690588] ? security_file_permission+0xb1/0xe0 [ 1775.691406] ? generic_splice_sendpage+0x140/0x140 [ 1775.692237] direct_splice_actor+0x10f/0x170 [ 1775.692984] splice_direct_to_actor+0x387/0x980 [ 1775.693780] ? pipe_to_sendpage+0x380/0x380 [ 1775.694506] ? do_splice_to+0x160/0x160 [ 1775.695172] ? security_file_permission+0xb1/0xe0 [ 1775.695991] do_splice_direct+0x1c4/0x290 [ 1775.696681] ? splice_direct_to_actor+0x980/0x980 [ 1775.697485] ? avc_policy_seqno+0x9/0x70 [ 1775.698179] ? security_file_permission+0xb1/0xe0 [ 1775.698996] do_sendfile+0x553/0x11e0 [ 1775.699648] ? do_pwritev+0x270/0x270 [ 1775.700291] ? wait_for_completion_io+0x270/0x270 [ 1775.701100] ? rcu_read_lock_any_held+0x75/0xa0 [ 1775.701879] ? vfs_write+0x354/0xb10 [ 1775.702517] __x64_sys_sendfile64+0x1d1/0x210 [ 1775.703279] ? __ia32_sys_sendfile+0x220/0x220 [ 1775.704048] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1775.704924] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1775.705788] do_syscall_64+0x33/0x40 [ 1775.706427] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1775.707286] RIP: 0033:0x7fdf91659b19 [ 1775.707915] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1775.711583] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1775.713607] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1775.715477] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1775.717126] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1775.718804] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1775.720465] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 06:01:12 executing program 0: r0 = syz_open_dev$mouse(&(0x7f0000000000), 0x10001, 0x4000) getsockname$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r2, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002740), 0xffffffffffffffff) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) sendmsg$ETHTOOL_MSG_EEE_SET(r3, &(0x7f0000002800)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000940)={0x20, r4, 0x1, 0x0, 0x0, {0x13}, [@ETHTOOL_A_EEE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}]}]}, 0x20}}, 0x0) sendmsg$ETHTOOL_MSG_COALESCE_SET(r2, &(0x7f00000005c0)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x1c, r4, 0x1, 0x70bd28, 0x25dfdbfd, {}, [@ETHTOOL_A_COALESCE_RX_MAX_FRAMES_IRQ={0x8, 0x5, 0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24040016}, 0x4000001) r7 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x266d40) r8 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ptype\x00') io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000040)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r7, 0xffffffffffffffff, r8, 0xffffffffffffffff], 0x7) ioctl$SNDRV_TIMER_IOCTL_SELECT(r8, 0x40345410, &(0x7f0000000100)={{0xffffffffffffffff, 0x3, 0x39, 0x3, 0x8}}) sendmsg$inet6(r8, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000600)="b4f69550f8fde76df7829582f19ec20c6ceae5aa74307a64350bf0a46fde0a3251a1de97e0cbae4d8b4224c5192bc7d89b1275456b295d51adcd22a21f12cb110aa1c1f1cd9ba54e6cbcfaebb46b5e32a09059d42f9a10d6ef29d47c00094b928601ce02122507c992c9957d3eb15b7c093717d06ed74ca5322507dfb5b6d71c831c9652e476a179442b", 0x8a}, {&(0x7f00000006c0)="ba1a91f592819387ba0d1a1b17d571341faa17183ce7252208d14b84fed51ae3c0479ac6af4e993f4c3878c6b08ab1571245bd01a9c9d72e67883353f8c77a004120ede72389efa2e95ff46fe2c4f0c52eedc53b1bbca080c68d6f51d530179877a801677bf4defd86193dd48e697adbbb4f72352cf123317b033464b2977be943f860543d7ff1bbafbe98750b13d71010a4e54f49592a4d5f427c0fe592d95f04572a49f8468d0399f65473d9b08db21658498b2aab83eba49edaa6cda4c85d6676f9f1840e9278810d46430a0b92adea4c181d8ef5b8617745bd9d05c53b129cd795205c2e13392bdbb705bb", 0xed}, {&(0x7f00000007c0)="0bbae6061df4d397d7e55e0eb00d6c74119333af826d225039cdb91b606a6cc1e866b930fef9", 0x26}, {&(0x7f0000000800)="c9940629d8622eae548d9e69be5f53e714f7368345bc93b1c9fed0e78663f20228d401506ff4074cf1a42f65f7d4eb2585186e1f8c37dfb28e397819f02bd2538a6d756e26da19e657eb", 0x4a}, {&(0x7f0000000880)="de65960c60fc6d1eabe4cede2c7a77f1d61902b3d94345b8932049e92322c715aaebc91391d2538841c3c809cf7c0629012177dd7ca02f49811f2ad84ece9bb3bd91cb2543b8684d6fe77eba04fc408a70fdd4a9ab88dba66ce9c1884761465a7af11707fc92baa787e043f02aef86d4068f60ee04c9d88dfd316ff6b80202386ae9dcdc7ac98ea9341a1dce2936fef40edee87966fa2a811c4cee", 0x9b}], 0x5, &(0x7f0000000a00)=[@pktinfo={{0x24, 0x29, 0x32, {@private1={0xfc, 0x1, '\x00', 0x1}, r6}}}, @pktinfo={{0x24, 0x29, 0x32, {@private1={0xfc, 0x1, '\x00', 0x1}, r6}}}], 0x50}, 0x20040000) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'ip6gre0\x00', 0x0}) getpeername$packet(0xffffffffffffffff, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000240)={'ip6_vti0\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x4, 0xe1, 0x5, 0x5a5, 0x2a, @local, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x0, 0x8000, 0x8, 0xa5}}) sendmsg$ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f00000004c0)={&(0x7f0000000040), 0xc, &(0x7f0000000480)={&(0x7f0000000280)={0x1dc, 0x0, 0x10, 0x70bd27, 0x25dfdbfd, {}, [@HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan1\x00'}]}, @HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xc400a630aeda21e1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x64, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6_vti0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'rose0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x1dc}, 0x1, 0x0, 0x0, 0x4}, 0x4000004) clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 06:01:12 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) close(r0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 06:01:12 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 06:01:12 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x1fffffff5) fallocate(r0, 0x0, 0x0, 0x1000002) 06:01:12 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x40400, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 06:01:12 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r3 = openat2(r2, &(0x7f0000000040)='./file1\x00', &(0x7f0000000080)={0x184001, 0x1, 0xa}, 0x18) ioctl$AUTOFS_DEV_IOCTL_READY(r3, 0xc0189376, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, {0x8}}, './file1\x00'}) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 06:01:12 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 52) fallocate(r0, 0x0, 0x0, 0x1000002) 06:01:12 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) llistxattr(&(0x7f0000000040)='./file1\x00', &(0x7f0000000080), 0x0) [ 1791.286517] FAULT_INJECTION: forcing a failure. [ 1791.286517] name failslab, interval 1, probability 0, space 0, times 0 [ 1791.289847] CPU: 0 PID: 9812 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1791.291806] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1791.294180] Call Trace: [ 1791.294954] dump_stack+0x107/0x167 [ 1791.296146] should_fail.cold+0x5/0xa [ 1791.297240] ? create_object.isra.0+0x3a/0xa20 [ 1791.298578] should_failslab+0x5/0x20 [ 1791.299707] kmem_cache_alloc+0x5b/0x310 [ 1791.300906] create_object.isra.0+0x3a/0xa20 [ 1791.302180] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1791.303684] kmem_cache_alloc+0x159/0x310 [ 1791.304909] __es_insert_extent+0xed1/0x1370 [ 1791.306231] ext4_es_insert_extent+0x45d/0xf10 [ 1791.307599] ? ext4_es_scan_clu+0x2e0/0x2e0 [ 1791.308854] ? lock_downgrade+0x6d0/0x6d0 [ 1791.310099] ? down_write_killable+0x180/0x180 [ 1791.311484] ext4_map_blocks+0x80b/0x1910 [ 1791.312718] ? __kernel_text_address+0x9/0x40 [ 1791.314043] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1791.315351] ? jbd2__journal_start+0xf3/0x7e0 [ 1791.316694] ? __ext4_journal_start_sb+0x214/0x390 [ 1791.318097] ? __ext4_journal_start_sb+0x1db/0x390 [ 1791.319559] ext4_iomap_begin+0x3ad/0x700 [ 1791.320767] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1791.322218] ? kasan_save_stack+0x1b/0x40 [ 1791.323423] ? ext4_file_write_iter+0xe0e/0x1530 [ 1791.324796] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1791.326633] ? splice_direct_to_actor+0x387/0x980 [ 1791.328015] ? do_splice_direct+0x1c4/0x290 [ 1791.329258] ? do_sendfile+0x553/0x11e0 [ 1791.330419] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1791.331796] ? do_syscall_64+0x33/0x40 [ 1791.332852] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1791.334384] iomap_apply+0x164/0x810 [ 1791.335339] ? iomap_dio_rw+0x90/0x90 [ 1791.336282] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1791.337700] ? mark_held_locks+0x9e/0xe0 [ 1791.338863] ? filemap_check_errors+0xa5/0x150 [ 1791.340030] __iomap_dio_rw+0x6cd/0x1110 [ 1791.341044] ? iomap_dio_rw+0x90/0x90 [ 1791.342020] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1791.343190] ? ext4_orphan_add+0x253/0x9e0 [ 1791.344251] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1791.345477] ? ext4_empty_dir+0xae0/0xae0 [ 1791.346511] ? jbd2__journal_start+0xf3/0x7e0 [ 1791.347644] iomap_dio_rw+0x31/0x90 [ 1791.348557] ext4_file_write_iter+0xe0e/0x1530 [ 1791.349753] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1791.350962] ? kasan_save_stack+0x32/0x40 [ 1791.352042] ? kasan_save_stack+0x1b/0x40 [ 1791.353180] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1791.354537] ? iter_file_splice_write+0x165/0xc90 [ 1791.355756] ? direct_splice_actor+0x10f/0x170 [ 1791.356801] ? splice_direct_to_actor+0x387/0x980 [ 1791.357875] ? do_splice_direct+0x1c4/0x290 [ 1791.358867] ? do_sendfile+0x553/0x11e0 [ 1791.359773] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1791.360812] ? do_syscall_64+0x33/0x40 [ 1791.361694] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1791.362904] do_iter_readv_writev+0x476/0x750 [ 1791.363914] ? new_sync_write+0x660/0x660 [ 1791.364865] ? avc_policy_seqno+0x9/0x70 [ 1791.365798] ? selinux_file_permission+0x92/0x520 [ 1791.366930] ? security_file_permission+0xb1/0xe0 [ 1791.368048] do_iter_write+0x191/0x700 [ 1791.368949] ? trace_hardirqs_on+0x5b/0x180 [ 1791.369948] vfs_iter_write+0x70/0xa0 [ 1791.370847] iter_file_splice_write+0x726/0xc90 [ 1791.371932] ? generic_splice_sendpage+0x140/0x140 [ 1791.373076] ? security_file_permission+0xb1/0xe0 [ 1791.374166] ? generic_splice_sendpage+0x140/0x140 [ 1791.375287] direct_splice_actor+0x10f/0x170 [ 1791.376274] splice_direct_to_actor+0x387/0x980 [ 1791.377347] ? pipe_to_sendpage+0x380/0x380 [ 1791.378341] ? do_splice_to+0x160/0x160 [ 1791.379266] ? security_file_permission+0xb1/0xe0 [ 1791.380382] do_splice_direct+0x1c4/0x290 [ 1791.381333] ? splice_direct_to_actor+0x980/0x980 [ 1791.382433] ? avc_policy_seqno+0x9/0x70 [ 1791.383383] ? security_file_permission+0xb1/0xe0 [ 1791.384499] do_sendfile+0x553/0x11e0 [ 1791.385388] ? do_pwritev+0x270/0x270 [ 1791.386266] ? wait_for_completion_io+0x270/0x270 [ 1791.387397] ? rcu_read_lock_any_held+0x75/0xa0 [ 1791.388459] ? vfs_write+0x354/0xb10 [ 1791.389316] __x64_sys_sendfile64+0x1d1/0x210 [ 1791.390333] ? __ia32_sys_sendfile+0x220/0x220 [ 1791.391387] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1791.392579] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1791.393753] do_syscall_64+0x33/0x40 [ 1791.394598] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1791.395784] RIP: 0033:0x7fdf91659b19 [ 1791.396635] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1791.400811] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1791.402538] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1791.404165] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1791.405782] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1791.407411] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1791.409031] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 06:01:13 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 06:01:13 executing program 0: ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) sendmsg$DEVLINK_CMD_SB_POOL_GET(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x98, 0x0, 0x200, 0x70bd2b, 0x25dfdbfd, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x7}, {0x6}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x9}, {0x6, 0x11, 0x7fff}}, {@pci={{0x8}, {0x11}}, {0x8}, {0x6, 0x11, 0x7fff}}]}, 0x98}, 0x1, 0x0, 0x0, 0x44014}, 0x40) clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 06:01:13 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 06:01:13 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = signalfd(r1, &(0x7f0000000040)={[0x4]}, 0x8) openat(r2, &(0x7f0000000080)='./file1\x00', 0x420000, 0x101) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r3, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 06:01:13 executing program 4: openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)) fcntl$F_GET_RW_HINT(0xffffffffffffffff, 0x40b, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_bp={&(0x7f0000000080), 0x3}, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x1, {{0x2, 0x0, @private=0xa010100}}, {{0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, 0x108) setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @loopback, 0x0, 0x2, [@local, @private]}, 0x18) r2 = openat(0xffffffffffffffff, 0x0, 0x105142, 0x0) io_submit(0x0, 0x0, 0x0) openat(r0, &(0x7f00000002c0)='./file1\x00', 0x410802, 0x0) setgroups(0x4000000000000356, &(0x7f0000000380)) ioctl$F2FS_IOC_GET_PIN_FILE(r2, 0x8004f50e, &(0x7f0000000240)) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) pwritev(r3, &(0x7f0000001140)=[{&(0x7f0000000080)="f2", 0x1}], 0x1, 0x0, 0x0) sendto(r2, &(0x7f0000000300)="b475a7d0b0de40319c8f4753bb3190d2031932d6e50eb1b08351c81a5be62dc116ac87bf7aac4434db1467348c1d9c50e1fb45312b0d37c2d09784a4f390fb9b", 0x40, 0x44012, 0x0, 0x0) ioctl$FS_IOC_FSSETXATTR(r3, 0x401c5820, &(0x7f0000000000)={0x8020}) close(r3) 06:01:13 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc018937e, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, @in_args={0x2}}, './file1/file0\x00'}) sendfile(r1, r0, &(0x7f00000000c0)=0x4, 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1/file0\x00', 0x105142, 0x110) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa418b6d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = syz_open_procfs(0x0, &(0x7f0000000200)='net/if_inet6\x00') read(r5, &(0x7f00000002c0)=""/225, 0xe1) r6 = dup2(r4, r4) write$binfmt_elf64(r6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], 0x3c7) r7 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x266d40) r8 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ptype\x00') io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000040)=[r5, r6, r4, r7, 0xffffffffffffffff, r8, r4], 0x7) ioctl$SNDRV_TIMER_IOCTL_SELECT(r8, 0x40345410, &(0x7f0000000100)={{0xffffffffffffffff, 0x3, 0x39, 0x3, 0x8}}) openat(r8, &(0x7f0000000100)='./file1/file0\x00', 0x80000, 0x8a) fallocate(r0, 0x0, 0x0, 0x1000002) 06:01:13 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x2) ftruncate(r0, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r1, &(0x7f0000000080)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) dup3(r1, r0, 