= syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)
r2 = accept4$unix(r1, &(0x7f0000000040)=@abs, &(0x7f00000000c0)=0x6e, 0x0)
r3 = fsmount(r1, 0x1, 0x70)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = fcntl$dupfd(r4, 0x0, r4)
connect$bt_sco(r5, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$BTRFS_IOC_BALANCE(r5, 0x5000940c, 0x0)
r6 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_open_dev$vcsa(&(0x7f0000000140), 0x8, 0x400)
r7 = accept4$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000001c0)=0x14, 0x80000)
poll(&(0x7f0000000180)=[{r2}, {r3, 0x1240}, {r6, 0x5005}, {r1}, {0xffffffffffffffff, 0x8080}, {r7, 0x8}, {r1, 0x6}], 0x7, 0xda6a)

[ 2139.881340] loop7: detected capacity change from 0 to 2560
[ 2139.888843] 9pnet_virtio: no channels available for device syz
[ 2139.890140] FAULT_INJECTION: forcing a failure.
[ 2139.890140] name failslab, interval 1, probability 0, space 0, times 0
[ 2139.891424] CPU: 0 PID: 11429 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2139.892219] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2139.893165] Call Trace:
[ 2139.893473]  dump_stack+0x107/0x167
[ 2139.893891]  should_fail.cold+0x5/0xa
[ 2139.894313]  ? mempool_alloc+0x148/0x360
[ 2139.894746]  ? mempool_free_pages+0x20/0x20
[ 2139.895247]  should_failslab+0x5/0x20
[ 2139.895684]  kmem_cache_alloc+0x5b/0x310
[ 2139.896150]  ? mempool_free_pages+0x20/0x20
[ 2139.896648]  mempool_alloc+0x148/0x360
[ 2139.897079]  ? mempool_resize+0x7d0/0x7d0
[ 2139.897533]  ? lock_downgrade+0x6d0/0x6d0
[ 2139.897983]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2139.898514]  bio_alloc_bioset+0x36e/0x600
[ 2139.898990]  ? bvec_alloc+0x2f0/0x2f0
[ 2139.899428]  ? iov_iter_npages+0x1fd/0xa70
[ 2139.899918]  iomap_dio_bio_actor+0x518/0xef0
[ 2139.900432]  iomap_dio_actor+0x36f/0x560
[ 2139.900897]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2139.901437]  ? do_syscall_64+0x33/0x40
[ 2139.901887]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2139.902499]  iomap_apply+0x289/0x810
[ 2139.902930]  ? iomap_dio_rw+0x90/0x90
[ 2139.903373]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2139.903996]  ? mark_held_locks+0x9e/0xe0
[ 2139.904471]  ? filemap_check_errors+0xa5/0x150
[ 2139.904999]  __iomap_dio_rw+0x6cd/0x1110
[ 2139.905443]  ? iomap_dio_rw+0x90/0x90
[ 2139.905602] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2139.905889]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2139.905906]  ? ext4_orphan_add+0x253/0x9e0
[ 2139.907868]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2139.908432]  ? ext4_empty_dir+0xae0/0xae0
[ 2139.908903]  ? jbd2__journal_start+0xf3/0x7e0
[ 2139.909433]  iomap_dio_rw+0x31/0x90
[ 2139.909854]  ext4_file_write_iter+0xe0e/0x1530
[ 2139.910389]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2139.910910]  ? kasan_save_stack+0x32/0x40
[ 2139.911357]  ? kasan_save_stack+0x1b/0x40
[ 2139.911832]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2139.912416]  ? iter_file_splice_write+0x165/0xc90
[ 2139.912940]  ? direct_splice_actor+0x10f/0x170
[ 2139.913467]  ? splice_direct_to_actor+0x387/0x980
[ 2139.914020]  ? do_splice_direct+0x1c4/0x290
[ 2139.914494]  ? do_sendfile+0x553/0x11e0
[ 2139.914949]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2139.915455]  ? do_syscall_64+0x33/0x40
[ 2139.915900]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2139.916513]  do_iter_readv_writev+0x476/0x750
[ 2139.917028]  ? _cond_resched+0x10/0x30
[ 2139.917483]  ? new_sync_write+0x660/0x660
[ 2139.917956]  ? avc_policy_seqno+0x9/0x70
[ 2139.918407]  ? selinux_file_permission+0x92/0x520
[ 2139.918962]  ? security_file_permission+0xb1/0xe0
[ 2139.919521]  do_iter_write+0x191/0x700
[ 2139.919968]  ? trace_hardirqs_on+0x5b/0x180
[ 2139.920464]  vfs_iter_write+0x70/0xa0
[ 2139.920901]  iter_file_splice_write+0x726/0xc90
[ 2139.921418]  ? generic_splice_sendpage+0x140/0x140
[ 2139.921988]  ? security_file_permission+0xb1/0xe0
[ 2139.922544]  ? generic_splice_sendpage+0x140/0x140
[ 2139.923107]  direct_splice_actor+0x10f/0x170
[ 2139.923584]  splice_direct_to_actor+0x387/0x980
[ 2139.924121]  ? pipe_to_sendpage+0x380/0x380
[ 2139.924589]  ? do_splice_to+0x160/0x160
[ 2139.925016]  ? security_file_permission+0xb1/0xe0
[ 2139.925548]  do_splice_direct+0x1c4/0x290
[ 2139.925993]  ? splice_direct_to_actor+0x980/0x980
[ 2139.926507]  ? avc_policy_seqno+0x9/0x70
[ 2139.926946]  ? security_file_permission+0xb1/0xe0
[ 2139.927467]  do_sendfile+0x553/0x11e0
[ 2139.927881]  ? do_pwritev+0x270/0x270
[ 2139.928291]  ? wait_for_completion_io+0x270/0x270
[ 2139.928813]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2139.929310]  ? vfs_write+0x354/0xb10
[ 2139.929718]  __x64_sys_sendfile64+0x1d1/0x210
[ 2139.930231]  ? __ia32_sys_sendfile+0x220/0x220
[ 2139.930726]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2139.931332]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2139.931889]  do_syscall_64+0x33/0x40
[ 2139.932317]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2139.932872] RIP: 0033:0x7fa861eb0b19
[ 2139.933306] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2139.935293] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2139.936176] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2139.936998] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2139.937830] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2139.938657] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2139.939482] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
[ 2139.942810] loop3: detected capacity change from 0 to 16896
[ 2139.952217] loop6: detected capacity change from 0 to 16896
16:41:34 executing program 6:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r3, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, 0x0}, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:41:34 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
setsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f0000000040)=0x30, 0x2)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:41:34 executing program 5:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000240)=<r1=>0x0)
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x7, 0x3, 0x63, 0x4, 0x0, 0x4, 0x8400, 0x9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0xdb, 0x1, @perf_bp={&(0x7f0000000180), 0xe}, 0x6000, 0x95, 0x0, 0x4, 0x7fff, 0x46b8f191, 0x3, 0x0, 0x34, 0x0, 0xf79}, r1, 0xf, 0xffffffffffffffff, 0x8)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r2=>r0, @out_args}, './file1\x00'})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r3, 0xc0189374, &(0x7f0000000140)={{0x1, 0x1, 0x18, r2, {0x7ef4}}, './file1\x00'})
ioctl$EXT4_IOC_GROUP_EXTEND(r3, 0x40086607, &(0x7f00000004c0))

[ 2140.051768] loop6: detected capacity change from 0 to 16896
16:41:34 executing program 3:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[r3, r4]}, 0x2)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
fcntl$setown(0xffffffffffffffff, 0x8, 0x0)

16:41:34 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x7)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
poll(&(0x7f0000000080)=[{r2, 0x80}], 0x1, 0x5)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = fcntl$dupfd(r3, 0x0, r3)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
sendmsg$nl_generic(r4, &(0x7f00000011c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000001180)={&(0x7f0000000100)={0x1048, 0x22, 0x100, 0x70bd28, 0x25dfdbfe, {0x1f}, [@generic="539a518032582792", @generic="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", @generic="408e2f1ef3bc5a94891b7c4a5922c7458797c74f72c47b7627e2b6b283443642c501", @typed={0x8, 0x3f, 0x0, 0x0, @u32=0x5}]}, 0x1048}}, 0x4000)

16:41:34 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xd00, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:41:34 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)
io_uring_enter(r1, 0x7fed, 0x9a74, 0x1, &(0x7f0000000080)={[0x9]}, 0xffffffffffffff3c)

[ 2140.148009] loop3: detected capacity change from 0 to 16896
16:41:34 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
setsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f0000000040)=0x30, 0x2)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:41:34 executing program 6:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3]}, 0x2)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:41:34 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xf00, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:41:34 executing program 5:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, @out_args}, './file1\x00'})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x4002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
ioctl$EXT4_IOC_GROUP_EXTEND(r1, 0x40086607, &(0x7f00000004c0))
ioctl$FIGETBSZ(r2, 0x2, &(0x7f0000000140))

[ 2140.273444] loop7: detected capacity change from 0 to 3584
[ 2140.281402] loop6: detected capacity change from 0 to 16896
[ 2140.284568] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2140.313070] loop7: detected capacity change from 0 to 3584
[ 2140.317208] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:41:48 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, &(0x7f0000000740), 0x400000, 0x0)
openat(r2, &(0x7f0000000040)='./file1\x00', 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:41:48 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r3, 0xc0189375, &(0x7f0000001080)={{0x1, 0x1, 0x18, <r4=>r0}, './file0\x00'})
syz_io_uring_submit(0x0, 0x0, &(0x7f00000010c0)=@IORING_OP_ASYNC_CANCEL={0xe, 0x1, 0x0, 0x0, 0x0, 0x1}, 0x7)
fcntl$dupfd(r4, 0x0, r1)
r5 = fcntl$dupfd(r1, 0x406, r1)
r6 = socket$nl_sock_diag(0x10, 0x3, 0x4)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={<r7=>0xffffffffffffffff})
ioctl$BTRFS_IOC_SNAP_DESTROY(r6, 0x5000940f, &(0x7f0000000080)={{r7}, "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"})
connect$bt_sco(r5, &(0x7f0000000000)={0x1f, @fixed}, 0x7)

16:41:48 executing program 5:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, @out_args}, './file1\x00'})
perf_event_open(&(0x7f0000000140)={0x0, 0x80, 0x3, 0x2, 0x2, 0x1, 0x0, 0xe5f, 0x1000, 0x4, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x2, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x7, 0x1, @perf_config_ext={0xd05e, 0x200}, 0x0, 0x0, 0x9, 0x5, 0x1, 0x200, 0x2, 0x0, 0x401, 0x0, 0x4}, 0xffffffffffffffff, 0x5, r0, 0x830cdeae42374903)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r1, 0x40086607, &(0x7f00000004c0))

16:41:48 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/icmp6\x00')
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = fcntl$dupfd(r3, 0x0, r3)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
fcntl$dupfd(r2, 0x0, r4)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:41:48 executing program 3:
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000001c0)={'erspan0\x00', &(0x7f0000000140)={'syztnl1\x00', 0x0, 0x7, 0x1, 0x401, 0xffff, {{0x16, 0x4, 0x0, 0x9, 0x58, 0x66, 0x0, 0x40, 0x2f, 0x0, @dev={0xac, 0x14, 0x14, 0x13}, @remote, {[@timestamp_addr={0x44, 0x2c, 0xc2, 0x1, 0x6, [{@multicast2, 0x7}, {@empty, 0x3}, {@remote, 0x2}, {@private=0xa010101, 0x20}, {@multicast2, 0x9}]}, @lsrr={0x83, 0x17, 0xee, [@remote, @empty, @private=0xa010102, @multicast1, @rand_addr=0x64010102]}]}}}}})
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, @out_args}, './file1\x00'})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r1, 0x40086607, &(0x7f00000004c0))

16:41:48 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 54)

16:41:48 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x1020, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:41:48 executing program 6:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3]}, 0x2)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:41:48 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x7)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs2/custom0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000140)={0x10, 0x0, &(0x7f0000000080)=[@exit_looper, @release, @exit_looper], 0x55, 0x0, &(0x7f00000000c0)="a7a1d5064debc69355d067cde8323889bf8a79f5ca0f8fac7571e6c288d66e2c9e1a9c1e61d0ea78dd61d945c87e20bc645e9fbb9dd4d145a87313d1df52f7587bc3e430d285388858529668f429a22c9137eb3a8c"})

[ 2153.995808] 9pnet_virtio: no channels available for device syz
[ 2153.996520] loop7: detected capacity change from 0 to 4096
[ 2154.004947] loop6: detected capacity change from 0 to 16896
[ 2154.046947] FAULT_INJECTION: forcing a failure.
[ 2154.046947] name failslab, interval 1, probability 0, space 0, times 0
[ 2154.049333] CPU: 1 PID: 11503 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2154.050814] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2154.052562] Call Trace:
[ 2154.053113]  dump_stack+0x107/0x167
[ 2154.053883]  should_fail.cold+0x5/0xa
[ 2154.054679]  ? create_object.isra.0+0x3a/0xa20
[ 2154.055617]  should_failslab+0x5/0x20
[ 2154.056409]  kmem_cache_alloc+0x5b/0x310
[ 2154.057236]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2154.058358]  create_object.isra.0+0x3a/0xa20
[ 2154.059257]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2154.060319]  kmem_cache_alloc+0x159/0x310
[ 2154.061181]  ? __kernel_text_address+0x9/0x40
[ 2154.062107]  jbd2__journal_start+0x190/0x7e0
[ 2154.063016]  __ext4_journal_start_sb+0x214/0x390
[ 2154.063987]  ext4_iomap_begin+0x485/0x700
[ 2154.064836]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2154.065845]  ? kasan_save_stack+0x1b/0x40
[ 2154.066686]  ? ext4_file_write_iter+0xe0e/0x1530
[ 2154.067657]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 2154.068941]  ? splice_direct_to_actor+0x387/0x980
[ 2154.069947]  ? do_splice_direct+0x1c4/0x290
[ 2154.070857]  ? do_sendfile+0x553/0x11e0
[ 2154.071669]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2154.072615]  ? do_syscall_64+0x33/0x40
[ 2154.073422]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2154.074536]  iomap_apply+0x164/0x810
[ 2154.075321]  ? iomap_dio_rw+0x90/0x90
[ 2154.076105]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2154.077315]  ? mark_held_locks+0x9e/0xe0
[ 2154.078184]  ? filemap_check_errors+0xa5/0x150
[ 2154.079130]  __iomap_dio_rw+0x6cd/0x1110
[ 2154.079980]  ? iomap_dio_rw+0x90/0x90
[ 2154.080801]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2154.081745]  ? ext4_orphan_add+0x253/0x9e0
[ 2154.082638]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2154.083650]  ? ext4_empty_dir+0xae0/0xae0
[ 2154.084518]  ? jbd2__journal_start+0xf3/0x7e0
[ 2154.085447]  iomap_dio_rw+0x31/0x90
[ 2154.086204]  ext4_file_write_iter+0xe0e/0x1530
[ 2154.087158]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2154.088098]  ? kasan_save_stack+0x32/0x40
[ 2154.088956]  ? kasan_save_stack+0x1b/0x40
[ 2154.089799]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2154.090844]  ? iter_file_splice_write+0x165/0xc90
[ 2154.091846]  ? direct_splice_actor+0x10f/0x170
[ 2154.092789]  ? splice_direct_to_actor+0x387/0x980
[ 2154.093799]  ? do_splice_direct+0x1c4/0x290
[ 2154.094707]  ? do_sendfile+0x553/0x11e0
[ 2154.095535]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2154.096494]  ? do_syscall_64+0x33/0x40
[ 2154.097302]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2154.098429]  do_iter_readv_writev+0x476/0x750
[ 2154.099353]  ? _cond_resched+0x10/0x30
[ 2154.100163]  ? new_sync_write+0x660/0x660
[ 2154.101004]  ? avc_policy_seqno+0x9/0x70
[ 2154.101857]  ? selinux_file_permission+0x92/0x520
[ 2154.102853]  ? security_file_permission+0xb1/0xe0
[ 2154.103854]  do_iter_write+0x191/0x700
[ 2154.104673]  ? trace_hardirqs_on+0x5b/0x180
[ 2154.105582]  vfs_iter_write+0x70/0xa0
[ 2154.106372]  iter_file_splice_write+0x726/0xc90
[ 2154.107354]  ? generic_splice_sendpage+0x140/0x140
[ 2154.108408]  ? security_file_permission+0xb1/0xe0
[ 2154.109409]  ? generic_splice_sendpage+0x140/0x140
[ 2154.110420]  direct_splice_actor+0x10f/0x170
[ 2154.111332]  splice_direct_to_actor+0x387/0x980
[ 2154.112302]  ? pipe_to_sendpage+0x380/0x380
[ 2154.113197]  ? do_splice_to+0x160/0x160
[ 2154.114016]  ? security_file_permission+0xb1/0xe0
[ 2154.115008]  do_splice_direct+0x1c4/0x290
[ 2154.115879]  ? splice_direct_to_actor+0x980/0x980
[ 2154.116910]  ? avc_policy_seqno+0x9/0x70
[ 2154.117754]  ? security_file_permission+0xb1/0xe0
[ 2154.118795]  do_sendfile+0x553/0x11e0
[ 2154.119622]  ? do_pwritev+0x270/0x270
[ 2154.120437]  ? wait_for_completion_io+0x270/0x270
[ 2154.121478]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2154.122477]  ? vfs_write+0x354/0xb10
[ 2154.123277]  __x64_sys_sendfile64+0x1d1/0x210
[ 2154.124206]  ? __ia32_sys_sendfile+0x220/0x220
[ 2154.125162]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2154.126268]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2154.127319]  do_syscall_64+0x33/0x40
[ 2154.128096]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2154.129155] RIP: 0033:0x7fa861eb0b19
[ 2154.129940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2154.133711] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2154.135286] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2154.136760] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2154.138226] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2154.139734] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2154.141259] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
[ 2154.146009] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:41:48 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r1, 0x0, r1)
r2 = getuid()
syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r5, 0x0, 0x0}, 0x0)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FSYNC={0x3, 0x1, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x8)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000700)=@IORING_OP_RECVMSG={0xa, 0x1, 0x0, r5, 0x0, &(0x7f00000006c0)={&(0x7f0000000440)=@ax25={{0x3, @netrom}, [@bcast, @bcast, @bcast, @default, @netrom, @bcast, @bcast]}, 0x80, &(0x7f0000000640)=[{&(0x7f00000003c0)=""/12, 0xc}, {&(0x7f00000004c0)=""/90, 0x5a}, {&(0x7f0000000540)=""/205, 0xcd}], 0x3, &(0x7f0000000680)=""/23, 0x17}, 0x0, 0x40, 0x0, {0x2, r6}}, 0x7)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_POLL_REMOVE={0x7, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, {0x0, r6}}, 0x6)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@rc, 0x80, &(0x7f0000000180)=[{&(0x7f0000000140)=""/36, 0x24}], 0x1, &(0x7f00000001c0)=""/137, 0x89}, 0x0, 0x40000100, 0x0, {0x0, r6}}, 0x8000)
fsetxattr$security_capability(r1, &(0x7f0000000040), &(0x7f0000000080)=@v3={0x3000000, [{0x1, 0x8}, {0x9, 0x1}], r2}, 0x18, 0x1)
r7 = fcntl$dupfd(r0, 0x406, r0)
connect$bt_sco(r7, &(0x7f0000000000)={0x1f, @fixed}, 0x7)
r8 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000300), 0x90000, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000380)=@IORING_OP_STATX={0x15, 0x0, 0x0, r8, &(0x7f0000000740), &(0x7f0000000340)='./file0\x00', 0x80, 0x4000, 0x1}, 0x6)

16:41:48 executing program 3:
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000001c0)={'erspan0\x00', &(0x7f0000000140)={'syztnl1\x00', 0x0, 0x7, 0x1, 0x401, 0xffff, {{0x16, 0x4, 0x0, 0x9, 0x58, 0x66, 0x0, 0x40, 0x2f, 0x0, @dev={0xac, 0x14, 0x14, 0x13}, @remote, {[@timestamp_addr={0x44, 0x2c, 0xc2, 0x1, 0x6, [{@multicast2, 0x7}, {@empty, 0x3}, {@remote, 0x2}, {@private=0xa010101, 0x20}, {@multicast2, 0x9}]}, @lsrr={0x83, 0x17, 0xee, [@remote, @empty, @private=0xa010102, @multicast1, @rand_addr=0x64010102]}]}}}}})
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, @out_args}, './file1\x00'})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r1, 0x40086607, &(0x7f00000004c0))

16:41:48 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x2, 0x0, r0, 0x0, &(0x7f0000000040)="2d02eb43f20d8803c14aa6fc3370c57eccbec1a433b5fa234e2accbcc87f71224b4a43f280385ab903c4ac382e7a5113d452e0182d4bea7e301303effb86d35a216ebbc5467df22c0b48dba4d1ad938de3d88dca732ed2c7efe8d60e2b7f483fc8f979f09db1b8", 0x67, 0x1}, 0x4)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0)
syz_io_uring_submit(r5, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, 0x0, &(0x7f0000000100)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, {0x0, r6}}, 0xfffffffe)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r7, 0x0, 0x0}, 0x0)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FSYNC={0x3, 0x1, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r8}}, 0x8)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000700)=@IORING_OP_RECVMSG={0xa, 0x1, 0x0, r7, 0x0, &(0x7f00000006c0)={&(0x7f0000000440)=@ax25={{0x3, @netrom}, [@bcast, @bcast, @bcast, @default, @netrom, @bcast, @bcast]}, 0x80, &(0x7f0000000640)=[{&(0x7f00000003c0)=""/12, 0xc}, {&(0x7f00000004c0)=""/90, 0x5a}, {&(0x7f0000000540)=""/205, 0xcd}], 0x3, &(0x7f0000000680)=""/23, 0x17}, 0x0, 0x40, 0x0, {0x2, r8}}, 0x7)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_POLL_REMOVE={0x7, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, {0x0, r8}}, 0x6)
r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r10 = fcntl$dupfd(r9, 0x0, r9)
connect$bt_sco(r10, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
syz_io_uring_submit(r5, r4, &(0x7f0000000180)=@IORING_OP_SPLICE={0x1e, 0x5, 0x0, @fd=r2, 0x6, {0x0, r1}, 0x2, 0xf, 0x0, {0x0, r8, r10}}, 0x80000001)

16:41:48 executing program 5:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000000100060018000000", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file1\x00'])
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat$nvram(0xffffffffffffff9c, &(0x7f0000000140), 0x408a40, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x2d, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1ff, 0x6}, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r1, 0x40086607, &(0x7f00000004c0))

16:41:48 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x1100, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:41:48 executing program 6:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3]}, 0x2)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

[ 2154.388313] loop7: detected capacity change from 0 to 4096
[ 2154.407712] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2154.410237] loop6: detected capacity change from 0 to 16896
[ 2154.453064] loop7: detected capacity change from 0 to 4096
16:41:48 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r1, 0x0, r1)
r2 = fcntl$dupfd(r1, 0x0, r0)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

[ 2154.471896] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2169.374857] loop7: detected capacity change from 0 to 8192
16:42:03 executing program 5:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x200000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = fork()
r4 = gettid()
kcmp(r3, r4, 0x3, r2, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000240)={0x5, 0x80, 0x4, 0x81, 0x5, 0x81, 0x0, 0x6, 0x40, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x3, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x9, 0x6798}, 0x8, 0x5, 0x4f, 0x3, 0x1f, 0x0, 0x8, 0x0, 0x9, 0x0, 0xfffffffeffffffff}, r4, 0x10, r1, 0x1)
r5 = io_uring_setup(0x5a7f, &(0x7f00000002c0)={0x0, 0xbde8, 0x1, 0x0, 0xe4, 0x0, r0})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r5, 0x81f8943c, &(0x7f0000000500))
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x80, 0x9, 0x40, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x6, 0x0, @perf_bp={&(0x7f0000000140)}, 0x42b40, 0x4, 0x7fffffff, 0x2, 0x7f, 0x8, 0x3, 0x0, 0x3a2, 0x0, 0x9f0}, r4, 0xffffffffffffffff, r0, 0x8)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, @out_args}, './file1\x00'})
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r6, 0x40086607, &(0x7f00000004c0))

16:42:03 executing program 1:
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
connect$bt_sco(r0, &(0x7f0000000000)={0x1f, @fixed}, 0x7)
sendmsg$nl_generic(r0, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="840100001cff0f000000000000dbdf251a00000008005400", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=r0, @ANYBLOB], 0x184}, 0x1, 0x0, 0x0, 0x2404c010}, 0x20040014)

16:42:03 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB, @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, &(0x7f0000000740), 0x400000, 0x0)
openat(r2, &(0x7f0000000040)='./file1\x00', 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:42:03 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 55)

16:42:03 executing program 6:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, 0xffffffffffffffff]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:42:03 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x2000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:42:03 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)
r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x200000d, 0x30, r1, 0x10000000)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r5, 0x0, 0x0}, 0x0)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FSYNC={0x3, 0x1, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x8)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000700)=@IORING_OP_RECVMSG={0xa, 0x1, 0x0, r5, 0x0, &(0x7f00000006c0)={&(0x7f0000000440)=@ax25={{0x3, @netrom}, [@bcast, @bcast, @bcast, @default, @netrom, @bcast, @bcast]}, 0x80, &(0x7f0000000640)=[{&(0x7f00000003c0)=""/12, 0xc}, {&(0x7f00000004c0)=""/90, 0x5a}, {&(0x7f0000000540)=""/205, 0xcd}], 0x3, &(0x7f0000000680)=""/23, 0x17}, 0x0, 0x40, 0x0, {0x2, r6}}, 0x7)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_POLL_REMOVE={0x7, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, {0x0, r6}}, 0x6)
syz_io_uring_submit(0x0, r2, &(0x7f0000000040)=@IORING_OP_FALLOCATE={0x11, 0x1, 0x0, @fd=r0, 0xffffffff80000000, 0x0, 0x0, 0x0, 0x0, {0x0, r6}}, 0x7)

16:42:03 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0xd8a02, 0x0)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, r1, 0xfaecf000)
r2 = fcntl$dupfd(r0, 0x0, r0)
ioctl$BINDER_CTL_ADD(r2, 0xc1086201, &(0x7f0000000040)={'binder1\x00'})
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))
fcntl$dupfd(r2, 0x406, r2)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:42:03 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0x400}}, './file0\x00'})
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x7)

16:42:03 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0xd8a02, 0x0)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, r1, 0xfaecf000)
r2 = fcntl$dupfd(r0, 0x0, r0)
ioctl$BINDER_CTL_ADD(r2, 0xc1086201, &(0x7f0000000040)={'binder1\x00'})
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))
fcntl$dupfd(r2, 0x406, r2)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

[ 2169.420870] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2169.441301] FAULT_INJECTION: forcing a failure.
[ 2169.441301] name failslab, interval 1, probability 0, space 0, times 0
[ 2169.443799] CPU: 0 PID: 11560 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2169.445271] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2169.447025] Call Trace:
[ 2169.447582]  dump_stack+0x107/0x167
[ 2169.448353]  should_fail.cold+0x5/0xa
[ 2169.449166]  ? create_object.isra.0+0x3a/0xa20
[ 2169.450137]  should_failslab+0x5/0x20
[ 2169.450941]  kmem_cache_alloc+0x5b/0x310
[ 2169.451793]  ? blk_queue_enter+0xc30/0xc30
[ 2169.452689]  create_object.isra.0+0x3a/0xa20
[ 2169.453614]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2169.454697]  kmem_cache_alloc+0x159/0x310
[ 2169.455577]  jbd2__journal_start+0x190/0x7e0
[ 2169.456507]  __ext4_journal_start_sb+0x214/0x390
[ 2169.457509]  ext4_iomap_begin+0x485/0x700
[ 2169.458404]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2169.459453]  ? iomap_dio_actor+0x377/0x560
[ 2169.460336]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2169.461310]  ? do_syscall_64+0x33/0x40
[ 2169.462136]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2169.463258]  iomap_apply+0x164/0x810
[ 2169.464043]  ? iomap_dio_rw+0x90/0x90
[ 2169.464853]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2169.466088]  ? mark_held_locks+0x9e/0xe0
[ 2169.466955]  ? filemap_check_errors+0xa5/0x150
[ 2169.467919]  __iomap_dio_rw+0x6cd/0x1110
[ 2169.468778]  ? iomap_dio_rw+0x90/0x90
[ 2169.469599]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2169.470581]  ? ext4_orphan_add+0x253/0x9e0
[ 2169.471466]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2169.472501]  ? ext4_empty_dir+0xae0/0xae0
[ 2169.473371]  ? jbd2__journal_start+0xf3/0x7e0
[ 2169.474332]  iomap_dio_rw+0x31/0x90
[ 2169.475107]  ext4_file_write_iter+0xe0e/0x1530
[ 2169.476086]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2169.477050]  ? kasan_save_stack+0x32/0x40
[ 2169.477927]  ? kasan_save_stack+0x1b/0x40
[ 2169.478799]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2169.479867]  ? iter_file_splice_write+0x165/0xc90
[ 2169.480882]  ? direct_splice_actor+0x10f/0x170
[ 2169.481849]  ? splice_direct_to_actor+0x387/0x980
[ 2169.482862]  ? do_splice_direct+0x1c4/0x290
[ 2169.483770]  ? do_sendfile+0x553/0x11e0
[ 2169.484605]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2169.485586]  ? do_syscall_64+0x33/0x40
[ 2169.486413]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2169.487543]  do_iter_readv_writev+0x476/0x750
[ 2169.488486]  ? _cond_resched+0x10/0x30
[ 2169.489310]  ? new_sync_write+0x660/0x660
[ 2169.490193]  ? avc_policy_seqno+0x9/0x70
[ 2169.491052]  ? selinux_file_permission+0x92/0x520
[ 2169.492068]  ? security_file_permission+0xb1/0xe0
[ 2169.493104]  do_iter_write+0x191/0x700
[ 2169.493942]  ? trace_hardirqs_on+0x5b/0x180
[ 2169.494865]  vfs_iter_write+0x70/0xa0
[ 2169.495671]  iter_file_splice_write+0x726/0xc90
[ 2169.496666]  ? generic_splice_sendpage+0x140/0x140
[ 2169.497723]  ? security_file_permission+0xb1/0xe0
[ 2169.498747]  ? generic_splice_sendpage+0x140/0x140
[ 2169.499778]  direct_splice_actor+0x10f/0x170
[ 2169.500713]  splice_direct_to_actor+0x387/0x980
[ 2169.501711]  ? pipe_to_sendpage+0x380/0x380
[ 2169.502623]  ? do_splice_to+0x160/0x160
[ 2169.503456]  ? security_file_permission+0xb1/0xe0
[ 2169.504487]  do_splice_direct+0x1c4/0x290
[ 2169.505369]  ? splice_direct_to_actor+0x980/0x980
[ 2169.506394]  ? avc_policy_seqno+0x9/0x70
[ 2169.507252]  ? security_file_permission+0xb1/0xe0
[ 2169.508276]  do_sendfile+0x553/0x11e0
[ 2169.509093]  ? do_pwritev+0x270/0x270
[ 2169.509906]  ? wait_for_completion_io+0x270/0x270
[ 2169.510921]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2169.511903]  ? vfs_write+0x354/0xb10
[ 2169.512698]  __x64_sys_sendfile64+0x1d1/0x210
[ 2169.513649]  ? __ia32_sys_sendfile+0x220/0x220
[ 2169.514628]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2169.515731]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2169.516992]  do_syscall_64+0x33/0x40
[ 2169.517786]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2169.518865] RIP: 0033:0x7fa861eb0b19
[ 2169.519651] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2169.523525] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2169.525125] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2169.526637] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2169.528135] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2169.529635] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2169.531153] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
[ 2169.545143] 9pnet_virtio: no channels available for device syz
[ 2169.560106] loop7: detected capacity change from 0 to 8192
[ 2169.569037] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2169.574445] loop6: detected capacity change from 0 to 16896
16:42:03 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$TIOCL_BLANKSCREEN(r1, 0x541c, &(0x7f0000000040))
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:42:18 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0xd8a02, 0x0)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, r1, 0xfaecf000)
r2 = fcntl$dupfd(r0, 0x0, r0)
ioctl$BINDER_CTL_ADD(r2, 0xc1086201, &(0x7f0000000040)={'binder1\x00'})
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))
fcntl$dupfd(r2, 0x406, r2)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:42:18 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB, @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, &(0x7f0000000740), 0x400000, 0x0)
openat(r2, &(0x7f0000000040)='./file1\x00', 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:42:18 executing program 6:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, 0xffffffffffffffff]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:42:18 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 56)

[ 2184.169921] loop7: detected capacity change from 0 to 8192
16:42:18 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x7)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r4 = getuid()
r5 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x200000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r7 = fork()
r8 = gettid()
kcmp(r7, r8, 0x3, r6, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000240)={0x5, 0x80, 0x4, 0x81, 0x5, 0x81, 0x0, 0x6, 0x40, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x3, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x9, 0x6798}, 0x8, 0x5, 0x4f, 0x3, 0x1f, 0x0, 0x8, 0x0, 0x9, 0x0, 0xfffffffeffffffff}, r8, 0x10, r5, 0x1)
sendmsg$nl_generic(r3, &(0x7f0000001600)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000015c0)={&(0x7f0000000080)={0x1530, 0x16, 0x200, 0x70bd2d, 0x25dfdbfc, {0x14}, [@typed={0x8, 0x35, 0x0, 0x0, @u32=0x7f}, @generic="69cd7b59faf7201dfac2984e1c7d546381ee872825e8a2feb12b6f73e677d7dd4a0547c9af977444c59421a71eb9a9ed34ecab72f1f0ce360693dc258e51b3184b6ce31449e4ace547dc518d7196f648d8d8108c33418a2b35d0ebf4c6ce55d10bbbde804f15e7c978710c5f85a6ebc6ccb1a8c35b3f007e8bb0ba60aa293561a88aef55ecd4b1e32aba29e825588d1529586a82ea3996abe748490f32888e3c717d0c91704254b6ed5fe1a891790b32865d8b038de0", @generic="84f4b7926bac42cc2b9dd9c5825a98b5619b24058f8814c4e32b383f4c1dd1224b695b185eecc26783d10c5bbf7a3c92bea681b7868b9c66ea62b1ffa607465cff0df8aa137b9d2ae4415033b2ce16b9d8a22fbcdb7e6656eff76de513508d9fad673d7e7426648cba4322e7a771666108fdcbdae21da410b8efb8723dcdf97289bcb48a6492b2a97ed490c4775ee651a3eaf14613b4e394f413529cc24318d723326a00f8f9c2d3193278a39d6f1c54acc2321b06a740ca90ab2375cb77e307d965d225eb2f747c1bb40a8910698f8608dbed146eb5fc3fdedd25a096daca578c740f0b033160cddcc8260b3807c648131c", @nested={0x1004, 0x50, 0x0, 0x1, [@generic="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"]}, @nested={0x35e, 0x3e, 0x0, 0x1, [@generic="18e1d9df648beaffd125a76e54d8a7527a9568edfad1970e28fd", @typed={0x8, 0x3c, 0x0, 0x0, @uid=r4}, @typed={0x101, 0x4c, 0x0, 0x0, @binary="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"}, @generic="0f3039b9c75ce5f24e97c25544a7d87f01e02eef55f5206c2b58359d50563190a143afd085e79f5163704f200ce5e954b5f6aa88bec09b89d1a10290f214b6307aec33fab58ba47b6d63c5127d07818890a0462204c790b1fd913dfae2a654a2922fc69fb1367e2ee0b6600129d85fe2354ec1d7d5c1429ae4", @generic="ab9d40cba2d0da8a228f9deb4c0c549c84bf718834ec9ab6449255ff7dfeed1ea21689d3cd2e03efb9c76aee41801d2e9c1fef5d0caf0aa9c9428b6d4111c39279c057efe4a15a7292f5da7bb06948267a8c113e7a4e755d87c4709fbd00d32a4073466c1be2e7108bbe57e1e497d799d084579b1b9da8c2069312beb207f13eb82df3754af704a25f0fdf91ad40127871c3f04da479d977b8b9d124dd71c6f197ec66cd4916609e80700d01450bbdc0874f27563710988878d86234b9506b20b71b0de7500b7e835bbfc75999141ed479db3fc2d457dd130e3853eb756336c37bb0f8fa91785543c23e8d7cea40c3", @typed={0xc9, 0x77, 0x0, 0x0, @binary="703c4f9542fe8b3bc4fbdda6938d00b689ab2a2809a82c1266b34c64f0080eac77572abcbf3f8a3ef9d405d64586aebcd84a580d70d2d08990ce77841b8091159f506bec7742d4aaff7a5a03afa9f50b8fe71db3ce78d37c44b83ea6fa5fd75d7214dd664511a60819a7fb9149447eaa816f49d787b31fadf78bef6789f5fa7378e4533e6b412775d91728e9cc7886bebde814b5614bd57fa7835cd8cd0e3cd6c1348b274bf6befdc2c19d8b33347b2cf5b27969ce56d13527e5b3a4a7fbf7c96e3911e455"}]}, @typed={0x8, 0x96, 0x0, 0x0, @pid=r8}]}, 0x1530}, 0x1, 0x0, 0x0, 0x4c010}, 0x0)

16:42:18 executing program 4:
close(0xffffffffffffffff)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:42:18 executing program 5:
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, @out_args}, './file1\x00'})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r2 = dup(0xffffffffffffffff)
syz_io_uring_setup(0x6de0, &(0x7f0000000140)={0x0, 0xc77e, 0x0, 0x1, 0x3d9, 0x0, r2}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200))
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r1, 0x40086607, &(0x7f00000004c0))

16:42:18 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x2010, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

[ 2184.183879] FAULT_INJECTION: forcing a failure.
[ 2184.183879] name failslab, interval 1, probability 0, space 0, times 0
[ 2184.186425] CPU: 0 PID: 11603 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2184.187894] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2184.189655] Call Trace:
[ 2184.190229]  dump_stack+0x107/0x167
[ 2184.190998]  should_fail.cold+0x5/0xa
[ 2184.191817]  ? ext4_find_extent+0xa77/0xd70
[ 2184.192737]  should_failslab+0x5/0x20
[ 2184.193171] 9pnet_virtio: no channels available for device syz
[ 2184.193539]  __kmalloc+0x72/0x390
[ 2184.193565]  ext4_find_extent+0xa77/0xd70
[ 2184.193598]  ext4_ext_map_blocks+0x1c8/0x5830
[ 2184.197366]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2184.198484]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2184.199596]  ? ext4_ext_release+0x10/0x10
[ 2184.200484]  ? ext4_map_blocks+0x5cd/0x1910
[ 2184.201401]  ? lock_release+0x680/0x680
[ 2184.202255]  ? ext4_es_lookup_extent+0x48d/0xaa0
[ 2184.203256]  ? lock_downgrade+0x6d0/0x6d0
[ 2184.204149]  ? down_write+0xe0/0x160
[ 2184.204933]  ? down_write_killable+0x180/0x180
[ 2184.205917]  ext4_map_blocks+0x63f/0x1910
[ 2184.206792]  ? kmem_cache_alloc+0x2a6/0x310
[ 2184.207703]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 2184.208649]  ? jbd2__journal_start+0xf3/0x7e0
[ 2184.209604]  ? __ext4_journal_start_sb+0x214/0x390
[ 2184.210638]  ? __ext4_journal_start_sb+0x1db/0x390
[ 2184.211678]  ext4_iomap_begin+0x3ad/0x700
[ 2184.212571]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2184.213621]  ? iomap_dio_actor+0x377/0x560
[ 2184.214525]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2184.215501]  ? do_syscall_64+0x33/0x40
[ 2184.216321]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2184.217458]  iomap_apply+0x164/0x810
[ 2184.218232]  ? iomap_dio_rw+0x90/0x90
[ 2184.219039]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2184.220262]  ? mark_held_locks+0x9e/0xe0
[ 2184.221137]  ? filemap_check_errors+0xa5/0x150
[ 2184.222120]  __iomap_dio_rw+0x6cd/0x1110
[ 2184.222971]  ? iomap_dio_rw+0x90/0x90
[ 2184.223795]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2184.224761]  ? ext4_orphan_add+0x253/0x9e0
[ 2184.225649]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2184.226704]  ? ext4_empty_dir+0xae0/0xae0
[ 2184.227570]  ? jbd2__journal_start+0xf3/0x7e0
[ 2184.228524]  iomap_dio_rw+0x31/0x90
[ 2184.229292]  ext4_file_write_iter+0xe0e/0x1530
[ 2184.230281]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2184.231240]  ? kasan_save_stack+0x32/0x40
[ 2184.232108]  ? kasan_save_stack+0x1b/0x40
[ 2184.232982]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
16:42:18 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0xd8a02, 0x0)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, r1, 0xfaecf000)
r2 = fcntl$dupfd(r0, 0x0, r0)
ioctl$BINDER_CTL_ADD(r2, 0xc1086201, &(0x7f0000000040)={'binder1\x00'})
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))
fcntl$dupfd(r2, 0x406, r2)

[ 2184.234152]  ? iter_file_splice_write+0x165/0xc90
[ 2184.235266]  ? direct_splice_actor+0x10f/0x170
[ 2184.236227]  ? splice_direct_to_actor+0x387/0x980
[ 2184.237241]  ? do_splice_direct+0x1c4/0x290
[ 2184.238173]  ? do_sendfile+0x553/0x11e0
[ 2184.239005]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2184.239981]  ? do_syscall_64+0x33/0x40
[ 2184.240802]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2184.241940]  do_iter_readv_writev+0x476/0x750
[ 2184.242898]  ? _cond_resched+0x10/0x30
[ 2184.243483] loop6: detected capacity change from 0 to 16896
[ 2184.243725]  ? new_sync_write+0x660/0x660
[ 2184.243745]  ? avc_policy_seqno+0x9/0x70
[ 2184.243764]  ? selinux_file_permission+0x92/0x520
[ 2184.243787]  ? security_file_permission+0xb1/0xe0
[ 2184.243817]  do_iter_write+0x191/0x700
[ 2184.243840]  ? trace_hardirqs_on+0x5b/0x180
[ 2184.243868]  vfs_iter_write+0x70/0xa0
[ 2184.243890]  iter_file_splice_write+0x726/0xc90
[ 2184.243926]  ? generic_splice_sendpage+0x140/0x140
[ 2184.243965]  ? security_file_permission+0xb1/0xe0
[ 2184.243991]  ? generic_splice_sendpage+0x140/0x140
[ 2184.255340]  direct_splice_actor+0x10f/0x170
[ 2184.256282]  splice_direct_to_actor+0x387/0x980
[ 2184.257272]  ? pipe_to_sendpage+0x380/0x380
[ 2184.258201]  ? do_splice_to+0x160/0x160
[ 2184.259041]  ? security_file_permission+0xb1/0xe0
[ 2184.260068]  do_splice_direct+0x1c4/0x290
[ 2184.260939]  ? splice_direct_to_actor+0x980/0x980
[ 2184.261976]  ? avc_policy_seqno+0x9/0x70
[ 2184.262847]  ? security_file_permission+0xb1/0xe0
[ 2184.263880]  do_sendfile+0x553/0x11e0
[ 2184.264694]  ? do_pwritev+0x270/0x270
[ 2184.265503]  ? wait_for_completion_io+0x270/0x270
[ 2184.266528]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2184.267511]  ? vfs_write+0x354/0xb10
[ 2184.268300]  __x64_sys_sendfile64+0x1d1/0x210
[ 2184.269251]  ? __ia32_sys_sendfile+0x220/0x220
[ 2184.270231]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2184.271342]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2184.272432]  do_syscall_64+0x33/0x40
[ 2184.273222]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2184.274314] RIP: 0033:0x7fa861eb0b19
[ 2184.275102] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2184.278970] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2184.280580] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2184.282090] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2184.283605] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2184.285116] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2184.286630] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
16:42:18 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r2, 0x0, r2)
r3 = accept4(r1, &(0x7f0000000040)=@in={0x2, 0x0, @multicast2}, &(0x7f00000000c0)=0x80, 0x40800)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)

[ 2184.290852] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2184.377346] loop7: detected capacity change from 0 to 8192
[ 2184.404381] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:42:18 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x406, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
write$binfmt_elf64(r3, &(0x7f0000000080)={{0x7f, 0x45, 0x4c, 0x46, 0x6, 0x5, 0x75, 0x7f, 0x8, 0x3, 0x3, 0x9, 0x57, 0x40, 0xab, 0x0, 0x8, 0x38, 0x2, 0x9, 0x6, 0x2}, [{0x60000000, 0x1, 0x2, 0x2963, 0x2, 0x0, 0x101, 0x2}, {0x2, 0x91, 0x8, 0x7, 0x6, 0x101, 0x33d, 0xd4}], "55a03215745bb7579be6294d0cdbbd746499c6a1f78ef27956268aabdb57522e37fbb4c0b70d2094684f51aa4b66824ca9ed60365d54cab21439cb249448697c61c8f8344d7957d4dfd5bed8973f94fd4d9894ca4815d5986b49f247f8870b2484dca4628aa4be83583764d559e0b0a994e91bdb1741e2c9a2b0a2a6566dfe2a7d93fc", ['\x00']}, 0x233)
connect$bt_sco(r1, &(0x7f0000000040)={0x1f, @fixed}, 0x8)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = fcntl$dupfd(r4, 0x0, r4)
connect$bt_sco(r5, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
close(r5)
connect$bt_sco(0xffffffffffffffff, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
listen(0xffffffffffffffff, 0x3)

16:42:18 executing program 6:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, 0xffffffffffffffff]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:42:18 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 57)

16:42:18 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x2e00, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:42:18 executing program 5:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, @out_args}, './file1\x00'})
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
openat(r2, &(0x7f00000002c0)='./file2\x00', 0x200000, 0x18)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r4 = syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = fork()
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, &(0x7f0000000300))
lsetxattr$security_ima(&(0x7f0000000140)='./file1\x00', &(0x7f0000000180), &(0x7f00000001c0)=@v2={0x5, 0x2, 0xf, 0x0, 0xd6, "dba8edc3e24c28cf5268ecc86af00edbb0e68ab4fbab0f27a9f131428b28920e8ab3e9e026d6745c26ad65a06943bc4f97f958335de64834ab02970f30ebdb2a2d9e8de97b1191161e9ea2b11d5868f2179cb8a81f362803132f3855cc846cc6d720d708d0935851853cd7472d16e6284fffb902187c2a35612d3311d9f07d6e3a5440c17c39cc7bea11d71fae73983111edf76a17105cf0ed4307ceee061b3bb0391a296fd7d0189ffe0d82e47fd930a16ef4631a78c72ca76d9d4d708992af8a536358f1ab153ed000ea032a65fb7074425fd69961"}, 0xdf, 0x2)
r6 = gettid()
kcmp(r5, r6, 0x3, r4, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x200, 0x0, 0x0, 0x3}, r5, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r7, 0x0, r7)
dup(r7)
ioctl$EXT4_IOC_GROUP_EXTEND(r3, 0x40086607, &(0x7f00000004c0))

16:42:18 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(r4, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0xac5c777059d8182c)
r6 = fsopen(&(0x7f0000000200)='autofs\x00', 0x1)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000240)={{0x1, 0x1, 0x18, <r7=>r0, {0xa00}}, './file0\x00'})
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, 0x0, &(0x7f00000002c0)=@IORING_OP_FILES_UPDATE={0x14, 0x2, 0x0, 0x0, 0x9, &(0x7f0000000280)=[r5, r0, r6, r7, r0], 0x5, 0x0, 0x1, {0x0, r8}}, 0x6)
r9 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r9, &(0x7f0000000000)={0x1f, @fixed}, 0x8)
r10 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r10, 0x0, r10)
ioctl$FS_IOC_MEASURE_VERITY(r10, 0xc0046686, &(0x7f0000000040)={0x1, 0x8b, "f070e72bb3a20bc2f175d457e811c55fb4018e4a800b02d7c7e2c2fde9074bf0bece3015c157f80e44096c9c17017ae1e4b59af48370c06c4430670809e980a02e6fd0ac59dcdf97001e77e31db66e92c541617b32c7a14277d3279be0a5d14c9cdb0c98177c2773701356329e0b9653aa85b4d8d6a1d67daadd453ece8fd101d879358aaee34b0b6b97f0"})
syz_open_procfs(0x0, &(0x7f0000000180)='net/kcm\x00')

16:42:18 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0xd8a02, 0x0)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, r1, 0xfaecf000)
r2 = fcntl$dupfd(r0, 0x0, r0)
ioctl$BINDER_CTL_ADD(r2, 0xc1086201, &(0x7f0000000040)={'binder1\x00'})
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))

[ 2184.662283] FAULT_INJECTION: forcing a failure.
[ 2184.662283] name failslab, interval 1, probability 0, space 0, times 0
[ 2184.663724] CPU: 0 PID: 11631 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2184.664514] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2184.665511] Call Trace:
[ 2184.665831]  dump_stack+0x107/0x167
[ 2184.666250]  should_fail.cold+0x5/0xa
[ 2184.666689]  ? ext4_mb_new_blocks+0x698/0x45c0
[ 2184.667219]  should_failslab+0x5/0x20
[ 2184.667655]  kmem_cache_alloc+0x5b/0x310
[ 2184.668120]  ext4_mb_new_blocks+0x698/0x45c0
[ 2184.668630]  ? trace_hardirqs_on+0x5b/0x180
[ 2184.669149]  ? ext4_cache_extents+0x148/0x2d0
[ 2184.669666]  ? ext4_discard_preallocations+0xd80/0xd80
[ 2184.670298]  ? ext4_ext_search_right+0x2e3/0xbd0
[ 2184.670849]  ext4_ext_map_blocks+0x1d49/0x5830
[ 2184.671375]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2184.671966]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2184.672594]  ? ext4_ext_release+0x10/0x10
[ 2184.673066]  ? ext4_map_blocks+0x5cd/0x1910
[ 2184.673554]  ? lock_release+0x680/0x680
[ 2184.674010]  ? ext4_es_lookup_extent+0x48d/0xaa0
[ 2184.674576]  ? lock_downgrade+0x6d0/0x6d0
[ 2184.675056]  ? down_write_killable+0x180/0x180
[ 2184.675581]  ext4_map_blocks+0x63f/0x1910
[ 2184.676078]  ? kmem_cache_alloc+0x2a6/0x310
[ 2184.676597]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 2184.677134]  ? jbd2__journal_start+0xf3/0x7e0
[ 2184.677674]  ? __ext4_journal_start_sb+0x214/0x390
[ 2184.678264]  ? __ext4_journal_start_sb+0x1db/0x390
[ 2184.678855]  ext4_iomap_begin+0x3ad/0x700
[ 2184.679357]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2184.679956]  ? iomap_dio_actor+0x377/0x560
[ 2184.680465]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2184.680991]  ? do_syscall_64+0x33/0x40
[ 2184.681460]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2184.682081]  iomap_apply+0x164/0x810
[ 2184.682526]  ? iomap_dio_rw+0x90/0x90
[ 2184.682968]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2184.683665]  ? mark_held_locks+0x9e/0xe0
[ 2184.684160]  ? filemap_check_errors+0xa5/0x150
[ 2184.684727]  __iomap_dio_rw+0x6cd/0x1110
[ 2184.685299]  ? iomap_dio_rw+0x90/0x90
[ 2184.685856]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2184.686406]  ? ext4_orphan_add+0x253/0x9e0
[ 2184.686889]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2184.687473]  ? ext4_empty_dir+0xae0/0xae0
[ 2184.687962]  ? jbd2__journal_start+0xf3/0x7e0
[ 2184.688498]  iomap_dio_rw+0x31/0x90
[ 2184.688912]  ext4_file_write_iter+0xe0e/0x1530
[ 2184.689425]  ? __switch_to_asm+0x3a/0x60
[ 2184.689893]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2184.690411]  ? io_schedule_timeout+0x140/0x140
[ 2184.690924]  ? splice_direct_to_actor+0x387/0x980
[ 2184.691459]  ? do_splice_direct+0x1c4/0x290
[ 2184.691941]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2184.692458]  ? do_syscall_64+0x33/0x40
[ 2184.692900]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2184.693499]  do_iter_readv_writev+0x476/0x750
[ 2184.694010]  ? _cond_resched+0x23/0x30
[ 2184.694444]  ? new_sync_write+0x660/0x660
[ 2184.694911]  ? avc_policy_seqno+0x9/0x70
[ 2184.695364]  ? selinux_file_permission+0x92/0x520
[ 2184.695909]  ? security_file_permission+0xb1/0xe0
[ 2184.696453]  do_iter_write+0x191/0x700
[ 2184.696891]  ? _raw_spin_unlock_irqrestore+0x25/0x40
[ 2184.697468]  vfs_iter_write+0x70/0xa0
[ 2184.697904]  iter_file_splice_write+0x726/0xc90
[ 2184.698434]  ? generic_splice_sendpage+0x140/0x140
[ 2184.698995]  ? security_file_permission+0xb1/0xe0
[ 2184.699538]  ? generic_splice_sendpage+0x140/0x140
[ 2184.700090]  direct_splice_actor+0x10f/0x170
[ 2184.700754]  splice_direct_to_actor+0x387/0x980
[ 2184.701286]  ? pipe_to_sendpage+0x380/0x380
[ 2184.701925]  ? do_splice_to+0x160/0x160
[ 2184.702508]  ? security_file_permission+0xb1/0xe0
[ 2184.703207]  do_splice_direct+0x1c4/0x290
[ 2184.703812]  ? splice_direct_to_actor+0x980/0x980
[ 2184.704351]  ? avc_policy_seqno+0x9/0x70
[ 2184.704943]  ? security_file_permission+0xb1/0xe0
[ 2184.705489]  do_sendfile+0x553/0x11e0
[ 2184.706050]  ? do_pwritev+0x270/0x270
[ 2184.706601]  ? wait_for_completion_io+0x270/0x270
[ 2184.707300]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2184.707973]  ? vfs_write+0x354/0xb10
[ 2184.708513]  __x64_sys_sendfile64+0x1d1/0x210
[ 2184.709170]  ? __ia32_sys_sendfile+0x220/0x220
[ 2184.709843]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2184.710434]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2184.711187]  do_syscall_64+0x33/0x40
[ 2184.711607]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2184.712348] RIP: 0033:0x7fa861eb0b19
[ 2184.712771] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2184.715452] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2184.716561] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2184.717591] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2184.718625] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2184.719657] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2184.720672] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
[ 2184.724947] loop6: detected capacity change from 0 to 16896
16:42:19 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r0, 0x406, r0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
r3 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa, 0x2010, r2, 0x10000000)
syz_io_uring_submit(0x0, r3, &(0x7f0000001c00)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r0, 0x0, &(0x7f0000001bc0)={&(0x7f0000000040)=@pppol2tpin6={0x18, 0x1, {0x0, r0, 0x2, 0x4, 0x4, 0x3, {0xa, 0x4e24, 0x7, @loopback, 0x1}}}, 0x80, &(0x7f0000001600)=[{&(0x7f00000000c0)="f70fc81ef9120d266be8d58fc04508205fd730b4bf665c1af1f6afa0d212b0d95a1621cc06d4b3e90ce8350db4b930fd26a93e97f5b440cf4ffb9b0138021f51c00cdd57249ef6530e2874de3d5f1620706aec01a675571a945453b374a5f13017d444573075cb728fbabbd108eef5db8719fd54276f65add964ee90700598206a30da9d6b3a5fd8007b1e1b3220317d", 0x90}, {&(0x7f0000000180)="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", 0x1000}, {&(0x7f0000001180)="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", 0xff}, {&(0x7f0000001280)="3edfc89b2a482cfa7a1895d688e4af8da1f566d533f049f8067cae619ffdffcd2e9ee6b659bb9227b6565b0ef713606ea2c0b7a5870263f47809c5ce10ea9dd993ef285155ee77422b09d4a23430f7bf29aa58a45692305107ef5f8def863ba245d78618027f0fd939b58bd1b5cca723fb8a40be050f31158db5a7f401dda6661038073e776e26e6ba3b597b6ae77db9656bf5e05e29560382564b", 0x9b}, {&(0x7f0000001340)="44266d76e7dcba162dca8b1e9eaee34ac02fc31f24dae5f235a56a5df4eff4a8eafd6b1f919b13d5195c842fa3fc1c66b2abb662463956d9d4190d1b5a7d617dd3159e323be4277082c9b08dbf23500c2d19c90e9a5fdcf0cdf3742cede1425ec65b89dee34e78c3d36059e773", 0x6d}, {&(0x7f00000013c0)="d31b0cea2fdddeb1e79746c00c1a0e5f14e5ac4a033428c6b4e596ff0e510c3166a8a487ac42c52dcbe8949d10d2438423ee8ca2f7d3a0a8604aa6080fea943b83ac7fd5d33d27897b292621ee1fa11e473261a8cee248fc3265462c9347657e91c48259a761c155996d6ae031cac4ef7b362eda40958e5c2fa93c5bf5eb4b3ed1806a65416e2e3825cd803f04e34fb7c0f3284f98c9262c659b7391d09f342a08aacd6d0ce01b42412dbb09eb88c84209341e8aad46147767206d150e204758ec089a974aff9cf71498", 0xca}, {&(0x7f00000014c0)="99df47966ff90e7645833f1d82e66520167b2f7bc1ba06a2fd14fb4521cdbbb87b578c651e6ba71432074c37188062bce325802deb6a97021cac51702db6c65970cd753b4564df3103b3c6a6aadb7544cf9fb13d118bec3fa671c308680fd8e80aacaa92adf8b98bd18f0a70f659a724ebc65e1e3d4ed5b7588ebf4c23cb743d90d808d6c18c4870fd865383f641bbf8760450abe927c77d02d391f538e1f48d3245654cc062690f001c547d4fc3c5ef28dd245d1d", 0xb5}, {&(0x7f0000001580)="c798f251a7b2022906d5e917656f92b6965ca57a51d655e238144777ea9d81f4ef5c567d6c8bd21fc0266fcd4d8154860f5f2a1b7be346daa1556f6605bf5e49b356458df5d614090ffdeebefd40a1d5c26ec2deced36b6c1f815d00fcdbeeefd56fda43a0d932c1b884c055e837a1e35c1341c6d1406b6a9cc517bc283d9082", 0x80}], 0x8, &(0x7f0000001680)=[{0x110, 0x116, 0x7fff, "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"}, {0x70, 0x84, 0x1, "5fb6839499097918183055facf0d065dbfe512f3a2bd6def1a001ef09dc8fa0bc619e64d6ed5c83482e2e5c3e4635c155974ae4953c57cf93004d0c520b4f8747e48df2aaee77779253f1d4ed0818c8fd66c64af152496f187c3ddbfd9"}, {0x28, 0x84, 0x1, "2ac04573d16d6ad1f1876421faf244f65905aad2"}, {0x70, 0x115, 0x7, "91cb3e61c0774748e1bc1c086cee53c5c6181a22dfab3f5632a3cf105c6b3b78d30245a19f106d37cee1c79db926515fe98a7896b8b52ad29be2485b4b4b3defc4eeef9c7a60c68dca602da1cc7ad2d53d6534ddbc19186da975e566b4f011"}, {0x80, 0x10a, 0x8, "7e4101895169f865b1d9ec77dc53e128bbd152c8b5cc49a244d40b39fc9e2ddcfe803374c0939288c87759ba05186892ecd5312b523275ffbe69ca09eff460780b9be5f8db9ed12e2bb16b24c542d726292e55c5de4a0f6b82a437c186caea5da69aeaf39a90b6be66108320"}, {0xf0, 0x116, 0x1, "869545889932dd659c61f60addfe32a269e881f16e8715dae860f68ae755605a11cc09531599c239a297de8400dc437809ec4c725993e4a763aa00632748b49cae71eafbc5de05faefc41d6c865d33731291095b78cd9bb736bf456d008dffc0b50bf77bbfa5648a59bad8f4352fe37deaf0d7d8af8b358236860757dd64b938132dd3fd6f1f8cf838457816582b287468c07d28be5a0e7c4fa32843da20a4d5a8b1990080152d23b8dac0412d67d9545c1a48d9b40a2dd4aeb2cbc9d1007415e162f6f1dadbca0913fc214be4097a0f0ab650e7b63ec105f534"}, {0xb8, 0x10c, 0x9d2, "c4e22c95ab0981b91029deb75d5722981d3c76ba06516e88339a30d67f41d91b424147f3ee66fe23d198f3845f88b8237a2d976dbd23c34ba077311d03d3544bfa3d447650fe959eb3208dc53957e65ee3ed9a0c5dcddf07f25f806571b277e1b528f039d6cf8cf7cac0446272bfa39ddf1045dbe4ab827aa92c26bccaa0eb9e082108b0cdd22187f105ac65fc2591869f6af9986eae47ee420fb52e399926d37d63f3a210c4"}, {0xe0, 0x101, 0x1, "c7454a316bc6fc007104bf33292fb93640ffbf9a231b8c79a4c9184a09e55415d1ba9e0ee06d954bd249524797d3aef3f437b388e188ffd51bde1359e33e91f6a2d6727476f04c1ff8c336333785c6e30488ec9dfee773be4d03b26eb3c29754c1c5f93bf6ee7b11011bbb63a72f3947f184d42d1c2519b83198d1565d4f6878ac83f3383252b5ff621ccfa3e28927999723206673cb15dde0ae1fa232fcfadeb148409435f6506770beb1c691e99124aa224b57702506fe677e5f06ccfba59c083941064fb8e2dd25e392ad172a52"}], 0x520}, 0x0, 0x80c4}, 0x6)
connect$bt_sco(r1, &(0x7f0000000000), 0x8)

[ 2184.733010] loop7: detected capacity change from 0 to 11776
16:42:19 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0xd8a02, 0x0)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, r1, 0xfaecf000)
r2 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))

16:42:19 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB, @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, &(0x7f0000000740), 0x400000, 0x0)
openat(r2, &(0x7f0000000040)='./file1\x00', 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:42:19 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)

[ 2184.773124] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:42:19 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 58)

16:42:19 executing program 6:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r3, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3]}, 0x2)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

[ 2184.844951] loop7: detected capacity change from 0 to 11776
[ 2184.852644] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2184.855829] 9pnet_virtio: no channels available for device syz
[ 2184.857924] FAULT_INJECTION: forcing a failure.
[ 2184.857924] name failslab, interval 1, probability 0, space 0, times 0
[ 2184.859163] CPU: 0 PID: 11647 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2184.859920] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2184.860828] Call Trace:
[ 2184.861120]  dump_stack+0x107/0x167
[ 2184.861534]  should_fail.cold+0x5/0xa
[ 2184.861962]  ? create_object.isra.0+0x3a/0xa20
[ 2184.862473]  should_failslab+0x5/0x20
[ 2184.862891]  kmem_cache_alloc+0x5b/0x310
[ 2184.863334]  ? quarantine_put+0x8b/0x1a0
[ 2184.863778]  ? trace_hardirqs_on+0x5b/0x180
[ 2184.864254]  create_object.isra.0+0x3a/0xa20
[ 2184.864724]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2184.865277]  kmem_cache_alloc+0x159/0x310
[ 2184.865736]  ? mempool_free_pages+0x20/0x20
[ 2184.866224]  mempool_alloc+0x148/0x360
[ 2184.866655]  ? mempool_resize+0x7d0/0x7d0
[ 2184.867102]  ? lock_downgrade+0x6d0/0x6d0
[ 2184.867563]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2184.868099]  bio_alloc_bioset+0x36e/0x600
[ 2184.868553]  ? bvec_alloc+0x2f0/0x2f0
[ 2184.868972]  ? iov_iter_npages+0x1fd/0xa70
[ 2184.869150] loop6: detected capacity change from 0 to 16896
[ 2184.869444]  iomap_dio_bio_actor+0x518/0xef0
[ 2184.870914]  iomap_dio_actor+0x36f/0x560
[ 2184.871361]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2184.871866]  ? do_syscall_64+0x33/0x40
[ 2184.872297]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2184.872879]  iomap_apply+0x289/0x810
[ 2184.873301]  ? iomap_dio_rw+0x90/0x90
[ 2184.873720]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2184.874366]  ? mark_held_locks+0x9e/0xe0
[ 2184.874810]  ? filemap_check_errors+0xa5/0x150
[ 2184.875318]  __iomap_dio_rw+0x6cd/0x1110
[ 2184.875760]  ? iomap_dio_rw+0x90/0x90
[ 2184.876183]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2184.876700]  ? ext4_orphan_add+0x253/0x9e0
[ 2184.877154]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2184.877690]  ? ext4_empty_dir+0xae0/0xae0
[ 2184.878143]  ? jbd2__journal_start+0xf3/0x7e0
[ 2184.878646]  iomap_dio_rw+0x31/0x90
[ 2184.879044]  ext4_file_write_iter+0xe0e/0x1530
[ 2184.879552]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2184.880042]  ? kasan_save_stack+0x32/0x40
[ 2184.880495]  ? kasan_save_stack+0x1b/0x40
[ 2184.880945]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2184.881495]  ? iter_file_splice_write+0x165/0xc90
[ 2184.882027]  ? direct_splice_actor+0x10f/0x170
[ 2184.882527]  ? splice_direct_to_actor+0x387/0x980
[ 2184.883048]  ? do_splice_direct+0x1c4/0x290
[ 2184.883520]  ? do_sendfile+0x553/0x11e0
[ 2184.884024]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2184.884624]  ? do_syscall_64+0x33/0x40
[ 2184.885134]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2184.885840]  do_iter_readv_writev+0x476/0x750
[ 2184.886386]  ? _cond_resched+0x10/0x30
[ 2184.886811]  ? new_sync_write+0x660/0x660
[ 2184.887266]  ? avc_policy_seqno+0x9/0x70
[ 2184.887707]  ? selinux_file_permission+0x92/0x520
[ 2184.888233]  ? security_file_permission+0xb1/0xe0
[ 2184.888761]  do_iter_write+0x191/0x700
[ 2184.889185]  ? trace_hardirqs_on+0x5b/0x180
[ 2184.889666]  vfs_iter_write+0x70/0xa0
[ 2184.890089]  iter_file_splice_write+0x726/0xc90
[ 2184.890610]  ? generic_splice_sendpage+0x140/0x140
[ 2184.891144]  ? security_file_permission+0xb1/0xe0
[ 2184.891673]  ? generic_splice_sendpage+0x140/0x140
[ 2184.892204]  direct_splice_actor+0x10f/0x170
[ 2184.892689]  splice_direct_to_actor+0x387/0x980
[ 2184.893199]  ? pipe_to_sendpage+0x380/0x380
[ 2184.893676]  ? do_splice_to+0x160/0x160
[ 2184.894115]  ? security_file_permission+0xb1/0xe0
[ 2184.894651]  do_splice_direct+0x1c4/0x290
[ 2184.895099]  ? splice_direct_to_actor+0x980/0x980
[ 2184.895626]  ? avc_policy_seqno+0x9/0x70
[ 2184.896069]  ? security_file_permission+0xb1/0xe0
[ 2184.896600]  do_sendfile+0x553/0x11e0
[ 2184.897019]  ? do_pwritev+0x270/0x270
[ 2184.897435]  ? wait_for_completion_io+0x270/0x270
[ 2184.898012]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2184.898520]  ? vfs_write+0x354/0xb10
[ 2184.898928]  __x64_sys_sendfile64+0x1d1/0x210
[ 2184.899413]  ? __ia32_sys_sendfile+0x220/0x220
[ 2184.899910]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2184.900477]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2184.901034]  do_syscall_64+0x33/0x40
[ 2184.901439]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2184.902007] RIP: 0033:0x7fa861eb0b19
[ 2184.902417] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2184.904405] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2184.905235] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2184.906019] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2184.906796] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2184.907580] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2184.908375] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
16:42:19 executing program 3:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0xd8a02, 0x0)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, r0, 0xfaecf000)
ioctl$sock_inet6_tcp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000180))

16:42:19 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x3f00, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:42:19 executing program 6:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r3, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3]}, 0x2)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

[ 2185.026159] loop7: detected capacity change from 0 to 15872
[ 2185.032310] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2185.045254] loop7: detected capacity change from 0 to 15872
[ 2185.049781] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2185.055091] loop6: detected capacity change from 0 to 16896
16:42:36 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_WRITE_FIXED={0x5, 0x5, 0xc00a, @fd_index=0x1, 0x539, 0xa80, 0x1, 0x4, 0x0, {0x1}}, 0x10001)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x7)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000040))

16:42:36 executing program 5:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, @out_args}, './file1\x00'})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xfffffffffff7ffff, r1, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r1, 0x40086607, &(0x7f00000004c0))

16:42:36 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r0, 0x0, r0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:42:36 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x4000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:42:36 executing program 3:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0xd8a02, 0x0)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, r0, 0xfaecf000)
ioctl$sock_inet6_tcp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000180))

16:42:36 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 59)

16:42:36 executing program 6:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r3, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3]}, 0x2)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:42:36 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, &(0x7f0000000740), 0x400000, 0x0)
openat(r2, &(0x7f0000000040)='./file1\x00', 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

[ 2202.160182] loop7: detected capacity change from 0 to 16384
[ 2202.197430] FAULT_INJECTION: forcing a failure.
[ 2202.197430] name failslab, interval 1, probability 0, space 0, times 0
[ 2202.199960] CPU: 0 PID: 11703 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2202.201421] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2202.203165] Call Trace:
[ 2202.203726]  dump_stack+0x107/0x167
[ 2202.204499]  should_fail.cold+0x5/0xa
[ 2202.205306]  ? create_object.isra.0+0x3a/0xa20
[ 2202.206277]  should_failslab+0x5/0x20
[ 2202.207077]  kmem_cache_alloc+0x5b/0x310
[ 2202.207928]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2202.209053]  create_object.isra.0+0x3a/0xa20
[ 2202.209976]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2202.211059]  kmem_cache_alloc+0x159/0x310
[ 2202.211936]  ? __kernel_text_address+0x9/0x40
[ 2202.212888]  jbd2__journal_start+0x190/0x7e0
[ 2202.213824]  __ext4_journal_start_sb+0x214/0x390
[ 2202.214849]  ext4_iomap_begin+0x485/0x700
[ 2202.215742]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2202.216765]  ? kasan_save_stack+0x1b/0x40
[ 2202.217640]  ? ext4_file_write_iter+0xe0e/0x1530
[ 2202.218657]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 2202.219988]  ? splice_direct_to_actor+0x387/0x980
[ 2202.220999]  ? do_splice_direct+0x1c4/0x290
[ 2202.221905]  ? do_sendfile+0x553/0x11e0
[ 2202.222750]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2202.223723]  ? do_syscall_64+0x33/0x40
[ 2202.224544]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2202.225674]  iomap_apply+0x164/0x810
[ 2202.226465]  ? iomap_dio_rw+0x90/0x90
[ 2202.227274]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2202.228507]  ? mark_held_locks+0x9e/0xe0
[ 2202.229373]  ? filemap_check_errors+0xa5/0x150
[ 2202.230353]  __iomap_dio_rw+0x6cd/0x1110
[ 2202.231204]  ? iomap_dio_rw+0x90/0x90
[ 2202.232026]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2202.232986]  ? ext4_orphan_add+0x253/0x9e0
[ 2202.233875]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2202.234914]  ? ext4_empty_dir+0xae0/0xae0
[ 2202.235788]  ? jbd2__journal_start+0xf3/0x7e0
[ 2202.236755]  iomap_dio_rw+0x31/0x90
[ 2202.237531]  ext4_file_write_iter+0xe0e/0x1530
[ 2202.238521]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2202.239478]  ? kasan_save_stack+0x32/0x40
[ 2202.240340]  ? kasan_save_stack+0x1b/0x40
[ 2202.241206]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2202.242277]  ? iter_file_splice_write+0x165/0xc90
[ 2202.242496] loop6: detected capacity change from 0 to 16896
[ 2202.243287]  ? direct_splice_actor+0x10f/0x170
[ 2202.243304]  ? splice_direct_to_actor+0x387/0x980
[ 2202.243320]  ? do_splice_direct+0x1c4/0x290
[ 2202.243337]  ? do_sendfile+0x553/0x11e0
[ 2202.243359]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2202.249129]  ? do_syscall_64+0x33/0x40
[ 2202.249946]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2202.251084]  do_iter_readv_writev+0x476/0x750
[ 2202.252027]  ? _cond_resched+0x10/0x30
[ 2202.252856]  ? new_sync_write+0x660/0x660
[ 2202.253732]  ? avc_policy_seqno+0x9/0x70
[ 2202.254591]  ? selinux_file_permission+0x92/0x520
[ 2202.255614]  ? security_file_permission+0xb1/0xe0
[ 2202.256649]  do_iter_write+0x191/0x700
[ 2202.257476]  ? trace_hardirqs_on+0x5b/0x180
[ 2202.258407]  vfs_iter_write+0x70/0xa0
[ 2202.259213]  iter_file_splice_write+0x726/0xc90
[ 2202.260208]  ? generic_splice_sendpage+0x140/0x140
[ 2202.261259]  ? security_file_permission+0xb1/0xe0
[ 2202.262523]  ? generic_splice_sendpage+0x140/0x140
[ 2202.263769]  direct_splice_actor+0x10f/0x170
[ 2202.264880]  splice_direct_to_actor+0x387/0x980
[ 2202.266077]  ? pipe_to_sendpage+0x380/0x380
[ 2202.267338]  ? do_splice_to+0x160/0x160
[ 2202.268344]  ? security_file_permission+0xb1/0xe0
[ 2202.269553]  do_splice_direct+0x1c4/0x290
[ 2202.270623]  ? splice_direct_to_actor+0x980/0x980
[ 2202.271651]  ? avc_policy_seqno+0x9/0x70
[ 2202.272508]  ? security_file_permission+0xb1/0xe0
[ 2202.273519]  do_sendfile+0x553/0x11e0
[ 2202.274341]  ? do_pwritev+0x270/0x270
[ 2202.275139]  ? wait_for_completion_io+0x270/0x270
[ 2202.276149]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2202.277117]  ? vfs_write+0x354/0xb10
[ 2202.277898]  __x64_sys_sendfile64+0x1d1/0x210
[ 2202.278840]  ? __ia32_sys_sendfile+0x220/0x220
[ 2202.279803]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2202.280903]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2202.281978]  do_syscall_64+0x33/0x40
[ 2202.282763]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2202.283838] RIP: 0033:0x7fa861eb0b19
[ 2202.284617] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2202.288456] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2202.290054] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2202.291546] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2202.293042] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2202.294541] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2202.296032] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
[ 2202.318157] 9pnet: Could not find request transport: xen
[ 2202.328463] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2202.395269] loop7: detected capacity change from 0 to 16384
[ 2202.414360] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:42:50 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})

16:42:50 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, &(0x7f0000000740), 0x400000, 0x0)
openat(r2, &(0x7f0000000040)='./file1\x00', 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:42:50 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 60)

16:42:50 executing program 6:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r3, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, 0xffffffffffffffff, r3]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:42:50 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = syz_open_dev$evdev(&(0x7f00000000c0), 0x3, 0x145001)
fallocate(r2, 0x10, 0x4, 0x7fffffff)
r3 = fcntl$dupfd(r1, 0x0, r1)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x10040, 0x0)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READ_FIXED={0x4, 0x4, 0x4007, @fd=r3, 0x9, 0x4, 0x8, 0x12, 0x1, {0x2}}, 0x40000)
r4 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed}, 0x7)

16:42:50 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x53ef, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:42:50 executing program 5:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x6}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, @out_args}, './file1\x00'})
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$FITRIM(r2, 0xc0185879, &(0x7f0000000180)={0x9, 0xfffffffffffffffe, 0x100000000})
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = fcntl$dupfd(r3, 0x0, r3)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r6 = fcntl$dupfd(r5, 0x0, r5)
connect$bt_sco(r6, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$TIOCGICOUNT(r6, 0x545d, 0x0)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x40082406, &(0x7f0000000140)='*\xc0/&\x00')
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x14400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r7, 0x40086607, &(0x7f00000004c0))

16:42:50 executing program 3:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0xd8a02, 0x0)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, r0, 0xfaecf000)
ioctl$sock_inet6_tcp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000180))

[ 2216.565300] loop7: detected capacity change from 0 to 20992
[ 2216.573463] 9pnet: Could not find request transport: xen
[ 2216.584588] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:42:51 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0xd8a02, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:42:51 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>r0}, './file0\x00'})
pread64(r1, &(0x7f0000000080)=""/139, 0x8b, 0x2)
r2 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:42:51 executing program 1:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(0xffffffffffffffff, &(0x7f0000000000)={0x1f, @fixed}, 0x7)