0x80000) clone3(&(0x7f0000003380)={0x40000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1, {r0}}, 0x58) 06:01:13 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa418b6d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000200)='net/if_inet6\x00') read(r2, &(0x7f00000002c0)=""/225, 0xe1) r3 = dup2(r1, r1) write$binfmt_elf64(r3, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], 0x3c7) r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x266d40) r5 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ptype\x00') io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000040)=[r2, r3, r1, r4, 0xffffffffffffffff, r5, r1], 0x7) fcntl$addseals(r2, 0x409, 0x8) openat(r2, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r6 = socket$inet6(0xa, 0x1, 0xc2) r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sysvipc/shm\x00', 0x0, 0x0) sendfile(r7, r6, 0x0, 0xfffffffffffffffa) fallocate(r0, 0x0, 0x0, 0x1000002) 06:01:13 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, 0x0, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 06:01:13 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 53) fallocate(r0, 0x0, 0x0, 0x1000002) 06:01:13 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, 0x0, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) [ 1792.160297] FAULT_INJECTION: forcing a failure. [ 1792.160297] name failslab, interval 1, probability 0, space 0, times 0 [ 1792.163348] CPU: 1 PID: 9853 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1792.165068] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1792.167154] Call Trace: [ 1792.167818] dump_stack+0x107/0x167 [ 1792.168710] should_fail.cold+0x5/0xa [ 1792.169643] ? mempool_alloc+0x148/0x360 [ 1792.170652] ? mempool_free_pages+0x20/0x20 [ 1792.171740] should_failslab+0x5/0x20 [ 1792.172695] kmem_cache_alloc+0x5b/0x310 [ 1792.173703] ? mempool_free_pages+0x20/0x20 [ 1792.174783] mempool_alloc+0x148/0x360 [ 1792.175762] ? mempool_resize+0x7d0/0x7d0 [ 1792.176803] ? lock_downgrade+0x6d0/0x6d0 [ 1792.177850] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1792.179090] bio_alloc_bioset+0x36e/0x600 [ 1792.180114] ? bvec_alloc+0x2f0/0x2f0 [ 1792.181064] ? iov_iter_npages+0x1fd/0xa70 [ 1792.182123] iomap_dio_bio_actor+0x518/0xef0 [ 1792.183247] iomap_dio_actor+0x36f/0x560 [ 1792.184244] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1792.185385] ? do_syscall_64+0x33/0x40 [ 1792.186343] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1792.187673] iomap_apply+0x289/0x810 [ 1792.188601] ? iomap_dio_rw+0x90/0x90 [ 1792.189557] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1792.191024] ? mark_held_locks+0x9e/0xe0 [ 1792.192058] ? filemap_check_errors+0xa5/0x150 [ 1792.193189] __iomap_dio_rw+0x6cd/0x1110 [ 1792.194193] ? iomap_dio_rw+0x90/0x90 [ 1792.195179] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1792.196320] ? ext4_orphan_add+0x253/0x9e0 [ 1792.197378] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1792.198584] ? ext4_empty_dir+0xae0/0xae0 [ 1792.199618] ? jbd2__journal_start+0xf3/0x7e0 [ 1792.200727] iomap_dio_rw+0x31/0x90 [ 1792.201633] ext4_file_write_iter+0xe0e/0x1530 [ 1792.202814] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1792.203941] ? kasan_save_stack+0x32/0x40 [ 1792.204963] ? kasan_save_stack+0x1b/0x40 [ 1792.205992] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1792.207247] ? iter_file_splice_write+0x165/0xc90 [ 1792.208422] ? direct_splice_actor+0x10f/0x170 [ 1792.209537] ? splice_direct_to_actor+0x387/0x980 [ 1792.210718] ? do_splice_direct+0x1c4/0x290 [ 1792.211778] ? do_sendfile+0x553/0x11e0 [ 1792.212751] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1792.213891] ? do_syscall_64+0x33/0x40 [ 1792.214855] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1792.216174] do_iter_readv_writev+0x476/0x750 [ 1792.217288] ? new_sync_write+0x660/0x660 [ 1792.218302] ? avc_policy_seqno+0x9/0x70 [ 1792.219312] ? selinux_file_permission+0x92/0x520 [ 1792.220498] ? security_file_permission+0xb1/0xe0 [ 1792.221685] do_iter_write+0x191/0x700 [ 1792.222663] ? trace_hardirqs_on+0x5b/0x180 [ 1792.223738] vfs_iter_write+0x70/0xa0 [ 1792.224678] iter_file_splice_write+0x726/0xc90 [ 1792.225841] ? generic_splice_sendpage+0x140/0x140 [ 1792.227092] ? security_file_permission+0xb1/0xe0 [ 1792.228284] ? generic_splice_sendpage+0x140/0x140 [ 1792.229487] direct_splice_actor+0x10f/0x170 [ 1792.230572] splice_direct_to_actor+0x387/0x980 [ 1792.231734] ? pipe_to_sendpage+0x380/0x380 [ 1792.232799] ? do_splice_to+0x160/0x160 [ 1792.233770] ? security_file_permission+0xb1/0xe0 [ 1792.234978] do_splice_direct+0x1c4/0x290 [ 1792.235995] ? splice_direct_to_actor+0x980/0x980 [ 1792.237156] ? avc_policy_seqno+0x9/0x70 [ 1792.238152] ? security_file_permission+0xb1/0xe0 [ 1792.239348] do_sendfile+0x553/0x11e0 [ 1792.240282] ? do_pwritev+0x270/0x270 [ 1792.241203] ? wait_for_completion_io+0x270/0x270 [ 1792.242369] ? rcu_read_lock_any_held+0x75/0xa0 [ 1792.243514] ? vfs_write+0x354/0xb10 [ 1792.244431] __x64_sys_sendfile64+0x1d1/0x210 [ 1792.245540] ? __ia32_sys_sendfile+0x220/0x220 [ 1792.246688] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1792.247996] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1792.249295] do_syscall_64+0x33/0x40 [ 1792.250220] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1792.251467] RIP: 0033:0x7fdf91659b19 [ 1792.252400] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1792.257222] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1792.259248] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1792.261123] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1792.262942] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1792.264644] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1792.266340] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 06:01:28 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 54) fallocate(r0, 0x0, 0x0, 0x1000002) 06:01:28 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000000640)={{0x1, 0x1, 0x18, r0, {0xee00, 0xee00}}, './file1\x00'}) sendmsg$nl_generic(r1, &(0x7f0000000840)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000800)={&(0x7f0000000680)={0x144, 0x12, 0x100, 0x70bd2a, 0x25dfdbfc, {0xd}, [@generic="49b3b3364f1020e15c9ac3220d5332ae0aba4cea1ad0be94656dba6927fa22c5cf56d8e3d7d8dc7ae865b5d70de4319ab4964ab243e726d4bf09ae665ba7b4d998f233f2bdc3f7755e500e841ec9a484c36fec9467", @nested={0xd8, 0x33, 0x0, 0x1, [@generic="bd63460b4fb2aec761222a3d5aa30b990ed0dc12dfd4fdcf8e6492c9d3a014e34be5efcf2da808d9c14ad55b01868d2304a8e5794c11cf2643e35360539c1c3e84d408b8f1f47a178afe3b7658df8d2096d9f6ef84d5dcb107c489748ec1c4e4034e73e32d7cd2a5994345bfb73b0b549271e75e4135ca30a44b8cb7435fc0235be998f16218e53c4020a6629fd30c2aeafa54a3efb870b1755c63cae6122bff8f9177ff864ab1272f7170157f7fdf92edc52e8c8bb33280ccb6e0e8", @typed={0x8, 0x53, 0x0, 0x0, @fd=r2}, @typed={0x8, 0x12, 0x0, 0x0, @uid=r3}, @typed={0x8, 0x3c, 0x0, 0x0, @ipv4=@multicast1}]}]}, 0x144}, 0x1, 0x0, 0x0, 0xc1}, 0x0) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r2, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = socket$netlink(0x10, 0x3, 0x0) ioctl$FS_IOC_FIEMAP(0xffffffffffffffff, 0xc020660b, &(0x7f00000008c0)={0x80000000, 0xa6b2, 0xd0776468da813001, 0x2a93, 0x492492492492523}) sendmsg$nl_generic(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)={0x28, 0x10, 0x1, 0x0, 0x0, {}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @nested={0xa, 0x0, 0x0, 0x1, [@generic="487fec864b24"]}]}, 0x28}}, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000180)={{0x1, 0x1, 0x18, r5, {r4}}, './file0\x00'}) r7 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), r5) sendmsg$TIPC_NL_BEARER_GET(r6, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000a40)={0xf0, r7, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@TIPC_NLA_MEDIA={0xdc, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}]}, @TIPC_NLA_MEDIA_PROP={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xabf8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7fffffff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x17}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7ff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffffa}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}]}]}]}, 0xf0}, 0x1, 0x0, 0x0, 0x90}, 0x40090) sendmsg$TIPC_NL_MON_PEER_GET(r0, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000200)={&(0x7f0000000900)={0xf4, r7, 0x300, 0x70bd25, 0x25dfdbfe, {}, [@TIPC_NLA_LINK={0xe0, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x81}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x400}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7ff}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4fd7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3ff}]}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x40}]}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x400}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}]}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}]}]}]}, 0xf4}, 0x1, 0x0, 0x0, 0x20084050}, 0x800) fgetxattr(r2, &(0x7f0000000040)=@known='user.incfs.id\x00', &(0x7f0000000080)=""/42, 0x2a) r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), r1) sendmsg$NL80211_CMD_VENDOR(r6, &(0x7f00000005c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x24, r8, 0x20, 0x70bd2c, 0x25dfdbfc, {{}, {@val={0x8, 0x1, 0x33}, @void, @void}}, [@NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x9}]}, 0x24}, 0x1, 0x0, 0x0, 0x84}, 0x4000) r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r9, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 06:01:28 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) openat2(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', &(0x7f0000000080)={0x101000, 0x111, 0x11}, 0x18) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000180)={0x14, 0x0, &(0x7f00000000c0)=[@acquire_done={0x40106309, 0x2}], 0x5a, 0x0, &(0x7f0000000100)="d9c027769ce34747cc9e5976af8916771470bb04b659d909657690b0f8373011df1290971e94e4a835ee990b5b1fad2d6abad427a4849835976259163f7e1e73fb8b44992a6d688a87897da009525e32ac5fafec358cffbe8392"}) fallocate(r0, 0x0, 0x0, 0x1000002) pidfd_getfd(r0, r1, 0x0) 06:01:28 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) r3 = accept4(r2, &(0x7f0000000040)=@nfc_llcp, &(0x7f00000000c0)=0x80, 0x80800) r4 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) lseek(r4, 0x0, 0x2) r5 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x4000, 0x0) copy_file_range(r5, 0x0, r4, 0x0, 0x200f5ef, 0x0) fsconfig$FSCONFIG_SET_PATH(r5, 0x3, &(0x7f0000000180)='/\xa3&\x00', &(0x7f00000001c0)='./file1\x00', r0) r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/bus/acpi', 0x60400, 0x70) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r6, 0xc0189378, &(0x7f0000000480)={{0x1, 0x1, 0x18, r5, {r3}}, './file1\x00'}) getsockopt$inet_tcp_buf(r7, 0x6, 0xd, &(0x7f0000000140)=""/26, &(0x7f0000000100)=0xffffffffffffff1c) fallocate(r0, 0x0, 0x0, 0x1000002) 06:01:28 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r2, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) sendfile(r2, r1, 0x0, 0x100000001) r3 = socket$packet(0x11, 0x2, 0x300) fstatfs(r3, &(0x7f0000000040)=""/253) fallocate(r0, 0x0, 0x0, 0x1000002) 06:01:28 executing program 0: r0 = getpid() clone3(&(0x7f0000000040)={0x11000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000000)=[r0, r0], 0x2}, 0x58) 06:01:28 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, 0x0, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 06:01:28 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r2, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT(r2, 0x4004f506, &(0x7f0000000040)=0x1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r3, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1806.928369] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. 06:01:28 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000080)={r2, 0x1, 0x6, @dev}, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r0, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000040)={0x3c, 0x0, 0x0, 0x0, 0x0, {}, [@BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x19}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r2}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x80}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0xb3e0}]}, 0x3c}}, 0x0) sendmsg$nl_generic(r0, &(0x7f00000023c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000002380)={&(0x7f0000003400)=ANY=[@ANYBLOB="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"], 0x233c}, 0x1, 0x0, 0x0, 0x80}, 0x4040001) clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) [ 1806.939207] FAULT_INJECTION: forcing a failure. [ 1806.939207] name failslab, interval 1, probability 0, space 0, times 0 [ 1806.941970] CPU: 1 PID: 9873 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1806.943551] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1806.945319] Call Trace: [ 1806.945957] dump_stack+0x107/0x167 [ 1806.946885] should_fail.cold+0x5/0xa [ 1806.947711] ? mempool_alloc+0x148/0x360 [ 1806.948646] ? mempool_free_pages+0x20/0x20 [ 1806.949653] should_failslab+0x5/0x20 [ 1806.950747] kmem_cache_alloc+0x5b/0x310 [ 1806.951724] ? mempool_free_pages+0x20/0x20 [ 1806.952793] mempool_alloc+0x148/0x360 [ 1806.953894] ? mempool_resize+0x7d0/0x7d0 [ 1806.954860] ? lock_downgrade+0x6d0/0x6d0 [ 1806.955927] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1806.957142] bio_alloc_bioset+0x36e/0x600 [ 1806.958083] ? bvec_alloc+0x2f0/0x2f0 [ 1806.959013] ? iov_iter_npages+0x1fd/0xa70 [ 1806.960213] iomap_dio_bio_actor+0x518/0xef0 [ 1806.961313] iomap_dio_actor+0x36f/0x560 [ 1806.962299] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1806.963561] ? do_syscall_64+0x33/0x40 [ 1806.964494] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1806.965823] iomap_apply+0x289/0x810 [ 1806.966623] ? iomap_dio_rw+0x90/0x90 [ 1806.967500] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1806.969086] ? mark_held_locks+0x9e/0xe0 [ 1806.970145] ? filemap_check_errors+0xa5/0x150 [ 1806.971301] __iomap_dio_rw+0x6cd/0x1110 [ 1806.972225] ? iomap_dio_rw+0x90/0x90 [ 1806.973258] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1806.974366] ? ext4_orphan_add+0x253/0x9e0 [ 1806.975254] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1806.976282] ? ext4_empty_dir+0xae0/0xae0 [ 1806.977140] ? jbd2__journal_start+0xf3/0x7e0 [ 1806.978089] iomap_dio_rw+0x31/0x90 [ 1806.978851] ext4_file_write_iter+0xe0e/0x1530 [ 1806.979823] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1806.980869] ? kasan_save_stack+0x32/0x40 [ 1806.981735] ? kasan_save_stack+0x1b/0x40 [ 1806.982599] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1806.983653] ? iter_file_splice_write+0x165/0xc90 [ 1806.984656] ? direct_splice_actor+0x10f/0x170 [ 1806.985610] ? splice_direct_to_actor+0x387/0x980 [ 