[ 2216.657241] FAULT_INJECTION: forcing a failure.
[ 2216.657241] name failslab, interval 1, probability 0, space 0, times 0
[ 2216.657833] loop6: detected capacity change from 0 to 16896
[ 2216.659655] CPU: 0 PID: 11734 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2216.659666] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2216.659673] Call Trace:
[ 2216.659698]  dump_stack+0x107/0x167
[ 2216.659720]  should_fail.cold+0x5/0xa
[ 2216.659742]  ? create_object.isra.0+0x3a/0xa20
[ 2216.659765]  should_failslab+0x5/0x20
[ 2216.659784]  kmem_cache_alloc+0x5b/0x310
[ 2216.659814]  create_object.isra.0+0x3a/0xa20
[ 2216.669329]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2216.670411]  kmem_cache_alloc+0x159/0x310
[ 2216.671289]  ext4_mb_new_blocks+0x698/0x45c0
[ 2216.672229]  ? trace_hardirqs_on+0x5b/0x180
[ 2216.673140]  ? ext4_cache_extents+0x148/0x2d0
[ 2216.674089]  ? ext4_discard_preallocations+0xd80/0xd80
[ 2216.675216]  ? ext4_ext_search_right+0x2e3/0xbd0
[ 2216.676223]  ext4_ext_map_blocks+0x1d49/0x5830
[ 2216.677209]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2216.678334]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2216.679463]  ? ext4_ext_release+0x10/0x10
[ 2216.680350]  ? ext4_map_blocks+0x5cd/0x1910
[ 2216.681279]  ? lock_release+0x680/0x680
[ 2216.682124]  ? ext4_es_lookup_extent+0x48d/0xaa0
[ 2216.683145]  ? lock_downgrade+0x6d0/0x6d0
[ 2216.684041]  ? down_write_killable+0x180/0x180
[ 2216.685025]  ext4_map_blocks+0x63f/0x1910
[ 2216.685908]  ? kmem_cache_alloc+0x2a6/0x310
[ 2216.686832]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 2216.687784]  ? jbd2__journal_start+0xf3/0x7e0
[ 2216.688729]  ? __ext4_journal_start_sb+0x214/0x390
[ 2216.689762]  ? __ext4_journal_start_sb+0x1db/0x390
[ 2216.690818]  ext4_iomap_begin+0x3ad/0x700
[ 2216.691712]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2216.692763]  ? iomap_dio_actor+0x377/0x560
[ 2216.693654]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2216.694647]  ? do_syscall_64+0x33/0x40
[ 2216.695469]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2216.696601]  iomap_apply+0x164/0x810
[ 2216.697390]  ? iomap_dio_rw+0x90/0x90
[ 2216.698210]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2216.699433]  ? mark_held_locks+0x9e/0xe0
[ 2216.700309]  ? filemap_check_errors+0xa5/0x150
[ 2216.701285]  __iomap_dio_rw+0x6cd/0x1110
[ 2216.702143]  ? iomap_dio_rw+0x90/0x90
[ 2216.702981]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2216.703951]  ? ext4_orphan_add+0x253/0x9e0
[ 2216.704846]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2216.705889]  ? ext4_empty_dir+0xae0/0xae0
[ 2216.706772]  ? jbd2__journal_start+0xf3/0x7e0
[ 2216.707729]  iomap_dio_rw+0x31/0x90
[ 2216.708504]  ext4_file_write_iter+0xe0e/0x1530
[ 2216.709487]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2216.710454]  ? kasan_save_stack+0x32/0x40
[ 2216.711328]  ? kasan_save_stack+0x1b/0x40
[ 2216.712203]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2216.713275]  ? iter_file_splice_write+0x165/0xc90
[ 2216.714302]  ? direct_splice_actor+0x10f/0x170
[ 2216.715264]  ? splice_direct_to_actor+0x387/0x980
[ 2216.716279]  ? do_splice_direct+0x1c4/0x290
[ 2216.717191]  ? do_sendfile+0x553/0x11e0
[ 2216.718029]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2216.719015]  ? do_syscall_64+0x33/0x40
[ 2216.719837]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2216.720973]  do_iter_readv_writev+0x476/0x750
[ 2216.721923]  ? _cond_resched+0x10/0x30
[ 2216.722769]  ? new_sync_write+0x660/0x660
[ 2216.723673]  ? avc_policy_seqno+0x9/0x70
[ 2216.724555]  ? selinux_file_permission+0x92/0x520
[ 2216.725605]  ? security_file_permission+0xb1/0xe0
[ 2216.726680]  do_iter_write+0x191/0x700
[ 2216.727527]  ? trace_hardirqs_on+0x5b/0x180
[ 2216.728479]  vfs_iter_write+0x70/0xa0
[ 2216.729316]  iter_file_splice_write+0x726/0xc90
[ 2216.730360]  ? generic_splice_sendpage+0x140/0x140
[ 2216.731392]  ? security_file_permission+0xb1/0xe0
[ 2216.732413]  ? generic_splice_sendpage+0x140/0x140
[ 2216.733450]  direct_splice_actor+0x10f/0x170
[ 2216.734389]  splice_direct_to_actor+0x387/0x980
[ 2216.735381]  ? pipe_to_sendpage+0x380/0x380
[ 2216.736300]  ? do_splice_to+0x160/0x160
[ 2216.737136]  ? security_file_permission+0xb1/0xe0
[ 2216.738178]  do_splice_direct+0x1c4/0x290
[ 2216.739057]  ? splice_direct_to_actor+0x980/0x980
[ 2216.740074]  ? avc_policy_seqno+0x9/0x70
[ 2216.740943]  ? security_file_permission+0xb1/0xe0
[ 2216.741969]  do_sendfile+0x553/0x11e0
[ 2216.742796]  ? do_pwritev+0x270/0x270
[ 2216.743605]  ? wait_for_completion_io+0x270/0x270
[ 2216.744627]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2216.745607]  ? vfs_write+0x354/0xb10
[ 2216.746415]  __x64_sys_sendfile64+0x1d1/0x210
[ 2216.747367]  ? __ia32_sys_sendfile+0x220/0x220
[ 2216.748339]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2216.749448]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2216.750560]  do_syscall_64+0x33/0x40
[ 2216.751352]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2216.752451] RIP: 0033:0x7fa861eb0b19
[ 2216.753236] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2216.757111] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2216.758739] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2216.760244] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2216.761747] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2216.763258] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2216.764761] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
16:42:51 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xedc0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

[ 2216.885208] loop7: detected capacity change from 0 to 60416
16:42:51 executing program 5:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
ioctl$EVIOCGABS2F(r1, 0x8018456f, &(0x7f0000000240)=""/238)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000180)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r2=>r1, @ANYBLOB="c71091a94a332a9c9f56987874d24a6f1e5fe730546217f3b46bd4bb539afb957f91f0f777eed4d509aabc705e0c8b6c4eea45c380257ae4a7ded143e8232488eb3b23a356f9171b731f02ad600c0604fd1b58569eab7d477a543eb0e4906c71522c27981224404eb92b37ce1063ce735380b03f1d3557dd858932ea3e335629b22f80d4ee54d371dd6d7fb17d1e439ea0ed893d299ce37c76cef0180cc251c540a1d6ce269ceadcf98c5299294ca539"])
write$binfmt_elf32(r1, &(0x7f0000000500)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x5e, 0x81, 0x2, 0x734, 0x3, 0x6, 0x10001, 0x83, 0x38, 0x2e0, 0x3f, 0x8, 0x20, 0x2, 0x1000, 0x7, 0x7f}, [{0x6, 0x9, 0x6, 0x1, 0x5, 0x1, 0x1000, 0x1}, {0x60000000, 0x5, 0x9e, 0x7f04, 0x9, 0x100, 0x3, 0x200}], "99ead9fdceb80419dac5b50f4df072672f1cc586e46f6bb4f4b89c682bd4524ca8f6125baa0b4eca5d49ae03c85c08273a5afbe69c6f6d4aecd446e293c6d19a08bfe6330345aa6ef535c7080b162275069efddc1cc532057b8af8e557", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x9d5)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = fcntl$dupfd(r4, 0x0, r4)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r7 = fcntl$dupfd(r6, 0x0, r6)
connect$bt_sco(r7, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
sendfile(r7, r0, &(0x7f00000000c0)=0x3, 0x101)
connect$bt_sco(r5, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r5, &(0x7f0000000140)={0x10000000})
ioctl$EXT4_IOC_GROUP_EXTEND(r3, 0x40086607, &(0x7f00000004c0))

[ 2216.926481] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:42:51 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$INCFS_IOC_CREATE_FILE(r0, 0xc058671e, &(0x7f0000000440)={{'\x00', 0x2}, {0xefdb}, 0x78, 0x0, 0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)="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", 0x174, 0x0, &(0x7f0000000240)={0x2, 0x1b6, {0x0, 0xc, 0xfe, "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", 0xab, "b1c8da7509eeb96a46ec5114c3f7eea28866c5f6ceae91321c9840876b7e47a6ea678281712870b5cad8c6702963eec30da053c91dbfe064e8f13652733074eade680cea5e9f8b186caffd87e4eb44b72b7b920d14f5d713322b40d17e691ab38006912f6e3fd7b19fe7588437625318d995f2f8f7206a5a450e91f6ff23c460465dcb518908cbba2a2ebc5b1c33d72ca36286d96a74357ab3eb60ff328f66456c7aa2d6473cdbee9ca722"}, 0x29, "274fb822e09491666719ba37c3376458b2ef2fa80742fc43fc216922caa943ca8b1219b6acc92ed77a"}, 0x1eb})
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:42:51 executing program 6:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r3, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, 0xffffffffffffffff, r3]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:42:51 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:42:51 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000002, 0x4000010, r2, 0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = fcntl$dupfd(r4, 0x0, r4)
connect$bt_sco(r5, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r6 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x400000, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000240)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[0xffffffffffffffff, r5, r0, r0, r0, r6], 0x6, 0x0, 0x1}, 0x4)
accept4$packet(r2, &(0x7f0000000040), &(0x7f0000000080)=0x14, 0x80000)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r7, 0x0, r7)
socket$nl_audit(0x10, 0x3, 0x9)
socketpair(0x27, 0x6, 0x8, &(0x7f00000000c0))
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r9 = fcntl$dupfd(r8, 0x0, r8)
getsockname(r9, &(0x7f0000000180)=@hci, &(0x7f0000000100)=0x80)
r10 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r10, &(0x7f0000000000)={0x1f, @fixed}, 0x7)

[ 2217.021802] loop7: detected capacity change from 0 to 60416
[ 2217.034882] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:42:51 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, &(0x7f0000000740), 0x400000, 0x0)
openat(r2, &(0x7f0000000040)='./file1\x00', 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:42:51 executing program 4:
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000140)=0x40)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
accept(r1, &(0x7f0000000080)=@caif, &(0x7f0000000100)=0x80)
r2 = fcntl$dupfd(r0, 0x0, r0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = fcntl$dupfd(r3, 0x0, r3)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
getsockopt$sock_timeval(r4, 0x1, 0x42, &(0x7f0000000180), &(0x7f00000001c0)=0x10)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

[ 2217.153419] loop6: detected capacity change from 0 to 16896
[ 2217.200995] 9pnet: Could not find request transport: xen
[ 2231.533716] loop7: detected capacity change from 0 to 60928
16:43:05 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xef53, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:43:05 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:43:05 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r1, 0x0, r1)
r2 = fcntl$dupfd(r1, 0x0, r0)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed}, 0x7)

16:43:05 executing program 6:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r3, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, 0xffffffffffffffff, r3]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:43:05 executing program 5:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
r2 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x200000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_TIMEOUT={0xb, 0x5, 0x0, 0x0, 0x9, &(0x7f00000001c0)={0x0, 0x989680}, 0x1, 0xb78fd835eb154887, 0x1}, 0x5)
r3 = syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = fork()
r5 = gettid()
kcmp(r4, r5, 0x3, r3, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000240)={0x5, 0x80, 0x4, 0x81, 0x5, 0x81, 0x0, 0x6, 0x40, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x3, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x9, 0x6798}, 0x8, 0x5, 0x4f, 0x3, 0x1f, 0x0, 0x8, 0x0, 0x9, 0x0, 0xfffffffeffffffff}, r5, 0x10, r2, 0x1)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x4, 0xff, 0x81, 0x5, 0x0, 0x8, 0x640, 0x6, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x2, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x30a46fc8, 0x1, @perf_config_ext={0xb, 0x5}, 0x0, 0x9, 0x2, 0x0, 0x2, 0x2d679265, 0x1003, 0x0, 0x3, 0x0, 0x9}, r5, 0x6, r0, 0x19)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r1, @out_args}, './file1\x00'})
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r6, 0x40086607, &(0x7f00000004c0))

16:43:05 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,acc', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, &(0x7f0000000740), 0x400000, 0x0)
openat(r2, &(0x7f0000000040)='./file1\x00', 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:43:05 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 61)

16:43:05 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r2, 0x0, r2)
bind$bt_sco(r2, &(0x7f00000001c0)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}, 0x8)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x2007, @fd=r1, 0x5, &(0x7f0000000140)=[{&(0x7f0000000040)=""/210, 0xd2}], 0x1, 0x0, 0x1}, 0x8)
link(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='./file0\x00')

[ 2231.553132] FAULT_INJECTION: forcing a failure.
[ 2231.553132] name failslab, interval 1, probability 0, space 0, times 0
[ 2231.554580] CPU: 1 PID: 11798 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2231.555445] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2231.556478] Call Trace:
[ 2231.556818]  dump_stack+0x107/0x167
[ 2231.557274]  should_fail.cold+0x5/0xa
[ 2231.557748]  ? bvec_alloc+0x148/0x2f0
[ 2231.558223]  should_failslab+0x5/0x20
[ 2231.558709]  kmem_cache_alloc+0x5b/0x310
[ 2231.559217]  bvec_alloc+0x148/0x2f0
16:43:05 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$IP_VS_SO_GET_VERSION(r0, 0x0, 0x480, &(0x7f0000000040), &(0x7f0000000080)=0x40)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

[ 2231.559672]  bio_alloc_bioset+0x40a/0x600
[ 2231.560343]  ? bvec_alloc+0x2f0/0x2f0
[ 2231.560829]  ? iov_iter_npages+0x1fd/0xa70
[ 2231.561361]  iomap_dio_bio_actor+0x518/0xef0
[ 2231.561919]  iomap_dio_actor+0x36f/0x560
[ 2231.562435]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2231.563022]  ? do_syscall_64+0x33/0x40
[ 2231.563501]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2231.564166]  iomap_apply+0x289/0x810
[ 2231.564635]  ? iomap_dio_rw+0x90/0x90
[ 2231.565115]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2231.565845]  ? mark_held_locks+0x9e/0xe0
[ 2231.566388]  ? filemap_check_errors+0xa5/0x150
[ 2231.566960]  __iomap_dio_rw+0x6cd/0x1110
[ 2231.567471]  ? iomap_dio_rw+0x90/0x90
[ 2231.567947]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2231.568527]  ? ext4_orphan_add+0x253/0x9e0
[ 2231.569060]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2231.569686]  ? ext4_empty_dir+0xae0/0xae0
[ 2231.570201]  ? jbd2__journal_start+0xf3/0x7e0
[ 2231.570779]  iomap_dio_rw+0x31/0x90
[ 2231.571240]  ext4_file_write_iter+0xe0e/0x1530
[ 2231.571827]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2231.572396]  ? kasan_save_stack+0x32/0x40
[ 2231.572913]  ? kasan_save_stack+0x1b/0x40
[ 2231.573405]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2231.574036]  ? iter_file_splice_write+0x165/0xc90
[ 2231.574634]  ? direct_splice_actor+0x10f/0x170
[ 2231.575198]  ? splice_direct_to_actor+0x387/0x980
[ 2231.575795]  ? do_splice_direct+0x1c4/0x290
[ 2231.576337]  ? do_sendfile+0x553/0x11e0
[ 2231.576840]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2231.577412]  ? do_syscall_64+0x33/0x40
[ 2231.577893]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2231.578567]  do_iter_readv_writev+0x476/0x750
[ 2231.579127]  ? _cond_resched+0x10/0x30
[ 2231.579611]  ? new_sync_write+0x660/0x660
[ 2231.580122]  ? avc_policy_seqno+0x9/0x70
[ 2231.580222] 9pnet: Could not find request transport: xen
[ 2231.580626]  ? selinux_file_permission+0x92/0x520
[ 2231.580640]  ? security_file_permission+0xb1/0xe0
[ 2231.580658]  do_iter_write+0x191/0x700
[ 2231.580672]  ? trace_hardirqs_on+0x5b/0x180
[ 2231.580688]  vfs_iter_write+0x70/0xa0
[ 2231.580701]  iter_file_splice_write+0x726/0xc90
[ 2231.580722]  ? generic_splice_sendpage+0x140/0x140
[ 2231.580743]  ? security_file_permission+0xb1/0xe0
[ 2231.580756]  ? generic_splice_sendpage+0x140/0x140
[ 2231.580769]  direct_splice_actor+0x10f/0x170
[ 2231.580782]  splice_direct_to_actor+0x387/0x980
[ 2231.580797]  ? pipe_to_sendpage+0x380/0x380
[ 2231.580810]  ? do_splice_to+0x160/0x160
[ 2231.580821]  ? security_file_permission+0xb1/0xe0
[ 2231.580837]  do_splice_direct+0x1c4/0x290
[ 2231.580849]  ? splice_direct_to_actor+0x980/0x980
[ 2231.580859]  ? avc_policy_seqno+0x9/0x70
[ 2231.580873]  ? security_file_permission+0xb1/0xe0
[ 2231.580890]  do_sendfile+0x553/0x11e0
[ 2231.580909]  ? do_pwritev+0x270/0x270
[ 2231.580920]  ? wait_for_completion_io+0x270/0x270
[ 2231.580934]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2231.580944]  ? vfs_write+0x354/0xb10
[ 2231.580963]  __x64_sys_sendfile64+0x1d1/0x210
[ 2231.594789]  ? __ia32_sys_sendfile+0x220/0x220
[ 2231.595360]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2231.596004]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2231.596647]  do_syscall_64+0x33/0x40
[ 2231.597103]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2231.597730] RIP: 0033:0x7fa861eb0b19
[ 2231.598170] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2231.600343] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2231.601258] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2231.602141] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2231.603025] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2231.603875] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2231.604860] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
[ 2231.607411] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2231.614027] loop6: detected capacity change from 0 to 16896
16:43:06 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

[ 2231.700948] loop7: detected capacity change from 0 to 60928
[ 2231.751902] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:43:06 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x100}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0)
syz_io_uring_submit(r6, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r7 = accept$inet(r1, 0x0, &(0x7f0000000100))
syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x168}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r8=>0x0, &(0x7f0000000280)=<r9=>0x0)
r10 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000240)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0x6bc2a53608fde851}, 0x1}, 0x0)
r11 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FSYNC={0x3, 0x3, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0xa27059050fd27b12, 0x1, {0x0, r11}}, 0x8)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000700)=@IORING_OP_RECVMSG={0xa, 0x1, 0x0, r10, 0x0, &(0x7f00000006c0)={&(0x7f0000000440)=@ax25={{0x3, @netrom}, [@bcast, @bcast, @bcast, @default, @netrom, @bcast, @bcast]}, 0x80, &(0x7f0000000640)=[{&(0x7f00000003c0)=""/12, 0xc}, {&(0x7f00000004c0)=""/90, 0x5a}, {&(0x7f0000000540)=""/205, 0xcd}], 0x3, &(0x7f0000000680)=""/23, 0x17}, 0x0, 0x40, 0x0, {0x2, r11}}, 0x7)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_POLL_REMOVE={0x7, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, {0x0, r11}}, 0x6)
syz_io_uring_submit(0x0, r5, &(0x7f0000000180)=@IORING_OP_FILES_UPDATE={0x14, 0x4, 0x0, 0x0, 0x3, &(0x7f0000000140)=[r7], 0x1, 0x0, 0x0, {0x0, r11}}, 0x1000)
r12 = fcntl$dupfd(r2, 0x406, r2)
connect$bt_sco(r12, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
getsockopt$IP_VS_SO_GET_SERVICE(r12, 0x0, 0x483, &(0x7f0000000040), &(0x7f00000000c0)=0x68)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x7)

16:43:06 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xff0f, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

[ 2231.884278] loop7: detected capacity change from 0 to 65024
[ 2231.891110] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2245.357754] loop7: detected capacity change from 0 to 524288
16:43:19 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,acc', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, &(0x7f0000000740), 0x400000, 0x0)
openat(r2, &(0x7f0000000040)='./file1\x00', 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:43:19 executing program 3:
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0xd8a02, 0x0)
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$sock_inet6_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000180))

16:43:19 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 62)

16:43:19 executing program 5:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r1, @out_args}, './file1\x00'})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="13000000320001"], 0x20}}, 0x0)
r3 = socket$packet(0x11, 0x2, 0x300)
ioctl$BTRFS_IOC_SNAP_DESTROY(r3, 0x5000940f, &(0x7f0000000500)={{r0}, "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"})
getdents64(0xffffffffffffffff, &(0x7f0000000140), 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x0, 0x6, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
ioctl$EXT4_IOC_GROUP_EXTEND(r4, 0x40086607, &(0x7f00000004c0))

16:43:19 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
io_uring_enter(r3, 0x10fe, 0x4519, 0x3, &(0x7f0000000040)={[0x2]}, 0x8)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:43:19 executing program 6:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[r3, r4]}, 0x2)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:43:19 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
setsockopt$bt_BT_RCVMTU(r2, 0x112, 0xd, &(0x7f0000000040), 0x2)
r3 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed}, 0x7)

16:43:19 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x80000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:43:19 executing program 3:
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0xd8a02, 0x0)
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$sock_inet6_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000180))

[ 2245.404105] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2245.405342] 9pnet: Could not find request transport: xen
[ 2245.420443] loop6: detected capacity change from 0 to 16896
16:43:19 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x7)
listen(r1, 0x1c71132d)

[ 2245.452691] FAULT_INJECTION: forcing a failure.
[ 2245.452691] name failslab, interval 1, probability 0, space 0, times 0
[ 2245.455308] CPU: 0 PID: 11857 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2245.456777] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2245.458549] Call Trace:
[ 2245.459122]  dump_stack+0x107/0x167
[ 2245.459904]  should_fail.cold+0x5/0xa
[ 2245.460725]  ? create_object.isra.0+0x3a/0xa20
[ 2245.461183] loop7: detected capacity change from 0 to 524288
[ 2245.461693]  should_failslab+0x5/0x20
[ 2245.461718]  kmem_cache_alloc+0x5b/0x310
[ 2245.464068]  create_object.isra.0+0x3a/0xa20
[ 2245.464994]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2245.466069]  kmem_cache_alloc+0x159/0x310
[ 2245.466966]  jbd2_journal_add_journal_head+0x1a3/0x540
[ 2245.468074]  jbd2_journal_get_write_access+0x116/0x190
[ 2245.469182]  __ext4_journal_get_write_access+0x1a9/0x2c0
[ 2245.470151] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2245.470340]  ext4_mb_mark_diskspace_used+0x1c7/0x1690
[ 2245.472130]  ? ext4_mb_try_best_found.isra.0+0x600/0x600
[ 2245.473297]  ext4_mb_new_blocks+0xc48/0x45c0
[ 2245.474245]  ? trace_hardirqs_on+0x5b/0x180
[ 2245.475171]  ? ext4_cache_extents+0x148/0x2d0
[ 2245.476119]  ? ext4_discard_preallocations+0xd80/0xd80
[ 2245.477230]  ? ext4_ext_search_right+0x2e3/0xbd0
[ 2245.478242]  ext4_ext_map_blocks+0x1d49/0x5830
[ 2245.479239]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2245.480353]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2245.481467]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2245.482582]  ? quarantine_put+0x8b/0x1a0
[ 2245.483440]  ? ext4_ext_release+0x10/0x10
[ 2245.484321]  ? ext4_map_blocks+0x5cd/0x1910
[ 2245.485238]  ? lock_release+0x680/0x680
[ 2245.486080]  ? ext4_es_lookup_extent+0x48d/0xaa0
[ 2245.487090]  ? lock_downgrade+0x6d0/0x6d0
[ 2245.487964]  ? kmem_cache_free+0x249/0x2d0
[ 2245.488876]  ? down_write_killable+0x180/0x180
[ 2245.489855]  ext4_map_blocks+0x63f/0x1910
[ 2245.490747]  ? kmem_cache_alloc+0x2a6/0x310
[ 2245.491664]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 2245.492614]  ? jbd2__journal_start+0xf3/0x7e0
[ 2245.493569]  ? __ext4_journal_start_sb+0x214/0x390
[ 2245.494610]  ? __ext4_journal_start_sb+0x1db/0x390
[ 2245.495655]  ext4_iomap_begin+0x3ad/0x700
[ 2245.496548]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2245.497599]  ? iomap_dio_actor+0x377/0x560
[ 2245.498500]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2245.499482]  ? do_syscall_64+0x33/0x40
[ 2245.500308]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2245.501441]  iomap_apply+0x164/0x810
[ 2245.502228]  ? iomap_dio_rw+0x90/0x90
[ 2245.503049]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2245.504279]  ? mark_held_locks+0x9e/0xe0
[ 2245.505157]  ? filemap_check_errors+0xa5/0x150
[ 2245.506131]  __iomap_dio_rw+0x6cd/0x1110
[ 2245.507002]  ? iomap_dio_rw+0x90/0x90
[ 2245.507828]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2245.508799]  ? ext4_orphan_add+0x253/0x9e0
[ 2245.509698]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2245.510748]  ? ext4_empty_dir+0xae0/0xae0
[ 2245.511624]  ? jbd2__journal_start+0xf3/0x7e0
[ 2245.512585]  iomap_dio_rw+0x31/0x90
[ 2245.513368]  ext4_file_write_iter+0xe0e/0x1530
[ 2245.514355]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2245.515321]  ? kasan_save_stack+0x32/0x40
[ 2245.516196]  ? kasan_save_stack+0x1b/0x40
[ 2245.517068]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2245.518139]  ? iter_file_splice_write+0x165/0xc90
[ 2245.519161]  ? direct_splice_actor+0x10f/0x170
[ 2245.520130]  ? splice_direct_to_actor+0x387/0x980
[ 2245.521153]  ? do_splice_direct+0x1c4/0x290
[ 2245.522065]  ? do_sendfile+0x553/0x11e0
[ 2245.522910]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2245.523888]  ? do_syscall_64+0x33/0x40
[ 2245.524713]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2245.525849]  do_iter_readv_writev+0x476/0x750
[ 2245.526815]  ? _cond_resched+0x10/0x30
[ 2245.527646]  ? new_sync_write+0x660/0x660
[ 2245.528531]  ? avc_policy_seqno+0x9/0x70
[ 2245.529389]  ? selinux_file_permission+0x92/0x520
[ 2245.530418]  ? security_file_permission+0xb1/0xe0
[ 2245.531458]  do_iter_write+0x191/0x700
[ 2245.532287]  ? trace_hardirqs_on+0x5b/0x180
[ 2245.533214]  vfs_iter_write+0x70/0xa0
[ 2245.534026]  iter_file_splice_write+0x726/0xc90
[ 2245.535035]  ? generic_splice_sendpage+0x140/0x140
[ 2245.536098]  ? security_file_permission+0xb1/0xe0
[ 2245.537124]  ? generic_splice_sendpage+0x140/0x140
[ 2245.538173]  direct_splice_actor+0x10f/0x170
[ 2245.539112]  splice_direct_to_actor+0x387/0x980
[ 2245.540105]  ? pipe_to_sendpage+0x380/0x380
[ 2245.541026]  ? do_splice_to+0x160/0x160
[ 2245.541872]  ? security_file_permission+0xb1/0xe0
[ 2245.542910]  do_splice_direct+0x1c4/0x290
[ 2245.543792]  ? splice_direct_to_actor+0x980/0x980
[ 2245.544807]  ? avc_policy_seqno+0x9/0x70
[ 2245.545674]  ? security_file_permission+0xb1/0xe0
[ 2245.546715]  do_sendfile+0x553/0x11e0
[ 2245.547549]  ? do_pwritev+0x270/0x270
[ 2245.548360]  ? wait_for_completion_io+0x270/0x270
[ 2245.549387]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2245.550377]  ? vfs_write+0x354/0xb10
[ 2245.551180]  __x64_sys_sendfile64+0x1d1/0x210
[ 2245.552127]  ? __ia32_sys_sendfile+0x220/0x220
[ 2245.553102]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2245.554214]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2245.555318]  do_syscall_64+0x33/0x40
[ 2245.556113]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2245.557203] RIP: 0033:0x7fa861eb0b19
[ 2245.557998] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2245.561901] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2245.563520] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2245.565031] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2245.566553] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2245.568070] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2245.569588] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
16:43:19 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)
r2 = syz_open_dev$vcsn(&(0x7f0000000040), 0x9, 0x408001)
ioctl$F2FS_IOC_GET_COMPRESS_BLOCKS(r2, 0x8008f511, &(0x7f0000000080))

16:43:19 executing program 5:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, @out_args}, './file1\x00'})
syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_complete(r1)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r3, 0x40086607, &(0x7f00000004c0))
r4 = socket$inet(0x2, 0x6, 0x1000)
fcntl$F_SET_RW_HINT(r4, 0x40c, &(0x7f0000000140)=0x1)

16:43:20 executing program 3:
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0xd8a02, 0x0)
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$sock_inet6_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000180))

16:43:20 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
ioctl$FITRIM(r1, 0xc0185879, &(0x7f0000000040)={0x7, 0x4, 0x2})
r3 = ioctl$NS_GET_PARENT(r2, 0xb702, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r0)
ftruncate(r3, 0x5a20)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed}, 0x7)

16:43:20 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x1000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:43:20 executing program 6:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[r3, r4]}, 0x2)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

[ 2245.762957] audit: type=1400 audit(1743353000.169:19): avc:  denied  { create } for  pid=11872 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dccp_socket permissive=1
[ 2245.822265] loop7: detected capacity change from 0 to 16777216
[ 2245.846922] loop6: detected capacity change from 0 to 16896
[ 2245.853304] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2245.886686] loop7: detected capacity change from 0 to 16777216
[ 2245.894837] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:43:33 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, 0x0, 0xd8a02, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:43:33 executing program 6:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[r3, r4]}, 0x2)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:43:33 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,acc', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, &(0x7f0000000740), 0x400000, 0x0)
openat(r2, &(0x7f0000000040)='./file1\x00', 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:43:33 executing program 5:
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1050, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x3, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, @out_args}, './file1\x00'})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r1, 0x40086607, &(0x7f00000004c0))

16:43:33 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 63)

16:43:33 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:43:33 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0)
syz_io_uring_submit(r5, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r6 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
syz_io_uring_submit(r9, r8, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_setup(0x758c, &(0x7f0000000080)={0x0, 0x757e, 0x8, 0x1, 0x33a, 0x0, r2}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000180), &(0x7f00000001c0)=<r10=>0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000240)=@IORING_OP_POLL_ADD={0x6, 0x5, 0x0, @fd_index, 0x0, 0x0, 0x0, {0x2012}, 0x1}, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f0000000040)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x5, 0x0, r0, 0x0, 0x0, 0x0, 0x12200, 0x1, {0x3}}, 0x9)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)

16:43:33 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0x30, 0xffffffffffffffff, 0x0)
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0)
syz_io_uring_submit(r5, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r1, r4, &(0x7f0000000040)=@IORING_OP_EPOLL_CTL=@del={0x1d, 0x2, 0x0, 0xffffffffffffffff, 0x0, r0, 0x2, 0x0, 0x1}, 0x10000)
r6 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r6, &(0x7f0000000000)={0x1f, @fixed}, 0x7)

[ 2259.301023] 9pnet: Could not find request transport: xen
[ 2259.306079] FAULT_INJECTION: forcing a failure.
[ 2259.306079] name failslab, interval 1, probability 0, space 0, times 0
[ 2259.307909] CPU: 1 PID: 11909 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2259.307931] loop6: detected capacity change from 0 to 16896
[ 2259.308902] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2259.308908] Call Trace:
[ 2259.308928]  dump_stack+0x107/0x167
[ 2259.308942]  should_fail.cold+0x5/0xa
[ 2259.308958]  ? mempool_alloc+0x148/0x360
[ 2259.308969]  ? mempool_free_pages+0x20/0x20
[ 2259.308983]  should_failslab+0x5/0x20
[ 2259.308996]  kmem_cache_alloc+0x5b/0x310
[ 2259.309010]  ? mempool_free_pages+0x20/0x20
[ 2259.309022]  mempool_alloc+0x148/0x360
[ 2259.309038]  ? mempool_resize+0x7d0/0x7d0
[ 2259.309051]  ? lock_downgrade+0x6d0/0x6d0
[ 2259.309071]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2259.309092]  bio_alloc_bioset+0x36e/0x600
[ 2259.309106]  ? bvec_alloc+0x2f0/0x2f0
[ 2259.309122]  ? iov_iter_npages+0x1fd/0xa70
[ 2259.309140]  iomap_dio_bio_actor+0x518/0xef0
[ 2259.309163]  iomap_dio_actor+0x36f/0x560
[ 2259.309174]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2259.309185]  ? do_syscall_64+0x33/0x40
[ 2259.309197]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2259.309217]  iomap_apply+0x289/0x810
[ 2259.322359]  ? iomap_dio_rw+0x90/0x90
[ 2259.322901]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2259.323668]  ? mark_held_locks+0x9e/0xe0
[ 2259.324206]  ? filemap_check_errors+0xa5/0x150
[ 2259.324804]  __iomap_dio_rw+0x6cd/0x1110
[ 2259.325316]  ? iomap_dio_rw+0x90/0x90
[ 2259.325809]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2259.326396]  ? ext4_orphan_add+0x253/0x9e0
[ 2259.326934]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2259.327565]  ? ext4_empty_dir+0xae0/0xae0
[ 2259.328084]  ? jbd2__journal_start+0xf3/0x7e0
[ 2259.328664]  iomap_dio_rw+0x31/0x90
[ 2259.329132]  ext4_file_write_iter+0xe0e/0x1530
[ 2259.329714]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2259.330297]  ? kasan_save_stack+0x32/0x40
[ 2259.330824]  ? kasan_save_stack+0x1b/0x40
[ 2259.331369]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2259.332005]  ? iter_file_splice_write+0x165/0xc90
[ 2259.332610]  ? direct_splice_actor+0x10f/0x170
[ 2259.333200]  ? splice_direct_to_actor+0x387/0x980
[ 2259.333813]  ? do_splice_direct+0x1c4/0x290
[ 2259.334354]  ? do_sendfile+0x553/0x11e0
[ 2259.334869]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2259.335451]  ? do_syscall_64+0x33/0x40
[ 2259.335944]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2259.336632]  do_iter_readv_writev+0x476/0x750
[ 2259.337203]  ? _cond_resched+0x10/0x30
[ 2259.337710]  ? new_sync_write+0x660/0x660
[ 2259.338231]  ? avc_policy_seqno+0x9/0x70
[ 2259.338771]  ? selinux_file_permission+0x92/0x520
[ 2259.339375]  ? security_file_permission+0xb1/0xe0
[ 2259.340012]  do_iter_write+0x191/0x700
[ 2259.340507]  ? trace_hardirqs_on+0x5b/0x180
[ 2259.341069]  vfs_iter_write+0x70/0xa0
[ 2259.341568]  iter_file_splice_write+0x726/0xc90
[ 2259.342170]  ? generic_splice_sendpage+0x140/0x140
[ 2259.342819]  ? security_file_permission+0xb1/0xe0
[ 2259.343433]  ? generic_splice_sendpage+0x140/0x140
[ 2259.344069]  direct_splice_actor+0x10f/0x170
[ 2259.344643]  splice_direct_to_actor+0x387/0x980
[ 2259.345226]  ? pipe_to_sendpage+0x380/0x380
[ 2259.345783]  ? do_splice_to+0x160/0x160
[ 2259.346286]  ? security_file_permission+0xb1/0xe0
[ 2259.346918]  do_splice_direct+0x1c4/0x290
[ 2259.347438]  ? splice_direct_to_actor+0x980/0x980
[ 2259.348057]  ? avc_policy_seqno+0x9/0x70
[ 2259.348567]  ? security_file_permission+0xb1/0xe0
[ 2259.349194]  do_sendfile+0x553/0x11e0
[ 2259.349678]  ? do_pwritev+0x270/0x270
[ 2259.350166]  ? wait_for_completion_io+0x270/0x270
[ 2259.350788]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2259.351382]  ? vfs_write+0x354/0xb10
[ 2259.351854]  __x64_sys_sendfile64+0x1d1/0x210
[ 2259.352436]  ? __ia32_sys_sendfile+0x220/0x220
[ 2259.353022]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2259.353697]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2259.354343]  do_syscall_64+0x33/0x40
[ 2259.354827]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2259.355466] RIP: 0033:0x7fa861eb0b19
[ 2259.355946] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2259.358312] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2259.359518] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2259.360629] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2259.361731] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2259.362852] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2259.363930] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
[ 2259.384261] loop7: detected capacity change from 0 to 33554432
[ 2259.419206] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2259.448836] loop7: detected capacity change from 0 to 33554432
[ 2259.456082] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:43:33 executing program 5:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, @out_args}, './file1\x00'})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_LINK_TIMEOUT={0xf, 0x4, 0x0, 0x0, 0x0, &(0x7f0000000140)={0x77359400}, 0x1, 0x1}, 0x3)
ioctl$EXT4_IOC_GROUP_EXTEND(r1, 0x40086607, &(0x7f00000004c0))

16:43:33 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, 0x0, 0xd8a02, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:43:33 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x3000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:43:33 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, 0x0, 0xd8a02, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:43:33 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x7)
syz_io_uring_setup(0x6712, &(0x7f0000000040)={0x0, 0x57f2, 0x10, 0x3, 0x12c}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000100)=<r2=>0x0)
clock_gettime(0x0, &(0x7f0000000140)={<r3=>0x0, <r4=>0x0})
syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r7, 0x0, 0x0}, 0x0)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FSYNC={0x3, 0x1, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r8}}, 0x8)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000700)=@IORING_OP_RECVMSG={0xa, 0x1, 0x0, r7, 0x0, &(0x7f00000006c0)={&(0x7f0000000440)=@ax25={{0x3, @netrom}, [@bcast, @bcast, @bcast, @default, @netrom, @bcast, @bcast]}, 0x80, &(0x7f0000000640)=[{&(0x7f00000003c0)=""/12, 0xc}, {&(0x7f00000004c0)=""/90, 0x5a}, {&(0x7f0000000540)=""/205, 0xcd}], 0x3, &(0x7f0000000680)=""/23, 0x17}, 0x0, 0x40, 0x0, {0x2, r8}}, 0x7)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_POLL_REMOVE={0x7, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, {0x0, r8}}, 0x6)
syz_io_uring_submit(0x0, r2, &(0x7f00000001c0)=@IORING_OP_TIMEOUT={0xb, 0x3, 0x0, 0x0, 0x7, &(0x7f0000000180)={r3, r4+10000000}, 0x1, 0x1, 0x0, {0x0, r8}}, 0x80000000)

16:43:34 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
io_uring_enter(r3, 0x10fe, 0x4519, 0x3, &(0x7f0000000040)={[0x2]}, 0x8)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:43:34 executing program 5:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB="00186572a40000002e2f66696c653100"])
r2 = eventfd2(0xffffffff, 0x800)
fsetxattr$trusted_overlay_nlink(r2, &(0x7f0000000140), &(0x7f0000000180)={'L-', 0x6}, 0x16, 0x1)
ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f00000003c0)={0x1, 0x1, 0x1000, 0xc8, &(0x7f00000001c0)="b9c5626eb7d9ba95c9e098d549498d3e01cc21e32f519b67d4ecac921a6cf5cadc5d379b0d6cc242ec1f2af6a6a664a44c288e3ba1b75e3198799c79cac03c4cbed8f034065d85868415f5000ca1a510a385f6aaa441083151cb4d90f9db3d9ed6d34838a919852072b7ae38604bce81da247ddc44ae3be748e9a0a8b9fc3b5dc19e85f08e95dcbc61a6b97303c49c2e640b2f0dcc44320e87b7ce40ea298b81bf1a8e927aa13337cfd321c91cf947de87e04a260eef1e7f7550ac0af296b96a4e65d036225571c5", 0xcf, 0x0, &(0x7f00000002c0)="74fed32d274d4968c8236720ae5a83ac7acdb8f7bea9e6391049e9ed3e3543eef7d26debed17b681fa9f6409a23694d9c1f32b6c7f66a8011dcac359d7d65ae71407b2657cda7a963d30bae000142f6f3960041acc888cb14ff0596a6c846298b3756254bd2460da0444bce9c2197497917ac2ea164209536f1264ebfef8e4eb4453ac886ab60c55748d9f833e95b683bc2827ab311f09b95f19b3784772491fa2bd0c347cb011b74e6967a36d21db92fccc3e03edff39f07b0d8fccc2528c4bd37e79db19b46e0bd96c4bd2aef010"})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r3, 0x40086607, &(0x7f00000004c0))

[ 2259.733675] loop7: detected capacity change from 0 to 50331648
[ 2259.774079] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2259.823128] loop7: detected capacity change from 0 to 50331648
[ 2259.847743] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:43:51 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 64)

16:43:51 executing program 6:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, &(0x7f0000000740), 0x400000, 0x0)
openat(r2, &(0x7f0000000040)='./file1\x00', 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

[ 2276.969019] loop7: detected capacity change from 0 to 67108864
16:43:51 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r5, 0x0, 0x0}, 0x0)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FSYNC={0x3, 0x1, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x8)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000700)=@IORING_OP_RECVMSG={0xa, 0x1, 0x0, r5, 0x0, &(0x7f00000006c0)={&(0x7f0000000440)=@ax25={{0x3, @netrom}, [@bcast, @bcast, @bcast, @default, @netrom, @bcast, @bcast]}, 0x80, &(0x7f0000000640)=[{&(0x7f00000003c0)=""/12, 0xc}, {&(0x7f00000004c0)=""/90, 0x5a}, {&(0x7f0000000540)=""/205, 0xcd}], 0x3, &(0x7f0000000680)=""/23, 0x17}, 0x0, 0x40, 0x0, {0x2, r6}}, 0x7)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_POLL_REMOVE={0x7, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, {0x0, r6}}, 0x6)
[ 2276.983203] 9pnet: Could not find request transport: xen
[ 2276.984366] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2276.988882] FAULT_INJECTION: forcing a failure.
[ 2276.988882] name failslab, interval 1, probability 0, space 0, times 0
[ 2276.991363] CPU: 0 PID: 11957 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2276.992831] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2276.994590] Call Trace:
[ 2276.995188]  dump_stack+0x107/0x167
[ 2276.996003]  should_fail.cold+0x5/0xa
[ 2276.996821]  ? kmem_cache_alloc+0x2a6/0x310
[ 2276.997739]  ? create_object.isra.0+0x3a/0xa20
[ 2276.998710]  should_failslab+0x5/0x20
[ 2276.999535]  kmem_cache_alloc+0x5b/0x310
[ 2277.000407]  ? mempool_alloc+0x155/0x360
[ 2277.001284]  create_object.isra.0+0x3a/0xa20
[ 2277.002223]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2277.003511]  kmem_cache_alloc+0x159/0x310
[ 2277.004408]  bvec_alloc+0x148/0x2f0
[ 2277.005188]  bio_alloc_bioset+0x40a/0x600
[ 2277.006079]  ? bvec_alloc+0x2f0/0x2f0
[ 2277.006903]  ? iov_iter_npages+0x1fd/0xa70
[ 2277.007809]  iomap_dio_bio_actor+0x518/0xef0
[ 2277.008748]  iomap_dio_actor+0x36f/0x560
[ 2277.009600]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2277.010435] 9pnet: Could not find request transport: xen
[ 2277.010567]  ? do_syscall_64+0x33/0x40
[ 2277.010588]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2277.010613]  iomap_apply+0x289/0x810
[ 2277.014030]  ? iomap_dio_rw+0x90/0x90
[ 2277.014863]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2277.016123]  ? mark_held_locks+0x9e/0xe0
[ 2277.016991]  ? filemap_check_errors+0xa5/0x150
[ 2277.017953]  __iomap_dio_rw+0x6cd/0x1110
[ 2277.018800]  ? iomap_dio_rw+0x90/0x90
[ 2277.019636]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2277.020596]  ? ext4_orphan_add+0x253/0x9e0
[ 2277.021484]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2277.022507]  ? ext4_empty_dir+0xae0/0xae0
[ 2277.023379]  ? jbd2__journal_start+0xf3/0x7e0
[ 2277.024337]  iomap_dio_rw+0x31/0x90
[ 2277.025109]  ext4_file_write_iter+0xe0e/0x1530
[ 2277.026080]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2277.027041]  ? kasan_save_stack+0x32/0x40
[ 2277.027912]  ? kasan_save_stack+0x1b/0x40
[ 2277.028786]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2277.029850]  ? iter_file_splice_write+0x165/0xc90
[ 2277.030904]  ? direct_splice_actor+0x10f/0x170
[ 2277.032005]  ? splice_direct_to_actor+0x387/0x980
[ 2277.033163]  ? do_splice_direct+0x1c4/0x290
[ 2277.034206]  ? do_sendfile+0x553/0x11e0
[ 2277.035183]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2277.036302]  ? do_syscall_64+0x33/0x40
[ 2277.037240]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2277.038556]  do_iter_readv_writev+0x476/0x750
[ 2277.039644]  ? _cond_resched+0x10/0x30
[ 2277.040589]  ? new_sync_write+0x660/0x660
[ 2277.041609]  ? avc_policy_seqno+0x9/0x70
[ 2277.042585]  ? selinux_file_permission+0x92/0x520
[ 2277.043774]  ? security_file_permission+0xb1/0xe0
[ 2277.044951]  do_iter_write+0x191/0x700
[ 2277.045894]  ? trace_hardirqs_on+0x5b/0x180
[ 2277.046978]  vfs_iter_write+0x70/0xa0
[ 2277.047969]  iter_file_splice_write+0x726/0xc90
[ 2277.049142]  ? generic_splice_sendpage+0x140/0x140
[ 2277.050334]  ? security_file_permission+0xb1/0xe0
[ 2277.051496]  ? generic_splice_sendpage+0x140/0x140
[ 2277.052697]  direct_splice_actor+0x10f/0x170
[ 2277.053740]  splice_direct_to_actor+0x387/0x980
[ 2277.054878]  ? pipe_to_sendpage+0x380/0x380
[ 2277.055912]  ? do_splice_to+0x160/0x160
[ 2277.056860]  ? security_file_permission+0xb1/0xe0
[ 2277.058011]  do_splice_direct+0x1c4/0x290
[ 2277.059011]  ? splice_direct_to_actor+0x980/0x980
[ 2277.060156]  ? avc_policy_seqno+0x9/0x70
[ 2277.061122]  ? security_file_permission+0xb1/0xe0
[ 2277.062340]  do_sendfile+0x553/0x11e0
[ 2277.063295]  ? do_pwritev+0x270/0x270
[ 2277.064236]  ? wait_for_completion_io+0x270/0x270
[ 2277.065478]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2277.066630]  ? vfs_write+0x354/0xb10
[ 2277.067573]  __x64_sys_sendfile64+0x1d1/0x210
[ 2277.068641]  ? __ia32_sys_sendfile+0x220/0x220
[ 2277.069755]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2277.071026]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2277.072299]  do_syscall_64+0x33/0x40
[ 2277.073247]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2277.074501] RIP: 0033:0x7fa861eb0b19
[ 2277.075422] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2277.079398] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2277.080967] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2277.082459] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2277.083956] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2277.085457] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2277.086951] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
syz_io_uring_submit(0x0, 0x0, &(0x7f0000002600)=@IORING_OP_SENDMSG={0x9, 0x3, 0x0, r2, 0x0, &(0x7f00000025c0)={&(0x7f0000000040)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x3, 0x4, 0x4, 0x2, {0xa, 0x4e21, 0x7, @mcast1, 0x5}}}, 0x80, &(0x7f00000002c0)=[{&(0x7f00000000c0)="395307eb85d7bd01f0d4815e84", 0xd}, {&(0x7f0000000100)="80b35fff45e7341893c2abc6f6eed9a68f1b310e1ca053801740604bbbf1273ba3d05b01d5722ae19600e733e4bbcebb690ef8b3b7cafcff9c14b2464f592ac317a759aba75a49cb0027b369a30ce40d7b1a8fdea99c55fceda5d6534477b0dfc9d3bc61badabef3a7cc09c54bb7a41c09b3b6aba940d6641f30ffe9143fe4447c9513f1a0dbd2040b293c2df438cf7e104247d8a5cfe0990c9a27d1576e6c91d07c19d730fd95d002d548bc045fd298a169d28a642d77c7adff0a29", 0xbc}, {&(0x7f00000001c0)="987a16fd26e1be7f9327cf2b5e49350e6d38f8b22a929d45ae471ad83142de57537985fa86a5caba28ed3747984122b722ed234814ebef3676f06142312d8d5003387160acf34251bd2bf4edf905504b2e69d75ba393adc4d51f7e99682b890db58f6d6bda374f75338953c2c3dfd0f26f0adf3111c87de96cf8f95f1356f508717e", 0x82}, {&(0x7f0000000280)="31a70abad4ff50db91d421ce", 0xc}], 0x4, &(0x7f0000000300)=[{0xd8, 0x85, 0x3, "5a90e9b2685f1a3a9830a82b4c32e2d2588a7e3433fde43b6968ccda7b39c94c85327763ef2e125dd86fbe3e04ca1c21fd75c7637282779ee8fb5c791a269c8e1b8ea8c5b74b1d5d5bcc96deb1576be42f985aa1c269fc5f97ca0eba296d3df9d4318e2ba56ec596d7bc5dcef37422991b946d2b839ae4bf11e14cbe6b14df46f65279e9e4b6e1e166e553f3309442aa43e1b242db74894e71a9d81ff779680bcb13e274cdaad13f012a1200beda04a07e379ef32efa90b129a6aa0841a32554d3"}, {0x1010, 0x3a, 0x7fffffff, "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"}, {0x1010, 0x10b, 0x3, "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"}, {0x68, 0x102, 0x1, "a759b91bafc8c50183ffa483790a67c4242f5bdbb34b9497c5beeb42986c485448d1d53000137fc5ab105decb37dbdf9b57d51bd0c2ce0d8d66c24613073c4015780f59274cfe2a2908f3168d9ff84c5be"}, {0xb0, 0x190, 0x8001, "9c2b51014c0ba9ca75c6ab986dbff61610ca1905a47816b631f4fe76efc5b903c5202bab03f73100be244a72f0dbd74fc5ab56e7ba42f0575e180578b7ebfd45475aa41b54bb2feb46f82e1896ea0d03db8334cc42b6ae6f6bd8162aff7adc507761bd875ae058f5123c76dab8444bca16bce3ceae99f15e9931deb9eeca541cb315e63d2edc2305c3c8061fc2ed6d98087c7d4eb9c130e45de112c97259f9"}, {0xa0, 0x105, 0x7, "c1f2e273eabd16dd224213c02e808614f1c782f77fa08d8f14b385b02aaf6a13ef3b468624b6a11c313dd7ccd39f57e411a98e8eb7ba50ee8e8f6a1611a172957e52ec68c61251e967345d130cdb15b121d4ad97fabbc7709067a4b4aef100dd6bc3be43ec8eafc3222cf8dfad41ecff7b87157d8af3c4e299783e75e295480b7a8af75b621f971ef1f344"}], 0x22b0}, 0x0, 0x1, 0x0, {0x0, r6}}, 0x2f3a)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:43:51 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,acces', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, &(0x7f0000000740), 0x400000, 0x0)
openat(r2, &(0x7f0000000040)='./file1\x00', 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:43:51 executing program 5:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB="00186572a40000002e2f66696c653100"])
r2 = eventfd2(0xffffffff, 0x800)
fsetxattr$trusted_overlay_nlink(r2, &(0x7f0000000140), &(0x7f0000000180)={'L-', 0x6}, 0x16, 0x1)
ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f00000003c0)={0x1, 0x1, 0x1000, 0xc8, &(0x7f00000001c0)="b9c5626eb7d9ba95c9e098d549498d3e01cc21e32f519b67d4ecac921a6cf5cadc5d379b0d6cc242ec1f2af6a6a664a44c288e3ba1b75e3198799c79cac03c4cbed8f034065d85868415f5000ca1a510a385f6aaa441083151cb4d90f9db3d9ed6d34838a919852072b7ae38604bce81da247ddc44ae3be748e9a0a8b9fc3b5dc19e85f08e95dcbc61a6b97303c49c2e640b2f0dcc44320e87b7ce40ea298b81bf1a8e927aa13337cfd321c91cf947de87e04a260eef1e7f7550ac0af296b96a4e65d036225571c5", 0xcf, 0x0, &(0x7f00000002c0)="74fed32d274d4968c8236720ae5a83ac7acdb8f7bea9e6391049e9ed3e3543eef7d26debed17b681fa9f6409a23694d9c1f32b6c7f66a8011dcac359d7d65ae71407b2657cda7a963d30bae000142f6f3960041acc888cb14ff0596a6c846298b3756254bd2460da0444bce9c2197497917ac2ea164209536f1264ebfef8e4eb4453ac886ab60c55748d9f833e95b683bc2827ab311f09b95f19b3784772491fa2bd0c347cb011b74e6967a36d21db92fccc3e03edff39f07b0d8fccc2528c4bd37e79db19b46e0bd96c4bd2aef010"})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r3, 0x40086607, &(0x7f00000004c0))

16:43:51 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_setup(0x3dfd, &(0x7f0000000340)={0x0, 0x4b10, 0x0, 0x2, 0x276}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000003c0), &(0x7f0000000400)=<r4=>0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0x20a840, 0x11)
r6 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000480)='syz1\x00', 0x200002, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r9 = fcntl$dupfd(r8, 0x0, r8)
connect$bt_sco(r9, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r10 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000540)=@IORING_OP_FILES_UPDATE={0x14, 0x1, 0x0, 0x0, 0x1, &(0x7f0000000500)=[r5, r1, r6, r7, r2, r9, r2, r10, r1], 0x9}, 0x0)
r11 = fcntl$dupfd(r2, 0x0, r2)
fcntl$dupfd(r2, 0x0, r1)
r12 = fcntl$dupfd(r1, 0x0, r0)
connect$bt_sco(r12, &(0x7f0000000000)={0x1f, @fixed}, 0x7)
readv(r11, &(0x7f0000000300)=[{&(0x7f0000000040)=""/230, 0xe6}, {&(0x7f0000000140)=""/201, 0xc9}, {&(0x7f0000000240)=""/162, 0xa2}], 0x3)

16:43:51 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x4000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:43:51 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:43:51 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:43:51 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r4 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1000000, 0x8050, r1, 0x10000000)
syz_io_uring_submit(r2, r4, &(0x7f0000000140)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, &(0x7f0000000100), 0x1, 0x0, 0x1}, 0x7ff)
ioctl$sock_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000080)={0x0, @in={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x25}}, @in={0x2, 0x4e20, @multicast1}, @sco, 0x6, 0x0, 0x0, 0x0, 0x3ff, &(0x7f0000000040)='vxcan1\x00', 0x0, 0xff, 0x9})

[ 2277.126451] loop7: detected capacity change from 0 to 67108864
[ 2277.148137] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:43:51 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x5000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:43:51 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:43:51 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = fcntl$dupfd(r3, 0x0, r3)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x100000e, 0x810, r4, 0x0)
syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x2000002, 0x100010, 0xffffffffffffffff, 0x10000000)
r6 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r6, &(0x7f0000000000)={0x1f, @fixed}, 0x7)

16:43:51 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:43:51 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x6000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:43:51 executing program 4:
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x7f, 0x0, &(0x7f00000000c0), 0x2010004, &(0x7f0000000800)=ANY=[@ANYBLOB='discard,auto_da_alloc,inode_readahead_blks=0x0000000000000400,jqfmt=vfsv0,fowner<', @ANYRESDEC, @ANYBLOB="9c2bc96d455ecedef905af4f03345659b8e4ae1e8baddb8336e0e83875f4bf6deb665b9bdc64404a9a91526ecc77c4f38aeeeafa2bac46bd466320a4b02f6dea02aabb3add37ce1c91232bce466d69cbf00cf135905877c17df23612bc3120a53b2969115314bd5c12cbfa029087bfd5f40659d91d884d66d9629b3d"])
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000017c0)={<r0=>0x0}, &(0x7f0000001800)=0xc)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000001840)=<r1=>0x0)
getresuid(&(0x7f00000003c0)=<r2=>0x0, &(0x7f00000001c0), &(0x7f0000000340))
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x7f, 0x0, &(0x7f00000000c0), 0x2010004, &(0x7f0000000800)=ANY=[@ANYBLOB='discard,auto_da_alloc,inode_readahead_blks=0x0000000000000400,jqfmt=vfsv0,fowner<', @ANYRESDEC=r2, @ANYBLOB="9c2bc96d455ecedef905af4f03345659b8e4ae1e8baddb8336e0e83875f4bf6deb665b9bdc64404a9a91526ecc77c4f38aeeeafa2bac46bd466320a4b02f6dea02aabb3add37ce1c91232bce466d69cbf00cf135905877c17df23612bc3120a53b2969115314bd5c12cbfa029087bfd5f40659d91d884d66d9629b3d"])
r3 = fork()
r4 = perf_event_open$cgroup(&(0x7f00000018c0)={0x5, 0x80, 0x87, 0x9, 0x5, 0x2, 0x0, 0x80000001, 0x10000, 0x5, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x9, 0x0, @perf_bp={&(0x7f0000001880), 0x3}, 0x1040, 0x0, 0x401, 0x8, 0xff, 0x9875, 0x7, 0x0, 0xfffffffa, 0x0, 0x100000001}, 0xffffffffffffffff, 0xd, 0xffffffffffffffff, 0x5)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001940)={<r5=>0xffffffffffffffff})
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r7 = fcntl$dupfd(r6, 0x0, r6)
connect$bt_sco(r7, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r8 = perf_event_open$cgroup(&(0x7f0000001980)={0x3, 0x80, 0x5, 0x8, 0x81, 0x6, 0x0, 0x4, 0x4000, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1ff, 0x2, @perf_config_ext={0x7, 0x7fffffff}, 0x2000, 0x7, 0x3, 0x2, 0x6, 0x0, 0x9, 0x0, 0x0, 0x0, 0xd3}, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x3)
r9 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000001a00), 0x100, 0x0)
r10 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r11 = fcntl$dupfd(r10, 0x0, r10)
connect$bt_sco(r11, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000001b40)=[{{&(0x7f0000000040)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000480)=[{&(0x7f00000000c0)="c8cb3dba87be0450f8a8dda2fdfe6e7cd0d66588c87e634fc2b65f441cd487be72f72bbb19362b92af6956bf3ee9511c3c235d30b14fbf88eeda13088ac3ea5d52f53536f302b7d2f764532ed715bd54c18e0be8d93e16327621b2a00fa069bbc7775833be1dbd124b0dcb49d870ca952c004eef2c929fd64fc1bc20ba4aacfe2c5c9ac410c0548a3c9835cc34c3fab99a35f6bd83c163fbe1af5bc5e69abddcddfc09e027d9e91f85", 0xa9}, {&(0x7f0000000180)="46e5a59cfd2abb4798a732eb45ed0029d18879f2ba73f7acaf7b4eb40ff92922ba5492c47a15b14d7a80b0cec33725b4033bd6dc722abac6f7816c8f4703fbf108c96edccbc0a31a9d8d858095a6bc4b851831af67d6b0b34a664be444c34e831e33a77026b840dffcc23b0a02e9253b11005ee5e0ecde6e11855144a15b380ba073b5b365180977a366417675506f83056d32cc03c7e100cc90bbdd75c73918cfa0b0f3e4ad3ec74d4bfe84ad5e41", 0xaf}, {&(0x7f0000000240)="1d7248926c9cb867b1e2fd9ce52fdddfb3e738ab929abc85531e118d2db364042c9a3577d2b93331f6f9e3c18fa718d276812a17863298e711114eeeaa8d3b8c4bc59bde47ef370c2d176a6c951ed4db25fef460bb109bf32033", 0x5a}, {&(0x7f00000002c0)="f87be883f2d8558840b5df06b8879309791d0c7dbea2f3d63084589a2d6e692197002e201ec2e404437cf374f898831c4a9e14f1168e53ad6d7a1951138e4cd1bd38a9da16fcb967ee216a8e81d1fa54d8b29fb59f7612949c92b47c8773806f2c8eb27ad85acfbc39ac3d66f258aa6f1276562d76280a0c81a4f9da798f2cd940558c1fecc63ef4980c4bd85d91f06f38c85c76cff85e90df937178ad50", 0x9e}, {&(0x7f0000000380)="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", 0xfa}], 0x5, 0x0, 0x0, 0x4c004}}, {{&(0x7f0000000500)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f0000000640)=[{&(0x7f0000000580)="c51240f093b6da271c2cba6c6059cfd1678175b918043fe8db0a12115e8d52f7ea52d9cf812430a0927314c4d030ac0c0e99b91bf61476b5269bc433d56768b8355ddcc16a289fc0437f88df303c401d4ceb", 0x52}, {&(0x7f0000000600)="cf9808e650ff817717fa6fe2827b95e1b327c5e178e7c94e981708ebcc963a4c34c1a16f", 0x24}], 0x2, &(0x7f0000000680)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff, 0xee00}}}], 0x40, 0x4048080}}, {{&(0x7f00000006c0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000a80)=[{&(0x7f0000000740)="e99f439cb10fd6f5a335a258a13f38d9f24f9a2b2e54a5ad45c8fd873f63c0f34f504b1d5424176e4e48568be3d966a413577afcb4139d685726ee94069882f03a45a58fc266ca3de1cbcb79a809443fed39ada2efb3b5494f653c696d67bcc1e6a8c0", 0x63}, {&(0x7f00000007c0)="ef85a811bd0e94a5df423480e855ea6eef7ec230b2af4f9e7a82c07f26e58d7221e9550798130394b536de7cacee602a02f269f8c70bb2aeb3d6b9f45d9b4053c898211f505023990333ffb4b7371784ff7e47da80389cfea045cf49ea6aa1ae228fe12156cfc603c3940e1ba4a1880d61d2e3f2d46ac2b3132a60bcd727d2d63076d0e1d25a74f6d031c448d727ced4d7cccabcb8bf7ed7c346727ecb0c94f285211b3b0f0c3d8807721bcf911c7f88d57a2cf8909d405b94f17b7a547a1a84fc99f548ac59780e7658262497ae562bcc6e6a66eb34d1bb1a1ea613edce5388826e8d7e871b", 0xe6}, {&(0x7f00000008c0)="f1af7e5c86f84ee867e00b4cecef9cf8505d25f30aae19dc33a8c2b3899b0d089f92eaabd2afb66279a48a1b80777f51489bc6a67a2158713ebab781acba2d4424959bc6043b4ae4c0261b34cafd73c4b53742046d4aff0a55b77c38b89f6989dbf2e5aecafb99229a00a294096927d9eb0e09c6c896a5d7f6699ab44fbac12e40d8435eae3bd15b2f9e7adb71c5db7979baaae0d777f075190841cf95d4eb52d46de045b7570f174ec2bb", 0xab}, {&(0x7f0000000980)="438ed9181448599fe5cf47af4c384da032ff8827ea65945a2d0a8e0ce7d249587249a8e16d9e9507b04e46ab9ddb365dc3f52f9a550e8672734639ab1225b5b45d3e4401f5edff45f4d711bde2671304efe8e3175df189da30effabacfb166065bd99490f31b0e96cf448b9c8264ed2c2876ea9ff750215f53c721fba549", 0x7e}, {&(0x7f0000000a00)="0057efde0700f7c724b1c2fa16fe5add2365a015c35b8ebec0c964a94c88443d1e7f693a2a886b0588c58bf194dcd341b3b2efe5e4f420004959baf4e5a51f5b2a6f84b30b43b0ea1fcbabbdb029ae48690d6cf65fb13785249a271c", 0x5c}], 0x5, 0x0, 0x0, 0x4c800}}, {{&(0x7f0000000b00)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000001000)=[{&(0x7f0000000b80)="c9cb7b850b20a8386d130c", 0xb}, {&(0x7f0000000bc0)="768d8dcf4c60de9e6417222f85d54c4178ced2115406427cbcebb062b7994d1c0658c4860f27a26883323980079ee971ee56ec727ce15da2ea171b7d6c9aab848e028dd91dbcd41dc0a1ce75a1e6ebc7355a62e269857c5f510a36c9dceeee0dcdf564210f9a976b4970842c20a549c01af165f3716aa55becbc6aa7fec10263b427", 0x82}, {&(0x7f0000000c80)="5e2bc3358f17ad2ee7ba74fcc9788ee316e3102d4d48ecc472fef02ecefec6c122d7536c68d1d8de8479cc9110d7e2ef930efc33f11c6e7d80b228fbbd5a3085bbfa1364c356c63e28a8009105d412718009a9c4df51a9c804313358d98a86036336051ce1cc6b008a52ca30489afad4e3400cce9a5b4987ecebcd63b4f17895761f2dbaa8db021c76b0b86e", 0x8c}, {&(0x7f0000000d40)="98e205b595ceb2d67e3f967b81501130c08fd89eac5b668bd37c74c695c102a45e861718818b730816dc893c465b363129d4f174f0acd281c3ebde395da716d532bca2a3646fee06c34218ea505d44c776c4b386", 0x54}, {&(0x7f0000000dc0)="0913356037b6af6202b7164ae6b2f50e5f627e693ef0b547747ae3deec9598cf8f5db21e40a7b61d6a86d15202d4f3717fc032d6a25814266a18be47d30be71df952cbcdd784bfc119d457f11bdf08eb36c60aacefb6310727044ee6d51e2f9665626adcb37fea9b61307c821ec426be6cc59906cb66311a976eff3fca7329889d310d4250b2c213b40f6f69bfcba8d26048d4cc057c202d7feef4e48965898f41efa748153de768fdbb46603ff966668c2bcbbf1ac6da7cf605d0682a4fbceafcda6c74da6a424f3a1ce2ec924fe292f46ad9f7851e8a289be56000faf8935ac08a5b644b480f26b2b734f499ad5dc0df0a", 0xf2}, {&(0x7f0000000ec0)="c7eb776335105b07bb869e73db108390b9226f99ceb9416f729dc0a9a26051668f7a3571295a7ecd18eb7516fd4cf05795dd27c355d786c803b0153c2a0937ad42348f3a265aee13a3a2691365abf90cfcbbf690f0", 0x55}, {&(0x7f0000000f40)="de42b1f9e741d89bcde8e1d0b46cc33b8c63350cdb0fcbc7e11b257992a9aad39288d7942664cd91dafc7227c05b3fb8aedcd4ec547f0e0295dfbffeae51106d18bb154d102ffd711eb088d4d7e6c3d6279d81b1e5c1a05d1654021d13fcf1177b81f70cc2a1cf43d29817eeb8b659c402502ca5b4d4cc501f9aeded760f792c09a166b3000c9fcdb3f5c8539e53e708731b4d937fbca428ce", 0x99}], 0x7, &(0x7f0000001580)=[@cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee01}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee01}}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff}}}, @cred={{0x1c}}], 0xe0, 0x8001}}, {{&(0x7f0000001680)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000001780)=[{&(0x7f0000001700)="7c76952b7b5bd2167ce498dd039a980dcaad37c982c6436febc081d168e9533345d459904918ac6080e7d500a882bfcb23a54beb303c8e36d3b9ea62eadf6e00dca1fc5e75063c8060f061e781561961167e77f1c5562c65632502a219ff45f4c08f9ad9b4db45fc6153b8ba0e7d13b17b2d63b438", 0x75}], 0x1, &(0x7f0000001a40)=[@cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {r0, 0xffffffffffffffff, 0xee01}}}, @cred={{0x1c, 0x1, 0x2, {r1, r2, 0xee01}}}, @cred={{0x1c, 0x1, 0x2, {r3, 0xee00, 0xee00}}}, @rights={{0x30, 0x1, 0x1, [r4, 0xffffffffffffffff, 0xffffffffffffffff, r5, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r7, r8, r9, r11]}}], 0xd8, 0x40c2}}], 0x5, 0x40)
r12 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r13 = fcntl$dupfd(r12, 0x0, r12)
connect$bt_sco(r13, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

[ 2277.403871] EXT4-fs (loop4): VFS: Can't find ext4 filesystem
16:43:51 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

[ 2277.492602] EXT4-fs (loop4): VFS: Can't find ext4 filesystem
16:43:51 executing program 6:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x6}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, @out_args}, './file1\x00'})
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$FITRIM(r2, 0xc0185879, &(0x7f0000000180)={0x9, 0xfffffffffffffffe, 0x100000000})
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = fcntl$dupfd(r3, 0x0, r3)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r6 = fcntl$dupfd(r5, 0x0, r5)
connect$bt_sco(r6, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$TIOCGICOUNT(r6, 0x545d, 0x0)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x40082406, &(0x7f0000000140)='*\xc0/&\x00')
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x14400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r7, 0x40086607, &(0x7f00000004c0))

16:43:51 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 65)

16:43:51 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

[ 2277.574306] FAULT_INJECTION: forcing a failure.
[ 2277.574306] name failslab, interval 1, probability 0, space 0, times 0
[ 2277.575697] CPU: 1 PID: 12003 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2277.576502] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2277.577468] Call Trace:
[ 2277.577782]  dump_stack+0x107/0x167
[ 2277.578200]  should_fail.cold+0x5/0xa
[ 2277.578640]  ? kmem_cache_alloc+0x2a6/0x310
[ 2277.579138]  ? create_object.isra.0+0x3a/0xa20
[ 2277.579669]  should_failslab+0x5/0x20
[ 2277.580107]  kmem_cache_alloc+0x5b/0x310
[ 2277.580567]  ? mempool_alloc+0x155/0x360
[ 2277.581027]  create_object.isra.0+0x3a/0xa20
[ 2277.581515]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2277.582096]  kmem_cache_alloc+0x159/0x310
[ 2277.582564]  bvec_alloc+0x148/0x2f0
[ 2277.582988]  bio_alloc_bioset+0x40a/0x600
[ 2277.583459]  ? bvec_alloc+0x2f0/0x2f0
[ 2277.583890]  ? iov_iter_npages+0x1fd/0xa70
[ 2277.584378]  iomap_dio_bio_actor+0x518/0xef0
[ 2277.584876]  iomap_dio_actor+0x36f/0x560
[ 2277.585329]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2277.585867]  ? do_syscall_64+0x33/0x40
[ 2277.586312]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2277.586932]  iomap_apply+0x289/0x810
[ 2277.587354]  ? iomap_dio_rw+0x90/0x90
[ 2277.587793]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2277.588446]  ? mark_held_locks+0x9e/0xe0
[ 2277.588914]  ? filemap_check_errors+0xa5/0x150
[ 2277.589432]  __iomap_dio_rw+0x6cd/0x1110
[ 2277.589891]  ? iomap_dio_rw+0x90/0x90
[ 2277.590328]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2277.590857]  ? ext4_orphan_add+0x253/0x9e0
[ 2277.591335]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2277.591892]  ? ext4_empty_dir+0xae0/0xae0
[ 2277.592360]  ? jbd2__journal_start+0xf3/0x7e0
[ 2277.592875]  iomap_dio_rw+0x31/0x90
[ 2277.593295]  ext4_file_write_iter+0xe0e/0x1530
[ 2277.593825]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2277.594336]  ? kasan_save_stack+0x32/0x40
[ 2277.594804]  ? kasan_save_stack+0x1b/0x40
[ 2277.595275]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2277.595867]  ? iter_file_splice_write+0x165/0xc90
[ 2277.596408]  ? direct_splice_actor+0x10f/0x170
[ 2277.596928]  ? splice_direct_to_actor+0x387/0x980
[ 2277.597477]  ? do_splice_direct+0x1c4/0x290
[ 2277.597983]  ? do_sendfile+0x553/0x11e0
[ 2277.598439]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2277.598990]  ? do_syscall_64+0x33/0x40
[ 2277.599436]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2277.600040]  do_iter_readv_writev+0x476/0x750
[ 2277.600560]  ? _cond_resched+0x10/0x30
[ 2277.601014]  ? new_sync_write+0x660/0x660
[ 2277.601493]  ? avc_policy_seqno+0x9/0x70
[ 2277.601971]  ? selinux_file_permission+0x92/0x520
[ 2277.602571]  ? security_file_permission+0xb1/0xe0
[ 2277.603263]  do_iter_write+0x191/0x700
[ 2277.603741]  ? trace_hardirqs_on+0x5b/0x180
[ 2277.604370]  vfs_iter_write+0x70/0xa0
[ 2277.604935]  iter_file_splice_write+0x726/0xc90
[ 2277.605603]  ? generic_splice_sendpage+0x140/0x140
[ 2277.606175]  ? security_file_permission+0xb1/0xe0
[ 2277.606816]  ? generic_splice_sendpage+0x140/0x140
[ 2277.607518]  direct_splice_actor+0x10f/0x170
[ 2277.608103]  splice_direct_to_actor+0x387/0x980
[ 2277.608645]  ? pipe_to_sendpage+0x380/0x380
[ 2277.609249]  ? do_splice_to+0x160/0x160
[ 2277.609707]  ? security_file_permission+0xb1/0xe0
[ 2277.610353]  do_splice_direct+0x1c4/0x290
[ 2277.610857]  ? splice_direct_to_actor+0x980/0x980
[ 2277.611431]  ? avc_policy_seqno+0x9/0x70
[ 2277.611973]  ? security_file_permission+0xb1/0xe0
[ 2277.612626]  do_sendfile+0x553/0x11e0
[ 2277.613132]  ? do_pwritev+0x270/0x270
[ 2277.613605]  ? wait_for_completion_io+0x270/0x270
[ 2277.614266]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2277.614821]  ? vfs_write+0x354/0xb10
[ 2277.615260]  __x64_sys_sendfile64+0x1d1/0x210
[ 2277.615873]  ? __ia32_sys_sendfile+0x220/0x220
[ 2277.616398]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2277.617109]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2277.617805]  do_syscall_64+0x33/0x40
[ 2277.618297]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2277.618986] RIP: 0033:0x7fa861eb0b19
[ 2277.619490] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2277.621806] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2277.622788] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2277.623734] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2277.624610] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2277.625482] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2277.626473] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
16:43:51 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:43:51 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x7000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:43:51 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x7)

16:43:51 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,acces', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, &(0x7f0000000740), 0x400000, 0x0)
openat(r2, &(0x7f0000000040)='./file1\x00', 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

[ 2277.712390] 9pnet: Could not find request transport: xen
16:43:52 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

[ 2277.727769] loop7: detected capacity change from 0 to 117440512
16:43:52 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:43:52 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r1, 0x0, r1)
r2 = fcntl$dupfd(r1, 0x0, r0)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

[ 2277.746648] EXT4-fs (loop4): VFS: Can't find ext4 filesystem
[ 2277.756041] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:43:52 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000100)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x4, 0x0, 0x8001, 0x1, &(0x7f0000000080)="bbb18ddd95c01d0058105549e99f4a2090c52051947d0566dd2722c56acd3406332eabfbb653b5c35f000705098ec3c074b79e2bb84b7841e0f2c77b2920acf94ad5d802688ff9124ddb0572b70b76c1caa8997a56", 0x3, 0x0, 0x1, {0x1}}, 0x3c5)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {<r3=>r0}}, './file0\x00'})
r4 = fcntl$dupfd(r0, 0x406, r3)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed}, 0x7)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r6 = fcntl$dupfd(r5, 0x0, r5)
connect$bt_sco(r6, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
shutdown(r6, 0x1)

[ 2277.801594] EXT4-fs (loop4): VFS: Can't find ext4 filesystem
[ 2277.817999] loop7: detected capacity change from 0 to 117440512
[ 2277.823639] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:43:52 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:43:52 executing program 5:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_inet6_tcp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000180))

16:44:05 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000180))

16:44:05 executing program 4:
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000040)=ANY=[@ANYBLOB="01000400fbfff3233648de5d7b3141b5f49f4760caffff18000000", @ANYRES32=<r0=>0xffffffffffffffff, @ANYBLOB="05d80000000000a2002e2f6669cfe930b716015ac47e89bdfcda6c653000"])
fcntl$setown(r0, 0x8, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000100)='ns/pid_for_children\x00')
ioctl$FITHAW(r2, 0xc0045878)
r3 = fcntl$dupfd(r1, 0x0, r1)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = fcntl$dupfd(r4, 0x0, r4)
connect$bt_sco(r5, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$NS_GET_USERNS(r5, 0xb701, 0x0)
fstat(r1, &(0x7f0000000080))
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r8 = fcntl$dupfd(r7, 0x0, r7)
mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0xe, 0x1010, 0xffffffffffffffff, 0x10000000)
r9 = pidfd_getfd(r3, r6, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r9, 0xc0189373, &(0x7f0000000140)=ANY=[@ANYBLOB="a2645a560002000000000000", @ANYRES32=r8, @ANYBLOB="02000000000000002e2f66696c653000"])
r10 = fcntl$dupfd(r6, 0x0, r7)
connect$bt_sco(r10, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:44:05 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,acces', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, &(0x7f0000000740), 0x400000, 0x0)
openat(r2, &(0x7f0000000040)='./file1\x00', 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:44:05 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_SIOCGIFCONF(0xffffffffffffffff, 0x8912, &(0x7f0000000080)=@req={0xb2, &(0x7f0000000040)={'veth1_to_team\x00', @ifru_flags}})
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x7)
r2 = signalfd4(r1, &(0x7f00000000c0)={[0x6]}, 0x8, 0x0)
sendto(r2, &(0x7f0000000100)="a093b5adc27ecaed3a2db61b470cdd8cf6535d0a6c4df0b80abd3d2aec6ed271fb4080c663717a905a8a8f72c6a145e10f54d6ef472d3fe87a56a3caa1420a5984afee457be4c78f3c27e1ce59de9b58d08ff5a7191474c733e276986894b1883b9fdae21e73a2d6c7253f9404e328f2f17144836a3b440ebb8c7f65a60ca9dd660b952215f12e1e2c4352", 0x8b, 0x8001, 0x0, 0x0)

16:44:05 executing program 6:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_typ', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, &(0x7f0000000740), 0x400000, 0x0)
openat(r2, &(0x7f0000000040)='./file1\x00', 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:44:05 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x8000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:44:05 executing program 5:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_inet6_tcp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000180))

16:44:05 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 66)

[ 2290.794183] 9pnet: Could not find request transport: xen
[ 2290.796289] FAULT_INJECTION: forcing a failure.
[ 2290.796289] name failslab, interval 1, probability 0, space 0, times 0
[ 2290.798797] CPU: 1 PID: 12061 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2290.800273] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2290.802021] Call Trace:
[ 2290.802584]  dump_stack+0x107/0x167
[ 2290.803361]  should_fail.cold+0x5/0xa
[ 2290.804176]  ? create_object.isra.0+0x3a/0xa20
[ 2290.805152]  should_failslab+0x5/0x20
[ 2290.805960]  kmem_cache_alloc+0x5b/0x310
[ 2290.806816]  ? blk_queue_enter+0xc30/0xc30
[ 2290.807726]  create_object.isra.0+0x3a/0xa20
[ 2290.808655]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2290.809729]  kmem_cache_alloc+0x159/0x310
[ 2290.810611]  jbd2__journal_start+0x190/0x7e0
[ 2290.811553]  __ext4_journal_start_sb+0x214/0x390
[ 2290.812567]  ext4_iomap_begin+0x485/0x700
[ 2290.813457]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2290.814506]  ? iomap_dio_actor+0x377/0x560
[ 2290.815408]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2290.816389]  ? do_syscall_64+0x33/0x40
[ 2290.817213]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2290.818345]  iomap_apply+0x164/0x810
[ 2290.819140]  ? iomap_dio_rw+0x90/0x90
[ 2290.819951]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2290.821183]  ? mark_held_locks+0x9e/0xe0
[ 2290.822055]  ? filemap_check_errors+0xa5/0x150
[ 2290.823034]  __iomap_dio_rw+0x6cd/0x1110
[ 2290.823891]  ? iomap_dio_rw+0x90/0x90
[ 2290.824716]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2290.825682]  ? ext4_orphan_add+0x253/0x9e0
[ 2290.826574]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2290.827624]  ? ext4_empty_dir+0xae0/0xae0
[ 2290.828386] 9pnet: Could not find request transport: xen
[ 2290.828499]  ? jbd2__journal_start+0xf3/0x7e0
[ 2290.828530]  iomap_dio_rw+0x31/0x90
[ 2290.830902]  ext4_file_write_iter+0xe0e/0x1530
[ 2290.831892]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2290.832858]  ? kasan_save_stack+0x32/0x40
[ 2290.833730]  ? kasan_save_stack+0x1b/0x40
[ 2290.834604]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2290.835685]  ? iter_file_splice_write+0x165/0xc90
[ 2290.836814]  ? direct_splice_actor+0x10f/0x170
[ 2290.837775]  ? splice_direct_to_actor+0x387/0x980
[ 2290.838788]  ? do_splice_direct+0x1c4/0x290
[ 2290.839711]  ? do_sendfile+0x553/0x11e0
[ 2290.840565]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2290.841717]  ? do_syscall_64+0x33/0x40
[ 2290.842648]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2290.843893]  do_iter_readv_writev+0x476/0x750
[ 2290.844844]  ? _cond_resched+0x10/0x30
[ 2290.845768]  ? new_sync_write+0x660/0x660
[ 2290.845797] loop7: detected capacity change from 0 to 134217728
[ 2290.846639]  ? avc_policy_seqno+0x9/0x70
[ 2290.846659]  ? selinux_file_permission+0x92/0x520
[ 2290.846684]  ? security_file_permission+0xb1/0xe0
[ 2290.850472]  do_iter_write+0x191/0x700
[ 2290.851311]  ? trace_hardirqs_on+0x5b/0x180
[ 2290.852236]  vfs_iter_write+0x70/0xa0
[ 2290.853047]  iter_file_splice_write+0x726/0xc90
[ 2290.854097]  ? generic_splice_sendpage+0x140/0x140
[ 2290.855213]  ? security_file_permission+0xb1/0xe0
[ 2290.856234]  ? generic_splice_sendpage+0x140/0x140
[ 2290.857279]  direct_splice_actor+0x10f/0x170
[ 2290.858210]  splice_direct_to_actor+0x387/0x980
[ 2290.858744] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2290.859197]  ? pipe_to_sendpage+0x380/0x380
[ 2290.860771]  ? do_splice_to+0x160/0x160
[ 2290.861603]  ? security_file_permission+0xb1/0xe0
[ 2290.862626]  do_splice_direct+0x1c4/0x290
[ 2290.863507]  ? splice_direct_to_actor+0x980/0x980
[ 2290.864526]  ? avc_policy_seqno+0x9/0x70
[ 2290.865388]  ? security_file_permission+0xb1/0xe0
[ 2290.866418]  do_sendfile+0x553/0x11e0
[ 2290.867244]  ? do_pwritev+0x270/0x270
[ 2290.868043]  ? wait_for_completion_io+0x270/0x270
[ 2290.869078]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2290.870056]  ? vfs_write+0x354/0xb10
[ 2290.870853]  __x64_sys_sendfile64+0x1d1/0x210
[ 2290.871805]  ? __ia32_sys_sendfile+0x220/0x220
[ 2290.872777]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2290.873884]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2290.874972]  do_syscall_64+0x33/0x40
[ 2290.875769]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2290.876855] RIP: 0033:0x7fa861eb0b19
[ 2290.877637] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2290.881509] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2290.883122] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2290.884623] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2290.886134] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2290.887643] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2290.889142] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
[ 2290.920384] loop7: detected capacity change from 0 to 134217728
[ 2290.945345] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:44:18 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000180))