1806.986608] ? do_splice_direct+0x1c4/0x290 [ 1806.987524] ? do_sendfile+0x553/0x11e0 [ 1806.988348] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1806.989317] ? do_syscall_64+0x33/0x40 [ 1806.990123] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1806.991243] do_iter_readv_writev+0x476/0x750 [ 1806.992188] ? new_sync_write+0x660/0x660 [ 1806.993046] ? avc_policy_seqno+0x9/0x70 [ 1806.993886] ? selinux_file_permission+0x92/0x520 [ 1806.994959] ? security_file_permission+0xb1/0xe0 [ 1806.996002] do_iter_write+0x191/0x700 [ 1806.996815] ? trace_hardirqs_on+0x5b/0x180 [ 1806.997751] vfs_iter_write+0x70/0xa0 [ 1806.998575] iter_file_splice_write+0x726/0xc90 [ 1806.999624] ? generic_splice_sendpage+0x140/0x140 [ 1807.000697] ? security_file_permission+0xb1/0xe0 [ 1807.001741] ? generic_splice_sendpage+0x140/0x140 [ 1807.002802] direct_splice_actor+0x10f/0x170 [ 1807.003764] splice_direct_to_actor+0x387/0x980 [ 1807.004777] ? pipe_to_sendpage+0x380/0x380 [ 1807.005710] ? do_splice_to+0x160/0x160 [ 1807.006566] ? security_file_permission+0xb1/0xe0 [ 1807.007631] do_splice_direct+0x1c4/0x290 [ 1807.008528] ? splice_direct_to_actor+0x980/0x980 [ 1807.009561] ? avc_policy_seqno+0x9/0x70 [ 1807.010440] ? security_file_permission+0xb1/0xe0 [ 1807.011495] do_sendfile+0x553/0x11e0 [ 1807.012332] ? do_pwritev+0x270/0x270 [ 1807.013156] ? wait_for_completion_io+0x270/0x270 [ 1807.014198] ? rcu_read_lock_any_held+0x75/0xa0 [ 1807.015210] ? vfs_write+0x354/0xb10 [ 1807.016014] __x64_sys_sendfile64+0x1d1/0x210 [ 1807.016982] ? __ia32_sys_sendfile+0x220/0x220 [ 1807.017978] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1807.019105] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1807.020226] do_syscall_64+0x33/0x40 [ 1807.021029] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1807.022131] RIP: 0033:0x7fdf91659b19 [ 1807.022939] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1807.026920] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1807.028567] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1807.030129] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1807.031846] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1807.033710] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1807.035547] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 06:01:28 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) [ 1807.494672] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. 06:01:43 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/scsi_host', 0x200080, 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 06:01:43 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000040), 0x204100, 0x0) openat(r1, &(0x7f0000000080)='./file1\x00', 0x200, 0x8) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 06:01:43 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 06:01:43 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f0000000040)='blkio.bfq.sectors_recursive\x00', 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r1, 0x400c6615, &(0x7f0000000080)={0x0, @adiantum, 0x0, @desc4}) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 06:01:43 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x100) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r3, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) splice(r2, &(0x7f0000000100)=0xb88, r3, &(0x7f0000000140), 0x79b4e5db, 0xa) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r4, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) r5 = open(&(0x7f0000000040)='./file1\x00', 0x400000, 0x10) ioctl$HIDIOCGUSAGE(r5, 0xc018480b, &(0x7f0000000080)={0x2, 0x200, 0x9, 0x0, 0x6, 0x6}) 06:01:43 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 55) fallocate(r0, 0x0, 0x0, 0x1000002) 06:01:43 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(r0, 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) mknodat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0xf629, 0x9) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r1, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r2, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x8000, &(0x7f0000000180)=ANY=[@ANYBLOB='w\x00\x003Z', @ANYRES64=r2, @ANYRESHEX=r1, @ANYRES16=r1, @ANYBLOB=',cache=loose,fowner=', @ANYRESDEC=r1, @ANYBLOB=',audit,pcr=00000000000000000016,dont_hash,fsmagic=0x0000000000018000,uid<', @ANYRESDEC=0xee01, @ANYBLOB=',dont_appraise,fsmagic=0x0000000000007fff,\x00']) 06:01:43 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000500)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0, 0x0}) ioctl$BTRFS_IOC_WAIT_SYNC(0xffffffffffffffff, 0x40089416, &(0x7f00000001c0)=r6) ioctl$BTRFS_IOC_SCRUB(0xffffffffffffffff, 0xc400941b, &(0x7f0000000500)={0x0, 0x5, 0xdbc3}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f0000056640)={0x0, [{0x0, r5}, {0x0, r5}, {r3, r5}, {}, {0x0, r5}, {}, {r3, r5}, {r4}, {r3, r5}, {0x0, r5}, {0x0, r5}, {r4}, {r3, r5}, {0x0, r5}, {r3}, {}, {}, {}, {r3}, {r3}, {r4, r5}, {}, {}, {r4, r5}, {r4}, {r4}, {0x0, r5}, {}, {r4, r5}, {0x0, r5}, {r4}, {0x0, r5}, {r4}, {}, {0x0, r5}, {0x0, r5}, {0x0, r5}, {r4, r5}, {r3, r5}, {0x0, r5}, {}, {}, {0x0, r5}, {}, {}, {}, {}, {}, {}, {}, {r4}, {0x0, r5}, {}, {r3, r5}, {r3, r5}, {r3}, {r4}, {}, {0x0, r5}, {r3}, {0x0, r5}, {r3, r5}, {}, {0x0, r5}, {r3}, {r4}, {r3}, {r3, r5}, {r4, r5}, {r4, r5}, {0x0, r5}, {0x0, r5}, {}, {0x0, r5}, {0x0, r5}, {r3}, {}, {r4}, {r3}, {0x0, r5}, {}, {r4}, {0x0, r5}, {r3, r5}, {r4}, {}, {r3}, {0x0, r5}, {r4, r5}, {0x0, r5}, {r4, r5}, {0x0, r5}, {r4}, {0x0, r5}, {0x0, r5}, {r4}, {}, {0x0, r5}, {r3, r5}, {0x0, r5}, {r3, r5}, {0x0, r5}, {}, {r4, r5}, {0x0, r5}, {0x0, r5}, {r3}, {r4, r5}, {}, {}, {}, {0x0, r5}, {}, {r3}, {r4, r5}, {}, {r3, r5}, {r4}, {}, {0x0, r5}, {}, {}, {r4, r5}, {0x0, r5}, {r4}, {r4, r5}, {}, {}, {r3}, {}, {r3, r5}, {r3}, {r4, r5}, {r3}, {0x0, r5}, {r4}, {0x0, r5}, {r4}, {0x0, r5}, {}, {r4, r5}, {r4, r5}, {}, {}, {0x0, r5}, {0x0, r5}, {0x0, r5}, {}, {}, {0x0, r5}, {0x0, r5}, {}, {r3, r5}, {}, {r3, r5}, {}, {r4}, {0x0, r5}, {r4, r5}, {r4, r5}, {r3, r5}, {}, {}, {0x0, r5}, {}, {}, {0x0, r5}, {}, {r4, r5}, {r3, r5}, {0x0, r5}, {}, {}, {0x0, r5}, {r3, r5}, {r3}, {r3}, {r4}, {0x0, r5}, {r4}, {0x0, r5}, {r3}, {}, {r3, r5}, {}, {r3, r5}, {0x0, r5}, {r3}, {}, {}, {}, {0x0, r5}, {r3, r5}, {0x0, r5}, {0x0, r5}, {r3}, {r4, r5}, {r4}, {}, {r4, r5}, {0x0, r5}, {0x0, r5}, {}, {r3}, {}, {}, {r3}, {r3, r5}, {r4}, {r3, r5}, {0x0, r5}, {r4}, {0x0, r5}, {}, {0x0, r5}, {r3, r5}, {}, {}, {}, {0x0, r5}, {}, {r3}, {}, {r4}, {r4, r5}, {}, {}, {}, {}, {0x0, r5}, {0x0, r5}, {r4}, {r4, r5}, {r4}, {}, {}, {r4, r5}, {}, {}, {}, {r3, r5}, {r4}, {}, {}, {}, {r3, r5}, {r3, r5}, {0x0, r5}, {}, {}, {r3, r5}, {}, {}, {r4}], 0x8, "ef36b82f9d395f"}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000900)={{}, r6, 0x1c, @unused=[0xe89c, 0xfffffffffffffffa, 0x1000, 0x9], @devid=r7}) r8 = socket$inet6_udp(0xa, 0x2, 0x0) signalfd4(r8, &(0x7f0000000100)={[0x8000]}, 0x8, 0x800) connect$inet6(r8, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c) ioctl$BTRFS_IOC_SNAP_DESTROY_V2(0xffffffffffffffff, 0x5000943f, &(0x7f0000000900)={{r8}, 0x0, 0x0, @inherit={0x60, &(0x7f0000000080)=ANY=[@ANYBLOB="0100000000000000030000f30000e10005000000000000000100ff0501000000040000fffffffc008180001a5e3f277300000000ffffffff000400000000000000000000ea54ffff1600259384c87f406a5fc8a6bb285604000100000000"]}, @devid}) r9 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r8, 0x84009422, &(0x7f0000000500)={0x0, 0x0, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r9, 0x5000943f, &(0x7f0000000900)={{}, 0x0, 0x4, @unused=[0xc618, 0x3, 0x8, 0x100], @devid=r10}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x50009418, &(0x7f0000000300)={{}, r6, 0x6, @unused=[0x1ff, 0x6, 0x8, 0x1], @devid=r10}) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r2, 0xc018937b, &(0x7f0000000200)=ANY=[@ANYBLOB="862f67cb50958ee27a083d30d9285c1dbec1844cf9f2c92b705dd1a19f8f56a52f4188dfab0361a8ef31d661ba9c956fb8e970de4525bb6cf7b6bf1ac42cb653151878f6f123126a5a2fc91a113bc4d4d817371d4a6995a8ff2aef7d7d912f1c43abfcf16726dfc49e548c6fb8f8ada045069db2ba6578a15969195e2a6c9fa0079e34c9ecd427e4227c94d44a3adc2443d88326eabe5b", @ANYRES32=r1, @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB='./file1\x00']) lseek(r11, 0x100000001, 0x6) [ 1821.896994] FAULT_INJECTION: forcing a failure. [ 1821.896994] name failslab, interval 1, probability 0, space 0, times 0 [ 1821.899765] CPU: 1 PID: 9914 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1821.901309] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1821.903171] Call Trace: [ 1821.903901] dump_stack+0x107/0x167 [ 1821.904993] should_fail.cold+0x5/0xa [ 1821.905915] ? create_object.isra.0+0x3a/0xa20 [ 1821.907061] should_failslab+0x5/0x20 [ 1821.908172] kmem_cache_alloc+0x5b/0x310 [ 1821.909232] create_object.isra.0+0x3a/0xa20 [ 1821.910433] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1821.911695] kmem_cache_alloc+0x159/0x310 [ 1821.912888] bvec_alloc+0x148/0x2f0 [ 1821.913859] bio_alloc_bioset+0x40a/0x600 [ 1821.914898] ? bvec_alloc+0x2f0/0x2f0 [ 1821.915900] ? iov_iter_npages+0x1fd/0xa70 [ 1821.917069] iomap_dio_bio_actor+0x518/0xef0 [ 1821.918203] iomap_dio_actor+0x36f/0x560 [ 1821.919283] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1821.920503] ? do_syscall_64+0x33/0x40 [ 1821.921520] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1821.922953] iomap_apply+0x289/0x810 [ 1821.923844] ? iomap_dio_rw+0x90/0x90 [ 1821.924707] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1821.926011] ? mark_held_locks+0x9e/0xe0 [ 1821.926933] ? filemap_check_errors+0xa5/0x150 [ 1821.927973] __iomap_dio_rw+0x6cd/0x1110 [ 1821.928882] ? iomap_dio_rw+0x90/0x90 [ 1821.929754] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1821.930784] ? ext4_orphan_add+0x253/0x9e0 [ 1821.931736] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1821.932836] ? ext4_empty_dir+0xae0/0xae0 [ 1821.933760] ? jbd2__journal_start+0xf3/0x7e0 [ 1821.934776] iomap_dio_rw+0x31/0x90 [ 1821.935594] ext4_file_write_iter+0xe0e/0x1530 [ 1821.936639] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1821.937658] ? kasan_save_stack+0x32/0x40 [ 1821.938586] ? kasan_save_stack+0x1b/0x40 [ 1821.939510] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1821.940653] ? iter_file_splice_write+0x165/0xc90 [ 1821.941729] ? direct_splice_actor+0x10f/0x170 [ 1821.942747] ? splice_direct_to_actor+0x387/0x980 [ 1821.943831] ? do_splice_direct+0x1c4/0x290 [ 1821.944796] ? do_sendfile+0x553/0x11e0 [ 1821.945678] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1821.946713] ? do_syscall_64+0x33/0x40 [ 1821.947580] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1821.948788] do_iter_readv_writev+0x476/0x750 [ 1821.949798] ? new_sync_write+0x660/0x660 [ 1821.950723] ? avc_policy_seqno+0x9/0x70 [ 1821.951628] ? selinux_file_permission+0x92/0x520 [ 1821.952720] ? security_file_permission+0xb1/0xe0 [ 1821.953804] do_iter_write+0x191/0x700 [ 1821.954679] ? trace_hardirqs_on+0x5b/0x180 [ 1821.955655] vfs_iter_write+0x70/0xa0 [ 1821.956518] iter_file_splice_write+0x726/0xc90 [ 1821.957580] ? generic_splice_sendpage+0x140/0x140 [ 1821.958701] ? security_file_permission+0xb1/0xe0 [ 1821.959795] ? generic_splice_sendpage+0x140/0x140 [ 1821.960901] direct_splice_actor+0x10f/0x170 [ 1821.961897] splice_direct_to_actor+0x387/0x980 [ 1821.962943] ? pipe_to_sendpage+0x380/0x380 [ 1821.963926] ? do_splice_to+0x160/0x160 [ 1821.964819] ? security_file_permission+0xb1/0xe0 [ 1821.965898] do_splice_direct+0x1c4/0x290 [ 1821.966831] ? splice_direct_to_actor+0x980/0x980 [ 1821.967931] ? avc_policy_seqno+0x9/0x70 [ 1821.968848] ? security_file_permission+0xb1/0xe0 [ 1821.969949] do_sendfile+0x553/0x11e0 [ 1821.970817] ? do_pwritev+0x270/0x270 [ 1821.971677] ? wait_for_completion_io+0x270/0x270 [ 1821.972773] ? rcu_read_lock_any_held+0x75/0xa0 [ 1821.973813] ? vfs_write+0x354/0xb10 [ 1821.974655] __x64_sys_sendfile64+0x1d1/0x210 [ 1821.975659] ? __ia32_sys_sendfile+0x220/0x220 [ 1821.976696] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1821.977872] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1821.979031] do_syscall_64+0x33/0x40 [ 1821.979869] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1821.981025] RIP: 0033:0x7fdf91659b19 [ 1821.981860] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1821.985999] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1821.987719] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1821.989322] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1821.990924] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1821.992534] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1821.994134] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 06:01:43 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 06:01:43 executing program 0: clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) r0 = socket$nl_generic(0x10, 0x3, 0x10) fcntl$dupfd(r0, 0x406, 0xffffffffffffffff) 06:01:43 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 06:01:43 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 56) fallocate(r0, 0x0, 0x0, 0x1000002) 06:01:43 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) creat(&(0x7f0000000040)='./file1\x00', 0xa8) recvfrom(r2, &(0x7f0000000080)=""/11, 0xb, 0x102, &(0x7f00000000c0)=@in6={0xa, 0x4e24, 0x3, @remote, 0xffffffff}, 0x80) fallocate(r0, 0x0, 0x0, 0x1000002) 06:01:43 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) openat(r0, &(0x7f0000000040)='./file1\x00', 0x108c0, 0x151) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 06:01:43 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r1, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000000040)) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) recvmmsg$unix(r2, &(0x7f0000001880)=[{{&(0x7f0000000500)=@abs, 0x6e, &(0x7f00000015c0)=[{&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f0000000440)=""/2, 0x2}, {&(0x7f0000001580)=""/32, 0x20}], 0x3, &(0x7f0000001600)=[@cred={{0x1c}}, @cred={{0x1c}}], 0x40}}, {{0x0, 0x0, &(0x7f0000001800)=[{&(0x7f0000001640)=""/109, 0x6d}, {&(0x7f00000016c0)=""/98, 0x62}, {&(0x7f0000001740)=""/175, 0xaf}], 0x3, &(0x7f0000001840)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0}}}, @cred={{0x1c}}], 0x40}}], 0x2, 0x2, &(0x7f0000001900)={0x0, 0x3938700}) sendmsg$nl_generic(r0, &(0x7f0000001f00)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x29000000}, 0xc, &(0x7f0000001ec0)={&(0x7f0000001940)={0x554, 0x38, 0x300, 0x70bd2d, 0x25dfdbfb, {0x8}, [@typed={0x8, 0x3e, 0x0, 0x0, @ipv4=@local}, @generic="a4ffe7d85ca51295025517068189fb88d83ee5aaf5893ac58fcd0f73a6b235bf8677610d572899593e3d6211bac91541073aa5b3d1c8dde7fe6978b4f0227c229c1f9482e054c46fccc17dbb45385e0a07c299ab2e6f16e54e714a6f0aba2b4ae4d09bac25c5f0424a9ec7efea718510703008bc12ba6ee02712dbc3da6bc08f64e653f5ae0b392fc6b9d7126298e450b48b0856e9f4d2a5b2598c61f0816ebe253cf2082b303ce69cd49aec66dce9251f268822a65c7a708f501d4b4c54bf7b1ceee474a493ba60c71d14bab7fb85", @generic="c4a8e77d2100c30be45237ee96c2c8eeb42747178895fc6e83ab997c3ac6a069406a8e0a640d03eb47436dcb0dfc11b07e3448713a5180b76d6119f62a715a6be52296c6e8128f1cd6e502afaa9cbc9ca406298bbd14e1b337e844a8c4c42d202d08fa16cd8740b109cf45eb330bd9d8c95a1b329bfad55605e6c3874ae6713cfc0c8dd017f20ab6010df2b087bf6203c76dce19dbf6cfe4d1cba57fb5917629880741e9e93716e0ad6d50c639c4ca0e655ba6faaf7233166e48c3d602e20368c9da138dee6ad9fc016bff3243ddf1f9ae5a331e6c23767fe2afc4eb", @nested={0x24, 0xd, 0x0, 0x1, [@typed={0x8, 0x81, 0x0, 0x0, @pid}, @typed={0x6, 0x5e, 0x0, 0x0, @str='!\x00'}, @typed={0x8, 0x6f, 0x0, 0x0, @uid=0xee00}, @typed={0x8, 0x26, 0x0, 0x0, @fd=r2}]}, @nested={0x17e, 0x63, 0x0, 0x1, [@generic="03c58b44f252fe9887712266f5b2d6332965c0c514e7228e8c3d238e49f5cf39b4571294db16ab638cc65796947780f6b460db38f6a20ce2fbc15475267f51bb55dbfbdad7abb2d746cddedc2ca457eee5581459b19f661a4821bc8397ed385ffe48adbdf608df6ac4de58787eda3f3b09d836df2fda42287578f26737660740fe70c2362483e2aedbaccb5e6b3ff99e0298ebaa2ed7fdbb2c56b746a45d3d4ba08ba4ddc94903bb94c1efed69ef35b175311e35d772b67db8691b54ddccc06732b64fb6f0d369d856", @generic="2c0fbc2b7a53ecf2dd7bd2fbd50305b14bd1fa9ce3f494c1a8f9d5718954f2f5e008e701ffc393fa76d3bb65747c8d9dd2c5762d72a63262c3f9ca19b602e403740544a4b8e73930d7adb2c5b59b2bda617a7f7a0fed0ea74336e8e699718f5a7ce0b79827697f59ac63aba8d20f71f013ce3e2060f4ca69425bb010ce4205c141337c626bd310434c12fd338fb32ef7d35616b25acb7bab1f9ab1f5371e07be32418af4fba24fd748b41cc01dfbc79d20"]}, @generic="31f6fd6283d97f4837536a71e019c8cadd68c07eb705e0928fe6b5266bdafea4787a45ca08712d64a9f72b1d9f4e67f872f6a540d29f668c946c1e81acdafe385f1ec1a9cd5d65d76c1a16908b759812f5b0a0469defc4c3bb882ff1c094432eff80cce5acf7d76f05e48faeec96924ec7e0151c4bf16c03b7e0acad7d740fd5146fa9ed5d92dee8d34dc8c825c016dc97eb753d684e8dc333303c99449afcb97bd30cc8deb8054e18844ad26ab8e8a035d70166af779ecf298358a28822f7af162f75038d490a054d41211a5c301c5c49c2ccc195a986624a89c9fd7f28f718", @typed={0x4, 0x2a}, @generic="9241283e335aad51b3017a3e4c0e372aeef418a98775925b15a03952cc376fd6d302e05d442ef46eb7a525c6bc14a2a2891b97c484e3bdbe333da40cc4ef585617e16013292db0fc97308b1be8fc25ef7ad50f05b1f8de0b6fab5a8a8411de683961e91f4650cd0ed222578ffb38ce3779934e2149bb232efb81cef3587fee5cd77e881103af1e146321da4e783b70", @typed={0x8, 0x83, 0x0, 0x0, @uid=r4}, @typed={0x6c, 0x80, 0x0, 0x0, @binary="e38d9a9ceab8f966a62953c1994796a1b1328412afa049ef36a23407909acc58eeb4864e2778b3da901549f0ffd73f9a77f0c9d7973231ebe33d212587be37d36ea497962d017995ff4e0d17b7c16542d4659ce4c39e8e87217943027057c61637f7f74a5302dc4a"}]}, 0x554}, 0x1, 0x0, 0x0, 0x20000855}, 0x4000000) fallocate(r0, 0x0, 0x0, 0x1000002) 06:01:43 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) [ 1822.416321] FAULT_INJECTION: forcing a failure. [ 1822.416321] name failslab, interval 1, probability 0, space 0, times 0 [ 1822.419424] CPU: 1 PID: 9940 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1822.421250] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1822.423421] Call Trace: [ 1822.424138] dump_stack+0x107/0x167 [ 1822.425104] should_fail.cold+0x5/0xa [ 1822.426114] ? kmem_cache_alloc+0x2a6/0x310 [ 1822.427258] ? create_object.isra.0+0x3a/0xa20 [ 1822.428477] should_failslab+0x5/0x20 [ 1822.429490] kmem_cache_alloc+0x5b/0x310 [ 1822.430583] ? mempool_alloc+0x155/0x360 [ 1822.431673] create_object.isra.0+0x3a/0xa20 [ 1822.432847] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1822.434141] kmem_cache_alloc+0x159/0x310 [ 1822.435271] bvec_alloc+0x148/0x2f0 [ 1822.436258] bio_alloc_bioset+0x40a/0x600 [ 1822.437355] ? bvec_alloc+0x2f0/0x2f0 [ 1822.438400] ? iov_iter_npages+0x1fd/0xa70 [ 1822.439581] iomap_dio_bio_actor+0x518/0xef0 [ 1822.440806] iomap_dio_actor+0x36f/0x560 [ 1822.441888] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1822.443147] ? do_syscall_64+0x33/0x40 [ 1822.444248] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1822.445669] iomap_apply+0x289/0x810 [ 1822.446646] ? iomap_dio_rw+0x90/0x90 [ 1822.447666] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1822.449148] ? mark_held_locks+0x9e/0xe0 [ 1822.450043] ? filemap_check_errors+0xa5/0x150 [ 1822.451018] __iomap_dio_rw+0x6cd/0x1110 [ 1822.451921] ? iomap_dio_rw+0x90/0x90 [ 1822.452801] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1822.453810] ? ext4_orphan_add+0x253/0x9e0 [ 1822.454748] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1822.455852] ? ext4_empty_dir+0xae0/0xae0 [ 1822.456780] ? jbd2__journal_start+0xf3/0x7e0 [ 1822.457806] iomap_dio_rw+0x31/0x90 [ 1822.458634] ext4_file_write_iter+0xe0e/0x1530 [ 1822.459661] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1822.460669] ? kasan_save_stack+0x32/0x40 [ 1822.461597] ? kasan_save_stack+0x1b/0x40 [ 1822.462522] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1822.463658] ? iter_file_splice_write+0x165/0xc90 [ 1822.464747] ? direct_splice_actor+0x10f/0x170 [ 1822.465767] ? splice_direct_to_actor+0x387/0x980 [ 1822.466842] ? do_splice_direct+0x1c4/0x290 [ 1822.467819] ? do_sendfile+0x553/0x11e0 [ 1822.468705] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1822.469743] ? do_syscall_64+0x33/0x40 [ 1822.470613] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1822.471824] do_iter_readv_writev+0x476/0x750 [ 1822.472836] ? new_sync_write+0x660/0x660 [ 1822.473763] ? avc_policy_seqno+0x9/0x70 [ 1822.474671] ? selinux_file_permission+0x92/0x520 [ 1822.475767] ? security_file_permission+0xb1/0xe0 [ 1822.476862] do_iter_write+0x191/0x700 [ 1822.477742] ? trace_hardirqs_on+0x5b/0x180 [ 1822.478719] vfs_iter_write+0x70/0xa0 [ 1822.479580] iter_file_splice_write+0x726/0xc90 [ 1822.480655] ? generic_splice_sendpage+0x140/0x140 [ 1822.481773] ? security_file_permission+0xb1/0xe0 [ 1822.482855] ? generic_splice_sendpage+0x140/0x140 [ 1822.483967] direct_splice_actor+0x10f/0x170 [ 1822.484957] splice_direct_to_actor+0x387/0x980 [ 1822.486006] ? pipe_to_sendpage+0x380/0x380 [ 1822.486977] ? do_splice_to+0x160/0x160 [ 1822.487878] ? security_file_permission+0xb1/0xe0 [ 1822.488967] do_splice_direct+0x1c4/0x290 [ 1822.489899] ? splice_direct_to_actor+0x980/0x980 [ 1822.490975] ? avc_policy_seqno+0x9/0x70 [ 1822.491902] ? security_file_permission+0xb1/0xe0 [ 1822.492991] do_sendfile+0x553/0x11e0 [ 1822.493857] ? do_pwritev+0x270/0x270 [ 1822.494714] ? wait_for_completion_io+0x270/0x270 [ 1822.495813] ? rcu_read_lock_any_held+0x75/0xa0 [ 1822.496854] ? vfs_write+0x354/0xb10 [ 1822.497693] __x64_sys_sendfile64+0x1d1/0x210 [ 1822.498697] ? __ia32_sys_sendfile+0x220/0x220 [ 1822.499742] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1822.500897] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1822.502055] do_syscall_64+0x33/0x40 [ 1822.503089] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1822.504715] RIP: 0033:0x7fdf91659b19 [ 1822.505759] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1822.510894] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1822.513141] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1822.515076] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1822.517011] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1822.518940] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1822.520880] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 06:01:43 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) mount$cgroup(0x0, &(0x7f00000000c0)='./file1\x00', &(0x7f0000000100), 0xc0000, &(0x7f0000000140)=ANY=[@ANYBLOB='xattr,noprefix,cpuset_v2_mode,rootcontext=staff_u,mask=^MAc_WRITE,\x00']) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r3 = mmap$IORING_OFF_SQES(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x2000000, 0x10010, r0, 0x10000000) r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r3, &(0x7f00000016c0)=@IORING_OP_CLOSE={0x13, 0x2, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r4}}, 0x3) syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./file1\x00', 0x100000000000000, 0x6, &(0x7f0000001580)=[{&(0x7f0000000240)="a0305e5909a492e2ad897482491cc680a826416549762374f41df5c746044351085b58b4f848744821585364ec30659d3f6eb4248f0c2350b704c566a5fc4279dcad27743db8ba995fd71f3a457550a8c17fff41208b47f06a06c751", 0x5c, 0x5}, {&(0x7f0000000300)="3899c33603f9c6436e02d05e8f1ac743141eacdff05ec9e37ed4d2b8e64d403b95e260f99aabbb6af1", 0x29, 0x80000000}, {&(0x7f0000000340)="8824a7bc36d4ef1a956a62a404718ef4528ba4f5", 0x14, 0xec}, {&(0x7f0000000380)="93b5d0e4648f64730fd7f2718cab8c217525025a669691f85a22254e3b82ae8f316060184c4335c71ec0dbd2493119c366da36ccfb6a3a9c1ab5dc57d12ed9147f848170ea5e31087d572acd22bce15e69a9c764e9e4789322ee1f9dd07d2af0fbe1317b2d4480018b41701e3fcd74a395ba68da882018d18973e598c6045cee7df6c4843ad7570e8b05bcee001d3828164fa8dd0658673b792e211435b7071112e89f5b78cb8b46c459ce33777a0e9f475607c65e53f8d159df4eabf4ddac2e34fb7338b28b505f57fffda9e1af85bd55aa7c9a842239b5524ce4834b727ff268d6caf0a284cf1f3ac9aaced0", 0xed, 0x7fff}, {&(0x7f0000000480)="c86ea58f436dc6409425122cc06efdf7cdecb2645ad6d801e16872131f3738c929fb13bf44ae1f15e6b00fc44eea4353b0354bd7a3264129d2cd37c4ed3d0f944a49e310bfa809bf576af87f43ee6ed2131aa6892132c7c08b4e212817937cea08261d0bb59921bbd0aa83b876498d467b050b4f5d2ed909d31269db1c4b835dfa23a6572b7042003471351d7e22160e34687612e15e7ccc311a8cc672b2283704e4c1f8580e270cef1b11d31a7a29063e1072c265e271d5e8656a1c8d323e2554ffc80e7695b31fa0500491cc2a3b5371ee989fe391fcfd3805e32c44e781d4e3a3c4442f6247201d39e1e5b6", 0xed, 0x8}, {&(0x7f0000000580)="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", 0x1000, 0x80e}], 0x10, &(0x7f0000001640)={[{@grpquota}, {@grpjquota}, {@grpquota}, {@prjquota}, {@quota}, {@minixdf}], [{@smackfstransmute={'smackfstransmute', 0x3d, 'cgroup\x00'}}, {@func={'func', 0x3d, 'POLICY_CHECK'}}, {@permit_directio}]}) sendfile(r2, r2, 0x0, 0x100000001) r5 = open$dir(&(0x7f0000000040)='./file1\x00', 0x20000, 0x24) openat(r5, &(0x7f0000000080)='./file1\x00', 0x14000, 0x0) syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) fallocate(r0, 0x0, 0x0, 0x1000002) 06:01:43 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x2) ftruncate(r1, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r1, 0x40086602, &(0x7f0000000000)) r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x290040, 0x40) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) copy_file_range(r0, 0x0, r0, &(0x7f0000000040)=0x1000, 0x9ff, 0x0) 06:01:44 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa418b6d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000200)='net/if_inet6\x00') read(r1, &(0x7f00000002c0)=""/225, 0xe1) r2 = dup2(r0, r0) write$binfmt_elf64(r2, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], 0x3c7) r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x266d40) r4 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ptype\x00') io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000040)=[r1, r2, r0, r3, 0xffffffffffffffff, r4, r0], 0x7) ioctl$SNDRV_TIMER_IOCTL_SELECT(r4, 0x40345410, &(0x7f0000000100)={{0xffffffffffffffff, 0x3, 0x39, 0x3, 0x8}}) r5 = fcntl$getown(r4, 0x9) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r6, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) fchmod(r6, 0x8) r7 = fork() clone3(&(0x7f0000003380)={0x218888000, 0x0, 0x0, 0x0, {0xe}, 0x0, 0x21, 0x0, &(0x7f0000000080)=[r5, r7], 0x2, {r4}}, 0x58) r8 = openat$sr(0xffffffffffffff9c, &(0x7f0000000180), 0x4041a0, 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r8, 0x40345410, &(0x7f00000001c0)={{0x1, 0x2, 0x1, 0x5f7d73d1328c9fde, 0x4}}) [ 1822.575109] EXT4-fs (loop1): VFS: Can't find ext4 filesystem 06:01:44 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(r0, &(0x7f00000002c0)='./file1\x00', 0x185143, 0x74) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) r3 = syz_open_dev$ptys(0xc, 0x3, 0x0) sendfile(r3, r0, 0x0, 0x43c3fc9c) 06:01:44 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @perf_bp={&(0x7f00000000c0)}, 0xdc7c6a47f0c2188d, 0x0, 0x0, 0x0, 0x0, 0xa418b6d, 0x0, 0x0, 0x0, 0x0, 0x20000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9) r1 = syz_open_procfs(0x0, &(0x7f0000000200)='net/if_inet6\x00') read(r1, &(0x7f00000002c0)=""/225, 0xe1) dup2(r0, r0) write$binfmt_elf64(r1, &(0x7f0000000cc0)=ANY=[@ANYBLOB="7f45ec8ab26827704b3500000001000003003e0000180000bd0300000000000040000000000000001e0300000000000006000000000238000100321f0008000100000070030000000500000000000000ff00000000000000a000000000000000010100000000000003000000000000001f000000000000005563cd9a58df47eb7fe1862c4d6716e03dda73ad79bdf1e9a003bcf3986c50d4e8aa28c957fb3d2f3a377ec19cccee4be2003b4f8551fca880d37a4b11600af6227109e9493fb7702e12a94b4c79f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e100000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b384c5f2024997ba00000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000009139d4c0081fee640000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ca824ebda0c84196749bba61a02d950ed03c31d36ce1ad9b4e7c056a3acd9feb813360802486d4efed4d530e585bc699f4d6b47ba7bc9a9c3d8c2e2fe03cb819116f5af1dca9ec7b1d75cfb61da8d2544524a9434a1c795c00000000000000000000000005197ca73e75f8f95c680bae4da3d5d6563611c4fd797ce90c61a9021485c0ab5295437f585db3ca47c44cbcab392aca17898548ce36bc29323a3b0494813399f57c897989b73d27af72fcbf1b30dc50b8d50f79e8f6f5410eada5919225ad9527ea88e651c3c0eeb96ae480d0c2ff09b227bd0000c90fa60000000000000000"], 0x3c7) r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x266d40) r3 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ptype\x00') io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000040), 0x0) fcntl$addseals(r1, 0x409, 0x8) r4 = openat(r1, &(0x7f0000000080)='./file1\x00', 0x88681, 0x4) r5 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x1, 0x0) openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x266d40) syz_open_procfs(0x0, &(0x7f0000000140)='net/ptype\x00') io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000040)=[r2, r3], 0x2) r7 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r7, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="000200000040000000000e0000009a97bd376d02c47be969e6bcd41002167184cf05e93fbaeb198a987d5ad5aa913832b8f9e5c5c0aa324b12fd6d6957301068f6143a15b1c108c5882995b9c265f7bb8eecd8aef20cb989b041469ee2d3b11d1a64534a0dfccaab86011f6daa1dfc1a6bb76988a886716b1eb1cc68557f847753c753a89dac3487d4ef98cd207a8e199a97c48e0ece766b2e6cd2546462356f60a76f995e19b3f06cd55260afc21a0963a4203441357e395a8ab58c665f251ca83c9dc455a6ca8e6af95c90dfa723999501c635f62e4d55493f58996bdd0c947944248ba8e5a11282dd1bcec320f7d74ad0d260124e2138603ea5c0c93e39838e40de0f0b2291bce157e79643c5e7c07acc9de4ad4b5fd5fc8a00c1d3dea2f1c8d3815214e6e645e1076c929c85b8c095ceae012e5f8f6fef451c79089c31fea5d0230ffd3cf66ab39d5d1218a44048ee0b1bfd7250ead4c1fcb9c8a0d793738a3584140eceba18fffbd7d21248bfbeaa3a60ab4c425834cb3851bb5d"], 0x14}, 0x1, 0x0, 0x0, 0x60004001}, 0x0) ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, r7) sendfile(r5, r6, 0x0, 