16:44:18 executing program 6:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_typ', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, &(0x7f0000000740), 0x400000, 0x0)
openat(r2, &(0x7f0000000040)='./file1\x00', 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:44:18 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, &(0x7f0000000740), 0x400000, 0x0)
openat(r2, &(0x7f0000000040)='./file1\x00', 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:44:18 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0x7, &(0x7f0000000040)=0x1, &(0x7f0000000080)=0x4)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:44:18 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x406, r0)
bind$bt_l2cap(r1, &(0x7f0000000040)={0x1f, 0x6, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x4, 0x2}, 0xe)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x7)

16:44:18 executing program 5:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_inet6_tcp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000180))

16:44:18 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x9000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:44:18 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 67)

[ 2304.496943] loop7: detected capacity change from 0 to 135266304
16:44:18 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000180))

16:44:18 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$VFAT_IOCTL_READDIR_BOTH(0xffffffffffffffff, 0x82307201, &(0x7f0000000080)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
bind$bt_sco(r2, &(0x7f0000000040), 0x8)
r3 = fcntl$dupfd(r0, 0x0, r0)
socket$packet(0x11, 0x3, 0x300)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:44:18 executing program 5:
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$sock_inet6_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000180))

[ 2304.545784] 9pnet: Could not find request transport: xen
[ 2304.555641] 9pnet: Could not find request transport: xen
[ 2304.560358] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2304.587416] loop7: detected capacity change from 0 to 135266304
[ 2304.602100] FAULT_INJECTION: forcing a failure.
[ 2304.602100] name failslab, interval 1, probability 0, space 0, times 0
[ 2304.603617] CPU: 1 PID: 12099 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2304.604495] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2304.605479] Call Trace:
[ 2304.605804]  dump_stack+0x107/0x167
[ 2304.606228]  should_fail.cold+0x5/0xa
[ 2304.606673]  ? ext4_mb_new_blocks+0x698/0x45c0
[ 2304.607212]  should_failslab+0x5/0x20
[ 2304.607669]  kmem_cache_alloc+0x5b/0x310
[ 2304.608155]  ext4_mb_new_blocks+0x698/0x45c0
[ 2304.608687]  ? trace_hardirqs_on+0x5b/0x180
[ 2304.609191]  ? ext4_cache_extents+0x148/0x2d0
[ 2304.609721]  ? ext4_discard_preallocations+0xd80/0xd80
[ 2304.610325]  ? ext4_ext_search_right+0x2e3/0xbd0
[ 2304.610879]  ext4_ext_map_blocks+0x1d49/0x5830
[ 2304.611422]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2304.612030]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2304.612645]  ? ext4_ext_release+0x10/0x10
[ 2304.613135]  ? ext4_map_blocks+0x5cd/0x1910
[ 2304.613631]  ? lock_release+0x680/0x680
[ 2304.614105]  ? ext4_es_lookup_extent+0x48d/0xaa0
[ 2304.614663]  ? lock_downgrade+0x6d0/0x6d0
[ 2304.615167]  ? down_write_killable+0x180/0x180
[ 2304.615716]  ext4_map_blocks+0x63f/0x1910
[ 2304.616191]  ? kmem_cache_alloc+0x2a6/0x310
[ 2304.616691]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 2304.617214]  ? jbd2__journal_start+0xf3/0x7e0
[ 2304.617748]  ? __ext4_journal_start_sb+0x214/0x390
[ 2304.618322]  ? __ext4_journal_start_sb+0x1db/0x390
[ 2304.618900]  ext4_iomap_begin+0x3ad/0x700
[ 2304.619398]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2304.619969]  ? iomap_dio_actor+0x377/0x560
[ 2304.620465]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2304.621003]  ? do_syscall_64+0x33/0x40
[ 2304.621460]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2304.622089]  iomap_apply+0x164/0x810
[ 2304.622522]  ? iomap_dio_rw+0x90/0x90
[ 2304.622978]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2304.623660]  ? mark_held_locks+0x9e/0xe0
[ 2304.624135]  ? filemap_check_errors+0xa5/0x150
[ 2304.624666]  __iomap_dio_rw+0x6cd/0x1110
[ 2304.625132]  ? iomap_dio_rw+0x90/0x90
[ 2304.625579]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2304.626107]  ? ext4_orphan_add+0x253/0x9e0
[ 2304.626600]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2304.627177]  ? ext4_empty_dir+0xae0/0xae0
[ 2304.627657]  ? jbd2__journal_start+0xf3/0x7e0
[ 2304.628196]  iomap_dio_rw+0x31/0x90
[ 2304.628621]  ext4_file_write_iter+0xe0e/0x1530
[ 2304.629172]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2304.629692]  ? kasan_save_stack+0x32/0x40
[ 2304.630171]  ? kasan_save_stack+0x1b/0x40
[ 2304.630647]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2304.631247]  ? iter_file_splice_write+0x165/0xc90
[ 2304.631808]  ? direct_splice_actor+0x10f/0x170
[ 2304.632337]  ? splice_direct_to_actor+0x387/0x980
[ 2304.632894]  ? do_splice_direct+0x1c4/0x290
[ 2304.633399]  ? do_sendfile+0x553/0x11e0
[ 2304.633859]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2304.634408]  ? do_syscall_64+0x33/0x40
[ 2304.634864]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2304.635497]  do_iter_readv_writev+0x476/0x750
[ 2304.636017]  ? _cond_resched+0x10/0x30
[ 2304.636478]  ? new_sync_write+0x660/0x660
[ 2304.636961]  ? avc_policy_seqno+0x9/0x70
[ 2304.637428]  ? selinux_file_permission+0x92/0x520
[ 2304.638000]  ? security_file_permission+0xb1/0xe0
[ 2304.638565]  do_iter_write+0x191/0x700
[ 2304.639024]  ? trace_hardirqs_on+0x5b/0x180
[ 2304.639536]  vfs_iter_write+0x70/0xa0
[ 2304.639978]  iter_file_splice_write+0x726/0xc90
[ 2304.640534]  ? generic_splice_sendpage+0x140/0x140
[ 2304.641115]  ? security_file_permission+0xb1/0xe0
[ 2304.641673]  ? generic_splice_sendpage+0x140/0x140
[ 2304.642238]  direct_splice_actor+0x10f/0x170
[ 2304.642745]  splice_direct_to_actor+0x387/0x980
[ 2304.643299]  ? pipe_to_sendpage+0x380/0x380
[ 2304.643791]  ? do_splice_to+0x160/0x160
[ 2304.644246]  ? security_file_permission+0xb1/0xe0
[ 2304.644798]  do_splice_direct+0x1c4/0x290
[ 2304.645270]  ? splice_direct_to_actor+0x980/0x980
[ 2304.645821]  ? avc_policy_seqno+0x9/0x70
[ 2304.646288]  ? security_file_permission+0xb1/0xe0
[ 2304.646842]  do_sendfile+0x553/0x11e0
[ 2304.647294]  ? do_pwritev+0x270/0x270
[ 2304.647725]  ? wait_for_completion_io+0x270/0x270
[ 2304.648273]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2304.648803]  ? vfs_write+0x354/0xb10
[ 2304.649233]  __x64_sys_sendfile64+0x1d1/0x210
[ 2304.649742]  ? __ia32_sys_sendfile+0x220/0x220
[ 2304.650269]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2304.650863]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2304.651462]  do_syscall_64+0x33/0x40
[ 2304.651883]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2304.652473] RIP: 0033:0x7fa861eb0b19
[ 2304.652897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2304.655000] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2304.655864] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2304.656669] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2304.657476] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2304.658282] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2304.659095] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
[ 2304.660938] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:44:32 executing program 5:
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$sock_inet6_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000180))

16:44:32 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, 0x0)

16:44:32 executing program 6:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_typ', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, &(0x7f0000000740), 0x400000, 0x0)
openat(r2, &(0x7f0000000040)='./file1\x00', 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:44:32 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, &(0x7f0000000740), 0x400000, 0x0)
openat(r2, &(0x7f0000000040)='./file1\x00', 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:44:32 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xa000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:44:32 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 68)

16:44:32 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r1, 0x0, r1)
r2 = fcntl$dupfd(r0, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed}, 0x8)
connect$bt_sco(r1, &(0x7f0000000040), 0x8)

16:44:32 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000), 0x8)

[ 2317.981986] 9pnet: Could not find request transport: xen
[ 2317.982813] loop7: detected capacity change from 0 to 135266304
[ 2317.987742] FAULT_INJECTION: forcing a failure.
[ 2317.987742] name failslab, interval 1, probability 0, space 0, times 0
[ 2317.988401] 9pnet: Could not find request transport: xen
[ 2317.990220] CPU: 1 PID: 12120 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2317.990234] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2317.990247] Call Trace:
[ 2317.994649]  dump_stack+0x107/0x167
[ 2317.995426]  should_fail.cold+0x5/0xa
[ 2317.996238]  ? ext4_find_extent+0xa77/0xd70
[ 2317.997152]  should_failslab+0x5/0x20
[ 2317.997958]  __kmalloc+0x72/0x390
[ 2317.998690]  ext4_find_extent+0xa77/0xd70
[ 2317.999664]  ext4_ext_map_blocks+0x1c8/0x5830
[ 2318.000712]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2318.001814]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2318.002927]  ? ext4_ext_release+0x10/0x10
[ 2318.003828]  ? ext4_map_blocks+0x5cd/0x1910
[ 2318.004879]  ? lock_release+0x680/0x680
[ 2318.005723]  ? ext4_es_lookup_extent+0x48d/0xaa0
[ 2318.006715]  ? lock_downgrade+0x6d0/0x6d0
[ 2318.007613]  ? down_write+0xe0/0x160
[ 2318.008390]  ? down_write_killable+0x180/0x180
[ 2318.009366]  ext4_map_blocks+0x63f/0x1910
[ 2318.010245]  ? kmem_cache_alloc+0x2a6/0x310
[ 2318.011155]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 2318.012098]  ? jbd2__journal_start+0xf3/0x7e0
[ 2318.013042]  ? __ext4_journal_start_sb+0x214/0x390
[ 2318.014058]  ? __ext4_journal_start_sb+0x1db/0x390
[ 2318.015091]  ext4_iomap_begin+0x3ad/0x700
[ 2318.015990]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2318.017036]  ? iomap_dio_actor+0x377/0x560
[ 2318.017925]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2318.018890]  ? do_syscall_64+0x33/0x40
[ 2318.019714]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2318.020829]  iomap_apply+0x164/0x810
[ 2318.021611]  ? iomap_dio_rw+0x90/0x90
[ 2318.022418]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2318.023637]  ? mark_held_locks+0x9e/0xe0
[ 2318.024501]  ? filemap_check_errors+0xa5/0x150
[ 2318.025469]  __iomap_dio_rw+0x6cd/0x1110
[ 2318.026318]  ? iomap_dio_rw+0x90/0x90
[ 2318.027139]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2318.028096]  ? ext4_orphan_add+0x253/0x9e0
[ 2318.028985]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2318.030021]  ? ext4_empty_dir+0xae0/0xae0
[ 2318.030889]  ? jbd2__journal_start+0xf3/0x7e0
[ 2318.031841]  iomap_dio_rw+0x31/0x90
[ 2318.032611]  ext4_file_write_iter+0xe0e/0x1530
[ 2318.033585]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2318.034546]  ? kasan_save_stack+0x32/0x40
[ 2318.035421]  ? kasan_save_stack+0x1b/0x40
[ 2318.036287]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2318.037346]  ? iter_file_splice_write+0x165/0xc90
[ 2318.038359]  ? direct_splice_actor+0x10f/0x170
[ 2318.039323]  ? splice_direct_to_actor+0x387/0x980
[ 2318.040343]  ? do_splice_direct+0x1c4/0x290
[ 2318.041249]  ? do_sendfile+0x553/0x11e0
[ 2318.042088]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2318.043065]  ? do_syscall_64+0x33/0x40
[ 2318.043898]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2318.045025]  do_iter_readv_writev+0x476/0x750
[ 2318.045964]  ? _cond_resched+0x10/0x30
[ 2318.046787]  ? new_sync_write+0x660/0x660
[ 2318.047663]  ? avc_policy_seqno+0x9/0x70
[ 2318.048509]  ? selinux_file_permission+0x92/0x520
[ 2318.049515]  ? security_file_permission+0xb1/0xe0
[ 2318.050540]  do_iter_write+0x191/0x700
[ 2318.051362]  ? trace_hardirqs_on+0x5b/0x180
[ 2318.052276]  vfs_iter_write+0x70/0xa0
[ 2318.053071]  iter_file_splice_write+0x726/0xc90
[ 2318.054053]  ? generic_splice_sendpage+0x140/0x140
[ 2318.055103]  ? security_file_permission+0xb1/0xe0
[ 2318.056129]  ? generic_splice_sendpage+0x140/0x140
[ 2318.057152]  direct_splice_actor+0x10f/0x170
[ 2318.058086]  splice_direct_to_actor+0x387/0x980
[ 2318.059073]  ? pipe_to_sendpage+0x380/0x380
[ 2318.060002]  ? do_splice_to+0x160/0x160
[ 2318.060835]  ? security_file_permission+0xb1/0xe0
[ 2318.061859]  do_splice_direct+0x1c4/0x290
[ 2318.062731]  ? splice_direct_to_actor+0x980/0x980
[ 2318.063749]  ? avc_policy_seqno+0x9/0x70
[ 2318.064604]  ? security_file_permission+0xb1/0xe0
[ 2318.065633]  do_sendfile+0x553/0x11e0
[ 2318.066449]  ? do_pwritev+0x270/0x270
[ 2318.067244]  ? wait_for_completion_io+0x270/0x270
[ 2318.068272]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2318.069266]  ? vfs_write+0x354/0xb10
[ 2318.070053]  __x64_sys_sendfile64+0x1d1/0x210
[ 2318.070994]  ? __ia32_sys_sendfile+0x220/0x220
[ 2318.071957]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2318.073049]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2318.074135]  do_syscall_64+0x33/0x40
[ 2318.074916]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2318.076009] RIP: 0033:0x7fa861eb0b19
[ 2318.076793] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2318.080650] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2318.082243] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2318.083736] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2318.085232] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2318.086746] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2318.088249] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
16:44:32 executing program 5:
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$sock_inet6_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000180))

16:44:32 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 69)

16:44:32 executing program 1:
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
connect$bt_sco(r0, &(0x7f0000000000)={0x1f, @fixed}, 0x7)

16:44:32 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, 0x0)

[ 2318.203115] FAULT_INJECTION: forcing a failure.
[ 2318.203115] name failslab, interval 1, probability 0, space 0, times 0
[ 2318.204441] CPU: 0 PID: 12134 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2318.205186] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2318.206075] Call Trace:
[ 2318.206370]  dump_stack+0x107/0x167
[ 2318.206766]  should_fail.cold+0x5/0xa
[ 2318.207175]  ? create_object.isra.0+0x3a/0xa20
[ 2318.207682]  should_failslab+0x5/0x20
[ 2318.208092]  kmem_cache_alloc+0x5b/0x310
[ 2318.208533]  create_object.isra.0+0x3a/0xa20
[ 2318.209004]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2318.209587]  kmem_cache_alloc+0x159/0x310
[ 2318.210041]  ext4_mb_new_blocks+0x698/0x45c0
[ 2318.210520]  ? trace_hardirqs_on+0x5b/0x180
[ 2318.211013]  ? ext4_cache_extents+0x148/0x2d0
[ 2318.211503]  ? ext4_discard_preallocations+0xd80/0xd80
[ 2318.212063]  ? ext4_ext_search_right+0x2e3/0xbd0
[ 2318.212613]  ext4_ext_map_blocks+0x1d49/0x5830
[ 2318.213115]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2318.213680]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2318.214244]  ? ext4_ext_release+0x10/0x10
[ 2318.214703]  ? ext4_map_blocks+0x5cd/0x1910
[ 2318.215166]  ? lock_release+0x680/0x680
[ 2318.215601]  ? ext4_es_lookup_extent+0x48d/0xaa0
[ 2318.216141]  ? lock_downgrade+0x6d0/0x6d0
[ 2318.216601]  ? down_write_killable+0x180/0x180
[ 2318.217130]  ext4_map_blocks+0x63f/0x1910
[ 2318.217579]  ? kmem_cache_alloc+0x2a6/0x310
[ 2318.218074]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 2318.218557]  ? jbd2__journal_start+0xf3/0x7e0
[ 2318.219072]  ? __ext4_journal_start_sb+0x214/0x390
[ 2318.219605]  ? __ext4_journal_start_sb+0x1db/0x390
[ 2318.220172]  ext4_iomap_begin+0x3ad/0x700
[ 2318.220626]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2318.221156]  ? iomap_dio_actor+0x377/0x560
[ 2318.221610]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2318.222109]  ? do_syscall_64+0x33/0x40
[ 2318.222555]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2318.223129]  iomap_apply+0x164/0x810
[ 2318.223568]  ? iomap_dio_rw+0x90/0x90
[ 2318.223981]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2318.224644]  ? mark_held_locks+0x9e/0xe0
[ 2318.225089]  ? filemap_check_errors+0xa5/0x150
[ 2318.225615]  __iomap_dio_rw+0x6cd/0x1110
[ 2318.226054]  ? iomap_dio_rw+0x90/0x90
[ 2318.226500]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2318.226992]  ? ext4_orphan_add+0x253/0x9e0
[ 2318.227452]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2318.227978]  ? ext4_empty_dir+0xae0/0xae0
[ 2318.228419]  ? jbd2__journal_start+0xf3/0x7e0
[ 2318.228904]  iomap_dio_rw+0x31/0x90
[ 2318.229294]  ext4_file_write_iter+0xe0e/0x1530
[ 2318.229828]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2318.230319]  ? kasan_save_stack+0x32/0x40
[ 2318.230792]  ? kasan_save_stack+0x1b/0x40
[ 2318.231235]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2318.231825]  ? iter_file_splice_write+0x165/0xc90
[ 2318.232372]  ? direct_splice_actor+0x10f/0x170
[ 2318.232894]  ? splice_direct_to_actor+0x387/0x980
[ 2318.233410]  ? do_splice_direct+0x1c4/0x290
[ 2318.233903]  ? do_sendfile+0x553/0x11e0
[ 2318.234327]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2318.234824]  ? do_syscall_64+0x33/0x40
[ 2318.235269]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2318.235857]  do_iter_readv_writev+0x476/0x750
[ 2318.236369]  ? _cond_resched+0x10/0x30
[ 2318.236792]  ? new_sync_write+0x660/0x660
[ 2318.237270]  ? avc_policy_seqno+0x9/0x70
[ 2318.237709]  ? selinux_file_permission+0x92/0x520
[ 2318.238265]  ? security_file_permission+0xb1/0xe0
[ 2318.238789]  do_iter_write+0x191/0x700
[ 2318.239237]  ? trace_hardirqs_on+0x5b/0x180
[ 2318.239710]  vfs_iter_write+0x70/0xa0
[ 2318.240118]  iter_file_splice_write+0x726/0xc90
[ 2318.240626]  ? generic_splice_sendpage+0x140/0x140
[ 2318.241162]  ? security_file_permission+0xb1/0xe0
[ 2318.241680]  ? generic_splice_sendpage+0x140/0x140
[ 2318.242206]  direct_splice_actor+0x10f/0x170
[ 2318.242712]  splice_direct_to_actor+0x387/0x980
[ 2318.243218]  ? pipe_to_sendpage+0x380/0x380
[ 2318.243723]  ? do_splice_to+0x160/0x160
[ 2318.244178]  ? security_file_permission+0xb1/0xe0
[ 2318.244736]  do_splice_direct+0x1c4/0x290
[ 2318.245209]  ? splice_direct_to_actor+0x980/0x980
[ 2318.245762]  ? avc_policy_seqno+0x9/0x70
[ 2318.246233]  ? security_file_permission+0xb1/0xe0
[ 2318.246790]  do_sendfile+0x553/0x11e0
[ 2318.247231]  ? do_pwritev+0x270/0x270
[ 2318.247653]  ? wait_for_completion_io+0x270/0x270
[ 2318.248172]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2318.248677]  ? vfs_write+0x354/0xb10
[ 2318.249079]  __x64_sys_sendfile64+0x1d1/0x210
[ 2318.249558]  ? __ia32_sys_sendfile+0x220/0x220
[ 2318.250051]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2318.250612]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2318.251201]  do_syscall_64+0x33/0x40
[ 2318.252173]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2318.253461] RIP: 0033:0x7fa861eb0b19
[ 2318.254395] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2318.258578] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2318.260172] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2318.261668] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2318.263148] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2318.264640] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2318.266137] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
16:44:32 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:44:32 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, 0x0)

16:44:32 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000040))
getsockname(r1, &(0x7f0000000080)=@xdp, &(0x7f0000000100)=0x80)
r2 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @none}, 0x8)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), r2)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r2, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x54, r3, 0x403, 0x70bd25, 0x25dfdbfc, {}, [@ETHTOOL_A_COALESCE_RATE_SAMPLE_INTERVAL={0x8, 0x17, 0xa9}, @ETHTOOL_A_COALESCE_TX_USECS_HIGH={0x8, 0x15, 0x100}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_IRQ={0x8, 0x9, 0x1ff}, @ETHTOOL_A_COALESCE_RATE_SAMPLE_INTERVAL={0x8, 0x17, 0x3f}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_IRQ={0x8, 0x9, 0x7ff}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_LOW={0x8, 0x11, 0x1}, @ETHTOOL_A_COALESCE_RX_USECS_IRQ={0x8, 0x4, 0xea}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_IRQ={0x8, 0x9, 0x2}]}, 0x54}, 0x1, 0x0, 0x0, 0x8000}, 0x11)
shutdown(r2, 0x0)

[ 2318.336176] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2318.407963] loop7: detected capacity change from 0 to 135266304
[ 2318.456763] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:44:47 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xb000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:44:47 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)
r2 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r3, 0x0, r3)
poll(&(0x7f0000000040)=[{r2}, {r3, 0x2}], 0x2, 0x1)

16:44:47 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000040))
getsockname(r1, &(0x7f0000000080)=@xdp, &(0x7f0000000100)=0x80)
r2 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @none}, 0x8)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), r2)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r2, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x54, r3, 0x403, 0x70bd25, 0x25dfdbfc, {}, [@ETHTOOL_A_COALESCE_RATE_SAMPLE_INTERVAL={0x8, 0x17, 0xa9}, @ETHTOOL_A_COALESCE_TX_USECS_HIGH={0x8, 0x15, 0x100}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_IRQ={0x8, 0x9, 0x1ff}, @ETHTOOL_A_COALESCE_RATE_SAMPLE_INTERVAL={0x8, 0x17, 0x3f}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_IRQ={0x8, 0x9, 0x7ff}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_LOW={0x8, 0x11, 0x1}, @ETHTOOL_A_COALESCE_RX_USECS_IRQ={0x8, 0x4, 0xea}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_IRQ={0x8, 0x9, 0x2}]}, 0x54}, 0x1, 0x0, 0x0, 0x8000}, 0x11)
shutdown(r2, 0x0)

16:44:47 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r1)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_SET_TID_CONFIG(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)={0x34, r6, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x18}]}, 0x34}}, 0x0)
sendmsg$NL80211_CMD_DEAUTHENTICATE(r3, &(0x7f0000000140)={&(0x7f0000000040), 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x34, r4, 0x4, 0x70bd2c, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r8}, @val={0xc, 0x99, {0x5, 0x5e}}}}, [@NL80211_ATTR_MAC={0xa}]}, 0x34}, 0x1, 0x0, 0x0, 0x40000}, 0x24040804)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x7)

16:44:47 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 70)

16:44:47 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, &(0x7f0000000740), 0x400000, 0x0)
openat(r2, &(0x7f0000000040)='./file1\x00', 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:44:47 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:44:47 executing program 3:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:44:47 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_uring_enter(0xffffffffffffffff, 0x91e, 0x9eb9, 0x3, &(0x7f0000000080)={[0x6]}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000180)=ANY=[@ANYBLOB="0100001e4306f02501381513f5010000001800cbda", @ANYRES32=<r1=>r0, @ANYBLOB='@\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x80000, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r4, 0x0, 0x0}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FSYNC={0x3, 0x1, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x8)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000700)=@IORING_OP_RECVMSG={0xa, 0x1, 0x0, r4, 0x0, &(0x7f00000006c0)={&(0x7f0000000440)=@ax25={{0x3, @netrom}, [@bcast, @bcast, @bcast, @default, @netrom, @bcast, @bcast]}, 0x80, &(0x7f0000000640)=[{&(0x7f00000003c0)=""/12, 0xc}, {&(0x7f00000004c0)=""/90, 0x5a}, {&(0x7f0000000540)=""/205, 0xcd}], 0x3, &(0x7f0000000680)=""/23, 0x17}, 0x0, 0x40, 0x0, {0x2, r5}}, 0x7)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_POLL_REMOVE={0x7, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, {0x0, r5}}, 0x6)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000140)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x3, 0x0, r1, &(0x7f0000000100)={0x20000000}, r0, 0x3, 0x0, 0x0, {0x0, r5}}, 0x3)
r6 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r6, &(0x7f0000000000)={0x1f, @fixed}, 0x7)
ioctl$EXT4_IOC_GETSTATE(r6, 0x40046629, &(0x7f0000000040))
openat(r4, &(0x7f00000000c0)='./file0\x00', 0x2c8042, 0x6)

[ 2333.313149] FAULT_INJECTION: forcing a failure.
[ 2333.313149] name failslab, interval 1, probability 0, space 0, times 0
[ 2333.314572] CPU: 0 PID: 12173 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2333.315421] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2333.316439] Call Trace:
[ 2333.316769]  dump_stack+0x107/0x167
[ 2333.317219]  should_fail.cold+0x5/0xa
[ 2333.317680]  ? ext4_mb_new_blocks+0x1fd8/0x45c0
[ 2333.318247]  should_failslab+0x5/0x20
[ 2333.318706]  kmem_cache_alloc+0x5b/0x310
[ 2333.319198]  ext4_mb_new_blocks+0x1fd8/0x45c0
[ 2333.319762]  ? trace_hardirqs_on+0x5b/0x180
[ 2333.320294]  ? ext4_cache_extents+0x148/0x2d0
[ 2333.320841]  ? ext4_discard_preallocations+0xd80/0xd80
[ 2333.321480]  ? ext4_ext_search_right+0x2e3/0xbd0
[ 2333.322064]  ext4_ext_map_blocks+0x1d49/0x5830
[ 2333.322625]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2333.323257]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2333.323900]  ? ext4_ext_release+0x10/0x10
[ 2333.324406]  ? ext4_map_blocks+0x5cd/0x1910
[ 2333.324937]  ? lock_release+0x680/0x680
[ 2333.325415]  ? ext4_es_lookup_extent+0x48d/0xaa0
[ 2333.325986]  ? lock_downgrade+0x6d0/0x6d0
[ 2333.326496]  ? down_write_killable+0x180/0x180
[ 2333.327062]  ext4_map_blocks+0x63f/0x1910
[ 2333.327575]  ? kmem_cache_alloc+0x2a6/0x310
[ 2333.328094]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 2333.328638]  ? jbd2__journal_start+0xf3/0x7e0
[ 2333.329179]  ? __ext4_journal_start_sb+0x214/0x390
[ 2333.329770]  ? __ext4_journal_start_sb+0x1db/0x390
[ 2333.330368]  ext4_iomap_begin+0x3ad/0x700
[ 2333.330877]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2333.331491]  ? iomap_dio_actor+0x377/0x560
[ 2333.332007]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2333.332565]  ? do_syscall_64+0x33/0x40
[ 2333.333028]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2333.333669]  iomap_apply+0x164/0x810
[ 2333.334115]  ? iomap_dio_rw+0x90/0x90
[ 2333.334577]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2333.335281]  ? mark_held_locks+0x9e/0xe0
[ 2333.335784]  ? filemap_check_errors+0xa5/0x150
[ 2333.336337]  __iomap_dio_rw+0x6cd/0x1110
[ 2333.336829]  ? iomap_dio_rw+0x90/0x90
[ 2333.337304]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2333.337857]  ? ext4_orphan_add+0x253/0x9e0
[ 2333.338382]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2333.338976]  ? ext4_empty_dir+0xae0/0xae0
[ 2333.339478]  ? jbd2__journal_start+0xf3/0x7e0
[ 2333.340027]  iomap_dio_rw+0x31/0x90
[ 2333.340475]  ext4_file_write_iter+0xe0e/0x1530
[ 2333.341033]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2333.341580]  ? kasan_save_stack+0x32/0x40
[ 2333.342074]  ? kasan_save_stack+0x1b/0x40
[ 2333.342570]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2333.343172]  ? iter_file_splice_write+0x165/0xc90
[ 2333.343757]  ? direct_splice_actor+0x10f/0x170
[ 2333.344309]  ? splice_direct_to_actor+0x387/0x980
[ 2333.344887]  ? do_splice_direct+0x1c4/0x290
[ 2333.345402]  ? do_sendfile+0x553/0x11e0
[ 2333.345879]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2333.346434]  ? do_syscall_64+0x33/0x40
[ 2333.346909]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2333.347556]  do_iter_readv_writev+0x476/0x750
[ 2333.348095]  ? _cond_resched+0x10/0x30
[ 2333.348559]  ? new_sync_write+0x660/0x660
[ 2333.349061]  ? avc_policy_seqno+0x9/0x70
[ 2333.349542]  ? selinux_file_permission+0x92/0x520
[ 2333.350122]  ? security_file_permission+0xb1/0xe0
[ 2333.350700]  do_iter_write+0x191/0x700
[ 2333.351172]  ? trace_hardirqs_on+0x5b/0x180
[ 2333.351706]  vfs_iter_write+0x70/0xa0
[ 2333.352163]  iter_file_splice_write+0x726/0xc90
[ 2333.352724]  ? generic_splice_sendpage+0x140/0x140
[ 2333.353328]  ? security_file_permission+0xb1/0xe0
[ 2333.353903]  ? generic_splice_sendpage+0x140/0x140
[ 2333.354500]  direct_splice_actor+0x10f/0x170
[ 2333.355027]  splice_direct_to_actor+0x387/0x980
[ 2333.355601]  ? pipe_to_sendpage+0x380/0x380
[ 2333.356115]  ? do_splice_to+0x160/0x160
[ 2333.356588]  ? security_file_permission+0xb1/0xe0
[ 2333.357167]  do_splice_direct+0x1c4/0x290
[ 2333.357744]  ? splice_direct_to_actor+0x980/0x980
[ 2333.358429]  ? avc_policy_seqno+0x9/0x70
[ 2333.358921]  ? security_file_permission+0xb1/0xe0
[ 2333.359515]  do_sendfile+0x553/0x11e0
[ 2333.359981]  ? do_pwritev+0x270/0x270
[ 2333.360437]  ? wait_for_completion_io+0x270/0x270
[ 2333.361013]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2333.361559]  ? vfs_write+0x354/0xb10
[ 2333.362001]  __x64_sys_sendfile64+0x1d1/0x210
[ 2333.362529]  ? __ia32_sys_sendfile+0x220/0x220
[ 2333.363075]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2333.363701]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2333.364318]  do_syscall_64+0x33/0x40
[ 2333.364761]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2333.365374] RIP: 0033:0x7fa861eb0b19
[ 2333.365842] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2333.368043] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2333.368950] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2333.369797] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2333.370641] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2333.371493] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2333.372336] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
[ 2333.373665] loop7: detected capacity change from 0 to 135266304
[ 2333.382749] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2333.384295] 9pnet: Could not find request transport: xen
16:44:47 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:44:47 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x406, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

[ 2333.396034] loop3: detected capacity change from 0 to 16896
16:44:47 executing program 1:
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff}, './file0\x00'})
ioctl$EXT4_IOC_GET_ES_CACHE(r0, 0xc020662a, &(0x7f0000000080)={0x0, 0x0, 0x4, 0x45, 0x4, [{0x3ff, 0x8001, 0x8, '\x00', 0x2304}, {0x0, 0x5}, {0x5, 0x5, 0xcff, '\x00', 0x4}, {0x1, 0x7f, 0x41e, '\x00', 0x100a}]})
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r3, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r3, &(0x7f0000000100)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
sendmsg$inet(r3, &(0x7f00000000c0)={&(0x7f0000000000)={0x2, 0x4e21, @multicast1}, 0x10, 0x0}, 0x404c008)
connect$inet6(r3, &(0x7f0000000080)={0xa, 0x4e22, 0x1, @ipv4={'\x00', '\xff\xff', @empty}, 0x1}, 0x1c)
r4 = fcntl$dupfd(r3, 0x0, r3)
sendmsg$inet6(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000001ac0)={{{@in6, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in6=@private1}, 0x0, @in=@initdev}}, &(0x7f0000001a80)=0xfffffffffffffda2)
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = fcntl$dupfd(r6, 0x0, r6)
sendmsg$nl_generic(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="f80000001c00210cfffffffffff9f06ab8083214e8c7167d9b85d29e83b01df1ee2532386c4e622017246a951804d7491b1b50bdd12865aef323f8041d80e8b40f9e98e643da8978aa20260bf93696ba075b54c81e6450a6fa0f9e87e2b6e224bdbc39dbcf96ddc38a51f7f3b91d9e6fed2380fb998b06340be515dd22e0fd27ca86bccd9df4c6b3233a8aedeebd0ed4587bb7f669002d2ed764685cec08743482681efe6e7e757728bc2f4e40a5c82dc230114229c1e1c98750eed455c41138f3ea94eb12abe8a55904c5f70352863bc8b1385e463cdbbffbc4e2080001000a010100080002002a5c3a00"/248], 0xf8}, 0x1, 0x0, 0x0, 0x44801}, 0x4000000)
setsockopt$inet_pktinfo(r7, 0x0, 0x8, &(0x7f0000001a40)={r5, @multicast1, @multicast1}, 0xc)
ioctl$NS_GET_OWNER_UID(r4, 0xb704, &(0x7f00000001c0)=<r8=>0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000380)={{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in=@empty, 0x4e21, 0x9, 0x4e24, 0x4, 0xa, 0x80, 0x0, 0x6c, r5, r8}, {0xfffffffffffffffe, 0x80, 0x800, 0x7fffffff, 0xfffffffffffffffe, 0x1ac0, 0xfb5, 0x4}, {0x7fffffff, 0x9, 0x0, 0x975}, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1}, {{@in=@local, 0x4d2, 0x33}, 0x2, @in6=@remote, 0x0, 0x0, 0x3, 0x40, 0x3f, 0x2, 0x7}}, 0xe8)
sendmsg$ETHTOOL_MSG_LINKINFO_GET(0xffffffffffffffff, &(0x7f0000000980)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000940)={&(0x7f0000000700)={0x23c, 0x0, 0x100, 0x70bd29, 0x25dfdbfb, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}]}, @HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x74, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x74, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netpci0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan0\x00'}]}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'caif0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_hsr\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_macvtap\x00'}]}]}, 0x23c}, 0x1, 0x0, 0x0, 0x8840}, 0x20000090)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed}, 0x7)

[ 2333.435601] loop7: detected capacity change from 0 to 135266304
16:44:47 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000040))
getsockname(r1, &(0x7f0000000080)=@xdp, &(0x7f0000000100)=0x80)
r2 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @none}, 0x8)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), r2)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r2, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x54, r3, 0x403, 0x70bd25, 0x25dfdbfc, {}, [@ETHTOOL_A_COALESCE_RATE_SAMPLE_INTERVAL={0x8, 0x17, 0xa9}, @ETHTOOL_A_COALESCE_TX_USECS_HIGH={0x8, 0x15, 0x100}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_IRQ={0x8, 0x9, 0x1ff}, @ETHTOOL_A_COALESCE_RATE_SAMPLE_INTERVAL={0x8, 0x17, 0x3f}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_IRQ={0x8, 0x9, 0x7ff}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_LOW={0x8, 0x11, 0x1}, @ETHTOOL_A_COALESCE_RX_USECS_IRQ={0x8, 0x4, 0xea}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_IRQ={0x8, 0x9, 0x2}]}, 0x54}, 0x1, 0x0, 0x0, 0x8000}, 0x11)
shutdown(r2, 0x0)

[ 2333.454483] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:44:47 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x30, 0xffffffffffffffff, 0x0)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0)
open_tree(r2, &(0x7f0000000440)='./file0\x00', 0x8100)
r3 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000040), 0x404c40, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f00000006c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x5, 0x4007, @fd=r3, 0x7, &(0x7f0000000600)=[{&(0x7f0000000080)=""/47, 0x2f}, {&(0x7f00000000c0)=""/55, 0x37}, {&(0x7f0000000100)=""/39, 0x27}, {&(0x7f0000000140)=""/191, 0xbf}, {&(0x7f0000000200)}, {&(0x7f0000000240)=""/201, 0xc9}, {&(0x7f0000000340)=""/239, 0xef}, {&(0x7f0000000440)}, {&(0x7f0000000480)=""/157, 0x9d}, {&(0x7f0000000540)=""/143, 0x8f}], 0xa, 0x4, 0x1}, 0x2)
r4 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:44:47 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:44:47 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 71)

16:44:47 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xd000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:44:47 executing program 3:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_t', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, &(0x7f0000000740), 0x400000, 0x0)
openat(r2, &(0x7f0000000040)='./file1\x00', 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

[ 2333.549856] 9pnet: Could not find request transport: xen
[ 2333.630436] loop7: detected capacity change from 0 to 135266304
[ 2333.656873] netlink: 220 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2333.665471] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2333.686725] FAULT_INJECTION: forcing a failure.
[ 2333.686725] name failslab, interval 1, probability 0, space 0, times 0
[ 2333.688062] CPU: 0 PID: 12210 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2333.688861] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2333.689829] Call Trace:
[ 2333.690146]  dump_stack+0x107/0x167
[ 2333.690575]  should_fail.cold+0x5/0xa
[ 2333.691021]  ? ext4_mb_new_blocks+0x1fd8/0x45c0
[ 2333.691566]  should_failslab+0x5/0x20
[ 2333.692013]  kmem_cache_alloc+0x5b/0x310
[ 2333.692485]  ext4_mb_new_blocks+0x1fd8/0x45c0
[ 2333.693008]  ? trace_hardirqs_on+0x5b/0x180
[ 2333.693505]  ? ext4_cache_extents+0x148/0x2d0
[ 2333.694024]  ? ext4_discard_preallocations+0xd80/0xd80
[ 2333.694630]  ? ext4_ext_search_right+0x2e3/0xbd0
[ 2333.695189]  ext4_ext_map_blocks+0x1d49/0x5830
[ 2333.695744]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2333.696348]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2333.696958]  ? ext4_ext_release+0x10/0x10
[ 2333.697439]  ? ext4_map_blocks+0x5cd/0x1910
[ 2333.697937]  ? lock_release+0x680/0x680
[ 2333.698403]  ? ext4_es_lookup_extent+0x48d/0xaa0
[ 2333.698961]  ? lock_downgrade+0x6d0/0x6d0
[ 2333.699460]  ? down_write_killable+0x180/0x180
[ 2333.700006]  ext4_map_blocks+0x63f/0x1910
[ 2333.700485]  ? kmem_cache_alloc+0x2a6/0x310
[ 2333.700992]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 2333.701506]  ? jbd2__journal_start+0xf3/0x7e0
[ 2333.702037]  ? __ext4_journal_start_sb+0x214/0x390
[ 2333.702594]  ? __ext4_journal_start_sb+0x1db/0x390
[ 2333.703170]  ext4_iomap_begin+0x3ad/0x700
[ 2333.703660]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2333.704244]  ? iomap_dio_actor+0x377/0x560
[ 2333.704738]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2333.705282]  ? do_syscall_64+0x33/0x40
[ 2333.705739]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2333.706355]  iomap_apply+0x164/0x810
[ 2333.706797]  ? iomap_dio_rw+0x90/0x90
[ 2333.707236]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2333.707909]  ? mark_held_locks+0x9e/0xe0
[ 2333.708382]  ? filemap_check_errors+0xa5/0x150
[ 2333.708910]  __iomap_dio_rw+0x6cd/0x1110
[ 2333.709371]  ? iomap_dio_rw+0x90/0x90
[ 2333.709818]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2333.710358]  ? ext4_orphan_add+0x253/0x9e0
[ 2333.710842]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2333.711414]  ? ext4_empty_dir+0xae0/0xae0
[ 2333.711909]  ? jbd2__journal_start+0xf3/0x7e0
[ 2333.712429]  iomap_dio_rw+0x31/0x90
[ 2333.712851]  ext4_file_write_iter+0xe0e/0x1530
[ 2333.713397]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2333.713927]  ? kasan_save_stack+0x32/0x40
[ 2333.714399]  ? kasan_save_stack+0x1b/0x40
[ 2333.714891]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2333.715480]  ? iter_file_splice_write+0x165/0xc90
[ 2333.716032]  ? direct_splice_actor+0x10f/0x170
[ 2333.716562]  ? splice_direct_to_actor+0x387/0x980
[ 2333.717109]  ? do_splice_direct+0x1c4/0x290
[ 2333.717612]  ? do_sendfile+0x553/0x11e0
[ 2333.718062]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2333.718610]  ? do_syscall_64+0x33/0x40
[ 2333.719067]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2333.719688]  do_iter_readv_writev+0x476/0x750
[ 2333.720202]  ? _cond_resched+0x10/0x30
[ 2333.720660]  ? new_sync_write+0x660/0x660
[ 2333.721136]  ? avc_policy_seqno+0x9/0x70
[ 2333.721601]  ? selinux_file_permission+0x92/0x520
[ 2333.722153]  ? security_file_permission+0xb1/0xe0
[ 2333.722710]  do_iter_write+0x191/0x700
[ 2333.723166]  ? trace_hardirqs_on+0x5b/0x180
[ 2333.723668]  vfs_iter_write+0x70/0xa0
[ 2333.724104]  iter_file_splice_write+0x726/0xc90
[ 2333.724662]  ? generic_splice_sendpage+0x140/0x140
[ 2333.725241]  ? security_file_permission+0xb1/0xe0
[ 2333.725793]  ? generic_splice_sendpage+0x140/0x140
[ 2333.726372]  direct_splice_actor+0x10f/0x170
[ 2333.726890]  splice_direct_to_actor+0x387/0x980
[ 2333.727421]  ? pipe_to_sendpage+0x380/0x380
[ 2333.727927]  ? do_splice_to+0x160/0x160
[ 2333.728377]  ? security_file_permission+0xb1/0xe0
[ 2333.728933]  do_splice_direct+0x1c4/0x290
[ 2333.729422]  ? splice_direct_to_actor+0x980/0x980
[ 2333.729967]  ? avc_policy_seqno+0x9/0x70
[ 2333.730433]  ? security_file_permission+0xb1/0xe0
[ 2333.731004]  do_sendfile+0x553/0x11e0
[ 2333.731457]  ? do_pwritev+0x270/0x270
[ 2333.731893]  ? wait_for_completion_io+0x270/0x270
[ 2333.732464]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2333.732994]  ? vfs_write+0x354/0xb10
[ 2333.733423]  __x64_sys_sendfile64+0x1d1/0x210
[ 2333.733940]  ? __ia32_sys_sendfile+0x220/0x220
[ 2333.734463]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2333.735060]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2333.735660]  do_syscall_64+0x33/0x40
[ 2333.736084]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2333.736672] RIP: 0033:0x7fa861eb0b19
[ 2333.737114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2333.739216] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2333.740095] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2333.740910] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2333.741725] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2333.742571] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2333.743392] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
[ 2333.762712] netlink: 220 bytes leftover after parsing attributes in process `syz-executor.1'.
16:45:01 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x8, 0x100010, r3, 0x8000000)
r5 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
syz_io_uring_submit(r8, r7, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r3, 0xc0189373, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r9=>r3}, './file0\x00'})
r10 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r10, 0x0, r10)
syz_io_uring_submit(r4, r7, &(0x7f0000000100)=@IORING_OP_FILES_UPDATE={0x14, 0x2, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[r2, r9, r2, r10, r3], 0x5, 0x0, 0x1}, 0xfef6)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r11 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r12 = fcntl$dupfd(r11, 0x0, r11)
connect$bt_sco(r12, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$EVIOCSCLOCKID(r12, 0x400445a0, &(0x7f0000000180)=0x9)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000040))

16:45:01 executing program 3:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, &(0x7f0000000740), 0x400000, 0x0)
openat(r2, &(0x7f0000000040)='./file1\x00', 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:45:01 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(r2, &(0x7f0000000040)='./file1\x00', 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:45:01 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 72)

16:45:01 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xf000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:45:01 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x7)
setsockopt$sock_int(r1, 0x1, 0x2b, &(0x7f0000000040)=0x2, 0x4)

16:45:01 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000040))
getsockname(r1, &(0x7f0000000080)=@xdp, &(0x7f0000000100)=0x80)
r2 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @none}, 0x8)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), r2)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r2, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x54, r3, 0x403, 0x70bd25, 0x25dfdbfc, {}, [@ETHTOOL_A_COALESCE_RATE_SAMPLE_INTERVAL={0x8, 0x17, 0xa9}, @ETHTOOL_A_COALESCE_TX_USECS_HIGH={0x8, 0x15, 0x100}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_IRQ={0x8, 0x9, 0x1ff}, @ETHTOOL_A_COALESCE_RATE_SAMPLE_INTERVAL={0x8, 0x17, 0x3f}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_IRQ={0x8, 0x9, 0x7ff}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_LOW={0x8, 0x11, 0x1}, @ETHTOOL_A_COALESCE_RX_USECS_IRQ={0x8, 0x4, 0xea}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_IRQ={0x8, 0x9, 0x2}]}, 0x54}, 0x1, 0x0, 0x0, 0x8000}, 0x11)
shutdown(r2, 0x0)

16:45:01 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

[ 2347.581864] loop7: detected capacity change from 0 to 135266304
[ 2347.594323] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2347.610894] loop7: detected capacity change from 0 to 135266304
[ 2347.615914] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2347.643919] 9pnet: Could not find request transport: xen
[ 2347.654069] FAULT_INJECTION: forcing a failure.
[ 2347.654069] name failslab, interval 1, probability 0, space 0, times 0
[ 2347.656562] CPU: 1 PID: 12236 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2347.657983] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2347.659693] Call Trace:
[ 2347.660246]  dump_stack+0x107/0x167
[ 2347.660993]  should_fail.cold+0x5/0xa
[ 2347.661780]  ? create_object.isra.0+0x3a/0xa20
[ 2347.662739]  should_failslab+0x5/0x20
[ 2347.663521]  kmem_cache_alloc+0x5b/0x310
[ 2347.664351]  ? quarantine_put+0x8b/0x1a0
[ 2347.665195]  ? trace_hardirqs_on+0x5b/0x180
[ 2347.666086]  create_object.isra.0+0x3a/0xa20
[ 2347.666974]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2347.668030]  kmem_cache_alloc+0x159/0x310
[ 2347.668883]  ? mempool_free_pages+0x20/0x20
[ 2347.669760]  mempool_alloc+0x148/0x360
[ 2347.670571]  ? mempool_resize+0x7d0/0x7d0
[ 2347.671410]  ? lock_downgrade+0x6d0/0x6d0
[ 2347.672290]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2347.673501]  bio_alloc_bioset+0x36e/0x600
[ 2347.674350]  ? bvec_alloc+0x2f0/0x2f0
[ 2347.675297]  ? iov_iter_npages+0x1fd/0xa70
[ 2347.676610]  iomap_dio_bio_actor+0x518/0xef0
[ 2347.677743]  iomap_dio_actor+0x36f/0x560
[ 2347.678725]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2347.679726]  ? do_syscall_64+0x33/0x40
[ 2347.680633]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2347.681746]  iomap_apply+0x289/0x810
[ 2347.682668]  ? iomap_dio_rw+0x90/0x90
[ 2347.683538]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2347.684965]  ? mark_held_locks+0x9e/0xe0
[ 2347.685800]  ? filemap_check_errors+0xa5/0x150
[ 2347.686909]  __iomap_dio_rw+0x6cd/0x1110
[ 2347.687753]  ? iomap_dio_rw+0x90/0x90
[ 2347.688562]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2347.689661]  ? ext4_orphan_add+0x253/0x9e0
[ 2347.690663]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2347.691887]  ? ext4_empty_dir+0xae0/0xae0
[ 2347.692812]  ? jbd2__journal_start+0xf3/0x7e0
[ 2347.693798]  iomap_dio_rw+0x31/0x90
[ 2347.694545]  ext4_file_write_iter+0xe0e/0x1530
[ 2347.695638]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2347.696701]  ? kasan_save_stack+0x32/0x40
[ 2347.697791]  ? kasan_save_stack+0x1b/0x40
[ 2347.698634]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2347.699688]  ? iter_file_splice_write+0x165/0xc90
[ 2347.700769]  ? direct_splice_actor+0x10f/0x170
[ 2347.701819]  ? splice_direct_to_actor+0x387/0x980
[ 2347.702987]  ? do_splice_direct+0x1c4/0x290
[ 2347.704168]  ? do_sendfile+0x553/0x11e0
[ 2347.705051]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2347.706049]  ? do_syscall_64+0x33/0x40
[ 2347.706846]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2347.708009]  do_iter_readv_writev+0x476/0x750
[ 2347.708972]  ? _cond_resched+0x10/0x30
[ 2347.709922]  ? new_sync_write+0x660/0x660
[ 2347.710939]  ? avc_policy_seqno+0x9/0x70
[ 2347.712009]  ? selinux_file_permission+0x92/0x520
[ 2347.713151]  ? security_file_permission+0xb1/0xe0
[ 2347.714199]  do_iter_write+0x191/0x700
[ 2347.715187]  ? trace_hardirqs_on+0x5b/0x180
[ 2347.716126]  vfs_iter_write+0x70/0xa0
[ 2347.717082]  iter_file_splice_write+0x726/0xc90
[ 2347.718328]  ? generic_splice_sendpage+0x140/0x140
[ 2347.719370]  ? security_file_permission+0xb1/0xe0
[ 2347.720547]  ? generic_splice_sendpage+0x140/0x140
[ 2347.721713]  direct_splice_actor+0x10f/0x170
[ 2347.722767]  splice_direct_to_actor+0x387/0x980
[ 2347.723951]  ? pipe_to_sendpage+0x380/0x380
[ 2347.724882]  ? do_splice_to+0x160/0x160
[ 2347.725689]  ? security_file_permission+0xb1/0xe0
[ 2347.726730]  do_splice_direct+0x1c4/0x290
[ 2347.727617]  ? splice_direct_to_actor+0x980/0x980
[ 2347.728750]  ? avc_policy_seqno+0x9/0x70
[ 2347.729761]  ? security_file_permission+0xb1/0xe0
[ 2347.730932]  do_sendfile+0x553/0x11e0
[ 2347.731933]  ? do_pwritev+0x270/0x270
[ 2347.732754]  ? wait_for_completion_io+0x270/0x270
[ 2347.733782]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2347.734784]  ? vfs_write+0x354/0xb10
[ 2347.735722]  __x64_sys_sendfile64+0x1d1/0x210
[ 2347.736841]  ? __ia32_sys_sendfile+0x220/0x220
[ 2347.737886]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2347.739219]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2347.740334]  do_syscall_64+0x33/0x40
[ 2347.741157]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2347.742353] RIP: 0033:0x7fa861eb0b19
[ 2347.743366] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2347.747668] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2347.749653] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2347.751123] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2347.752657] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2347.754211] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2347.755795] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
[ 2347.785151] 9pnet: Could not find request transport: xen
16:45:02 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:45:02 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x11000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:45:02 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000040))
getsockname(r1, &(0x7f0000000080)=@xdp, &(0x7f0000000100)=0x80)
r2 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @none}, 0x8)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), r2)
shutdown(r2, 0x0)

[ 2347.938627] loop7: detected capacity change from 0 to 135266304
[ 2347.964058] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:45:02 executing program 1:
getpeername(0xffffffffffffffff, &(0x7f0000000040)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r0=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast1}}}, &(0x7f00000000c0)=0x80)
getsockopt$EBT_SO_GET_ENTRIES(r0, 0x0, 0x81, &(0x7f0000000180)={'filter\x00', 0x0, 0x3, 0x0, [0x7, 0x101, 0x4, 0x3, 0x7, 0x3], 0x1, &(0x7f0000000100)=[{}], &(0x7f0000000140)}, &(0x7f0000000200)=0x78)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed}, 0x7)
connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000240)={0x2, 0x4e20, @multicast2}, 0x10, 0x0}, 0x404c008)
connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x4e22, 0x1, @ipv4={'\x00', '\xff\xff', @empty}, 0x1}, 0x1c)
r3 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
sendmsg$inet6(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000001ac0)={{{@in6, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in6=@private1}, 0x0, @in=@initdev}}, &(0x7f0000001a80)=0xfffffffffffffda2)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = fcntl$dupfd(r5, 0x0, r5)
sendmsg$nl_generic(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="f80000001c00210cfffffffffff9f06ab8083214e8c7167d9b85d29e83b01df1ee2532386c4e622017246a951804d7491b1b50bdd12865aef323f8041d80e8b40f9e98e643da8978aa20260bf93696ba075b54c81e6450a6fa0f9e87e2b6e224bdbc39dbcf96ddc38a51f7f3b91d9e6fed2380fb998b06340be515dd22e0fd27ca86bccd9df4c6b3233a8aedeebd0ed4587bb7f669002d2ed764685cec08743482681efe6e7e757728bc2f4e40a5c82dc230114229c1e1c98750eed455c41138f3ea94eb12abe8a55904c5f7035286c0d4d39dd6168e3bc8b1385e463cdbbffbc4e2080001000a010100080002002a5c3a00000000000000"], 0xf8}, 0x1, 0x0, 0x0, 0x44801}, 0x4000000)
setsockopt$inet_pktinfo(r6, 0x0, 0x8, &(0x7f0000001a40)={r4, @multicast1, @multicast1}, 0xc)
ioctl$NS_GET_OWNER_UID(r3, 0xb704, &(0x7f00000001c0)=<r7=>0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000380)={{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in=@empty, 0x4e21, 0x9, 0x4e24, 0x4, 0xa, 0x80, 0x0, 0x6c, r4, r7}, {0xfffffffffffffffe, 0x80, 0x800, 0x7fffffff, 0xfffffffffffffffe, 0x1ac0, 0xfb5, 0x4}, {0x7fffffff, 0x9, 0x0, 0x975}, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1}, {{@in=@local, 0x4d2, 0x33}, 0x2, @in6=@remote, 0x0, 0x0, 0x3, 0x40, 0x3f, 0x2, 0x7}}, 0xe8)
ioctl$sock_ipv6_tunnel_SIOCADDPRL(r0, 0x89f5, &(0x7f0000002a80)={'syztnl0\x00', &(0x7f0000002a00)={'ip6tnl0\x00', <r8=>0x0, 0x4, 0x4, 0x6c, 0x7, 0x28, @empty, @remote, 0x40, 0x10, 0x9, 0xcc7}})
getpeername$packet(r2, &(0x7f0000003280)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000032c0)=0x14)
sendmsg$ETHTOOL_MSG_FEATURES_GET(r2, &(0x7f0000003580)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000003540)={&(0x7f0000003300)={0x20c, 0x0, 0x4, 0x70bd2d, 0x25dfdbfc, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6_vti0\x00'}]}, @HEADER={0x84, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vcan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nr0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6erspan0\x00'}]}, @HEADER={0x74, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gre0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller1\x00'}]}, @HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_1\x00'}]}]}, 0x20c}, 0x1, 0x0, 0x0, 0x44000}, 0x40000)

[ 2347.998316] loop7: detected capacity change from 0 to 135266304
16:45:02 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000040))
getsockname(r1, &(0x7f0000000080)=@xdp, &(0x7f0000000100)=0x80)
r2 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r2, 0x0)

16:45:02 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000180))

[ 2348.006304] netlink: 220 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2348.011770] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:45:02 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x7)
shutdown(r0, 0x1)

16:45:02 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000180))

16:45:02 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0xd)

16:45:02 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x20000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

[ 2348.218166] loop7: detected capacity change from 0 to 135266304
[ 2348.240017] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:45:17 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r2, 0x0, r2)
ioctl$F2FS_IOC_GET_PIN_FILE(r2, 0x8004f50e, &(0x7f0000000040))
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:45:17 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r3, 0x0, r3)
ioctl$FS_IOC_SETFLAGS(r3, 0x40086602, &(0x7f00000000c0)=0x10000)
r4 = fcntl$dupfd(r2, 0x0, r2)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'bridge0\x00'})
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000040)={'vxcan0\x00', <r5=>0x0})
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r6, 0x0, r6)
setsockopt$bt_BT_SNDMTU(r6, 0x112, 0xc, &(0x7f0000001800)=0xc0e2, 0x2)
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000080)={r5, @rand_addr=0x64010102, @multicast2}, 0xc)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)
sendmsg$nl_generic(r1, &(0x7f00000017c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000001780)={&(0x7f0000001840)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="040043fa7bbfce58a81e539dc5d032036319ae794d8fa6ad21b6a80523982eca403e53cd54be271bb93714483418bf6c88812079e301b04ef4a2368936d1ea92a8ccd2513aad3ad684f20b49a2f849bf1b217275205595b301b27c5371cefa5c847303a52feb93a3cbed754afc9a96d12235a69e8b9d394cd8cd4c6874e498bb4a99847ebbcb3d9592b33f826b89c00e90f00d4ce5b97ab5c9aba7c48e857f643503c00964dcd38c0b1e042dc69c6b48bfaccd93542610bafb3d1dbc70b49eb96a48e7e08e81f87ef900"/213], 0x162c}, 0x1, 0x0, 0x0, 0x8080}, 0x20000080)

16:45:17 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 73)

[ 2363.393794] loop7: detected capacity change from 0 to 135266304
[ 2363.398025] FAULT_INJECTION: forcing a failure.
[ 2363.398025] name failslab, interval 1, probability 0, space 0, times 0
[ 2363.400863] CPU: 1 PID: 12290 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2363.402544] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2363.404689] Call Trace:
[ 2363.405358]  dump_stack+0x107/0x167
[ 2363.406287] 9pnet: Could not find request transport: xen
[ 2363.406308]  should_fail.cold+0x5/0xa
[ 2363.406336]  ? mempool_alloc+0x148/0x360
[ 2363.409021]  ? mempool_free_pages+0x20/0x20
[ 2363.410116]  should_failslab+0x5/0x20
[ 2363.411089]  kmem_cache_alloc+0x5b/0x310
[ 2363.412135]  ? mempool_free_pages+0x20/0x20
[ 2363.413210]  mempool_alloc+0x148/0x360
[ 2363.414186]  ? mempool_resize+0x7d0/0x7d0
[ 2363.415219]  ? blk_queue_enter+0xc30/0xc30
[ 2363.416331]  bio_alloc_bioset+0x36e/0x600
[ 2363.417354]  ? bvec_alloc+0x2f0/0x2f0
[ 2363.418334]  ? bio_alloc_bioset+0x2a1/0x600
[ 2363.419398]  ? bio_add_pc_page+0x100/0x100
[ 2363.420493]  iomap_dio_zero+0xc8/0x530
[ 2363.421326]  ? iomap_dio_submit_bio+0x295/0x360
[ 2363.422306]  iomap_dio_bio_actor+0xa21/0xef0
[ 2363.423253]  iomap_dio_actor+0x36f/0x560
[ 2363.424119]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2363.425094]  ? do_syscall_64+0x33/0x40
[ 2363.425912]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2363.427047]  iomap_apply+0x289/0x810
[ 2363.427841]  ? iomap_dio_rw+0x90/0x90
[ 2363.428639]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2363.429854]  ? mark_held_locks+0x9e/0xe0
[ 2363.430715]  ? filemap_check_errors+0xa5/0x150
[ 2363.431676]  __iomap_dio_rw+0x6cd/0x1110
[ 2363.432549]  ? iomap_dio_rw+0x90/0x90
[ 2363.433363]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2363.434331]  ? ext4_orphan_add+0x253/0x9e0
[ 2363.435219]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2363.436254]  ? ext4_empty_dir+0xae0/0xae0
[ 2363.437113]  ? jbd2__journal_start+0xf3/0x7e0
[ 2363.438061]  iomap_dio_rw+0x31/0x90
[ 2363.438851]  ext4_file_write_iter+0xe0e/0x1530
[ 2363.439848]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2363.440785]  ? kasan_save_stack+0x32/0x40
[ 2363.441640]  ? kasan_save_stack+0x1b/0x40
[ 2363.442504]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2363.443549]  ? iter_file_splice_write+0x165/0xc90
[ 2363.444567]  ? direct_splice_actor+0x10f/0x170
[ 2363.445630]  ? splice_direct_to_actor+0x387/0x980
[ 2363.446720]  ? do_splice_direct+0x1c4/0x290
[ 2363.447617]  ? do_sendfile+0x553/0x11e0
[ 2363.448462]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2363.449573]  ? do_syscall_64+0x33/0x40
[ 2363.450570]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2363.451796]  do_iter_readv_writev+0x476/0x750
[ 2363.452855]  ? _cond_resched+0x10/0x30
[ 2363.453673]  ? new_sync_write+0x660/0x660
[ 2363.454535]  ? avc_policy_seqno+0x9/0x70
[ 2363.455387]  ? selinux_file_permission+0x92/0x520
[ 2363.456409]  ? security_file_permission+0xb1/0xe0
[ 2363.457536]  do_iter_write+0x191/0x700
[ 2363.458607]  ? trace_hardirqs_on+0x5b/0x180
[ 2363.459517]  vfs_iter_write+0x70/0xa0
16:45:17 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x20100000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:45:17 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(r2, &(0x7f0000000040)='./file1\x00', 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:45:17 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000180))

16:45:17 executing program 1:
getresuid(&(0x7f00000003c0)=<r0=>0x0, &(0x7f00000001c0), &(0x7f0000000340))
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x7f, 0x0, &(0x7f00000000c0), 0x2010004, &(0x7f0000000800)=ANY=[@ANYBLOB='discard,auto_da_alloc,inode_readahead_blks=0x0000000000000400,jqfmt=vfsv0,fowner<', @ANYRESDEC=r0, @ANYBLOB="9c2bc96d455ecedef905af4f03345659b8e4ae1e8baddb8336e0e83875f4bf6deb665b9bdc64404a9a91526ecc77c4f38aeeeafa2bac46bd466320a4b02f6dea02aabb3add37ce1c91232bce466d69cbf00cf135905877c17df23612bc3120a53b2969115314bd5c12cbfa029087bfd5f40659d91d884d66d9629b3d"])
statx(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0x0, 0x400, &(0x7f0000000980)={0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0})
lstat(&(0x7f00000002c0)='./file1\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2, &(0x7f00000005c0)=ANY=[@ANYBLOB='trans=f', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c64666c74673ebc84c1b518f706ad06986964", @ANYRESHEX=r1, @ANYBLOB=',posixacl,access=any,version=9p2000.u,dfltgi', @ANYRESHEX=r2, @ANYBLOB=',version=9p2000,fowner=', @ANYRESDEC, @ANYBLOB=',dont_hash,defcontext=unconfined_u,measure,smackfshat=\',\'A,seclabel,pcr=00000000000000000051,defcontext=\x00ser_u,appraise,\x00'])
semctl$IPC_SET(0xffffffffffffffff, 0x0, 0x1, &(0x7f00000000c0)={{0x3, 0xee00, 0xffffffffffffffff, r0, r2, 0x108, 0x6}, 0x7, 0x1, 0x0, 0x0, 0x0, 0x0, 0x6})
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = fcntl$dupfd(r3, 0x0, r3)
r5 = syz_io_uring_complete(0x0)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FSYNC={0x3, 0x1, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x8)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000700)=@IORING_OP_RECVMSG={0xa, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000006c0)={&(0x7f0000000440)=@ax25={{0x3, @netrom}, [@bcast, @bcast, @bcast, @default, @netrom, @bcast, @bcast]}, 0x80, &(0x7f0000000640)=[{&(0x7f00000003c0)=""/12, 0xc}, {&(0x7f00000004c0)=""/90, 0x5a}, {&(0x7f0000000540)=""/205, 0xcd}], 0x3, &(0x7f0000000680)=""/23, 0x17}, 0x0, 0x40, 0x0, {0x2}}, 0x7)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_POLL_REMOVE={0x7, 0x5, 0x0, 0x0, 0x0, 0x1}, 0x6)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_MADVISE={0x19, 0x2, 0x0, 0x0, 0x0, &(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xf}, 0x3)
r7 = fcntl$dupfd(r6, 0x0, r6)
connect$bt_sco(r7, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
socketpair(0x3, 0xa, 0x7ff, &(0x7f0000000080)={<r8=>0xffffffffffffffff})
shutdown(r8, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r5, 0xc0189378, &(0x7f0000000040)={{0x1, 0x1, 0x18, r3, {r7}}, './file0\x00'})
connect$bt_sco(r4, &(0x7f0000000000), 0x8)

16:45:17 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000040))
getsockname(r1, &(0x7f0000000080)=@xdp, &(0x7f0000000100)=0x80)
r2 = fcntl$dupfd(r0, 0x0, r0)
shutdown(r2, 0x0)

[ 2363.460335]  iter_file_splice_write+0x726/0xc90
[ 2363.461753]  ? generic_splice_sendpage+0x140/0x140
[ 2363.462831]  ? security_file_permission+0xb1/0xe0
[ 2363.463895]  ? generic_splice_sendpage+0x140/0x140
[ 2363.464975]  direct_splice_actor+0x10f/0x170
[ 2363.465947]  splice_direct_to_actor+0x387/0x980
[ 2363.466975]  ? pipe_to_sendpage+0x380/0x380
[ 2363.467939]  ? do_splice_to+0x160/0x160
[ 2363.468807]  ? security_file_permission+0xb1/0xe0
[ 2363.469873]  do_splice_direct+0x1c4/0x290
[ 2363.470956]  ? splice_direct_to_actor+0x980/0x980
[ 2363.472029]  ? avc_policy_seqno+0x9/0x70
[ 2363.473169]  ? security_file_permission+0xb1/0xe0
[ 2363.474415]  do_sendfile+0x553/0x11e0
[ 2363.475254]  ? do_pwritev+0x270/0x270
[ 2363.476097]  ? wait_for_completion_io+0x270/0x270
[ 2363.477149]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2363.478160]  ? vfs_write+0x354/0xb10
[ 2363.478974]  __x64_sys_sendfile64+0x1d1/0x210
[ 2363.479957]  ? __ia32_sys_sendfile+0x220/0x220
[ 2363.480948]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2363.482082]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2363.483209]  do_syscall_64+0x33/0x40
[ 2363.484167]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2363.485284] RIP: 0033:0x7fa861eb0b19
[ 2363.486102] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2363.490575] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2363.492313] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2363.493852] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2363.495392] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2363.497320] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2363.498903] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
[ 2363.503666] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:45:17 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, 0x0)

16:45:17 executing program 4:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000140), 0x400, 0x0)
ioctl$BLKSECTGET(r0, 0x1267, &(0x7f0000000180))
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_open_dev$vcsu(&(0x7f0000000000), 0x3, 0x8000)
connect$bt_sco(r1, &(0x7f0000000040), 0x8)
fsetxattr$security_evm(0xffffffffffffffff, &(0x7f0000000080), &(0x7f0000000100)=@sha1={0x1, "34e048d8ac52e433562663bb1980bdc8a8a0146b"}, 0x15, 0x0)

16:45:17 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000040))
getsockname(r1, &(0x7f0000000080)=@xdp, &(0x7f0000000100)=0x80)
r2 = fcntl$dupfd(r0, 0x0, r0)
shutdown(r2, 0x0)

[ 2363.536493] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
[ 2363.563735] loop7: detected capacity change from 0 to 135266304
[ 2363.569010] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:45:18 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, 0x0)

16:45:18 executing program 4:
prctl$PR_GET_PDEATHSIG(0x2, &(0x7f0000000040))
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r2, 0x0, r2)
dup2(r1, r2)
r3 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

[ 2364.259967] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
16:45:33 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, 0x0)

16:45:33 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000040))
getsockname(r1, &(0x7f0000000080)=@xdp, &(0x7f0000000100)=0x80)
r2 = fcntl$dupfd(r0, 0x0, r0)
shutdown(r2, 0x0)

16:45:33 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x7)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r4 = dup2(r0, r1)
r5 = accept4$packet(r1, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14, 0x80800)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r7 = fcntl$dupfd(r6, 0x0, r6)
connect$bt_sco(r7, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r1, 0xc018937d, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r8=>r0, {0x5e}}, './file0\x00'})
poll(&(0x7f0000000100)=[{r3, 0x533663e196dfc399}, {r4, 0x6480}, {r5, 0x2}, {r0, 0xc120}, {r7, 0x82a0}, {r8, 0x2300}], 0x6, 0xffffffff)

16:45:33 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat(r2, &(0x7f0000000040)='./file1\x00', 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:45:33 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000000100000018003f31", @ANYRES32=r1, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file1\x00'])
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r3 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000240), 0x35480, 0x0)
fcntl$dupfd(r1, 0x406, r3)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x3d, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x10a00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x0, 0x80000000, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
fstat(r0, &(0x7f0000000140))
fsetxattr$security_selinux(r2, &(0x7f00000001c0), &(0x7f0000000200)='system_u:object_r:devtty_t:s0\x00', 0x1e, 0x2)
ioctl$EXT4_IOC_GROUP_EXTEND(r2, 0x40086607, &(0x7f00000004c0))

16:45:33 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x406, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:45:33 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 74)

16:45:33 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x2e000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

[ 2379.230374] loop7: detected capacity change from 0 to 135266304
[ 2379.240153] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2379.253812] FAULT_INJECTION: forcing a failure.
[ 2379.253812] name failslab, interval 1, probability 0, space 0, times 0
[ 2379.256244] CPU: 0 PID: 12358 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2379.257739] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2379.259518] Call Trace:
[ 2379.260093]  dump_stack+0x107/0x167
[ 2379.260886]  should_fail.cold+0x5/0xa
[ 2379.261716]  ? create_object.isra.0+0x3a/0xa20
[ 2379.262703]  should_failslab+0x5/0x20
[ 2379.263528]  kmem_cache_alloc+0x5b/0x310
[ 2379.264423]  create_object.isra.0+0x3a/0xa20
[ 2379.265363]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2379.266461]  kmem_cache_alloc+0x159/0x310
[ 2379.267362]  ? mempool_free_pages+0x20/0x20
[ 2379.268303]  mempool_alloc+0x148/0x360
[ 2379.269135]  ? mempool_resize+0x7d0/0x7d0
[ 2379.270028]  ? lock_downgrade+0x6d0/0x6d0
[ 2379.270930]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2379.272004]  bio_alloc_bioset+0x36e/0x600
[ 2379.272902]  ? bvec_alloc+0x2f0/0x2f0
[ 2379.273731]  ? iov_iter_npages+0x1fd/0xa70
[ 2379.274647]  iomap_dio_bio_actor+0x518/0xef0
[ 2379.275603]  iomap_dio_actor+0x36f/0x560
[ 2379.276485]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2379.277488]  ? do_syscall_64+0x33/0x40
[ 2379.278330]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2379.279459]  iomap_apply+0x289/0x810
[ 2379.280274]  ? iomap_dio_rw+0x90/0x90
[ 2379.281099]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2379.282348]  ? mark_held_locks+0x9e/0xe0
[ 2379.283236]  ? filemap_check_errors+0xa5/0x150
[ 2379.284244]  __iomap_dio_rw+0x6cd/0x1110
[ 2379.285117]  ? iomap_dio_rw+0x90/0x90
[ 2379.285954]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2379.286943]  ? ext4_orphan_add+0x253/0x9e0
[ 2379.287852]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2379.288916]  ? ext4_empty_dir+0xae0/0xae0
[ 2379.289803]  ? jbd2__journal_start+0xf3/0x7e0
[ 2379.290776]  iomap_dio_rw+0x31/0x90
[ 2379.291564]  ext4_file_write_iter+0xe0e/0x1530
[ 2379.292567]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2379.293549]  ? kasan_save_stack+0x32/0x40
[ 2379.294438]  ? kasan_save_stack+0x1b/0x40
[ 2379.295330]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2379.296438]  ? iter_file_splice_write+0x165/0xc90
[ 2379.297476]  ? direct_splice_actor+0x10f/0x170
[ 2379.298457]  ? splice_direct_to_actor+0x387/0x980
[ 2379.299489]  ? do_splice_direct+0x1c4/0x290
[ 2379.300429]  ? do_sendfile+0x553/0x11e0
[ 2379.301275]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2379.302266]  ? do_syscall_64+0x33/0x40
[ 2379.303101]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2379.304252]  do_iter_readv_writev+0x476/0x750
[ 2379.305211]  ? _cond_resched+0x10/0x30
[ 2379.306049]  ? new_sync_write+0x660/0x660
[ 2379.306942]  ? avc_policy_seqno+0x9/0x70
[ 2379.307816]  ? selinux_file_permission+0x92/0x520
[ 2379.308863]  ? security_file_permission+0xb1/0xe0
[ 2379.309909]  do_iter_write+0x191/0x700
[ 2379.310748]  ? trace_hardirqs_on+0x5b/0x180
[ 2379.311682]  vfs_iter_write+0x70/0xa0
[ 2379.312516]  iter_file_splice_write+0x726/0xc90
[ 2379.313528]  ? generic_splice_sendpage+0x140/0x140
[ 2379.314590]  ? security_file_permission+0xb1/0xe0
[ 2379.314814] 9pnet: Could not find request transport: xen
[ 2379.315631]  ? generic_splice_sendpage+0x140/0x140
[ 2379.315653]  direct_splice_actor+0x10f/0x170
[ 2379.315682]  splice_direct_to_actor+0x387/0x980
[ 2379.319846]  ? pipe_to_sendpage+0x380/0x380
[ 2379.320782]  ? do_splice_to+0x160/0x160
[ 2379.321635]  ? security_file_permission+0xb1/0xe0
[ 2379.322681]  do_splice_direct+0x1c4/0x290
[ 2379.323580]  ? splice_direct_to_actor+0x980/0x980
[ 2379.324618]  ? avc_policy_seqno+0x9/0x70
[ 2379.325497]  ? security_file_permission+0xb1/0xe0
[ 2379.326545]  do_sendfile+0x553/0x11e0
[ 2379.327377]  ? do_pwritev+0x270/0x270
[ 2379.328204]  ? wait_for_completion_io+0x270/0x270
[ 2379.329245]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2379.330247]  ? vfs_write+0x354/0xb10
[ 2379.331054]  __x64_sys_sendfile64+0x1d1/0x210
[ 2379.332027]  ? __ia32_sys_sendfile+0x220/0x220
[ 2379.333015]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2379.334143]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2379.335262]  do_syscall_64+0x33/0x40
[ 2379.336072]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2379.337162] RIP: 0033:0x7fa861eb0b19
[ 2379.337961] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2379.341923] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2379.343560] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2379.345093] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2379.346635] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2379.348199] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2379.349766] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
16:45:33 executing program 4:
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
connect$bt_sco(r0, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:45:33 executing program 6:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r0 = accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000040))
getsockname(r0, &(0x7f0000000080)=@xdp, &(0x7f0000000100)=0x80)
connect$bt_sco(0xffffffffffffffff, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(0xffffffffffffffff, 0x0)

16:45:33 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x406, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x7)

16:45:33 executing program 5:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x181400, 0x8d}, 0x18)
r2 = fcntl$dupfd(r1, 0x406, r0)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

[ 2379.493772] loop7: detected capacity change from 0 to 135266304
[ 2379.506982] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:45:34 executing program 3:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:45:34 executing program 6:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r0 = accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000040))
getsockname(r0, &(0x7f0000000080)=@xdp, &(0x7f0000000100)=0x80)
connect$bt_sco(0xffffffffffffffff, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(0xffffffffffffffff, 0x0)

16:45:34 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r2=>r0, {0x2}}, './file0\x00'})
connect$bt_sco(r2, &(0x7f0000000040)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}, 0x8)

16:45:34 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x3f000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:45:34 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)
syz_open_dev$vcsa(&(0x7f0000000080), 0x0, 0x200040)

16:45:34 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r1, 0x0, r1)
bind(r1, &(0x7f0000000040)=@ll={0x11, 0x3, 0x0, 0x1, 0x8, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2a}}, 0x80)
fcntl$dupfd(r0, 0x0, r0)

16:45:34 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 75)