0x100000001) fallocate(r4, 0x10, 0x0, 0x1000002) 06:01:44 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x60) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(r0, &(0x7f0000000000)='./file1\x00', 0x1, 0x84) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 06:01:44 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) openat(r1, &(0x7f0000000040)='./file1\x00', 0x214040, 0x88) fallocate(r0, 0x0, 0x0, 0x1000002) 06:01:44 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = pidfd_getfd(r0, r1, 0x0) r3 = pidfd_getfd(r1, r2, 0x0) r4 = openat(r3, &(0x7f0000000000)='./file1\x00', 0x547840, 0x70) sendfile(r1, r4, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 06:01:44 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 57) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1822.909468] FAULT_INJECTION: forcing a failure. [ 1822.909468] name failslab, interval 1, probability 0, space 0, times 0 [ 1822.911851] CPU: 0 PID: 9988 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1822.912942] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1822.914167] Call Trace: [ 1822.914563] dump_stack+0x107/0x167 [ 1822.915097] should_fail.cold+0x5/0xa [ 1822.915669] ? mempool_alloc+0x148/0x360 [ 1822.916302] ? mempool_free_pages+0x20/0x20 [ 1822.916947] should_failslab+0x5/0x20 [ 1822.917519] kmem_cache_alloc+0x5b/0x310 [ 1822.918129] ? mempool_free_pages+0x20/0x20 [ 1822.918772] mempool_alloc+0x148/0x360 [ 1822.919359] ? mempool_resize+0x7d0/0x7d0 [ 1822.920002] ? lock_downgrade+0x6d0/0x6d0 [ 1822.920623] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1822.921342] bio_alloc_bioset+0x36e/0x600 [ 1822.921858] ? bvec_alloc+0x2f0/0x2f0 [ 1822.922362] ? iov_iter_npages+0x1fd/0xa70 [ 1822.922997] iomap_dio_bio_actor+0x518/0xef0 [ 1822.923657] iomap_dio_actor+0x36f/0x560 [ 1822.924283] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1822.924977] ? do_syscall_64+0x33/0x40 [ 1822.925553] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1822.926332] iomap_apply+0x289/0x810 [ 1822.926790] ? iomap_dio_rw+0x90/0x90 [ 1822.927261] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1822.927974] ? mark_held_locks+0x9e/0xe0 [ 1822.928484] ? filemap_check_errors+0xa5/0x150 [ 1822.929046] __iomap_dio_rw+0x6cd/0x1110 [ 1822.929543] ? iomap_dio_rw+0x90/0x90 [ 1822.930021] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1822.930584] ? ext4_orphan_add+0x253/0x9e0 [ 1822.931102] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1822.931711] ? ext4_empty_dir+0xae0/0xae0 [ 1822.932240] ? jbd2__journal_start+0xf3/0x7e0 [ 1822.932795] iomap_dio_rw+0x31/0x90 [ 1822.933243] ext4_file_write_iter+0xe0e/0x1530 [ 1822.933811] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1822.934369] ? kasan_save_stack+0x32/0x40 [ 1822.934877] ? kasan_save_stack+0x1b/0x40 [ 1822.935383] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1822.936032] ? iter_file_splice_write+0x165/0xc90 [ 1822.936622] ? direct_splice_actor+0x10f/0x170 [ 1822.937181] ? splice_direct_to_actor+0x387/0x980 [ 1822.937769] ? do_splice_direct+0x1c4/0x290 [ 1822.938297] ? do_sendfile+0x553/0x11e0 [ 1822.938781] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1822.939344] ? do_syscall_64+0x33/0x40 [ 1822.939845] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1822.940493] do_iter_readv_writev+0x476/0x750 [ 1822.941042] ? new_sync_write+0x660/0x660 [ 1822.941551] ? avc_policy_seqno+0x9/0x70 [ 1822.942047] ? selinux_file_permission+0x92/0x520 [ 1822.942637] ? security_file_permission+0xb1/0xe0 [ 1822.943226] do_iter_write+0x191/0x700 [ 1822.943701] ? trace_hardirqs_on+0x5b/0x180 [ 1822.944248] vfs_iter_write+0x70/0xa0 [ 1822.944712] iter_file_splice_write+0x726/0xc90 [ 1822.945291] ? generic_splice_sendpage+0x140/0x140 [ 1822.945899] ? security_file_permission+0xb1/0xe0 [ 1822.946490] ? generic_splice_sendpage+0x140/0x140 [ 1822.947088] direct_splice_actor+0x10f/0x170 [ 1822.947626] splice_direct_to_actor+0x387/0x980 [ 1822.948219] ? pipe_to_sendpage+0x380/0x380 [ 1822.948743] ? do_splice_to+0x160/0x160 [ 1822.949226] ? security_file_permission+0xb1/0xe0 [ 1822.949814] do_splice_direct+0x1c4/0x290 [ 1822.950323] ? splice_direct_to_actor+0x980/0x980 [ 1822.950909] ? avc_policy_seqno+0x9/0x70 [ 1822.951407] ? security_file_permission+0xb1/0xe0 [ 1822.952014] do_sendfile+0x553/0x11e0 [ 1822.952486] ? do_pwritev+0x270/0x270 [ 1822.952953] ? wait_for_completion_io+0x270/0x270 [ 1822.953547] ? rcu_read_lock_any_held+0x75/0xa0 [ 1822.954113] ? vfs_write+0x354/0xb10 [ 1822.954573] __x64_sys_sendfile64+0x1d1/0x210 [ 1822.955123] ? __ia32_sys_sendfile+0x220/0x220 [ 1822.955800] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1822.956443] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1822.957077] do_syscall_64+0x33/0x40 [ 1822.957529] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1822.958150] RIP: 0033:0x7fdf91659b19 [ 1822.958600] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1822.960858] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1822.961778] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1822.962640] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1822.963508] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1822.964395] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1822.965263] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 06:01:58 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 06:01:58 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 06:01:58 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 58) fallocate(r0, 0x0, 0x0, 0x1000002) 06:01:58 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r2, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r3, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) r4 = openat$cgroup_procs(r1, &(0x7f0000000040)='cgroup.threads\x00', 0x2, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) poll(&(0x7f0000000080)=[{r0, 0x4200}, {r0, 0x201}, {r0, 0x4082}, {r0, 0xc}, {0xffffffffffffffff, 0x400}, {r0, 0x3010}, {r2, 0x1060}, {r3, 0x100}, {r4}, {r5, 0x4026}], 0xa, 0x0) r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r6, 0x0, 0x100000001) read(0xffffffffffffffff, &(0x7f00000002c0)=""/225, 0xe1) r7 = dup2(0xffffffffffffffff, 0xffffffffffffffff) write$binfmt_elf64(r7, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], 0x3c7) r8 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x266d40) r9 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ptype\x00') io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000040)=[0xffffffffffffffff, r7, 0xffffffffffffffff, r8, 0xffffffffffffffff, r9, 0xffffffffffffffff], 0x7) ioctl$SNDRV_TIMER_IOCTL_SELECT(r9, 0x40345410, &(0x7f0000000100)={{0xffffffffffffffff, 0x3, 0x39, 0x3, 0x8}}) io_submit(0x0, 0x4, &(0x7f0000002500)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x2, 0x8, 0xffffffffffffffff, &(0x7f0000000500)="815aecf48ace6073c0f207042d7e8e95fbddff35d4ad737d0ba1d37e9eff0bd2af275abca2942a9f885f74bca512221e3c4e7c46c6cdfa03dcaf834c024a6cc736031b2864d045e1b2e1b479412dd4434aa4b50fb391c43c67e1ba02d7dcf657a3e8f393450ac25cfa60c6d15fdfe080ba5c76359ce29bdebcd8c419c7d3786c4689422085e3aad61e05fb7c89064ba6fb006c59f9e6610aa87975842e5efa4d9e49e8a8c8397ebca2abed96e4c55d8f9890609c8bd05154ff2edee55d42599f871286fe92bec09a6fdbb0fdc59ef4aaa334a7cc977003ea27046a11eedc9e90723e34fcaca44b966671cfbdd2e9fb1d8f23dae83735339a70e78333365978348bb01606fd592c6496d57579e02e68b099f2f0a54147ac128ea75e5d935ff186b0f427a4250fc82a45b693dbcc9f95bc48e79ea61d61de57c809473497899af174e16c641ef751b2d56413e6f7b85217e378574b3ac4d031fa58e870c4d46d20ac7ba34f39f50dba510fee4ca26aee59dd6524fb8e05cefdf5fb581c7dae9cb13e57599cc890d0d18d9576ab726777b451c6d17c0e7e6a63c1075b469e2950e32e453c79b48a3e03b9b061ccd204e0524b225436b2ef93827c920c24f0039b0a2dffa579295dc9dddd2e34c5476424cf8444ac2553999dca10547474854add166e2850ccc30c03703ae7293cd5b592ce88cc97668a676a7f326e49150f2cf40c6d51664bf10351185892c9f2f18dcb007275dacd953fb861397e7e2de5e9c802dbb10e4c5c6c082cff7cb408ecb374eb81068b78a788de442a6005ef1beee61741c9416fe1da729231ef20b157e9774dad481feb610ca08e14580587656dd6d371cf6de1199a379023015d16ef526968fdacb178fcad72185c248d8d4cae3d9e813821c68fb8a4575c6ab8fe2fa0cdd9ffbb9d206ac293ad8111e178f6de2fadb76cee364d53601d4576819c74736c9b88e354ef0b78c7a6e573b338a9c85c843a3eb69940754c8ee243646b04d0845667a335415cc43c85b6a147fb99bfd16a58c7653209fd6fbbcf0bd1fe7ad0f1d817da824ab22417abe9b06c579bd0023117707460a009240c2a20042eda6cbb8c9dceedf21c42585046377727344a2d5212f9746d8b56d9273cea7b43cbd9936b37837da5bc5f572f31698ea3e58a44e629b603381df21f44b5fa1dd8d9170b753a1bb278a51474e37ab522570bcf1d03fdc44f1d448e70376389d1e6b5ce1d70c56274ae29c5adc638825ef176e1d91a5d2550d787c5d7b8cff0005a2ce16a85851fde3e286e106c61a39e4f88c99241ba6c20bb17bc75691194f7d83148f612260eb729fa1d855a752ee74571e29319162b328ee4183318b5d3c056a3982239e95f3a449e0e72428a3b5fe11aa082c3adc03ffdd12c96ca1a2c4dba62117322302a4474b1746131c32b527027cbb4201e535336d5f128d05c4a7d3f5b7b224e536ca62650338ba09e3644f5327677e88b42481750e520357f7afcbe8b581ab297bf1fc7062820e97cb05f018ea9f00293875040b2bfcf92175aa663587859ccb2c11d8da0877151b2ff0f2d04ce2379c6a067a47cf62ccd7543a713e4d7d09078d891e55cfdefa9b5e2b7b6cf7ed0f921d3aed01b32f2ac43ec8a4aa5eacd5a21e99df75f650a0219d5e01b4913f8ac4fc68fbf199a01425b8154f639ff16408ada5781c8b74a89c1161b5d46071b67e293f0d0c431aea85bd344d698da4a91c5c7a32f3b57318f3c43600c04e136a4710b26cafd4366ceac423a8f82e77a827e4ae0a9c065d917dbfca4439891bf2b8e1f6191c81191a6a744c8c6e394663c0372435faf9c970d4310832707b8ff5c8c0905e69b9cc26ee302a248c5b6ccde8bc183a4db8d6bd6d7c775967e5cc37379fcf128c576e4f0f54eafd9d2808207dc15d20265c96bb84384b242345aa9703c2622bd97c4939c71b72eea99c05ac048b49383e7d4477304ec6bdc5e1129e289ec451d3b36242b933126838f63e9077d9e796a3073612316d18f6fd5e9d0f7102421baea7faabffc37aeb933558832c7023f35d48e7e7bf77ed960c657021404daf79c0f38efae1392fcd12b6377e0c957421a9672f7e62bb9c4bab871f5a8b6159f2bf5131001803d9d8dee6f67bbc34f4a4e380dafc7724b92c259152835ee9e06f86536ceeaabd2d4d68c8ea4e53a46495baf4d6b07d48f8a39a877ad7c6836002777e3b44ce1046726c02af1e9bbc74ea4f50dde4caa43e4bce9487a799fcbbf55d0725885022481d8a8f27ff49ebe70a29d26a7a81c48bfd6a587a0a05a304ca7f38d9ac803c1c30ebe56a8fddce34d72f1236532d3b6ac606010a9e60390cce469070ac7ed01abf63578c3c1a1a8b44b465c20a1dcf232b42c7f657d8fcddf2b2aff05797dbd34e7e72eb683b82db2c2425cd05cbf0c64b28756ce4fd32fa6bc2c015cf3bf9f91bd3796e77bec95bf5499ffe2a590cb49cb4ffb5d99b478285d4c881f3ad3b5046aa485cc1791530dfe91ff1629d66058e7a0e61bb682530f63e93a4f0b48c741cbc17055b30f4520cfafb0bf9000c7301bdda7f686792a170d8d5ef6c7da18652214f30873440c653c7fa873f19042106b08f7ce62f4e1914be75bdc8b8ee4d367a364caf8c480757fbaa9893382a7681a69671d0e13ff5039b42ecc4fece50ea36a0bc4a4129e8ffc448b9bded986e9cac6beb33507e2cae80fb391493475ff72172def34a78734a771d4dde18e62982a53f8eb3dbe93d179c22a4c15f08bcc0435ae87419361d044f596b749fd30006942919ff3aadbeb4986d5f84214edf6fd73e217170467b38d90737460e02a7cf0cf6179716731b2fb8abe2a76d6b74fd82e3903da372ee258d0aeac360c6225da53757cdc3bb30ef77d3bbe126084198c3c2819e3b8c288e4f167b6478921270822c484598d07e230079f5fd323fd995b7e5587c0ddbb45ad7f854521809fd31e940a9bbe89e3385b4f8fa9f32e2ecffedb6fb392b23e30ca5897234ed620a62c7ccc99b997cb78dab589933506577df4a90e4c57545d5bff862036a0de771eb71a18882cda12c507e0f9d77de240ada9f5b7a76ffc5587c0f6ee003b8d1932e8ba91a78e0067dc041ac95adf060f3b401cd3ec89fc2f356e9f69d3695daf61718bd54ee272e009c4d28f5ebb0ac03ebfbfeb8e7cd6f74edc6cec07ccf8c14e570d1cc91ba7d04b1c949b3a61628c21b16893221a1a1c7df957aa600669096b7b5893b793a817590c57d62729f3414a0d0809f83509ee7550534e987e1fc437a1e20b78ec125f7eb4e54d5a75e61bdf5e9f0a4071ef4d5b7b2fea44f09f6cc9e857dcee3c38061991369fc018d6850978a360212d1296e2c95a65b8805387156fe5f62635e5c2a11904a8a36b1618ec689cd180a9ffb89a288b751a94fd36725a9c9f94c6826c6be85e7ce710b9449a33ab228bcc39404f44b053ea67bff2acb6a0c31a9c518ea16f1cd2798e1f6080d64d858a6c0f75e697aea3fddc866f29a4a739e100894c68ea9d6cb9bf4e6c52cc7d4f7a618002dd4e4f6e6d3742f38b047e7320965ea0e05d90fe353c42f7346685fc5171a2dc78bdf1717dc9c4fbb675a954d0e0aeeb953f24a4c05091360ea12adfd54af5785b4fa30f1f245af4aa8d9ea8fca210f538fc264c90ac6b16c1aa84fa227d54c5ec0f2859ae3ba0620baebf187ba8a3a248e53a59601ba7ee44f8225bb7266a1b5eea3fe2d5cc7bfc5f5dee203d5ce0218d6004187819056d135198fedadef76ea69380baef2d8d3d200e2d212b0eb0e1e8a2c7ea493d919691f0b024607281c719eb6ea39d67b08d622e3d46e114b0719b9ed4594719958ef187255455cdda8158fa063f214fafc68dfca3e73e223787509c2141d903330364d3b2f490365de44cee0ad30d97376d246de4057c54744509bd4727eb4f78f09d80bc25e21dece661d64c9039c25574e0eff82c8b51d87ee192874c5184d9003bd24896decc0fe45a35a9f70d1d00f3a79a7679c1482bfe3c2edf01ca2ae498b46a782d24d39a5ed1a4e82e18896eba6ecfc64d15c94d9fe281aa63bb11c7c2147441e23395c4219ba08f9a60c924136a9d8bd9ee5f3ec428b6c1660cc90dc6096767e655474b5571e1af9c9697dd3c0ff65c10ebec3d76238ce1db30d6486d9cc0186d921a5b0b5d178c0cdbe9a95a7ee9cd9f6098789b584f8a2fbc74ecba06068f5e74f4aa923af5048dda9aa1abfdd67d4b8a3b907c9a5da2aaab37689b2e29cd23903edad1afdc113bd6d63aa55e007247ba12a2c9cdaa6bf1e4c7dcd1a0cf9070d2b595c38ab911328faa4224a63e43d7c233ab8d557da9c51f5922d54b2d7482989ac7be168f368429d7f402a4e30c2a96671978cef8a262b75c8a53c025e9f1da414a084c8c9c4c390c1d6f9d32dd98c383747abc62a31d6a5a80a220f3cc17bfb7a6c65dd4f3282c800c7e38bdc812c2e1815a60bf4550ebf20032b4947c6123e3d79a13cbc5e08b66bdb753a8106489663c8352982e3f4902ae9fe794f17e8d3fb22a854ce58f16d039541c5cd8931535bca4f19871ed2782d7ee52a14484c6cab3d78598325ffb37714b17f426ccbb541538f33e0e7ca6df08b5fc96d5582a82aa36101a1892d8387589aa5b4bf832411fc37477c75b78676ccc960f24d2b93cdabcb43b4e095994543effdd167284822731615f13584b243933abcb9299a59cb404875cbcca15cf1fafd2ee14b3a5d022185b37d10f885ddb58d557d89d60f44c6566d8ccaffaeec9aec0a52a66464f8754c694b3889cb2fdbaef5a58bfb6af69d55108f2dddfc0cf61911820586997368759e42044ac058048518053a7dfd2c5dc8f0ab6536debe5a7cc2b0e3eaa4fe214c8f2cc900b6fff7121ccd5343724c50d283ac646c9b8bc1c6fade10748dbdf95ab30b0a1a1de934dc85d3e0c29d95658458132d1b74c95418bde7a32e3048edb8d46ff3e2809fe7ab37edb7c1306aa8719a2dba514831b17ac58a7c04468f8cec2f1f6486820a61149c3c8dd138e4d7cda0083a24421c2ebb564af846b32d7330b3e6b0a7e464f5a458e3c8a662f15612765ecedf3edcf370a29161cd535194e612a0667027d6b4dd9a012a5f180a2d2f46d72a7e5c2033a58489f93af03bd1910d2cab076d6bf697d5115fc1cdb12120ed8c64233ded6a3f933311af3613dbf52face123602961a8f069ab8f330564c168f684a1ca008252c5dabea0ff84a93d4316d6eaff83ea6ccb61ce97ff5572ea0653f069d28df9ca4ff6599b8ac9f8170cb5731a14a5adc0f3cc5a1bfeea23c6a9e58dc22ad5dcb0a917001eeaa33b7188ad11ec3b77f4ad607409e16bb9ea2a752278aa4e6c15122c4e264e24f8afc1f47e225a8c22302ab9dd73500f7927d1aa8810d19a175c26e2257dd13cf323e154bedab241c0f158cf9e8754f1f095dcb3e9d6642ef92664f6c5bf8de7b6808a035e292ccfca2cccddf81419e7f6c296979bcdea0780615a9249844e611431649bbc8ea0f518e9a497d1b59cf8abf71555edb2345cb15bf4793c39a7f430d7471223112676c12816e8bcdd7b7a866c41b0fc5e4e156b26809a3ba40891548b183e79ff0a7f7f9de7d04fa0bde5b5eb16ca0e1685c78a7ff4bf71d6238074a1ec253eedbb89ae3cff7fcbf1b482281f08a63a837f170abecf430942e38f575fb208be305e2a3f6ae4c5e394fd3b387c3c2cfdd3f0aa85f4c75e446eaedf8cf679573e332faa358e31ef7f91a89a85db236e58eabdd65df93b08da51f10df", 