[ 2379.806046] loop3: detected capacity change from 0 to 16896
[ 2379.828100] loop7: detected capacity change from 0 to 135266304
[ 2379.840732] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2379.860767] FAULT_INJECTION: forcing a failure.
[ 2379.860767] name failslab, interval 1, probability 0, space 0, times 0
[ 2379.863238] CPU: 0 PID: 12393 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2379.864705] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2379.866428] Call Trace:
[ 2379.866985]  dump_stack+0x107/0x167
[ 2379.867765]  should_fail.cold+0x5/0xa
[ 2379.868583]  ? mempool_alloc+0x148/0x360
[ 2379.869433]  ? mempool_free_pages+0x20/0x20
[ 2379.870350]  should_failslab+0x5/0x20
[ 2379.871152]  kmem_cache_alloc+0x5b/0x310
[ 2379.872014]  ? mempool_free_pages+0x20/0x20
[ 2379.872919]  mempool_alloc+0x148/0x360
[ 2379.873757]  ? mempool_resize+0x7d0/0x7d0
[ 2379.874620]  ? blk_queue_enter+0xc30/0xc30
[ 2379.875522]  bio_alloc_bioset+0x36e/0x600
[ 2379.876401]  ? bvec_alloc+0x2f0/0x2f0
[ 2379.877201]  ? bio_alloc_bioset+0x2a1/0x600
[ 2379.878104]  ? bio_add_pc_page+0x100/0x100
[ 2379.879010]  iomap_dio_zero+0xc8/0x530
[ 2379.879829]  ? iomap_dio_submit_bio+0x295/0x360
[ 2379.880815]  iomap_dio_bio_actor+0xa21/0xef0
[ 2379.881767]  iomap_dio_actor+0x36f/0x560
[ 2379.882623]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2379.883591]  ? do_syscall_64+0x33/0x40
[ 2379.884424]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2379.885535]  iomap_apply+0x289/0x810
[ 2379.886318]  ? iomap_dio_rw+0x90/0x90
[ 2379.887116]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2379.888340]  ? mark_held_locks+0x9e/0xe0
[ 2379.889199]  ? filemap_check_errors+0xa5/0x150
[ 2379.890165]  __iomap_dio_rw+0x6cd/0x1110
[ 2379.891011]  ? iomap_dio_rw+0x90/0x90
[ 2379.891829]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2379.892792]  ? ext4_orphan_add+0x253/0x9e0
[ 2379.893681]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2379.894710]  ? ext4_empty_dir+0xae0/0xae0
[ 2379.895571]  ? jbd2__journal_start+0xf3/0x7e0
[ 2379.896538]  iomap_dio_rw+0x31/0x90
[ 2379.897312]  ext4_file_write_iter+0xe0e/0x1530
[ 2379.898289]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2379.899239]  ? kasan_save_stack+0x32/0x40
[ 2379.900105]  ? kasan_save_stack+0x1b/0x40
[ 2379.900971]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2379.902031]  ? iter_file_splice_write+0x165/0xc90
[ 2379.903048]  ? direct_splice_actor+0x10f/0x170
[ 2379.904013]  ? splice_direct_to_actor+0x387/0x980
[ 2379.905026]  ? do_splice_direct+0x1c4/0x290
[ 2379.905937]  ? do_sendfile+0x553/0x11e0
[ 2379.906774]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2379.907745]  ? do_syscall_64+0x33/0x40
[ 2379.908573]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2379.909713]  do_iter_readv_writev+0x476/0x750
[ 2379.910650]  ? _cond_resched+0x10/0x30
[ 2379.911465]  ? new_sync_write+0x660/0x660
[ 2379.912343]  ? avc_policy_seqno+0x9/0x70
[ 2379.913194]  ? selinux_file_permission+0x92/0x520
[ 2379.914209]  ? security_file_permission+0xb1/0xe0
[ 2379.915229]  do_iter_write+0x191/0x700
[ 2379.916067]  ? trace_hardirqs_on+0x5b/0x180
[ 2379.916982]  vfs_iter_write+0x70/0xa0
[ 2379.917791]  iter_file_splice_write+0x726/0xc90
[ 2379.918782]  ? generic_splice_sendpage+0x140/0x140
[ 2379.919828]  ? security_file_permission+0xb1/0xe0
[ 2379.920850]  ? generic_splice_sendpage+0x140/0x140
[ 2379.921879]  direct_splice_actor+0x10f/0x170
[ 2379.922805]  splice_direct_to_actor+0x387/0x980
[ 2379.923785]  ? pipe_to_sendpage+0x380/0x380
[ 2379.924721]  ? do_splice_to+0x160/0x160
[ 2379.925551]  ? security_file_permission+0xb1/0xe0
[ 2379.926574]  do_splice_direct+0x1c4/0x290
[ 2379.927443]  ? splice_direct_to_actor+0x980/0x980
[ 2379.928460]  ? avc_policy_seqno+0x9/0x70
[ 2379.929323]  ? security_file_permission+0xb1/0xe0
[ 2379.930344]  do_sendfile+0x553/0x11e0
[ 2379.931158]  ? do_pwritev+0x270/0x270
[ 2379.931968]  ? wait_for_completion_io+0x270/0x270
[ 2379.933003]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2379.933982]  ? vfs_write+0x354/0xb10
[ 2379.934781]  __x64_sys_sendfile64+0x1d1/0x210
[ 2379.935716]  ? __ia32_sys_sendfile+0x220/0x220
[ 2379.936698]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2379.937808]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2379.938893]  do_syscall_64+0x33/0x40
[ 2379.939682]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2379.940760] RIP: 0033:0x7fa861eb0b19
[ 2379.941546] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2379.945429] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2379.947057] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2379.948569] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2379.950092] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2379.951602] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2379.953128] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
[ 2379.966175] loop7: detected capacity change from 0 to 135266304
[ 2379.971252] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:45:49 executing program 6:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r0 = accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000040))
getsockname(r0, &(0x7f0000000080)=@xdp, &(0x7f0000000100)=0x80)
connect$bt_sco(0xffffffffffffffff, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(0xffffffffffffffff, 0x0)

16:45:49 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 76)

16:45:49 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat(r2, &(0x7f0000000040)='./file1\x00', 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

[ 2395.457378] loop7: detected capacity change from 0 to 135266304
[ 2395.464014] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:45:49 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)
syz_open_dev$vcsa(&(0x7f0000000080), 0x0, 0x200040)

16:45:49 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
bind(r1, &(0x7f0000006ec0)=@ethernet={0x306, @multicast}, 0x80)
r2 = signalfd(0xffffffffffffffff, &(0x7f0000000040)={[0x9]}, 0x8)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = fcntl$dupfd(r3, 0x0, r3)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)={0x20, r6, 0xd11, 0x0, 0x0, {{}, {@void, @val={0xc}}}}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_DEL_KEY(r4, &(0x7f0000006e80)={&(0x7f00000052c0)={0x10, 0x0, 0x0, 0x802008}, 0xc, &(0x7f0000006e40)={&(0x7f0000006d80)={0x88, r6, 0x300, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_KEY={0x44, 0x50, 0x0, 0x1, [@NL80211_KEY_MODE={0x5, 0x9, 0x1}, @NL80211_KEY_DEFAULT_MGMT={0x4}, @NL80211_KEY_SEQ={0xc, 0x4, "bc76b1d678568a17"}, @NL80211_KEY_DATA_WEP40={0x9, 0x1, "83df567e06"}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac01}, @NL80211_KEY_MODE={0x5, 0x9, 0x2}, @NL80211_KEY_DATA_WEP40={0x9, 0x1, "ab79595122"}]}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x3}, @NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "2c093b162050b7a19f5f04a017"}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x88}, 0x1, 0x0, 0x0, 0x80}, 0x20044080)
recvmmsg$unix(r2, &(0x7f0000006b80)=[{{&(0x7f0000000080)=@abs, 0x6e, &(0x7f0000000240)=[{&(0x7f0000000100)=""/167, 0xa7}, {&(0x7f00000001c0)=""/50, 0x32}, {&(0x7f0000000200)=""/7, 0x7}], 0x3, &(0x7f0000000280)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x78}}, {{&(0x7f0000000300), 0x6e, &(0x7f0000001640)=[{&(0x7f0000000380)=""/192, 0xc0}, {&(0x7f0000000440)=""/89, 0x59}, {&(0x7f00000004c0)=""/10, 0xa}, {&(0x7f0000000500)=""/189, 0xbd}, {&(0x7f00000005c0)=""/4096, 0x1000}, {&(0x7f00000015c0)=""/55, 0x37}, {&(0x7f0000001600)=""/46, 0x2e}], 0x7, &(0x7f00000016c0)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x60}}, {{&(0x7f0000001740)=@abs, 0x6e, &(0x7f0000001a40)=[{&(0x7f00000017c0)=""/211, 0xd3}, {&(0x7f00000018c0)=""/1, 0x1}, {&(0x7f0000001900)=""/66, 0x42}, {&(0x7f0000001980)=""/178, 0xb2}], 0x4, &(0x7f0000001a80)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x60}}, {{&(0x7f0000001b00)=@abs, 0x6e, &(0x7f0000003f80)=[{&(0x7f0000001b80)=""/119, 0x77}, {&(0x7f0000001c00)=""/32, 0x20}, {&(0x7f0000001c40)=""/4096, 0x1000}, {&(0x7f0000002c40)=""/130, 0x82}, {&(0x7f0000002d00)=""/162, 0xa2}, {&(0x7f0000002dc0)=""/47, 0x2f}, {&(0x7f0000002e00)=""/232, 0xe8}, {&(0x7f0000002f00)=""/4096, 0x1000}, {&(0x7f0000003f00)=""/78, 0x4e}], 0x9, &(0x7f0000004040)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r7=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xd0}}, {{0x0, 0x0, &(0x7f0000005380)=[{&(0x7f0000004140)=""/250, 0xfa}, {&(0x7f0000004240)=""/96, 0x60}, {&(0x7f00000042c0)=""/4096, 0x1000}, {&(0x7f00000052c0)}, {&(0x7f0000005300)=""/74, 0x4a}], 0x5}}, {{&(0x7f0000005400)=@abs, 0x6e, &(0x7f0000005600)=[{&(0x7f0000005480)=""/153, 0x99}, {&(0x7f0000005540)=""/91, 0x5b}, {&(0x7f00000055c0)=""/52, 0x34}], 0x3}}, {{0x0, 0x0, &(0x7f0000006a80)=[{&(0x7f0000005640)=""/215, 0xd7}, {&(0x7f0000005740)=""/130, 0x82}, {&(0x7f0000005800)=""/4096, 0x1000}, {&(0x7f0000006800)=""/77, 0x4d}, {&(0x7f0000006880)=""/94, 0x5e}, {&(0x7f0000006900)=""/200, 0xc8}, {&(0x7f0000006a00)=""/69, 0x45}], 0x7, &(0x7f0000006b00)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x58}}], 0x7, 0x61, &(0x7f0000006d40)={0x77359400})
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r9 = fcntl$dupfd(r8, 0x0, r8)
connect$bt_sco(r9, &(0x7f0000000000)={0x1f, @fixed}, 0x8)
sendmsg$nl_generic(r7, &(0x7f0000007100)={&(0x7f0000006f40)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000070c0)={&(0x7f0000006f80)={0x10c, 0x13, 0x400, 0x70bd2d, 0x25dfdbff, {0x6}, [@generic="f5338c726ce36d81c71a94da7c930d278e684ffe67cb4c75e1970405c1de0b21deaacc7d8162c17c8f9c7f94bdec6afe2d7f30151f7b673c19bcb20814dc08eb8643641e09319bfa5b80cd42deb4147324ed4e358d44a283db9738b9aa07f5d9b5c7fed0b1edca9d2a8e833b6f10dea8c1c0ff0fb7916b8017d748dbadfde0d5b409f5e350dbcdecfe485c8098cbb65dd4a73f3665e72e79e50901637dc2d55fa47e635ebf601f29f80e15ae359d2b91692b181d0cbeb3055ad155339454ead19d178dacb091cac5defb80233365b20d3c89c4678610a597a7c5841148ee1434dfb40551a1c2a90bdcfa6853e2c9b5e69e4da17a10"]}, 0x10c}, 0x1, 0x0, 0x0, 0x2000000}, 0x4000000)

16:45:49 executing program 1:
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
connect$bt_sco(r0, &(0x7f0000000000)={0x1f, @fixed}, 0x7)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
write$bt_hci(r2, &(0x7f0000000040)={0x1, @remote_oob_data_neg_reply={{0x433, 0x6}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}}}, 0xa)

16:45:49 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:45:49 executing program 3:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

[ 2395.479305] loop7: detected capacity change from 0 to 135266304
[ 2395.489777] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2395.491898] FAULT_INJECTION: forcing a failure.
[ 2395.491898] name failslab, interval 1, probability 0, space 0, times 0
[ 2395.494357] CPU: 0 PID: 12407 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2395.495803] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2395.497534] Call Trace:
[ 2395.498091]  dump_stack+0x107/0x167
[ 2395.498854]  should_fail.cold+0x5/0xa
[ 2395.499649]  ? mempool_alloc+0x148/0x360
[ 2395.500502]  ? mempool_free_pages+0x20/0x20
[ 2395.501409]  should_failslab+0x5/0x20
[ 2395.502204]  kmem_cache_alloc+0x5b/0x310
[ 2395.503058]  ? mempool_free_pages+0x20/0x20
[ 2395.503971]  mempool_alloc+0x148/0x360
[ 2395.504809]  ? mempool_resize+0x7d0/0x7d0
[ 2395.505671]  ? blk_queue_enter+0xc30/0xc30
[ 2395.506580]  bio_alloc_bioset+0x36e/0x600
[ 2395.507459]  ? bvec_alloc+0x2f0/0x2f0
[ 2395.508262]  ? bio_alloc_bioset+0x2a1/0x600
[ 2395.509172]  ? bio_add_pc_page+0x100/0x100
[ 2395.510068]  iomap_dio_zero+0xc8/0x530
[ 2395.510883]  ? iomap_dio_submit_bio+0x295/0x360
[ 2395.511859]  iomap_dio_bio_actor+0xa21/0xef0
[ 2395.512802]  iomap_dio_actor+0x36f/0x560
[ 2395.513649]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2395.514623]  ? do_syscall_64+0x33/0x40
[ 2395.515445]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2395.516582]  iomap_apply+0x289/0x810
[ 2395.517369]  ? iomap_dio_rw+0x90/0x90
[ 2395.518172]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2395.519391]  ? mark_held_locks+0x9e/0xe0
[ 2395.520262]  ? filemap_check_errors+0xa5/0x150
[ 2395.521235]  __iomap_dio_rw+0x6cd/0x1110
[ 2395.522089]  ? iomap_dio_rw+0x90/0x90
[ 2395.522905]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2395.523875]  ? ext4_orphan_add+0x253/0x9e0
[ 2395.524770]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2395.525810]  ? ext4_empty_dir+0xae0/0xae0
[ 2395.526689]  ? jbd2__journal_start+0xf3/0x7e0
[ 2395.527646]  iomap_dio_rw+0x31/0x90
[ 2395.528430]  ext4_file_write_iter+0xe0e/0x1530
[ 2395.529410]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2395.530365]  ? kasan_save_stack+0x32/0x40
[ 2395.531233]  ? kasan_save_stack+0x1b/0x40
[ 2395.532099]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2395.533176]  ? iter_file_splice_write+0x165/0xc90
[ 2395.534189]  ? direct_splice_actor+0x10f/0x170
[ 2395.535153]  ? splice_direct_to_actor+0x387/0x980
[ 2395.536170]  ? do_splice_direct+0x1c4/0x290
[ 2395.537081]  ? do_sendfile+0x553/0x11e0
[ 2395.537922]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2395.538894]  ? do_syscall_64+0x33/0x40
[ 2395.539719]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2395.540873]  do_iter_readv_writev+0x476/0x750
[ 2395.541817]  ? _cond_resched+0x10/0x30
[ 2395.542636]  ? new_sync_write+0x660/0x660
[ 2395.543505]  ? avc_policy_seqno+0x9/0x70
[ 2395.544367]  ? selinux_file_permission+0x92/0x520
[ 2395.545397]  ? security_file_permission+0xb1/0xe0
[ 2395.546426]  do_iter_write+0x191/0x700
[ 2395.547245]  ? trace_hardirqs_on+0x5b/0x180
[ 2395.548167]  vfs_iter_write+0x70/0xa0
[ 2395.548969]  iter_file_splice_write+0x726/0xc90
[ 2395.549969]  ? generic_splice_sendpage+0x140/0x140
[ 2395.551013]  ? security_file_permission+0xb1/0xe0
[ 2395.552027]  ? generic_splice_sendpage+0x140/0x140
[ 2395.553064]  direct_splice_actor+0x10f/0x170
[ 2395.553990]  splice_direct_to_actor+0x387/0x980
[ 2395.554984]  ? pipe_to_sendpage+0x380/0x380
[ 2395.555903]  ? do_splice_to+0x160/0x160
[ 2395.556742]  ? security_file_permission+0xb1/0xe0
[ 2395.557765]  do_splice_direct+0x1c4/0x290
[ 2395.558635]  ? splice_direct_to_actor+0x980/0x980
[ 2395.559650]  ? avc_policy_seqno+0x9/0x70
[ 2395.560514]  ? security_file_permission+0xb1/0xe0
[ 2395.561535]  do_sendfile+0x553/0x11e0
[ 2395.562347]  ? do_pwritev+0x270/0x270
[ 2395.563145]  ? wait_for_completion_io+0x270/0x270
[ 2395.564164]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2395.565137]  ? vfs_write+0x354/0xb10
[ 2395.565928]  __x64_sys_sendfile64+0x1d1/0x210
[ 2395.566866]  ? __ia32_sys_sendfile+0x220/0x220
[ 2395.567826]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2395.568936]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2395.570027]  do_syscall_64+0x33/0x40
[ 2395.570811]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2395.571884] RIP: 0033:0x7fa861eb0b19
[ 2395.572681] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2395.576529] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2395.578147] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2395.579644] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2395.581144] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2395.582636] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2395.584144] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
[ 2395.598297] 9pnet: Could not find request transport: xen
16:45:49 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x53ef0000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

[ 2395.605900] loop7: detected capacity change from 0 to 135266304
16:45:50 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000040))
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

[ 2395.632795] loop3: detected capacity change from 0 to 16896
16:45:50 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f00000000c0)={0x1f, @fixed}, 0x8)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/ehci_hcd', 0x800, 0x102)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
fcntl$F_GET_FILE_RW_HINT(r3, 0x40d, &(0x7f0000000040))

16:45:50 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x7)
ioctl$EXT4_IOC_GETSTATE(r0, 0x40046629, &(0x7f0000000040))

[ 2395.668365] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:45:50 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x7)
r2 = dup(r0)
ioctl$PTP_PIN_GETFUNC2(r2, 0xc0603d0f, &(0x7f0000000040)={'\x00', 0x7, 0x0, 0x585})

16:45:50 executing program 3:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

[ 2395.870927] loop3: detected capacity change from 0 to 16896
16:46:04 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)
syz_open_dev$vcsa(&(0x7f0000000080), 0x0, 0x200040)

16:46:04 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)
ioctl$FITHAW(r0, 0xc0045878)

16:46:04 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat(r2, &(0x7f0000000040)='./file1\x00', 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:46:04 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 77)

16:46:04 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x8cffffff, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:46:04 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

16:46:04 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r0, 0x406, r0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
connect$bt_sco(r2, &(0x7f0000000040)={0x1f, @none}, 0x4)

16:46:04 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000000c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, @out_args}, './file1\x00'})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(r4, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r7, 0x0, 0x0}, 0x0)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FSYNC={0x3, 0x1, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r8}}, 0x8)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000700)=@IORING_OP_RECVMSG={0xa, 0x1, 0x0, r7, 0x0, &(0x7f00000006c0)={&(0x7f0000000440)=@ax25={{0x3, @netrom}, [@bcast, @bcast, @bcast, @default, @netrom, @bcast, @bcast]}, 0x80, &(0x7f0000000640)=[{&(0x7f00000003c0)=""/12, 0xc}, {&(0x7f00000004c0)=""/90, 0x5a}, {&(0x7f0000000540)=""/205, 0xcd}], 0x3, &(0x7f0000000680)=""/23, 0x17}, 0x0, 0x40, 0x0, {0x2, r8}}, 0x7)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_POLL_REMOVE={0x7, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, {0x0, r8}}, 0x6)
syz_io_uring_submit(0x0, r3, &(0x7f0000000000)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x1, {0x3, r8}}, 0x40)
ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, &(0x7f00000004c0))

[ 2409.737030] loop7: detected capacity change from 0 to 135266304
[ 2409.750118] FAULT_INJECTION: forcing a failure.
[ 2409.750118] name failslab, interval 1, probability 0, space 0, times 0
[ 2409.753072] CPU: 1 PID: 12468 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2409.754636] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2409.756450] Call Trace:
[ 2409.757054]  dump_stack+0x107/0x167
[ 2409.757979]  should_fail.cold+0x5/0xa
[ 2409.758961]  ? create_object.isra.0+0x3a/0xa20
[ 2409.760070]  should_failslab+0x5/0x20
[ 2409.760962]  kmem_cache_alloc+0x5b/0x310
[ 2409.761852]  create_object.isra.0+0x3a/0xa20
[ 2409.762784]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2409.763895]  kmem_cache_alloc+0x159/0x310
[ 2409.764837]  ? mempool_free_pages+0x20/0x20
[ 2409.765816]  mempool_alloc+0x148/0x360
[ 2409.766698]  ? mempool_resize+0x7d0/0x7d0
[ 2409.767601]  ? blk_queue_enter+0xc30/0xc30
[ 2409.768585]  bio_alloc_bioset+0x36e/0x600
[ 2409.769503]  ? bvec_alloc+0x2f0/0x2f0
[ 2409.770344]  ? bio_alloc_bioset+0x2a1/0x600
[ 2409.771288]  ? bio_add_pc_page+0x100/0x100
[ 2409.772235]  iomap_dio_zero+0xc8/0x530
[ 2409.773111]  ? iomap_dio_submit_bio+0x295/0x360
[ 2409.774144]  iomap_dio_bio_actor+0xa21/0xef0
[ 2409.775144]  iomap_dio_actor+0x36f/0x560
[ 2409.776072]  ? __x64_sys_sendfile64+0x1d1/0x210
16:46:04 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(r1, 0x8983, &(0x7f00000000c0))
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x4, &(0x7f0000000040)=[{0x0, 0x7, 0x20, 0x4}, {0x5, 0x0, 0x11, 0x2}, {0x9, 0x7, 0x3, 0x1}, {0xff, 0x4, 0x80, 0x401}]}, 0x10)

[ 2409.777386]  ? do_syscall_64+0x33/0x40
[ 2409.778482]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2409.779628]  iomap_apply+0x289/0x810
[ 2409.780428]  ? iomap_dio_rw+0x90/0x90
[ 2409.781229]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2409.782419]  ? mark_held_locks+0x9e/0xe0
[ 2409.783110] 9pnet: Could not find request transport: xen
[ 2409.783314]  ? filemap_check_errors+0xa5/0x150
[ 2409.785460]  __iomap_dio_rw+0x6cd/0x1110
[ 2409.786309]  ? iomap_dio_rw+0x90/0x90
[ 2409.787122]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2409.788083]  ? ext4_orphan_add+0x253/0x9e0
[ 2409.788988]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2409.790014]  ? ext4_empty_dir+0xae0/0xae0
[ 2409.790896]  ? jbd2__journal_start+0xf3/0x7e0
[ 2409.791864]  iomap_dio_rw+0x31/0x90
[ 2409.792639]  ext4_file_write_iter+0xe0e/0x1530
[ 2409.793609]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2409.794628]  ? kasan_save_stack+0x32/0x40
[ 2409.795502]  ? kasan_save_stack+0x1b/0x40
[ 2409.796388]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2409.797481]  ? iter_file_splice_write+0x165/0xc90
[ 2409.798523]  ? direct_splice_actor+0x10f/0x170
[ 2409.799493]  ? splice_direct_to_actor+0x387/0x980
[ 2409.800521]  ? do_splice_direct+0x1c4/0x290
[ 2409.801438]  ? do_sendfile+0x553/0x11e0
[ 2409.802287]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2409.803294]  ? do_syscall_64+0x33/0x40
[ 2409.804113]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2409.805276]  do_iter_readv_writev+0x476/0x750
[ 2409.806222]  ? _cond_resched+0x10/0x30
[ 2409.807043]  ? new_sync_write+0x660/0x660
[ 2409.807909]  ? avc_policy_seqno+0x9/0x70
[ 2409.808769]  ? selinux_file_permission+0x92/0x520
[ 2409.809776]  ? security_file_permission+0xb1/0xe0
[ 2409.810800]  do_iter_write+0x191/0x700
[ 2409.811621]  ? trace_hardirqs_on+0x5b/0x180
[ 2409.812544]  vfs_iter_write+0x70/0xa0
[ 2409.813345]  iter_file_splice_write+0x726/0xc90
[ 2409.814337]  ? generic_splice_sendpage+0x140/0x140
[ 2409.815385]  ? security_file_permission+0xb1/0xe0
[ 2409.816413]  ? generic_splice_sendpage+0x140/0x140
[ 2409.817444]  direct_splice_actor+0x10f/0x170
[ 2409.818368]  splice_direct_to_actor+0x387/0x980
[ 2409.819366]  ? pipe_to_sendpage+0x380/0x380
[ 2409.820277]  ? do_splice_to+0x160/0x160
[ 2409.821118]  ? security_file_permission+0xb1/0xe0
[ 2409.822132]  do_splice_direct+0x1c4/0x290
[ 2409.822976]  ? splice_direct_to_actor+0x980/0x980
[ 2409.823942]  ? avc_policy_seqno+0x9/0x70
[ 2409.824792]  ? security_file_permission+0xb1/0xe0
[ 2409.825826]  do_sendfile+0x553/0x11e0
[ 2409.826632]  ? do_pwritev+0x270/0x270
[ 2409.827408]  ? wait_for_completion_io+0x270/0x270
[ 2409.828447]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2409.829407]  ? vfs_write+0x354/0xb10
[ 2409.830164]  __x64_sys_sendfile64+0x1d1/0x210
[ 2409.831113]  ? __ia32_sys_sendfile+0x220/0x220
[ 2409.832069]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2409.833187]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2409.834268]  do_syscall_64+0x33/0x40
[ 2409.835052]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2409.836114] RIP: 0033:0x7fa861eb0b19
[ 2409.836908] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2409.840722] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2409.842314] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2409.843764] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2409.845254] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2409.846778] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2409.848226] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
16:46:04 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = fcntl$dupfd(r3, 0x0, r3)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_READY(r4, 0xc0189376, &(0x7f0000000540)=ANY=[@ANYBLOB="01000000000000000000c075977ce679309c3e4500059d985cb76b25ce09b0aa9ce070ff8fa21292b29001384a9098609637313c077502e2964faccc11d09a04d1519e591dae2e9ccb12d96a2cdf4717582e0b000094fe34d672167e47e4a31214272fbdd09ca4842e68c7e36f2f719f50ab81755cf2cffb87c287302152fdb6831bf8252932062e99a5df5d44f545af8c48df8545da98", @ANYRES32=r1, @ANYBLOB="050000000000c98c67d78762902c3000"])
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$F2FS_IOC_RESIZE_FS(0xffffffffffffffff, 0x4008f510, &(0x7f0000000400)=0x9ee)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000440)={'batadv_slave_1\x00'})
getsockopt$bt_hci(r2, 0x0, 0x3, &(0x7f0000000180)=""/252, &(0x7f0000000140)=0xfc)
syz_io_uring_setup(0x538d, &(0x7f00000004c0)={0x0, 0x5d55, 0x20, 0xffffffff, 0x287, 0x0, r2}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=<r5=>0x0, &(0x7f0000000100))
r6 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
syz_io_uring_submit(r9, r8, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r5, r8, &(0x7f0000000280)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, {0x2}}, 0xe8)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r0, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x2}}, 0x8)

[ 2409.855951] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:46:04 executing program 6:
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
connect$bt_sco(r0, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r0, 0x0)

[ 2409.928267] loop7: detected capacity change from 0 to 135266304
[ 2409.963480] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:46:04 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r0, &(0x7f0000000100), 0x8)
fcntl$dupfd(r2, 0x0, r2)
ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f00000000c0)={'veth1_to_batadv\x00', &(0x7f0000000040)=@ethtool_gfeatures={0x3a, 0x5, [{}, {}, {}, {}, {}]}})

16:46:04 executing program 6:
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
connect$bt_sco(r0, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r0, 0x0)

16:46:04 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xc0ed0000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:46:04 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000), 0x8)
getsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0x7, &(0x7f00000000c0), &(0x7f00000002c0)=0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_SEND={0x1a, 0x5, 0x0, r1, 0x0, &(0x7f0000000240)="2f8effb06e6a17f0172e1622f25f35f772f8110b71c30cf408a28ec7f2e90bb83898d5f04a48b5d5b2ac5a3dd39ee22d200e7dc3b328da3f4a0ab0828b0b65610bfffb10f808a5d56d3aaeb7ce45fda364f46019cf2682e4c4143af02ca0e9ff014f89b2cf92dc3857482db1392969fc8ae3d29d", 0x74, 0x40004, 0x1}, 0x7ff)
syz_io_uring_setup(0x3b5e, &(0x7f0000000300)={0x0, 0x71e2, 0x4, 0x1, 0x25a}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000380), &(0x7f00000003c0)=<r2=>0x0)
clock_gettime(0x0, &(0x7f0000000400)={<r3=>0x0, <r4=>0x0})
syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r7, 0x0, 0x0}, 0x0)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FSYNC={0x3, 0x1, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r8}}, 0x8)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000700)=@IORING_OP_RECVMSG={0xa, 0x1, 0x0, r7, 0x0, &(0x7f00000006c0)={&(0x7f0000000440)=@ax25={{0x3, @netrom}, [@bcast, @bcast, @bcast, @default, @netrom, @bcast, @bcast]}, 0x80, &(0x7f0000000640)=[{&(0x7f00000003c0)=""/12, 0xc}, {&(0x7f00000004c0)=""/90, 0x5a}, {&(0x7f0000000540)=""/205, 0xcd}], 0x3, &(0x7f0000000680)=""/23, 0x17}, 0x0, 0x40, 0x0, {0x2, r8}}, 0x7)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_POLL_REMOVE={0x7, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, {0x0, r8}}, 0x6)
syz_io_uring_submit(0x0, r2, &(0x7f0000000480)=@IORING_OP_LINK_TIMEOUT={0xf, 0x5, 0x0, 0x0, 0x0, &(0x7f0000000440)={r3, r4+60000000}, 0x1, 0x1, 0x0, {0x0, r8}}, 0x80000001)
io_uring_enter(r1, 0x7b42, 0xfe79, 0x0, &(0x7f0000000040)={[0x9]}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000140)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r9=>r1, @ANYRES32, @ANYRES32, @ANYBLOB="2e2f66696c653000fde7e738f6f595b915863762e2770f57f31f7c60f070c5a12b096906ad42a1bb16512200bdde558b35bceb8c87506c37d7459dcc31e7100e9e3c9afac0bba6e29820986fc710197f68c02e2ad27691c3080c0000ffcdabb10bf1977139108ca72d23d40b309c5bd9ddf4505255f7f1c06a5b50208db66e3712ee421518c1fe21289920f5b05af7204b3f7ff06803e4a97ce9e586b2068366059a3f9e7a35d52940881ddd36000000"])
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r9, 0x40089413, &(0x7f0000000080)=0x108)

[ 2410.225063] loop7: detected capacity change from 0 to 135266304
[ 2410.243772] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2410.271242] loop7: detected capacity change from 0 to 135266304
[ 2410.284319] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2412.077584] Bluetooth: hci7: command 0x0405 tx timeout
16:46:19 executing program 6:
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
connect$bt_sco(r0, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r0, 0x0)

16:46:19 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x7)
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='uid_map\x00')
ioctl$AUTOFS_DEV_IOCTL_VERSION(r1, 0xc0189371, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r3=>r2}, './file0\x00'})
io_uring_enter(r3, 0x6478, 0x5901, 0x3, &(0x7f0000000080)={[0x9]}, 0x8)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = fcntl$dupfd(r4, 0x0, r4)
connect$bt_sco(r5, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
sendmsg$nl_generic(r5, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x14, 0x2e, 0x200, 0x70bd28, 0x25dfdbfb, {0x9}}, 0x14}, 0x1, 0x0, 0x0, 0x24000044}, 0x0)

16:46:19 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:46:19 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000040)={0x1f, @none}, 0x8)

16:46:19 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 78)

16:46:19 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xf6ffffff, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:46:19 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)
ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x80049367, &(0x7f0000000080))
r2 = fcntl$dupfd(r1, 0x0, r1)
ioctl$FS_IOC_READ_VERITY_METADATA(r0, 0xc0286687, &(0x7f00000001c0)={0x1, 0x9, 0xf4, &(0x7f00000000c0)=""/244})
syz_open_dev$vcsa(&(0x7f0000000040), 0x4cf06f98, 0x82340)
shutdown(r2, 0x1)

16:46:19 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

[ 2425.351045] loop7: detected capacity change from 0 to 135266304
[ 2425.370201] FAULT_INJECTION: forcing a failure.
[ 2425.370201] name failslab, interval 1, probability 0, space 0, times 0
[ 2425.372782] CPU: 1 PID: 12532 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2425.374258] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2425.375999] Call Trace:
[ 2425.376569]  dump_stack+0x107/0x167
[ 2425.377348]  should_fail.cold+0x5/0xa
[ 2425.378170]  ? create_object.isra.0+0x3a/0xa20
[ 2425.379160]  should_failslab+0x5/0x20
[ 2425.379963]  kmem_cache_alloc+0x5b/0x310
[ 2425.380839]  create_object.isra.0+0x3a/0xa20
[ 2425.381777]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2425.382862]  kmem_cache_alloc+0x159/0x310
[ 2425.383748]  jbd2__journal_start+0x190/0x7e0
[ 2425.384691]  __ext4_journal_start_sb+0x214/0x390
[ 2425.385719]  ext4_dio_write_end_io+0x22b/0x600
[ 2425.386696]  iomap_dio_complete+0x1a1/0x790
[ 2425.387616]  ? ext4_es_delayed_clu+0x3d0/0x3d0
[ 2425.388601]  iomap_dio_rw+0x63/0x90
[ 2425.389383]  ext4_file_write_iter+0xe0e/0x1530
[ 2425.390360]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2425.391030] 9pnet: Could not find request transport: xen
[ 2425.391331]  ? kasan_save_stack+0x32/0x40
[ 2425.391346]  ? kasan_save_stack+0x1b/0x40
[ 2425.391362]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2425.391389]  ? iter_file_splice_write+0x165/0xc90
[ 2425.396347]  ? direct_splice_actor+0x10f/0x170
[ 2425.397323]  ? splice_direct_to_actor+0x387/0x980
[ 2425.398344]  ? do_splice_direct+0x1c4/0x290
[ 2425.399257]  ? do_sendfile+0x553/0x11e0
[ 2425.400089]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2425.401082]  ? do_syscall_64+0x33/0x40
[ 2425.401920]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2425.403072]  do_iter_readv_writev+0x476/0x750
[ 2425.404036]  ? _cond_resched+0x10/0x30
[ 2425.404866]  ? new_sync_write+0x660/0x660
[ 2425.405752]  ? avc_policy_seqno+0x9/0x70
[ 2425.406619]  ? selinux_file_permission+0x92/0x520
[ 2425.407645]  ? security_file_permission+0xb1/0xe0
[ 2425.408680]  do_iter_write+0x191/0x700
[ 2425.409517]  ? trace_hardirqs_on+0x5b/0x180
[ 2425.410448]  vfs_iter_write+0x70/0xa0
[ 2425.411267]  iter_file_splice_write+0x726/0xc90
[ 2425.412268]  ? generic_splice_sendpage+0x140/0x140
[ 2425.413354]  ? security_file_permission+0xb1/0xe0
[ 2425.414384]  ? generic_splice_sendpage+0x140/0x140
[ 2425.415428]  direct_splice_actor+0x10f/0x170
[ 2425.416361]  splice_direct_to_actor+0x387/0x980
[ 2425.417381]  ? pipe_to_sendpage+0x380/0x380
[ 2425.418311]  ? do_splice_to+0x160/0x160
[ 2425.419155]  ? security_file_permission+0xb1/0xe0
[ 2425.420178]  do_splice_direct+0x1c4/0x290
[ 2425.421075]  ? splice_direct_to_actor+0x980/0x980
[ 2425.422099]  ? avc_policy_seqno+0x9/0x70
[ 2425.422972]  ? security_file_permission+0xb1/0xe0
[ 2425.424019]  do_sendfile+0x553/0x11e0
[ 2425.424842]  ? do_pwritev+0x270/0x270
[ 2425.425654]  ? wait_for_completion_io+0x270/0x270
[ 2425.426703]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2425.427693]  ? vfs_write+0x354/0xb10
[ 2425.428498]  __x64_sys_sendfile64+0x1d1/0x210
[ 2425.429459]  ? __ia32_sys_sendfile+0x220/0x220
[ 2425.430441]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2425.431552]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2425.432661]  do_syscall_64+0x33/0x40
[ 2425.433466]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2425.434550] RIP: 0033:0x7fa861eb0b19
[ 2425.435341] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2425.439267] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2425.440881] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2425.442398] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2425.443925] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2425.445440] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2425.446956] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
[ 2425.450311] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:46:19 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

16:46:19 executing program 3:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000440)=[{&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:46:19 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r3 = fcntl$dupfd(r0, 0x406, r0)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed}, 0x7)
syz_io_uring_setup(0x68f3, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_submit(r4, 0x0, &(0x7f00000000c0), 0x10001)

[ 2425.469939] loop7: detected capacity change from 0 to 135266304
[ 2425.479123] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:46:20 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

16:46:20 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xf9fdffff, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:46:20 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

[ 2425.680053] loop3: detected capacity change from 0 to 16896
[ 2425.704833] loop7: detected capacity change from 0 to 135266304
[ 2425.727903] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:46:20 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xff0f0000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:46:20 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_open_dev$rtc(&(0x7f0000000040), 0x0, 0x200102)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_FALLOCATE={0x11, 0x1, 0x0, @fd=r1, 0x40, 0x0, 0xfff, 0x0, 0x1}, 0x1)
r2 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed}, 0x7)

16:46:20 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 79)

[ 2425.917166] loop7: detected capacity change from 0 to 135266304
[ 2425.935632] FAULT_INJECTION: forcing a failure.
[ 2425.935632] name failslab, interval 1, probability 0, space 0, times 0
[ 2425.938062] CPU: 1 PID: 12563 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2425.939569] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2425.941354] Call Trace:
[ 2425.941928]  dump_stack+0x107/0x167
[ 2425.942706]  should_fail.cold+0x5/0xa
[ 2425.943519]  ? iter_file_splice_write+0x165/0xc90
[ 2425.944548]  should_failslab+0x5/0x20
[ 2425.945369]  __kmalloc+0x72/0x390
[ 2425.946114]  iter_file_splice_write+0x165/0xc90
[ 2425.947112]  ? __fsnotify_parent+0x47a/0xb10
[ 2425.948057]  ? generic_splice_sendpage+0x140/0x140
[ 2425.949106]  ? pipe_to_user+0x170/0x170
[ 2425.950023]  ? security_file_permission+0xb1/0xe0
[ 2425.951238]  ? generic_splice_sendpage+0x140/0x140
[ 2425.952436]  direct_splice_actor+0x10f/0x170
[ 2425.953555]  splice_direct_to_actor+0x387/0x980
[ 2425.954593]  ? pipe_to_sendpage+0x380/0x380
[ 2425.955518]  ? do_splice_to+0x160/0x160
[ 2425.956332]  ? security_file_permission+0xb1/0xe0
[ 2425.957327]  do_splice_direct+0x1c4/0x290
[ 2425.958164]  ? splice_direct_to_actor+0x980/0x980
[ 2425.959133]  ? avc_policy_seqno+0x9/0x70
[ 2425.959969]  ? security_file_permission+0xb1/0xe0
[ 2425.961005]  do_sendfile+0x553/0x11e0
[ 2425.961814]  ? do_pwritev+0x270/0x270
[ 2425.962612]  ? wait_for_completion_io+0x270/0x270
[ 2425.963623]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2425.964591]  ? vfs_write+0x354/0xb10
[ 2425.965392]  __x64_sys_sendfile64+0x1d1/0x210
[ 2425.966325]  ? __ia32_sys_sendfile+0x220/0x220
[ 2425.967277]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2425.968373]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2425.969461]  do_syscall_64+0x33/0x40
[ 2425.970247]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2425.971329] RIP: 0033:0x7fa861eb0b19
[ 2425.972111] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2425.975972] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2425.977579] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2425.979083] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2425.980595] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2425.982085] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2425.983582] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
[ 2425.986327] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:46:33 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

16:46:33 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
connect$bt_sco(0xffffffffffffffff, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:46:33 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:46:33 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r3 = fcntl$dupfd(r0, 0x406, r0)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed}, 0x7)
syz_io_uring_setup(0x68f3, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000000}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_submit(r4, 0x0, &(0x7f00000000c0), 0x10001)

16:46:33 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$BTRFS_IOC_GET_FEATURES(0xffffffffffffffff, 0x80189439, &(0x7f0000000240))
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x25, &(0x7f0000000200)=0x2, 0x4)
writev(r1, &(0x7f0000001600)=[{&(0x7f0000000040)="abbc992fb707a60980a5e278c349953f8a9b1ff908f48928a8ed7f7f023cdc195345dbf90395948a3536b1c7b5167b543d92cbcdd2501a4f86fd26b8ffd2d3bfd3dba78dd51097477cbea8f0e7a4895cde50979201dc57b6291dc96884a661211dd753896cc864a8b87d96bbac19f12f9eca11c307e3a9813e7884a717f46f2133b976e5a8aad884b746f98310c4b8420d2f2692ba86d85c71771bd4ccdcd90b8cde954d42a01cecbfc9355af58c29dd676e32439a00de78628617aa19a806d8f8d36a1716f5afe90d1b0dcda21305a672a111c4fe93663c2008827daae508725e638cdf90", 0xe5}, {&(0x7f0000000140)="0527f4d5723f7303c3145a0b6794564d56f4698c8663f785b9e9057d1a1d70d1782cf50d4d0f2781d284c628281bc5507ac2f39853d49103e09e14c6dca9588a086a6f51a6b221962f8c1347ddfc435ddf41e17762b499ab6bd0d8afdb30f577a26db793f4650b01305369ba621643e71fda7213d80db5d8dd684887aef8d3e5973f1f456e8740d410ddada09b483cb0f33ee73356c6f8449e91981c48ebe8ee71bbb04458", 0xa5}, {&(0x7f00000016c0)="4e7221501522fd1e38b2faeff2a9d47a4cb658726af10a10c00d09e902706d2174b6ab0afbe8b20642707978f8f1320b45f06f5c66280af1e81d54a5fdb3c44fbd9dab54a06f51544717ae5c49df671a84da14168af8c0a8558fc37ef9d1963bbed204a5a335cecf2071fb1218988f30d7c6ae0b20f3377c97ef2e936c00a3515008566cd6b1f8b3837a5f38019c9d2bde35ebd79f0ab67c4c6700ffc3938b9e9000b3fb59f78bcbbec2fa193264b1f729343f", 0xb3}, {&(0x7f00000002c0)="5f71de3d0cbf90f3335523f25589da2f13f517021b387f414bb7bdc98321c1081fc38d0152365c6d4d4073fd61507c37209bd216bf22904ba1931aebd7b0362fd271e6a4069c49d11b36d7695f6a6c633a6fec9874b0172c49b28ef500f660ac6a79dce1a2e1947b06b3cae449594fc2a7342e8a768e8f63928bf8c84018d260906a83d92c2591e920d1d656b3774010aa49696cc56c9a6dd5f8", 0x9a}, {&(0x7f0000000380)="53ff78f4099a409bbf200122744aab6ccf9c635531207164905ad3dc221a53204746bf228e9956ccf19e4175f79e0a0a480bfe6b9a03af99483b73d99c25ba1f6c62869b06ce9048014b06430fcdeff9ea6b0547d685cfe5abe4cb06e9011ce04495e29d91f3b2986d58a567750c8440a77425e7b66548ca93238879ec3e296f70a74b", 0x83}, {&(0x7f0000000440)="0c106847a7c31d3c84f2ab3c86599985809aa60bee712ede88c33efad5c129064168", 0x22}, {&(0x7f0000000480)="e2d0202d33b5ac798db2b3c81c6951e37d8606af193a9b61dbdddda32b6916232d7906f7af620ca39389534ff47aef4a54e31b126bf75142a73e734edee515d038a269a569dc600f1083a96a0c83ec892ebf636f73fc6328fe1b051ab01ef67920236a2a849876fc972dbb95308d68f47b6e2ba31ed7c0a774153f2a5b6600c8f451d9c55e1c2ff8c565fe12cec4e2d14dbae70e66717116f054b8575596fb00c2973ad00fc0dbb3dae21e7dec91e1b321c7eae10584e32cae9d66494dde7c7b06c4bc06c1837964b2be02efc5b005e7d53e3cba8f609aaca17fa594db3693c6dac9f494954622a0ff830681441105e4d2a153285b92b6f303a60186805e39968c012e92831d3686a17feb015a9aca85aa0c05600d034f0cea6befbf87ad5c8438a1795c39f369ae57f2dff8dbabaa61daeb438919716b2c67218ba68651e83d8ac8e17d63e82f72de795533706e31b663528e40559f0c3281f727af07565507c00529c2dae05f9d98eab379cac84b402baf196a20e544e175730e5e77c5096ea7455274fc6d9a68dba2a0b5b8eaca9253ed1a1ade307cbf63493e2b3860ae03a223119a85a6811b5f5ac07ec4ef04d0f8cbcbbd240e39d0bd7523b93c0d9203276b7257b0a2e7385ecf0fcbd9a7b2599d2017dc4d07439cf24b14cee064f27ade744846039b5f0647a42f3edc17aa6c62ff841400f7cdbda7cd144e83901748f49f904c12c698fdc98975e631652940808e1d0ed61900d3179432846eb33f32fbb6904607822837c250b4b952aa35d67177cae9cce13f6a3b79fff06022526d7e176f363455f8c4c6eca1264c913f596b6950a5bb5ebdf09be4bbbd99442014878480c1f6021999e434bf4418583ad28ec7b542fd75423b7a758edfe2e1ec78ba31a7c8cc2d89d86ac8c303d8660f5d52c358be6c4db041a64ff07e9acdbb0234bd9383f63e408d430cb44bae25eadcc205928597e8cf80376475719cbb6825f362f54f569b0ad0fd780b5446a4020e72520f902f70495c4e9df96a32d970a6aa77e676f87d000801f05ee393c2353f35c682afb775b1505a00fc84d5d8176d039cd094d4dcaba89fc54a01e064433810de8096d0f5f2469b30d2c3c5aee030043c94df92507db2921983f735749a1571377120a6a12fcab768e48ff0e5700f9f660c5f2fef813eee41fb43026607240fd13fcbc8eb48fc6ac77322848628cc5b9afcd4c2f2e45e7087e6155864cacb208ce48ec5460e0405d4f446f175dc73730723ee366724992d5a6d698a8d42c664febbc03a385af0f9f66f4954c1a39a253340bba79bc08ebafc8260edcb841f55c2fee9230370c1846bbbbba1042caae1ebc86c65f786676aebde3f39e7fb94d40ccd16359b7c7f440bd782195013aa54c4c70bfec9d824ffee53b155fc6cc394c491c4a6753d6352401c974341c5d76347610855399011ab1a7ec074d9a81038ce5af5a20eac681dc27e870e73676aa482363139b82e5116aafbab6b77087e511c19e2e7d5ec6ffea7e8635b27ee7989ba7e74bb06a7766ee7a7c0a79b52d30f247a0d57fdac280c03907ed419aefcc49f1e519160e91285e0ada587aec6a85a78a9d2edc2c5fbf3a20c54c99896c581b1d2eb10ed7dd054b98e46f1264b4eea3ef0f0d076d25f132d4bce8cdcfbc1ded334f01633fc20dd9b1cbbdb941a0f0376d9fb1a648c5c7375ba1ca50edf0ba3d684f4eb3c9d55f644afd413dbd6bb71962ec6e2a73201dcf8cac1212660b5c67bd59a44be73e748070eafe828ad656dac833459af0a7f74ef6cee7f10ffa18127488702e702816f068bcbbc2d1e88ddf6cdf8f124b9c876208c1b7bddfe9c732e1eb090addeaae12816c52c1081d9bdb31365a182157cee10142d85db1eb2f53892125fe7deee605d8a7c269067243f0c6936ea6c5702766b6c7c98be085570e0b84fe902a54bee570471e31852bedb4536ef4784a7844257a3735367decae5ee573b226a755715769a41c863ad08fdf3d1798c3fb7353938497f2c6236ebb4f79d20df52b4c0a10e714d3494010a931d9efcdb5f2f67e750bda141036075a9ff4a9beefec3fde4598b12806fd900988764493af941a22aea8ba04af04f4ac29485642d0641605c4962554e63edc4b3813c10d29eae6dddb75163708cc2d399ad682ad0193ec57bf65059ba032f55637f106b8b73a887ec2bc12dcfe9d8ff74a66332ef788b24b35460c6037771d3a94045544b0c2d22b6b9aa2f153fbad69e84bf122e7aa7146a42c1692af19fb27786fc39879d4b302e7cf4cebdec68cb6ca014bf6f7a7e021df52ce05641cf4024cad55b5d966bc20d6cde13e44a83f74111766fa875d5bd2e3e030eea5be630e7fed13e110fda74fefedaf569b7dd37c27b688c8034b6261ce0f9f01a7f3545102e04f41d8b7bc1c4328d4566e390c5aab16e305cc471b44795f5454f08acbbee52d2385eb3fab6a0f0ae54ab17355bb16a727537b8ca955cb9317cc6963e3a89b38555daff66548da717ef314925cb98e7715243cfbe8b09fa732cf78b9bc64a72a9828f5c76b23a3613f5689a0fd22be873fba828c99fcc9b00d409a6a44996a26c45da2279671d7e1581ec632d384f7fdb8912bff4752ac4689358c3a5288322b818c139f91b04d7304179299220d9bf0eff208a1ebb36ba48b0fcdb7546c1399806e42943f422a911a8be55de426f437a65083c414deb24310a24662440ab557617f1bdf1c4cd436b89ea080edb6879103126effd3bd1897a0186d1dc1c432cb252f9d7372d91895d92af22d4a526c97eeef7c2d76918c8a3705eb9a26c0ae0a1b6b50448b40ceb0948ad2ed392aa458ef4a3d40b0f2d3a3277b8581f324e82e4ffb5efed03cea5395ddffd82f23126d465a88fc00763fef44b843354b8e836e44cb17236a6dbc79cb530580145c6950e9781525a5a0cc6499365419aa7599032adf5e9caf489583b4bc558f167de1b069a4b1c82d5b17fd364e5d928e1b98b90ae28c12cd22d7c28d9201b973ed5eb4d893200fe75125431eb45a87ef69fea2b9973c9120be7f7e71799d4dbe9ed246c887f704df648826f141f30288783b597c672355ef70696534749df3cc2c56a68a59199d25c078fac957a89bb866164b298ce711f2cb7c65838edef9d48bd58ec22cd77d95422bd69b3d37e63f96ffb25dc856385e4d5f6dc87bbe1b1e37d814f4a2b8bc177f20ff9f3a4935eba907b849f047d490a0e07309c2e958fe2aeb60f64346b150ae4c79653dd14439321351bf2f123508439f1445a2e14f8fe6a5767411123277e3cd00cebbddd13f09798cd6d4b7b09fa4bba1bf4ab9a9c4c11cc066a66bf7f27adbad502e203927a1a6371e099b271107cc86f05ae0aa4c0c92bded37de74c36cda1a91f65bbe1e2b17e6edce5a8b239ab264a9985547baadf12e6d3c13c68dfa6e7ccf1be3d1d718b596947aaf8d86a755e045c774c6877075e3eaa8567ab89bc6f2aac0bee07bfe47e832ade8bb5d63338d126bf0da995456f64d322ed2c55e60076541462365e82565fd14b106cfcfd34652708b1c1d33dea612d18c6b17108070001eddf225c39f49841071d508fba5e98e4fcb26ec633a1acaa8e01b81a948808b76e0ab2d30f6009093c6b98a79341594576b2b9695c9f2413b5c88c684ddc62a214d08103de0b0d1c4559d733694619b91a916fbd35268d7041578b36357d31d44ccbcdebcff6cbbb5954c34dcce618b4ff65f6c3a1efc9196f5ab9d40f7014f33802c28cf7ad789046b48e28fd6956d9786700a877bf16ef2f4003befff4b9b0da20fbd43b12c0dbbd8c31f237e2339149afa4fc8d92f3b5632dce89ea48c2e935a02d2203970c676bb239d905e4494ac7a22ddcab3207b52adc00c82b642316cf3e04497f7008d89d35f8134dce171029ef4b2383efdede419807b57f6d48855731394488d4b1d36377bdb8075c4f4ae02aa2e7c7a29a2adada79571f66f4136db739d02be6397b1cad2e70e1ecc0f6a70b53702bfc82d68116c0bb64fdf42dc4daab2964827ca9773aad625f2a641d83c5b4ff842e5539a807d1ca436339bd4d784b0039bac591ee8a62993e661a5f6adcad7ca1df5b00266e5ea715623af5c843f817f9bde1ba3dc0dff3c653cb420831002de35eee89b36e32caf90a5514b78b579841442d616b383a4e781be8654b776c0da1417c269a3cb3deac0ce51695dc2abf60ff728d68d43d4b51594e70f3d960f64de16a894eb7e8067aae04ae06a984de5b1a0eed5edc15acee76fda96a4ae8e35b6544ca1505149ffb19bfd54d4761d77ded3689d719037c1383c9c0d1c0a940a2c77e363b0e00792731095a38e7ea87664acc78b690b0ac8ff08db321174c7e408fba5c68490314705741d559dd69d6c68bcdcee6ed13beefca25fdde85ade814c5af947028acb6695f2b51fca622eef31d6f5d56f8968b28dc473670bc3f7fa1e5655493a7a5f622471d886a1cb0bddcaae8976cbf15f2e86fa8b1a782ac55b71dd19682c9292cd028f6e0138934df38f17b34e38ba19b1012c46fa527498dbeceb56fb8f76f70ccaaef353018623c046dfcd57a5d8a80c5c5c0e57b8ba0cbae2919e2e821a94dbc654d8673b66657a4c571b13edce0e56fd1887c150751fb9e710a3d2d629b15a1a726d8c9661f23f61c40015646f84c812fab0985f243ee6971a399b6a5a3eec5d66cff60ffe2acd7ae2ee9e874e7065e717cd0fd66c495b96d00f755b658dc11b2065cf12560ccef49685791615c50e388676bc4a501edc5a5690e67eea2922c384f7d2f18c936bdc599120b2de1b313b8a90b7c9e8de9908d484a38d04fb5f21cf0b5eeaa8d6a65da608201c11886e3e33ec593be8ddcb95f8169ae2c7b7af0dd9c6c8b53ac10d733c748d1302b885734457aa6c888b90d8e2a233bb455e5fe4ad011e8f02882478460a3f91a90aed6e60a5912de94031b5f6d2343d9059fe3ffba892873a399898fe356a3c7156fa088a855b773e34ab6934f251f70a7d9f0c5e540086c9f9240cbd2757668b014318a0c714f3674c0647242db3e0924a558664541e5afb1a3eedcff0b6ef4f1f54713475fd9c1f62f8e42387da1d17b62b5621f827a814420afc75b5fd46b6346520e5b71a6d909bc3133137d5da600586aa35eb5b2257c7edafc2e40286a6ab615f5f8213dd8586cfd3cfcd4210ca708e51c12e2f36625f3335d06fedae97ddfa67fd011cc3b28cdfa1f37c9cb05d689de25b897a3fd955367872d6757c1eb6b4516da7bf1393cc0d687c737717de695e782864220c8b77cd67dec811bd2407ec2458141cd276fc968add8f34b9f11b3f5f46e7576c29b71ae04f7dae359cced0e8bb0620bd4c85ab75a26661fccf4e5979768bcdeec531b3b31c732b0c10bb8ebb4358b6752fa5e61f53a8b6ce5d87cbe20c03d8ab172782d6147bd39c889e96a194cc0cc867b60cd07bfe72d1741ad5b949aba153f199bf500f4765981b7eb333ddf3589cb7de291b90588c16f8005ee78e625d8c6fdffd8723569c355f2828816ace3a8f614e5ef7d95e4e6cb58308d81f558212084301b2c26e5490912067962ec1048b8fcde6134545cb532c58e92addcc1372d0718166276c82a2856ba1146907d3ca4ea5af9d0969456fa5317a394930a93bb6ff9867099d3655231f94d918e02e0aeb1470a1ec724516b88329bb2fb6feb5a92d5a4c82fdab56326f49633b90133049e55d02f6da6065ed4bccbabf83cb5b8e5a08d7fa2f7974b544b19dd110e8467a560", 0x1000}, {&(0x7f0000001480)="02e706a70a03bcc51d7c90d541e2c29934a6fd94af62c87ad21b1fb58ed89b848b963e686ce925a27434702004f0b05d62af4286e23603ea512ef88acf2e442513e7015ba7b0197ee7a2295ebead642f7bf17183b1", 0x55}, {&(0x7f0000001500)="355b4c8662721b4e7373e8fa4be9cd5792935a9902c2ee8903d9d7c0a043d4e1ce1a1850137253a9c8b6c46bc76899e466928dd8aba6bc9328c71879179ded1f839b40e9384c2ae0d46f2a81c05d70fc42a3b823c4562710beffc0b1690c9bb6d1e2eb276d368244bbdf0d5b17156074826906a1e5a5111ca20dce4a2eb26bc3c7aa14288df5db91fadf8bec05194fcb5dfec85805dcfe97c467f1ca19d2a526ea75f179bb2755b714757de03bce9f1f31d63ce37bdd96e770d52784695084fe9345ec593defbbb6e4d4b7b189a3d13df195b7906492cf7568e5632c77f89987ae48fccad75e16177d", 0xe9}], 0x9)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x7)

16:46:33 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xfffbffff, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:46:33 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 80)

[ 2439.506862] loop7: detected capacity change from 0 to 135266304
16:46:33 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r4 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x3a1140, 0x0)
ioctl$int_out(r4, 0x2, &(0x7f00000000c0))
setsockopt$inet6_udp_int(r3, 0x11, 0x6d, &(0x7f0000000040)=0x4, 0x4)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

[ 2439.521922] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2439.537432] 9pnet: Could not find request transport: xen
[ 2439.540924] loop7: detected capacity change from 0 to 135266304
[ 2439.551043] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:46:33 executing program 3:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
fcntl$setown(0xffffffffffffffff, 0x8, 0x0)

[ 2439.581805] FAULT_INJECTION: forcing a failure.
[ 2439.581805] name failslab, interval 1, probability 0, space 0, times 0
[ 2439.584195] CPU: 0 PID: 12589 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2439.585671] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2439.587421] Call Trace:
[ 2439.587981]  dump_stack+0x107/0x167
[ 2439.588770]  should_fail.cold+0x5/0xa
[ 2439.589578]  ? iter_file_splice_write+0x165/0xc90
[ 2439.590595]  should_failslab+0x5/0x20
[ 2439.591404]  __kmalloc+0x72/0x390
[ 2439.592147]  iter_file_splice_write+0x165/0xc90
[ 2439.593131]  ? __fsnotify_parent+0x47a/0xb10
[ 2439.594085]  ? generic_splice_sendpage+0x140/0x140
[ 2439.595123]  ? pipe_to_user+0x170/0x170
[ 2439.595982]  ? security_file_permission+0xb1/0xe0
[ 2439.597004]  ? generic_splice_sendpage+0x140/0x140
[ 2439.598043]  direct_splice_actor+0x10f/0x170
[ 2439.598974]  splice_direct_to_actor+0x387/0x980
[ 2439.599958]  ? pipe_to_sendpage+0x380/0x380
[ 2439.600875]  ? do_splice_to+0x160/0x160
[ 2439.601725]  ? security_file_permission+0xb1/0xe0
[ 2439.602746]  do_splice_direct+0x1c4/0x290
[ 2439.603608]  ? splice_direct_to_actor+0x980/0x980
[ 2439.604603]  ? avc_policy_seqno+0x9/0x70
[ 2439.605484]  ? security_file_permission+0xb1/0xe0
[ 2439.606528]  do_sendfile+0x553/0x11e0
[ 2439.607349]  ? do_pwritev+0x270/0x270
[ 2439.608168]  ? wait_for_completion_io+0x270/0x270
[ 2439.609204]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2439.610188]  ? vfs_write+0x354/0xb10
[ 2439.610967]  __x64_sys_sendfile64+0x1d1/0x210
[ 2439.611920]  ? __ia32_sys_sendfile+0x220/0x220
[ 2439.612900]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2439.614021]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2439.615115]  do_syscall_64+0x33/0x40
[ 2439.615902]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2439.616988] RIP: 0033:0x7fa861eb0b19
[ 2439.617781] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2439.621704] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2439.623301] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2439.624799] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2439.626300] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2439.627797] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2439.629299] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
16:46:34 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xfffffbff, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:46:34 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

16:46:34 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
openat(r1, &(0x7f0000000040)='./file0\x00', 0x40, 0x80)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x7)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
setsockopt(r2, 0x200, 0x10000, &(0x7f0000000080)="ad514eecc0ca9b34cb5fe4117b46aef28ead80f83e69e28b0151c09737956c7e0fc1368059a802a1ad1b6301473387a5d03c21c88dcfb298173be52266f96d8876b82ccc25bc84de740b0a293fda49bbced9476ea06baf6fcb0714780213456ccbcdee4c7c34a7fbe7cc423ad83693a2da38f51bbcd6d8b3e7", 0x79)
syz_io_uring_setup(0x3ca, &(0x7f0000000100)={0x0, 0xee3b, 0x2, 0x1, 0x1f5, 0x0, r3}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000180)=<r4=>0x0, &(0x7f00000001c0))
r5 = accept$inet6(0xffffffffffffffff, &(0x7f0000000200)={0xa, 0x0, 0x0, @mcast2}, &(0x7f0000000240)=0x1c)
syz_io_uring_submit(r4, 0x0, &(0x7f0000000540)=@IORING_OP_RECVMSG={0xa, 0x5, 0x0, r5, 0x0, &(0x7f0000000500)={&(0x7f0000000280)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @dev}}}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000300)=""/178, 0xb2}], 0x1, &(0x7f0000000400)=""/205, 0xcd}, 0x0, 0x0, 0x0, {0x2}}, 0x1)

16:46:34 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)

[ 2439.719293] loop3: detected capacity change from 0 to 16896
[ 2439.752453] loop7: detected capacity change from 0 to 135266304
[ 2439.788246] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:46:34 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

16:46:34 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 81)

16:46:34 executing program 3:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, &(0x7f0000000740), 0x400000, 0x0)
openat(r2, &(0x7f0000000040)='./file1\x00', 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:46:34 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x7)
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0)
syz_io_uring_submit(r5, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r7 = fcntl$dupfd(r6, 0x0, r6)
connect$bt_sco(r7, &(0x7f0000000000), 0x8)
io_uring_enter(r7, 0x4975, 0xf9d4, 0x1, &(0x7f0000000400)={[0x1c0]}, 0x8)
syz_io_uring_submit(0x0, r4, &(0x7f00000002c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=@l2, 0x80, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/214, 0xd6}], 0x1, &(0x7f0000000200)=""/120, 0x78}, 0x0, 0x2000, 0x1}, 0x9)
r8 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000340), 0x8202, 0x0)
io_uring_enter(r8, 0x1673, 0x29d5, 0x0, &(0x7f0000000380)={[0x4]}, 0x8)

16:46:34 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(0xffffffffffffffff, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

[ 2439.970575] FAULT_INJECTION: forcing a failure.
[ 2439.970575] name failslab, interval 1, probability 0, space 0, times 0
[ 2439.973031] CPU: 0 PID: 12622 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2439.974475] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2439.976220] Call Trace:
[ 2439.976790]  dump_stack+0x107/0x167
[ 2439.977554]  should_fail.cold+0x5/0xa
[ 2439.978384]  ? create_object.isra.0+0x3a/0xa20
[ 2439.979357]  should_failslab+0x5/0x20
[ 2439.980163]  kmem_cache_alloc+0x5b/0x310
[ 2439.981035]  create_object.isra.0+0x3a/0xa20
[ 2439.981961]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2439.983029]  kmem_cache_alloc+0x159/0x310
[ 2439.983922]  jbd2__journal_start+0x190/0x7e0
[ 2439.984855]  __ext4_journal_start_sb+0x214/0x390
[ 2439.985862]  ext4_dio_write_end_io+0x22b/0x600
[ 2439.986829]  iomap_dio_complete+0x1a1/0x790
[ 2439.987738]  ? ext4_es_delayed_clu+0x3d0/0x3d0
[ 2439.988720]  iomap_dio_rw+0x63/0x90
[ 2439.989490]  ext4_file_write_iter+0xe0e/0x1530
[ 2439.990471]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2439.991431]  ? kasan_save_stack+0x32/0x40
[ 2439.992302]  ? kasan_save_stack+0x1b/0x40
[ 2439.993174]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2439.994250]  ? iter_file_splice_write+0x165/0xc90
[ 2439.995265]  ? direct_splice_actor+0x10f/0x170
[ 2439.996228]  ? splice_direct_to_actor+0x387/0x980
[ 2439.997248]  ? do_splice_direct+0x1c4/0x290
[ 2439.998158]  ? do_sendfile+0x553/0x11e0
[ 2439.998993]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2439.999986]  ? do_syscall_64+0x33/0x40
[ 2440.000821]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2440.001952]  do_iter_readv_writev+0x476/0x750
[ 2440.002896]  ? _cond_resched+0x10/0x30
[ 2440.003716]  ? new_sync_write+0x660/0x660
[ 2440.004593]  ? avc_policy_seqno+0x9/0x70
[ 2440.005464]  ? selinux_file_permission+0x92/0x520
[ 2440.006497]  ? security_file_permission+0xb1/0xe0
[ 2440.007533]  do_iter_write+0x191/0x700
[ 2440.008350]  ? trace_hardirqs_on+0x5b/0x180
[ 2440.009283]  vfs_iter_write+0x70/0xa0
[ 2440.010092]  iter_file_splice_write+0x726/0xc90
[ 2440.011079]  ? generic_splice_sendpage+0x140/0x140
[ 2440.012133]  ? security_file_permission+0xb1/0xe0
[ 2440.013158]  ? generic_splice_sendpage+0x140/0x140
[ 2440.014185]  direct_splice_actor+0x10f/0x170
[ 2440.015121]  splice_direct_to_actor+0x387/0x980
[ 2440.016113]  ? pipe_to_sendpage+0x380/0x380
[ 2440.017037]  ? do_splice_to+0x160/0x160
[ 2440.017881]  ? security_file_permission+0xb1/0xe0
[ 2440.018915]  do_splice_direct+0x1c4/0x290
[ 2440.019788]  ? splice_direct_to_actor+0x980/0x980
[ 2440.020809]  ? avc_policy_seqno+0x9/0x70
[ 2440.021687]  ? security_file_permission+0xb1/0xe0
[ 2440.022724]  do_sendfile+0x553/0x11e0
[ 2440.023543]  ? do_pwritev+0x270/0x270
[ 2440.024343]  ? wait_for_completion_io+0x270/0x270
[ 2440.025370]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2440.026352]  ? vfs_write+0x354/0xb10
[ 2440.027142]  __x64_sys_sendfile64+0x1d1/0x210
[ 2440.028095]  ? __ia32_sys_sendfile+0x220/0x220
[ 2440.029090]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2440.030200]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2440.031299]  do_syscall_64+0x33/0x40
[ 2440.032079]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2440.033157] RIP: 0033:0x7fa861eb0b19
[ 2440.033942] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2440.037849] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2440.039468] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2440.040982] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2440.042500] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2440.044024] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2440.045541] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
[ 2440.062999] 9pnet: Could not find request transport: xen
16:46:34 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
connect$bt_sco(0xffffffffffffffff, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:46:34 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xfffffdf9, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:46:34 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x7)
r2 = syz_open_dev$vcsu(&(0x7f0000000040), 0x800, 0x8002)
ioctl$BLKGETSIZE(r2, 0x1260, &(0x7f0000000080))

16:46:34 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, 0x0, 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:46:34 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(0xffffffffffffffff, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

16:46:34 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 82)

16:46:34 executing program 3:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

[ 2440.430839] loop7: detected capacity change from 0 to 135266304
[ 2440.446444] 9pnet: Could not find request transport: xen
[ 2440.451165] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2440.451586] FAULT_INJECTION: forcing a failure.
[ 2440.451586] name failslab, interval 1, probability 0, space 0, times 0
[ 2440.454753] CPU: 0 PID: 12640 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2440.456211] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2440.457984] Call Trace:
[ 2440.458554]  dump_stack+0x107/0x167
[ 2440.459331]  should_fail.cold+0x5/0xa
[ 2440.460140]  ? create_object.isra.0+0x3a/0xa20
[ 2440.461111]  should_failslab+0x5/0x20
[ 2440.461919]  kmem_cache_alloc+0x5b/0x310
[ 2440.462778]  create_object.isra.0+0x3a/0xa20
[ 2440.463696]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2440.464781]  __kmalloc+0x16e/0x390
[ 2440.465540]  iter_file_splice_write+0x165/0xc90
[ 2440.466539]  ? generic_splice_sendpage+0x140/0x140
[ 2440.467582]  ? pipe_to_user+0x170/0x170
[ 2440.468436]  ? security_file_permission+0xb1/0xe0
[ 2440.469635]  ? generic_splice_sendpage+0x140/0x140
[ 2440.470670]  direct_splice_actor+0x10f/0x170
[ 2440.471600]  splice_direct_to_actor+0x387/0x980
[ 2440.472572]  ? pipe_to_sendpage+0x380/0x380
[ 2440.473506]  ? do_splice_to+0x160/0x160
[ 2440.474340]  ? security_file_permission+0xb1/0xe0
[ 2440.475368]  do_splice_direct+0x1c4/0x290
[ 2440.476244]  ? splice_direct_to_actor+0x980/0x980
[ 2440.477263]  ? avc_policy_seqno+0x9/0x70
[ 2440.478119]  ? security_file_permission+0xb1/0xe0
[ 2440.479144]  do_sendfile+0x553/0x11e0
[ 2440.479955]  ? do_pwritev+0x270/0x270
[ 2440.480764]  ? wait_for_completion_io+0x270/0x270
[ 2440.481780]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2440.482751]  ? vfs_write+0x354/0xb10
[ 2440.483533]  __x64_sys_sendfile64+0x1d1/0x210
[ 2440.484472]  ? __ia32_sys_sendfile+0x220/0x220
[ 2440.485458]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2440.486574]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2440.487661]  do_syscall_64+0x33/0x40
[ 2440.488441]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2440.489528] RIP: 0033:0x7fa861eb0b19
[ 2440.490323] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2440.494228] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2440.495830] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2440.497339] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2440.498852] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2440.500340] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2440.501852] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
16:46:34 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
mmap(&(0x7f0000ff4000/0xc000)=nil, 0xc000, 0x1, 0xc2010, r0, 0x95837000)
fcntl$dupfd(r0, 0x0, r0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
connect$bt_sco(r2, &(0x7f0000000040)={0x1f, @none}, 0x8)

[ 2440.525152] loop7: detected capacity change from 0 to 135266304
[ 2440.535595] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:46:34 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(0xffffffffffffffff, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

[ 2440.578198] 9pnet: Could not find request transport: xen
16:46:34 executing program 1:
ioctl$MON_IOCX_MFETCH(0xffffffffffffffff, 0xc0109207, &(0x7f0000000080)={&(0x7f0000000040)=[0x0], 0x1, 0x200})
r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000180), 0x42080, 0x0)
ioctl$MON_IOCQ_RING_SIZE(r0, 0x9205)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r2, 0xc0189374, &(0x7f00000001c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r3=>r0, @ANYBLOB='\x00'/16])
connect$bt_sco(r3, &(0x7f0000000200), 0x8)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed}, 0x7)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
syz_io_uring_submit(r8, r7, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r4, r7, &(0x7f00000000c0)=@IORING_OP_FADVISE={0x18, 0x3, 0x0, @fd_index=0x2, 0x9, 0x0, 0x1ff, 0x4}, 0x5)
r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r10 = fcntl$dupfd(r9, 0x0, r9)
connect$bt_sco(r10, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$MON_IOCX_MFETCH(r10, 0xc0109207, &(0x7f0000000140)={&(0x7f0000000100), 0x0, 0x2})

16:46:48 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
connect$bt_sco(0xffffffffffffffff, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:46:48 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, @out_args}, './file1\x00'})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000140)={{0x1, 0x1, 0x18}, './file1\x00'})
ioctl$EXT4_IOC_GROUP_EXTEND(r1, 0x40086607, &(0x7f00000004c0))

16:46:48 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2000004, 0x110, r0, 0xa82ae000)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x7)

16:46:48 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xffffff7f, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:46:48 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, 0x0, 0x0)
shutdown(r1, 0x0)

16:46:48 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 83)

16:46:48 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, 0x0, 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:46:48 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_TIMEOUT={0xb, 0x5, 0x0, 0x0, 0x8, &(0x7f0000000040)={0x77359400}, 0x1, 0x0, 0x1, {0x0, r1}}, 0x5)
r2 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @none}, 0x8)

16:46:48 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x7)
r2 = mq_open(&(0x7f0000000040)='\xaa\xaa\xaa\xaa\xaa', 0x2, 0x44, &(0x7f0000000080)={0x5, 0xffff, 0x8000, 0x4})
write$binfmt_elf64(r2, &(0x7f00000000c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x3f, 0x8, 0xf9, 0x4, 0x2, 0x3e, 0x1, 0x2bf, 0x40, 0x3bf, 0x0, 0x8, 0x38, 0x2, 0x3ff, 0x200, 0x5}, [{0x3, 0x2, 0x100000000, 0x4, 0x2, 0x2, 0x800, 0x1f}, {0x60000000, 0x9, 0x4, 0x1, 0x0, 0xfffffffffffffffe, 0x10001, 0x5}], "3bac20dd195ec390f54fa588614a0418aee60618f7e8398fc61ba011e990848c8d206e063f64197c9e294d438883759e2c8364370f87d4d6eb78d95930b544e5682d2ae9ae8f04dbe9853bb24832484dec73ab73c9e9bb59bca05f7f78d95057a52d26926573a7df64f880b83cdb6f435d04c67d4ae45aa210ebf6e8b5dd96c6e644a752d1223145b27824ad7db820a1f110d1b9396960c31f8a0f8af21cca2c58c871cd9b593a7a2c7e1186954c1acf5027a5aeebbdc948808b2c254b8df816c4a0e09b92a7bcf8a2ee008e1eb4b1b6a1d666bbb5b7873576c43b227b1e9ece5d77901dbf84d7b336d070412126b2a56871ce12c9e7fa3112a88e37169a5df17c8a15dd6eb4c989d5284defbca82ce996e780c96777e9a58eb7f01432c376cd4c3d0a47d8fd0c6c44e7e8b65fbd4de816bf6e7c97d4e537252874fcb67eedcb17ddbfb50edd996eb2bf697f311f7b673958796fd81ce527291c9fff293b4740a8b3c621d9992f6d659b3225aa741d7d9a47f95e6155bd18b280c297e910387dc238759b64b8a026474646fa98cc85f84943bf4ed3e44ed4dbda6152cb49bb81182ffd95674bfa3cbd25e349074e7f7624696bc743aff9c2043a48b4b6953f99d401dc6e26c09e34a9611281a610015801f1747fedf62dfbbe77ebf12faf61ada45966700310aec282f8a7944ecfbcf9dc9c5845f25cf8e3bb02d9479b1b8d13f85a22e85d7b790a32cccdfd3c8d6292beb6094ecd93ce8a82b08ac75cf2a72b8e23899b3942b446ade8d4a9c9bee67f3c7dd056f34502ed844550e1b07c43b442c2624f0040e0e2b76aeae043c8375461acd7d4bbb02d7e1ff1edc927dbfeb6145a3692ce9cacda77cfa500492d53f627aeccbe091329f58906ad1bb62e01aa9d094d39c37ad15b42ffc34a1a5fae640126708423398f8c9f20a076b0dcb1ee26732d6eddd8bf385a178daa841397a7f4c4a3c77f23a4b6dd1ca55b2257a524a44bfcd13aeb8f5dba84f3848f26d99d9e9a7f27538063af1f9f4ac85f3cd6e79ca94446a11f3ce073e22468aa4f5152bd7512a0da64d4ce4d92839ab018fb14c24d69f49f2cd62461cc896f93b6ebdd3a9e080da626c4f9965ff2188b34a426339f519cf58a8b7079823ea97b0da94801f4df3f53c1772a0be80a4fc7688d44f7cd9a90dbcaf839bdf58772086221ac2511d52b37fb71f28b46a1017aa0b9b3df768a4588843a03a66ce1a97253c5949d94239e0ab8413a9268e3d7c4c0fba03431f6a4bb16806ddd71bc0cd9041717690b85e40ea9b2f784b7fc7ac8082bc641c0db7e62bca7414b09a0d1952b43eb47a0e2068ac2ffe854f916b6e6cc543f5bbbe57d61af910a520f4250d040d43f6c9da95d26f80341de7d1cdd94c7a39bd51335e3e0f4a7aaf56599e394e4341f2b5cf7172af0f418bbd535efb166d06a82bb0b7aebd4a191f430db8ae82f8f207e2d15aca498eeda5fa9813f04d34fbfde170d2ece445b6d5ba9e198298d8da618a81e3f9323854ae764746d58ddbb4da16865e3500284fa23b27c581e83616ae050128cecd3aeb43c973c238d95751a0647fa32a7b006a4bf5944dd8edc33786ae9c557d9560fbcb331333d9c197f54b727305de0befeee236611ad96ab40371d0488e9eabd0304b32e536c881cb859d9cb5b8625ee8b69616f974043ff5c8c721994962f903ac63339d3c8ac94e157467d32b1a2379d77b7f9f960e439c27bee2779ef908aa41a10002bf97fd1ea7249b9d76dd8f8544641a1c7373d422ba5c14697581d6f8046cb95dc4abf45d35b9258cbd4efe9284e2f497fba03480ec52e25828a9e908b7ead9a8cfee18e54336b7aff509734f6a95f532e1065dd71ed595e3e60ae31f47a0ca67140d4ff74294f5ceebf5ecf03f82d0bcc1ebdaa3078c3b4093f4724d0d18ca64c2c71199824b74a44b2b9c2f81081c506cfda7872afb80f55a0586ba99d04b172d01233036718bc85bbe264c7883ff2daaf4b466281489767841f58e909d72db5d91523ef3705b89463b4e3f7c1fa3ba05bcfaac9dd6baef7928297e117b0037012e1fdb33c03fd5f1d1b6993e13214e2461c72287fec691c3d69e3722fdf9bd0be21dfdaf6ade4cb340510f8828ccd0c04fd96e9547dcf9ee6168af0d9fd3d1c903f68096d659dc4fa15c4b1cc506c66727503311bfb755f5697efd27d4746ff66875788698014a2e339309bde8ef0ea5c3fb6cec0d115d826489b76d4267c30c2d7097946008e421f5455dce9e0a6890525091ea086477418b052e8bfcd62fb7d848d14b233cf2ff514e8b5c5026831355b01391652ccf7e84aa89d58b902040ba2293751c6c63d23e5b4d90446e5499b5d9fd91b0f36fb18de67afaeecb35f338d079304eaae7ab786a3520cbc5486d35d778dd0871845813662973358365e2df044c4cf2565e09f42893ca170f4e0ffee15761d25c95538732a26471266527e5f9bc6e0a71dc7fcfc68d29595f04967696117f7fb35ceb6f20915abb1df3a9521b6f0c220d955c3d4a2f45148957e5f909cf47b86fa34f38a508ae40524341306575a77992e27018d34668a7641a7e49f4ad27690f903336dde4babdebae96a2e29281779a982b01e9de2b775eeb36d0503af3a8d98e65f8fd59ca77fbcf0484bf964b1f9521c6402d9a017084d1dffc6925243d8b659ce85a067635f8e6612c3b035a591511c8f1d4051fcabe8126ae9131790af0526ec55d92ee5abb7261e9ad2c92978fef65ae8e260dcbab8d21dddbd7f57b9f3eec1dc5775deb20980f8ecf59c451acbcafe432f7218f85f0539a663f47ddf7a06390bec274053e2c5f332f27c8edaaa84379d3ab36639ed169ec4c21d0f770fa1e655e572aac34aca5f8a58981cb090988399e9ca10e7513b093fea935b71186bd85bb6b9a454b9a75f5d43d8f879e517505d1e31bdf9e76a50862fd647e1b56b90e5ff64462547ffc8c379417f5a5c2e09446661d779ebbfe601177ea6e6178f993b0f77dff5927ff3d60e7114d75193fb2440a1ed14e62e664b7c14602758a8b354d456e85e08b3a5564efcd3577a9993fe207ff65449eba6c9917007ba6978652b93157878dbaaea74625a181ff2247b4232c30f8c34bc4b27b9724f71ed16a6add0a12d3eb63656aaf270b327e8e803aa921c7847e33edcf9260bee1112b414a6e1872c1bfd6aa862deb4bb431d9eebede4f16d269d7d22920c0e8cc4d5c3639e4ce99f199920a3a558c607bef1c7288aa7f12efe491e27d618281f34f511cfe5311c2346457f2b4d04bab9c152b7ae629758299935b89674d361fdc1ce1e8b7a846544244c66caec4d0f7e65a8b268f8b895fa376fae6829db713cb4291221135a1112b7b381e19cf1da9e7f3cdb643c2f61bf7473f10f8fcb8af70e0c441d4cae25a61248fa35bda6f3ad8e4e5a35e8bb5fcd2905ec53ef29c48dcd5bae077249cc5eb03db419cff1a9eab03d1997030d4b8b672c49b0ee239ce7b10651b450dfd943cb7d7d08448c6b6ca18d5219804ee7a97b5cb5fde9fd35486a80b66ea311f67c06aef6028c2fcc9d402ea1d155f7dd32152e6753bc7a6f64c06a09f4c51cca9c254cbb18f45b36878aba30ab45fe28a358ebb6fd6025b07ffaacb3a3800086a4377f420b1c735d43ebfef355fe584a15824c7f258e42819934c78bc39a89d8ab0c5e28eb88f0623ba84505bbc62eea9f313aeb2b8c095d878d078f074d6a62584401ce39c1c1f721cd4dacac0add6af863f2bdc1cb304d4cb6eb15371af5d4b6791cd34f5368c303dd265ca23c7d6c1e8e7c99816493eed563fade40354c01851528cdb0cd30a91fe9fb64f26dd32145497024b5314e988f013fd754a67aed401de61f1fbe5f387439440275f4f2cdee2afae3c98459ec92c54a41a6eed63646b12f010c4be6d08dc30414b58f22074ac5f154c094fd368606b894cd656a70560ebf19dcb617938e56e5e64c26882b56d1e298e2d167aba774a161de7be72c67598f4261f0d1d9d767e3af5d359d78cd88765b3c3128616f55a013993686856512ecf5e10343fdc5b6d2b379a78cf7fe488a80bbf8967d26116ba9a308afce043952dd908452101b79542f1aaf3f9961a26328a551e9e12c17de1d92dd2701b03ee21e0bc586ea0f9e6e9977ce721f6deb31b24722b56685d1fbb1d726a1c2906bf54785ce7311537d1562d7f9ca4638f4c391f68b3f6d5e48fc1d774d7fe6d8f9ca51c1a70cec17cbdda31384073a62b40ef6afea485747807e624e241a98df36242fa06f78077ae01f802a614da3604b9e82f13610739de8720b87fe5b80b8877a0b24b23de7e6c4204f97dab0f5d882586f07ff53ff4494a799362c00ccf7d44eeadd6e3cd34d34c7bae12c6390a7c40f8c2c5e251943581e51536e2b197f7b7f78e86bfec5a29ef772689113b89a937a40b15c73a7be30c0c6789671281c4b03a275172e1e07e14217eea2305326efef503eb635d10bc82cf8b01a35e4d1e0e46e4418af2dcd2b0a331cea273d83fcbd08ad4d47201ed62a313401a61d2ccc141d3a3884f00ecad7b677051041f4ca5620d38e2bfb9f5a0d1daf425c238b39c2fd52b883613aacf4a92755b7784acbb68c1df2f558a303e015be0958bdb37e875d4917ae4c346ddc209ecc9139275bcfa593345e4d6a74bf60b57763d2b988184e5022df2f5d994d64795a20a1ca28ac2f3d724acce9259c75f511c8f112bfa2782e6737c73888961d8e28f9eef6f2b7176f365bcf9898766da8b863a942d6c51cd8122fb3dd476dd4e0767675df71cf3f0ce5a185cc5a32c4d7d30269c75aad56f6c9ef01fda4160dec01c2c8faffe3e673dcc3d593a8432093d5ce98adb63250400f8f0c39ee77892d4d93036c473c20a06d7a1e826d3ea469a2708d4f70f29f0cf04a0dd6f08aa3d9c0f9a566b64dd015d1b5ab027a747bbe27d3147a46a8e7a5269f4774f38a27ccefdcbdc5ef62684f3b9aaf7819c986864f5668b72de9c251a3dc04f7129c58e33028c6a8e530cf80fe7d331e2f1fb3463f8e21a41ca354740746b2cb80d7975980be9bc67d190fd98f8f3d785ab6c5b2f941f89b957a6dd74a5f6298c7c9aff9fc4b2aa521b5516377be7f48b6eae442a8c1d8241a225887e73ed5b0b818a0cff55cc4f5e059b652e986cc9b4f52f4d23cf72ffd597cf3f14acd8849eca9c99f88c9daec1fcab5564ac83496a53e4c39eccdba9c48e9c155b0b0110a5a62254df766765cbc435faf6628d265583fcbf85966127eecc0248c9e331cbc7ae0a7357d5a0b21c9b1a3fc7f98093d97b7023a4ae915f06a58c3e743efbc8d4491621def7afa046a96e69ddaf8aa0fa0ec3b4201d3ad9daa5da781fe6868da824ce571ae8cda657435960f99c3fadb2143d05a8a4e5493bd026b0705ef8cfef5e696b9568183ecfb3c76e3a002e60cd99d87dab5a349d5897a6bc85df0cae96c03de1a6a728bc452219760cca2036579dc87b852baffa82d7fff6911c3f3ec25d688b0d3e1e834f4c0b68de635a94a6f19cd1732c7154c0d2ea9d93119e366e8b4cc4ff2dec158aa89ba663c17b6aee5619fdb6879db998e98f91c8e1201bd2cc2cc7532dac3ac546058f8b07f49a980c70bddb0a1a94d22d81b71de190619d22c20416fcf45834e2bcd0a2e23ff76ef3fb87b37e72266ce20a86cec8095ad53a4a404fc13e314d450cc9faa198265d0652538ec8828b036bad6f52ce73298872a1988d50540f5d9cafe14fb1debd61926b687e23cdc4b571442875aa69aeb", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x19b0)

[ 2453.678428] loop7: detected capacity change from 0 to 135266304
16:46:48 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, 0x0, 0x0)
shutdown(r1, 0x0)

[ 2453.741855] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2453.748742] FAULT_INJECTION: forcing a failure.
[ 2453.748742] name failslab, interval 1, probability 0, space 0, times 0
[ 2453.749056] 9pnet: Could not find request transport: xen
[ 2453.751230] CPU: 1 PID: 12679 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2453.751241] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2453.751247] Call Trace:
[ 2453.751271]  dump_stack+0x107/0x167
[ 2453.751294]  should_fail.cold+0x5/0xa
[ 2453.757333]  ? iter_file_splice_write+0x165/0xc90
[ 2453.758360]  should_failslab+0x5/0x20
[ 2453.759171]  __kmalloc+0x72/0x390
[ 2453.759913]  iter_file_splice_write+0x165/0xc90
[ 2453.760909]  ? __fsnotify_parent+0x47a/0xb10
[ 2453.761852]  ? generic_splice_sendpage+0x140/0x140
[ 2453.762894]  ? pipe_to_user+0x170/0x170
[ 2453.763753]  ? security_file_permission+0xb1/0xe0
[ 2453.764790]  ? generic_splice_sendpage+0x140/0x140
[ 2453.765841]  direct_splice_actor+0x10f/0x170
[ 2453.766784]  splice_direct_to_actor+0x387/0x980
[ 2453.767779]  ? pipe_to_sendpage+0x380/0x380
[ 2453.768698]  ? do_splice_to+0x160/0x160
[ 2453.769552]  ? security_file_permission+0xb1/0xe0
[ 2453.770583]  do_splice_direct+0x1c4/0x290
[ 2453.771465]  ? splice_direct_to_actor+0x980/0x980
[ 2453.772482]  ? avc_policy_seqno+0x9/0x70
[ 2453.773366]  ? security_file_permission+0xb1/0xe0
[ 2453.774395]  do_sendfile+0x553/0x11e0
[ 2453.775222]  ? do_pwritev+0x270/0x270
[ 2453.776032]  ? wait_for_completion_io+0x270/0x270
[ 2453.777073]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2453.778067]  ? vfs_write+0x354/0xb10
[ 2453.778862]  __x64_sys_sendfile64+0x1d1/0x210
[ 2453.779815]  ? __ia32_sys_sendfile+0x220/0x220
[ 2453.780795]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2453.781927]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2453.783022]  do_syscall_64+0x33/0x40
[ 2453.783816]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2453.784918] RIP: 0033:0x7fa861eb0b19
[ 2453.785703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2453.789662] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2453.791291] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2453.792812] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2453.794328] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2453.795837] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2453.797358] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
16:46:48 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 84)

[ 2453.854374] loop7: detected capacity change from 0 to 135266304
[ 2453.871350] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:46:48 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000002c0))
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x7)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x3, 0x0, @fd_index=0x8, 0x100, 0x0, 0x0, 0x0, 0x0, {0x0, r2}}, 0x8b)
r3 = inotify_init()
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000000040)={0x0, ""/256, <r4=>0x0})
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r3, 0xc0709411, &(0x7f0000000240)={{r4, 0x8, 0x8, 0x2, 0x3, 0x96, 0x5, 0x7, 0x2, 0xe2c73a3, 0x9, 0x9, 0x81, 0x1, 0x1}, 0x8, [0x0]})

16:46:48 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180)) (fail_nth: 1)

16:46:48 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, 0x0, 0x0)
shutdown(r1, 0x0)

16:46:48 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xffffff8c, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

[ 2453.945916] loop7: detected capacity change from 0 to 135266304
[ 2453.950798] FAULT_INJECTION: forcing a failure.
[ 2453.950798] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[ 2453.954091] CPU: 1 PID: 12704 Comm: syz-executor.3 Not tainted 5.10.235 #1
[ 2453.955561] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2453.957322] Call Trace:
[ 2453.957880]  dump_stack+0x107/0x167
[ 2453.958658]  should_fail.cold+0x5/0xa
[ 2453.959484]  __alloc_pages_nodemask+0x182/0x600
[ 2453.960478]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 2453.961841]  ? add_mm_counter_fast+0x220/0x220
[ 2453.963079]  ? count_memcg_event_mm.part.0+0x10f/0x2f0
[ 2453.963565] FAULT_INJECTION: forcing a failure.
[ 2453.963565] name failslab, interval 1, probability 0, space 0, times 0
[ 2453.964260]  alloc_pages_current+0x187/0x280
[ 2453.966492]  __pmd_alloc+0x37/0x5e0
[ 2453.967261]  handle_mm_fault+0x1ac4/0x3500
[ 2453.968180]  ? __lock_acquire+0x1657/0x5b00
[ 2453.969110]  ? __pmd_alloc+0x5e0/0x5e0
[ 2453.969946]  ? vmacache_find+0x55/0x2a0
[ 2453.970792]  ? vmacache_update+0xce/0x140
[ 2453.971676]  do_user_addr_fault+0x56e/0xc60
[ 2453.972597]  exc_page_fault+0xa2/0x1a0
[ 2453.973441]  asm_exc_page_fault+0x1e/0x30
[ 2453.974324] RIP: 0010:__put_user_nocheck_4+0x3/0x11
[ 2453.975385] Code: 00 00 48 39 d9 73 54 0f 01 cb 66 89 01 31 c9 0f 01 ca e9 61 ea 1c 02 90 48 bb fd ef ff ff ff 7f 00 00 48 39 d9 73 34 0f 01 cb <89> 01 31 c9 0f 01 ca e9 42 ea 1c 02 66 90 48 bb f9 ef ff ff ff 7f
[ 2453.979271] RSP: 0018:ffff88804ed07d08 EFLAGS: 00050293
[ 2453.980393] RAX: 0000000000034000 RBX: 00007fffffffeffd RCX: 0000000020000180
[ 2453.981895] RDX: 0000000000040000 RSI: ffffffff837fb6d4 RDI: ffff888046bca378
[ 2453.983420] RBP: 0000000020000180 R08: 0000000000000000 R09: 0000000000000000
[ 2453.984927] R10: 0000000000000001 R11: 0000000000000001 R12: ffff888046188000
[ 2453.986437] R13: ffff888046188274 R14: 0000000020000180 R15: ffffffff854de640
[ 2453.987957]  ? bt_sock_ioctl+0x264/0x2f0
[ 2453.988822]  bt_sock_ioctl+0x276/0x2f0
[ 2453.989648]  sock_do_ioctl+0xd3/0x300
[ 2453.990457]  ? compat_ifr_data_ioctl+0x180/0x180
[ 2453.991453]  ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410
[ 2453.992663]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2453.993754]  ? do_vfs_ioctl+0x283/0x10d0
[ 2453.994619]  ? selinux_bprm_creds_for_exec+0xb60/0xb60
[ 2453.995727]  ? generic_block_fiemap+0x60/0x60
[ 2453.996679]  ? lock_downgrade+0x6d0/0x6d0
[ 2453.997567]  sock_ioctl+0x3ef/0x710
[ 2453.998342]  ? dlci_ioctl_set+0x30/0x30
[ 2453.999190]  ? selinux_file_ioctl+0xb6/0x270
[ 2454.000114]  ? dlci_ioctl_set+0x30/0x30
[ 2454.000962]  __x64_sys_ioctl+0x19a/0x210
[ 2454.001817]  do_syscall_64+0x33/0x40
[ 2454.002610]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2454.003684] RIP: 0033:0x7f92338a4b19
[ 2454.004470] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2454.008368] RSP: 002b:00007f9230e1a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2454.009968] RAX: ffffffffffffffda RBX: 00007f92339b7f60 RCX: 00007f92338a4b19
[ 2454.011476] RDX: 0000000020000180 RSI: 0000000000005411 RDI: 0000000000000005
[ 2454.012990] RBP: 00007f9230e1a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2454.014489] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2454.016005] R13: 00007fffde0226bf R14: 00007f9230e1a300 R15: 0000000000022000
[ 2454.017541] CPU: 0 PID: 12699 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2454.018334] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2454.019267] Call Trace:
[ 2454.019582]  dump_stack+0x107/0x167
[ 2454.020002]  should_fail.cold+0x5/0xa
[ 2454.020437]  ? create_object.isra.0+0x3a/0xa20
[ 2454.020976]  should_failslab+0x5/0x20
[ 2454.021409]  kmem_cache_alloc+0x5b/0x310
[ 2454.021872]  create_object.isra.0+0x3a/0xa20
[ 2454.022370]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2454.022948]  kmem_cache_alloc+0x159/0x310
[ 2454.023421]  start_this_handle+0x674/0x1390
[ 2454.023909]  ? kmem_cache_alloc+0x159/0x310
[ 2454.024419]  ? mark_held_locks+0x9e/0xe0
[ 2454.024899]  ? __jbd2_journal_unfile_buffer+0xb0/0xb0
[ 2454.025486]  ? trace_hardirqs_on+0x5b/0x180
[ 2454.025979]  ? kmem_cache_alloc+0x2a6/0x310
[ 2454.026467]  jbd2__journal_start+0x390/0x7e0
[ 2454.026971]  __ext4_journal_start_sb+0x214/0x390
[ 2454.027510]  ext4_dirty_inode+0xbc/0x130
[ 2454.027966]  ? ext4_setattr+0x20f0/0x20f0
[ 2454.028432]  __mark_inode_dirty+0x492/0xd40
[ 2454.028937]  generic_update_time+0x21c/0x370
[ 2454.029437]  file_update_time+0x43a/0x520
[ 2454.029904]  ? evict_inodes+0x470/0x470
[ 2454.030359]  ? down_write_killable+0x180/0x180
[ 2454.030876]  file_modified+0x7d/0xa0
[ 2454.031299]  ext4_file_write_iter+0x8f8/0x1530
[ 2454.031823]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2454.032332]  ? kasan_save_stack+0x32/0x40
[ 2454.032811]  ? kasan_save_stack+0x1b/0x40
[ 2454.033275]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2454.033849]  ? iter_file_splice_write+0x165/0xc90
[ 2454.034404]  ? direct_splice_actor+0x10f/0x170
[ 2454.034925]  ? splice_direct_to_actor+0x387/0x980
[ 2454.035648]  ? do_splice_direct+0x1c4/0x290
[ 2454.036134]  ? do_sendfile+0x553/0x11e0
[ 2454.036578]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2454.037109]  ? do_syscall_64+0x33/0x40
[ 2454.037562]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2454.038173]  do_iter_readv_writev+0x476/0x750
[ 2454.038687]  ? _cond_resched+0x10/0x30
[ 2454.039126]  ? new_sync_write+0x660/0x660
[ 2454.039594]  ? avc_policy_seqno+0x9/0x70
[ 2454.040054]  ? selinux_file_permission+0x92/0x520
[ 2454.040600]  ? security_file_permission+0xb1/0xe0
[ 2454.041162]  do_iter_write+0x191/0x700
[ 2454.041601]  ? trace_hardirqs_on+0x5b/0x180
[ 2454.042093]  vfs_iter_write+0x70/0xa0
[ 2454.042525]  iter_file_splice_write+0x726/0xc90
[ 2454.043060]  ? generic_splice_sendpage+0x140/0x140
[ 2454.043627]  ? security_file_permission+0xb1/0xe0
[ 2454.044175]  ? generic_splice_sendpage+0x140/0x140
[ 2454.044728]  direct_splice_actor+0x10f/0x170
[ 2454.045237]  splice_direct_to_actor+0x387/0x980
[ 2454.045771]  ? pipe_to_sendpage+0x380/0x380
[ 2454.046272]  ? do_splice_to+0x160/0x160
[ 2454.046723]  ? security_file_permission+0xb1/0xe0
[ 2454.047271]  do_splice_direct+0x1c4/0x290
[ 2454.047743]  ? splice_direct_to_actor+0x980/0x980
[ 2454.048289]  ? avc_policy_seqno+0x9/0x70
[ 2454.048760]  ? security_file_permission+0xb1/0xe0
[ 2454.049316]  do_sendfile+0x553/0x11e0
[ 2454.049752]  ? do_pwritev+0x270/0x270
[ 2454.050185]  ? wait_for_completion_io+0x270/0x270
[ 2454.050735]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2454.051265]  ? vfs_write+0x354/0xb10
[ 2454.051688]  __x64_sys_sendfile64+0x1d1/0x210
[ 2454.052194]  ? __ia32_sys_sendfile+0x220/0x220
[ 2454.052710]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2454.053304]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2454.053889]  do_syscall_64+0x33/0x40
[ 2454.054309]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2454.054889] RIP: 0033:0x7fa861eb0b19
[ 2454.055308] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2454.057386] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2454.058250] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2454.059055] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2454.059862] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2454.060666] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2454.061476] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
[ 2454.063818] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:46:48 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(0xffffffffffffffff, 0x0)

16:47:06 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180)) (fail_nth: 2)

16:47:06 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:47:06 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xfffffff6, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:47:06 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(0xffffffffffffffff, 0x0)

16:47:06 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, 0x0, 0x10100, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:47:06 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 85)

16:47:06 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r0, 0x0, r0)
r1 = accept4(r0, &(0x7f0000000040)=@x25={0x9, @remote}, &(0x7f00000000c0)=0x80, 0x0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:47:06 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
pipe(&(0x7f0000000080))
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r2, 0x0, r2)
r3 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0)
syz_io_uring_submit(r6, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(0x0, r5, &(0x7f0000000100)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x2, 0x0, 0x1b, 0x1, &(0x7f00000000c0)="23b961b79bf4ebb0fdd8d7", 0x0, 0x0, 0x1, {0x2}}, 0x4)
r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000018c0), 0x0, 0x0)
pread64(r7, 0x0, 0x0, 0x0)
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r9 = fcntl$dupfd(r8, 0x0, r8)
connect$bt_sco(r9, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r1)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r9, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000240)={&(0x7f0000000400)={0x1e0, r10, 0x400, 0x70bd27, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_REKEY_DATA={0x84, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="402316bb508a9f63b00f255464143d403cdc627691fe3709"}, @NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="05433fe8dd89f93ceac582c079b22945b959737764e09cd2"}, @NL80211_REKEY_DATA_AKM={0x8, 0x4, 0x10001}, @NL80211_REKEY_DATA_AKM={0x8, 0x4, 0x9}, @NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="daa189243b6f6435615560069c8c58df"}, @NL80211_REKEY_DATA_KEK={0x24, 0x1, @kek_ext="be6145fbb74f8626b4a0ed8c3ca61bb386044dfd6b1d897d3303d73836e84564"}]}, @NL80211_ATTR_REKEY_DATA={0x6c, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_KCK={0x14, 0x2, @kck="164b0b32383d8cd4feee0df4648d3959"}, @NL80211_REKEY_DATA_AKM={0x8, 0x4, 0x80000000}, @NL80211_REKEY_DATA_AKM={0x8, 0x4, 0x3}, @NL80211_REKEY_DATA_KEK={0x24, 0x1, @kek_ext="79af42899b10dfb8587da08ff3e1aec3a57fe13c86236dddd684067057c50d58"}, @NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="54b65d49481c7fde4887abcb20cb7c00"}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "460383f87362a3f4"}]}, @NL80211_ATTR_REKEY_DATA={0x60, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="139ad5380cbdda88c4f865c032166d17"}, @NL80211_REKEY_DATA_AKM={0x8}, @NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="10dcd5b99469f8f8588a8c44d61ffeb915d5ad81fdb7f95c"}, @NL80211_REKEY_DATA_AKM={0x8, 0x4, 0x799}, @NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="a861188026c8c78a64195d79e99a920db9f734493f84a552"}]}, @NL80211_ATTR_REKEY_DATA={0x18, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_KCK={0x14, 0x2, @kck="04b4e340b68f128fbf757b58cc410c0b"}]}, @NL80211_ATTR_REKEY_DATA={0x40, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="7cc7c304b2633efaa682d2ff4a8a8374"}, @NL80211_REKEY_DATA_KCK={0x14, 0x2, @kck="56e433da7a346194af5431eb5b722daf"}, @NL80211_REKEY_DATA_KCK={0x14, 0x2, @kck="024eded97a13ac4feb742c77be93f08c"}]}, @NL80211_ATTR_REKEY_DATA={0xc, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_AKM={0x8, 0x4, 0xfffffff8}]}, @NL80211_ATTR_REKEY_DATA={0x18, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_KCK={0x14, 0x2, @kck="96a9a8ebf475566f41fb8b87e38759ab"}]}]}, 0x1e0}, 0x1, 0x0, 0x0, 0x20000010}, 0x4000004)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0, 0x8, 0x8, 0x1, {0x0, 0x0, r2}}, 0xd0f)
connect$bt_sco(r1, &(0x7f0000000000), 0x8)

[ 2471.894569] loop7: detected capacity change from 0 to 135266304
[ 2471.899300] FAULT_INJECTION: forcing a failure.
[ 2471.899300] name failslab, interval 1, probability 0, space 0, times 0
[ 2471.901698] CPU: 0 PID: 12732 Comm: syz-executor.3 Not tainted 5.10.235 #1
[ 2471.903156] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2471.904925] Call Trace:
[ 2471.905504]  dump_stack+0x107/0x167
[ 2471.906277]  should_fail.cold+0x5/0xa
[ 2471.907083]  ? __pmd_alloc+0x94/0x5e0
[ 2471.907896]  should_failslab+0x5/0x20
[ 2471.908709]  kmem_cache_alloc+0x5b/0x310
[ 2471.909597]  __pmd_alloc+0x94/0x5e0
[ 2471.910371]  handle_mm_fault+0x1ac4/0x3500
[ 2471.911271]  ? __lock_acquire+0x1657/0x5b00
[ 2471.912195]  ? __pmd_alloc+0x5e0/0x5e0
[ 2471.913040]  ? vmacache_find+0x55/0x2a0
[ 2471.913874]  ? vmacache_update+0xce/0x140
[ 2471.914770]  do_user_addr_fault+0x56e/0xc60
[ 2471.915694]  exc_page_fault+0xa2/0x1a0
[ 2471.916525]  asm_exc_page_fault+0x1e/0x30
[ 2471.917413] RIP: 0010:__put_user_nocheck_4+0x3/0x11
[ 2471.918654] Code: 00 00 48 39 d9 73 54 0f 01 cb 66 89 01 31 c9 0f 01 ca e9 61 ea 1c 02 90 48 bb fd ef ff ff ff 7f 00 00 48 39 d9 73 34 0f 01 cb <89> 01 31 c9 0f 01 ca e9 42 ea 1c 02 66 90 48 bb f9 ef ff ff ff 7f
[ 2471.922677] RSP: 0018:ffff88804577fd08 EFLAGS: 00050293
[ 2471.923804] RAX: 0000000000034000 RBX: 00007fffffffeffd RCX: 0000000020000180
[ 2471.925313] RDX: 0000000000040000 RSI: ffffffff837fb6d4 RDI: ffff88801a872378
[ 2471.926831] RBP: 0000000020000180 R08: 0000000000000000 R09: 0000000000000000
[ 2471.928332] R10: 0000000000000001 R11: 0000000000000001 R12: ffff888047498000
[ 2471.929849] R13: ffff888047498274 R14: 0000000020000180 R15: ffffffff854de640
[ 2471.931369]  ? bt_sock_ioctl+0x264/0x2f0
[ 2471.932233]  bt_sock_ioctl+0x276/0x2f0
[ 2471.933066]  sock_do_ioctl+0xd3/0x300
[ 2471.933870]  ? compat_ifr_data_ioctl+0x180/0x180
[ 2471.934873]  ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410
[ 2471.936092]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2471.937194]  ? do_vfs_ioctl+0x283/0x10d0
[ 2471.937611] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2471.938060]  ? selinux_bprm_creds_for_exec+0xb60/0xb60
[ 2471.940378]  ? generic_block_fiemap+0x60/0x60
[ 2471.941336]  ? lock_downgrade+0x6d0/0x6d0
[ 2471.942213]  sock_ioctl+0x3ef/0x710
[ 2471.942981]  ? dlci_ioctl_set+0x30/0x30
[ 2471.943830]  ? selinux_file_ioctl+0xb6/0x270
[ 2471.944768]  ? dlci_ioctl_set+0x30/0x30
[ 2471.945617]  __x64_sys_ioctl+0x19a/0x210
[ 2471.946481]  do_syscall_64+0x33/0x40
[ 2471.947274]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2471.948357] RIP: 0033:0x7f92338a4b19
[ 2471.949157] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2471.953078] RSP: 002b:00007f9230e1a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2471.954675] RAX: ffffffffffffffda RBX: 00007f92339b7f60 RCX: 00007f92338a4b19
[ 2471.956194] RDX: 0000000020000180 RSI: 0000000000005411 RDI: 0000000000000005
[ 2471.957718] RBP: 00007f9230e1a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2471.959222] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2471.960732] R13: 00007fffde0226bf R14: 00007f9230e1a300 R15: 0000000000022000
16:47:06 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:47:06 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000040)={0x1f, @fixed}, 0x8)

[ 2471.986382] 9pnet: Could not find request transport: xen
[ 2471.988314] FAULT_INJECTION: forcing a failure.
[ 2471.988314] name failslab, interval 1, probability 0, space 0, times 0
[ 2471.990721] CPU: 1 PID: 12725 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2471.992198] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2471.993962] Call Trace:
[ 2471.994529]  dump_stack+0x107/0x167
[ 2471.995302]  should_fail.cold+0x5/0xa
[ 2471.996113]  ? jbd2__journal_start+0x190/0x7e0
[ 2471.997103]  should_failslab+0x5/0x20
[ 2471.997917]  kmem_cache_alloc+0x5b/0x310
[ 2471.998784]  jbd2__journal_start+0x190/0x7e0
[ 2471.999719]  __ext4_journal_start_sb+0x214/0x390
[ 2472.000727]  ext4_dirty_inode+0xbc/0x130
[ 2472.001595]  ? ext4_setattr+0x20f0/0x20f0
[ 2472.002473]  __mark_inode_dirty+0x492/0xd40
[ 2472.003393]  generic_update_time+0x21c/0x370
[ 2472.004319]  file_update_time+0x43a/0x520
[ 2472.005202]  ? evict_inodes+0x470/0x470
[ 2472.006045]  ? down_write_killable+0x180/0x180
[ 2472.007015]  file_modified+0x7d/0xa0
[ 2472.007798]  ext4_file_write_iter+0x8f8/0x1530
[ 2472.008774]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2472.009741]  ? kasan_save_stack+0x32/0x40
[ 2472.010614]  ? kasan_save_stack+0x1b/0x40
[ 2472.011491]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2472.012565]  ? iter_file_splice_write+0x165/0xc90
[ 2472.013588]  ? direct_splice_actor+0x10f/0x170
[ 2472.014542]  ? splice_direct_to_actor+0x387/0x980
[ 2472.015550]  ? do_splice_direct+0x1c4/0x290
[ 2472.016454]  ? do_sendfile+0x553/0x11e0
[ 2472.017295]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2472.018274]  ? do_syscall_64+0x33/0x40
[ 2472.019097]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2472.020221]  do_iter_readv_writev+0x476/0x750
[ 2472.021177]  ? _cond_resched+0x10/0x30
[ 2472.022000]  ? new_sync_write+0x660/0x660
[ 2472.022882]  ? avc_policy_seqno+0x9/0x70
[ 2472.023944]  ? selinux_file_permission+0x92/0x520
[ 2472.025259]  ? security_file_permission+0xb1/0xe0
[ 2472.026536]  do_iter_write+0x191/0x700
[ 2472.027399]  ? trace_hardirqs_on+0x5b/0x180
[ 2472.028346]  vfs_iter_write+0x70/0xa0
[ 2472.029239]  iter_file_splice_write+0x726/0xc90
[ 2472.030257]  ? generic_splice_sendpage+0x140/0x140
[ 2472.031361]  ? security_file_permission+0xb1/0xe0
[ 2472.032382]  ? generic_splice_sendpage+0x140/0x140
[ 2472.033435]  direct_splice_actor+0x10f/0x170
[ 2472.034370]  splice_direct_to_actor+0x387/0x980
[ 2472.035357]  ? pipe_to_sendpage+0x380/0x380
[ 2472.036268]  ? do_splice_to+0x160/0x160
[ 2472.037114]  ? security_file_permission+0xb1/0xe0
[ 2472.038176]  do_splice_direct+0x1c4/0x290
[ 2472.039044]  ? splice_direct_to_actor+0x980/0x980
[ 2472.040056]  ? avc_policy_seqno+0x9/0x70
[ 2472.040916]  ? security_file_permission+0xb1/0xe0
[ 2472.041947]  do_sendfile+0x553/0x11e0
[ 2472.042759]  ? do_pwritev+0x270/0x270
[ 2472.043570]  ? wait_for_completion_io+0x270/0x270
[ 2472.044577]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2472.045559]  ? vfs_write+0x354/0xb10
[ 2472.046388]  __x64_sys_sendfile64+0x1d1/0x210
[ 2472.047363]  ? __ia32_sys_sendfile+0x220/0x220
[ 2472.048369]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2472.049806]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2472.050932]  do_syscall_64+0x33/0x40
[ 2472.051741]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2472.053032] RIP: 0033:0x7fa861eb0b19
[ 2472.053999] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2472.058314] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2472.059932] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2472.061463] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2472.063352] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2472.064931] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2472.066572] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
[ 2472.071903] loop7: detected capacity change from 0 to 135266304
[ 2472.098951] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:47:23 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:47:23 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180)) (fail_nth: 3)

16:47:23 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r0, 0x0, r0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r1, 0x0, r1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r4 = dup3(r2, r3, 0x80000)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)

16:47:23 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x0, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:47:23 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xedc000000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:47:23 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 86)

16:47:23 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(0xffffffffffffffff, 0x0)

16:47:23 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x7)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0)
syz_io_uring_submit(r6, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r7 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0), 0x230a00, 0x0)
fsetxattr$trusted_overlay_opaque(r7, &(0x7f0000000180), &(0x7f00000001c0), 0x2, 0x3)
r8 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r9=>0x0, &(0x7f0000000140)=<r10=>0x0)
syz_io_uring_submit(r9, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r11 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r8, 0x0)
syz_io_uring_submit(r11, r10, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r6, r10, &(0x7f0000000080)=@IORING_OP_TIMEOUT={0xb, 0x2, 0x0, 0x0, 0x7, &(0x7f0000000040), 0x1, 0x0, 0x1}, 0x80)
r12 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$inet6_mreq(r7, 0x29, 0x1b, &(0x7f0000000280)={@dev, <r13=>0x0}, &(0x7f0000000400)=0x14)
sendmsg$ETHTOOL_MSG_CHANNELS_GET(r7, &(0x7f0000000500)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x78, 0x0, 0x1, 0x70bd25, 0x25dfdbfc, {}, [@HEADER={0x64, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r13}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_team\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x78}, 0x1, 0x0, 0x0, 0x5}, 0x20008800)
fcntl$dupfd(r2, 0x406, r12)
ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r2, 0xf502, 0x0)

[ 2488.925989] FAULT_INJECTION: forcing a failure.
[ 2488.925989] name failslab, interval 1, probability 0, space 0, times 0
[ 2488.928459] CPU: 1 PID: 12755 Comm: syz-executor.3 Not tainted 5.10.235 #1
[ 2488.929942] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2488.931704] Call Trace:
[ 2488.932266]  dump_stack+0x107/0x167
[ 2488.933039]  should_fail.cold+0x5/0xa
[ 2488.933861]  ? create_object.isra.0+0x3a/0xa20
[ 2488.934832]  should_failslab+0x5/0x20
[ 2488.935642]  kmem_cache_alloc+0x5b/0x310
[ 2488.936505]  create_object.isra.0+0x3a/0xa20
[ 2488.937455]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2488.938536]  kmem_cache_alloc+0x159/0x310
[ 2488.939426]  __pmd_alloc+0x94/0x5e0
[ 2488.940205]  handle_mm_fault+0x1ac4/0x3500
[ 2488.941106]  ? __lock_acquire+0x1657/0x5b00
[ 2488.942032]  ? __pmd_alloc+0x5e0/0x5e0
[ 2488.942868]  ? vmacache_find+0x55/0x2a0
[ 2488.943708]  ? vmacache_update+0xce/0x140
[ 2488.944593]  do_user_addr_fault+0x56e/0xc60
[ 2488.945533]  exc_page_fault+0xa2/0x1a0
[ 2488.946372]  asm_exc_page_fault+0x1e/0x30
[ 2488.947253] RIP: 0010:__put_user_nocheck_4+0x3/0x11
[ 2488.948308] Code: 00 00 48 39 d9 73 54 0f 01 cb 66 89 01 31 c9 0f 01 ca e9 61 ea 1c 02 90 48 bb fd ef ff ff ff 7f 00 00 48 39 d9 73 34 0f 01 cb <89> 01 31 c9 0f 01 ca e9 42 ea 1c 02 66 90 48 bb f9 ef ff ff ff 7f
[ 2488.952213] RSP: 0018:ffff888047c57d08 EFLAGS: 00050293
[ 2488.953352] RAX: 0000000000034000 RBX: 00007fffffffeffd RCX: 0000000020000180
[ 2488.954871] RDX: 0000000000040000 RSI: ffffffff837fb6d4 RDI: ffff88804cb1a378
[ 2488.956393] RBP: 0000000020000180 R08: 0000000000000000 R09: 0000000000000000
[ 2488.957920] R10: 0000000000000001 R11: 0000000000000001 R12: ffff8880201ad000
[ 2488.959454] R13: ffff8880201ad274 R14: 0000000020000180 R15: ffffffff854de640
[ 2488.960997]  ? bt_sock_ioctl+0x264/0x2f0
[ 2488.961870]  bt_sock_ioctl+0x276/0x2f0
16:47:23 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r3 = fcntl$dupfd(r0, 0x406, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed}, 0x7)

[ 2488.962695]  sock_do_ioctl+0xd3/0x300
[ 2488.963700]  ? compat_ifr_data_ioctl+0x180/0x180
[ 2488.964755]  ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410
[ 2488.964820] 9pnet: Could not find request transport: xen
[ 2488.965958]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2488.965978]  ? do_vfs_ioctl+0x283/0x10d0
[ 2488.965997]  ? selinux_bprm_creds_for_exec+0xb60/0xb60
[ 2488.966023]  ? generic_block_fiemap+0x60/0x60
[ 2488.970920]  ? lock_downgrade+0x6d0/0x6d0
[ 2488.971808]  sock_ioctl+0x3ef/0x710
[ 2488.972583]  ? dlci_ioctl_set+0x30/0x30
[ 2488.973438]  ? selinux_file_ioctl+0xb6/0x270
[ 2488.974386]  ? dlci_ioctl_set+0x30/0x30
[ 2488.975230]  __x64_sys_ioctl+0x19a/0x210
[ 2488.976091]  do_syscall_64+0x33/0x40
[ 2488.976876]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2488.977961] RIP: 0033:0x7f92338a4b19
[ 2488.978747] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2488.983239] RSP: 002b:00007f9230e1a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2488.984843] RAX: ffffffffffffffda RBX: 00007f92339b7f60 RCX: 00007f92338a4b19
[ 2488.986339] RDX: 0000000020000180 RSI: 0000000000005411 RDI: 0000000000000005
[ 2488.987820] RBP: 00007f9230e1a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2488.989322] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2488.990797] R13: 00007fffde0226bf R14: 00007f9230e1a300 R15: 0000000000022000
[ 2489.003586] loop7: detected capacity change from 0 to 135266304
[ 2489.024477] FAULT_INJECTION: forcing a failure.
[ 2489.024477] name failslab, interval 1, probability 0, space 0, times 0
[ 2489.026539] CPU: 0 PID: 12770 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2489.027794] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2489.029302] Call Trace:
[ 2489.029784]  dump_stack+0x107/0x167
[ 2489.030437]  should_fail.cold+0x5/0xa
[ 2489.031120]  ? create_object.isra.0+0x3a/0xa20
[ 2489.031949]  should_failslab+0x5/0x20
[ 2489.032629]  kmem_cache_alloc+0x5b/0x310
[ 2489.033359]  create_object.isra.0+0x3a/0xa20
[ 2489.034137]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2489.035048]  kmem_cache_alloc_trace+0x151/0x320
[ 2489.035884]  __iomap_dio_rw+0x1ee/0x1110
[ 2489.036618]  ? jbd2_journal_stop+0x188/0xdc0
[ 2489.037410]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2489.038237]  ? ext4_orphan_add+0x253/0x9e0
[ 2489.038993]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2489.039876]  ? ext4_empty_dir+0xae0/0xae0
[ 2489.040610]  ? jbd2__journal_start+0xf3/0x7e0
[ 2489.041427]  iomap_dio_rw+0x31/0x90
[ 2489.042079]  ext4_file_write_iter+0xe0e/0x1530
[ 2489.042906]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2489.043712]  ? kasan_save_stack+0x32/0x40
[ 2489.044451]  ? kasan_save_stack+0x1b/0x40
[ 2489.045191]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2489.046100]  ? iter_file_splice_write+0x165/0xc90
[ 2489.046954]  ? direct_splice_actor+0x10f/0x170
[ 2489.047762]  ? splice_direct_to_actor+0x387/0x980
[ 2489.048620]  ? do_splice_direct+0x1c4/0x290
[ 2489.049396]  ? do_sendfile+0x553/0x11e0
[ 2489.050094]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2489.050921]  ? do_syscall_64+0x33/0x40
[ 2489.051610]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2489.052559]  do_iter_readv_writev+0x476/0x750
[ 2489.053352]  ? _cond_resched+0x10/0x30
[ 2489.054036]  ? new_sync_write+0x660/0x660
[ 2489.054766]  ? avc_policy_seqno+0x9/0x70
[ 2489.055492]  ? selinux_file_permission+0x92/0x520
[ 2489.056342]  ? security_file_permission+0xb1/0xe0
[ 2489.057209]  do_iter_write+0x191/0x700
[ 2489.057910]  ? trace_hardirqs_on+0x5b/0x180
[ 2489.058682]  vfs_iter_write+0x70/0xa0
[ 2489.059360]  iter_file_splice_write+0x726/0xc90
[ 2489.060191]  ? generic_splice_sendpage+0x140/0x140
[ 2489.061068]  ? security_file_permission+0xb1/0xe0
[ 2489.061930]  ? generic_splice_sendpage+0x140/0x140
[ 2489.062798]  direct_splice_actor+0x10f/0x170
[ 2489.063580]  splice_direct_to_actor+0x387/0x980
[ 2489.064395]  ? pipe_to_sendpage+0x380/0x380
[ 2489.065170]  ? do_splice_to+0x160/0x160
[ 2489.065869]  ? security_file_permission+0xb1/0xe0
[ 2489.066728]  do_splice_direct+0x1c4/0x290
[ 2489.067471]  ? splice_direct_to_actor+0x980/0x980
[ 2489.068322]  ? avc_policy_seqno+0x9/0x70
[ 2489.069039]  ? security_file_permission+0xb1/0xe0
[ 2489.069893]  do_sendfile+0x553/0x11e0
[ 2489.070572]  ? do_pwritev+0x270/0x270
[ 2489.071238]  ? wait_for_completion_io+0x270/0x270
[ 2489.072097]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2489.072915]  ? vfs_write+0x354/0xb10
[ 2489.073569]  __x64_sys_sendfile64+0x1d1/0x210
[ 2489.074348]  ? __ia32_sys_sendfile+0x220/0x220
[ 2489.075160]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2489.076088]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2489.077003]  do_syscall_64+0x33/0x40
[ 2489.077662]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2489.078570] RIP: 0033:0x7fa861eb0b19
[ 2489.079218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2489.082442] RSP: 002b:00007fa85f405188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2489.083790] RAX: ffffffffffffffda RBX: 00007fa861fc4020 RCX: 00007fa861eb0b19
[ 2489.085039] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2489.086285] RBP: 00007fa85f4051d0 R08: 0000000000000000 R09: 0000000000000000
[ 2489.087513] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2489.088740] R13: 00007ffe88912c6f R14: 00007fa85f405300 R15: 0000000000022000
16:47:23 executing program 5:
connect$bt_sco(0xffffffffffffffff, &(0x7f0000000040), 0x8)
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
connect$bt_sco(r0, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

[ 2489.095155] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:47:23 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r1, 0xc0189372, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r2=>r0, {0xa6b8}}, './file0\x00'})
ioctl$sock_ipv6_tunnel_SIOCCHGPRL(r2, 0x89f7, &(0x7f0000000180)={'syztnl1\x00', &(0x7f0000000100)={'ip6_vti0\x00', 0x0, 0x4, 0x1, 0x7f, 0x7fffffff, 0x20, @private0={0xfc, 0x0, '\x00', 0x1}, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x700, 0x7800, 0x9, 0x80000000}})
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r3, 0x0, r3)
read(r3, &(0x7f00000002c0), 0x0)
r4 = creat(&(0x7f0000000200)='./file0\x00', 0xd0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)
pipe(&(0x7f0000000040)={<r5=>0xffffffffffffffff})
ioctl$FITRIM(r0, 0xc0185879, &(0x7f00000001c0)={0xffffffffffffff5c, 0x1, 0x1})
bind$bt_sco(r5, &(0x7f0000000080)={0x1f, @none}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r5, 0xc0189379, &(0x7f0000000240)={{0x1, 0x1, 0x18, <r6=>r5}, './file1\x00'})
ioctl$BTRFS_IOC_RESIZE(r6, 0x50009403, &(0x7f0000000280)={{r4}, {@void, @actul_num={@void, 0x7f, 0x6b}}})

[ 2489.126930] loop7: detected capacity change from 0 to 135266304
16:47:23 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180)) (fail_nth: 4)

[ 2489.163215] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:47:23 executing program 1:
r0 = syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = fork()
r2 = gettid()
kcmp(r1, r2, 0x3, r0, 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x2, r1, 0x3, &(0x7f0000000000))
r3 = getpid()
tkill(r3, 0x34)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = fcntl$dupfd(r4, 0x0, r4)
r6 = openat$cgroup_int(r5, &(0x7f0000000080)='blkio.reset_stats\x00', 0x2, 0x0)
fsetxattr$trusted_overlay_upper(r6, &(0x7f00000000c0), &(0x7f0000000100)=ANY=[@ANYBLOB="00fb15050335f721bea371536c7b9e34a8c7349ac31e490a3b13b184e736b8d4956af57e6f8019a7283cb7d1a811b0173c215560113623de602bf0aa654e6bcfedcb8c3513f9851fadb31a698a498f8a3d3b3c99d3e316a4ebabcf61345cecf349f167790c7d2143ebc106ccefa3e0050474bbd5013bf25ec70f5780f2249ea1ef5c8039a745deafe3ba99cd0e99dde9bf8e0660473545e77791f5784688e6403925a0be713987f616d981746b25e40af946acf4ca6afbeab0a412690cd2392e168ee09716068cede5da75d0340ca7a207f7854d42c3e8bf43dc892a9b8fdc8a12b3d0c85bc9e04fc2a24844f3423794ff413c0b8238ae4a555fc74907b9b6286cc21ed1ff09aa931471f3247012c1cbf99278bcb4ecb3ee33a878a74d20d474bde3905c365e3497fd35b25fdb0e2b1165f082e22099d928857d52398c4176e245ddc7e317485c788e555543cad72172219aa5e2a3044e50bc4619fa3279415c2a45aa46207b7cb2164f678bf037f7df92a7a5b8425d0959f2c59d47b84076e1b7e76355671fde4c22b39ea4f0d4098ebf040544ccc1ed8a18274cfc2c12f57b1fa4273fd927f39e2fcb62b6662910f28809b829c7d6653b83925b6b38c12b6a9e731ddfe1736a6c2cb041d04d3f1667a6acac9a212454028485356be8e99a6dc76af93142b2938e255f8bcbe5bbbf95df402efa700f6dda81540296a1d8deeaf28076222b953a8eab0cdb8dd01815ac6e53d50eae8298e5b75e6fe4024c3a177d0133d337959612952d2a5bddc41b5a300aad71340b0eb960074aff7fe007562d919103a2da4218f7b0e07461d72b892cb43c4ab9a4abd76b692fafe6bc56905ad246b17b0dd09c0461a8bfa329c1b82fdb4175f7edbbac646a85b8c6c8d34ec2a90c8d49882514395c053195aa9645596858b2020c48758b8bfeffd0e17f6fdc2bd3f20f58f601849d46faaf477b7fc4ae2f657b15c0c68245704e62358b444f74fc021a2e4f72b9a5d6462c3f8d1b0e7f7921549d496ba71f0e09dfa5c0098b444e9bf7a25efb476235182681b6a806a554b9bf4812dac46b46025cda34061ec680671f10cddf13084b186f224d4a0fd78b6f69d78905f8a7f78b31e381217ea781eb9c8f19aeeb434b54bf781d6e2325a43acabce3d8d67eed6d3767eeb6ea0d94c02504d46a8340560da1c725fb9964259145dfe6c551a6fa36d429213242e2dca80dd876aae116fd4321d9e0c6a31c9d4043f4c98489b750dc681cd10fd80350ff59874af20a980283ed7927af5dedbb727ecc6b46ad12858baee8e32386cf4a9e90c9f05fbee7038c5426254947fe9ef48db43b9905d3ee0340c942adf9050b59aa255be141fef8879dcac17b7c47538faabfe792cfc2fec80bc986455c84603008b7f2b08b46c4ffdee9337f0d90881a5ce52c7622935e612a1bfcd54d2ee52de0b2e641a62621ad2c6dcdbc0fd7ef473e854c51726e7483d99b8decbd2cb76ce3d343b6b53a7744cb474a28ce2a42a210f0919d3420af343e59e5e4d91d57e6ec5e4b09386149d229f7fccef7180705d093df55be85d6f8e680b1177b0f8751267f6d92d22c33ca4fe9d58f8617f08b2aa5be2d0951fa00905bf15ec8d6efd5d6da065fb2b4122ea0837701198675840a6741aaf955988164f5cf5441eef15d4dc0e462f68e87e663da7110d7c31a04423ba15cc9ed97e948aab6801b8eb019025d513ffbae92922d028171893b7b024765d1c04cc7b6bf4f7119832489d49d18cfd420efd5f49473a20edfadb537633d502c7e3b894595e15d5810aae083987353e6b114698d0ea9a59bc1847d936043a1796886177584e3b7b21c300cd909768ef706f648b5a1c366b69b6b374e0b0a2c3febd6c34457e98c51d56c1dc63a446febd8006a39d6b6f402ec8a2dd6162efe380f747e64a6ad5dfd1a94788027169e72f25e099e451b34cac1ee067ff028b0846639c9b864add10b533708038d1a4454a97155a6b978adca15846c10ba91b9b3dddd9f214a958e39610fae479b89dfd1c4eb5062394989f069b96680363d34863508f0c55b0f840cb3f3b46b27ddb9e68372c631b8c32971599cb9cef30dcbe2dbf74b8afaaffe115a75d93ad48a9258dc584e4ba43877207671dffc526a831681337460a27c56c695aff853c72c2eb0ea663f1699bb06a7a00e49d5104dafedec84036dcdd7eb5395c68fd63e869f83ba677f9e124fa5322f64849c84c95d20c7c8f511c16b49ac1320cc6857c3fcdccb319ac322411d0b5e66f538231f71e60e6c5fcc63f2b3ca501b6f5bb7c9153fdf36962c90147a190df183c0beac62f0e460d38d78e0a82088eda67362c46c6739a0b10e84acf7f9da7e79aa147dabe288ca2089e4135e92a332db52fc18ddc2eb3f27724b41915c317917b3182e68348f4ac14849bafba06c7941b8a6b5aac759623cbb1445e51493cbe43f96cd9be6efd46dc6c113b58839308b8ea5ce142a948f0a792a7d26002be0ea5e453ccb3d5232f1d0af9a08cc6164623d49134ee60c10ba5bc47dee679d59c9fc9603ce8a79d8fd295f447286c32ebe62d76e9feee89b17969ad0595cddd042911ea3585fcf821e3eee84682957b93822b4549d7e109cbd8984637a2959c9572fa5a8ef7b18547730a4809a2db63fe98eab760623fa78f96d75098d744ecdafd09e58427ec6f7ab1a0f47c7974a1acb8d364ca469e62d157450df97448cbf3cb17d8f04583dfde409f810fdcd66f844b3ef836984e3f303f740d9154a1cd109f280fa51ed366aa3ce1fa83facf0a9fa3ec9b6a15b9399e807637d84bc8f73f832e0573a1100221ba069e651384b9bcf7159db214457447a273f6fdeca0ca64046205e81f10834b1540eb9b7870fd92886e8240d9028a2952a19388a7185c8e5997a7e9984effdd5166b498aa15a51c5f1d950e951fc3f0ab6ed89b6cc237cfdb26fa3507ae63425114599e1b4d1b60b161cb0fc35b81ecdc27765a5de9a37b58a8c386a1fb184fd6006db2910d9511d1e5cd458dae1576b11ecab273a3bff15fadb5a64f3a7fee6c745605d233bdda3ed563edcfde54596be6ab47af7fbceb65056946d6b32dc3ed6df9a8bab65582893747a6ccf89d8c0074a151c5b345c3068d3616978f042bf67e9f3a365668c2dc0bb953a3123cc9633e39ac14d9e7469b8eb2ca686bc662761e70c9d0daa35e65bf64dbe74b1b231a04c61df2bb7c546e4ef05beaa0f78ce5f3a9d0182fde7f83c5ffe216c3030a7fc95a016e901268c40b451599ddae9ebdee514d8f7ebc6808b4e2545f2e72bb8ea5c505d1d6d3e915bbe7436d8256a06cbcaa211f0fcae0ba28083cde50af0ae508f6c990c94bc155053e7ee4e67a9ef7c5c80310643fd74fe9edb1f762f6ce0c1ddf442c769a24eb4222a5ed1b3df80cb565e31ea69fa62ec697a494d8ebe9480979ebc3bf37d6fc291ae9dab8003848443d2ddd2b033f16ba4f3137d08ef65c23a59c4e474bc87ce3b64f5842401096587e443d39b1deadbdfd98564f1e9b034717768f232155ccc19fe130028cfe7a67baa310b676a01a00590958db3d1db77407f512acde6e764eafba5fc7196bb29b1492e4624fc7836b52957bfd684ad675889a19d13700e384fe81e5406da7937b0eb58d7d3fec6a4d44d0792fb6556f756aced37c3f04f5c6ad0686ae3f861e38936461503cc21d0ad89a9b83cafea37e0b98e1da091453ba86c1e963df52c010275d61abb44bd0947f4a9e6bd42fd74617816f0fdd408b5e7f2b7cf2896ef7d375f0e7305834b0b67969c192e9328040b7b5b11bd956d550c2b556766acd18fbaf52f82b3d0da1a79528ef1fe948c738de356ca4ec5fceae8b0780965be7da40e12c402054f6c9d64699d3691dbe3a2943fd7db9013f510af1e7ed3b018c53643cc2c62d7b1f594cf9aa3d0d603b30af5fcf946be8e515bf5a22cda1eba573573fbc769f1a8ba11cb2ab682f5795bdf56cb2fd5329e053fcea562a254644b97d1d17ae45c7b5902dcb54eab81c7950f72e20f256d07e1606621eb7bfcb451829edc68535e24d85cfa777b9d513fefafa2fde8f847a31882b0d9406efe209ef0f68bc807ecffcbe33d2a69068f79542a226ea506c1b8d95d2030f6cf72fdf64ecefe52ffdcdcb91c8ededd7e50b4e514c22a473a2cefdf9c688403daaa8a529c3be4a1c518895f0f67fd280473092c555d9fff2030046046b485e74a074fe77361db4bffb9cb227c1ceff4767e645c59c3854231e2c72c60df2bd33f8545fd0d0066f3b65c5c695442998778359d81407f915aebf7584994510a8e2040999461a8a17cfdcb43d12439c75260cc8a5f4b48f003b6cfb4e314d5b09e7309c3b5c0d4dbf030de9826e982a141808d2f43241c36c2649491ecd16acee764074de19423720ade0d14828c9281af1717580acb389513197289557d9cbae1182b903a2fd56457ad24456185b52aeb549e6f7fb4715562b1f6fd3de63488f77a9728db78fb371bcb5c7e70e008b105167b457905885caeaa27c3f134c9f54dfbbb3616f02b3824edf649c077b2976f4b08404a074ebf8d25123d408a95c23256ca0241575ec5077c859365f99f0a2ecb34b9ba64ed0ea83b5d6ca58c04c448ec77cc49d4c280096ed3bf1d0d6de194b9d2f947b42ed294f67c4401d3ad4a09895b77b04bcab1767f9701ee25062d3b35af130ebbd172c2e7e0fc8db5cc0c2245fe6ccbc3c72db9d5b2d1b81e4a2e6d5e0df309063b52477e73e7304eed654900abb78043d3a8d5080174f199536687f1499999158a26bc6b0e9fbe68ba588d831b83b83d25f6782ebe4da810d4d22ddcdf9581e3eae7308264a63bdbe19481b68373a11db9b02308149951a132cc5ac8f47c8556d1fd14d01a070037761723e725a0b381e7e9c3d096a3bfa6854b9329640f943bc887329b68949a006761396c340187ee1fd0706666803b612985b8bd1fd1ee4022410232e58c23df4dca2d9d703b7b723e4b2ed8312cdea3835392473e77a8258edf0ee84b520fd1f382a4bf000d253794ca3b19fa57ef8b254a85ed2a21903aabda1873a79b74f7525c8adb34cf43121c182648cf2b03dc9c406efd91fe2696e54349a9c9284f1d7ba3f2f3a03ed5d1329c327352b26c754bfb66aff36114dcad27eb6f8f7aa98f1a93e6184b3490f15e1e78c6fa2fdf57fc1c00780e19850d3e83a840811f19326f201a1ee0966536c6febde020d7b0fe90a1695ca6b4523a43a333c549952681e557e9918a58101743a368e2b87f0e4e190b3b96f204adc704747b3559eb205c616763bfb99e3e6aa0203556e1ca19502a53b5d8dbb3b6f94382826664a36770ea20ff50e6fa49e9783e0d5eb1556c2b9052e0a9e3ea4003cfedf6569c2361a798d04f4e7d5568d45db2cc05310ccac26962cdadff4a1473f721ef4d563be1844e58a04fef6c78efffb2569e070c9413028127bf95ef343120c45383b474b808a1e42ce5c9dad2e816efb21d68e635bcfe0f5cc5ece8f204a3c693aeb7538619c05584c227a3adde8e23a782707da0b0bc56c8952b59f06264200658c387e4ac641f62fee5d9dc4c3af8585a11393d6361dd7e2711e99ca1880e7d30c751259d64daa1151327f826e219ab35393b2e79e76d48332a246d9a3dff0e768277e7c9a6f09c5750bc710d377ca23a8202fcf52e8e4343553b822852d0a299fd1ca5fae4ab0a394c7dd070aa678b9600b645993d45e9f3cc6c511be78c0e2765b18de343b43a0549976b28ec93bd8cfa5cc9e6f32cfab35d1290305b904e3599cc0c3223a3ce01af87393444678855cd929c0b090615bf21dead9b35e7e11fcd7052fbff8972520acecdf02e3a0fa240199573988d4f8673d1023cca6384bf7c97edfe2fa77c29b7b70f5b9bb921cedd0d438bd4ce74fc2d2019a64c444a78659e50d930e1ca1f3d5c7e8e88a2f2656b313038e75fb1986c86ca688e7afc53c0ddd0b82808e54c"], 0x1015, 0x1)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r7, 0x0, r7)
connect$bt_sco(r7, &(0x7f0000000040), 0x8)

16:47:23 executing program 5:
connect$bt_sco(0xffffffffffffffff, &(0x7f0000000040), 0x8)
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
connect$bt_sco(r0, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

[ 2489.252267] FAULT_INJECTION: forcing a failure.
[ 2489.252267] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2489.254833] CPU: 1 PID: 12788 Comm: syz-executor.3 Not tainted 5.10.235 #1
[ 2489.256296] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2489.258046] Call Trace:
[ 2489.258604]  dump_stack+0x107/0x167
[ 2489.259380]  should_fail.cold+0x5/0xa
[ 2489.260182]  __alloc_pages_nodemask+0x182/0x600
[ 2489.261183]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 2489.262422]  ? find_held_lock+0x2c/0x110
[ 2489.263285]  ? __pmd_alloc+0x2db/0x5e0
[ 2489.264092]  ? lock_downgrade+0x6d0/0x6d0
[ 2489.264972]  ? do_raw_spin_lock+0x121/0x260
[ 2489.265878]  alloc_pages_current+0x187/0x280
[ 2489.266809]  pte_alloc_one+0x16/0x1a0
[ 2489.267593]  __pte_alloc+0x1d/0x330
[ 2489.268364]  handle_mm_fault+0x287f/0x3500
[ 2489.269244]  ? __lock_acquire+0x1657/0x5b00
[ 2489.270161]  ? __pmd_alloc+0x5e0/0x5e0
[ 2489.270991]  ? vmacache_find+0x55/0x2a0
[ 2489.271832]  ? vmacache_update+0xce/0x140
[ 2489.272709]  do_user_addr_fault+0x56e/0xc60
[ 2489.273631]  exc_page_fault+0xa2/0x1a0
[ 2489.274455]  asm_exc_page_fault+0x1e/0x30
[ 2489.275328] RIP: 0010:__put_user_nocheck_4+0x3/0x11
[ 2489.276377] Code: 00 00 48 39 d9 73 54 0f 01 cb 66 89 01 31 c9 0f 01 ca e9 61 ea 1c 02 90 48 bb fd ef ff ff ff 7f 00 00 48 39 d9 73 34 0f 01 cb <89> 01 31 c9 0f 01 ca e9 42 ea 1c 02 66 90 48 bb f9 ef ff ff ff 7f
[ 2489.280252] RSP: 0018:ffff888046dcfd08 EFLAGS: 00050293
[ 2489.281353] RAX: 0000000000034000 RBX: 00007fffffffeffd RCX: 0000000020000180
[ 2489.282842] RDX: 0000000000040000 RSI: ffffffff837fb6d4 RDI: ffff8880469d57f8
[ 2489.284308] RBP: 0000000020000180 R08: 0000000000000000 R09: 0000000000000000
[ 2489.285827] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88804d733000
[ 2489.287300] R13: ffff88804d733274 R14: 0000000020000180 R15: ffffffff854de640
[ 2489.288787]  ? bt_sock_ioctl+0x264/0x2f0
[ 2489.289641]  bt_sock_ioctl+0x276/0x2f0
[ 2489.290441]  sock_do_ioctl+0xd3/0x300
[ 2489.291224]  ? compat_ifr_data_ioctl+0x180/0x180
[ 2489.292218]  ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410
[ 2489.293410]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2489.294476]  ? do_vfs_ioctl+0x283/0x10d0
[ 2489.295308]  ? selinux_bprm_creds_for_exec+0xb60/0xb60
[ 2489.296388]  ? generic_block_fiemap+0x60/0x60
[ 2489.297317]  ? lock_downgrade+0x6d0/0x6d0
[ 2489.298173]  sock_ioctl+0x3ef/0x710
[ 2489.298927]  ? dlci_ioctl_set+0x30/0x30
[ 2489.299751]  ? selinux_file_ioctl+0xb6/0x270
[ 2489.300664]  ? dlci_ioctl_set+0x30/0x30
[ 2489.301497]  __x64_sys_ioctl+0x19a/0x210
[ 2489.302341]  do_syscall_64+0x33/0x40
[ 2489.303109]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2489.304161] RIP: 0033:0x7f92338a4b19
[ 2489.304922] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2489.308731] RSP: 002b:00007f9230e1a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2489.310310] RAX: ffffffffffffffda RBX: 00007f92339b7f60 RCX: 00007f92338a4b19
[ 2489.311784] RDX: 0000000020000180 RSI: 0000000000005411 RDI: 0000000000000005
16:47:23 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x8000000000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

[ 2489.313268] RBP: 00007f9230e1a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2489.314955] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2489.316426] R13: 00007fffde0226bf R14: 00007f9230e1a300 R15: 0000000000022000
16:47:23 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r1, 0x0, r1)
r2 = fcntl$dupfd(r1, 0x0, r0)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed}, 0x7)

[ 2489.366082] loop7: detected capacity change from 0 to 135266304
[ 2489.376138] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:47:23 executing program 5:
connect$bt_sco(0xffffffffffffffff, &(0x7f0000000040), 0x8)
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
connect$bt_sco(r0, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:47:23 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180)) (fail_nth: 5)

16:47:23 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r0, &(0x7f0000000200)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}, 0xfffffffffffffe9f)
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r1, 0x89fb, &(0x7f00000000c0)={'syztnl0\x00', &(0x7f0000000040)={'syztnl2\x00', 0x0, 0x2f, 0x8, 0x1f, 0x101, 0x2a, @private1, @loopback, 0x8, 0x8000, 0xa09, 0x6}})
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = fcntl$dupfd(r1, 0x406, r2)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = fcntl$dupfd(r4, 0x0, r4)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2, 0x2010, r5, 0x8000000)
r6 = dup2(r1, r1)
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r8 = fcntl$dupfd(r7, 0x0, r7)
connect$bt_sco(r8, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r9 = syz_open_dev$evdev(&(0x7f0000000100), 0x5, 0x440000)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
r11 = openat$cgroup_netprio_ifpriomap(r6, &(0x7f0000000140), 0x2, 0x0)
poll(&(0x7f0000000180)=[{r8, 0x30a0}, {r0, 0x1060}, {r6, 0x8020}, {r6, 0x24}, {r9, 0x2120}, {r2, 0x440}, {r10, 0x2}, {r11, 0xa08}, {0xffffffffffffffff, 0x40}, {r3, 0x105}], 0xa, 0x3)
connect$bt_sco(r5, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

[ 2489.425265] loop7: detected capacity change from 0 to 135266304
[ 2489.439422] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2489.524049] FAULT_INJECTION: forcing a failure.
[ 2489.524049] name failslab, interval 1, probability 0, space 0, times 0
[ 2489.525431] CPU: 0 PID: 12808 Comm: syz-executor.3 Not tainted 5.10.235 #1
[ 2489.526346] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2489.527322] Call Trace:
[ 2489.527652]  dump_stack+0x107/0x167
[ 2489.528089]  should_fail.cold+0x5/0xa
[ 2489.528546]  ? ptlock_alloc+0x1d/0x70
[ 2489.529002]  should_failslab+0x5/0x20
[ 2489.529466]  kmem_cache_alloc+0x5b/0x310
[ 2489.529953]  ptlock_alloc+0x1d/0x70
[ 2489.530393]  pte_alloc_one+0x68/0x1a0
[ 2489.530869]  __pte_alloc+0x1d/0x330
[ 2489.531306]  handle_mm_fault+0x287f/0x3500
[ 2489.531814]  ? __lock_acquire+0x1657/0x5b00
[ 2489.532328]  ? __pmd_alloc+0x5e0/0x5e0
[ 2489.532795]  ? vmacache_find+0x55/0x2a0
[ 2489.533273]  ? vmacache_update+0xce/0x140
[ 2489.533769]  do_user_addr_fault+0x56e/0xc60
[ 2489.534290]  exc_page_fault+0xa2/0x1a0
[ 2489.534756]  asm_exc_page_fault+0x1e/0x30
[ 2489.535252] RIP: 0010:__put_user_nocheck_4+0x3/0x11
[ 2489.535900] Code: 00 00 48 39 d9 73 54 0f 01 cb 66 89 01 31 c9 0f 01 ca e9 61 ea 1c 02 90 48 bb fd ef ff ff ff 7f 00 00 48 39 d9 73 34 0f 01 cb <89> 01 31 c9 0f 01 ca e9 42 ea 1c 02 66 90 48 bb f9 ef ff ff ff 7f
[ 2489.538073] RSP: 0018:ffff88804843fd08 EFLAGS: 00050293
[ 2489.538746] RAX: 0000000000034000 RBX: 00007fffffffeffd RCX: 0000000020000180
[ 2489.539589] RDX: 0000000000040000 RSI: ffffffff837fb6d4 RDI: ffff888048430938
[ 2489.540482] RBP: 0000000020000180 R08: 0000000000000000 R09: 0000000000000000
[ 2489.541330] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88804bd11000
[ 2489.542227] R13: ffff88804bd11274 R14: 0000000020000180 R15: ffffffff854de640
[ 2489.543085]  ? bt_sock_ioctl+0x264/0x2f0
[ 2489.543565]  bt_sock_ioctl+0x276/0x2f0
[ 2489.544056]  sock_do_ioctl+0xd3/0x300
[ 2489.544509]  ? compat_ifr_data_ioctl+0x180/0x180
[ 2489.545076]  ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410
[ 2489.545773]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2489.546383]  ? do_vfs_ioctl+0x283/0x10d0
[ 2489.546862]  ? selinux_bprm_creds_for_exec+0xb60/0xb60
[ 2489.547528]  ? generic_block_fiemap+0x60/0x60
[ 2489.548057]  ? lock_downgrade+0x6d0/0x6d0
[ 2489.548581]  sock_ioctl+0x3ef/0x710
[ 2489.549006]  ? dlci_ioctl_set+0x30/0x30
[ 2489.549482]  ? selinux_file_ioctl+0xb6/0x270
[ 2489.549998]  ? dlci_ioctl_set+0x30/0x30
[ 2489.550466]  __x64_sys_ioctl+0x19a/0x210
[ 2489.550976]  do_syscall_64+0x33/0x40
[ 2489.551414]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2489.552056] RIP: 0033:0x7f92338a4b19
[ 2489.552495] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2489.554642] RSP: 002b:00007f9230e1a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2489.555578] RAX: ffffffffffffffda RBX: 00007f92339b7f60 RCX: 00007f92338a4b19
[ 2489.556412] RDX: 0000000020000180 RSI: 0000000000005411 RDI: 0000000000000005
[ 2489.557305] RBP: 00007f9230e1a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2489.558183] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2489.559061] R13: 00007fffde0226bf R14: 00007f9230e1a300 R15: 0000000000022000
16:47:24 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x100000000000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:47:24 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x0, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:47:24 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180)) (fail_nth: 1)

[ 2489.637738] loop7: detected capacity change from 0 to 135266304
[ 2489.644267] FAULT_INJECTION: forcing a failure.
[ 2489.644267] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2489.646842] CPU: 1 PID: 12817 Comm: syz-executor.1 Not tainted 5.10.235 #1
[ 2489.648280] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2489.650206] Call Trace:
[ 2489.650914]  dump_stack+0x107/0x167
[ 2489.651872]  should_fail.cold+0x5/0xa
[ 2489.652886]  _copy_to_user+0x2e/0x180
[ 2489.653923]  simple_read_from_buffer+0xcc/0x160
[ 2489.655135]  proc_fail_nth_read+0x198/0x230
[ 2489.656271]  ? proc_sessionid_read+0x230/0x230
[ 2489.657478]  ? security_file_permission+0xb1/0xe0
[ 2489.658747]  ? proc_sessionid_read+0x230/0x230
[ 2489.659936]  vfs_read+0x228/0x620
[ 2489.660854]  ksys_read+0x12d/0x260
[ 2489.661810]  ? vfs_write+0xb10/0xb10
[ 2489.662804]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2489.664152]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2489.664470] 9pnet: Could not find request transport: xen
[ 2489.665495]  do_syscall_64+0x33/0x40
[ 2489.667090]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2489.668417] RIP: 0033:0x7f98ac7ed69c
[ 2489.669415] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 2489.674217] RSP: 002b:00007f98a9db0170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2489.676219] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f98ac7ed69c
[ 2489.678117] RDX: 000000000000000f RSI: 00007f98a9db01e0 RDI: 0000000000000006
[ 2489.680007] RBP: 00007f98a9db01d0 R08: 0000000000000000 R09: 0000000000000000
[ 2489.682056] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2489.683946] R13: 00007ffe7f6a8b6f R14: 00007f98a9db0300 R15: 0000000000022000
[ 2489.690182] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2489.713997] loop7: detected capacity change from 0 to 135266304
[ 2489.718094] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:47:38 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 87)

16:47:38 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x0, 0x26)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:47:38 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:47:38 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180)) (fail_nth: 6)

16:47:38 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x200000000000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:47:38 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(r1, 0x942e, 0x0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:47:38 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(0xffffffffffffffff, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:47:38 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0) (fail_nth: 1)

[ 2504.057253] FAULT_INJECTION: forcing a failure.
[ 2504.057253] name failslab, interval 1, probability 0, space 0, times 0
[ 2504.059742] CPU: 1 PID: 12829 Comm: syz-executor.3 Not tainted 5.10.235 #1
[ 2504.061307] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2504.063332] Call Trace:
[ 2504.063924]  dump_stack+0x107/0x167
[ 2504.064717]  should_fail.cold+0x5/0xa
[ 2504.065565]  ? create_object.isra.0+0x3a/0xa20
[ 2504.066589]  should_failslab+0x5/0x20
[ 2504.067470]  kmem_cache_alloc+0x5b/0x310
[ 2504.068356]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 2504.069693]  create_object.isra.0+0x3a/0xa20
[ 2504.070653]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2504.071782]  kmem_cache_alloc+0x159/0x310
[ 2504.072158] 9pnet: Could not find request transport: xen
[ 2504.072735]  ptlock_alloc+0x1d/0x70
[ 2504.072759]  pte_alloc_one+0x68/0x1a0
[ 2504.075046]  __pte_alloc+0x1d/0x330
[ 2504.075858]  handle_mm_fault+0x287f/0x3500
[ 2504.076821]  ? __lock_acquire+0x1657/0x5b00
[ 2504.077788]  ? __pmd_alloc+0x5e0/0x5e0
[ 2504.078643]  ? vmacache_find+0x55/0x2a0
[ 2504.079509]  ? vmacache_update+0xce/0x140
[ 2504.080582]  do_user_addr_fault+0x56e/0xc60
[ 2504.081585]  exc_page_fault+0xa2/0x1a0
[ 2504.082440]  asm_exc_page_fault+0x1e/0x30
[ 2504.083353] RIP: 0010:__put_user_nocheck_4+0x3/0x11
[ 2504.084440] Code: 00 00 48 39 d9 73 54 0f 01 cb 66 89 01 31 c9 0f 01 ca e9 61 ea 1c 02 90 48 bb fd ef ff ff ff 7f 00 00 48 39 d9 73 34 0f 01 cb <89> 01 31 c9 0f 01 ca e9 42 ea 1c 02 66 90 48 bb f9 ef ff ff ff 7f
[ 2504.088507] RSP: 0018:ffff88804ed8fd08 EFLAGS: 00050293
[ 2504.089676] RAX: 0000000000034000 RBX: 00007fffffffeffd RCX: 0000000020000180
[ 2504.091281] RDX: 0000000000040000 RSI: ffffffff837fb6d4 RDI: ffff888020048938
[ 2504.092837] RBP: 0000000020000180 R08: 0000000000000000 R09: 0000000000000000
[ 2504.094449] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88804bfe4000
[ 2504.096019] R13: ffff88804bfe4274 R14: 0000000020000180 R15: ffffffff854de640
[ 2504.097610]  ? bt_sock_ioctl+0x264/0x2f0
[ 2504.098502]  bt_sock_ioctl+0x276/0x2f0
[ 2504.099355]  sock_do_ioctl+0xd3/0x300
[ 2504.100186]  ? compat_ifr_data_ioctl+0x180/0x180
[ 2504.101238]  ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410
[ 2504.102555]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2504.103682]  ? do_vfs_ioctl+0x283/0x10d0
[ 2504.104567]  ? selinux_bprm_creds_for_exec+0xb60/0xb60
[ 2504.105775]  ? generic_block_fiemap+0x60/0x60
[ 2504.106756]  ? lock_downgrade+0x6d0/0x6d0
[ 2504.107663]  sock_ioctl+0x3ef/0x710
[ 2504.108454]  ? dlci_ioctl_set+0x30/0x30
[ 2504.109339]  ? selinux_file_ioctl+0xb6/0x270
[ 2504.110302]  ? dlci_ioctl_set+0x30/0x30
[ 2504.111221]  __x64_sys_ioctl+0x19a/0x210
[ 2504.112114]  do_syscall_64+0x33/0x40
[ 2504.112869] FAULT_INJECTION: forcing a failure.
[ 2504.112869] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2504.112929]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2504.115431] RIP: 0033:0x7f92338a4b19
[ 2504.116240] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2504.120302] RSP: 002b:00007f9230e1a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2504.121977] RAX: ffffffffffffffda RBX: 00007f92339b7f60 RCX: 00007f92338a4b19
[ 2504.123504] RDX: 0000000020000180 RSI: 0000000000005411 RDI: 0000000000000005
[ 2504.125120] RBP: 00007f9230e1a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2504.126691] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2504.128239] R13: 00007fffde0226bf R14: 00007f9230e1a300 R15: 0000000000022000
[ 2504.129821] CPU: 0 PID: 12844 Comm: syz-executor.6 Not tainted 5.10.235 #1
[ 2504.130663] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2504.131390] loop7: detected capacity change from 0 to 135266304
[ 2504.131619] Call Trace:
[ 2504.131639]  dump_stack+0x107/0x167
[ 2504.131652]  should_fail.cold+0x5/0xa
[ 2504.131669]  _copy_to_user+0x2e/0x180
[ 2504.131685]  simple_read_from_buffer+0xcc/0x160
[ 2504.131701]  proc_fail_nth_read+0x198/0x230
[ 2504.131714]  ? proc_sessionid_read+0x230/0x230
[ 2504.131726]  ? security_file_permission+0xb1/0xe0
[ 2504.131741]  ? proc_sessionid_read+0x230/0x230
[ 2504.131753]  vfs_read+0x228/0x620
[ 2504.131768]  ksys_read+0x12d/0x260
[ 2504.131779]  ? vfs_write+0xb10/0xb10
[ 2504.131795]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2504.131819]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2504.139929]  do_syscall_64+0x33/0x40
[ 2504.140376]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2504.140982] RIP: 0033:0x7f2e00e4069c
[ 2504.141434] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 2504.143608] RSP: 002b:00007f2dfe3e2170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2504.144514] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f2e00e4069c
[ 2504.145336] RDX: 000000000000000f RSI: 00007f2dfe3e21e0 RDI: 0000000000000003
[ 2504.146193] RBP: 00007f2dfe3e21d0 R08: 0000000000000000 R09: 0000000000000000
[ 2504.147007] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2504.147855] R13: 00007fff9808216f R14: 00007f2dfe3e2300 R15: 0000000000022000
[ 2504.156858] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2504.178676] FAULT_INJECTION: forcing a failure.
[ 2504.178676] name failslab, interval 1, probability 0, space 0, times 0
[ 2504.181304] CPU: 1 PID: 12837 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2504.182811] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2504.184661] Call Trace:
[ 2504.185237]  dump_stack+0x107/0x167
[ 2504.186041]  should_fail.cold+0x5/0xa
[ 2504.186866]  ? jbd2__journal_start+0x190/0x7e0
[ 2504.187864]  should_failslab+0x5/0x20
[ 2504.188716]  kmem_cache_alloc+0x5b/0x310
[ 2504.189625]  ? __kernel_text_address+0x9/0x40
[ 2504.190598]  jbd2__journal_start+0x190/0x7e0
[ 2504.191554]  __ext4_journal_start_sb+0x214/0x390
[ 2504.192586]  ext4_iomap_begin+0x485/0x700
[ 2504.193566]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2504.194610]  ? kasan_save_stack+0x1b/0x40
[ 2504.195507]  ? ext4_file_write_iter+0xe0e/0x1530
[ 2504.196532]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
16:47:38 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(0xffffffffffffffff, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:47:38 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x2, &(0x7f0000000180))