0x1000, 0x0, 0x0, 0x2, r1}, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x3, 0xffc0, r1, &(0x7f0000001500)="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", 0x1000, 0x8, 0x0, 0x1, r0}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0xffff, r5, &(0x7f00000001c0)="eb258743e756e4ff91f280ee7549c6511417dc0c68d748a2f883ae073e660dab2146f7e3f3784885750f3207a5fa8e09b555a50510f01081adf66f06c2d8dad299f9fc8af78fdfcfcf3ab19ae8801972801148ce8a2e30dc918210bccf7a3893c7e14670df147fa4566a97a05b2d0ee6a3b76fc55c3ebc73312073103d06a22329574887035b4d557b23b96de3352a3431", 0x91, 0x1, 0x0, 0x2, r1}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x1, 0x401, r6, &(0x7f0000000300)="df1f7b3e4c16ed8ffebffe312d86567723459cbcca288d648dff64244b35c82ccc971afeaa1a133dee24852f9c1c622463c20fb6819dbd76207f6ab76a62e706ba55ef627415dabda9f4032ec59c728fd0978bf856639ec445dbec45d52504163d481dcbf5393cbea86919074e0eaeb16ed1f5d3d0ab8a3e77eb6d6cdba1eb7ae25858c008bb0fa827177d978b891d9152602a528ac3442d17ea451249f5bf6d44eabcde89e734858cdc31f1e69db261fee5b515", 0xb4, 0x2, 0x0, 0x1, r9}]) fallocate(r0, 0x0, 0x0, 0x1000002) 06:01:58 executing program 0: semget$private(0x0, 0x4, 0x50) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)=0x0) timer_create(0x7, &(0x7f0000000180)={0x0, 0xe, 0x1, @tid=r0}, &(0x7f0000000340)) r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) timer_create(0x0, &(0x7f0000000000)={0x0, 0x1b, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000040)=0x0) timer_settime(r2, 0x0, &(0x7f0000000480)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0) ioctl$KDGKBSENT(0xffffffffffffffff, 0x4b48, &(0x7f00000004c0)={0x7f, "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"}) r3 = mmap$IORING_OFF_SQES(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x200000a, 0x20010, 0xffffffffffffffff, 0x10000000) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r4, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) syz_io_uring_submit(0x0, r3, &(0x7f0000000100)=@IORING_OP_CONNECT={0x10, 0x1, 0x0, r4, 0x80, &(0x7f00000001c0)=@x25, 0x0, 0x0, 0x1}, 0x4) timer_settime(r2, 0x0, &(0x7f0000000080), 0x0) ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r1, 0x8010671f, &(0x7f0000000040)={&(0x7f0000000000)=""/25, 0x19}) clone3(&(0x7f0000003380)={0x100000100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[r0], 0x1}, 0x58) ioctl$KDGETMODE(0xffffffffffffffff, 0x4b3b, &(0x7f00000000c0)) [ 1836.925150] FAULT_INJECTION: forcing a failure. [ 1836.925150] name failslab, interval 1, probability 0, space 0, times 0 [ 1836.927642] CPU: 1 PID: 9997 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1836.929165] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1836.931010] Call Trace: [ 1836.931593] dump_stack+0x107/0x167 [ 1836.932411] should_fail.cold+0x5/0xa [ 1836.933255] ? create_object.isra.0+0x3a/0xa20 [ 1836.934263] should_failslab+0x5/0x20 [ 1836.935115] kmem_cache_alloc+0x5b/0x310 [ 1836.936014] create_object.isra.0+0x3a/0xa20 [ 1836.937008] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1836.938129] kmem_cache_alloc+0x159/0x310 [ 1836.939054] ? mempool_free_pages+0x20/0x20 [ 1836.940001] mempool_alloc+0x148/0x360 [ 1836.940880] ? mempool_resize+0x7d0/0x7d0 [ 1836.941792] ? mark_lock+0xf5/0x2df0 [ 1836.942622] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1836.943770] __sg_alloc_table+0x24e/0x390 [ 1836.944708] sg_alloc_table_chained+0x9b/0x1f0 [ 1836.945708] ? sg_alloc_table_chained+0x1f0/0x1f0 [ 1836.946774] scsi_alloc_sgtables+0x236/0xaf0 [ 1836.947736] ? scsi_cmd_runtime_exceeced+0x1d0/0x1d0 [ 1836.948860] ? lockdep_init_map_type+0x2c7/0x780 [ 1836.949901] sd_init_command+0x516/0x3550 [ 1836.950827] scsi_queue_rq+0xe5e/0x27f0 [ 1836.951715] blk_mq_dispatch_rq_list+0x372/0x1c40 [ 1836.952803] ? elv_rb_del+0x50/0xa0 [ 1836.953597] ? elv_rqhash_del+0x119/0x160 [ 1836.954512] ? blk_mq_dequeue_from_ctx+0x7f0/0x7f0 [ 1836.955589] ? dd_dispatch_request+0x1c0/0x990 [ 1836.956662] blk_mq_do_dispatch_sched+0x7f4/0xa00 [ 1836.957731] ? blk_mq_sched_mark_restart_hctx+0x80/0x80 [ 1836.959281] ? lock_acquire+0x197/0x470 [ 1836.960150] ? hctx_lock+0x7f/0x200 [ 1836.960965] __blk_mq_sched_dispatch_requests+0x2d7/0x450 [ 1836.962156] ? blk_mq_do_dispatch_sched+0xa00/0xa00 [ 1836.963240] blk_mq_sched_dispatch_requests+0xfd/0x1e0 [ 1836.964378] __blk_mq_run_hw_queue+0x12c/0x290 [ 1836.965360] ? blk_mq_start_request+0x3f0/0x3f0 [ 1836.966361] ? lock_acquire+0x197/0x470 06:01:58 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x12, 0xfffffffffffffffd, 0x201000002) 06:01:58 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x220142, 0xaa) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) r3 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000040), 0x40500, 0x0) setns(r3, 0x20000) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r4, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14, 0x0, 0x208, 0x70bd29}, 0x14}}, 0x4008084) ioctl$BTRFS_IOC_ADD_DEV(0xffffffffffffffff, 0x5000940a, &(0x7f00000000c0)={{r4}, "63852aec098d5c376bc557ea25b1d76708b726c74f4922b8c5ee27ac2f07d1fa6da7085f68a055be746196ed9c3e6cc152cc673232c5c01e27eca3536020019e1d9604df2db0fe1e88086f55943f0786424376dfdec0a106ebf8c78126399c3a9012832be57285b2af063e257bc7704a97126d4ada6f6f89ecc7e5e6958859cdd803327aecc4f4e5ca00ceb6bbfa6afe07afe8582ae586c157e020f2a4ae4fbb8087fbaede2ff2d0a380480bd9e1684bc6b90e9b7ad3ca1ed569692aa7dca66a6cb4f0c3fc7e5df167043ea7289b3df459d28c86040323382cf23ad59d1da3dd0bc3b9bd72158bbeb66056b1c8dd478903f6514301d4ab0b8530001bfc5eab790dbf2c60e41c0a215db34f4236e230f760d903fd2cad1549176f287beaa92d455127a1af53a34397225f2390033fa91fbd4c283c763e3bbe7b658c2323dd485d1a8d70e594f26f4c7d52f7c02b512f8ac5bd709013898f32c33d91ecdccf5903ee5550d1d1fb874c9cf05fae366f64c6efde90f2489e80c850cff2e8b437134f29eb6ccadf1f0f57b41fe82483774246f0628df99422c97c891e7f7f97720801a93e24f7bf0f20a686092dcb2841e6b9476ceaa894103bd31e85e9606add1f27afd33270493670abdddd0653bb02d4d1f931c0348e5afc982b7f10ba47d9b1409e33d9a9fd59823ed42074b8a2d2840fb6ed2a76d94301d2d9e7bd9d9b2efd5cec2dc6dfa79fc0d73221c808d586ab5fac13c038bce2df8a7016de19189bdc3bb7796af08f456263785db7fdb3254206ee2d086ab1f18390cedb7f535e53fcd5ef86bc7f5f736d60517fc47167d1e99ed9c8e6510e127276c6e32f77626d499210efaa791d70c0fbf71b27b79db43661ba151c9f1bf4b34c3bc39c8eb50869d26ef73ef8929d5cf529e7bd8f2721f9661c911e9e909f3d374358734844841560dcf442bbaa93415185f87313bf9ff94b441f1d03b861160c9e4e8b5404c57c77cbca97d01a19c2ebda5daa6527da28b7391d1d0cdfb8bf5d73c3c49bdc14d0add52cacadf98340c799fa35cbb4b2d8b9ef878b038f831bd91ef5121966f18d0596b29c09a5cc13a45321f2977f047ac415fbc840b271be96419c4b6fe47bf017139dd7bcb619d3478eaebe07b55690360d4439a793ca866bb86532541a57024dcaa7ea7b7f3caf3a64248c4830a5dd00cb41c9bd540b7ff291519ac0cf134af75d0628cb6d1833d02a1626655a9364aa6c14ecd62733b9d86b1f971160cbf988895bc470425e8bd6ab5e54a0ce5e28271e9634b536cd5cd75ab60be16d707f13f48d76b39100ecbb893a189f9a740eda1d4d8456443ac5058f17e550e318a2e8a095f1effe3fadb2fcfdfdc1c3698c6b555bbde06e9ae213bbcd465f9d3a2a52a3a5e8fd2cef0f747c5be747131e5ac010622641cfc3ffcae51879cd3ebdb482f7147e4a13b029a2e34cc03b5a4cabd571815a3119e0a032293c815d759e2b2a97486b1277231c9b7447ef0772b94c6648d4d26617b3b2ffc69e6906e167962f69e6ed360015095b8c2c1dd4269e66b83bf41ec4bf810f8921afc228762e02c92d9120715d14e3b113595a6f477a73f70b1d3ee5ad4da2a4e609303f0136ce1c5d0ea4932466f8e535221c4b36a2d2e8b592c57662c6ef59b22bb2b2f3ca3417addb159428a42ead571e2873b2560e59dcdade84c60376b39fb9b27a0ce4061fcac7c7a1c60435bd20b6ce83051a795cfdbc340ce3b28ce975998cb3ca2d3bfa6394544f7ecb8f0bfa785c6d8196a046e3c244789d692652ccf0a32ccb297f37b5521dd0d4101585c3592c396c3808f9a2151736ab29bcc8f06ea0c501d7c376a00951754bdccc7a90d4a2a9389d566547b4544bca3780905e38e3cb1b42662117f581cce9587a4bf9fc6a1db8ba2086b6f5e97db91cef28509e4584c6b4a4fd6ad7fec391d22563aa1447412df1f218c5f6d2d3e21baa244d5fc93eeb38928795e2d9f4fe81943153a410e595926ddc6197b6375eabd2b14a687736a238f09c90a00d45b21200e17e3f73e358d0cb00587799699fa897c0fff2def886fd4e6b5f05a54c9df9d3a1c9c51e0c0d718e7233b69eeed480dca1dcb8c72f4fffa203b7c22d776a6e883848ca395a11f2545a9197498a1ddaa3eac20559c9dd00aa94d35a75d6788924af8de58f3ea0da039c8539a9620a9a15a49ca8aa0f510e20a88e9304167559dbb9c6ee30642e8d4319d25deabf102def8747d6343fe362effa0b2fb2803adaacfdeb467ff6ea760276843d36518fe822606373c9a8da6d3c179a343ffd2de3bed27510daa0d1718a167ec50918a431054f9f2b71bce0591b896030084af6ffb71f6b3d663bf83822db5c6848f14c67065ede683d9ed509f02c91ae64ccc6c29b21904067ea115a9af89278e8f77e8259aa1959622672faf559899dea5399409ebaaafa052043dc8dec81d74ac255cd6512c3f903fed121e758957d388f3d5ac73b63fa7c2c25460a0236a62b722f4c88fa08ea780c20eb59866fb2de3bd9ef3cc468405f9b22a7f9ce644cdb70674057365a6a2baf2acb6b1e65c3a0e7c80143515252a1fb916a88a6ae26ad688aa039e9ffa443b5d684a9d2bc50a74fea602d79ed8f724b1f69adb7c9a20e0a62a46de5b98fac36e1e366df2cb26aeb26eaabaf4115d5db7895e82a1fcf3a54f470ac952442d4a95936bf623eb57cd281778f16574f09827d5f5a3ad0de34314922fb7a573ada63ab6db278ccaccc87d33c8f56fd23ec03527a065b048f72f69feb254536d78295db03735fee644bcb1229a7a70ae3984d5e05828a3c6392e8d42d71f15fbadf9ab2b1b8ee83370fa86d287fb07a3b30a636c2bd77f8a2c2eba13d3b457ad7ded4fdf046627ad010ca1ac60c87ece7e2ff0a6e57b98c14fe7c35ad900689874c6d0cb01a2c85033ab0f044e134ef22997baeccce23e0923a0b56513a8b1b8badb3ede6c5193df7b1cb422d8afbef596e21b680197d2d312620d80f10ba5e7ccd1326230633f1720418a577480a8e649ffd45018bf57231c8e04501a3719d717a0469bbafbb870a8f4a81e4f7f36b5882b80c4931ca92f036b7ad2e747a5dd745f3f880d5de77062fc31a6b835fed21e3b5d0e8854dac0ca9f96b910e0466d8c4be75dc9085200da81627a43bc571a79462eef78dd390f6af42caca4813e5711f918581e0def284543a99548841ad0aab2cc673887b3d51ee5b1074875d18b7d906af27ee4f265d6e88ad3c5fcb86e2c1ef2f97e8d9da63c78f4d747126e14e0d55f9ffc8e156766797bcd3683a008ea78f4a9a9d9c04cfc5907e5656a52df3206b9c962563a0192278651e8d9d8697b8d2f9f7e8fcc06869e017ca2892e667658e0d1007882f0b6c000f15d379fabe18efbb1ff16b7fcde26c59fcaea374b913cac9b01ff1b8131991e28852f5c43e6c0b6ef1615de135721aebbacdf798af0e583db51ced1b3a3f2117daa7620ad022655da6389f818610916888513def9a58c49837c7b1ff17f8d0e41641501a3cb33c535e07b0555a619c87d33a5f074651ed99ad5acb890cc930b95ae1a062eef39df0dfbbb0bc27b69e5d94cee07b876e579a78eb55270ad8c2989fca848105bb2b80b682f3de98530e74d38295a308779df3a2f6d73d262edab8f51b7b097a9c6c5a7c8a0444e95f3bc52dc4c8f5df295940028920d4137833b8fd06d1e05e99562e5a0e1d056204c3b5a0640774646cb5c3405a63ccd03384a724521579c9676ffd64c9949d2e88a1ae9f1b5d01472b25a0d64c776eba7dd3b03a319dc50e35c29797d40084f31e6fe31c136d8171f15af1340b9e549300b54875b6bd5006d0c5d95633491e415a1830289506ded7e3498864d92a12859fb509b192dfa18f979dc5242d3ae3c8f83dd18788dec194401df702198fbae5a5e3807fc7a6b889fe5e37ca78ecbcc0c3765f2ed53e77a8e2eb1dc6be33b6ecebd10ae0f3bc025e3c3f3f1fc59862d1044354a6a4315c45c33108113ba30087ae7ab2af98f33d376a6595807687cdec68f9a5000900ec290b22ed3b5a7d899823f8904e6f72d3a00cefcdc97dc771c36f88a73f5b1f89b964487e1da9347a74eab200156ceaea36549b4cab1935c6945f81f8184a3463871e606fc646200b05c5447516da1beca8d775c03d725146344afb2a06e05f91e57ad159bcfa7419a66b838e70ba9a053943eb52da30cb07be74177f70089d24b695ddd5e1de63558b42692d04a190c4f7c79f687ad058f7f5f1f8b2b8540799b459604ee515e64dfc5adbc5247d4c1c2ea0af0f585ffbc42cff909e4e766055c7e23b1453b89326fce1db510690df0e9a0d3f9156653fb9c77d53595b1de3565b23d57706d0c5b05aa1e85a95f6bf6d1082178f0fc191fe6223364eed0fa0398f250413ef4c0093971d215386a16befdfc6fb02a9eb17a43f37818d5f2feafa41f8a667b91ea5d24a85072872c4dc2544e5e5fe011088cccd825f8582aa10f361d3483e4383575bf56e1877149454ae00f379dcf9ca8a096a4000000000cffb15021878495d4764bf6802f930d8c0bd2a3ca82c67d900d71e6a2124f2782efe71ee062cac3dfd9c3a421b3bd28681668b2592429f757c91dd2df0084961a2d7f01c6776b5f23f1274c8a233e3561915ce77f0f823e699d96b6c3df7d992febd0e8891e31af7b48ec4e14706550bc766258cbb92479cd7d580151203e70c6eb6f2e396a46b8077c5587d8705ec3bbe72eef9e8f9a440b48da8987370e273b854ad2d7919a89f7b76a445a4b51693c82a38ed5cce8bdb09c0570e7c4f29c41813d1cbe4c1c0dca20390114161811b3149368137c52d528077d68edaaecca32022e875eef63aa4100f7b48350e1e75e8485ec769c9b5ca5144c3ef13198015807db922e1b5377753232d63d1d9e1acb2700804d0e1f611cf0ad4471042545061792272bbc5d59c5375c2d16a3690dd6264530d3bb246e10491fcbc3b348606ea0984ec945888bf80815721a307e3644e4baf66dca5e80638735d70f3a81343e7ff90a0d0acf397ff4045effaaeb173973701fada6c14e5fe7203dc61b80ef2307dfb03619c71aaf16217e94217a477d1657e914c1175c4776cb751303f59f3d473cb4f48ce0e8a8eb0e7835e97ed2f90e6f45d3cd279a363a87635e4f32b76e88f0c7401b0861f0205a2325f83df08d3b321115d3a2700966980e36a9c7f64728d6c0bf83e96f202db19bee86fa58b1031a4ff04fdb7cca37333b197221ebfaf786d62db5815b55ee862e5439abaeb046043b4248ba04e1b935aaef03108cca6f468ae6c89009be31990db6f82063075a55f0771bcd65e6921f72156ede0a0d0c4389b4c7f369d3cf9ff14334fc8dab4eafdfec98e2312c9ebc2e294dde6b25f634ec7de2603306af8dc5f6a2480d400113c39cc3886f36e1eaa6613ed26e0720926082687a9118238b51e18343e9058bca28e450012ed3cce9008f28b79474fc182e6070103b4d6ec35598413957309a2eabb476bb4a864f91d257b372aecec9f6e864057c92d32288abe3b39fff2dd0e1bc806494c5df4831ab53646904ebfc596b7b6c8bb9ec5efe707e956d83ed6608655049d7f4b80aa738d2fcbe35edfbe5f1e19ad9d334347b8d866adb6e7e9e765ca3066341f76b5f6df356c5fd2ffd62b2775e5674351aba59b10724d3a16dd76a0749adb8113baa76a8a3c2527525e1b4dfdac61e76de4692d307563c9e800"}) fallocate(r0, 0x0, 0x10000000, 0x4a76) 06:01:58 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x820c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) signalfd4(r1, &(0x7f0000000040)={[0x5]}, 0x8, 0x80000) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1836.967237] __blk_mq_delay_run_hw_queue+0x53f/0x5a0 [ 1836.968470] blk_mq_run_hw_queue+0x170/0x2f0 [ 1836.969427] ? blk_mq_delay_run_hw_queues+0x1f0/0x1f0 [ 1836.970551] ? dd_dispatch_request+0x990/0x990 [ 1836.971543] blk_mq_sched_insert_requests+0x247/0x720 [ 1836.972671] blk_mq_flush_plug_list+0x415/0x6c0 [ 1836.973690] ? blk_mq_insert_requests+0x450/0x450 [ 1836.974737] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 1836.975981] blk_flush_plug_list+0x26c/0x3c0 [ 1836.976940] ? mark_held_locks+0x9e/0xe0 [ 1836.977822] ? blk_insert_cloned_request+0x450/0x450 [ 1836.978925] blk_finish_plug+0x50/0xa0 [ 1836.979772] __iomap_dio_rw+0xca0/0x1110 [ 1836.980678] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1836.981665] ? ext4_orphan_add+0x253/0x9e0 [ 1836.982587] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1836.983643] ? ext4_empty_dir+0xae0/0xae0 [ 1836.984547] ? jbd2__journal_start+0xf3/0x7e0 [ 1836.985538] iomap_dio_rw+0x31/0x90 [ 1836.986344] ext4_file_write_iter+0xe0e/0x1530 [ 1836.987353] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1836.988351] ? kasan_save_stack+0x32/0x40 [ 1836.989247] ? kasan_save_stack+0x1b/0x40 [ 1836.990135] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1836.991215] ? iter_file_splice_write+0x165/0xc90 [ 