16:47:38 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)
ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f0000000040)=<r2=>0x0)
r3 = syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = fork()
r5 = gettid()
kcmp(r4, r5, 0x3, r3, 0xffffffffffffffff)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r6, 0x0, r6)
r7 = openat$cgroup_pressure(r1, &(0x7f0000000080)='io.pressure\x00', 0x2, 0x0)
kcmp$KCMP_EPOLL_TFD(r2, r4, 0x7, r6, &(0x7f00000000c0)={r1, r7, 0x10001})

[ 2504.197961]  ? splice_direct_to_actor+0x387/0x980
[ 2504.199168]  ? do_splice_direct+0x1c4/0x290
[ 2504.200103]  ? do_sendfile+0x553/0x11e0
[ 2504.200956]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2504.201970]  ? do_syscall_64+0x33/0x40
[ 2504.202809]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2504.204016]  iomap_apply+0x164/0x810
[ 2504.204835]  ? iomap_dio_rw+0x90/0x90
[ 2504.205678]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2504.206937]  ? mark_held_locks+0x9e/0xe0
[ 2504.207832]  ? filemap_check_errors+0xa5/0x150
[ 2504.208849]  __iomap_dio_rw+0x6cd/0x1110
[ 2504.209772]  ? iomap_dio_rw+0x90/0x90
[ 2504.210618]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2504.211604]  ? ext4_orphan_add+0x253/0x9e0
[ 2504.212523]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2504.213645]  ? ext4_empty_dir+0xae0/0xae0
[ 2504.214543]  ? jbd2__journal_start+0xf3/0x7e0
[ 2504.215521]  iomap_dio_rw+0x31/0x90
[ 2504.216351]  ext4_file_write_iter+0xe0e/0x1530
[ 2504.217360]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2504.218340]  ? kasan_save_stack+0x32/0x40
[ 2504.219233]  ? kasan_save_stack+0x1b/0x40
[ 2504.220128]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2504.221267]  ? iter_file_splice_write+0x165/0xc90
[ 2504.222319]  ? direct_splice_actor+0x10f/0x170
[ 2504.223302]  ? splice_direct_to_actor+0x387/0x980
[ 2504.224342]  ? do_splice_direct+0x1c4/0x290
[ 2504.225276]  ? do_sendfile+0x553/0x11e0
[ 2504.226143]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2504.227149]  ? do_syscall_64+0x33/0x40
[ 2504.227993]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2504.229226]  do_iter_readv_writev+0x476/0x750
[ 2504.230214]  ? _cond_resched+0x10/0x30
[ 2504.231069]  ? new_sync_write+0x660/0x660
[ 2504.231975]  ? avc_policy_seqno+0x9/0x70
[ 2504.232854]  ? selinux_file_permission+0x92/0x520
[ 2504.233916]  ? security_file_permission+0xb1/0xe0
[ 2504.234971]  do_iter_write+0x191/0x700
[ 2504.235818]  ? trace_hardirqs_on+0x5b/0x180
[ 2504.236827]  vfs_iter_write+0x70/0xa0
[ 2504.237673]  iter_file_splice_write+0x726/0xc90
[ 2504.238695]  ? generic_splice_sendpage+0x140/0x140
[ 2504.239773]  ? security_file_permission+0xb1/0xe0
[ 2504.240817]  ? generic_splice_sendpage+0x140/0x140
[ 2504.241891]  direct_splice_actor+0x10f/0x170
[ 2504.242851]  splice_direct_to_actor+0x387/0x980
[ 2504.243923]  ? pipe_to_sendpage+0x380/0x380
[ 2504.244865]  ? do_splice_to+0x160/0x160
[ 2504.245745]  ? security_file_permission+0xb1/0xe0
[ 2504.246809]  do_splice_direct+0x1c4/0x290
[ 2504.247723]  ? splice_direct_to_actor+0x980/0x980
[ 2504.248824]  ? avc_policy_seqno+0x9/0x70
[ 2504.249729]  ? security_file_permission+0xb1/0xe0
[ 2504.250781]  do_sendfile+0x553/0x11e0
[ 2504.251617]  ? do_pwritev+0x270/0x270
[ 2504.252457]  ? wait_for_completion_io+0x270/0x270
[ 2504.253555]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2504.254570]  ? vfs_write+0x354/0xb10
[ 2504.255390]  __x64_sys_sendfile64+0x1d1/0x210
[ 2504.256361]  ? __ia32_sys_sendfile+0x220/0x220
[ 2504.257397]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2504.258560]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2504.259693]  do_syscall_64+0x33/0x40
[ 2504.260507]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2504.261664] RIP: 0033:0x7fa861eb0b19
[ 2504.262510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2504.266539] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2504.268201] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2504.269758] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2504.271346] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2504.272895] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2504.274452] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
16:47:38 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

[ 2504.344080] loop7: detected capacity change from 0 to 135266304
[ 2504.368180] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:47:52 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 88)

16:47:52 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x300000000000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:47:52 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

[ 2518.319449] netlink: 220 bytes leftover after parsing attributes in process `syz-executor.4'.
16:47:52 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x2, 0x4e21, @multicast1}, 0x10, 0x0}, 0x404c008)
connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x4e22, 0x1, @ipv4={'\x00', '\xff\xff', @empty}, 0x1}, 0x1c)
r4 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
sendmsg$inet6(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000001ac0)={{{@in6, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in6=@private1}, 0x0, @in=@initdev}}, &(0x7f0000001a80)=0xfffffffffffffda2)
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = fcntl$dupfd(r6, 0x0, r6)
sendmsg$nl_generic(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0xf8}, 0x1, 0x0, 0x0, 0x44801}, 0x4000000)
setsockopt$inet_pktinfo(r7, 0x0, 0x8, &(0x7f0000001a40)={r5, @multicast1, @multicast1}, 0xc)
ioctl$NS_GET_OWNER_UID(r4, 0xb704, &(0x7f00000001c0)=<r8=>0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000380)={{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in=@empty, 0x4e21, 0x9, 0x4e24, 0x4, 0xa, 0x80, 0x0, 0x6c, r5, r8}, {0xfffffffffffffffe, 0x80, 0x800, 0x7fffffff, 0xfffffffffffffffe, 0x1ac0, 0xfb5, 0x4}, {0x7fffffff, 0x9, 0x0, 0x975}, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1}, {{@in=@local, 0x4d2, 0x33}, 0x2, @in6=@remote, 0x0, 0x0, 0x3, 0x40, 0x3f, 0x2, 0x7}}, 0xe8)
ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, &(0x7f00000001c0)={'syztnl0\x00', &(0x7f0000000140)={'ip6gre0\x00', r5, 0x4, 0x60, 0x40, 0x6, 0xf35eb1cb1687207f, @mcast2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x40, 0x7, 0x0, 0x6}})
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
setsockopt$inet_tcp_TLS_RX(r3, 0x6, 0x2, &(0x7f0000000040)=@gcm_256={{0x304}, "12db34fb79005b28", "b0ab2afd464fc69629598559d55c0d972081b85b587b48f0f06aaa7834034f8a", "ddd0bcf9", "1c46b86e4f6fb809"}, 0x38)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)
ioctl$KDGKBDIACR(r1, 0x4b4a, &(0x7f0000000080)=""/182)

[ 2518.327169] netlink: 220 bytes leftover after parsing attributes in process `syz-executor.4'.
16:47:52 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180)) (fail_nth: 7)

16:47:52 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x4b47, &(0x7f0000000180))

16:47:52 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x4000)

16:47:52 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(0xffffffffffffffff, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

[ 2518.343391] FAULT_INJECTION: forcing a failure.
[ 2518.343391] name failslab, interval 1, probability 0, space 0, times 0
[ 2518.344720] CPU: 0 PID: 12883 Comm: syz-executor.3 Not tainted 5.10.235 #1
[ 2518.345521] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2518.346466] Call Trace:
[ 2518.346780]  dump_stack+0x107/0x167
[ 2518.347199]  should_fail.cold+0x5/0xa
[ 2518.347643]  ? __anon_vma_prepare+0x62/0x500
[ 2518.348160]  should_failslab+0x5/0x20
[ 2518.348600]  kmem_cache_alloc+0x5b/0x310
[ 2518.349071]  __anon_vma_prepare+0x62/0x500
[ 2518.349563]  ? __pte_alloc+0x194/0x330
[ 2518.350199]  handle_mm_fault+0x2b2d/0x3500
[ 2518.350744]  ? __lock_acquire+0x1657/0x5b00
[ 2518.351243]  ? __pmd_alloc+0x5e0/0x5e0
[ 2518.351698]  ? vmacache_find+0x55/0x2a0
[ 2518.352145]  ? vmacache_update+0xce/0x140
[ 2518.352618]  do_user_addr_fault+0x56e/0xc60
[ 2518.353119]  exc_page_fault+0xa2/0x1a0
[ 2518.353581]  asm_exc_page_fault+0x1e/0x30
[ 2518.354055] RIP: 0010:__put_user_nocheck_4+0x3/0x11
[ 2518.354617] Code: 00 00 48 39 d9 73 54 0f 01 cb 66 89 01 31 c9 0f 01 ca e9 61 ea 1c 02 90 48 bb fd ef ff ff ff 7f 00 00 48 39 d9 73 34 0f 01 cb <89> 01 31 c9 0f 01 ca e9 42 ea 1c 02 66 90 48 bb f9 ef ff ff ff 7f
[ 2518.355419] loop7: detected capacity change from 0 to 135266304
[ 2518.356788] RSP: 0018:ffff888049d8fd08 EFLAGS: 00050293
[ 2518.356800] RAX: 0000000000034000 RBX: 00007fffffffeffd RCX: 0000000020000180
[ 2518.356807] RDX: 0000000000040000 RSI: ffffffff837fb6d4 RDI: ffff888044bcbdb8
[ 2518.356814] RBP: 0000000020000180 R08: 0000000000000000 R09: 0000000000000000
[ 2518.356820] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88804ce3e000
[ 2518.356826] R13: ffff88804ce3e274 R14: 0000000020000180 R15: ffffffff854de640
[ 2518.356850]  ? bt_sock_ioctl+0x264/0x2f0
[ 2518.363512]  bt_sock_ioctl+0x276/0x2f0
[ 2518.363970]  sock_do_ioctl+0xd3/0x300
[ 2518.364402]  ? compat_ifr_data_ioctl+0x180/0x180
[ 2518.364953]  ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410
[ 2518.365622]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2518.366217]  ? do_vfs_ioctl+0x283/0x10d0
[ 2518.366684]  ? selinux_bprm_creds_for_exec+0xb60/0xb60
[ 2518.367285]  ? generic_block_fiemap+0x60/0x60
[ 2518.367802]  ? lock_downgrade+0x6d0/0x6d0
[ 2518.368284]  sock_ioctl+0x3ef/0x710
[ 2518.368708]  ? dlci_ioctl_set+0x30/0x30
[ 2518.369174]  ? selinux_file_ioctl+0xb6/0x270
[ 2518.369686]  ? dlci_ioctl_set+0x30/0x30
[ 2518.370143]  __x64_sys_ioctl+0x19a/0x210
[ 2518.370605]  do_syscall_64+0x33/0x40
[ 2518.371034]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2518.371623] RIP: 0033:0x7f92338a4b19
[ 2518.372054] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2518.374232] RSP: 002b:00007f9230e1a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2518.374774] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2518.375105] RAX: ffffffffffffffda RBX: 00007f92339b7f60 RCX: 00007f92338a4b19
[ 2518.375120] RDX: 0000000020000180 RSI: 0000000000005411 RDI: 0000000000000005
[ 2518.377908] RBP: 00007f9230e1a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2518.378728] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2518.379539] R13: 00007fffde0226bf R14: 00007f9230e1a300 R15: 0000000000022000
[ 2518.388368] 9pnet: Could not find request transport: xen
16:47:52 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

[ 2518.397092] FAULT_INJECTION: forcing a failure.
[ 2518.397092] name failslab, interval 1, probability 0, space 0, times 0
[ 2518.399554] CPU: 1 PID: 12874 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2518.400949] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2518.402624] Call Trace:
[ 2518.403162]  dump_stack+0x107/0x167
[ 2518.403893]  should_fail.cold+0x5/0xa
[ 2518.404672]  ? create_object.isra.0+0x3a/0xa20
[ 2518.405599]  should_failslab+0x5/0x20
[ 2518.406378]  kmem_cache_alloc+0x5b/0x310
[ 2518.407210]  create_object.isra.0+0x3a/0xa20
[ 2518.408101]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2518.409132]  kmem_cache_alloc_trace+0x151/0x320
[ 2518.410089]  __iomap_dio_rw+0x1ee/0x1110
[ 2518.410922]  ? jbd2_journal_stop+0x188/0xdc0
[ 2518.411819]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2518.412755]  ? ext4_orphan_add+0x253/0x9e0
[ 2518.413615]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2518.414601]  ? ext4_empty_dir+0xae0/0xae0
[ 2518.415422]  ? jbd2__journal_start+0xf3/0x7e0
[ 2518.416329]  iomap_dio_rw+0x31/0x90
[ 2518.417063]  ext4_file_write_iter+0xe0e/0x1530
[ 2518.417997]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2518.418902]  ? kasan_save_stack+0x32/0x40
[ 2518.419736]  ? kasan_save_stack+0x1b/0x40
[ 2518.420570]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2518.421591]  ? iter_file_splice_write+0x165/0xc90
[ 2518.422562]  ? direct_splice_actor+0x10f/0x170
[ 2518.423475]  ? splice_direct_to_actor+0x387/0x980
16:47:52 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

[ 2518.424454]  ? do_splice_direct+0x1c4/0x290
[ 2518.425424]  ? do_sendfile+0x553/0x11e0
[ 2518.426229]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2518.427153]  ? do_syscall_64+0x33/0x40
[ 2518.427930]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2518.429010]  do_iter_readv_writev+0x476/0x750
[ 2518.429930]  ? _cond_resched+0x10/0x30
[ 2518.430710]  ? new_sync_write+0x660/0x660
[ 2518.431545]  ? avc_policy_seqno+0x9/0x70
[ 2518.432352]  ? selinux_file_permission+0x92/0x520
[ 2518.433324]  ? security_file_permission+0xb1/0xe0
[ 2518.434310]  do_iter_write+0x191/0x700
[ 2518.435100]  ? trace_hardirqs_on+0x5b/0x180
[ 2518.435975]  vfs_iter_write+0x70/0xa0
[ 2518.436745]  iter_file_splice_write+0x726/0xc90
[ 2518.437709]  ? generic_splice_sendpage+0x140/0x140
[ 2518.438710]  ? security_file_permission+0xb1/0xe0
[ 2518.439685]  ? generic_splice_sendpage+0x140/0x140
[ 2518.440686]  direct_splice_actor+0x10f/0x170
[ 2518.441572]  splice_direct_to_actor+0x387/0x980
[ 2518.442509]  ? pipe_to_sendpage+0x380/0x380
[ 2518.443382]  ? do_splice_to+0x160/0x160
[ 2518.444181]  ? security_file_permission+0xb1/0xe0
[ 2518.445150]  do_splice_direct+0x1c4/0x290
[ 2518.445999]  ? splice_direct_to_actor+0x980/0x980
[ 2518.446979]  ? avc_policy_seqno+0x9/0x70
[ 2518.447807]  ? security_file_permission+0xb1/0xe0
[ 2518.448776]  do_sendfile+0x553/0x11e0
[ 2518.449551]  ? do_pwritev+0x270/0x270
[ 2518.450311]  ? wait_for_completion_io+0x270/0x270
[ 2518.451282]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2518.452201]  ? vfs_write+0x354/0xb10
[ 2518.452948]  __x64_sys_sendfile64+0x1d1/0x210
[ 2518.453840]  ? __ia32_sys_sendfile+0x220/0x220
16:47:52 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

[ 2518.454781]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2518.455922]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2518.456966]  do_syscall_64+0x33/0x40
[ 2518.457720]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2518.458755] RIP: 0033:0x7fa861eb0b19
[ 2518.459508] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2518.463214] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2518.464739] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2518.466194] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2518.467650] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2518.469087] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2518.470519] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
[ 2518.498061] loop7: detected capacity change from 0 to 135266304
[ 2518.508280] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:47:52 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)
write$binfmt_elf64(r1, &(0x7f0000000040)={{0x7f, 0x45, 0x4c, 0x46, 0x18, 0x3, 0x4, 0x8c, 0xfffffffffffffeff, 0x3, 0x6, 0x7fff, 0x306, 0x40, 0xef, 0x400, 0x101, 0x38, 0x1, 0xfe00, 0xfff, 0xd}, [{0x6474e551, 0x80000000, 0x7, 0x8000, 0x7, 0x1ff, 0x101, 0x9}, {0x60000003, 0x3, 0x9, 0x1f, 0x1, 0x5, 0x10000, 0x1ff}], "bbd48b3a1f7f97dcbc0ff37ce7fc3f80c85d78cd162a8428d8f575ccc4b0f11ddc4529c4c0643cb09b83fbdb27824f9931ab833b20151b1151064d5aa042ad0a54ee90ad002c17a5a13d59827777e3552f639dd547e53de87417b45a38667ada9959ba2885e98919b292582e0381ddb6ec149ea1bad71ee98357ed7e846701613935fa7546a0207f0ececf8fc308f0625b2d6359c62afdbbe7d6e3bf68cbea714b013fa8232fa0410a1dbbd5938aca4d6d36e087d74dcfd56ac2e4db2fea6b", ['\x00']}, 0x26f)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
shutdown(r2, 0x0)

16:47:52 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x4b49, &(0x7f0000000180))

16:47:52 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x400000000000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:47:52 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:47:52 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x40000000)

[ 2518.689866] loop7: detected capacity change from 0 to 135266304
[ 2518.708383] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:48:09 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180)) (fail_nth: 8)

16:48:09 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) (fail_nth: 1)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

[ 2535.610649] FAULT_INJECTION: forcing a failure.
[ 2535.610649] name failslab, interval 1, probability 0, space 0, times 0
[ 2535.613321] CPU: 0 PID: 12925 Comm: syz-executor.3 Not tainted 5.10.235 #1
[ 2535.614868] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2535.616609] Call Trace:
[ 2535.617173]  dump_stack+0x107/0x167
[ 2535.617952]  should_fail.cold+0x5/0xa
[ 2535.618763]  ? create_object.isra.0+0x3a/0xa20
[ 2535.619084] FAULT_INJECTION: forcing a failure.
[ 2535.619084] name failslab, interval 1, probability 0, space 0, times 0
[ 2535.619812]  should_failslab+0x5/0x20
[ 2535.619832]  kmem_cache_alloc+0x5b/0x310
[ 2535.619857]  create_object.isra.0+0x3a/0xa20
[ 2535.619873]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2535.619897]  kmem_cache_alloc+0x159/0x310
[ 2535.619925]  __anon_vma_prepare+0x62/0x500
[ 2535.619941]  ? __pte_alloc+0x194/0x330
[ 2535.619966]  handle_mm_fault+0x2b2d/0x3500
[ 2535.619989]  ? __lock_acquire+0x1657/0x5b00
[ 2535.630512]  ? __pmd_alloc+0x5e0/0x5e0
[ 2535.631386]  ? vmacache_find+0x55/0x2a0
[ 2535.632216]  ? vmacache_update+0xce/0x140
[ 2535.633098]  do_user_addr_fault+0x56e/0xc60
[ 2535.634033]  exc_page_fault+0xa2/0x1a0
[ 2535.634852]  asm_exc_page_fault+0x1e/0x30
[ 2535.635716] RIP: 0010:__put_user_nocheck_4+0x3/0x11
[ 2535.636759] Code: 00 00 48 39 d9 73 54 0f 01 cb 66 89 01 31 c9 0f 01 ca e9 61 ea 1c 02 90 48 bb fd ef ff ff ff 7f 00 00 48 39 d9 73 34 0f 01 cb <89> 01 31 c9 0f 01 ca e9 42 ea 1c 02 66 90 48 bb f9 ef ff ff ff 7f
[ 2535.640789] RSP: 0018:ffff888049dbfd08 EFLAGS: 00050293
[ 2535.641923] RAX: 0000000000034000 RBX: 00007fffffffeffd RCX: 0000000020000180
[ 2535.643424] RDX: 0000000000040000 RSI: ffffffff837fb6d4 RDI: ffff888046a0a378
[ 2535.644995] RBP: 0000000020000180 R08: 0000000000000000 R09: 0000000000000000
[ 2535.646555] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88804cc02000
[ 2535.648094] R13: ffff88804cc02274 R14: 0000000020000180 R15: ffffffff854de640
[ 2535.649637]  ? bt_sock_ioctl+0x264/0x2f0
[ 2535.650600]  bt_sock_ioctl+0x276/0x2f0
[ 2535.651472]  sock_do_ioctl+0xd3/0x300
[ 2535.652295]  ? compat_ifr_data_ioctl+0x180/0x180
[ 2535.653327]  ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410
[ 2535.654566]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2535.655667]  ? do_vfs_ioctl+0x283/0x10d0
[ 2535.656629]  ? selinux_bprm_creds_for_exec+0xb60/0xb60
[ 2535.657793]  ? generic_block_fiemap+0x60/0x60
[ 2535.658764]  ? lock_downgrade+0x6d0/0x6d0
[ 2535.659665]  sock_ioctl+0x3ef/0x710
[ 2535.660450]  ? dlci_ioctl_set+0x30/0x30
[ 2535.661287]  ? selinux_file_ioctl+0xb6/0x270
[ 2535.662239]  ? dlci_ioctl_set+0x30/0x30
[ 2535.663166]  __x64_sys_ioctl+0x19a/0x210
[ 2535.664059]  do_syscall_64+0x33/0x40
[ 2535.664864]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2535.665956] RIP: 0033:0x7f92338a4b19
[ 2535.666763] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2535.670858] RSP: 002b:00007f9230e1a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2535.672662] RAX: ffffffffffffffda RBX: 00007f92339b7f60 RCX: 00007f92338a4b19
[ 2535.674493] RDX: 0000000020000180 RSI: 0000000000005411 RDI: 0000000000000005
[ 2535.676294] RBP: 00007f9230e1a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2535.678213] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2535.680022] R13: 00007fffde0226bf R14: 00007f9230e1a300 R15: 0000000000022000
[ 2535.681977] CPU: 1 PID: 12928 Comm: syz-executor.4 Not tainted 5.10.235 #1
16:48:09 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:48:09 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:48:09 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x500000000000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:48:09 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 89)

16:48:10 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x4000000000000000)

16:48:10 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x541b, &(0x7f0000000180))

[ 2535.683502] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2535.685442] Call Trace:
[ 2535.686041]  dump_stack+0x107/0x167
[ 2535.686859]  should_fail.cold+0x5/0xa
[ 2535.687680]  ? kvmalloc_node+0x119/0x170
[ 2535.688533]  should_failslab+0x5/0x20
[ 2535.689346]  __kmalloc_node+0x76/0x420
[ 2535.690174]  kvmalloc_node+0x119/0x170
[ 2535.691000]  seq_read_iter+0x81c/0x12b0
[ 2535.691863]  seq_read+0x3dd/0x5b0
[ 2535.692604]  ? seq_read_iter+0x12b0/0x12b0
[ 2535.693494]  ? find_held_lock+0x2c/0x110
[ 2535.694381]  ? fsnotify_perm.part.0+0x22d/0x620
[ 2535.695376]  ? seq_read_iter+0x12b0/0x12b0
[ 2535.696254]  proc_reg_read+0x22a/0x300
[ 2535.697074]  ? proc_reg_write+0x300/0x300
[ 2535.697941]  vfs_read+0x228/0x620
[ 2535.698681]  __x64_sys_pread64+0x201/0x260
[ 2535.699574]  ? ksys_pread64+0x1b0/0x1b0
[ 2535.700417]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2535.701499]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2535.702600]  do_syscall_64+0x33/0x40
[ 2535.703374]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2535.704440] RIP: 0033:0x7fabaeeedb19
[ 2535.705212] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2535.708994] RSP: 002b:00007fabac463188 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[ 2535.710599] RAX: ffffffffffffffda RBX: 00007fabaf000f60 RCX: 00007fabaeeedb19
[ 2535.712064] RDX: 0000000000000ff8 RSI: 00000000200010c0 RDI: 0000000000000004
[ 2535.713517] RBP: 00007fabac4631d0 R08: 0000000000000000 R09: 0000000000000000
[ 2535.714997] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2535.716442] R13: 00007ffdf21fb87f R14: 00007fabac463300 R15: 0000000000022000
[ 2535.728440] loop7: detected capacity change from 0 to 135266304
[ 2535.743935] FAULT_INJECTION: forcing a failure.
[ 2535.743935] name failslab, interval 1, probability 0, space 0, times 0
[ 2535.746473] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2535.747844] CPU: 1 PID: 12926 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2535.749405] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2535.751164] Call Trace:
[ 2535.751716]  dump_stack+0x107/0x167
[ 2535.752486]  should_fail.cold+0x5/0xa
[ 2535.753279]  ? jbd2__journal_start+0x190/0x7e0
[ 2535.754283]  should_failslab+0x5/0x20
[ 2535.755076]  kmem_cache_alloc+0x5b/0x310
[ 2535.755925]  ? __kernel_text_address+0x9/0x40
[ 2535.756815]  jbd2__journal_start+0x190/0x7e0
[ 2535.757742]  __ext4_journal_start_sb+0x214/0x390
[ 2535.758733]  ext4_iomap_begin+0x485/0x700
[ 2535.759619]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2535.760620]  ? kasan_save_stack+0x1b/0x40
[ 2535.761459]  ? ext4_file_write_iter+0xe0e/0x1530
[ 2535.762435]  ? truncate_exceptional_pvec_entries.part.0+0x510/0x510
[ 2535.763715]  ? splice_direct_to_actor+0x387/0x980
[ 2535.764702]  ? do_splice_direct+0x1c4/0x290
[ 2535.765576]  ? do_sendfile+0x553/0x11e0
[ 2535.766393]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2535.767342]  ? do_syscall_64+0x33/0x40
[ 2535.768137]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2535.769262]  iomap_apply+0x164/0x810
[ 2535.770020]  ? iomap_dio_rw+0x90/0x90
[ 2535.770801]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2535.771993]  ? mark_held_locks+0x9e/0xe0
[ 2535.772838]  ? filemap_check_errors+0xa5/0x150
[ 2535.773801]  __iomap_dio_rw+0x6cd/0x1110
[ 2535.774619]  ? iomap_dio_rw+0x90/0x90
[ 2535.775405]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2535.776343]  ? ext4_orphan_add+0x253/0x9e0
[ 2535.777227]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2535.778243]  ? ext4_empty_dir+0xae0/0xae0
[ 2535.779060]  ? jbd2__journal_start+0xf3/0x7e0
[ 2535.779966]  iomap_dio_rw+0x31/0x90
[ 2535.780711]  ext4_file_write_iter+0xe0e/0x1530
[ 2535.781663]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2535.782593]  ? kasan_save_stack+0x32/0x40
[ 2535.783425]  ? kasan_save_stack+0x1b/0x40
[ 2535.784261]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2535.785300]  ? iter_file_splice_write+0x165/0xc90
[ 2535.786272]  ? direct_splice_actor+0x10f/0x170
[ 2535.787176]  ? splice_direct_to_actor+0x387/0x980
[ 2535.788148]  ? do_splice_direct+0x1c4/0x290
[ 2535.789002]  ? do_sendfile+0x553/0x11e0
[ 2535.789837]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2535.790775]  ? do_syscall_64+0x33/0x40
[ 2535.791554]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2535.792640]  do_iter_readv_writev+0x476/0x750
[ 2535.793553]  ? _cond_resched+0x10/0x30
[ 2535.794368]  ? new_sync_write+0x660/0x660
[ 2535.795195]  ? avc_policy_seqno+0x9/0x70
[ 2535.795995]  ? selinux_file_permission+0x92/0x520
[ 2535.796978]  ? security_file_permission+0xb1/0xe0
[ 2535.798165]  do_iter_write+0x191/0x700
[ 2535.799096]  ? trace_hardirqs_on+0x5b/0x180
[ 2535.799979]  vfs_iter_write+0x70/0xa0
[ 2535.800749]  iter_file_splice_write+0x726/0xc90
[ 2535.801722]  ? generic_splice_sendpage+0x140/0x140
[ 2535.802725]  ? security_file_permission+0xb1/0xe0
[ 2535.803701]  ? generic_splice_sendpage+0x140/0x140
[ 2535.804687]  direct_splice_actor+0x10f/0x170
[ 2535.805586]  splice_direct_to_actor+0x387/0x980
[ 2535.806529]  ? pipe_to_sendpage+0x380/0x380
[ 2535.807418]  ? do_splice_to+0x160/0x160
[ 2535.808221]  ? security_file_permission+0xb1/0xe0
[ 2535.809216]  do_splice_direct+0x1c4/0x290
[ 2535.810051]  ? splice_direct_to_actor+0x980/0x980
[ 2535.811021]  ? avc_policy_seqno+0x9/0x70
[ 2535.811853]  ? security_file_permission+0xb1/0xe0
[ 2535.812815]  do_sendfile+0x553/0x11e0
[ 2535.813592]  ? do_pwritev+0x270/0x270
[ 2535.814361]  ? wait_for_completion_io+0x270/0x270
[ 2535.815334]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2535.816252]  ? vfs_write+0x354/0xb10
[ 2535.816987]  __x64_sys_sendfile64+0x1d1/0x210
[ 2535.817912]  ? __ia32_sys_sendfile+0x220/0x220
[ 2535.818837]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2535.819880]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2535.820894]  do_syscall_64+0x33/0x40
[ 2535.821641]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2535.822679] RIP: 0033:0x7fa861eb0b19
[ 2535.823449] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2535.827186] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2535.828718] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2535.830195] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2535.831620] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2535.833086] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2535.834538] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
16:48:10 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180)) (fail_nth: 9)

[ 2535.855056] 9pnet: Could not find request transport: xen
[ 2535.868890] loop7: detected capacity change from 0 to 135266304
[ 2535.874731] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2535.885654] FAULT_INJECTION: forcing a failure.
[ 2535.885654] name failslab, interval 1, probability 0, space 0, times 0
[ 2535.888010] CPU: 1 PID: 12945 Comm: syz-executor.3 Not tainted 5.10.235 #1
[ 2535.889379] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2535.891027] Call Trace:
[ 2535.891566]  dump_stack+0x107/0x167
[ 2535.892313]  should_fail.cold+0x5/0xa
[ 2535.893064]  ? __anon_vma_prepare+0x270/0x500
[ 2535.893962]  should_failslab+0x5/0x20
[ 2535.894729]  kmem_cache_alloc+0x5b/0x310
[ 2535.895537]  __anon_vma_prepare+0x270/0x500
[ 2535.896379]  ? __pte_alloc+0x194/0x330
[ 2535.897143]  handle_mm_fault+0x2b2d/0x3500
[ 2535.897977]  ? __lock_acquire+0x1657/0x5b00
[ 2535.898837]  ? __pmd_alloc+0x5e0/0x5e0
[ 2535.899611]  ? vmacache_find+0x55/0x2a0
[ 2535.900555]  ? vmacache_update+0xce/0x140
[ 2535.901450]  do_user_addr_fault+0x56e/0xc60
[ 2535.902333]  exc_page_fault+0xa2/0x1a0
[ 2535.903097]  asm_exc_page_fault+0x1e/0x30
[ 2535.903912] RIP: 0010:__put_user_nocheck_4+0x3/0x11
[ 2535.904882] Code: 00 00 48 39 d9 73 54 0f 01 cb 66 89 01 31 c9 0f 01 ca e9 61 ea 1c 02 90 48 bb fd ef ff ff ff 7f 00 00 48 39 d9 73 34 0f 01 cb <89> 01 31 c9 0f 01 ca e9 42 ea 1c 02 66 90 48 bb f9 ef ff ff ff 7f
[ 2535.908517] RSP: 0018:ffff8880463efd08 EFLAGS: 00050293
[ 2535.909543] RAX: 0000000000034000 RBX: 00007fffffffeffd RCX: 0000000020000180
[ 2535.910944] RDX: 0000000000040000 RSI: ffffffff837fb6d4 RDI: ffff88801a8757f8
[ 2535.912345] RBP: 0000000020000180 R08: 0000000000000000 R09: 0000000000000000
[ 2535.913864] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88804502f000
[ 2535.915754] R13: ffff88804502f274 R14: 0000000020000180 R15: ffffffff854de640
[ 2535.917579]  ? bt_sock_ioctl+0x264/0x2f0
[ 2535.918623]  bt_sock_ioctl+0x276/0x2f0
[ 2535.919454]  sock_do_ioctl+0xd3/0x300
[ 2535.920254]  ? compat_ifr_data_ioctl+0x180/0x180
[ 2535.921235]  ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410
[ 2535.922438]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2535.923510]  ? do_vfs_ioctl+0x283/0x10d0
[ 2535.924367]  ? selinux_bprm_creds_for_exec+0xb60/0xb60
[ 2535.925450]  ? generic_block_fiemap+0x60/0x60
[ 2535.926415]  ? lock_downgrade+0x6d0/0x6d0
[ 2535.927278]  sock_ioctl+0x3ef/0x710
[ 2535.928047]  ? dlci_ioctl_set+0x30/0x30
[ 2535.928889]  ? selinux_file_ioctl+0xb6/0x270
[ 2535.929807]  ? dlci_ioctl_set+0x30/0x30
[ 2535.930640]  __x64_sys_ioctl+0x19a/0x210
[ 2535.931490]  do_syscall_64+0x33/0x40
[ 2535.932291]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2535.933365] RIP: 0033:0x7f92338a4b19
[ 2535.934142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2535.937965] RSP: 002b:00007f9230e1a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2535.939565] RAX: ffffffffffffffda RBX: 00007f92339b7f60 RCX: 00007f92338a4b19
[ 2535.941074] RDX: 0000000020000180 RSI: 0000000000005411 RDI: 0000000000000005
[ 2535.942586] RBP: 00007f9230e1a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2535.944119] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2535.945739] R13: 00007fffde0226bf R14: 00007f9230e1a300 R15: 0000000000022000
16:48:10 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
getsockopt$bt_sco_SCO_OPTIONS(r2, 0x11, 0x1, &(0x7f0000000040)=""/238, &(0x7f0000000140)=0xee)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r3, 0xc0189379, &(0x7f0000000180)={{0x1, 0x1, 0x18, r3}, './file0\x00'})

[ 2536.020444] loop4: detected capacity change from 0 to 16896
16:48:25 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 90)

16:48:25 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x600000000000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:48:25 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:48:25 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

[ 2551.180449] FAULT_INJECTION: forcing a failure.
[ 2551.180449] name failslab, interval 1, probability 0, space 0, times 0
[ 2551.182095] CPU: 1 PID: 12967 Comm: syz-executor.3 Not tainted 5.10.235 #1
[ 2551.183075] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2551.184285] Call Trace:
[ 2551.184664]  dump_stack+0x107/0x167
[ 2551.185196]  should_fail.cold+0x5/0xa
[ 2551.185745]  ? create_object.isra.0+0x3a/0xa20
[ 2551.186404]  should_failslab+0x5/0x20
[ 2551.186941]  kmem_cache_alloc+0x5b/0x310
[ 2551.187520]  create_object.isra.0+0x3a/0xa20
[ 2551.188142]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2551.188881]  kmem_cache_alloc+0x159/0x310
[ 2551.189500]  __anon_vma_prepare+0x270/0x500
[ 2551.190382]  ? __pte_alloc+0x194/0x330
[ 2551.191370]  handle_mm_fault+0x2b2d/0x3500
[ 2551.192446]  ? __lock_acquire+0x1657/0x5b00
[ 2551.193534]  ? __pmd_alloc+0x5e0/0x5e0
[ 2551.194537]  ? vmacache_find+0x55/0x2a0
[ 2551.195423]  ? vmacache_update+0xce/0x140
[ 2551.195487] loop7: detected capacity change from 0 to 135266304
[ 2551.196348]  do_user_addr_fault+0x56e/0xc60
[ 2551.196378]  exc_page_fault+0xa2/0x1a0
[ 2551.198880]  asm_exc_page_fault+0x1e/0x30
[ 2551.199826] RIP: 0010:__put_user_nocheck_4+0x3/0x11
[ 2551.200885] 9pnet: Could not find request transport: xen
[ 2551.200952] Code: 00 00 48 39 d9 73 54 0f 01 cb 66 89 01 31 c9 0f 01 ca e9 61 ea 1c 02 90 48 bb fd ef ff ff ff 7f 00 00 48 39 d9 73 34 0f 01 cb <89> 01 31 c9 0f 01 ca e9 42 ea 1c 02 66 90 48 bb f9 ef ff ff ff 7f
[ 2551.205264] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2551.205654] RSP: 0018:ffff88804edffd08 EFLAGS: 00050293
[ 2551.205675] RAX: 0000000000034000 RBX: 00007fffffffeffd RCX: 0000000020000180
[ 2551.209090] RDX: 0000000000040000 RSI: ffffffff837fb6d4 RDI: ffff8880472ebdb8
[ 2551.210689] RBP: 0000000020000180 R08: 0000000000000000 R09: 0000000000000000
[ 2551.212287] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88804bd27000
[ 2551.213885] R13: ffff88804bd27274 R14: 0000000020000180 R15: ffffffff854de640
[ 2551.215506]  ? bt_sock_ioctl+0x264/0x2f0
[ 2551.216421]  bt_sock_ioctl+0x276/0x2f0
[ 2551.217293]  sock_do_ioctl+0xd3/0x300
[ 2551.218156]  ? compat_ifr_data_ioctl+0x180/0x180
[ 2551.219220]  ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410
[ 2551.220504]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2551.221653]  ? do_vfs_ioctl+0x283/0x10d0
[ 2551.222559]  ? selinux_bprm_creds_for_exec+0xb60/0xb60
[ 2551.223735]  ? generic_block_fiemap+0x60/0x60
[ 2551.224738]  ? lock_downgrade+0x6d0/0x6d0
[ 2551.225667]  sock_ioctl+0x3ef/0x710
[ 2551.226485]  ? dlci_ioctl_set+0x30/0x30
[ 2551.227377]  ? selinux_file_ioctl+0xb6/0x270
[ 2551.228358]  ? dlci_ioctl_set+0x30/0x30
[ 2551.229249]  __x64_sys_ioctl+0x19a/0x210
[ 2551.230174]  do_syscall_64+0x33/0x40
[ 2551.231003]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2551.232146] RIP: 0033:0x7f92338a4b19
[ 2551.232968] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2551.237071] RSP: 002b:00007f9230e1a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2551.238782] RAX: ffffffffffffffda RBX: 00007f92339b7f60 RCX: 00007f92338a4b19
[ 2551.240366] RDX: 0000000020000180 RSI: 0000000000005411 RDI: 0000000000000005
[ 2551.241962] RBP: 00007f9230e1a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2551.243544] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2551.245140] R13: 00007fffde0226bf R14: 00007f9230e1a300 R15: 0000000000022000
16:48:25 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180)) (fail_nth: 10)

16:48:25 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180))
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/tty/drivers\x00', 0x0, 0x0)
getsockopt$bt_hci(r0, 0x0, 0x2, &(0x7f0000000040)=""/233, &(0x7f0000000140)=0xe9)

16:48:25 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) (fail_nth: 2)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:48:25 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5421, &(0x7f0000000180))

[ 2551.251970] FAULT_INJECTION: forcing a failure.
[ 2551.251970] name failslab, interval 1, probability 0, space 0, times 0
[ 2551.253285] CPU: 0 PID: 12971 Comm: syz-executor.4 Not tainted 5.10.235 #1
[ 2551.254088] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2551.255027] Call Trace:
[ 2551.255327]  dump_stack+0x107/0x167
[ 2551.255739]  should_fail.cold+0x5/0xa
[ 2551.256178]  ? create_object.isra.0+0x3a/0xa20
[ 2551.256701]  should_failslab+0x5/0x20
[ 2551.257130]  kmem_cache_alloc+0x5b/0x310
[ 2551.257595]  create_object.isra.0+0x3a/0xa20
[ 2551.258100]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2551.258680]  __kmalloc_node+0x1ae/0x420
[ 2551.259134]  kvmalloc_node+0x119/0x170
[ 2551.259580]  seq_read_iter+0x81c/0x12b0
[ 2551.260045]  seq_read+0x3dd/0x5b0
[ 2551.260436]  ? seq_read_iter+0x12b0/0x12b0
[ 2551.260915]  ? find_held_lock+0x2c/0x110
[ 2551.261396]  ? fsnotify_perm.part.0+0x22d/0x620
[ 2551.261935]  ? seq_read_iter+0x12b0/0x12b0
[ 2551.262415]  proc_reg_read+0x22a/0x300
[ 2551.262862]  ? proc_reg_write+0x300/0x300
[ 2551.263332]  vfs_read+0x228/0x620
[ 2551.263732]  __x64_sys_pread64+0x201/0x260
[ 2551.264221]  ? ksys_pread64+0x1b0/0x1b0
[ 2551.264682]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2551.265286]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2551.265880]  do_syscall_64+0x33/0x40
[ 2551.266313]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2551.266899] RIP: 0033:0x7fabaeeedb19
[ 2551.267326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2551.269438] RSP: 002b:00007fabac463188 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[ 2551.270322] RAX: ffffffffffffffda RBX: 00007fabaf000f60 RCX: 00007fabaeeedb19
[ 2551.271128] RDX: 0000000000000ff8 RSI: 00000000200010c0 RDI: 0000000000000004
[ 2551.271939] RBP: 00007fabac4631d0 R08: 0000000000000000 R09: 0000000000000000
[ 2551.272752] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2551.273564] R13: 00007ffdf21fb87f R14: 00007fabac463300 R15: 0000000000022000
[ 2551.288080] loop4: detected capacity change from 0 to 16896
[ 2551.314963] FAULT_INJECTION: forcing a failure.
[ 2551.314963] name failslab, interval 1, probability 0, space 0, times 0
[ 2551.317626] CPU: 1 PID: 12961 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2551.319195] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2551.321066] Call Trace:
[ 2551.321356] loop7: detected capacity change from 0 to 135266304
[ 2551.321664]  dump_stack+0x107/0x167
[ 2551.321687]  should_fail.cold+0x5/0xa
[ 2551.324020]  ? create_object.isra.0+0x3a/0xa20
[ 2551.325055]  should_failslab+0x5/0x20
[ 2551.326096]  kmem_cache_alloc+0x5b/0x310
[ 2551.326595] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2551.327130]  ? quarantine_put+0x8b/0x1a0
[ 2551.328799]  ? trace_hardirqs_on+0x5b/0x180
[ 2551.329907]  create_object.isra.0+0x3a/0xa20
[ 2551.330984]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2551.332046]  kmem_cache_alloc+0x159/0x310
[ 2551.332911]  ? mempool_free_pages+0x20/0x20
[ 2551.333806]  mempool_alloc+0x148/0x360
[ 2551.334637]  ? mempool_resize+0x7d0/0x7d0
[ 2551.335501]  ? lock_downgrade+0x6d0/0x6d0
[ 2551.336376]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2551.337413]  bio_alloc_bioset+0x36e/0x600
[ 2551.338288]  ? bvec_alloc+0x2f0/0x2f0
[ 2551.339101]  ? iov_iter_npages+0x1fd/0xa70
[ 2551.339992]  iomap_dio_bio_actor+0x518/0xef0
[ 2551.340925]  iomap_dio_actor+0x36f/0x560
[ 2551.341766]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2551.342742]  ? do_syscall_64+0x33/0x40
[ 2551.343568]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2551.344700]  iomap_apply+0x289/0x810
[ 2551.345478]  ? iomap_dio_rw+0x90/0x90
[ 2551.346288]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2551.347485]  ? mark_held_locks+0x9e/0xe0
[ 2551.348349]  ? filemap_check_errors+0xa5/0x150
[ 2551.349302]  __iomap_dio_rw+0x6cd/0x1110
[ 2551.350151]  ? iomap_dio_rw+0x90/0x90
[ 2551.350958]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2551.351908]  ? ext4_orphan_add+0x253/0x9e0
[ 2551.352781]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2551.353795]  ? ext4_empty_dir+0xae0/0xae0
[ 2551.354666]  ? jbd2__journal_start+0xf3/0x7e0
[ 2551.355613]  iomap_dio_rw+0x31/0x90
[ 2551.356371]  ext4_file_write_iter+0xe0e/0x1530
[ 2551.357334]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2551.358284]  ? kasan_save_stack+0x32/0x40
[ 2551.359134]  ? kasan_save_stack+0x1b/0x40
[ 2551.359995]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2551.361045]  ? iter_file_splice_write+0x165/0xc90
[ 2551.362051]  ? direct_splice_actor+0x10f/0x170
[ 2551.363006]  ? splice_direct_to_actor+0x387/0x980
[ 2551.364001]  ? do_splice_direct+0x1c4/0x290
[ 2551.364888]  ? do_sendfile+0x553/0x11e0
[ 2551.365714]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2551.366678]  ? do_syscall_64+0x33/0x40
[ 2551.367483]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2551.368602]  do_iter_readv_writev+0x476/0x750
[ 2551.369534]  ? _cond_resched+0x10/0x30
[ 2551.370343]  ? new_sync_write+0x660/0x660
[ 2551.371208]  ? avc_policy_seqno+0x9/0x70
[ 2551.372052]  ? selinux_file_permission+0x92/0x520
[ 2551.373067]  ? security_file_permission+0xb1/0xe0
[ 2551.374090]  do_iter_write+0x191/0x700
[ 2551.374903]  ? trace_hardirqs_on+0x5b/0x180
[ 2551.375815]  vfs_iter_write+0x70/0xa0
[ 2551.376605]  iter_file_splice_write+0x726/0xc90
[ 2551.377583]  ? generic_splice_sendpage+0x140/0x140
[ 2551.378623]  ? security_file_permission+0xb1/0xe0
[ 2551.379625]  ? generic_splice_sendpage+0x140/0x140
[ 2551.380646]  direct_splice_actor+0x10f/0x170
[ 2551.381560]  splice_direct_to_actor+0x387/0x980
[ 2551.382537]  ? pipe_to_sendpage+0x380/0x380
[ 2551.383450]  ? do_splice_to+0x160/0x160
[ 2551.384274]  ? security_file_permission+0xb1/0xe0
[ 2551.385288]  do_splice_direct+0x1c4/0x290
[ 2551.386160]  ? splice_direct_to_actor+0x980/0x980
[ 2551.387161]  ? avc_policy_seqno+0x9/0x70
[ 2551.388002]  ? security_file_permission+0xb1/0xe0
[ 2551.389015]  do_sendfile+0x553/0x11e0
[ 2551.389822]  ? do_pwritev+0x270/0x270
[ 2551.390617]  ? wait_for_completion_io+0x270/0x270
[ 2551.391623]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2551.392588]  ? vfs_write+0x354/0xb10
[ 2551.393360]  __x64_sys_sendfile64+0x1d1/0x210
[ 2551.394301]  ? __ia32_sys_sendfile+0x220/0x220
[ 2551.395259]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2551.396369]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2551.397449]  do_syscall_64+0x33/0x40
[ 2551.398233]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2551.399292] RIP: 0033:0x7fa861eb0b19
[ 2551.400071] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2551.403921] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2551.405496] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2551.406993] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2551.408476] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2551.409976] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2551.411454] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
16:48:25 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180)) (fail_nth: 11)

16:48:25 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)
timer_gettime(0x0, &(0x7f0000000040))

16:48:25 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5450, &(0x7f0000000180))

16:48:25 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x700000000000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

[ 2551.570985] FAULT_INJECTION: forcing a failure.
[ 2551.570985] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2551.572419] CPU: 0 PID: 12991 Comm: syz-executor.3 Not tainted 5.10.235 #1
[ 2551.573207] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2551.574176] Call Trace:
[ 2551.574480]  dump_stack+0x107/0x167
[ 2551.574897]  should_fail.cold+0x5/0xa
[ 2551.575336]  __alloc_pages_nodemask+0x182/0x600
[ 2551.575862]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 2551.576550]  ? up_write+0x191/0x550
[ 2551.576963]  ? rwlock_bug.part.0+0x90/0x90
[ 2551.577444]  ? anon_vma_interval_tree_insert+0x277/0x450
[ 2551.578069]  alloc_pages_vma+0xbb/0x410
[ 2551.578524]  handle_mm_fault+0x152f/0x3500
[ 2551.579003]  ? __lock_acquire+0x1657/0x5b00
[ 2551.579494]  ? __pmd_alloc+0x5e0/0x5e0
[ 2551.579939]  ? vmacache_find+0x55/0x2a0
[ 2551.580391]  ? vmacache_update+0xce/0x140
[ 2551.580869]  do_user_addr_fault+0x56e/0xc60
[ 2551.581370]  exc_page_fault+0xa2/0x1a0
[ 2551.581811]  asm_exc_page_fault+0x1e/0x30
[ 2551.582298] RIP: 0010:__put_user_nocheck_4+0x3/0x11
[ 2551.582864] Code: 00 00 48 39 d9 73 54 0f 01 cb 66 89 01 31 c9 0f 01 ca e9 61 ea 1c 02 90 48 bb fd ef ff ff ff 7f 00 00 48 39 d9 73 34 0f 01 cb <89> 01 31 c9 0f 01 ca e9 42 ea 1c 02 66 90 48 bb f9 ef ff ff ff 7f
[ 2551.584929] RSP: 0018:ffff888047887d08 EFLAGS: 00050293
[ 2551.585544] RAX: 0000000000034000 RBX: 00007fffffffeffd RCX: 0000000020000180
[ 2551.586352] RDX: 0000000000040000 RSI: ffffffff837fb6d4 RDI: ffff888046bcbdb8
[ 2551.587158] RBP: 0000000020000180 R08: 0000000000000000 R09: 0000000000000000
[ 2551.587981] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88804d734000
[ 2551.588804] R13: ffff88804d734274 R14: 0000000020000180 R15: ffffffff854de640
[ 2551.589633]  ? bt_sock_ioctl+0x264/0x2f0
[ 2551.590104]  bt_sock_ioctl+0x276/0x2f0
[ 2551.590549]  sock_do_ioctl+0xd3/0x300
[ 2551.590979]  ? compat_ifr_data_ioctl+0x180/0x180
[ 2551.591520]  ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410
[ 2551.592174]  ? __sanitizer_cov_trace_switch+0x45/0x80
[ 2551.592770]  ? do_vfs_ioctl+0x283/0x10d0
[ 2551.593229]  ? selinux_bprm_creds_for_exec+0xb60/0xb60
[ 2551.593824]  ? generic_block_fiemap+0x60/0x60
[ 2551.594341]  ? lock_downgrade+0x6d0/0x6d0
[ 2551.594813]  sock_ioctl+0x3ef/0x710
[ 2551.595227]  ? dlci_ioctl_set+0x30/0x30
[ 2551.595680]  ? selinux_file_ioctl+0xb6/0x270
[ 2551.596180]  ? dlci_ioctl_set+0x30/0x30
[ 2551.596634]  __x64_sys_ioctl+0x19a/0x210
[ 2551.597094]  do_syscall_64+0x33/0x40
[ 2551.597524]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2551.598110] RIP: 0033:0x7f92338a4b19
[ 2551.598543] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2551.600628] RSP: 002b:00007f9230e1a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2551.601492] RAX: ffffffffffffffda RBX: 00007f92339b7f60 RCX: 00007f92338a4b19
[ 2551.602308] RDX: 0000000020000180 RSI: 0000000000005411 RDI: 0000000000000005
[ 2551.603120] RBP: 00007f9230e1a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2551.603931] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2551.604738] R13: 00007fffde0226bf R14: 00007f9230e1a300 R15: 0000000000022000
16:48:26 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) (fail_nth: 3)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

[ 2551.637901] loop7: detected capacity change from 0 to 135266304
[ 2551.655581] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2551.674746] FAULT_INJECTION: forcing a failure.
[ 2551.674746] name failslab, interval 1, probability 0, space 0, times 0
[ 2551.676640] CPU: 0 PID: 12997 Comm: syz-executor.4 Not tainted 5.10.235 #1
[ 2551.677434] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2551.678385] Call Trace:
[ 2551.678691]  dump_stack+0x107/0x167
[ 2551.679114]  should_fail.cold+0x5/0xa
[ 2551.679553]  ? kobject_get_path+0xc5/0x1f0
[ 2551.680052]  should_failslab+0x5/0x20
[ 2551.680489]  __kmalloc+0x72/0x390
[ 2551.680892]  kobject_get_path+0xc5/0x1f0
[ 2551.681362]  input_devices_seq_show+0x8a/0xfe0
[ 2551.681894]  ? input_inject_event+0x390/0x390
[ 2551.682410]  ? seq_list_start+0x11/0xc0
[ 2551.682867]  ? seq_list_start+0x30/0xc0
[ 2551.683318]  ? seq_list_start+0x98/0xc0
[ 2551.683783]  seq_read_iter+0x510/0x12b0
[ 2551.684249]  seq_read+0x3dd/0x5b0
[ 2551.684640]  ? seq_read_iter+0x12b0/0x12b0
[ 2551.685129]  ? find_held_lock+0x2c/0x110
[ 2551.685613]  ? fsnotify_perm.part.0+0x22d/0x620
[ 2551.686159]  ? seq_read_iter+0x12b0/0x12b0
[ 2551.686645]  proc_reg_read+0x22a/0x300
[ 2551.687088]  ? proc_reg_write+0x300/0x300
[ 2551.687564]  vfs_read+0x228/0x620
[ 2551.687964]  __x64_sys_pread64+0x201/0x260
[ 2551.688448]  ? ksys_pread64+0x1b0/0x1b0
[ 2551.688910]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2551.689519]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2551.690124]  do_syscall_64+0x33/0x40
[ 2551.690558]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2551.691148] RIP: 0033:0x7fabaeeedb19
[ 2551.691571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2551.693682] RSP: 002b:00007fabac463188 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[ 2551.694573] RAX: ffffffffffffffda RBX: 00007fabaf000f60 RCX: 00007fabaeeedb19
[ 2551.695396] RDX: 0000000000000ff8 RSI: 00000000200010c0 RDI: 0000000000000004
[ 2551.696218] RBP: 00007fabac4631d0 R08: 0000000000000000 R09: 0000000000000000
[ 2551.697032] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2551.697849] R13: 00007ffdf21fb87f R14: 00007fabac463300 R15: 0000000000022000
[ 2551.699570] loop7: detected capacity change from 0 to 135266304
[ 2551.721169] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2551.771819] loop4: detected capacity change from 0 to 16896
16:48:50 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r2=>r0, {0x1}}, './file0\x00'})
r3 = syz_io_uring_setup(0x21fc, &(0x7f0000000040)={0x0, 0x3fda, 0x10, 0x1, 0xd1, 0x0, r2}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ff4000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000180)=<r4=>0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f0000000140)=@IORING_OP_TEE={0x21, 0x3, 0x0, @fd=r0, 0x0, 0x0, 0x101, 0x4, 0x1, {0x0, r5, r0}}, 0x3ff)
r6 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0)
syz_io_uring_submit(r9, r8, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r10 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2, 0x10, r1, 0x10000000)
r11 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r12 = fcntl$dupfd(r11, 0x0, r11)
connect$bt_sco(r12, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r13 = fsopen(&(0x7f00000001c0)='cramfs\x00', 0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000200)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd=r12, 0x101, {0x0, r13}, 0x9, 0x4, 0x0, {0x0, r5, r3}}, 0x2)
shutdown(r1, 0x0)

16:48:50 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:48:50 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) (fail_nth: 4)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:48:50 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(0x0, &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:48:50 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5451, &(0x7f0000000180))

16:48:50 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x800000000000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:48:50 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 91)

16:48:50 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180)) (fail_nth: 12)

[ 2576.029997] FAULT_INJECTION: forcing a failure.
[ 2576.029997] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2576.032104] CPU: 1 PID: 13022 Comm: syz-executor.3 Not tainted 5.10.235 #1
[ 2576.033343] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2576.034942] Call Trace:
[ 2576.035481]  dump_stack+0x107/0x167
[ 2576.036136]  should_fail.cold+0x5/0xa
[ 2576.036834]  _copy_to_user+0x2e/0x180
[ 2576.037521]  simple_read_from_buffer+0xcc/0x160
[ 2576.038372]  proc_fail_nth_read+0x198/0x230
[ 2576.039154]  ? proc_sessionid_read+0x230/0x230
[ 2576.039974]  ? security_file_permission+0xb1/0xe0
[ 2576.040842]  ? proc_sessionid_read+0x230/0x230
[ 2576.041663]  vfs_read+0x228/0x620
[ 2576.042303]  ksys_read+0x12d/0x260
[ 2576.042936]  ? vfs_write+0xb10/0xb10
[ 2576.043613]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2576.044527]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2576.045442]  do_syscall_64+0x33/0x40
[ 2576.046101]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2576.047021] RIP: 0033:0x7f923385769c
[ 2576.047670] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 2576.049763] FAULT_INJECTION: forcing a failure.
[ 2576.049763] name failslab, interval 1, probability 0, space 0, times 0
[ 2576.050963] RSP: 002b:00007f9230e1a170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2576.050983] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f923385769c
[ 2576.050993] RDX: 000000000000000f RSI: 00007f9230e1a1e0 RDI: 0000000000000003
[ 2576.051003] RBP: 00007f9230e1a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2576.051013] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2576.051023] R13: 00007fffde0226bf R14: 00007f9230e1a300 R15: 0000000000022000
[ 2576.063535] CPU: 0 PID: 13014 Comm: syz-executor.4 Not tainted 5.10.235 #1
[ 2576.065028] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2576.066874] Call Trace:
[ 2576.067421]  dump_stack+0x107/0x167
[ 2576.068169]  should_fail.cold+0x5/0xa
[ 2576.068951]  ? create_object.isra.0+0x3a/0xa20
[ 2576.069886]  should_failslab+0x5/0x20
[ 2576.070682]  kmem_cache_alloc+0x5b/0x310
[ 2576.071535]  create_object.isra.0+0x3a/0xa20
[ 2576.072447]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2576.073504]  __kmalloc+0x16e/0x390
[ 2576.074249]  ? input_devices_seq_start+0x1d/0x110
[ 2576.075262]  kobject_get_path+0xc5/0x1f0
[ 2576.076123]  input_devices_seq_show+0x8a/0xfe0
[ 2576.077053]  ? input_inject_event+0x390/0x390
[ 2576.077961]  ? kasan_unpoison_shadow+0x33/0x50
[ 2576.078908]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2576.079960]  ? seq_list_start+0x98/0xc0
[ 2576.080774]  seq_read_iter+0x510/0x12b0
[ 2576.081622]  seq_read+0x3dd/0x5b0
[ 2576.082357]  ? seq_read_iter+0x12b0/0x12b0
[ 2576.083224]  ? find_held_lock+0x2c/0x110
[ 2576.084071]  ? fsnotify_perm.part.0+0x22d/0x620
[ 2576.085020]  ? seq_read_iter+0x12b0/0x12b0
[ 2576.085888]  proc_reg_read+0x22a/0x300
[ 2576.086700]  ? proc_reg_write+0x300/0x300
[ 2576.087545]  vfs_read+0x228/0x620
[ 2576.088262]  __x64_sys_pread64+0x201/0x260
[ 2576.089125]  ? ksys_pread64+0x1b0/0x1b0
[ 2576.089945]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2576.091034]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2576.092090]  do_syscall_64+0x33/0x40
[ 2576.092858]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2576.093902] RIP: 0033:0x7fabaeeedb19
[ 2576.094677] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2576.096400] loop7: detected capacity change from 0 to 135266304
[ 2576.098423] RSP: 002b:00007fabac463188 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[ 2576.098446] RAX: ffffffffffffffda RBX: 00007fabaf000f60 RCX: 00007fabaeeedb19
[ 2576.098459] RDX: 0000000000000ff8 RSI: 00000000200010c0 RDI: 0000000000000004
[ 2576.098473] RBP: 00007fabac4631d0 R08: 0000000000000000 R09: 0000000000000000
[ 2576.098497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2576.106818] R13: 00007ffdf21fb87f R14: 00007fabac463300 R15: 0000000000022000
16:48:50 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:48:50 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5452, &(0x7f0000000180))

[ 2576.128174] 9pnet: Could not find request transport: xen
[ 2576.144043] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2576.198186] FAULT_INJECTION: forcing a failure.
[ 2576.198186] name failslab, interval 1, probability 0, space 0, times 0
[ 2576.200668] CPU: 0 PID: 13023 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2576.202150] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2576.203844] Call Trace:
[ 2576.204389]  dump_stack+0x107/0x167
[ 2576.205136]  should_fail.cold+0x5/0xa
[ 2576.205926]  ? mempool_alloc+0x148/0x360
[ 2576.206778]  ? mempool_free_pages+0x20/0x20
[ 2576.207661]  should_failslab+0x5/0x20
[ 2576.208474]  kmem_cache_alloc+0x5b/0x310
[ 2576.209477]  ? mempool_free_pages+0x20/0x20
[ 2576.210380]  mempool_alloc+0x148/0x360
[ 2576.211198]  ? mempool_resize+0x7d0/0x7d0
[ 2576.212066]  ? lock_downgrade+0x6d0/0x6d0
[ 2576.212937]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2576.213965]  bio_alloc_bioset+0x36e/0x600
[ 2576.214856]  ? bvec_alloc+0x2f0/0x2f0
[ 2576.215657]  ? iov_iter_npages+0x1fd/0xa70
[ 2576.216545]  iomap_dio_bio_actor+0x518/0xef0
[ 2576.217468]  iomap_dio_actor+0x36f/0x560
[ 2576.218330]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2576.219282]  ? do_syscall_64+0x33/0x40
[ 2576.220090]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2576.221202]  iomap_apply+0x289/0x810
[ 2576.221987]  ? iomap_dio_rw+0x90/0x90
[ 2576.222802]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2576.223990]  ? mark_held_locks+0x9e/0xe0
[ 2576.224878]  ? filemap_check_errors+0xa5/0x150
[ 2576.226054]  __iomap_dio_rw+0x6cd/0x1110
[ 2576.226916]  ? iomap_dio_rw+0x90/0x90
[ 2576.227903]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2576.228879]  ? ext4_orphan_add+0x253/0x9e0
[ 2576.229960]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2576.231022]  ? ext4_empty_dir+0xae0/0xae0
[ 2576.232058]  ? jbd2__journal_start+0xf3/0x7e0
[ 2576.232996]  iomap_dio_rw+0x31/0x90
[ 2576.233775]  ext4_file_write_iter+0xe0e/0x1530
[ 2576.234729]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2576.235705]  ? kasan_save_stack+0x32/0x40
[ 2576.236737]  ? kasan_save_stack+0x1b/0x40
[ 2576.237745]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2576.239020]  ? iter_file_splice_write+0x165/0xc90
[ 2576.240074]  ? direct_splice_actor+0x10f/0x170
[ 2576.241022]  ? splice_direct_to_actor+0x387/0x980
[ 2576.242212]  ? do_splice_direct+0x1c4/0x290
[ 2576.243307]  ? do_sendfile+0x553/0x11e0
[ 2576.244163]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2576.245159]  ? do_syscall_64+0x33/0x40
[ 2576.245988]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2576.247228]  do_iter_readv_writev+0x476/0x750
[ 2576.248336]  ? _cond_resched+0x10/0x30
[ 2576.249193]  ? new_sync_write+0x660/0x660
[ 2576.250141]  ? avc_policy_seqno+0x9/0x70
[ 2576.251000]  ? selinux_file_permission+0x92/0x520
[ 2576.251981]  ? security_file_permission+0xb1/0xe0
[ 2576.252987]  do_iter_write+0x191/0x700
[ 2576.253799]  ? trace_hardirqs_on+0x5b/0x180
[ 2576.254723]  vfs_iter_write+0x70/0xa0
[ 2576.255496]  iter_file_splice_write+0x726/0xc90
[ 2576.256602]  ? generic_splice_sendpage+0x140/0x140
[ 2576.257649]  ? security_file_permission+0xb1/0xe0
[ 2576.258766]  ? generic_splice_sendpage+0x140/0x140
[ 2576.259853]  direct_splice_actor+0x10f/0x170
[ 2576.260817]  splice_direct_to_actor+0x387/0x980
[ 2576.261793]  ? pipe_to_sendpage+0x380/0x380
[ 2576.262736]  ? do_splice_to+0x160/0x160
[ 2576.263552]  ? security_file_permission+0xb1/0xe0
[ 2576.264542]  do_splice_direct+0x1c4/0x290
[ 2576.265405]  ? splice_direct_to_actor+0x980/0x980
[ 2576.266408]  ? avc_policy_seqno+0x9/0x70
[ 2576.267271]  ? security_file_permission+0xb1/0xe0
[ 2576.268484]  do_sendfile+0x553/0x11e0
[ 2576.269462]  ? do_pwritev+0x270/0x270
[ 2576.270458]  ? wait_for_completion_io+0x270/0x270
[ 2576.271515]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2576.272491]  ? vfs_write+0x354/0xb10
[ 2576.273451]  __x64_sys_sendfile64+0x1d1/0x210
[ 2576.274408]  ? __ia32_sys_sendfile+0x220/0x220
[ 2576.275378]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2576.276460]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2576.277530]  do_syscall_64+0x33/0x40
[ 2576.278327]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2576.279637] RIP: 0033:0x7fa861eb0b19
[ 2576.280489] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2576.284380] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2576.286130] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2576.287771] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2576.289236] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2576.290728] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2576.292208] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
[ 2576.351049] loop4: detected capacity change from 0 to 16896
16:48:50 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x2, &(0x7f0000000180))

16:48:50 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x900000000000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:48:50 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) (fail_nth: 5)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:48:50 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
shutdown(r2, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
timer_create(0x3, &(0x7f0000000000)={0x0, 0x1c, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000040)=<r4=>0x0)
timer_settime(r4, 0x0, &(0x7f0000000480)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
clock_gettime(0x0, &(0x7f0000000080)={<r5=>0x0, <r6=>0x0})
timer_settime(r4, 0x1, &(0x7f00000000c0)={{0x77359400}, {r5, r6+10000000}}, &(0x7f0000000440))
timer_delete(r4)
timer_create(0x3, &(0x7f0000000000)={0x0, 0x1c, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000040)=<r7=>0x0)
timer_settime(r7, 0x0, &(0x7f0000000480)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
clock_gettime(0x0, &(0x7f0000000080)={<r8=>0x0, <r9=>0x0})
timer_settime(r7, 0x1, &(0x7f00000000c0)={{0x77359400}, {r8, r9+10000000}}, &(0x7f0000000440))
timer_delete(r7)
timer_create(0x3, &(0x7f0000000400)={0x0, 0x2c, 0x0, @thr={&(0x7f0000000300)="d451e3ffb66db724f96943367768725192ae65bed9f4c7effb560556e80ce618e14d9d8092b060937ca7031c377643420608a1ebf39afd6c4f8907ee6f0f5578c41a90def8f56558fc6cd70fa8a7c9b9aba2f6b4a59d44b5b90fe12ad0d3b3dd950f62c416ad8c62dc6af237cce48a56c4d15f597d74ca530fa11eae72ebeb5924e74a0d4875421a7ebb9ecacf99504b939b000c15d8cacf5b09f20afa3f43d7141b0fa9e4fa92e759e9610469c462c47269798a317c2efe5ef3155a75f726a500d61a6e5e6b5dfb67602191991cf3cde12b6a72bafcb817b49f6ea15089e56b4a172603", &(0x7f00000004c0)="d1a78f137354720d7b62d3bd92c30136753b332637d4afacadcd8bfd181a74900521f1037a84e79cf693e453c35bfc6964383ec44b511a20f8390531e0148aab6e7a1f05814624b540546ab6d37edd3863b8aeb07c49704cdfc4849ef41213769bf5f2ea7cf2920b67d66ebe26015680d5208aa96fc851fb6c68bbf094bbb014aa765256b85b3c842a52943a0648ed82be43bb938647ab9ad089c67089cf4df72535861d5d0d1309158df08608dd2afbb747e14879fd4db7b3b543c6907f48a0928b8765185a1cb37af26d8bac525869939a39fa3514ab45ddf6a6e0770b8267b824b2"}}, &(0x7f00000005c0)=<r10=>0x0)
timer_gettime(r10, &(0x7f0000000040))
ioctl$VFAT_IOCTL_READDIR_BOTH(r3, 0x82307201, &(0x7f00000000c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
getsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000080), 0x10)

[ 2576.518881] loop7: detected capacity change from 0 to 135266304
[ 2576.528167] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:48:50 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5460, &(0x7f0000000180))

16:48:50 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x4b47, &(0x7f0000000180))

[ 2576.545728] loop7: detected capacity change from 0 to 135266304
[ 2576.551990] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2576.603063] FAULT_INJECTION: forcing a failure.
[ 2576.603063] name failslab, interval 1, probability 0, space 0, times 0
[ 2576.604889] CPU: 1 PID: 13056 Comm: syz-executor.4 Not tainted 5.10.235 #1
[ 2576.605909] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2576.607136] Call Trace:
[ 2576.607540]  dump_stack+0x107/0x167
[ 2576.608077]  should_fail.cold+0x5/0xa
[ 2576.608638]  ? kobject_get_path+0xc5/0x1f0
[ 2576.609278]  should_failslab+0x5/0x20
[ 2576.609842]  __kmalloc+0x72/0x390
[ 2576.610365]  kobject_get_path+0xc5/0x1f0
[ 2576.610978]  input_devices_seq_show+0x8a/0xfe0
[ 2576.611646]  ? input_inject_event+0x390/0x390
[ 2576.612305]  ? kasan_unpoison_shadow+0x33/0x50
[ 2576.612977]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2576.613731]  ? seq_list_start+0x98/0xc0
[ 2576.614323]  seq_read_iter+0xbf0/0x12b0
[ 2576.614915]  seq_read+0x3dd/0x5b0
[ 2576.615420]  ? seq_read_iter+0x12b0/0x12b0
[ 2576.616039]  ? find_held_lock+0x2c/0x110
[ 2576.616644]  ? fsnotify_perm.part.0+0x22d/0x620
[ 2576.617329]  ? seq_read_iter+0x12b0/0x12b0
[ 2576.617947]  proc_reg_read+0x22a/0x300
[ 2576.618522]  ? proc_reg_write+0x300/0x300
[ 2576.619127]  vfs_read+0x228/0x620
[ 2576.619645]  __x64_sys_pread64+0x201/0x260
[ 2576.620279]  ? ksys_pread64+0x1b0/0x1b0
[ 2576.620868]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2576.621638]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2576.622397]  do_syscall_64+0x33/0x40
[ 2576.622945]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2576.623684] RIP: 0033:0x7fabaeeedb19
[ 2576.624229] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2576.626902] RSP: 002b:00007fabac463188 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[ 2576.628010] RAX: ffffffffffffffda RBX: 00007fabaf000f60 RCX: 00007fabaeeedb19
[ 2576.629040] RDX: 0000000000000ff8 RSI: 00000000200010c0 RDI: 0000000000000004
[ 2576.630073] RBP: 00007fabac4631d0 R08: 0000000000000000 R09: 0000000000000000
[ 2576.631111] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2576.632135] R13: 00007ffdf21fb87f R14: 00007fabac463300 R15: 0000000000022000
16:48:51 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 92)

16:48:51 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xa00000000000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

[ 2576.703142] cgroup: fork rejected by pids controller in /syz4
[ 2576.727960] FAULT_INJECTION: forcing a failure.
[ 2576.727960] name failslab, interval 1, probability 0, space 0, times 0
[ 2576.729522] CPU: 1 PID: 13066 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2576.730501] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2576.731633] Call Trace:
[ 2576.732000]  dump_stack+0x107/0x167
[ 2576.732487]  should_fail.cold+0x5/0xa
[ 2576.733005]  ? create_object.isra.0+0x3a/0xa20
[ 2576.733643]  should_failslab+0x5/0x20
[ 2576.734168]  kmem_cache_alloc+0x5b/0x310
[ 2576.734706]  ? blk_queue_enter+0xc30/0xc30
[ 2576.735285]  create_object.isra.0+0x3a/0xa20
[ 2576.735864]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2576.736562]  kmem_cache_alloc+0x159/0x310
[ 2576.737126]  jbd2__journal_start+0x190/0x7e0
[ 2576.737738]  __ext4_journal_start_sb+0x214/0x390
[ 2576.738389]  ext4_iomap_begin+0x485/0x700
[ 2576.738955]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2576.739634]  ? iomap_dio_actor+0x377/0x560
[ 2576.740204]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2576.740834]  ? do_syscall_64+0x33/0x40
[ 2576.741367]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2576.742087]  iomap_apply+0x164/0x810
[ 2576.742604]  ? iomap_dio_rw+0x90/0x90
[ 2576.743119]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2576.743905]  ? mark_held_locks+0x9e/0xe0
[ 2576.744466]  ? filemap_check_errors+0xa5/0x150
[ 2576.745089]  __iomap_dio_rw+0x6cd/0x1110
[ 2576.745640]  ? iomap_dio_rw+0x90/0x90
[ 2576.746170]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2576.746790]  ? ext4_orphan_add+0x253/0x9e0
[ 2576.747366]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2576.748032]  ? ext4_empty_dir+0xae0/0xae0
[ 2576.748588]  ? jbd2__journal_start+0xf3/0x7e0
[ 2576.749197]  iomap_dio_rw+0x31/0x90
[ 2576.749703]  ext4_file_write_iter+0xe0e/0x1530
[ 2576.750336]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2576.750953]  ? kasan_save_stack+0x32/0x40
[ 2576.751504]  ? kasan_save_stack+0x1b/0x40
[ 2576.752051]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2576.752739]  ? iter_file_splice_write+0x165/0xc90
[ 2576.753382]  ? direct_splice_actor+0x10f/0x170
[ 2576.753994]  ? splice_direct_to_actor+0x387/0x980
[ 2576.754652]  ? do_splice_direct+0x1c4/0x290
[ 2576.755230]  ? do_sendfile+0x553/0x11e0
[ 2576.755764]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2576.756387]  ? do_syscall_64+0x33/0x40
[ 2576.756902]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2576.757634]  do_iter_readv_writev+0x476/0x750
[ 2576.758240]  ? _cond_resched+0x10/0x30
[ 2576.758769]  ? new_sync_write+0x660/0x660
[ 2576.759321]  ? avc_policy_seqno+0x9/0x70
[ 2576.759866]  ? selinux_file_permission+0x92/0x520
[ 2576.760510]  ? security_file_permission+0xb1/0xe0
[ 2576.761156]  do_iter_write+0x191/0x700
[ 2576.761687]  ? trace_hardirqs_on+0x5b/0x180
[ 2576.762292]  vfs_iter_write+0x70/0xa0
[ 2576.762812]  iter_file_splice_write+0x726/0xc90
[ 2576.763446]  ? generic_splice_sendpage+0x140/0x140
[ 2576.764112]  ? security_file_permission+0xb1/0xe0
[ 2576.764768]  ? generic_splice_sendpage+0x140/0x140
[ 2576.765435]  direct_splice_actor+0x10f/0x170
[ 2576.766033]  splice_direct_to_actor+0x387/0x980
[ 2576.766671]  ? pipe_to_sendpage+0x380/0x380
[ 2576.767245]  ? do_splice_to+0x160/0x160
[ 2576.767773]  ? security_file_permission+0xb1/0xe0
[ 2576.768426]  do_splice_direct+0x1c4/0x290
[ 2576.768995]  ? splice_direct_to_actor+0x980/0x980
[ 2576.769610]  ? avc_policy_seqno+0x9/0x70
[ 2576.770171]  ? security_file_permission+0xb1/0xe0
[ 2576.770822]  do_sendfile+0x553/0x11e0
[ 2576.771344]  ? do_pwritev+0x270/0x270
[ 2576.771854]  ? wait_for_completion_io+0x270/0x270
[ 2576.772508]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2576.773132]  ? vfs_write+0x354/0xb10
[ 2576.773617]  __x64_sys_sendfile64+0x1d1/0x210
[ 2576.774232]  ? __ia32_sys_sendfile+0x220/0x220
[ 2576.774846]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2576.775549]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2576.776235]  do_syscall_64+0x33/0x40
[ 2576.776738]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2576.777438] RIP: 0033:0x7fa861eb0b19
[ 2576.777917] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2576.780323] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2576.781334] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2576.782259] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2576.783164] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2576.784066] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2576.784969] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
[ 2576.789818] loop7: detected capacity change from 0 to 135266304
[ 2576.802932] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2576.833808] loop7: detected capacity change from 0 to 135266304
[ 2576.839108] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:48:51 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x8901, &(0x7f0000000180))

16:48:51 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x4b49, &(0x7f0000000180))

16:48:51 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:48:51 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:48:51 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(0x0, &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:48:51 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xb00000000000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

[ 2576.949083] 9pnet: Could not find request transport: xen
16:48:51 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x541b, &(0x7f0000000180))

[ 2576.974752] loop4: detected capacity change from 0 to 16896
[ 2576.978073] loop7: detected capacity change from 0 to 135266304
16:48:51 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x8902, &(0x7f0000000180))

[ 2576.994855] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:48:51 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 93)

[ 2577.040030] loop7: detected capacity change from 0 to 135266304
16:48:51 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xeb, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

[ 2577.060850] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2577.072258] loop4: detected capacity change from 0 to 16896
16:48:51 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5421, &(0x7f0000000180))

[ 2577.113170] loop4: detected capacity change from 0 to 16896
[ 2577.146923] FAULT_INJECTION: forcing a failure.
[ 2577.146923] name failslab, interval 1, probability 0, space 0, times 0
[ 2577.149662] CPU: 0 PID: 13200 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2577.151169] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2577.152941] Call Trace:
[ 2577.153625]  dump_stack+0x107/0x167
[ 2577.154424]  should_fail.cold+0x5/0xa
[ 2577.155401]  ? jbd2__journal_start+0x190/0x7e0
[ 2577.156439]  should_failslab+0x5/0x20
[ 2577.157397]  kmem_cache_alloc+0x5b/0x310
[ 2577.158377]  jbd2__journal_start+0x190/0x7e0
[ 2577.159325]  __ext4_journal_start_sb+0x214/0x390
[ 2577.160546]  ext4_iomap_begin+0x485/0x700
[ 2577.161501]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2577.162638]  ? iomap_dio_actor+0x377/0x560
[ 2577.163750]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2577.164868]  ? do_syscall_64+0x33/0x40
[ 2577.165705]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2577.167070]  iomap_apply+0x164/0x810
[ 2577.168003]  ? iomap_dio_rw+0x90/0x90
[ 2577.168882]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2577.170374]  ? mark_held_locks+0x9e/0xe0
[ 2577.171259]  ? filemap_check_errors+0xa5/0x150
[ 2577.172244]  __iomap_dio_rw+0x6cd/0x1110
[ 2577.173213]  ? iomap_dio_rw+0x90/0x90
[ 2577.174201]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2577.175200]  ? ext4_orphan_add+0x253/0x9e0
[ 2577.176064]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2577.177112]  ? ext4_empty_dir+0xae0/0xae0
[ 2577.178159]  ? jbd2__journal_start+0xf3/0x7e0
[ 2577.179283]  iomap_dio_rw+0x31/0x90
[ 2577.180205]  ext4_file_write_iter+0xe0e/0x1530
[ 2577.181367]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2577.182530]  ? kasan_save_stack+0x32/0x40
[ 2577.183454]  ? kasan_save_stack+0x1b/0x40
[ 2577.184309]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2577.185386]  ? iter_file_splice_write+0x165/0xc90
[ 2577.186627]  ? direct_splice_actor+0x10f/0x170
[ 2577.187760]  ? splice_direct_to_actor+0x387/0x980
[ 2577.188952]  ? do_splice_direct+0x1c4/0x290
[ 2577.189992]  ? do_sendfile+0x553/0x11e0
[ 2577.190831]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2577.191786]  ? do_syscall_64+0x33/0x40
[ 2577.192587]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2577.193696]  do_iter_readv_writev+0x476/0x750
[ 2577.194631]  ? _cond_resched+0x10/0x30
[ 2577.195458]  ? new_sync_write+0x660/0x660
[ 2577.196330]  ? avc_policy_seqno+0x9/0x70
[ 2577.197194]  ? selinux_file_permission+0x92/0x520
[ 2577.198250]  ? security_file_permission+0xb1/0xe0
[ 2577.199468]  do_iter_write+0x191/0x700
[ 2577.200447]  ? trace_hardirqs_on+0x5b/0x180
[ 2577.201376]  vfs_iter_write+0x70/0xa0
[ 2577.202178]  iter_file_splice_write+0x726/0xc90
[ 2577.203356]  ? generic_splice_sendpage+0x140/0x140
[ 2577.204405]  ? security_file_permission+0xb1/0xe0
[ 2577.205412]  ? generic_splice_sendpage+0x140/0x140
[ 2577.206442]  direct_splice_actor+0x10f/0x170
[ 2577.207344]  splice_direct_to_actor+0x387/0x980
[ 2577.208460]  ? pipe_to_sendpage+0x380/0x380
[ 2577.209383]  ? do_splice_to+0x160/0x160
[ 2577.210221]  ? security_file_permission+0xb1/0xe0
[ 2577.211227]  do_splice_direct+0x1c4/0x290
[ 2577.212092]  ? splice_direct_to_actor+0x980/0x980
[ 2577.213095]  ? avc_policy_seqno+0x9/0x70
[ 2577.214014]  ? security_file_permission+0xb1/0xe0
[ 2577.215075]  do_sendfile+0x553/0x11e0
[ 2577.215890]  ? do_pwritev+0x270/0x270
[ 2577.216687]  ? wait_for_completion_io+0x270/0x270
[ 2577.217719]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2577.218878]  ? vfs_write+0x354/0xb10
[ 2577.219676]  __x64_sys_sendfile64+0x1d1/0x210
[ 2577.220796]  ? __ia32_sys_sendfile+0x220/0x220
[ 2577.221788]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2577.223013]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2577.224141]  do_syscall_64+0x33/0x40
[ 2577.224962]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2577.226022] RIP: 0033:0x7fa861eb0b19
[ 2577.226825] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2577.230824] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2577.232586] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2577.234190] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2577.235665] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2577.237150] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2577.238658] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
16:49:04 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:49:04 executing program 6:
ioctl$F2FS_IOC_GET_FEATURES(0xffffffffffffffff, 0x8004f50c, &(0x7f0000000040))
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

16:49:04 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0x231, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:49:04 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x8903, &(0x7f0000000180))

16:49:04 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xd00000000000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:49:04 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5450, &(0x7f0000000180))

16:49:04 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 94)

16:49:04 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(0x0, &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

[ 2590.510151] 9pnet: Could not find request transport: xen
[ 2590.535302] loop7: detected capacity change from 0 to 135266304
16:49:04 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5451, &(0x7f0000000180))

[ 2590.547603] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:49:04 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x8904, &(0x7f0000000180))

[ 2590.565878] loop4: detected capacity change from 0 to 16896
[ 2590.570790] FAULT_INJECTION: forcing a failure.
[ 2590.570790] name failslab, interval 1, probability 0, space 0, times 0
[ 2590.572249] CPU: 0 PID: 13231 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2590.573128] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2590.574169] Call Trace:
[ 2590.574521]  dump_stack+0x107/0x167
[ 2590.574981]  should_fail.cold+0x5/0xa
[ 2590.575471]  ? create_object.isra.0+0x3a/0xa20
[ 2590.576055]  should_failslab+0x5/0x20
[ 2590.576544]  kmem_cache_alloc+0x5b/0x310
[ 2590.577068]  ? lock_chain_count+0x20/0x20
[ 2590.577591]  create_object.isra.0+0x3a/0xa20
[ 2590.578159]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2590.578814]  __kmalloc+0x16e/0x390
[ 2590.579271]  ext4_find_extent+0xa77/0xd70
[ 2590.579817]  ext4_ext_map_blocks+0x1c8/0x5830
[ 2590.580398]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2590.581073]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2590.581751]  ? ext4_ext_release+0x10/0x10
[ 2590.582283]  ? ext4_map_blocks+0x5cd/0x1910
[ 2590.582827]  ? lock_release+0x680/0x680
[ 2590.583338]  ? ext4_es_lookup_extent+0x48d/0xaa0
[ 2590.583943]  ? lock_downgrade+0x6d0/0x6d0
[ 2590.584482]  ? down_write+0xe0/0x160
[ 2590.584946]  ? down_write_killable+0x180/0x180
[ 2590.585529]  ext4_map_blocks+0x63f/0x1910
[ 2590.586065]  ? kmem_cache_alloc+0x2a6/0x310
[ 2590.586630]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 2590.587189]  ? jbd2__journal_start+0xf3/0x7e0
[ 2590.587748]  ? __ext4_journal_start_sb+0x214/0x390
[ 2590.588361]  ? __ext4_journal_start_sb+0x1db/0x390
[ 2590.588984]  ext4_iomap_begin+0x3ad/0x700
[ 2590.589515]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2590.590158]  ? iomap_dio_actor+0x377/0x560
[ 2590.590690]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2590.591270]  ? do_syscall_64+0x33/0x40
[ 2590.591754]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2590.592421]  iomap_apply+0x164/0x810
[ 2590.592886]  ? iomap_dio_rw+0x90/0x90
[ 2590.593360]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2590.594096]  ? mark_held_locks+0x9e/0xe0
[ 2590.594756]  ? filemap_check_errors+0xa5/0x150
[ 2590.595329]  __iomap_dio_rw+0x6cd/0x1110
[ 2590.595843]  ? iomap_dio_rw+0x90/0x90
[ 2590.596327]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2590.596903]  ? ext4_orphan_add+0x253/0x9e0
[ 2590.597428]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2590.598038]  ? ext4_empty_dir+0xae0/0xae0
[ 2590.598560]  ? jbd2__journal_start+0xf3/0x7e0
[ 2590.599125]  iomap_dio_rw+0x31/0x90
[ 2590.599578]  ext4_file_write_iter+0xe0e/0x1530
[ 2590.600156]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2590.600725]  ? kasan_save_stack+0x32/0x40
[ 2590.601239]  ? kasan_save_stack+0x1b/0x40
[ 2590.601761]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2590.602411]  ? iter_file_splice_write+0x165/0xc90
[ 2590.603008]  ? direct_splice_actor+0x10f/0x170
[ 2590.603571]  ? splice_direct_to_actor+0x387/0x980
[ 2590.604164]  ? do_splice_direct+0x1c4/0x290
[ 2590.604695]  ? do_sendfile+0x553/0x11e0
[ 2590.605183]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2590.605753]  ? do_syscall_64+0x33/0x40
[ 2590.606233]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2590.606905]  do_iter_readv_writev+0x476/0x750
[ 2590.607460]  ? _cond_resched+0x10/0x30
[ 2590.607944]  ? new_sync_write+0x660/0x660
[ 2590.608457]  ? avc_policy_seqno+0x9/0x70
[ 2590.608969]  ? selinux_file_permission+0x92/0x520
[ 2590.609572]  ? security_file_permission+0xb1/0xe0
[ 2590.610174]  do_iter_write+0x191/0x700
[ 2590.610664]  ? trace_hardirqs_on+0x5b/0x180
[ 2590.611209]  vfs_iter_write+0x70/0xa0
[ 2590.611679]  iter_file_splice_write+0x726/0xc90
[ 2590.612262]  ? generic_splice_sendpage+0x140/0x140
[ 2590.612881]  ? security_file_permission+0xb1/0xe0
[ 2590.613481]  ? generic_splice_sendpage+0x140/0x140
[ 2590.614086]  direct_splice_actor+0x10f/0x170
[ 2590.614640]  splice_direct_to_actor+0x387/0x980
[ 2590.615217]  ? pipe_to_sendpage+0x380/0x380
[ 2590.615753]  ? do_splice_to+0x160/0x160
[ 2590.616242]  ? security_file_permission+0xb1/0xe0
[ 2590.616843]  do_splice_direct+0x1c4/0x290
[ 2590.617354]  ? splice_direct_to_actor+0x980/0x980
[ 2590.617949]  ? avc_policy_seqno+0x9/0x70
[ 2590.618463]  ? security_file_permission+0xb1/0xe0
[ 2590.619063]  do_sendfile+0x553/0x11e0
[ 2590.619543]  ? do_pwritev+0x270/0x270
[ 2590.620014]  ? wait_for_completion_io+0x270/0x270
[ 2590.620615]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2590.621198]  ? vfs_write+0x354/0xb10
[ 2590.621668]  __x64_sys_sendfile64+0x1d1/0x210
[ 2590.622221]  ? __ia32_sys_sendfile+0x220/0x220
[ 2590.622791]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2590.623436]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2590.624071]  do_syscall_64+0x33/0x40
[ 2590.624527]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2590.625162] RIP: 0033:0x7fa861eb0b19
[ 2590.625620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2590.627902] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2590.628838] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2590.629717] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2590.630604] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2590.631480] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2590.632361] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
16:49:05 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x8906, &(0x7f0000000180))

16:49:05 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}, 0x8)
shutdown(r1, 0x0)
syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
r4 = syz_open_dev$vcsu(&(0x7f0000000080), 0x2, 0x100)
getsockopt$IP_VS_SO_GET_TIMEOUT(r4, 0x0, 0x486, &(0x7f00000000c0), &(0x7f0000000180)=0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_submit(0x0, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r4, 0xc0189375, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r5=>0xffffffffffffffff}, './file0\x00'})
r6 = syz_open_dev$ptys(0xc, 0x3, 0x1)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
splice(r6, &(0x7f0000000280)=0xfffffffffffffffe, r7, &(0x7f0000000400)=0x401, 0x800, 0xe)
io_uring_enter(r5, 0x57d1, 0x8d62, 0x0, &(0x7f0000000240), 0x8)
r8 = fcntl$dupfd(r0, 0x203, r1)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_WRITE_FIXED={0x5, 0x3, 0x0, @fd=r8, 0x3, 0x80, 0x4ab5ac96, 0x16, 0x0, {0x3}}, 0x9)

16:49:05 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5452, &(0x7f0000000180))

16:49:05 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5460, &(0x7f0000000180))

[ 2590.715181] loop7: detected capacity change from 0 to 135266304
[ 2590.727204] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:49:05 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xf00000000000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:49:05 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0x331, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

[ 2590.813896] loop4: detected capacity change from 0 to 16896
[ 2590.840002] loop4: detected capacity change from 0 to 16896
16:49:21 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x8901, &(0x7f0000000180))

16:49:21 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x8907, &(0x7f0000000180))

16:49:21 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0x200020b8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:49:21 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
shutdown(r1, 0x0)
r2 = fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
ioctl(0xffffffffffffffff, 0x7, &(0x7f0000000080)="8c741d0a1f8fefddd2eaf2ed2cbb839685a2a3bcaf9fa60d1f96d0cdbb7fba383c8a3bfe0d6d7fa255d6657c7a695b9cba")
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = fcntl$dupfd(r3, 0x0, r3)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r5 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000280), 0x400, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r5, &(0x7f0000000040)={0x10})
sendmsg$NL80211_CMD_DEAUTHENTICATE(r2, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x20, 0x0, 0x200, 0x70bd26, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}]}, 0x20}, 0x1, 0x0, 0x0, 0x20004000}, 0x801)
r6 = accept4$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x0, 0x0, @mcast2}, &(0x7f0000000200)=0x1c, 0x80800)
ioctl$FITRIM(r6, 0xc0185879, &(0x7f0000000240)={0xf89, 0x100000001, 0x5})

16:49:21 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x1100000000000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:49:21 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', 0x0, &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

[ 2606.967269] 9pnet: Could not find request transport: xen
16:49:21 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 95)

16:49:21 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(0xffffffffffffffff, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

[ 2606.980751] loop7: detected capacity change from 0 to 135266304
[ 2607.018005] FAULT_INJECTION: forcing a failure.
[ 2607.018005] name failslab, interval 1, probability 0, space 0, times 0
[ 2607.020698] CPU: 1 PID: 13386 Comm: syz-executor.2 Not tainted 5.10.235 #1
16:49:21 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>r0, {0x6}}, './file0\x00'})
connect$bt_sco(r1, &(0x7f0000000080)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r2 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r2, 0x0)

[ 2607.022466] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2607.024748] Call Trace:
[ 2607.025430]  dump_stack+0x107/0x167
[ 2607.026372]  should_fail.cold+0x5/0xa
[ 2607.027380]  ? ext4_mb_new_blocks+0x698/0x45c0
[ 2607.028575]  should_failslab+0x5/0x20
[ 2607.029544]  kmem_cache_alloc+0x5b/0x310
[ 2607.030599]  ext4_mb_new_blocks+0x698/0x45c0
[ 2607.031757]  ? trace_hardirqs_on+0x5b/0x180
[ 2607.032887]  ? ext4_cache_extents+0x148/0x2d0
[ 2607.034049]  ? ext4_discard_preallocations+0xd80/0xd80
[ 2607.035419]  ? ext4_ext_search_right+0x2e3/0xbd0
[ 2607.036537]  ext4_ext_map_blocks+0x1d49/0x5830
[ 2607.037721]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2607.039077]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2607.040447]  ? ext4_ext_release+0x10/0x10
[ 2607.041509]  ? ext4_map_blocks+0x5cd/0x1910
[ 2607.042649]  ? lock_release+0x680/0x680
[ 2607.043672]  ? ext4_es_lookup_extent+0x48d/0xaa0
[ 2607.044899]  ? lock_downgrade+0x6d0/0x6d0
[ 2607.045985]  ? down_write_killable+0x180/0x180
[ 2607.047205]  ext4_map_blocks+0x63f/0x1910
[ 2607.048105]  ? kmem_cache_alloc+0x2a6/0x310
[ 2607.049219]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 2607.050370]  ? jbd2__journal_start+0xf3/0x7e0
[ 2607.051603]  ? __ext4_journal_start_sb+0x214/0x390
[ 2607.052804]  ? __ext4_journal_start_sb+0x1db/0x390
[ 2607.054023]  ext4_iomap_begin+0x3ad/0x700
[ 2607.055035]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2607.056073]  ? iomap_dio_actor+0x377/0x560
[ 2607.056949]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2607.057907]  ? do_syscall_64+0x33/0x40
[ 2607.058721]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2607.059839]  iomap_apply+0x164/0x810
[ 2607.060625]  ? iomap_dio_rw+0x90/0x90
[ 2607.061430]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2607.062654]  ? mark_held_locks+0x9e/0xe0
[ 2607.063507]  ? filemap_check_errors+0xa5/0x150
[ 2607.064470]  __iomap_dio_rw+0x6cd/0x1110
[ 2607.065316]  ? iomap_dio_rw+0x90/0x90
[ 2607.066134]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2607.067088]  ? ext4_orphan_add+0x253/0x9e0
[ 2607.067972]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2607.068998]  ? ext4_empty_dir+0xae0/0xae0
[ 2607.069858]  ? jbd2__journal_start+0xf3/0x7e0
[ 2607.070816]  iomap_dio_rw+0x31/0x90
[ 2607.071584]  ext4_file_write_iter+0xe0e/0x1530
[ 2607.072555]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2607.073503]  ? kasan_save_stack+0x32/0x40
[ 2607.074368]  ? kasan_save_stack+0x1b/0x40
[ 2607.075242]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2607.076305]  ? iter_file_splice_write+0x165/0xc90
[ 2607.077312]  ? direct_splice_actor+0x10f/0x170
[ 2607.078264]  ? splice_direct_to_actor+0x387/0x980
[ 2607.079280]  ? do_splice_direct+0x1c4/0x290
[ 2607.080186]  ? do_sendfile+0x553/0x11e0
[ 2607.081021]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2607.081980]  ? do_syscall_64+0x33/0x40
[ 2607.082802]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2607.083928]  do_iter_readv_writev+0x476/0x750
[ 2607.084873]  ? _cond_resched+0x10/0x30
[ 2607.085692]  ? new_sync_write+0x660/0x660
[ 2607.086562]  ? avc_policy_seqno+0x9/0x70
[ 2607.087406]  ? selinux_file_permission+0x92/0x520
[ 2607.088419]  ? security_file_permission+0xb1/0xe0
[ 2607.089429]  do_iter_write+0x191/0x700
[ 2607.090242]  ? trace_hardirqs_on+0x5b/0x180
[ 2607.091157]  vfs_iter_write+0x70/0xa0
[ 2607.091955]  iter_file_splice_write+0x726/0xc90
[ 2607.092944]  ? generic_splice_sendpage+0x140/0x140
[ 2607.094000]  ? security_file_permission+0xb1/0xe0
[ 2607.095018]  ? generic_splice_sendpage+0x140/0x140
[ 2607.096053]  direct_splice_actor+0x10f/0x170
[ 2607.096979]  splice_direct_to_actor+0x387/0x980
[ 2607.097954]  ? pipe_to_sendpage+0x380/0x380
[ 2607.098874]  ? do_splice_to+0x160/0x160
[ 2607.099695]  ? security_file_permission+0xb1/0xe0
[ 2607.100728]  do_splice_direct+0x1c4/0x290
[ 2607.101600]  ? splice_direct_to_actor+0x980/0x980
[ 2607.102611]  ? avc_policy_seqno+0x9/0x70
[ 2607.103468]  ? security_file_permission+0xb1/0xe0
[ 2607.104476]  do_sendfile+0x553/0x11e0
[ 2607.105293]  ? do_pwritev+0x270/0x270
[ 2607.106090]  ? wait_for_completion_io+0x270/0x270
[ 2607.107097]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2607.108053]  ? vfs_write+0x354/0xb10
[ 2607.108826]  __x64_sys_sendfile64+0x1d1/0x210
[ 2607.109752]  ? __ia32_sys_sendfile+0x220/0x220
[ 2607.110728]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2607.111813]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2607.112884]  do_syscall_64+0x33/0x40
[ 2607.113656]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2607.114726] RIP: 0033:0x7fa861eb0b19
[ 2607.115492] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2607.116949] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2607.119312] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2607.119333] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2607.119343] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2607.119360] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2607.126000] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2607.127490] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
[ 2607.132134] loop4: detected capacity change from 0 to 16896
16:49:35 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(0xffffffffffffffff, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:49:35 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x8902, &(0x7f0000000180))

16:49:35 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x2)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:49:35 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x2000000000000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:49:35 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x8940, &(0x7f0000000180))

16:49:35 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 96)

16:49:35 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

16:49:35 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', 0x0, &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

[ 2621.508979] 9pnet: Could not find request transport: xen
[ 2621.518764] loop7: detected capacity change from 0 to 135266304
[ 2621.524575] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2621.548239] loop7: detected capacity change from 0 to 135266304
[ 2621.581771] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:49:35 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x8903, &(0x7f0000000180))

16:49:35 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x8941, &(0x7f0000000180))

[ 2621.598264] FAULT_INJECTION: forcing a failure.
[ 2621.598264] name failslab, interval 1, probability 0, space 0, times 0
[ 2621.600712] CPU: 0 PID: 13524 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2621.602179] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2621.603963] Call Trace:
[ 2621.604527]  dump_stack+0x107/0x167
[ 2621.605304]  should_fail.cold+0x5/0xa
[ 2621.606107]  ? create_object.isra.0+0x3a/0xa20
[ 2621.607078]  should_failslab+0x5/0x20
[ 2621.607875]  kmem_cache_alloc+0x5b/0x310
[ 2621.608735]  ? lock_chain_count+0x20/0x20
[ 2621.609623]  create_object.isra.0+0x3a/0xa20
[ 2621.610543]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2621.611630]  __kmalloc+0x16e/0x390
[ 2621.612382]  ext4_find_extent+0xa77/0xd70
[ 2621.613271]  ext4_ext_map_blocks+0x1c8/0x5830
[ 2621.613392] loop4: detected capacity change from 0 to 16896
[ 2621.614232]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2621.614255]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2621.614287]  ? ext4_ext_release+0x10/0x10
[ 2621.614313]  ? ext4_map_blocks+0x5cd/0x1910
[ 2621.618925]  ? lock_release+0x680/0x680
[ 2621.619755]  ? ext4_es_lookup_extent+0x48d/0xaa0
[ 2621.620758]  ? lock_downgrade+0x6d0/0x6d0
[ 2621.621669]  ? down_write+0xe0/0x160
[ 2621.622469]  ? down_write_killable+0x180/0x180
[ 2621.623457]  ext4_map_blocks+0x63f/0x1910
[ 2621.624327]  ? kmem_cache_alloc+0x2a6/0x310
[ 2621.625237]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 2621.626185]  ? jbd2__journal_start+0xf3/0x7e0
[ 2621.627139]  ? __ext4_journal_start_sb+0x214/0x390
[ 2621.628182]  ? __ext4_journal_start_sb+0x1db/0x390
[ 2621.629220]  ext4_iomap_begin+0x3ad/0x700
[ 2621.630107]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2621.631161]  ? iomap_dio_actor+0x377/0x560
[ 2621.632051]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2621.633029]  ? do_syscall_64+0x33/0x40
[ 2621.633842]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2621.634981]  iomap_apply+0x164/0x810
[ 2621.635771]  ? iomap_dio_rw+0x90/0x90
[ 2621.636569]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2621.637795]  ? mark_held_locks+0x9e/0xe0
[ 2621.638663]  ? filemap_check_errors+0xa5/0x150
[ 2621.639632]  __iomap_dio_rw+0x6cd/0x1110
[ 2621.640472]  ? iomap_dio_rw+0x90/0x90
[ 2621.641288]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2621.642251]  ? ext4_orphan_add+0x253/0x9e0
[ 2621.643138]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2621.644183]  ? ext4_empty_dir+0xae0/0xae0
[ 2621.645051]  ? jbd2__journal_start+0xf3/0x7e0
[ 2621.646005]  iomap_dio_rw+0x31/0x90
[ 2621.646783]  ext4_file_write_iter+0xe0e/0x1530
[ 2621.647773]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2621.648718]  ? kasan_save_stack+0x32/0x40
[ 2621.649582]  ? kasan_save_stack+0x1b/0x40
[ 2621.650446]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2621.651521]  ? iter_file_splice_write+0x165/0xc90
[ 2621.652537]  ? direct_splice_actor+0x10f/0x170
[ 2621.653485]  ? splice_direct_to_actor+0x387/0x980
[ 2621.654489]  ? do_splice_direct+0x1c4/0x290
[ 2621.655409]  ? do_sendfile+0x553/0x11e0
[ 2621.656233]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2621.657201]  ? do_syscall_64+0x33/0x40
[ 2621.658026]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2621.659162]  do_iter_readv_writev+0x476/0x750
[ 2621.660107]  ? _cond_resched+0x10/0x30
[ 2621.660932]  ? new_sync_write+0x660/0x660
[ 2621.661805]  ? avc_policy_seqno+0x9/0x70
[ 2621.662669]  ? selinux_file_permission+0x92/0x520
[ 2621.663687]  ? security_file_permission+0xb1/0xe0
[ 2621.664723]  do_iter_write+0x191/0x700
[ 2621.665558]  ? trace_hardirqs_on+0x5b/0x180
[ 2621.666472]  vfs_iter_write+0x70/0xa0
[ 2621.667289]  iter_file_splice_write+0x726/0xc90
[ 2621.668281]  ? generic_splice_sendpage+0x140/0x140
[ 2621.669337]  ? security_file_permission+0xb1/0xe0
[ 2621.670352]  ? generic_splice_sendpage+0x140/0x140
[ 2621.671397]  direct_splice_actor+0x10f/0x170
[ 2621.672332]  splice_direct_to_actor+0x387/0x980
[ 2621.673307]  ? pipe_to_sendpage+0x380/0x380
[ 2621.674228]  ? do_splice_to+0x160/0x160
[ 2621.675082]  ? security_file_permission+0xb1/0xe0
[ 2621.676110]  do_splice_direct+0x1c4/0x290
[ 2621.676990]  ? splice_direct_to_actor+0x980/0x980
[ 2621.678004]  ? avc_policy_seqno+0x9/0x70
[ 2621.678879]  ? security_file_permission+0xb1/0xe0
[ 2621.679922]  do_sendfile+0x553/0x11e0
[ 2621.680735]  ? do_pwritev+0x270/0x270
[ 2621.681546]  ? wait_for_completion_io+0x270/0x270
[ 2621.682565]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2621.683563]  ? vfs_write+0x354/0xb10
[ 2621.684359]  __x64_sys_sendfile64+0x1d1/0x210
[ 2621.685313]  ? __ia32_sys_sendfile+0x220/0x220
[ 2621.686282]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2621.687408]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2621.688496]  do_syscall_64+0x33/0x40
[ 2621.689287]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2621.690357] RIP: 0033:0x7fa861eb0b19
[ 2621.691158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2621.695053] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2621.696675] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2621.698198] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2621.699718] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2621.701236] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2621.702761] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
16:49:36 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x2010000000000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:49:36 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
syz_io_uring_setup(0x7078, &(0x7f0000000040)={0x0, 0x744b, 0x30, 0x0, 0x315}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0)=<r2=>0x0, &(0x7f0000000100))
r3 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0)
syz_io_uring_submit(r6, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r7 = accept4$packet(r1, &(0x7f0000000140), &(0x7f0000000180)=0x14, 0x180800)
syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r8=>0x0, &(0x7f0000000140)=<r9=>0x0)
r10 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r10, 0x0, 0x0}, 0x0)
r11 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FSYNC={0x3, 0x1, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r11}}, 0x8)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000700)=@IORING_OP_RECVMSG={0xa, 0x1, 0x0, r10, 0x0, &(0x7f00000006c0)={&(0x7f0000000440)=@ax25={{0x3, @netrom}, [@bcast, @bcast, @bcast, @default, @netrom, @bcast, @bcast]}, 0x80, &(0x7f0000000640)=[{&(0x7f00000003c0)=""/12, 0xc}, {&(0x7f00000004c0)=""/90, 0x5a}, {&(0x7f0000000540)=""/205, 0xcd}], 0x3, &(0x7f0000000680)=""/23, 0x17}, 0x0, 0x40, 0x0, {0x2, r11}}, 0x7)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_POLL_REMOVE={0x7, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, {0x0, r11}}, 0x6)
syz_io_uring_submit(r2, r5, &(0x7f0000000240)=@IORING_OP_CONNECT={0x10, 0x5, 0x0, r7, 0x80, &(0x7f00000001c0)=@phonet={0x23, 0x78, 0x5, 0xe6}, 0x0, 0x0, 0x1, {0x0, r11}}, 0x40)
shutdown(r1, 0x0)

[ 2621.779260] loop7: detected capacity change from 0 to 135266304
[ 2621.805441] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2621.845936] loop7: detected capacity change from 0 to 135266304
[ 2621.891682] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:49:49 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(0xffffffffffffffff, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:49:49 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', 0x0, &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:49:49 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 97)

16:49:49 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x2e00000000000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:49:49 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x8904, &(0x7f0000000180))

16:49:49 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x894c, &(0x7f0000000180))

16:49:49 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}, 0x8)
openat(r2, &(0x7f0000000040)='./file0\x00', 0x800, 0x120)
r3 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r3, 0x0)

16:49:49 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x3)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

[ 2635.334994] loop4: detected capacity change from 0 to 16896
[ 2635.371787] 9pnet: Could not find request transport: xen
[ 2635.376377] loop4: detected capacity change from 0 to 16896
[ 2635.380651] loop7: detected capacity change from 0 to 135266304
[ 2635.397733] FAULT_INJECTION: forcing a failure.
[ 2635.397733] name failslab, interval 1, probability 0, space 0, times 0
[ 2635.399096] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2635.400253] CPU: 0 PID: 13670 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2635.402400] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2635.404209] Call Trace:
[ 2635.404784]  dump_stack+0x107/0x167
[ 2635.405632]  should_fail.cold+0x5/0xa
[ 2635.406460]  ? ext4_find_extent+0xa77/0xd70
[ 2635.407391]  should_failslab+0x5/0x20
[ 2635.408214]  __kmalloc+0x72/0x390
[ 2635.408954]  ext4_find_extent+0xa77/0xd70
[ 2635.409893]  ext4_ext_map_blocks+0x1c8/0x5830
[ 2635.410900]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2635.412035]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2635.413150]  ? ext4_ext_release+0x10/0x10
[ 2635.414076]  ? ext4_map_blocks+0x5cd/0x1910
[ 2635.415058]  ? lock_release+0x680/0x680
[ 2635.415920]  ? ext4_es_lookup_extent+0x48d/0xaa0
[ 2635.416917]  ? lock_downgrade+0x6d0/0x6d0
[ 2635.417827]  ? down_write+0xe0/0x160
[ 2635.418611]  ? down_write_killable+0x180/0x180
[ 2635.419670]  ext4_map_blocks+0x63f/0x1910
[ 2635.420586]  ? kmem_cache_alloc+0x2a6/0x310
[ 2635.421529]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 2635.422469]  ? jbd2__journal_start+0xf3/0x7e0
[ 2635.423467]  ? __ext4_journal_start_sb+0x214/0x390
[ 2635.424532]  ? __ext4_journal_start_sb+0x1db/0x390
[ 2635.425619]  ext4_iomap_begin+0x3ad/0x700
[ 2635.426538]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2635.427598]  ? iomap_dio_actor+0x377/0x560
[ 2635.428511]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2635.429509]  ? do_syscall_64+0x33/0x40
[ 2635.430361]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2635.431533]  iomap_apply+0x164/0x810
[ 2635.432318]  ? iomap_dio_rw+0x90/0x90
[ 2635.433152]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2635.434408]  ? mark_held_locks+0x9e/0xe0
[ 2635.435338]  ? filemap_check_errors+0xa5/0x150
[ 2635.436344]  __iomap_dio_rw+0x6cd/0x1110
[ 2635.437204]  ? iomap_dio_rw+0x90/0x90
[ 2635.438055]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2635.439029]  ? ext4_orphan_add+0x253/0x9e0
[ 2635.439995]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2635.441065]  ? ext4_empty_dir+0xae0/0xae0
[ 2635.441940]  ? jbd2__journal_start+0xf3/0x7e0
[ 2635.442928]  iomap_dio_rw+0x31/0x90
[ 2635.443726]  ext4_file_write_iter+0xe0e/0x1530
[ 2635.444729]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2635.445749]  ? kasan_save_stack+0x32/0x40
[ 2635.446641]  ? kasan_save_stack+0x1b/0x40
[ 2635.447518]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2635.448611]  ? iter_file_splice_write+0x165/0xc90
[ 2635.449662]  ? direct_splice_actor+0x10f/0x170
[ 2635.450647]  ? splice_direct_to_actor+0x387/0x980
[ 2635.451686]  ? do_splice_direct+0x1c4/0x290
[ 2635.452630]  ? do_sendfile+0x553/0x11e0
[ 2635.453466]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2635.454480]  ? do_syscall_64+0x33/0x40
[ 2635.455343]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2635.456515]  do_iter_readv_writev+0x476/0x750
[ 2635.457462]  ? _cond_resched+0x10/0x30
[ 2635.458318]  ? new_sync_write+0x660/0x660
[ 2635.459200]  ? avc_policy_seqno+0x9/0x70
[ 2635.460091]  ? selinux_file_permission+0x92/0x520
[ 2635.461187]  ? security_file_permission+0xb1/0xe0
[ 2635.462255]  do_iter_write+0x191/0x700
[ 2635.463097]  ? trace_hardirqs_on+0x5b/0x180
[ 2635.464039]  vfs_iter_write+0x70/0xa0
[ 2635.464843]  iter_file_splice_write+0x726/0xc90
[ 2635.465898]  ? generic_splice_sendpage+0x140/0x140
[ 2635.467021]  ? security_file_permission+0xb1/0xe0
[ 2635.468081]  ? generic_splice_sendpage+0x140/0x140
[ 2635.469118]  direct_splice_actor+0x10f/0x170
[ 2635.470081]  splice_direct_to_actor+0x387/0x980
[ 2635.471111]  ? pipe_to_sendpage+0x380/0x380
[ 2635.472058]  ? do_splice_to+0x160/0x160
[ 2635.472895]  ? security_file_permission+0xb1/0xe0
[ 2635.473953]  do_splice_direct+0x1c4/0x290
[ 2635.474841]  ? splice_direct_to_actor+0x980/0x980
[ 2635.475931]  ? avc_policy_seqno+0x9/0x70
[ 2635.476794]  ? security_file_permission+0xb1/0xe0
[ 2635.477860]  do_sendfile+0x553/0x11e0
[ 2635.478683]  ? do_pwritev+0x270/0x270
[ 2635.479521]  ? wait_for_completion_io+0x270/0x270
[ 2635.480554]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2635.481609]  ? vfs_write+0x354/0xb10
[ 2635.482430]  __x64_sys_sendfile64+0x1d1/0x210
[ 2635.483389]  ? __ia32_sys_sendfile+0x220/0x220
[ 2635.484389]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2635.485501]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2635.486676]  do_syscall_64+0x33/0x40
[ 2635.487511]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2635.488629] RIP: 0033:0x7fa861eb0b19
[ 2635.489414] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2635.493470] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2635.495186] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2635.496744] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2635.498296] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2635.499900] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2635.501449] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
16:49:49 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x8980, &(0x7f0000000180))

16:49:49 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x4)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:49:49 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x8906, &(0x7f0000000180))

16:49:49 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 98)

16:49:50 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x8981, &(0x7f0000000180))

[ 2635.618040] loop7: detected capacity change from 0 to 135266304
16:49:50 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x8907, &(0x7f0000000180))

[ 2635.644417] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2635.658973] FAULT_INJECTION: forcing a failure.
[ 2635.658973] name failslab, interval 1, probability 0, space 0, times 0
[ 2635.660394] CPU: 1 PID: 13696 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2635.661193] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2635.662141] Call Trace:
[ 2635.662453]  dump_stack+0x107/0x167
[ 2635.662896]  should_fail.cold+0x5/0xa
[ 2635.663337]  ? ext4_mb_new_blocks+0x698/0x45c0
[ 2635.663872]  should_failslab+0x5/0x20
[ 2635.664315]  kmem_cache_alloc+0x5b/0x310
[ 2635.664787]  ext4_mb_new_blocks+0x698/0x45c0
[ 2635.665303]  ? trace_hardirqs_on+0x5b/0x180
[ 2635.665804]  ? ext4_cache_extents+0x148/0x2d0
[ 2635.666317]  ? ext4_discard_preallocations+0xd80/0xd80
[ 2635.666945]  ? ext4_ext_search_right+0x2e3/0xbd0
[ 2635.667497]  ext4_ext_map_blocks+0x1d49/0x5830
[ 2635.668031]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2635.668634]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2635.669237]  ? ext4_ext_release+0x10/0x10
[ 2635.669711]  ? ext4_map_blocks+0x5cd/0x1910
[ 2635.670210]  ? lock_release+0x680/0x680
[ 2635.670664]  ? ext4_es_lookup_extent+0x48d/0xaa0
[ 2635.671234]  ? lock_downgrade+0x6d0/0x6d0
[ 2635.671719]  ? down_write_killable+0x180/0x180
[ 2635.672249]  ext4_map_blocks+0x63f/0x1910
[ 2635.672731]  ? kmem_cache_alloc+0x2a6/0x310
[ 2635.673229]  ? ext4_issue_zeroout+0x1c0/0x1c0
[ 2635.673745]  ? jbd2__journal_start+0xf3/0x7e0
[ 2635.674257]  ? __ext4_journal_start_sb+0x214/0x390
[ 2635.674833]  ? __ext4_journal_start_sb+0x1db/0x390
[ 2635.675398]  ext4_iomap_begin+0x3ad/0x700
[ 2635.675890]  ? ext4_iomap_begin_report+0x5a0/0x5a0
[ 2635.676467]  ? iomap_dio_actor+0x377/0x560
[ 2635.676969]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2635.677512]  ? do_syscall_64+0x33/0x40
[ 2635.677960]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2635.678573]  iomap_apply+0x164/0x810
[ 2635.679034]  ? iomap_dio_rw+0x90/0x90
[ 2635.679473]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2635.680160]  ? mark_held_locks+0x9e/0xe0
[ 2635.680649]  ? filemap_check_errors+0xa5/0x150
[ 2635.681188]  __iomap_dio_rw+0x6cd/0x1110
[ 2635.681658]  ? iomap_dio_rw+0x90/0x90
[ 2635.682120]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2635.682658]  ? ext4_orphan_add+0x253/0x9e0
[ 2635.683177]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2635.683765]  ? ext4_empty_dir+0xae0/0xae0
[ 2635.684252]  ? jbd2__journal_start+0xf3/0x7e0
[ 2635.684771]  iomap_dio_rw+0x31/0x90
[ 2635.685204]  ext4_file_write_iter+0xe0e/0x1530
[ 2635.685755]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2635.686288]  ? kasan_save_stack+0x32/0x40
[ 2635.686795]  ? kasan_save_stack+0x1b/0x40
[ 2635.687292]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2635.687875]  ? iter_file_splice_write+0x165/0xc90
[ 2635.688438]  ? direct_splice_actor+0x10f/0x170
[ 2635.688959]  ? splice_direct_to_actor+0x387/0x980
[ 2635.689520]  ? do_splice_direct+0x1c4/0x290
[ 2635.690013]  ? do_sendfile+0x553/0x11e0
[ 2635.690475]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2635.691050]  ? do_syscall_64+0x33/0x40
[ 2635.691511]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2635.692144]  do_iter_readv_writev+0x476/0x750
[ 2635.692674]  ? _cond_resched+0x10/0x30
[ 2635.693135]  ? new_sync_write+0x660/0x660
[ 2635.693619]  ? avc_policy_seqno+0x9/0x70
[ 2635.694099]  ? selinux_file_permission+0x92/0x520
[ 2635.694671]  ? security_file_permission+0xb1/0xe0
[ 2635.695269]  do_iter_write+0x191/0x700
[ 2635.695732]  ? trace_hardirqs_on+0x5b/0x180
[ 2635.696243]  vfs_iter_write+0x70/0xa0
[ 2635.696690]  iter_file_splice_write+0x726/0xc90
[ 2635.697241]  ? generic_splice_sendpage+0x140/0x140
[ 2635.697814]  ? security_file_permission+0xb1/0xe0
[ 2635.698367]  ? generic_splice_sendpage+0x140/0x140
[ 2635.698969]  direct_splice_actor+0x10f/0x170
[ 2635.699486]  splice_direct_to_actor+0x387/0x980
[ 2635.700029]  ? pipe_to_sendpage+0x380/0x380
[ 2635.700529]  ? do_splice_to+0x160/0x160
[ 2635.700994]  ? security_file_permission+0xb1/0xe0
[ 2635.701522]  do_splice_direct+0x1c4/0x290
[ 2635.701968]  ? splice_direct_to_actor+0x980/0x980
[ 2635.702490]  ? avc_policy_seqno+0x9/0x70
[ 2635.703025]  ? security_file_permission+0xb1/0xe0
[ 2635.703675]  do_sendfile+0x553/0x11e0
[ 2635.704160]  ? do_pwritev+0x270/0x270
[ 2635.704621]  ? wait_for_completion_io+0x270/0x270
[ 2635.705238]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2635.705807]  ? vfs_write+0x354/0xb10
[ 2635.706242]  __x64_sys_sendfile64+0x1d1/0x210
[ 2635.706763]  ? __ia32_sys_sendfile+0x220/0x220
[ 2635.707386]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2635.708071]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2635.708697]  do_syscall_64+0x33/0x40
[ 2635.709162]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2635.709812] RIP: 0033:0x7fa861eb0b19
[ 2635.710264] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2635.712569] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2635.713526] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2635.714384] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2635.715251] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2635.716113] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2635.716927] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
16:49:50 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x3f00000000000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:49:50 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x8940, &(0x7f0000000180))

[ 2635.751815] loop4: detected capacity change from 0 to 16896
[ 2635.872689] loop7: detected capacity change from 0 to 135266304
[ 2635.888200] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2635.905081] loop7: detected capacity change from 0 to 135266304
[ 2635.911714] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:50:03 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, 0x0, 0x0)

16:50:03 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x8941, &(0x7f0000000180))

16:50:03 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
sendmsg$nl_generic(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="180000002b000000faa25a607133cc120d5f47b246704fd0"], 0x18}, 0x1, 0x0, 0x0, 0x4}, 0x4000)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r3, 0x0)
r4 = syz_mount_image$tmpfs(&(0x7f0000000140), &(0x7f0000000180)='./file0\x00', 0x6ec, 0x2, &(0x7f0000000280)=[{&(0x7f00000001c0)="c1065ccccf08d2eba25ffd4e121265bc326a92", 0x13, 0x8}, {&(0x7f0000000200)="241c02f3648f472b98adadffa0a179c7135682e74253307da4e32ed64aaf10a1f1fa8208009d59d1bf5f3dcfdb2ed24ce30c092411ea7ee56c7c58b8e99f0cdaeb00cf041952256ecc490874ae4079516068a4bba454255ea2e221ee60d72de0594ebdfb22184d2414878216ad", 0x6d, 0x1000}], 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB='huge=within_size,huge=within_size,nr_inodes=mkx%7\x00%,huge=within_size,huge=always,huge=never,uid=', @ANYRESDEC, @ANYBLOB="2c6673757569643d3502663233393f642d373635312d416566662d363061332d66323339646256632c666f776e65723c", @ANYRESDEC=0xee01, @ANYBLOB=',\x00\x00'])
openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r6 = fcntl$dupfd(r5, 0x0, r5)
connect$bt_sco(r6, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
poll(&(0x7f0000000400)=[{r4, 0x9014}, {0xffffffffffffffff, 0x3020}, {r0, 0x10}, {r1, 0x1}, {r6}, {r3, 0x8204}], 0x6, 0x0)

16:50:03 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 99)

16:50:03 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x5)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:50:03 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x8982, &(0x7f0000000180))

16:50:03 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), 0x0, 0x0, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:50:03 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x4000000000000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

[ 2648.904990] loop7: detected capacity change from 0 to 135266304
[ 2648.913423] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2648.936342] 9pnet: Could not find request transport: xen
[ 2648.946634] FAULT_INJECTION: forcing a failure.
[ 2648.946634] name failslab, interval 1, probability 0, space 0, times 0
[ 2648.946907] loop7: detected capacity change from 0 to 135266304
[ 2648.948053] CPU: 0 PID: 13841 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2648.948065] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2648.948078] Call Trace:
[ 2648.951542]  dump_stack+0x107/0x167
[ 2648.951991]  should_fail.cold+0x5/0xa
[ 2648.952465]  ? mempool_alloc+0x148/0x360
[ 2648.952963]  ? mempool_free_pages+0x20/0x20
[ 2648.953500]  should_failslab+0x5/0x20
[ 2648.953972]  kmem_cache_alloc+0x5b/0x310
[ 2648.954479]  ? mempool_free_pages+0x20/0x20
[ 2648.955020]  mempool_alloc+0x148/0x360
[ 2648.955503]  ? mempool_resize+0x7d0/0x7d0
[ 2648.956013]  ? lock_downgrade+0x6d0/0x6d0
[ 2648.956532]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2648.957142]  bio_alloc_bioset+0x36e/0x600
[ 2648.957653]  ? bvec_alloc+0x2f0/0x2f0
[ 2648.958129]  ? iov_iter_npages+0x1fd/0xa70
[ 2648.958660]  iomap_dio_bio_actor+0x518/0xef0
[ 2648.959221]  iomap_dio_actor+0x36f/0x560
[ 2648.959723]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2648.960294]  ? do_syscall_64+0x33/0x40
[ 2648.960778]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2648.961432]  iomap_apply+0x289/0x810
[ 2648.961892]  ? iomap_dio_rw+0x90/0x90
[ 2648.962360]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2648.963078]  ? mark_held_locks+0x9e/0xe0
[ 2648.963590]  ? filemap_check_errors+0xa5/0x150
[ 2648.964160]  __iomap_dio_rw+0x6cd/0x1110
[ 2648.964662]  ? iomap_dio_rw+0x90/0x90
[ 2648.965145]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2648.965716]  ? ext4_orphan_add+0x253/0x9e0
[ 2648.966244]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2648.966845]  ? ext4_empty_dir+0xae0/0xae0
[ 2648.967362]  ? jbd2__journal_start+0xf3/0x7e0
[ 2648.967920]  iomap_dio_rw+0x31/0x90
[ 2648.968367]  ext4_file_write_iter+0xe0e/0x1530
[ 2648.968931]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2648.969482]  ? kasan_save_stack+0x32/0x40
[ 2648.969984]  ? kasan_save_stack+0x1b/0x40
[ 2648.970490]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2648.971117]  ? iter_file_splice_write+0x165/0xc90
[ 2648.971706]  ? direct_splice_actor+0x10f/0x170
[ 2648.972258]  ? splice_direct_to_actor+0x387/0x980
[ 2648.972845]  ? do_splice_direct+0x1c4/0x290
[ 2648.973371]  ? do_sendfile+0x553/0x11e0
[ 2648.973865]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2648.974433]  ? do_syscall_64+0x33/0x40
[ 2648.974908]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2648.975575]  do_iter_readv_writev+0x476/0x750
[ 2648.976129]  ? _cond_resched+0x10/0x30
[ 2648.976605]  ? new_sync_write+0x660/0x660
[ 2648.977121]  ? avc_policy_seqno+0x9/0x70
[ 2648.977630]  ? selinux_file_permission+0x92/0x520
[ 2648.978223]  ? security_file_permission+0xb1/0xe0
[ 2648.978816]  do_iter_write+0x191/0x700
[ 2648.979302]  ? trace_hardirqs_on+0x5b/0x180
[ 2648.979837]  vfs_iter_write+0x70/0xa0
[ 2648.980306]  iter_file_splice_write+0x726/0xc90
[ 2648.980891]  ? generic_splice_sendpage+0x140/0x140
[ 2648.981505]  ? security_file_permission+0xb1/0xe0
[ 2648.982099]  ? generic_splice_sendpage+0x140/0x140
[ 2648.982716]  direct_splice_actor+0x10f/0x170
[ 2648.983263]  splice_direct_to_actor+0x387/0x980
[ 2648.983837]  ? pipe_to_sendpage+0x380/0x380
[ 2648.984366]  ? do_splice_to+0x160/0x160
[ 2648.984858]  ? security_file_permission+0xb1/0xe0
[ 2648.985450]  do_splice_direct+0x1c4/0x290
[ 2648.985959]  ? splice_direct_to_actor+0x980/0x980
[ 2648.986544]  ? avc_policy_seqno+0x9/0x70
[ 2648.987049]  ? security_file_permission+0xb1/0xe0
[ 2648.987637]  do_sendfile+0x553/0x11e0
[ 2648.988106]  ? do_pwritev+0x270/0x270
[ 2648.988572]  ? wait_for_completion_io+0x270/0x270
[ 2648.989161]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2648.989721]  ? vfs_write+0x354/0xb10
[ 2648.990176]  __x64_sys_sendfile64+0x1d1/0x210
[ 2648.990720]  ? __ia32_sys_sendfile+0x220/0x220
[ 2648.991285]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2648.991922]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2648.992556]  do_syscall_64+0x33/0x40
[ 2648.993007]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2648.993628] RIP: 0033:0x7fa861eb0b19
[ 2648.994081] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2648.996323] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2648.997266] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2648.998136] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2648.999012] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2648.999879] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002
[ 2649.000743] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
[ 2649.008084] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2649.009840] loop6: detected capacity change from 0 to 8192
[ 2649.012303] tmpfs: Unsupported parameter 'huge'
[ 2649.020128] loop4: detected capacity change from 0 to 16896
16:50:03 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x894c, &(0x7f0000000180))

16:50:03 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x8983, &(0x7f0000000180))

[ 2649.099240] loop6: detected capacity change from 0 to 8192
16:50:03 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x53ef000000000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

[ 2649.105157] tmpfs: Unsupported parameter 'huge'
[ 2649.132354] loop4: detected capacity change from 0 to 16896
16:50:03 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x8980, &(0x7f0000000180))

16:50:03 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
pipe(&(0x7f0000000040)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
syz_io_uring_submit(r2, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT={0x12, 0x1, 0x0, r4, 0x0, &(0x7f0000000080)='./file0\x00', 0xc, 0xdc3f2a6cc1cf2746, 0x12345}, 0x80)
ioctl$sock_SIOCDELDLCI(r5, 0x8981, &(0x7f0000000100)={'veth1_virt_wifi\x00', 0x9})
sendmsg$nl_generic(r4, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000001c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="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"], 0x21f0}, 0x1, 0x0, 0x0, 0x2}, 0x800)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

16:50:03 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x6)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

[ 2649.248123] loop4: detected capacity change from 0 to 16896
[ 2649.279775] loop4: detected capacity change from 0 to 16896
16:50:03 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x8cffffff00000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:50:03 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x89a0, &(0x7f0000000180))

[ 2649.342447] loop7: detected capacity change from 0 to 135266304
[ 2649.367933] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2649.401174] loop7: detected capacity change from 0 to 135266304
[ 2649.413130] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:50:18 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x8981, &(0x7f0000000180))

16:50:18 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x89a1, &(0x7f0000000180))

16:50:18 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, 0x0, 0x0)

16:50:18 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x7)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:50:18 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001) (fail_nth: 100)

16:50:18 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), 0x0, 0x0, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:50:18 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xf6ffffff00000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:50:18 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
sendmsg$nl_generic(r3, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000080)={0x14, 0x20, 0x100, 0x70bd25, 0x25dfdbff, {0x1f}}, 0x14}, 0x1, 0x0, 0x0, 0x11}, 0x20004040)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

[ 2664.528954] loop7: detected capacity change from 0 to 135266304
[ 2664.534856] 9pnet: Could not find request transport: xen
[ 2664.543835] loop4: detected capacity change from 0 to 16896
[ 2664.556845] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2664.568635] FAULT_INJECTION: forcing a failure.
[ 2664.568635] name failslab, interval 1, probability 0, space 0, times 0
[ 2664.571356] CPU: 1 PID: 13904 Comm: syz-executor.2 Not tainted 5.10.235 #1
[ 2664.572849] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2664.574914] Call Trace:
[ 2664.575581]  dump_stack+0x107/0x167
[ 2664.576398]  should_fail.cold+0x5/0xa
[ 2664.577266]  ? bvec_alloc+0x148/0x2f0
[ 2664.578299]  should_failslab+0x5/0x20
[ 2664.579167]  kmem_cache_alloc+0x5b/0x310
[ 2664.580072]  bvec_alloc+0x148/0x2f0
[ 2664.580863]  bio_alloc_bioset+0x40a/0x600
[ 2664.581770]  ? bvec_alloc+0x2f0/0x2f0
[ 2664.582643]  ? iov_iter_npages+0x1fd/0xa70
[ 2664.583736]  iomap_dio_bio_actor+0x518/0xef0
[ 2664.584718]  iomap_dio_actor+0x36f/0x560
[ 2664.585574]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2664.586657]  ? do_syscall_64+0x33/0x40
[ 2664.587605]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2664.588897]  iomap_apply+0x289/0x810
[ 2664.589717]  ? iomap_dio_rw+0x90/0x90
[ 2664.590611]  ? trace_event_raw_event_iomap_apply+0x430/0x430
[ 2664.592084]  ? mark_held_locks+0x9e/0xe0
[ 2664.593026]  ? filemap_check_errors+0xa5/0x150
[ 2664.594105]  __iomap_dio_rw+0x6cd/0x1110
[ 2664.595000]  ? iomap_dio_rw+0x90/0x90
[ 2664.596062]  ? iomap_dio_bio_actor+0xef0/0xef0
[ 2664.597147]  ? ext4_orphan_add+0x253/0x9e0
[ 2664.598192]  ? jbd2_buffer_abort_trigger+0x80/0x80
[ 2664.599345]  ? ext4_empty_dir+0xae0/0xae0
[ 2664.600207]  ? jbd2__journal_start+0xf3/0x7e0
[ 2664.601237]  iomap_dio_rw+0x31/0x90
[ 2664.602027]  ext4_file_write_iter+0xe0e/0x1530
[ 2664.603194]  ? ext4_file_read_iter+0x4c0/0x4c0
[ 2664.604222]  ? kasan_save_stack+0x32/0x40
[ 2664.605161]  ? kasan_save_stack+0x1b/0x40
[ 2664.606170]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2664.607303]  ? iter_file_splice_write+0x165/0xc90
[ 2664.608364]  ? direct_splice_actor+0x10f/0x170
[ 2664.609488]  ? splice_direct_to_actor+0x387/0x980
[ 2664.610589]  ? do_splice_direct+0x1c4/0x290
[ 2664.611629]  ? do_sendfile+0x553/0x11e0
[ 2664.612546]  ? __x64_sys_sendfile64+0x1d1/0x210
[ 2664.613559]  ? do_syscall_64+0x33/0x40
[ 2664.614461]  ? entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2664.615692]  do_iter_readv_writev+0x476/0x750
[ 2664.616637]  ? _cond_resched+0x10/0x30
[ 2664.617521]  ? new_sync_write+0x660/0x660
[ 2664.618506]  ? avc_policy_seqno+0x9/0x70
[ 2664.619480]  ? selinux_file_permission+0x92/0x520
[ 2664.620518]  ? security_file_permission+0xb1/0xe0
[ 2664.621604]  do_iter_write+0x191/0x700
[ 2664.622545]  ? trace_hardirqs_on+0x5b/0x180
[ 2664.623481]  vfs_iter_write+0x70/0xa0
[ 2664.624322]  iter_file_splice_write+0x726/0xc90
[ 2664.625471]  ? generic_splice_sendpage+0x140/0x140
[ 2664.626536]  ? security_file_permission+0xb1/0xe0
[ 2664.627630]  ? generic_splice_sendpage+0x140/0x140
[ 2664.628727]  direct_splice_actor+0x10f/0x170
[ 2664.629782]  splice_direct_to_actor+0x387/0x980
[ 2664.630837]  ? pipe_to_sendpage+0x380/0x380
[ 2664.631884]  ? do_splice_to+0x160/0x160
[ 2664.632976]  ? security_file_permission+0xb1/0xe0
[ 2664.634124]  do_splice_direct+0x1c4/0x290
[ 2664.635132]  ? splice_direct_to_actor+0x980/0x980
[ 2664.636261]  ? avc_policy_seqno+0x9/0x70
[ 2664.637225]  ? security_file_permission+0xb1/0xe0
[ 2664.638375]  do_sendfile+0x553/0x11e0
[ 2664.639295]  ? do_pwritev+0x270/0x270
[ 2664.640196]  ? wait_for_completion_io+0x270/0x270
[ 2664.641393]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2664.642590]  ? vfs_write+0x354/0xb10
[ 2664.643587]  __x64_sys_sendfile64+0x1d1/0x210
[ 2664.644675]  ? __ia32_sys_sendfile+0x220/0x220
[ 2664.645821]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
16:50:19 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r3 = fcntl$dupfd(r2, 0x0, 0xffffffffffffffff)
connect$bt_sco(r3, &(0x7f0000000000), 0x8)
finit_module(r3, &(0x7f0000000040)='-+,&+%\x00', 0x1)
io_uring_enter(r3, 0x2f00, 0x27c9, 0x3, &(0x7f0000000080)={[0x401]}, 0x8)
ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r3, 0x8010671f, &(0x7f00000001c0)={&(0x7f00000000c0)=""/194, 0xc2})
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r6 = fcntl$dupfd(r5, 0x0, r5)
fcntl$F_SET_FILE_RW_HINT(r0, 0x40e, &(0x7f0000000240)=0x4)
connect$bt_sco(r6, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
fallocate(r6, 0xb, 0x101, 0x100000000)
ioctl$FS_IOC_FSSETXATTR(r4, 0x401c5820, &(0x7f0000000340)={0x200, 0x5, 0xf0c, 0x7f, 0x101})
shutdown(r3, 0x0)
ioctl$FS_IOC_FSSETXATTR(r3, 0x401c5820, &(0x7f0000000200)={0xdd20, 0x7, 0xfff, 0xa4, 0x8})

[ 2664.647074]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2664.648443]  do_syscall_64+0x33/0x40
[ 2664.649452]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2664.650819] RIP: 0033:0x7fa861eb0b19
[ 2664.651705] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2664.656273] RSP: 002b:00007fa85f426188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 2664.658104] RAX: ffffffffffffffda RBX: 00007fa861fc3f60 RCX: 00007fa861eb0b19
[ 2664.660007] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 2664.661782] RBP: 00007fa85f4261d0 R08: 0000000000000000 R09: 0000000000000000
[ 2664.663663] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000003
[ 2664.665523] R13: 00007ffe88912c6f R14: 00007fa85f426300 R15: 0000000000022000
[ 2664.693940] loop7: detected capacity change from 0 to 135266304
[ 2664.712362] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:50:19 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x40049409, &(0x7f0000000180))

16:50:19 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x8982, &(0x7f0000000180))

16:50:19 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), 0x0, 0x0, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:50:19 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xf9fdffff00000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

[ 2664.802876] 9pnet: Could not find request transport: xen
16:50:19 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readahead(r0, 0x10001, 0x1)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0)
r3 = perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x5, 0x23, 0x0, 0x2, 0x0, 0x657a, 0x18004, 0x8, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x2, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x80, 0x0, @perf_bp={&(0x7f0000000080), 0x3}, 0x50909, 0xfffffffffffffffa, 0x6, 0x2, 0x2, 0x80, 0x4, 0x0, 0x5, 0x0, 0x5780000000000000}, r1, 0x10, r1, 0xe)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r2, 0xc018937a, &(0x7f0000000140)={{0x1, 0x1, 0x18, r3, {0x8001}}, './file0\x00'})
shutdown(r1, 0x0)

16:50:19 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x40086602, &(0x7f0000000180))

16:50:19 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x8983, &(0x7f0000000180))

16:50:19 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xff0f000000000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:50:19 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x8)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

[ 2665.011751] loop7: detected capacity change from 0 to 135266304
[ 2665.036570] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2665.041852] loop4: detected capacity change from 0 to 16896
16:50:35 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x10)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:50:35 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x0)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:50:35 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, 0x0, 0x0)

16:50:35 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x406, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = fcntl$dupfd(r4, 0x0, r4)
connect$bt_sco(r5, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
fsetxattr$trusted_overlay_redirect(r5, &(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x8, 0x2)
r6 = fcntl$dupfd(r3, 0x0, r3)
connect$bt_sco(r6, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
dup2(r0, r6)
r7 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r7, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
connect$bt_sco(r7, &(0x7f0000000080), 0x8)
shutdown(r1, 0x0)

16:50:35 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xfffbffff00000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:50:35 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x40087602, &(0x7f0000000180))

16:50:35 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x89a0, &(0x7f0000000180))

16:50:35 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001)

[ 2681.023408] loop4: detected capacity change from 0 to 16896
[ 2681.029062] 9pnet: Could not find request transport: xen
[ 2681.046178] loop7: detected capacity change from 0 to 135266304
[ 2681.071370] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:50:35 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x4020940d, &(0x7f0000000180))

[ 2681.111726] loop7: detected capacity change from 0 to 135266304
[ 2681.129221] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:50:35 executing program 6:
socketpair(0x29, 0x4, 0xffffffff, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r2, 0x0)

16:50:35 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x89a1, &(0x7f0000000180))

16:50:35 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xffffff7f00000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:50:35 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x80086601, &(0x7f0000000180))

16:50:35 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000002)

[ 2681.363263] loop7: detected capacity change from 0 to 135266304
[ 2681.377113] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:50:35 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x80087601, &(0x7f0000000180))

[ 2681.413986] loop7: detected capacity change from 0 to 135266304
16:50:35 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x48)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

[ 2681.436958] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2681.520487] loop4: detected capacity change from 0 to 16896
[ 2681.596438] loop4: detected capacity change from 0 to 16896
16:50:52 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x40049409, &(0x7f0000000180))

16:50:52 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000003)

16:50:52 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x80108906, &(0x7f0000000180))

16:50:52 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x0)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:50:52 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x4c)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:50:52 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xffffffff00000000, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:50:52 executing program 5:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x0)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:50:52 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r2, 0x0, r2)
ioctl$AUTOFS_IOC_PROTOVER(r2, 0x80049363, &(0x7f0000000040))
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r3, 0x0, r3)
ioctl$AUTOFS_IOC_FAIL(r3, 0x9361, 0x4)
shutdown(r1, 0x0)
setsockopt$sock_void(r0, 0x1, 0x0, 0x0, 0x0)

[ 2697.736877] loop7: detected capacity change from 0 to 135266304
[ 2697.753228] 9pnet: Could not find request transport: xen
[ 2697.757075] 9pnet: Could not find request transport: xen
[ 2697.768276] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2697.784731] loop4: detected capacity change from 0 to 16896
16:50:52 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x80108907, &(0x7f0000000180))

16:50:52 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x40086602, &(0x7f0000000180))

[ 2697.877664] loop7: detected capacity change from 0 to 135266304
[ 2697.904252] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:50:52 executing program 6:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000880), r1)
sendmsg$IEEE802154_SCAN_REQ(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="b31900000000000000000900001424"], 0x14}}, 0x0)
sendmsg$NLBL_MGMT_C_ADD(r1, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x82c100}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB="389cc5d3", @ANYRES16=0x0, @ANYBLOB="000227bd7000fbdbdf2501000000140005000000000000000000000000000000000008000800ac1414bb06000b0010000000"], 0x38}, 0x1, 0x0, 0x0, 0x80}, 0xc4)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), r1)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r5, 0x8933, &(0x7f0000000180)={'wpan4\x00', <r8=>0x0})
sendmsg$NL802154_CMD_NEW_INTERFACE(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000640)=ANY=[@ANYBLOB="50d196006d7197f26e5db67b851b035363133683bd1beab4dd0a7e8ccf19bc931f9f0e90eaaac3ed81561273273d2eaf689c2988b20e5d3e66029740a7ff02ae4935125b00bbbd48521b2230f8ba07a787c772f8ed3e7acd0d6aca6c88bbb5306a09b2d837e0c7ea2d557c7048888ca870af9f", @ANYRES16=r7, @ANYBLOB="010000000000000000000700000008000300154fa443a2c28dfa9a183c2f6ea162df39f599420fc1bb91397f27d12339233c28d09fb105db5a1b7ee9c4e0618d5957b561295e4f91ddf048a6d859c80871b728717c3b34", @ANYRES32=r8, @ANYBLOB="08000500080000000a7b00007770616e95000000"], 0x30}}, 0x0)
sendmsg$NL802154_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000002c0)={&(0x7f00000004c0)={0x5c, r4, 0x100, 0x70bd25, 0x25dfdbfb, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r8}, @NL802154_ATTR_EXTENDED_ADDR={0xc, 0x17, {0xaaaaaaaaaaaa0002}}, @NL802154_ATTR_EXTENDED_ADDR={0xc}, @NL802154_ATTR_IFNAME={0xa, 0x4, 'wpan3\x00'}, @NL802154_ATTR_EXTENDED_ADDR={0xc}, @NL802154_ATTR_IFTYPE={0x8, 0x5, 0xffffffffffffffff}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x2}]}, 0x5c}, 0x1, 0x0, 0x0, 0x50000}, 0x20000000)
r9 = fcntl$dupfd(r3, 0x0, r3)
r10 = perf_event_open$cgroup(&(0x7f0000000040)={0x4, 0x80, 0xd9, 0x1f, 0x0, 0x8, 0x0, 0x26e, 0x80000, 0x3, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, @perf_config_ext={0x1, 0x1}, 0x80, 0x4, 0x8, 0x6, 0x800, 0x5, 0xe730, 0x0, 0x8000, 0x0, 0x4}, r9, 0xd, 0xffffffffffffffff, 0x1)
r11 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r11, 0x0, r11)
close_range(r10, r11, 0x2)
connect$bt_sco(r9, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r9, 0x0)

16:50:52 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xffffffffffffffff, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:50:52 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0xc0045878, &(0x7f0000000180))

16:51:07 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x0)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:51:07 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x40087602, &(0x7f0000000180))

16:51:07 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
sendmsg$nl_generic(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="180000002b000000faa25a607133cc120d5f47b246704fd0"], 0x18}, 0x1, 0x0, 0x0, 0x4}, 0x4000)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r3, 0x0)
r4 = syz_mount_image$tmpfs(&(0x7f0000000140), &(0x7f0000000180)='./file0\x00', 0x6ec, 0x2, &(0x7f0000000280)=[{&(0x7f00000001c0)="c1065ccccf08d2eba25ffd4e121265bc326a92", 0x13, 0x8}, {&(0x7f0000000200)="241c02f3648f472b98adadffa0a179c7135682e74253307da4e32ed64aaf10a1f1fa8208009d59d1bf5f3dcfdb2ed24ce30c092411ea7ee56c7c58b8e99f0cdaeb00cf041952256ecc490874ae4079516068a4bba454255ea2e221ee60d72de0594ebdfb22184d2414878216ad", 0x6d, 0x1000}], 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB='huge=within_size,huge=within_size,nr_inodes=mkx%7\x00%,huge=within_size,huge=always,huge=never,uid=', @ANYRESDEC, @ANYBLOB="2c6673757569643d3502663233393f642d373635312d416566662d363061332d66323339646256632c666f776e65723c", @ANYRESDEC=0xee01, @ANYBLOB=',\x00\x00'])
openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r6 = fcntl$dupfd(r5, 0x0, r5)
connect$bt_sco(r6, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
poll(&(0x7f0000000400)=[{r4, 0x9014}, {0xffffffffffffffff, 0x3020}, {r0, 0x10}, {r1, 0x1}, {r6}, {r3, 0x8204}], 0x6, 0x0)

16:51:07 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r2, 0xc018937d, &(0x7f00000000c0)={{0x1, 0x1, 0x18}, './file0\x00'})
r3 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @none}, 0x8)
ioctl$sock_proto_private(r0, 0x89e1, &(0x7f0000000040)="51aea6efe158af96d4453941bb0b6a659a0eb1231fcb02e6b8877b939231319f165703423939944f80e4661eec923ce4396cb45a22286320ad9ddda7d573d275c8a7085365c163bb6d55eb6ac7ed6c8a9bf5e62d512faf4d7d98701d7504ef27f4029af9938ce770ad531a0880")
shutdown(r3, 0x0)

16:51:07 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:51:07 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x68)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:51:07 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0xc0045878, &(0x7f0000000180))

16:51:07 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000004)

[ 2712.949750] loop4: detected capacity change from 0 to 16896
[ 2713.011020] loop4: detected capacity change from 0 to 16896
[ 2713.019408] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2713.033181] loop5: detected capacity change from 0 to 8192
[ 2713.036358] tmpfs: Unsupported parameter 'huge'
16:51:07 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0xc0189436, &(0x7f0000000180))

16:51:07 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x4020940d, &(0x7f0000000180))

16:51:07 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x6c)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

[ 2713.099044] 9pnet: Could not find request transport: xen
16:51:07 executing program 5:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x0)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:51:07 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$BTRFS_IOC_START_SYNC(r1, 0x80089418, &(0x7f0000000040))
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

16:51:07 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0xc020660b, &(0x7f0000000180))

16:51:07 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x3, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:51:07 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x80086601, &(0x7f0000000180))

[ 2713.214047] loop4: detected capacity change from 0 to 16896
[ 2713.257861] 9pnet: Could not find request transport: xen
[ 2713.270519] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2713.299859] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:51:22 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r1, 0x0, r1)
getitimer(0xbe9a748de4135b9b, 0x0)
setitimer(0x0, &(0x7f0000000000)={{0x77359400}, {0x0, 0xea60}}, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))

16:51:22 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)
fstatfs(r1, &(0x7f0000000040)=""/73)

16:51:22 executing program 5:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x0)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:51:22 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x74)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:51:22 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x4, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:51:22 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:51:22 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000005)

16:51:22 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x80087601, &(0x7f0000000180))

[ 2728.461638] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 2728.465169] 9pnet: Could not find request transport: xen
[ 2728.477869] loop4: detected capacity change from 0 to 16896
[ 2728.485281] 9pnet: Could not find request transport: xen
16:51:22 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x80108906, &(0x7f0000000180))

[ 2728.546183] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:51:22 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r1, 0x0, r1)
fcntl$setstatus(r1, 0x4, 0x42800)
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r2, 0x0, r2)
ioctl$sock_FIOSETOWN(r2, 0x8901, &(0x7f00000000c0)=0xffffffffffffffff)
ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, &(0x7f0000000080)={'syztnl0\x00', &(0x7f0000000000)={'syztnl0\x00', 0x0, 0x2f, 0x1, 0x7, 0x1, 0x1b, @private2, @private0, 0x1, 0x8000, 0x7, 0x6}})
r3 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r3, 0x5411, &(0x7f0000000180))

16:51:23 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_STRSET_GET(r1, &(0x7f0000000200)={&(0x7f0000000040), 0xc, &(0x7f00000001c0)={&(0x7f00000000c0)={0xd0, r2, 0x200, 0x70bd28, 0x25dfdbff, {}, [@ETHTOOL_A_STRSET_HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @ETHTOOL_A_STRSET_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @ETHTOOL_A_STRSET_STRINGSETS={0x5c, 0x2, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x21c9f1dcec72d1ba}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}]}]}, @ETHTOOL_A_STRSET_STRINGSETS={0x28, 0x2, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}]}]}, @ETHTOOL_A_STRSET_STRINGSETS={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}]}]}]}, 0xd0}, 0x1, 0x0, 0x0, 0x44}, 0x4000000)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = fcntl$dupfd(r3, 0x0, r3)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r4, 0x0)

16:51:23 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x5, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:51:23 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x111100, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:51:23 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x80108907, &(0x7f0000000180))

[ 2728.840754] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
16:51:23 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0xc0045878, &(0x7f0000000180))

16:51:23 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x7a)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

[ 2729.041693] loop4: detected capacity change from 0 to 16896
[ 2729.093578] loop4: detected capacity change from 0 to 16896
16:51:36 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x300)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:51:36 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x9)
r1 = fcntl$dupfd(r0, 0x0, r0)
openat(0xffffffffffffffff, &(0x7f0000000280)='./file1\x00', 0x40, 0x3)
sendmsg$DEVLINK_CMD_GET(r1, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x7311243fada5e489}, 0xc, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="9f2200004f8747518ec0d3cefd77ae09c220269447cb596ca39ef49677f56221eb7d4c44ba4dffa3e71b5fe950ea54179a1ef2ecc2d12e1a69df0ef4612d168e032c1133f8d34ade6dc77d6696c4585c400cfbb65ddf139054a0e4528a41440f1ed5448325907149e55555d25be880bc66b64f631b0246e67266480f353a7cb57b06bca6f672ba50e6ba33336af9e4c2a55f01bbef50b6a0a5576b9aa879fb2b70b56081ab4a0e456c8ce4f8596f07739b252c39ace061d66fec4d35dac99b75d07bb98a4e5e44b1797fc58c3f4b6993", @ANYRES16=0x0, @ANYBLOB="00082bbd7000fbdbdf2501000000080001007063690011000200303030303a30303a31302e30000000000e0001006e657464657673696d0000000f0002006e657464657673696d300000080001007063690011000200303030303a30303a31302e3000000000080001007063690011000200303030303a30303a31302e30000000000e0001006e657464657673696d0000000f0002006e657464657673696d300000080001007063690011000200303030303a30303a31302e30000000000e0001006e657464657673696d0000000f0002006e657464657673696d300000"], 0xe4}, 0x1, 0x0, 0x0, 0x20000004}, 0x4000)
r2 = syz_open_dev$vcsu(&(0x7f0000000000), 0x4, 0x5000)
dup3(r1, r2, 0x80000)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:51:36 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:51:36 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x6, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:51:36 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clock_gettime(0x0, &(0x7f0000000cc0)={<r1=>0x0, <r2=>0x0})
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000000c00)=[{{&(0x7f0000000040), 0x6e, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/250, 0xfa}], 0x1, &(0x7f0000000200)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x58}}, {{&(0x7f0000000280)=@abs, 0x6e, &(0x7f00000007c0)=[{&(0x7f0000000300)=""/228, 0xe4}, {&(0x7f0000000400)=""/29, 0x1d}, {&(0x7f0000000440)=""/216, 0xd8}, {&(0x7f0000000540)=""/81, 0x51}, {&(0x7f00000005c0)=""/217, 0xd9}, {&(0x7f00000006c0)=""/203, 0xcb}], 0x6, &(0x7f0000000840)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="18000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000022fa7a627ec14d220000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0xa0}}, {{&(0x7f0000000900)=@abs, 0x6e, &(0x7f0000000a80)=[{&(0x7f0000000980)=""/245, 0xf5}], 0x1, &(0x7f0000000ac0)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [<r3=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x118}}], 0x3, 0x2002, &(0x7f0000000d00)={r1, r2+60000000})
r4 = fcntl$dupfd(r0, 0x0, r3)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r4, 0x0)

16:51:36 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000006)

16:51:36 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0xc0045878, &(0x7f0000000180))

16:51:36 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

16:51:36 executing program 6:
r0 = signalfd(0xffffffffffffffff, &(0x7f0000000040)={[0x7ffffffffffffffe]}, 0x8)
openat(r0, &(0x7f0000000080)='./file0\x00', 0x280100, 0x1e7)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r2, 0x0)

[ 2742.204970] loop4: detected capacity change from 0 to 16896
[ 2742.210222] 9pnet: Could not find request transport: xen
16:51:36 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0xc0189436, &(0x7f0000000180))

16:51:36 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x7, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:51:36 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8) (fail_nth: 1)

16:51:36 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$IP_VS_SO_GET_VERSION(r1, 0x0, 0x480, &(0x7f0000000000), &(0x7f0000000040)=0x40)
fcntl$dupfd(r1, 0x0, r1)
ioctl$FIOCLEX(r1, 0x5451)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r2 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))

16:51:36 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x406, 0xffffffffffffffff)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

16:51:36 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0xc020660b, &(0x7f0000000180))

16:51:36 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x8, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

[ 2742.415166] FAULT_INJECTION: forcing a failure.
[ 2742.415166] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2742.416565] CPU: 0 PID: 14959 Comm: syz-executor.5 Not tainted 5.10.235 #1
[ 2742.417440] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2742.418418] Call Trace:
[ 2742.418736]  dump_stack+0x107/0x167
[ 2742.419157]  should_fail.cold+0x5/0xa
[ 2742.419602]  _copy_from_user+0x2e/0x1b0
[ 2742.420084]  move_addr_to_kernel.part.0+0x31/0x110
[ 2742.420660]  __sys_connect+0xda/0x1a0
[ 2742.421101]  ? __sys_connect_file+0x1a0/0x1a0
[ 2742.421631]  ? rcu_read_lock_any_held+0x75/0xa0
[ 2742.422169]  ? vfs_write+0x354/0xb10
[ 2742.422600]  ? fput_many+0x2f/0x1a0
[ 2742.423019]  ? ksys_write+0x1a9/0x260
[ 2742.423462]  ? __ia32_sys_read+0xb0/0xb0
[ 2742.423941]  __x64_sys_connect+0x6f/0xb0
[ 2742.424421]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2742.425019]  do_syscall_64+0x33/0x40
[ 2742.425445]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2742.426036] RIP: 0033:0x7f9550990b19
[ 2742.426459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2742.428596] RSP: 002b:00007f954dee5188 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[ 2742.429475] RAX: ffffffffffffffda RBX: 00007f9550aa4020 RCX: 00007f9550990b19
[ 2742.430278] RDX: 0000000000000008 RSI: 0000000020000000 RDI: 0000000000000005
[ 2742.431105] RBP: 00007f954dee51d0 R08: 0000000000000000 R09: 0000000000000000
[ 2742.431925] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2742.432735] R13: 00007ffd0242735f R14: 00007f954dee5300 R15: 0000000000022000
16:51:52 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8) (fail_nth: 2)

16:51:52 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
pidfd_send_signal(r2, 0x35, &(0x7f0000000000)={0x1e, 0xfff, 0x3ff}, 0x0)
r3 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r3, 0x5411, &(0x7f0000000180))

16:51:52 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB='$}', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fddc13df3a2d491d1959acca5ad771f779c3102b9e127e21e8e000bae41d9d0ac353a279a93a8993f9be9bf2bf4102dc9550f9da56922eaea9f05cc1d2b5ad1e5f91ed8c92130df26d25", @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b484985"], 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:51:52 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x500)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:51:52 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendto(r0, &(0x7f0000000000)="58a65a9b577cc78d660fd519b0373ad145c66269de36025b002eea78bb86b07426d7080b25cce4eec3df2cb41a41f973346713", 0x33, 0x804, &(0x7f0000000040)=@isdn={0x22, 0x9, 0x2, 0x1, 0x1f}, 0x80)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:51:52 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)
io_uring_enter(r1, 0x69ad, 0xf0cf, 0x0, &(0x7f0000000040)={[0x1000]}, 0x8)
r2 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x7, 0x10, r1, 0x8000000)
shutdown(r1, 0x0)
r3 = syz_io_uring_setup(0x20004d4f, &(0x7f00000002c0)={0x0, 0x0, 0x2, 0x0, 0x11f}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)=<r4=>0x0)
r5 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
syz_io_uring_submit(r8, r7, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r9=>0x0, &(0x7f0000000140)=<r10=>0x0)
r11 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r11, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, r7, &(0x7f0000000000)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x5, 0x0, 0xffffff00, 0x2, &(0x7f0000002900)="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", 0x7, 0x0, 0x0, {0x22}}, 0x0)
r12 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0)
fcntl$setownex(r1, 0xf, &(0x7f00000000c0)={0x2, 0xffffffffffffffff})
syz_io_uring_submit(r12, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r2, r4, &(0x7f0000000080)=@IORING_OP_FALLOCATE={0x11, 0x4, 0x0, @fd_index=0x6, 0x1, 0x0, 0x2, 0x0, 0x1}, 0x518b)