1836.992255] ? direct_splice_actor+0x10f/0x170 [ 1836.993225] ? splice_direct_to_actor+0x387/0x980 [ 1836.994250] ? do_splice_direct+0x1c4/0x290 [ 1836.995176] ? do_sendfile+0x553/0x11e0 [ 1836.996017] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1836.997013] ? do_syscall_64+0x33/0x40 [ 1836.997840] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1836.998988] do_iter_readv_writev+0x476/0x750 [ 1836.999948] ? new_sync_write+0x660/0x660 [ 1837.000842] ? avc_policy_seqno+0x9/0x70 [ 1837.001710] ? selinux_file_permission+0x92/0x520 [ 1837.002740] ? security_file_permission+0xb1/0xe0 [ 1837.003777] do_iter_write+0x191/0x700 [ 1837.004624] ? trace_hardirqs_on+0x5b/0x180 [ 1837.005551] vfs_iter_write+0x70/0xa0 [ 1837.006379] iter_file_splice_write+0x726/0xc90 [ 1837.007398] ? generic_splice_sendpage+0x140/0x140 [ 1837.008474] ? security_file_permission+0xb1/0xe0 [ 1837.009510] ? generic_splice_sendpage+0x140/0x140 [ 1837.010572] direct_splice_actor+0x10f/0x170 [ 1837.011516] splice_direct_to_actor+0x387/0x980 [ 1837.012520] ? pipe_to_sendpage+0x380/0x380 [ 1837.013434] ? do_splice_to+0x160/0x160 [ 1837.014274] ? security_file_permission+0xb1/0xe0 [ 1837.015299] do_splice_direct+0x1c4/0x290 [ 1837.016177] ? splice_direct_to_actor+0x980/0x980 [ 1837.017198] ? avc_policy_seqno+0x9/0x70 [ 1837.018063] ? security_file_permission+0xb1/0xe0 [ 1837.019132] do_sendfile+0x553/0x11e0 [ 1837.019949] ? do_pwritev+0x270/0x270 [ 1837.020803] ? wait_for_completion_io+0x270/0x270 [ 1837.021831] ? rcu_read_lock_any_held+0x75/0xa0 [ 1837.022865] ? vfs_write+0x354/0xb10 [ 1837.023656] __x64_sys_sendfile64+0x1d1/0x210 [ 1837.024654] ? __ia32_sys_sendfile+0x220/0x220 [ 1837.025634] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1837.026783] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1837.027876] do_syscall_64+0x33/0x40 [ 1837.028704] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1837.029850] RIP: 0033:0x7fdf91659b19 [ 1837.030825] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1837.035467] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1837.037511] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1837.039412] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1837.041314] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1837.043203] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1837.045090] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 06:02:15 executing program 5: ioctl$TCSETS2(0xffffffffffffffff, 0x402c542b, &(0x7f00000000c0)={0x7ff, 0x0, 0x7, 0x8, 0xbe, "3e29a84d64ac25dc1ccc19082497f3bb1971b2", 0x1, 0x4}) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) r3 = open$dir(&(0x7f0000000040)='./file1\x00', 0x200, 0x4) syncfs(r3) mmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x8010, r2, 0x6a250000) 06:02:15 executing program 7: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa418b6d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000200)='net/if_inet6\x00') read(r1, &(0x7f00000002c0)=""/225, 0xe1) r2 = dup2(r0, r0) write$binfmt_elf64(r2, &(0x7f0000000840)=ANY=[@ANYBLOB="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"], 0x3c7) r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x266d40) r4 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ptype\x00') io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000040)=[r1, r2, r0, r3, 0xffffffffffffffff, r4, r0], 0x7) ioctl$SNDRV_TIMER_IOCTL_SELECT(r4, 0x40345410, &(0x7f0000000100)={{0xffffffffffffffff, 0x3, 0x39, 0x3, 0x8}}) openat(r4, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x30) sendfile(r5, r6, 0x0, 0x100000001) r7 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r7, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000080)=ANY=[@ANYBLOB="f7e0000076ba943ecfc5af4b84fbb126", @ANYRES16=0x0, @ANYBLOB="000000000000000000000e000000"], 0x14}}, 0x0) fallocate(r7, 0x4b, 0x400000000000, 0x8) r8 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r8, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) r9 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r8) sendmsg$ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000500)={0x330, r9, 0x8, 0x70bd2b, 0x25dfdbfe, {}, [@ETHTOOL_A_EEE_MODES_OURS={0x1c8, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0xf2, 0x5, "f7dbe82b60fff8d646cdabd7323b1eaab9aee29e2da861e3b7ae80b4ae29abdf75801f20715310cb28044e18cd32c3eefacf3d540c12b0daaf91877967f551f6e661225a305f53913e36a3fc60da971626f0e33590ff3e632609e1bc8d9485c8c2e47ef47249f07dd8114dee5b1d9331aa7ccce7ee8ecf65248e94b311c149a0f32cb55d6af7e87084f8b7b5b7de6f0edc76872a5b2e84dd1b393cee852eb36d06fe9c3aa6505dd8911292d2753f524863e5ea0eb2c7bd9294891b488b714c56cf12d2f45ad520256da54c53cf2cdf2c856d3dc7847eef4170cabcce98732dbf9b56beb9a39f9b6bef45e1200f41"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x40}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_BITS={0x78, 0x3, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x80000001}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '[:.\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xd, 0x2, ',\\,#\\\xaa$%\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_NAME={0x11, 0x2, 'net/if_inet6\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '--]:\x00'}]}]}, @ETHTOOL_A_BITSET_MASK={0x4}, @ETHTOOL_A_BITSET_VALUE={0x40, 0x4, "c7cd33c49c3ba5fd5ddbe3b8553c83ecf5b08004faa03339c7226b354bc7fde874d49dd088495de1b692a4818c616687c5b291d712f8b7e8ccd1082b"}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}, @ETHTOOL_A_EEE_MODES_OURS={0x24, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x1f, 0x4, "4021872e1ee1ff2fba4bf973ca7060d03ba6ba76dbc3e6309db00f"}]}, @ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0xfffd}, @ETHTOOL_A_EEE_MODES_OURS={0xf8, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_VALUE={0x6b, 0x4, "d0c18a19a56b8018f065f0ce89c2fc74369c03a2589be66cd5a50656b8d18f494b05f25a18e5aa9a2e43ff3975c10d23ce13e54ef3eed03a056d7ab784cdc1ea1519d8ba0c013ba52c014872c2bd70319b03c10321fa6bf135b283c392a263499d0499671d0526"}, @ETHTOOL_A_BITSET_MASK={0x7d, 0x5, "c7bf965f0a9ab1c752693e8a4794edd0ca5c53fc8681b9996fa7cc6091678972471244b1af776c1a2755f1d059da5bb1fa351e3ec3b4febb4cad7a140585191b3ea321a0b38980e144fa55e5471deb6d811abb71260c73188edc58ce28c3f69bea53c5526a002b2f39f5dc7393b9d69484e416c730e30e9b14"}]}, @ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x3}, @ETHTOOL_A_EEE_ENABLED={0x5}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5, 0x6, 0x1}, @ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x7f}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5, 0x6, 0x1}, @ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0xfffff52c}]}, 0x330}, 0x1, 0x0, 0x0, 0x8000}, 0x24040094) 06:02:15 executing program 1: syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1/file0\x00', 0x882c2, 0x113) r1 = signalfd(r0, &(0x7f00000000c0)={[0x8]}, 0x8) ioctl$AUTOFS_DEV_IOCTL_VERSION(r1, 0xc0189371, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1/file0\x00'}) syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r1) r3 = syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), r2) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)={0x50, r6, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x31, 0xe, [@chsw_timing={0x68, 0x4}, @prep={0x83, 0x25, @ext={{}, 0x0, 0x0, @device_b, 0x0, @device_a, 0x0, 0x0, @broadcast}}]}]]}, 0x50}}, 0x0) sendfile(r5, r4, &(0x7f0000000300)=0x80000000, 0xa2) writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000240)={'vcan0\x00', 0x0}) connect$packet(r4, &(0x7f00000002c0)={0x11, 0x10, r7, 0x1, 0xff}, 0x14) getpeername$packet(0xffffffffffffffff, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000240)=0x14) sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000280)={&(0x7f0000000e00)=ANY=[@ANYBLOB="e0040000a731e023b6c532784567d5964e37d0315b94939b25ead7c1849d6895ca6f1423dd0d156c7f360f91f32a6b58a8a1379562147a157214f7670e33494260feecfcfd893e6e0f7ab131bca5a20536376d1f1bf1a2c9d96c89e333ea9201aa1dbdde8109ce81aa7d18008875944742e3d5e9d9fd7fb40195e742cbb1995716e8d02d528228f84c08e6ed89039e54600e422935a39e75fe691cdb260eb9", @ANYRES16=r3, @ANYBLOB="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", @ANYRES32=r7, @ANYBLOB="08000100", @ANYRES32=r8, @ANYBLOB="f5e908000300020000001400020069705f76746930000000000000000000080003000100000008007ec2ed16e4e8"], 0x4e0}, 0x1, 0x0, 0x0, 0x81}, 0x0) r9 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r10 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1/file0\x00', 0x0, 0x0) sendfile(r9, r10, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x800001000002) 06:02:15 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r2 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000180)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x28, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}]}, 0x28}}, 0x0) sendmsg$NL80211_CMD_FLUSH_PMKSA(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x400, 0x70bd25, 0x25dfdbfe, {{}, {@void, @void}}, [""]}, 0x14}}, 0x4000000) r4 = dup(0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r5, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r4) sendmsg$NL80211_CMD_DEL_TX_TS(r5, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, r6, 0x4, 0x70bd26, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_TSID={0x5, 0xd2, 0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40040}, 0x8000) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000140)={'wlan1\x00'}) clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) 06:02:15 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, 0x0, 0x0) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 06:02:15 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 59) fallocate(r0, 0x0, 0x0, 0x1000002) 06:02:15 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0xf, 0x0, 0x1000002) 06:02:15 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x171) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) fallocate(r0, 0x0, 0x0, 0x1000002) r1 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/attr/current\x00', 0x2, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) signalfd4(r2, &(0x7f0000000100)={[0x8000]}, 0x8, 0x800) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c) ioctl$BTRFS_IOC_SNAP_DESTROY_V2(0xffffffffffffffff, 0x5000943f, &(0x7f0000000900)={{r2}, 0x0, 0x0, @inherit={0x60, &(0x7f0000000140)=ANY=[@ANYBLOB="0100000000000000030000f30000e10005000000000000000100f0ff00000000f9ffffff00000000040000fffffffc008180000000000000ffffffff00040000000000003eeb4c00000000ea54ffffffff040001000000002500000000"]}, @devid}) r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r2, 0x84009422, &(0x7f0000000500)={0x0, 0x0, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r3, 0x5000943f, &(0x7f0000000900)={{}, 0x0, 0x4, @inherit={0x60, &(0x7f0000001940)=ANY=[@ANYBLOB="0100000000000000030000f30000e10005000000000100000000f0ff00000000fcffffff00000000040000ffffacaefffc0b8180000000000000ffffffff000400000000000000000000ea54ffffffff040001000000002500000000000000000000414994d83e749cf725d09838808670528f66d4728c73f0e3adb6486ea8b6"]}, @devid=r4}) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r1, 0xc400941d, &(0x7f0000000300)={r4, 0x1, 0x4, 0x1}) setresuid(0xffffffffffffffff, 0x0, 0x0) getresgid(0x0, &(0x7f0000001100)=0x0, &(0x7f0000001140)) semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f0000001200)={{0x1, 0xee00, r5, 0x0, 0x0, 0x24, 0x2}, 0x1f, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffdd}) getresgid(&(0x7f00000010c0), &(0x7f0000001100)=0x0, &(0x7f0000001140)) semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f0000001200)={{0x1, 0xee00, r6, 0x0, 0x0, 0x24, 0x2}, 0x1f, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffdd}) fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000180)={{}, {}, [{0x2, 0x1}, {}, {}], {0x4, 0x1}, [{0x8, 0x4, r5}, {0x8, 0x1, r6}, {0x8, 0x2, 0xee01}], {0x10, 0x2}, {0x20, 0x2}}, 0x54, 0x1) mount$9p_fd(0x0, &(0x7f0000000080)='./file1\x00', &(0x7f00000000c0), 0x200000, &(0x7f00000019c0)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@fscache}, {@dfltgid={'dfltgid', 0x3d, r6}}, {@privport}, {@dfltuid={'dfltuid', 0x3d, 0xee01}}, {@cachetag={'cachetag', 0x3d, '$!-)ri'}}, {@cache_none}], [{@mask={'mask', 0x3d, '^MAY_EXEC'}}]}}) [ 1853.489235] 9pnet: Insufficient options for proto=fd [ 1853.509845] FAULT_INJECTION: forcing a failure. [ 1853.509845] name failslab, interval 1, probability 0, space 0, times 0 [ 1853.512266] CPU: 1 PID: 10040 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1853.513730] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1853.515429] Call Trace: [ 1853.515980] dump_stack+0x107/0x167 [ 1853.516735] should_fail.cold+0x5/0xa [ 1853.517448] ? create_object.isra.0+0x3a/0xa20 [ 1853.518388] should_failslab+0x5/0x20 [ 1853.519175] kmem_cache_alloc+0x5b/0x310 [ 1853.520023] create_object.isra.0+0x3a/0xa20 [ 1853.520932] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1853.521982] kmem_cache_alloc+0x159/0x310 [ 1853.522841] jbd2__journal_start+0x190/0x7e0 [ 1853.523766] __ext4_journal_start_sb+0x214/0x390 [ 1853.524749] ext4_dio_write_end_io+0x22b/0x600 [ 1853.525738] iomap_dio_complete+0x1a1/0x790 [ 1853.526633] ? ext4_es_delayed_clu+0x3d0/0x3d0 [ 1853.527591] iomap_dio_rw+0x63/0x90 [ 1853.528358] ext4_file_write_iter+0xe0e/0x1530 [ 1853.529318] ? __switch_to+0x572/0xf70 [ 1853.530138] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1853.531021] ? io_schedule_timeout+0x140/0x140 [ 1853.531851] ? do_splice_direct+0x1c4/0x290 [ 1853.532631] ? do_sendfile+0x553/0x11e0 [ 1853.533394] ? do_syscall_64+0x33/0x40 [ 1853.534098] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1853.535201] do_iter_readv_writev+0x476/0x750 [ 1853.536014] ? new_sync_write+0x660/0x660 [ 1853.536757] ? avc_policy_seqno+0x9/0x70 [ 1853.537490] ? selinux_file_permission+0x92/0x520 [ 1853.538363] ? security_file_permission+0xb1/0xe0 [ 1853.539374] do_iter_write+0x191/0x700 [ 1853.540097] ? page_cache_pipe_buf_confirm+0x10/0x2d0 [ 1853.541110] vfs_iter_write+0x70/0xa0 [ 1853.541800] iter_file_splice_write+0x726/0xc90 [ 1853.542778] ? generic_splice_sendpage+0x140/0x140 [ 1853.543773] ? security_file_permission+0xb1/0xe0 [ 1853.544649] ? generic_splice_sendpage+0x140/0x140 [ 1853.545540] direct_splice_actor+0x10f/0x170 [ 1853.546336] splice_direct_to_actor+0x387/0x980 [ 1853.547341] ? pipe_to_sendpage+0x380/0x380 [ 1853.548194] ? do_splice_to+0x160/0x160 [ 1853.548924] ? security_file_permission+0xb1/0xe0 [ 1853.549906] do_splice_direct+0x1c4/0x290 [ 1853.550656] ? splice_direct_to_actor+0x980/0x980 [ 1853.551664] ? avc_policy_seqno+0x9/0x70 [ 1853.552423] ? security_file_permission+0xb1/0xe0 [ 1853.553393] do_sendfile+0x553/0x11e0 [ 1853.554285] ? do_pwritev+0x270/0x270 [ 1853.555036] ? wait_for_completion_io+0x270/0x270 [ 1853.555954] ? rcu_read_lock_any_held+0x75/0xa0 [ 1853.556848] ? vfs_write+0x354/0xb10 [ 1853.557530] __x64_sys_sendfile64+0x1d1/0x210 [ 1853.558479] ? __ia32_sys_sendfile+0x220/0x220 [ 1853.559311] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1853.560258] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1853.561202] do_syscall_64+0x33/0x40 [ 1853.561893] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1853.563015] RIP: 0033:0x7fdf91659b19 [ 1853.563773] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1853.567425] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1853.568939] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1853.570239] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1853.571551] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1853.573136] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1853.574515] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 06:02:15 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, 0x0, 0x0) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 06:02:15 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x503000, 0x2) openat(r2, &(0x7f0000000080)='./file1\x00', 0x34803, 0x40) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r3, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) dup(r3) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r4, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) ftruncate(r3, 0x400) 06:02:15 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa418b6d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000200)='net/if_inet6\x00') read(r3, &(0x7f00000002c0)=""/225, 0xe1) r4 = dup2(r2, r2) write$binfmt_elf64(r4, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], 0x3c7) r5 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x266d40) r6 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ptype\x00') io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000040)=[r3, r4, r2, r5, 0xffffffffffffffff, r6, r2], 0x7) fcntl$addseals(r3, 0x409, 0x8) dup3(r5, r0, 0x80000) clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) utimensat(r3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0)={{r7, r8/1000+60000}, {0x77359400}}, 0x0) r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r9, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) 06:02:15 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r0, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP(r0, 0xd0009412, &(0x7f0000000940)={0x0, 0x8}) clone3(&(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, {0xfffffffd}, 0x0, 0x0, 0x0, &(0x7f0000003340)=[0xffffffffffffffff], 0x1}, 0x58) r1 = socket$unix(0x1, 0x2, 0x0) recvmsg$unix(r1, &(0x7f0000000900)={&(0x7f0000000000), 0x6e, &(0x7f0000000780)=[{&(0x7f0000000080)=""/224, 0xe0}, {&(0x7f0000000180)=""/136, 0x88}, {&(0x7f0000000240)=""/249, 0xf9}, {&(0x7f0000000340)=""/192, 0xc0}, {&(0x7f0000000400)=""/68, 0x44}, {&(0x7f0000000480)=""/233, 0xe9}, {&(0x7f0000000580)=""/168, 0xa8}, {&(0x7f0000000640)=""/170, 0xaa}, {&(0x7f0000000700)=""/81, 0x51}], 0x9, &(0x7f0000000840)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}], 0xa8}, 0x4) 06:02:15 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, 0x0, 0x0) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 06:02:15 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 06:02:15 executing program 4: r0 = syz_mount_image$nfs4(&(0x7f0000000280), &(0x7f0000000300)='./file1\x00', 0x7, 0x7, &(0x7f0000000780)=[{&(0x7f0000000340)="ae3055b8a71d04dfb30e8f790298cc57f77f72309695c896f217f12936df40ecca77b32dfdaa77daa15be00ed56dbfaec0998cd9accbeed97143c524c3a49d46f2ba6c88c2ca661ee7f010329940b75176921619684ec30beb608b5e2bbbbced27b72ef774a0b6ae963d45beab43b1605949a484445097159b52daf43cf76fefe25a97e49b9d2928685fd86c88cba9f8b51a789976f9e44008df0aedb514d3add20ba38f3c69ca5e33e19f4a92d356e5c3c1ba10", 0xb4, 0x49e}, {&(0x7f0000000400)="92f0b5868ccb8fc96c8d2e21ba5405d7fe66e824c856559d05daf64e5fcbadaafe9afd47a596adae6905f76cdd278ebd5f7054be9457614d44d1f4d9dd06f19745a7426e6b081d9c1361ed31d54bce2705abe6a96738058b801b208c92405bc03ac2dc6a7e60203e5ba4bbdbc2dfc1a112f774b1f79172355f2c1fccb4e0ca2c70fcc08dfbb6919d3fa65dc22833bb95cfe1b1c4e918a8d66f07eb50363c86ec96aefc0984c56daf6b6b011bf3c2dd2d7d5f0955b9bbda7a1bca00af3cf6e8827adb939bb8d82283bf6a9e62e506aece9f89956e8159c2e1549178433641ca91888b770feb0c4ba22d5e8863fb8a4b3284e566d284", 0xf5, 0x4}, {&(0x7f0000000500)="4b1c53ad1b318cae24d38eaa7cf31ea3f559f260", 0x14, 0x8}, {&(0x7f0000000540)="d97e7b261f392cdb02fdb8674ca92972c42e4eca302591", 0x17}, {&(0x7f0000000580)="105bbceffe3af3f8fbfc8d89ee3ff3e95db668f7653d6e693f9819adbe55ec6e4d10638309375f5c62ac473f3ba38b8d01d513373de5fdfb44a60930c1e1109ce391579e34c45ae273c35822ba85f3593f38b0f92b5de7fca91f6d63483713fe005ae8b614cfcad95585824a7d12067c9135adb622167aca38d552448d2e6e3a1a5a36465e83f24529a21e1948d6", 0x8e, 0x7}, {&(0x7f0000000640)="25e0bd1264a8303a75207565a4115d30ae6387a9ab4b14924401f7432329003b828975d08281e3ff1e8e29535b0fae18be13c12745081fab9c94c9f87c01462226b0d3f760050d747b3132682326bf1745f8973150624f3d9a128c7dd94102e7daff8bc1f785fab2d3dfe51f225705362ed41ddba58059984db87bcb79251a22e0da3e8ace52734cb0fa039bde6dc5d617a40291352b0a6345e1b7fe177df0b22af2b36139abad27606ce1e29fdbed2e8c45c9a8eea5a32e0987a74a91", 0xbd, 0x4}, {&(0x7f0000000700)="3122c976791a4aba8d7c82ee043beded416414a5b6a21c1c9c6d4aa446a515a77d8b2e30267a3f821cb6c9d6aea9ba26f90f1420f8accf5b59b6da013945d107cbb5168df9cd4ff5ebc47e7489d9c0883ed5a4f1c770d60602e4b8bbf3d697423f7a2dc6562e199f1a9331eb8cb8c6fc", 0x70, 0x80}], 0x20000, &(0x7f0000000840)=ANY=[@ANYBLOB=',/dev/usb/hiddev#\x00,)\',defcontext=system_u,measure,smackfsroot=/dev/usb/hiddev#\x00,fowner>', @ANYRESDEC=0xee00, @ANYBLOB="2c7669f73e", @ANYRESDEC=0xee01, @ANYBLOB=',smackfshat=/dev/usb/hiddev#\x00,defcontext=unconfined_u,\x00']) r1 = openat(r0, &(0x7f0000000000)='./file1\x00', 0x4c8682, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) fallocate(r1, 0x0, 0x0, 0x1000002) r4 = syz_open_dev$hiddev(&(0x7f0000000040), 0x0, 0x80) preadv2(r4, &(0x7f0000000240)=[{&(0x7f0000000080)=""/201, 0xc9}, {&(0x7f0000000180)=""/177, 0xb1}], 0x2, 0x1, 0x7fff, 0x11) 06:02:15 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) recvmmsg$unix(r1, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000040)=""/131, 0x83}], 0x1, &(0x7f0000000140)=[@rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x70}}], 0x1, 0x2000, &(0x7f0000000200)) openat(r4, &(0x7f0000000240)='./file1\x00', 0x42080, 0x6) sendfile(r1, r2, 0x0, 0x100000001) r6 = fcntl$getown(r1, 0x9) recvmmsg$unix(r3, &(0x7f0000003f80)=[{{&(0x7f0000000300), 0x6e, &(0x7f0000000280)=[{&(0x7f0000000380)=""/185, 0xb9}, {&(0x7f0000000440)=""/238, 0xee}, {&(0x7f0000000540)=""/105, 0x69}], 0x3, &(0x7f00000005c0)=[@rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xc0}}, {{&(0x7f0000000680), 0x6e, &(0x7f0000001b00)=[{&(0x7f0000000700)=""/85, 0x55}, {&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000001780)=""/220, 0xdc}, {&(0x7f0000001880)=""/45, 0x2d}, {&(0x7f00000018c0)=""/101, 0x65}, {&(0x7f0000001940)=""/49, 0x31}, {&(0x7f0000001980)=""/193, 0xc1}, {&(0x7f0000001a80)=""/124, 0x7c}], 0x8, &(0x7f0000001b80)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x110}}, {{&(0x7f0000001cc0)=@abs, 0x6e, &(0x7f0000003ec0)=[{&(0x7f0000001d40)=""/115, 0x73}, {&(0x7f0000001dc0)=""/73, 0x49}, {&(0x7f0000001e40)=""/115, 0x73}, {&(0x7f0000001ec0)=""/4096, 0x1000}, {&(0x7f0000002ec0)=""/4096, 0x1000}], 0x5, &(0x7f0000003f40)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}], 0x38}}], 0x3, 0x1, &(0x7f0000004040)) r8 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r8, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) kcmp(r6, r7, 0x0, r8, r5) fallocate(r0, 0x0, 0xfffffffffffffffc, 0x1000002) 06:02:15 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) (fail_nth: 60) fallocate(r0, 0x0, 0x0, 0x1000002) 06:02:15 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f0000000080), 0x0, &(0x7f00000000c0)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@debug={'debug', 0x3d, 0xffff}}, {@cache_none}, {@version_L}], [{@subj_user={'subj_user', 0x3d, ':{!%/!)\xb6*:'}}]}}) fallocate(r0, 0x0, 0x5, 0xfffffe) 06:02:15 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r1, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) ioctl$VFAT_IOCTL_READDIR_SHORT(r1, 0x82307202, &(0x7f0000000080)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) r4 = socket(0x15, 0x4, 0x3) setsockopt$inet6_tcp_TCP_QUEUE_SEQ(r3, 0x6, 0x15, &(0x7f0000000040)=0x1, 0x4) dup(r4) 06:02:15 executing program 2: getxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="34aacf36e5af8527dad34f439bed09050b66b09224a6cedb8f4d73413c0bfa1182b47fd70fac43e9cebadcf100000000000000002a1c15d563545e2b0bdb9faea5fc515493490bd05dace0140b019d6436f988935a0fe7fac24284f8805e9e6c4c5a81e3a4afcacebf6a341896d2e1acf4b294b94bee93d8ad098eb2a26055ef06197845"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = signalfd(r2, &(0x7f0000000040)={[0x8]}, 0x8) r4 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd, 0xb49, 0x1000, 0x0, 0x5, 0x1, {0x0, r7}}, 0x3ff) openat(r3, &(0x7f0000000200)='./file0\x00', 0x482100, 0x182) creat(&(0x7f0000000240)='./file0\x00', 0x44) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 06:02:15 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/exe\x00', 0x121140, 0x0) sendfile(r1, r2, 0x0, 0x100000001) fallocate(r0, 0x0, 0x0, 0x1000002) [ 1854.239410] FAULT_INJECTION: forcing a failure. [ 1854.239410] name failslab, interval 1, probability 0, space 0, times 0 [ 1854.241353] CPU: 0 PID: 10081 Comm: syz-executor.6 Not tainted 5.10.233 #1 [ 1854.242429] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1854.243687] Call Trace: [ 1854.244114] dump_stack+0x107/0x167 [ 1854.244667] should_fail.cold+0x5/0xa [ 1854.245282] ? jbd2__journal_start+0x190/0x7e0 [ 1854.245983] should_failslab+0x5/0x20 [ 1854.246567] kmem_cache_alloc+0x5b/0x310 [ 1854.247217] jbd2__journal_start+0x190/0x7e0 [ 1854.247896] __ext4_journal_start_sb+0x214/0x390 [ 1854.248639] ext4_dirty_inode+0xbc/0x130 [ 1854.249274] ? ext4_setattr+0x20f0/0x20f0 [ 1854.249911] __mark_inode_dirty+0x492/0xd40 [ 1854.250587] generic_update_time+0x21c/0x370 [ 1854.251253] file_update_time+0x43a/0x520 [ 1854.251876] ? evict_inodes+0x470/0x470 [ 1854.252508] ? down_write_killable+0x180/0x180 [ 1854.253237] file_modified+0x7d/0xa0 [ 1854.253814] ext4_file_write_iter+0x8f8/0x1530 [ 1854.254518] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1854.255220] ? kasan_save_stack+0x32/0x40 [ 1854.255867] ? kasan_save_stack+0x1b/0x40 [ 1854.256505] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1854.257309] ? iter_file_splice_write+0x165/0xc90 [ 1854.258047] ? direct_splice_actor+0x10f/0x170 [ 1854.258744] ? splice_direct_to_actor+0x387/0x980 [ 1854.259485] ? do_splice_direct+0x1c4/0x290 [ 1854.260156] ? do_sendfile+0x553/0x11e0 [ 1854.260775] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1854.261494] ? do_syscall_64+0x33/0x40 [ 1854.262076] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1854.262885] do_iter_readv_writev+0x476/0x750 [ 1854.263564] ? new_sync_write+0x660/0x660 [ 1854.264177] ? avc_policy_seqno+0x9/0x70 [ 1854.264795] ? selinux_file_permission+0x92/0x520 [ 1854.265530] ? security_file_permission+0xb1/0xe0 [ 1854.266280] do_iter_write+0x191/0x700 [ 1854.266879] ? trace_hardirqs_on+0x5b/0x180 [ 1854.267547] vfs_iter_write+0x70/0xa0 [ 1854.268124] iter_file_splice_write+0x726/0xc90 [ 1854.268836] ? generic_splice_sendpage+0x140/0x140 [ 1854.269591] ? security_file_permission+0xb1/0xe0 [ 1854.270329] ? generic_splice_sendpage+0x140/0x140 [ 1854.271059] direct_splice_actor+0x10f/0x170 [ 1854.271721] splice_direct_to_actor+0x387/0x980 [ 1854.272415] ? pipe_to_sendpage+0x380/0x380 [ 1854.273102] ? do_splice_to+0x160/0x160 [ 1854.273720] ? security_file_permission+0xb1/0xe0 [ 1854.274452] do_splice_direct+0x1c4/0x290 [ 1854.275078] ? splice_direct_to_actor+0x980/0x980 [ 1854.275789] ? avc_policy_seqno+0x9/0x70 [ 1854.276424] ? security_file_permission+0xb1/0xe0 [ 1854.277173] do_sendfile+0x553/0x11e0 [ 1854.277736] ? do_pwritev+0x270/0x270 [ 1854.278309] ? wait_for_completion_io+0x270/0x270 [ 1854.279038] ? rcu_read_lock_any_held+0x75/0xa0 [ 1854.279719] ? vfs_write+0x354/0xb10 [ 1854.280272] __x64_sys_sendfile64+0x1d1/0x210 [ 1854.280971] ? __ia32_sys_sendfile+0x220/0x220 [ 1854.281668] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1854.282458] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1854.283228] do_syscall_64+0x33/0x40 [ 1854.283775] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1854.284534] RIP: 0033:0x7fdf91659b19 [ 1854.285106] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1854.287817] RSP: 002b:00007fdf8ebcf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1854.288952] RAX: ffffffffffffffda RBX: 00007fdf9176cf60 RCX: 00007fdf91659b19 [ 1854.289994] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1854.291041] RBP: 00007fdf8ebcf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1854.292092] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 1854.293153] R13: 00007ffc5945cfdf R14: 00007fdf8ebcf300 R15: 0000000000022000 VM DIAGNOSIS: 06:07:23 Registers: info registers vcpu 0 RAX=ffffffff83e7e9a0 RBX=0000000000000000 RCX=ffffffff83e6657c RDX=0000000000000000 RSI=0000000000000000 RDI=ffffffff83e7efa8 RBP=0000000000000000 RSP=ffffffff84e07e38 R8 =0000000000000001 R9 =ffff88806ce3c12b R10=ffffed100d9c7825 R11=0000000000000001 R12=0000000000000000 R13=ffffffff85677788 R14=0000000000000000 R15=dffffc0000000000 RIP=ffffffff83e7e9ae RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fc5739be000 CR3=0000000018150000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000600 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=0000000000000000413a895000000000 XMM03=0000ff00000000000000000000000000 XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962 XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=ffffffff83e7e9a0 RBX=0000000000000001 RCX=ffffffff83e6657c RDX=0000000000000000 RSI=0000000000000000 RDI=ffffffff83e7efa8 RBP=0000000000000001 RSP=ffff888008987e70 R8 =0000000000000001 R9 =ffff88806cf3c12b R10=ffffed100d9e7825 R11=0000000000000001 R12=0000000000000001 R13=ffffffff85677788 R14=0000000000000000 R15=dffffc0000000000 RIP=ffffffff83e7e9ae RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fc5739cd000 CR3=0000000018150000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=005f02fe016c6c6f502e726567616e61 XMM02=61746f7420636578650a0a0100010101 XMM03=78650e007a7a7566206365786509006c XMM04=78650d006574616469646e6163206365 XMM05=6578651100657a696d696e696d206365 XMM06=0800737472617473657220726f747563 XMM07=7420636578650b006e65672063657865 XMM08=7a7566206365786509006c61746f7420 XMM09=74616469646e616320636578650e007a XMM10=657a696d696e696d20636578650d0065 XMM11=617473657220726f7475636578651100 XMM12=650b006e656720636578650800737472 XMM13=636578650a0065676169727420636578 XMM14=6e696820636578650a006873616d7320 XMM15=0000736465657320636578650a007374