16:51:52 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x9, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:51:52 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000007)

[ 2758.008454] 9pnet: Could not find request transport: xen
16:51:52 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$BTRFS_IOC_FS_INFO(r1, 0x8400941f, &(0x7f0000000440))
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TEE={0x21, 0x1, 0x0, @fd_index=0xa, 0x0, 0x0, 0x6, 0x1962d2d527050b88, 0x1, {0x0, 0x0, r2}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000400)=ANY=[@ANYBLOB="01005cd0000000000000e6ed0000", @ANYRES32=r3, @ANYBLOB="feffffff000000002e2f66696c653000"])
ioctl$VFAT_IOCTL_READDIR_SHORT(0xffffffffffffffff, 0x82307202, &(0x7f0000000040)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x3000006, 0x4010, 0xffffffffffffffff, 0x8000000)
r5 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000840)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
syz_io_uring_submit(r8, r7, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r4, r7, &(0x7f0000000340)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x4, 0x0, r2, 0x0, 0x0, 0x0, 0x10000, 0x0, {0x2}}, 0x7f)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r9, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000880)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x5)
connect$unix(r3, &(0x7f0000000280)=@abs={0x1, 0x0, 0x4e21}, 0x6e)

[ 2758.052708] FAULT_INJECTION: forcing a failure.
[ 2758.052708] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2758.054407] CPU: 0 PID: 15000 Comm: syz-executor.5 Not tainted 5.10.235 #1
[ 2758.055376] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2758.056554] Call Trace:
[ 2758.056936]  dump_stack+0x107/0x167
16:51:52 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r1, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r4=>r0}, './file0\x00'})
ioctl$sock_inet6_tcp_SIOCOUTQ(r4, 0x5411, &(0x7f0000000180))

[ 2758.057443]  should_fail.cold+0x5/0xa
[ 2758.058163]  _copy_to_user+0x2e/0x180
[ 2758.058713]  simple_read_from_buffer+0xcc/0x160
[ 2758.059403]  proc_fail_nth_read+0x198/0x230
[ 2758.060033]  ? proc_sessionid_read+0x230/0x230
[ 2758.060718]  ? security_file_permission+0xb1/0xe0
[ 2758.061390]  ? proc_sessionid_read+0x230/0x230
[ 2758.062028]  vfs_read+0x228/0x620
[ 2758.062537]  ksys_read+0x12d/0x260
[ 2758.063048]  ? vfs_write+0xb10/0xb10
[ 2758.063598]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2758.064383]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2758.065113]  do_syscall_64+0x33/0x40
[ 2758.065650]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2758.066374] RIP: 0033:0x7f955094369c
[ 2758.066918] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 2758.069521] RSP: 002b:00007f954dee5170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2758.070604] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 00007f955094369c
[ 2758.071617] RDX: 000000000000000f RSI: 00007f954dee51e0 RDI: 0000000000000003
[ 2758.072565] RBP: 00007f954dee51d0 R08: 0000000000000000 R09: 0000000000000000
[ 2758.073387] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2758.074223] R13: 00007ffd0242735f R14: 00007f954dee5300 R15: 0000000000022000
[ 2758.103781] loop4: detected capacity change from 0 to 16896
16:51:52 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0xa, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:51:52 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
pidfd_send_signal(r1, 0x39, &(0x7f0000000040)={0x37, 0x7ff, 0x69}, 0x0)
socket$inet6(0xa, 0x1, 0x876)
r2 = fcntl$dupfd(r1, 0x406, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000000))

16:51:52 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:51:52 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000008)

16:51:52 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0)
syz_io_uring_submit(r5, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(0x0, r4, &(0x7f0000000040)=@IORING_OP_POLL_REMOVE={0x7, 0x86fec8f53b1445e3, 0x0, 0x0, 0x0, 0x12345}, 0x7d)
shutdown(r1, 0x0)

16:51:52 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0x7, &(0x7f0000000000)=0x1, &(0x7f0000000040)=0x4)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:51:52 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0xb, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:51:52 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x600)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:51:52 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:51:52 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
sendmsg$TIPC_NL_MEDIA_SET(r1, &(0x7f0000000480)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000440)={&(0x7f0000000240)={0x1dc, 0x0, 0x10, 0x70bd26, 0x25dfdbfe, {}, [@TIPC_NLA_MEDIA={0x8c, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xf7ee}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xc98d}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xe0}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x10000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}]}, @TIPC_NLA_NODE={0x70, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0x20, 0x3, "51a0e95ea89912b0ae5c3d5000e062ababe70bd247095bb224444143"}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY={0x45, 0x4, {'gcm(aes)\x00', 0x1d, "a479a3520fc1bc67b4e3c41152ee6bbc8a46b0e639fa65f7fd9149c9c3"}}]}, @TIPC_NLA_BEARER={0xcc, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}, @TIPC_NLA_BEARER_PROP={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xd02}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xa4e}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x8e}, @TIPC_NLA_BEARER_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x221}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e22, @empty}}, {0x14, 0x2, @in={0x2, 0x4e21, @remote}}}}, @TIPC_NLA_BEARER_NAME={0x14, 0x1, @l2={'ib', 0x3a, 'veth0_to_hsr\x00'}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xfffffff9}]}]}, 0x1dc}, 0x1, 0x0, 0x0, 0x20000000}, 0x44000)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x4200, 0x40)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r2)
ioctl$sock_inet6_tcp_SIOCOUTQ(r3, 0x5411, &(0x7f0000000180))
setsockopt$inet6_tcp_TCP_MD5SIG(r3, 0x6, 0xe, &(0x7f0000000000)={@in6={{0xa, 0x4e20, 0x81, @dev={0xfe, 0x80, '\x00', 0x3f}, 0x20}}, 0x0, 0x0, 0xc, 0x0, "86c2cf936effc61a99f4521686185b7c81aa8ad57a76271527cc80b76ee459945843cf04255374aa788a54402f68840280b87bc498c7e460a118c72480b81ba29f0643c751d4d67a1a1c6806691f4c61"}, 0xd8)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = fcntl$dupfd(r4, 0x0, r4)
connect$bt_sco(r5, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
setsockopt$inet6_tcp_int(r5, 0x6, 0x0, &(0x7f0000000140)=0x238fb176, 0x4)
r6 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
connect$bt_sco(r6, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)={0x20, r8, 0xd11, 0x0, 0x0, {{}, {@void, @val={0xc}}}}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_JOIN_OCB(r6, &(0x7f0000000580)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x30, r8, 0x100, 0x70bd2b, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x5, 0xf}}}}, [@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x7}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}]}, 0x30}}, 0x1)

16:51:52 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0xd, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:51:52 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)
getsockopt$bt_hci(r0, 0x0, 0x1, &(0x7f0000000040)=""/242, &(0x7f0000000140)=0xf2)

[ 2758.513826] loop4: detected capacity change from 0 to 16896
16:51:52 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
socket$nl_generic(0x10, 0x3, 0x10)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_setup(0x804ebb, &(0x7f00000000c0)={0x0, 0x1b9b, 0x10, 0x2, 0x161}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r4, 0x0, 0x0}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FSYNC={0x3, 0x1, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x6)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r6, 0x0, r6)
ioctl$FS_IOC_FSGETXATTR(r6, 0x801c581f, &(0x7f0000000080)={0xfff, 0x2, 0x400, 0x800, 0x56c})
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000700)=@IORING_OP_RECVMSG={0xa, 0x1, 0x0, r4, 0x0, &(0x7f00000006c0)={&(0x7f0000000440)=@ax25={{0x3, @netrom}, [@bcast, @bcast, @bcast, @default, @netrom, @bcast, @bcast]}, 0x80, &(0x7f0000000640)=[{&(0x7f00000003c0)=""/12, 0xc}, {&(0x7f00000004c0)=""/90, 0x5a}, {&(0x7f0000000540)=""/205, 0xcd}], 0x3, &(0x7f0000000680)=""/23, 0x17}, 0x0, 0x40, 0x0, {0x2, r5}}, 0x7)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_POLL_REMOVE={0x7, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, {0x0, r5}}, 0x6)
syz_open_dev$tty1(0xc, 0x4, 0x3)
r7 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, 0x1000200}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200)=<r8=>0x0, &(0x7f0000000180)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r7, 0x0)
syz_io_uring_submit(r10, r9, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(0x0, r9, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x7, 0x0, @fd_index=0x2, 0x0, 0x0, 0x0, {0x10c0}, 0x1, {0x0, r5}}, 0x8000000d)

16:51:52 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
getsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f0000000000)=0x8, &(0x7f0000000040)=0x2)
r3 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r3, 0x5411, &(0x7f0000000180))

[ 2758.644484] 9pnet: Could not find request transport: xen
16:51:53 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0xf, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:51:53 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = openat2(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x400081, 0x9, 0x13}, 0x18)
bind$bt_sco(r1, &(0x7f0000000080), 0x8)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r2 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))

16:51:53 executing program 3:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r0 = openat2(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x200, 0x180, 0x18}, 0x18)
ioctl$FS_IOC_GETFSLABEL(r0, 0x81009431, &(0x7f0000000080))
r1 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
r2 = fcntl$dupfd(r0, 0x406, r0)
openat$rfkill(0xffffffffffffff9c, &(0x7f00000001c0), 0x2002, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r1)
mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10010, r3, 0x10000000)
ioctl$sock_inet6_tcp_SIOCOUTQ(r3, 0x5411, &(0x7f0000000180))

16:51:53 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x700)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

[ 2758.763987] loop4: detected capacity change from 0 to 16896
[ 2758.793406] loop4: detected capacity change from 0 to 16896
16:52:11 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x7)

16:52:11 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x11, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:52:11 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000000)={'wlan0\x00'})
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r2)
ioctl$sock_inet6_tcp_SIOCOUTQ(r3, 0x5411, &(0x7f0000000180))

16:52:11 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x4800)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:52:11 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:52:11 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}, 0x8)
shutdown(r1, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r2, 0x0, r2)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x2, 0x0, r0, &(0x7f00000001c0), 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x3)
write$binfmt_elf64(r2, &(0x7f0000000040)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x68, 0x5, 0x3f, 0x5, 0x3, 0x7c, 0x342f, 0x38, 0x40, 0x1cc, 0x2, 0x80, 0x38, 0x1, 0x18f8, 0x800, 0x5a}, [{0x3, 0x7, 0x5, 0x26, 0x10001, 0x101, 0x8, 0x6c82}, {0x6474e551, 0x1, 0x10000, 0x3, 0x271, 0x9, 0x3, 0xe0}], "bd3f052341eddf65bab730fddc148ce158281847d04a913ee6500877b46331f3a380559d8286bc89b5cddcd0f15d99ddee6900f25fd639ec98ad8c548f1a6cb2609480d59394179d48696cce71f2f0779c2aa740ca569b306faff9473f7cdf6a1d07c72d821d1bdeabd93b3672eaf7b2e83dee5eea840f6ff526a6b31de0b43d65c903532c88e70eabdeb3af56fda5b83f02bf2f12e54f56d7b1e64c645b7fd1d143f6056c3f"}, 0x156)

16:52:11 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000009)

16:52:11 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getpeername(r0, &(0x7f0000000000)=@ieee802154={0x24, @short}, &(0x7f0000000080)=0x80)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

[ 2776.793273] 9pnet: Could not find request transport: xen
16:52:11 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
pipe(&(0x7f00000014c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r2, 0xc0189373, &(0x7f0000000140)={{0x1, 0x1, 0x18}, './file0\x00'})
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000040))
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1000000, 0xffffffffffffffff}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_CONFIG(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000080)={0x30, 0x0, 0x400, 0x70bd29, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8}, @IPVS_CMD_ATTR_SERVICE={0x14, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e22}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x440c4}, 0x11)
syz_emit_ethernet(0x62, &(0x7f0000000280)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x54, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x4, 0xda}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, 0x0, {[@nop, @md5sig={0x13, 0x12, "c481afb4b5239c576ed53b2d20550e10"}, @exp_smc={0xfe, 0x6}, @eol, @mptcp=@mp_join={0x1e, 0x3, 0x7}, @window={0x3, 0x3, 0xcf}, @exp_fastopen={0xfe, 0x6, 0xf989, "f2d3"}, @eol, @eol]}}}}}}}, 0x0)
clone3(&(0x7f0000000200)={0x44004100, 0x0, &(0x7f00000000c0), &(0x7f0000000100), {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

[ 2776.841453] loop4: detected capacity change from 0 to 16896
16:52:11 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r2, 0x0, r2)
lseek(r2, 0x6, 0x3)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(r1, 0x29, 0x37, &(0x7f0000000040)={0x2b, 0x3, '\x00', [@jumbo={0xc2, 0x4, 0xffff}, @padn={0x1, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @jumbo={0xc2, 0x4, 0x8}, @pad1, @jumbo={0xc2, 0x4, 0x2}]}, 0x28)

16:52:11 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2e, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:52:11 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x8, 0x10, r1, 0x0)
r3 = mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xa, 0x11, r1, 0x10000000)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000080)=@IORING_OP_TIMEOUT={0xb, 0x3, 0x0, 0x0, 0x1, &(0x7f0000000040)={0x0, 0x989680}, 0x1, 0x0, 0x0, {0x0, r4}}, 0x2)

16:52:11 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x40203, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

[ 2777.107430] loop7: detected capacity change from 0 to 135266304
[ 2777.152736] loop7: detected capacity change from 0 to 135266304
16:52:11 executing program 6:
shmctl$SHM_UNLOCK(0xffffffffffffffff, 0xc)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
shmctl$SHM_STAT(0x0, 0xd, &(0x7f0000000040)=""/189)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @none}, 0x8)
bind$bt_sco(r0, &(0x7f0000000200)={0x1f, @none}, 0x8)
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000240)={0x2, 0x8, 0x0, 0x80000001, 0x1, [0x0, 0x9, 0x7e, 0x100]})
r3 = fcntl$dupfd(r2, 0x0, r0)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @none}, 0x8)
r4 = shmget(0x0, 0x1000, 0x100, &(0x7f0000ffc000/0x1000)=nil)
shmctl$SHM_STAT(r4, 0xd, &(0x7f0000000100)=""/208)
shutdown(r3, 0x0)

16:52:11 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x10000000a)

16:52:11 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x300, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

[ 2777.358392] loop7: detected capacity change from 0 to 135266304
[ 2777.431981] loop7: detected capacity change from 0 to 135266304
16:52:26 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x26a671110730018f)
shutdown(r1, 0x0)

16:52:26 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x20000008)

16:52:26 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611)
r1 = fcntl$dupfd(r0, 0x0, r0)
perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x1, 0x5, 0x7f, 0x3f, 0x0, 0x5, 0x1, 0x4, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext={0x6, 0x9}, 0x6004, 0x80000000, 0x400, 0x9, 0x1, 0x7, 0x4, 0x0, 0x20, 0x0, 0x3}, 0x0, 0x5, r1, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
openat(r1, &(0x7f0000000080)='./file0\x00', 0xbcebb6069ef1708e, 0x20)
ioctl$sock_inet6_tcp_SIOCOUTQ(r3, 0x5411, &(0x7f0000000180))

16:52:26 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x0)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:52:26 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x500, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:52:26 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x10000000c)

16:52:26 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x4c00)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:52:26 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000140), 0x200601, 0x0)
r2 = fcntl$dupfd(r0, 0x0, r0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r2, 0xc018937d, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB="f5bfbf43000000002eaf66696c653000e2f5fd683cfb5b7a761d490cbd1fd4b5e97ce0a0e1a11e84bfb1672902d9cc94c1cd12b9ec47a582c6fdf7cc8048b37577d909a26aba88a9f3c6e14056311c72e5dd66b964a894b9761f8802f2d0e86f060e3771b287883919873b095dbfb44e908e84aebf45892261496bd92ae9bc241ec08f48"])
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = fcntl$dupfd(r3, 0x0, r3)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r6 = fcntl$dupfd(r5, 0x0, r5)
pipe(&(0x7f00000001c0)={<r7=>0xffffffffffffffff})
pidfd_send_signal(r7, 0x21, &(0x7f0000000200)={0x7, 0x7ff, 0x10001}, 0x0)
connect$bt_sco(r6, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r9 = fcntl$dupfd(r8, 0x0, r8)
connect$bt_sco(r9, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$sock_inet6_tcp_SIOCOUTQ(r9, 0x5411, &(0x7f0000000180))
pidfd_send_signal(r2, 0x7, &(0x7f0000000000)={0xd, 0x1ff, 0xae}, 0x0)
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000000080), &(0x7f00000000c0)=0x14)

[ 2792.181269] loop4: detected capacity change from 0 to 16896
[ 2792.208316] loop7: detected capacity change from 0 to 135266304
[ 2792.231358] 9pnet: Could not find request transport: xen
16:52:26 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
pidfd_send_signal(r1, 0x29, &(0x7f0000000000)={0x9, 0x4, 0x8}, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
r4 = syz_open_dev$char_usb(0xc, 0xb4, 0x9)
dup2(r3, r4)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r6 = fcntl$dupfd(r5, 0x0, r5)
connect$bt_sco(r6, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r6, &(0x7f0000000340)={&(0x7f0000000280), 0xc, &(0x7f0000000300)={&(0x7f0000000400)=ANY=[@ANYBLOB="70000000030801080000000000000000030000010900010073797a31040000003c000405080006400000000108003019014000000005080004400000ff7f00000440000003ff0800003a51e85ca5008008000840000000010900010073797a3000000000050003002f000000"], 0x70}}, 0x20000000)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
getsockname(r3, &(0x7f0000000200)=@vsock, &(0x7f0000000140)=0x80)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
ioctl$sock_SIOCDELRT(r2, 0x890c, &(0x7f00000000c0)={0x0, @l2={0x1f, 0x7, @none, 0x0, 0x1}, @llc={0x1a, 0x0, 0x9, 0x81, 0x81, 0x7, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, @nfc={0x27, 0x0, 0x2, 0x7}, 0x6, 0x0, 0x0, 0x0, 0x8, &(0x7f0000000080)='veth0_macvtap\x00', 0x1, 0x101, 0x3})

16:52:26 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_mount_image$nfs4(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x8, 0x2, &(0x7f00000001c0)=[{&(0x7f0000000080)="fe3fbb7ef2beb8937b1718a6345816837971a168abc5b0b46d158d43b5d079d6f3236b457bbe5f05d96215dc0eb809d5d21deed09d852787d14c", 0x3a, 0x9}, {&(0x7f00000000c0)="0b4156bdd26b02e13e9fb9950d4ea8c3c83ad955c8c43bd84a9ea78965048344c1269f0404a3ff0866ddada68469a92c890d061890f4552e563542d9e12547b41d3c5ae9e36cf8356e5b5a8e71b740a2090f9b3870a35dbb2637da73785272c918517b5c2e65f6334314fbac1efcdad0d39061a5fd20bda2cdfb6747b2716c3dda1878b78fcb366b2a6f93028bb9e105bba14c14dbdab9b93c429a22d54ed70066a298e157782c71c5c81734947e7b", 0xaf, 0x3}], 0x35001, &(0x7f0000000200)={[{'[['}, {'-:^!*%/]'}, {}, {}, {'^(-\'!$\xad['}], [{@dont_hash}, {@uid_gt}, {@fowner_eq={'fowner', 0x3d, 0xee01}}, {@appraise}]})
r2 = fcntl$dupfd(r0, 0x406, r1)
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))

[ 2792.285966] loop7: detected capacity change from 0 to 135266304
[ 2792.312753] loop4: detected capacity change from 0 to 16896
16:52:40 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$sock_ipv6_tunnel_SIOCADD6RD(r3, 0x89f9, &(0x7f0000000100)={'ip6tnl0\x00', &(0x7f0000000080)={'syztnl1\x00', 0x0, 0x2f, 0x5, 0xff, 0x0, 0x60, @empty, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0x40, 0x80, 0x5}})
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r1, 0xc018937d, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r4=>r1, {0x4}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r4, 0xc018937d, &(0x7f0000000180)={{0x1, 0x1, 0x18, r2, {0x27ca}}, './file0\x00'})
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:52:40 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x0)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:52:40 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = pidfd_open(0x0, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r4 = dup2(r1, r3)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f0000000040)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r5=>r4, @ANYRES32, @ANYRES32=0x0, @ANYBLOB="495a2eff0f696c65"])
setsockopt$sock_linger(r5, 0x1, 0xd, &(0x7f0000000080)={0x0, 0x1ff}, 0x8)
r6 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r6, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r6, 0x0)

16:52:40 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000000)='.pending_reads\x00', 0x800, 0x10)
write$P9_RLERRORu(r1, &(0x7f0000000080)={0x12, 0x7, 0x1, {{0x5, '\xaa\xaa\xaa\xaa\xaa'}}}, 0x12)
bind$bt_sco(r1, &(0x7f0000000040)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r2 = socket$unix(0x1, 0x1, 0x0)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000001840)={0x3, &(0x7f0000001800)=[{0x9, 0x1, 0x1, 0x4}, {0x8, 0x6, 0x2}, {0x3, 0x6, 0x2, 0x2}]}, 0x10)
r3 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r3, 0x5411, &(0x7f0000000180))

16:52:40 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x600, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:52:40 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x6800)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:52:40 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x10000000d)

16:52:40 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

[ 2806.180039] 9pnet: Could not find request transport: xen
[ 2806.198878] loop4: detected capacity change from 0 to 16896
[ 2806.227721] loop7: detected capacity change from 0 to 135266304
16:52:40 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000100)={{{@in6=@remote, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in=@loopback}, 0x0, @in6=@private1}}, &(0x7f0000000040)=0xe8)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000200)={0x0, 0x0, <r3=>0x0}, &(0x7f0000000240)=0xc)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000280)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {r2, r3}}, './file0\x00'})
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = fcntl$dupfd(r4, 0x406, r4)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, r5}, './file0\x00'})
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r6, 0x0, r6)
ioctl$BTRFS_IOC_QGROUP_CREATE(r6, 0x4010942a, &(0x7f00000000c0)={0x1, 0x5})
syz_genetlink_get_family_id$batadv(&(0x7f0000000080), r5)
mmap$IORING_OFF_SQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x3000009, 0x10, r5, 0x0)

16:52:40 executing program 1:
fchmod(0xffffffffffffffff, 0x6)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x1, 0x88)
ioctl$sock_ipv6_tunnel_SIOCDEL6RD(0xffffffffffffffff, 0x89fa, &(0x7f0000000140)={'ip6gre0\x00', &(0x7f00000000c0)={'ip6_vti0\x00', <r1=>0x0, 0x29, 0x7, 0x6, 0x0, 0x41, @remote, @mcast1, 0x8, 0x7, 0x7, 0x2}})
ioctl$sock_SIOCDELRT(r0, 0x890c, &(0x7f0000000240)={0x0, @nfc={0x27, 0x1, 0x1, 0x2}, @l2={0x1f, 0x1000, @any, 0x9}, @can={0x1d, r1}, 0x2, 0x0, 0x0, 0x0, 0x9, &(0x7f0000000200)='veth1_to_hsr\x00', 0x9, 0x5, 0x9})
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x208000, 0x0)
r2 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))

[ 2806.321128] loop7: detected capacity change from 0 to 135266304
16:52:40 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f00000000c0)={0x0, <r2=>0x0})
perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x1, 0x6, 0x23, 0x6, 0x0, 0x4, 0x8004, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x10000, 0x4, @perf_config_ext={0x401, 0x8}, 0x101, 0x7f, 0x2ec8, 0x1, 0x2, 0x8, 0x7ff, 0x0, 0x101, 0x0, 0x4}, r2, 0x3, r1, 0x9)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

16:52:40 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x700, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:52:40 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_open_dev$vcsa(&(0x7f0000000140), 0x2b0, 0x82003)
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000100))
getsockopt$bt_hci(r1, 0x0, 0x2, &(0x7f0000000000)=""/95, &(0x7f0000000080)=0x5f)

16:52:40 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'veth0_to_batadv\x00'})
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = fcntl$dupfd(r3, 0x0, r3)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
setsockopt$bt_hci_HCI_TIME_STAMP(r4, 0x0, 0x3, &(0x7f0000000080)=0x3, 0x4)
shutdown(r1, 0x0)

16:52:41 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x0)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:52:41 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = openat$cgroup_ro(r1, &(0x7f0000000000)='blkio.bfq.io_service_bytes_recursive\x00', 0x0, 0x0)
r3 = perf_event_open$cgroup(&(0x7f0000000080)={0x4, 0x80, 0x84, 0x8, 0x1, 0x3f, 0x0, 0x100000000, 0x12404, 0x9, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x2, 0x0, @perf_bp={&(0x7f0000000040), 0x8}, 0x104, 0x40, 0x8, 0x1, 0x10001, 0x10000, 0x6, 0x0, 0x4, 0x0, 0x5cc52b20}, r1, 0x2, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r2, 0xc018937b, &(0x7f0000000100)={{0x1, 0x1, 0x18, r3, {0xffffffffffffffff, 0xee01}}, './file0\x00'})
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
fchdir(0xffffffffffffffff)

[ 2806.635939] 9pnet: Could not find request transport: xen
[ 2806.641209] loop7: detected capacity change from 0 to 135266304
[ 2806.693855] loop7: detected capacity change from 0 to 135266304
16:52:56 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000080)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}}, 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:52:56 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x10000000f)

16:52:56 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000000)={r1, 0x4, 0x9, 0x5})
connect$bt_sco(0xffffffffffffffff, &(0x7f0000000040)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

16:52:56 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x900, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:52:56 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x6c00)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:52:56 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r1, 0x80045301, &(0x7f0000000040))
ioctl$sock_inet6_tcp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000180))
ioctl$SIOCGSTAMP(r0, 0x8906, &(0x7f0000000000))

16:52:56 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x0, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:52:56 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x406, r0)
r2 = openat$cgroup_pressure(r1, &(0x7f0000000000)='cpu.pressure\x00', 0x2, 0x0)
getsockopt$bt_BT_POWER(r0, 0x112, 0x9, &(0x7f0000000040)=0x5b, &(0x7f0000000080)=0x1)
dup(r2)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:52:56 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
openat(r1, &(0x7f0000000000)='./file0\x00', 0x4141, 0x18)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
fcntl$setflags(r1, 0x2, 0xb45a1e632bedf5df)

[ 2821.818441] loop4: detected capacity change from 0 to 16896
[ 2821.855935] loop7: detected capacity change from 0 to 135266304
[ 2821.866981] 9pnet: Could not find request transport: xen
16:52:56 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
getsockname$netlink(r1, &(0x7f00000000c0), &(0x7f0000000100)=0xc)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
socketpair(0x1a, 0x800, 0x8001, &(0x7f0000000040)={<r2=>0xffffffffffffffff})
bind$bt_sco(r2, &(0x7f0000000080)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}, 0x8)
shutdown(r1, 0x0)

16:52:56 executing program 1:
r0 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x3c, r0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x9}, @BATADV_ATTR_HARD_IFINDEX={0x8}, @BATADV_ATTR_HARD_IFINDEX={0x8}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}]}, 0x3c}}, 0x4804)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r3 = fcntl$dupfd(r1, 0x0, r1)
r4 = dup3(r2, r3, 0x80000)
bind$bt_sco(r4, &(0x7f0000000000)={0x1f, @none}, 0x8)
ioctl$sock_inet6_tcp_SIOCOUTQ(r3, 0x5411, &(0x7f0000000180))

[ 2821.901522] loop4: detected capacity change from 0 to 16896
[ 2821.923465] loop7: detected capacity change from 0 to 135266304
16:52:56 executing program 3:
ioctl$BTRFS_IOC_START_SYNC(0xffffffffffffffff, 0x80089418, &(0x7f0000000000))
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$sock_inet6_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000180))
setsockopt$sock_int(r0, 0x1, 0x1, &(0x7f0000000040)=0x3dec, 0x4)

16:52:56 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x7400)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:52:56 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0xa00, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:52:56 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0xdd7, 0x4000)
r2 = fcntl$dupfd(r0, 0x0, r1)
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))

[ 2822.127892] loop4: detected capacity change from 0 to 16896
16:52:56 executing program 1:
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000000)={0x0, 0xffffffffffffffff, 0x100000001, 0x80000000, 0x2, 0x41})
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
clone3(&(0x7f00000003c0)={0x75049461b74e05de, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140), {0x4}, &(0x7f0000000200)=""/111, 0x6f, &(0x7f0000000280)=""/124, &(0x7f0000000300)=[0xffffffffffffffff, 0x0], 0x2}, 0x58)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
pidfd_send_signal(r2, 0x12, &(0x7f0000000040)={0x35, 0x0, 0xe3}, 0x0)
r3 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r3, 0x5411, &(0x7f0000000180))

[ 2822.217983] loop7: detected capacity change from 0 to 135266304
[ 2822.253651] loop7: detected capacity change from 0 to 135266304
[ 2823.853558] Bluetooth: hci7: command 0x0405 tx timeout
16:53:11 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x0, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:53:11 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000010)

16:53:11 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_setup(0x769, &(0x7f0000000040)={0x0, 0x18b4, 0x0, 0x1, 0x33}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000000c0)=<r1=>0x0, &(0x7f0000000100))
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0)
syz_io_uring_submit(r5, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r8, 0x0, 0x0}, 0x0)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FSYNC={0x3, 0x1, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r9}}, 0x8)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000700)=@IORING_OP_RECVMSG={0xa, 0x1, 0x0, r8, 0x0, &(0x7f00000006c0)={&(0x7f0000000440)=@ax25={{0x3, @netrom}, [@bcast, @bcast, @bcast, @default, @netrom, @bcast, @bcast]}, 0x80, &(0x7f0000000640)=[{&(0x7f00000003c0)=""/12, 0xc}, {&(0x7f00000004c0)=""/90, 0x5a}, {&(0x7f0000000540)=""/205, 0xcd}], 0x3, &(0x7f0000000680)=""/23, 0x17}, 0x0, 0x40, 0x0, {0x2, r9}}, 0x7)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_POLL_REMOVE={0x7, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, {0x0, r9}}, 0x6)
syz_io_uring_submit(r1, r4, &(0x7f0000000140)=@IORING_OP_TEE={0x21, 0x2, 0x0, @fd=r0, 0x0, 0x0, 0xfffffffc, 0x4, 0x1, {0x0, r9, r0}}, 0x7)
r10 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r10, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r10, 0x0)

16:53:11 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0xb00, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:53:11 executing program 3:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = accept4$packet(0xffffffffffffffff, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000080)=0x14, 0x80800)
ioctl$sock_SIOCBRADDBR(r1, 0x89a0, &(0x7f00000000c0)='wlan1\x00')
r2 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
dup2(0xffffffffffffffff, r0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r3, 0x0, r3)
r4 = fcntl$dupfd(r2, 0x0, r3)
ioctl$sock_inet6_tcp_SIOCOUTQ(r4, 0x5411, &(0x7f0000000180))

16:53:11 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x7a00)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:53:11 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000000)='geneve1\x00', 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000040)=0xffffffffffffffff, 0x4)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:53:11 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
fcntl$dupfd(r0, 0x0, r0)
r1 = syz_open_dev$vcsu(&(0x7f0000000080), 0x4, 0x101000)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}}, 0x8)
r2 = socket$inet6(0xa, 0x4, 0x6)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r3, 0x0, r2)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c89425, &(0x7f00000000c0)={"c67e60d7cc4e11bb1d5ae76660cbd2e6", <r4=>0x0, 0x0, {0x5fb, 0x68}, {0x100000001, 0x1}, 0x6, [0x3, 0x5, 0x40, 0x6, 0x2, 0x1ff, 0x81, 0x2, 0x7, 0x4, 0x1, 0x1f, 0xc6a2, 0x4, 0xd9, 0x3f]})
r5 = syz_open_dev$sg(0x0, 0x0, 0x2001)
r6 = syz_open_dev$mouse(&(0x7f00000011c0), 0x3, 0x101200)
listen(r6, 0x7)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r5, 0x84009422, &(0x7f00000004c0)={0x0, 0x0, {0x0, @usage, <r7=>0x0}, {0x0, @struct}, {0x0, @struct}})
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r5, 0xc400941d, &(0x7f00000008c0)={r7, 0x5, 0x80000001})
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r2, 0x5000943f, &(0x7f00000001c0)={{r3}, r4, 0xe, @unused=[0x2, 0x10001, 0x8, 0x80000001], @devid=r7})
r8 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r8, 0x80489439, &(0x7f0000001200))

[ 2836.873033] loop4: detected capacity change from 0 to 16896
[ 2836.885982] 9pnet: Could not find request transport: xen
[ 2836.955766] loop7: detected capacity change from 0 to 135266304
[ 2836.996166] loop4: detected capacity change from 0 to 16896
[ 2837.072939] loop7: detected capacity change from 0 to 135266304
16:53:26 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
fallocate(r0, 0x0, 0x4, 0xfff)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:53:26 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000040))

16:53:26 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x0, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:53:26 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x80000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:53:26 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
ioctl$TIOCSWINSZ(0xffffffffffffffff, 0x5414, &(0x7f0000000000)={0x8, 0x639, 0x1f, 0x9})
syz_io_uring_setup(0x4ef2, &(0x7f00000000c0)={0x0, 0x2596, 0x22, 0x2, 0x31b, 0x0, r1}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000140)=<r2=>0x0, &(0x7f0000000400))
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = fcntl$dupfd(r3, 0x0, r3)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FALLOCATE={0x11, 0x1, 0x0, @fd=r4, 0x1000, 0x0, 0x5, 0x0, 0x0, {0x0, r5}}, 0x4d)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r1, 0xc0189371, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r6=>r0}, './file0\x00'})
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r8 = fcntl$dupfd(r7, 0x0, r7)
connect$bt_sco(r8, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
write$binfmt_elf64(r8, &(0x7f00000001c0)={{0x7f, 0x45, 0x4c, 0x46, 0x4, 0xf9, 0x0, 0x81, 0x5d8, 0x3, 0x3e, 0xfffffeff, 0xa3, 0x40, 0x94, 0xfffffff9, 0xff, 0x38, 0x2, 0x3, 0xff, 0x5cb1}, [{0x6474e551, 0x6, 0x8994, 0x5, 0x4, 0x0, 0x8000}, {0x60000000, 0x0, 0x1f, 0x3ff, 0x81, 0x3}], "22a74a57db7e47613b22f1d329362951c1ccb48bb355717083cf551d431e3f358cab7cd80d8cf1fe333c6f2945d2de202b33d9bcf26fb2d9d7f32f18944f63484ef8897787008b68b0fca020379afeaaae052fdd15c0e9cd7025c99bd5ec3d53522f1675e683f2b23b24c2f8b4043384260898f7e5d7059c73a646", ['\x00']}, 0x22b)
ioctl$TIOCGISO7816(r6, 0x80285442, &(0x7f0000000080))

16:53:26 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
clock_gettime(0x0, &(0x7f0000000040)={<r3=>0x0, <r4=>0x0})
setsockopt$sock_timeval(r2, 0x1, 0x42, &(0x7f0000000080)={r3, r4/1000+60000}, 0x10)
ioctl$AUTOFS_IOC_CATATONIC(r0, 0x9362, 0x0)

16:53:26 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0xd00, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:53:26 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000011)

[ 2852.572970] loop4: detected capacity change from 0 to 16896
[ 2852.615814] 9pnet: Could not find request transport: xen
16:53:27 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r3 = perf_event_open(&(0x7f0000000080)={0x3, 0x80, 0x7, 0x1b, 0x7, 0x1f, 0x0, 0x8, 0x11018, 0x6, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x5, 0x1, @perf_config_ext={0xffffffffffff0000, 0x1}, 0x0, 0x9, 0x9, 0x9, 0x1, 0x7, 0x9, 0x0, 0x10000, 0x0, 0x4}, 0xffffffffffffffff, 0xe, 0xffffffffffffffff, 0x2)
copy_file_range(r2, &(0x7f0000000040)=0x8001, r3, &(0x7f0000000100)=0x1, 0x7, 0x0)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r4 = fcntl$dupfd(r0, 0x0, r0)
io_uring_enter(r4, 0x3bcd, 0x2a02, 0x2, &(0x7f0000000000)={[0x7216]}, 0x8)
ioctl$sock_inet6_tcp_SIOCOUTQ(r4, 0x5411, &(0x7f0000000180))

16:53:27 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r2=>r1}, './file0\x00'})
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r3, 0x0, r3)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r2, 0xc0189377, &(0x7f0000000040)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r3, @ANYBLOB="80000000000000002e2f66696c653000"])
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

[ 2852.764805] loop4: detected capacity change from 0 to 16896
16:53:27 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000), 0x8)
ioctl$BTRFS_IOC_BALANCE(r1, 0x5000940c, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r0)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r3, 0x0)
r4 = mmap$IORING_OFF_SQES(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x100000c, 0x12, r3, 0x10000000)
syz_io_uring_submit(0x0, r4, &(0x7f00000014c0)=@IORING_OP_WRITEV={0x2, 0x4, 0x6000, @fd=r2, 0x2, &(0x7f0000001440)=[{&(0x7f0000000040)="fba7f52577cb4ad7e6324e5ba925df8a66f889651909893d3857d2029b5e13017e4cf3273c3d47d1e0ccd816c3d77fd78db66df61718c0ee21b75f138f3f650a605658c22344d8e4a7be1d38720a3b2dbb1229f7d96b2d1fc84d3fd3d501241ae00226c7be1b05353f9ed90db453badcf9f82e2ac95788ebc64c504d3268698739b649dc61e2a60aeeed185e36e1", 0x8e}, {&(0x7f0000000100)="d1c76397c6d894d159747ce388050d389cb87995d6d67d8535b2da93d52b02bed659db90d224a3ef94793549d316bf47c613b1a55f68b4008afeed4f81b1c582f3237cf4ec3cff54d20225dd46f490f3e4a6f716f9d12b4c3a81394210ee96b141de635107b7bd9e2ba61de1e1e26295f5f8ecfe385c388b9e6217c99f0b1de9f69142a9ef8740ddbfe7f1c2d81c731ea24f8a138462a529c2f7913fac51799e52baf518965ed7e83951903c67088e0b94d2393edfd03767ff043d4dcbe7331565b29faa34e564ac64f4854bab4a1bc1fd2834eb659d67bdbfbd0fd4b1e77b91110bd99fa5dcab8849", 0xe9}, {&(0x7f0000000200)="45a3f7e39bfa0bb59b00c76b7321770a3000e8ba60775721529ce17c9b9d95102c85a556219ac9e8af4e0a63a2ed57d59a0ab1cb92aa9bdbb53e4c31", 0x3c}, {&(0x7f0000000240)="6feafd98f6222caeb99c23eb76e1e8533e9756cc7e272277f721342d5f2907812ae9d565a58168f8367f9c913e501eb8fbc4d53b2e4547224f085e494d39fa634a3a4d588b7b24aa491b7117964a75a1f08ba5a063836062b4b0e8d55222c81ac70a449c2d5e9d4c9d7faa2e1bbe0989f112f43ef73497c37844f0675f56f92e1c4949f5e32541b3c1266d2b490e6d73d754d033660f97ae181df49e18e33b68518d5ae2da0a8b2a6bf50bcc97fac09daa2a36b1144a62423d75a2d5be90c2596de7b266c885384817e676bd78615f0146bb1d31ae509212", 0xd8}, {&(0x7f0000000340)="227fcb86b0b76f3a613e13239a9cf93744a09ad4109f4c5a40b88019743416cf1758a376c359fab4ebb3f25969b6e0ea7eeb0b0da92c2ac7f790254cf6064287e937c72f1abba81f9082c80484599e2c231a78883e62d73fbe366ce500bf0f136eebb2cd024001d10dd7e7beddf92585e47f00148d39763c0b2fe457b47c6ebf60ac0f7fbe75064aed67", 0x8a}, {&(0x7f0000000400)="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", 0x1000}, {&(0x7f0000001400)}], 0x7, 0xc, 0x1, {0x8}}, 0x0)

[ 2852.789176] loop7: detected capacity change from 0 to 135266304
16:53:27 executing program 1:
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff})
recvmsg$unix(r0, &(0x7f0000000400)={&(0x7f0000000040)=@abs, 0x6e, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/104, 0x68}, {&(0x7f0000000140)=""/46, 0x2e}, {&(0x7f0000000200)=""/179, 0xb3}, {&(0x7f00000002c0)=""/18, 0x12}], 0x4, &(0x7f0000000340)=[@cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x88}, 0x40000003)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))

16:53:27 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x100000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:53:27 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r2, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r2, &(0x7f0000000100)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
sendmsg$inet(r2, &(0x7f00000000c0)={&(0x7f0000000000)={0x2, 0x4e21, @multicast1}, 0x10, 0x0}, 0x404c008)
connect$inet6(r2, &(0x7f0000000080)={0xa, 0x4e22, 0x1, @ipv4={'\x00', '\xff\xff', @empty}, 0x1}, 0x1c)
r3 = fcntl$dupfd(r2, 0x0, r2)
sendmsg$inet6(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000001ac0)={{{@in6, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in6=@private1}, 0x0, @in=@initdev}}, &(0x7f0000001a80)=0xfffffffffffffda2)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = fcntl$dupfd(r5, 0x0, r5)
sendmsg$nl_generic(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="f80000001c00210cfffffffffff9f06ab8083214e8c7167d9b85d29e83b01df1ee2532386c4e622017246a951804d7491b1b50bdd12865aef323f8041d80e8b40f9e98e643da8978aa20260bf93696ba075b54c81e6450a6fa0f9e87e2b6e224bdbc39dbcf96ddc38a51f7f3b91d9e6fed2380fb998b06340be515dd22e0fd27ca86bccd9df4c6b3233a8aedeebd0ed4587bb7f669002d2ed764685cec08743482681efe6e7e757728bc2f4e40a5c82dc230114229c1e1c98750eed455c41138f3ea94eb12abe8a55904c5f7035286c0d4d39dd6168e3bc8b1385e463cdbbffbc4e2080001000a010100080002002a5c3a00000000000000"], 0xf8}, 0x1, 0x0, 0x0, 0x44801}, 0x4000000)
setsockopt$inet_pktinfo(r6, 0x0, 0x8, &(0x7f0000001a40)={r4, @multicast1, @multicast1}, 0xc)
ioctl$NS_GET_OWNER_UID(r3, 0xb704, &(0x7f00000001c0)=<r7=>0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000380)={{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in=@empty, 0x4e21, 0x9, 0x4e24, 0x4, 0xa, 0x80, 0x0, 0x6c, r4, r7}, {0xfffffffffffffffe, 0x80, 0x800, 0x7fffffff, 0xfffffffffffffffe, 0x1ac0, 0xfb5, 0x4}, {0x7fffffff, 0x9, 0x0, 0x975}, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1}, {{@in=@local, 0x4d2, 0x33}, 0x2, @in6=@remote, 0x0, 0x0, 0x3, 0x40, 0x3f, 0x2, 0x7}}, 0xe8)
sendmsg$DCCPDIAG_GETSOCK(r1, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000040)={0x10c, 0x13, 0x200, 0x70bd2c, 0x25dfdbfd, {0x5, 0x0, 0x1f, 0x1f, {0x4e21, 0x4e24, [0xfffffff9, 0x8, 0x4, 0x67726230], [0x6, 0x20, 0xfffffff7, 0x2], r4, [0xffffff80, 0x5]}, 0x1807, 0x3}, [@INET_DIAG_REQ_BYTECODE={0xbe, 0x1, "94f7406f33d64c578d6e492e96a28b168d161cf9e514a7d00a5774b71802342eebbc165a2a0c9930a1ab80186f45241c44ec5b2af8fa11116285f5ec9a46eb97b2cabefbe91cc765aa6f97f13df98b8d4f20e18662db569d535042875c1ae78d69ee7ce0f050bfdd8e68ad557eddb7b1c7b7f96e36c6875bc41866164e6d43f019d70fe069755f1c6c4ddc2e37a57368ce52629d9fbd1275b8230347e73ffddc5e82f8e2d5c35b4d8f55cfa5f92ece773baa200280be8ce81b61"}]}, 0x10c}, 0x1, 0x0, 0x0, 0x80}, 0x20000096)

[ 2852.982464] netlink: 220 bytes leftover after parsing attributes in process `syz-executor.3'.
16:53:27 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0xf00, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:53:27 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r2, 0x0, r2)
shutdown(0xffffffffffffffff, 0x0)

[ 2853.057415] loop4: detected capacity change from 0 to 16896
[ 2853.127486] loop7: detected capacity change from 0 to 135266304
[ 2853.136827] loop4: detected capacity change from 0 to 16896
[ 2853.206290] loop7: detected capacity change from 0 to 135266304
16:53:44 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000012)

16:53:44 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x1020, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:53:44 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x220000, 0xe1)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:53:44 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x1000000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:53:44 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x2201, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:53:44 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}}, 0x8)

16:53:44 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$cgroup_freezer_state(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r3 = fcntl$dupfd(r0, 0x0, r2)
ioctl$sock_inet6_tcp_SIOCOUTQ(r3, 0x5411, &(0x7f0000000180))

16:53:44 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = openat2(r1, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x1b54c1, 0x28, 0x4}, 0x18)
getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000140)={{{@in6=@loopback, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in6=@private0}, 0x0, @in6=@mcast2}}, &(0x7f0000000240)=0xe8)
sendmsg$nl_generic(r2, &(0x7f0000000480)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000440)={&(0x7f0000000280)={0x1bc, 0x18, 0x4, 0x70bd26, 0x25dfdbfb, {0x3}, [@typed={0x14, 0x69, 0x0, 0x0, @ipv6=@loopback}, @typed={0x8, 0x48, 0x0, 0x0, @pid}, @nested={0x18a, 0x7, 0x0, 0x1, [@typed={0x8, 0x3c, 0x0, 0x0, @u32=0x5}, @generic="782a793698f6c5deb9467d1115911bf894acbc00571bf73edab5fd44497f81ced728061ad02765ce4daf37677cdc8b51655b2b605f8003f8cbc015dfabae19a286e0b260c5c2f21dff127134228ea2a9bb7202bf7e392729f470b4518dd17ac6a2c2236bfb4890c93e18a2b99efc6fd82eef8dccfacd137d66834d37d3bac801a760d71ff4046a8c83008443bffb1f3cd71291e100b1f466e02d2af8c7c82a515df6c27444651cda9a65e5bf0f78bfd83fc67fd70464f00afff4a99abaf001c8d1981a8706695ed8af5c", @typed={0x8, 0x45, 0x0, 0x0, @uid=r3}, @generic="ae72c8b8c0978de3fd5f618e373fcacc559d60acf9e5d02f39b7868665f4099fbdc55bb4380bcf1029c3d6d875806cacb5263f66ccab2ac460da605e5514b4c0d4ac3b8eb9b1535160eb9c9440f115293e061f89ded5cc415bda1807c20181a60a1da2217690542ceb9cb2e9d220c5789ff483bc21038f96a9f9fd13a5e455cc0b8d7fc25a1cfc4acc1c2505741c89ef65646551fc1416c9e7c780d658e9ac067302b225db9971329a88c282"]}]}, 0x1bc}, 0x1, 0x0, 0x0, 0x4000}, 0x20000006)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r5, 0x8933, &(0x7f0000000180)={'wpan1\x00', <r8=>0x0})
sendmsg$NL802154_CMD_NEW_INTERFACE(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000001c0)={0x30, r7, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r8}, @NL802154_ATTR_IFTYPE={0x8, 0x5, 0x8}, @NL802154_ATTR_IFNAME={0xa, 0x4, 'wpan4\x00'}]}, 0x30}}, 0x0)
sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(r4, &(0x7f00000005c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x6c, 0x0, 0x100, 0x70bd2a, 0x25dfdbfb, {}, [@IEEE802154_ATTR_LLSEC_KEY_SOURCE_EXTENDED={0xc, 0x2d, {0xaaaaaaaaaaaa0102}}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x1}, @IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0xfffe}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r8}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_EXTENDED={0xc}, @IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0x6}, @IEEE802154_ATTR_SHORT_ADDR={0x6}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x3}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0xffff}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x2}]}, 0x6c}, 0x1, 0x0, 0x0, 0x44859}, 0x4040)
r9 = mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x4, 0x10, r1, 0x10000000)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r9, &(0x7f0000000040)=@IORING_OP_POLL_REMOVE={0x7, 0x4, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x0, {0x0, r10}}, 0x7)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

[ 2870.123186] loop4: detected capacity change from 0 to 16896
16:53:44 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x4000, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

[ 2870.185759] 9pnet: Could not find request transport: xen
16:53:44 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
bind$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)

[ 2870.293170] loop7: detected capacity change from 0 to 135266304
16:53:44 executing program 3:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x25c0c2, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, &(0x7f0000000040)=0x9)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))

16:53:44 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
r2 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x2000003, 0x1010, r1, 0x8000000)
r3 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2000001, 0x10, r1, 0x10000000)
syz_io_uring_submit(r2, r3, &(0x7f0000000080)=@IORING_OP_FADVISE={0x18, 0x5, 0x0, @fd_index=0x8, 0x1, 0x0, 0x492}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r1, 0xc0189371, &(0x7f0000000040)={{0x1, 0x1, 0x18}, './file0\x00'})
shutdown(r1, 0x0)

16:53:44 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$VFAT_IOCTL_READDIR_SHORT(r3, 0x82307202, &(0x7f0000000200)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])

16:53:44 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x3, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
memfd_create(&(0x7f0000000080)='\xbf4\xa3\xb7\x99Y\xfb\xce\x98\xc1\x83\xf5\x89juz\xd9\xb6\xca\x99\xdb\xd4\v\x1b\"\xb4\xd8\xff\xa4\f}\xaa\xddP8\x81\xec\xc8\x80wP\xc9b\xa3\x8f\xe1\xedfA\xf3G\xea\xac\x8c\xed\xdd \xe8m\x11\xe4\xe5\xc7\xa4\xc5\nv\xbb\xa3\xb3\x0f\x12y\"\x8dJ\x06\xa4\x97\xd5\x16\x11\t\xb0w\x8d\x178\r\x17\x9f0\xa7', 0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_IPV6_HOPOPTS(r3, 0x29, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="041f0000000000000502fff80401030502000107"], 0x108)
setsockopt$inet6_opts(r3, 0x29, 0x36, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r4, 0x0, r4)
ioctl$INCFS_IOC_CREATE_FILE(r4, 0xc058671e, &(0x7f00000000c0)={{}, {0xffff}, 0x10, 0x0, 0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000400)="7944482a7a432bf0b2f8c867da34133182d6a9c85cd8f81cc4225ce31e947f723c8aa2de81aa67bfb2fc0046beacfa902506143cd1e50167ffb6c1ce208edafcb5aaf136fd78307012bcc0d40b42540f5c9cf3e8fd218df9d839e0699f95f635101e78a41e4d56b9754a9208ddce44f4ba1bb4c39e160961563a97ce73f85b464d6b059ca1e9ec24d3b2932f26f11654f95c465b31d0c66968478d3f3b64b3336b173557776024286c02579cf929f5034e6c4384820688114d7acd73286a93779f60e87efb3f97f3bfd1d25fb7b144f622aa9a162d0e2915be", 0xd9, 0x0, &(0x7f0000000500)={0x2, 0x135, {0x1, 0xc, 0x7b, "b9443a2baa291cef5b97acc19467085582b94ed75a6794262b73a5a47384209fdb8645da3627359720430e41be7ca4f1d393125c60fbc1341065ed9baed8c783d8e3c6acb7399351a15614e5ca4648c564000057966b7f5cee3e6651c93ce9f5132bd38cbb248502759689e5b157df3eeeeaa20d65d2b7c640a584", 0xad, "dc8c6b46ab148e77986e53db3882670e5b0b7d6ca0464f9a677356bae9bf9abdae9356d76c700f233e0bc26a38ca5efb8cccaf10f141554606bc1e6b40e3e56126e1135fbb167162a5fe901054111c601c0a2dcbc14c489d88b8e8699ff33a5fccd29bc99fe479d049deeeae533cc833db9f2336f4069c4e46791c22e154a08a736322f865cd9f274e9451dc6201591e9cbdd36c42cc25c5b77985fe1aa267b5d90731b0bd980dd37fd874ec9b"}, 0x9c, "2c0e11184fb656c425ab3f85abd9c9310a95e50a23edc0efb70a93171dc9384aac6be68e7fec940e118e46f2195edb8a9b6181e2696e23d66109d6070b6edc50b559dcdf3e1c4a2f0153995a79d65eae15468d598336151d5090c36abf080c5f4bc10e0e41ef7371676fb43376371ca1fc8dcd48070f7ec8fa01262553bb2f7e47b83eb85deba942f424a60b782c06eaedd689815901283ece7777ce"}, 0x1dd})
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x0, {0x0, r5}}, 0x5)
r6 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r6, 0x5411, &(0x7f0000000180))

16:53:44 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x2000000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:53:44 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x1100, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

[ 2870.561078] loop4: detected capacity change from 0 to 16896
16:53:45 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000023)

16:53:45 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
clone3(&(0x7f00000002c0)={0x20090100, &(0x7f0000000040)=<r2=>0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000000c0), {0x8}, &(0x7f0000000100)=""/143, 0x8f, &(0x7f00000001c0)=""/155, &(0x7f0000000280)=[0x0, 0xffffffffffffffff], 0x2}, 0x58)
r3 = fcntl$dupfd(r0, 0x0, r2)
r4 = openat(r3, &(0x7f0000000340)='./file0\x00', 0x10101, 0xad)
fsync(r4)
shutdown(r1, 0x0)

16:53:45 executing program 1:
r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
r2 = geteuid()
statx(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x0, 0x400, &(0x7f0000000980)={0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0})
lstat(&(0x7f00000002c0)='./file1\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2, &(0x7f00000005c0)=ANY=[@ANYBLOB="74526600010000", @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c64666c74673ebc84c1b518f706ad06986964", @ANYRESHEX=r3, @ANYBLOB=',posixacl,access=any,version=9p2000.u,dfltgi', @ANYRESHEX=r4, @ANYBLOB=',version=9p2000,fowner=', @ANYRESDEC, @ANYBLOB=',dont_hash,defcontext=unconfined_u,measure,smackfshat=\',\'A,seclabel,pcr=00000000000000000051,defcontext=\x00ser_u,appraise,\x00'])
write$P9_RSTATu(r1, &(0x7f0000001940)=ANY=[@ANYBLOB="560000007d020000003600a1d027000000040400a802cc6b3a30e2f6e5ecff6071507000000700000000000000000001000500000001000000ff7f000000000000000000000100210200272b0b002f70726f632f73656c6600", @ANYRES32=r2, @ANYRES32=r3, @ANYRES32], 0x56)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000001340)={{0x1, 0x1, 0x18, <r5=>r1, {0x6}}, './file1\x00'})
clock_gettime(0x0, &(0x7f0000001880)={<r6=>0x0, <r7=>0x0})
recvmmsg(r5, &(0x7f0000001800)=[{{0x0, 0x0, &(0x7f00000015c0)=[{&(0x7f0000001380)=""/237, 0xed}, {&(0x7f0000001480)=""/216, 0xd8}, {&(0x7f0000001580)=""/29, 0x1d}], 0x3, &(0x7f0000001600)=""/52, 0x34}, 0x4}, {{&(0x7f0000001640)=@qipcrtr, 0x80, &(0x7f00000017c0)=[{&(0x7f00000016c0)=""/208, 0xd0}], 0x1}, 0x80000001}], 0x2, 0x80, &(0x7f00000018c0)={r6, r7+10000000})
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
ioctl$BTRFS_IOC_INO_LOOKUP(r0, 0xd0009412, &(0x7f0000000200)={0x0, 0x6})
write$P9_RAUTH(r1, &(0x7f0000000080)={0x14, 0x67, 0x1, {0x40, 0x1, 0x4}}, 0x14)
r8 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1000000, 0x30, r1, 0x8000000)
syz_io_uring_setup(0x6b1b, &(0x7f0000001200)={0x0, 0x560c, 0x20, 0x1, 0x8b, 0x0, r1}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000001280), &(0x7f00000012c0)=<r9=>0x0)
ioctl$EXT4_IOC_MIGRATE(r0, 0x6609)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r9, &(0x7f0000001900)=@IORING_OP_WRITE_FIXED={0x5, 0x5, 0x2000, @fd, 0x1, 0x7, 0x9, 0x7, 0x1, {0x3, r10}}, 0x9)
syz_io_uring_submit(r8, r9, &(0x7f0000001300)=@IORING_OP_FALLOCATE={0x11, 0x3, 0x0, @fd_index=0x8, 0x6, 0x0, 0xfffffbff}, 0x0)

16:53:45 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x2201, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:53:45 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
r2 = accept(0xffffffffffffffff, &(0x7f0000000000)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @private2}}, &(0x7f0000000080)=0x80)
ioctl$SIOCGSTAMP(r2, 0x8906, &(0x7f00000000c0))

[ 2870.769192] 9pnet: Could not find request transport: xen
[ 2870.803449] loop7: detected capacity change from 0 to 135266304
16:54:02 executing program 1:
preadv(0xffffffffffffffff, &(0x7f0000001580)=[{&(0x7f0000000200)=""/141, 0x8d}, {&(0x7f00000002c0)=""/4096, 0x1000}, {&(0x7f00000012c0)=""/180, 0xb4}, {&(0x7f0000000100)=""/80, 0x50}, {&(0x7f0000001380)=""/21, 0x15}, {&(0x7f00000013c0)=""/248, 0xf8}, {&(0x7f00000014c0)=""/172, 0xac}], 0x7, 0x20, 0x92)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
pidfd_send_signal(r1, 0xb, &(0x7f0000000080)={0x33, 0x9, 0xbe}, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_SIOCADDRT(r1, 0x890b, &(0x7f0000001680)={0x0, @phonet={0x23, 0x0, 0xf7, 0x40}, @vsock={0x28, 0x0, 0xffffffff, @host}, @generic={0x2b, "9c4f6df3a6a6a386abbdff8c7433"}, 0x6, 0x0, 0x0, 0x0, 0x7, &(0x7f0000001640)='ip6erspan0\x00', 0xfffffffffffffffc, 0x9, 0x7})
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
bind$packet(r3, &(0x7f0000001600)={0x11, 0x10}, 0x14)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000000)={0x6, 0x1000, 0x6, 0x2000000, 0x101})
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x161000, 0x108)

16:54:02 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x3000000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:54:02 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

16:54:02 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r0, 0x0, r0)

16:54:02 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2000, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:54:02 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r4, 0x0, r4)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f00000000c0)=@IORING_OP_SEND={0x1a, 0x3, 0x0, r4, 0x0, &(0x7f0000000080)="3a78527b4f5fd947c6325ee4b6ef5d3519ec09fac615278acfa7", 0x1a, 0x2004400c, 0x0, {0x0, r5}}, 0xfa1)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:54:02 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x1000001da)

16:54:02 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x2201, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

[ 2888.375433] 9pnet: Could not find request transport: xen
[ 2888.379923] loop4: detected capacity change from 0 to 16896
16:54:02 executing program 3:
r0 = syz_open_dev$vcsn(&(0x7f0000000040), 0x5, 0x5a240)
sendmsg$nl_generic(r0, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000000c0)={&(0x7f00000001c0)={0x1050, 0x41, 0x308, 0x70bd29, 0x25dfdbff, {}, [@typed={0x4, 0x8b}, @typed={0x14, 0xd, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @empty}}, @typed={0x8, 0x2f, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x42}}, @generic="5e1563b90cf9ba30ad52e4307764677a261ba10211b842cc15776cfc0e8d11863db7746043c2ccb4217ce9c5e11bac01447a0f4b59cb0cbdd5beba929300d20949fc18f296667f9bfb98fa278d85c19c9c156cf3a31d3c8d3d32ded091d7af4259d68db29b72a173b5261895b122a56e7ec951aa85035ac7ff9bea37ea37cc3ed249857c8f16686346a6f5826d1265f24a3f792b82421aa6e4bca67fd483987dd9c1e0ab1dc3f44671846e835d2b3c9232fcb3e634a554b35152e29fdeddf5b0b37cbc2c2dd548f9d566c134c519fd166a1c9d904d3f5ee7ee486ebc481c2d96bc969367b922b211c45b4dac854a80ac2ae29d07f750261ea1c3d38516adbaf2eddbb46516b8486927bca06cdfc81d0a816983400ac252960fec6e2f6079b800d5a0f100b126fecf2598ae811a5f1ed4f0fdc081bf8f83dac3636b5d37488a6134bab22bed5558da06ddcd385a8d02f92f9db74771de1ebe545883a36982a968a7154273de91f4c60e9733060e604e26113402a1a1c427d7b16579bcaa4312444547ba0e5b375aace14bdf50a2812a0d6c05452e4d98ba29f1fd245705feed102673849bdb43d13c9373f8372759bd03caa877f126af65bca3efc42e82cd19f48fcb665623f27725dd3df47ce363c7d5963cd172c8be81254f73590450d9758e3d59d5accf5400e5986780a30e4cdacc951314cce89c713d1a7918519a832ba1fd0ebe24bfedce0cbd747decc34edb389476a1d4d5085dfe6dc374e6ea1dbf4d0cfb1a9590e0984b4e757065b0b7b1a4bb73290a1cdde03630112e41f73372e3a9bfaa643cf7a2c8c1b46c0788e2434cb7be46cf13d59aab0c4fe5344c8e07610e9256c3412b0fcc103988fb07d0fcd0834818532c205d093e7b9442931fe68cde869445646d7849539a2a5bd8564557bf559313d968f52f6b9cdd7251748a740a85f8dc94cd34b6c1eb25b1dcc79a8926926628b817d00e6e71438a0ed69c16d9575a1263c8221ae3bc857551273b97bee076ec597dba77c0c774deb4afa19a1f1cb861883121c7cc45f5c716b5cbbfcdb68558efe9fae4a13ee65426a7c9b38d76be318fdde3e2c288fc757cd6155e9eb1f4f2ca13a01f5e9f145bcab9fe8fb450a3cea91e0232652ff83900e7342a69a98c67d4efc78793bc32b881dd4e6e3b4edbe22dcfefa4927dbeb38c78e09cc646c6a1b56215438b953a83b442d530276b235c885b3ec267adbbc4fd6a9888ca91d2618693c21fb87f68e975bfd1d1717549c97a2bf082a1ecfdaea1b1f4d7899f0754d4e7483cacbff761a362b87911728180693243fb0d39d43800546eba11c1cd69bab28b880e458e8e338630429e690645b9acdddfa6a27752ea5dfcad4bdbf9fcd68b9fd3805d782fb8646c81de78eed223b32a9cc2a0181760dfbd0ea0644a05f9435a13c5f19cfbc503c6f1325251609cc0258d5899760eaee3aa945c0467e4e1f49a86d286b67f4295cba52a040718e541387d5c531cf8bf928e95cb86c26c8c2b4352a5bf334813757671833f565cbcd5d45fef145f41045ba9e4814f1ac37f9e0d0a1eaace5936b819ddaa846b858e836fd3b80982fed1907a69a7c940f864e55aab86db93a6e2bcb7a484e52763421edf119528e419a026638c459a7f66a75b612094cf2ef5e213959d963304444b76b00af118c68044e7af6f385742945503dd504af26d21c707b57c4d68850e95c97f9cc29740965f3057b38bb6bc326617b51b5b3ae40a72d1e9da33df215e6a4fd4f36eaab85086fdbb2bd7718cc83b19e39538a0136a8cea53c8939840ded22df91cfeeaa279c3608ded84997b0a786dce94fe9c2485e44afa84ecb617cbac030f7d4257fb08a77e2c8985a1f160959fb8f945d132d0a8612dadb183e74b9daef210979b864afede34432809974545b6b9759ed56886e8ce0f375a3f80aaa16280cf921b204a2f4b17b88e9f7735992fa3ce73cc644cb7cf1f2fb94b98ea166718bfdb7e15938d16e6204e114dfc5209a673cec7e166f6ee949fdb207dac359700f49e5382bb6dc2b05ce45dd4b9a661ba3c9f2b9b7bc31918d7da5bb4caf093c545fd06b66b8c5f90800e1fca0ba257e8381b2b80b6563102c829d480375d569a570858e886bc66a872793b34f645b28b80b3660c5cb33e77cc9e58f2f5fa7e14f0ce0cd813befaa565896002fa915eb608628c79d6fff3a22b568adf35b7554c753775ee0ee2e0f7465fe5b2ed564cd78fdabb87b46c13ff0b0274731414bf3b7b9a5ee892af6670cd12fb89e18ef8c1b80133974c4ec4cf66967a6933056b43120f14e3166a93626b3cc224629f3be95255499a63e0fbf041bc95b75d77d2ad00218fc524df4664ebb57bb725155ab9be7e0ec7280803886a60a56d09d1266995872e09e5c2a0d216eef5e4fc4b42a11e9e6cacb873879f5ae150e3633c15357245212a6d0c3e82bfa01a5418b04a3f4c2090ac98284304146635820c2a81697d60004420dcbabd4862a93a2892bf772e26374dca9a51043fa67e7f7f6cf5bc7c997ae7504363adaf24e0ed47f9d8cf5ee33c2ea01b7477f2ce0f6f97c410fa799fa223d90756a72de213bd454c6d71a7af1c8061e0cbbb2b2680431c3d2a404639930c0db2273fd77d8e3cae2df755731badc9757d032e036652d95b0f8815c0a3a4ac5aacdbb254001184e1a0d40042af3399c86164174e22538dd166aeb92ca9505141e10d8576e2adf64cfc30cbf2d1535f6d850cf4166e9dc754d3086a50590558c6063c47b074f7eab2bf8b9b086bf0b4f2b4d2d72d566fa0855fcb11333abfb7dc048a402ef958867c92dfe3a83fa96ee13c2b6d3b0b39046b7fc80a1bcb36243aaf0f645326b332d515d0f5374541663b0f71599968df566fbf92b31582a9f2bb8c4aade99d7b3725e127315ca835f5aa6a5b3a880bd8aadddbbf1dcc6599a7ba00abf48512991a11efad4816a42058790a0a1fd001634a1a9ce6c47a0098a23cc7883e35665a7689cfc8abf3ac46efc04b29f4dd2f6f84372d42e82380f4c1876f2268b864684d6bb9c590774c1d7bac4e4f0708dfdf463c37ed4a37b79d427ca858ab7734d441e41e3e3e93e83104bd55e11887ea56c20a0c37ab6551bae50fd3f5d90611f77e554c95c06c84f051a68ad6a3dd2ade2bf01e039eab1c4e071e85163d13ef7ad13fc1491d677dd42298d7f5ccfcc4b0b5fe4e3fe0053804ce4d28a11623b7c25e1ac639868929925f2d3d3779c4f893bd03fb7f657c654e2729dce287478f4cdca1b260b052822e6265432ca58e3a80de733b169a777ed2a201e8ec1bdba360f15a281b0b3e5d1132cffe04c05abb95a54492582ba916e9413533c85281793c8bdcda1315ebb14d633d8dccc8e4b3e5dae37f8c45456d93963223f9d918bd1cb77e0ffca1cb5faf94dcfce61437c7d300117cb43f301970f68203f57ce91c9c2492a9a995f95337ff22486484d1f878f17e0e5e847826f53eb7e595b896162705f00262abc7131a2f621201f94058eb538dde61556410314bfe813c2ba3efafc0ccc51e454ddfb61768839d6560677d4c37ed7a76c7b7ce1604a55c6cafaabafdb22e1a32b1589771535a1cb785c07e1632223189df8e8258666985e7eebce3467d8f9787d06d1a41dbfbb30fddb62fd23c6cc394eb123a0a67f0835a9ee7c0fd70531fbfd921edb4df2d56282614a8cb71233236d674814be1de6258e60eed6abb15879070eb7d2450a78c61bb61cfac4a6e8d289794a308f0883bb56560eb0bbb0bb1e8ed7a633e008e5e81e5f168fa923e2cc8066507699487f06c26d0e1e4f0bfc4cae35072e9018c22c67e4d66b7c1796e239592f673c6aa879aea2b6f02c047ba5131be16b58ae0d972e8059b5e3232eb852bbbd4a29f857ab95ea9a6560d536ed9a2818bdd994d89450a8235ebf7b90f55fdeb2133c0c12e149a34a8616a752b0d5ef8bc8c6ce6bde456056dc50ae9da80836c3ea645493422c97d3ed463c7e29d0dd0df28e33d0d6212cce7d464812d42a41f7438c6f239c7fe58876e9385892a11bf35d2e25cbc7f1f4f9dbe4cb03324f7ddef3adc804479e0e872c292aaa9bb6069d3ae891958275179ccf1653a7a04f6bf12a700322ed3f0073d705eaa1fe0abc5f7094b1d2dcaefe63e5e47d2a52866bf1c6526edaa392445e3c323ae496b261898d66899474b27bb75267749ea6ee1cd91a81ccadfa440bbd84391d48e59d5e3f5340193736c4dd00553814c8cffbfc55448d983baf23005bd196d2fd4b6e5da50b09e859ab28132a9b7d2c1929ff212770ee18fca7361a7a7c894a14f09a935ea437b2445000d12262770c8f9a33453367371019f53fa7d0b5ec76c95a2939e9ca1b84743747bb4d1ccb3c51d46ad3e1bdeaa2068b051c18cb39a83c77a215b36dcbc6457992e7ca4bf5c0dfb51e2e0d639773ec86c2ad94d4fed67e2e57d8f4f4394f938ca395fffa4e4c334894ae2c23a180e0146e335bf4980fcc14b711001eea2b4420c8a20da7add223f0af2e5d05ef9ce77ccb1b0e3afb266927e495374fb937c15d14dcc1154e656e420e0a8637ab5caf22e5a1526313bffd95b595ff2e24fa82b9a05106722b11ffd25ee79ebe6bc3d49d8cc38dcc15e33357a7a220355d737049fe399004f579af8da1cec44e4388ff1c08262169976978c76ef65fb799b045549c0c85e684102c5e59ba0a9b0ee02be302b7c14e66e2a1a2b614b09c1544a74875996dc3e91b2f2c05d67403c263301a11d210bde1f229ec0c8391cb52b3366723387ad846daad9c465438ef69eeb79f1ced7dd0f34871b5a499f6d432034231f71989e5739c7e76652bc35958cc81b02487833626cc760425a2a0ba67726711312cb0924caae3f656ae649c7e0dc7c4165118e6eff664d50ca27b7b2bbb64e971b4f6e305fe68b895c398e517cd7f5f6b9c08fa3ff9011448ab457ed930ef243a726068b6cb603cf1b6c06f3157e7b1ca24380c5cdd1ffa8ebe5833703ea0739be0a972394035c9c3a97882943817029e5c65c23fea1051ef3b4c3ac7e7fdb197cf8898ee261066d43810e18437aa89504980bf03cd05c9ac891d4ab44616e0c0131cf9633fa2adaf0b693e2440f3da48d16af4a6d6569d79bae18dfc2c0e582d3c6d9dea0b2c191d23f47fd44f6a6c81ada504125bcb382fa4f860a1be4eb8604f4fe4dd82e2b50ae8013de44bf881e9d7df666c4ce697b04ef5deedcd03d97b61944e628890e0e807508b5c7dfd6c2d59f7ea3a7912860c1a0c3062c3875abbd09d1ea7cfbb82f31a1612ef183227970699f5c9742cc0919ac7c234ab5a22f55b9657466331a5c274cee6ffb9455d578677087882e0175e01c5ba9a7588b053c7cbd5ee70ddcf28dbb447d067bb6b9e9a2b94a8a2682a6f0ae931ba65852bef6f61b4379e2c2e5c6562e797770ae362ea329c58dbcbc5fcd36645dc06f14aea56bbbbd0f3af64b14b47890e88d3a3a45ddf32dca6874a5fdf30c6b1949af203e8d6607e4654085c4df93506fb48168e5ea6050762c29b1f6ceb9e2029a3f669078439144eaa24f22a300750cd914170219db6c78f2598d9bb7416829b947e1b479bb8718b78fc7e3452b8422dd715ab8c2f86409c64ad6479d2a34e92d520a4a8223ec4e81568da34f9761f1a52a44829a190672975601cf9ee4816214a394110fc0d9237ea81fc54e4109ec66b7eaa7881cd13bc775758632f365956ca868a0828c3a35c7946c5b2ae43c852399f017cbebbdc5345ea719446eff335512d208", @generic="3115b0dedf7eff10f39c4f0c7f85991ad48b274c9a1d44c287"]}, 0x1050}, 0x1, 0x0, 0x0, 0x8004}, 0x144)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
syz_open_dev$vcsn(&(0x7f0000000000), 0x1ff, 0x2500)
r3 = openat(r2, &(0x7f0000000140)='./file0\x00', 0xacc02, 0x6)
ioctl$sock_inet6_tcp_SIOCOUTQ(r3, 0x5411, &(0x7f0000001240))

16:54:02 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$F2FS_IOC_GET_COMPRESS_BLOCKS(r2, 0x8008f511, &(0x7f0000000040))
r3 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r3, 0x5411, &(0x7f0000000180))
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = fcntl$dupfd(r4, 0x0, r4)
connect$bt_sco(r5, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
write$binfmt_elf64(r5, &(0x7f0000000200)={{0x7f, 0x45, 0x4c, 0x46, 0x1, 0x7, 0x5, 0x0, 0x5, 0x2, 0x3e, 0xb82e, 0x3e0, 0x40, 0x2f8, 0x9, 0x7f, 0x38, 0x1, 0x3, 0x0, 0x5b7}, [{0x5, 0x1, 0x2000, 0x7ff, 0x0, 0x9, 0xc413, 0xfff}], "cbfc223a87289c00f5b7f90d71b03848f1c777a16b761951891f4d38849641fca9c64afdc9a777e5fb5fa363808c482101835db9f4b747979c1ea1f998bf752b854e495ed40adadf16faaf0a1de9c541128bf278abf538e374d273dc06b91ba74cfc596e79", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x9dd)

16:54:02 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup3(r0, 0xffffffffffffffff, 0x80000)
getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000000100)={{{@in=@remote, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f0000000200)=0xe8)
sendmsg$nl_generic(r1, &(0x7f0000001800)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000017c0)={&(0x7f0000000240)={0x1570, 0x18, 0x100, 0x70bd2d, 0x25dfdbfc, {0x17}, [@nested={0x12d, 0x2d, 0x0, 0x1, [@typed={0x8, 0x6c, 0x0, 0x0, @ipv4=@empty}, @generic="6d54238ab0dd20aad301cd266f0d715ffbb41fc987fe056734e2", @generic="3fedfb53121799f917ef2370a85a8f3c4310c862e3079653095bae04c2ea166cb389a68f2e4155f77f3853", @typed={0xd3, 0x27, 0x0, 0x0, @binary="2f64a9216d3ff2fde2854886018bd2479510b71aa888b2187e491b7182b0350a80225ffe4ff032c5191ad49e5c8c7aec5931e663e407d63a1fa6fb2626ca8011e94f1acacad6ac276c141d91c53cebd28d84abe46637ebf9176ff3c59e283b8d0f7ed4b1b163f5df342e5d0dc1585d6bfe8d2c43d6f95ca6ca318915f9aa4d2c0664fa772cb3de67b61c0864d1f91937ca50c01f785a5ee12c8abfc3f5d574d88e7ae11df70a754fc58259e73d40de74e8a75066e44d75e77dc22c3c352b21438fd54a98faa54a9d33eeaa1f9509c7"}, @typed={0x8, 0x20, 0x0, 0x0, @u32=0x8a14}]}, @nested={0x53, 0x43, 0x0, 0x1, [@generic="f1fd34555376e1dc1b1a37937bcdf8b75596a54b04d067561f8377d3d6f0a0c26f452da9eddda6ddd2b0f680cda91cd7bbd77a3c15662fa99d45d1dd3c440444948c874565943cd4f637995497ff58"]}, @generic, @generic="d46decfdde", @generic="77ffe4c3b5213329441b94e379ebbdc2f06ac4a9970db37be51719fcc2eac5a294ddb1df295e7a53a6cbd721e779fc47f085f4910baa4882c4b25320db5ea2", @nested={0x1339, 0x25, 0x0, 0x1, [@generic="5eda59c2fc15081515262122525896960cf3beaddf1a960709dd0c1c5077302982c1ac8b444673a154f334575ae9f975a1a9e73ac85bdcfacbcd19f9c63b69f28150c11cbaa9ee3a251cf88fb13c7deb8a23988b9dd6b8c1358dd3f3be6cd283e4f6b919b639bf4691ba1998a5fc49703ec24459eea28a5763ccba1242c751d4a2415ad4f508f651793ed42dcba130e4c79079e5983f4864310a785976f70b804c6731469fb24956779db1191de3632479ee4c1738acd3fe586ea3a0b6a9f62e32bc2c439fc0adb6f2e2a53a6a", @generic="eedc7889a3d86a791ddc27e12824fe964d237ce549c4f1851076f9433218b03346c47b1960602bf85b2eb0b1a56ea88e3264092b786c4257d6cee219c086560ab83068dd6ee07c3f000e3d901617f6bfd299033d8190cbf9fde8123b7a5e398886edbf3ab8881c6cfefbbe66e070e3a3c3ceaf4b353f888fd8328335022a0d630cb81a11ddd92248990748824f7532526062b2126cbbcec3378552554da5a9136259df61691d1e0cbb7838dcc5e2317591825219a4879d2fa101ffa9bc625c5b9c594ad09e39e6be679a60ec7ac012", @generic="c433f8c41f85abe9a0e41ce7cba2f2963b189691b07eaccb1392f538fd9bb8f4bc44ce8d4379495c3e0bf7d62c6d0108accd050e06da5fdfbf4b173c6a224fbb8595605fafe5b53343578ac569cf738a68812add5178ca750a351829504a88ddc4d3a17bde497885e420b77adc948b115aa96aef6c261a8bf0164305a2eaee311c259f5e4b40e9971bf00cfb2f10bb9584c8df156e7cd926468c8e212a10a96d67bc81a80d11fe09a506e8a42236", @generic="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", @generic="d1c79dbadd2973863dc5eb6aa3dddb424dfa00560dbf82e3b8c50927a69b0aaa2713bd0cfda777ff5514018aff69c040406ea8a6c6a43fcd3544a25d8798f98b036d9a427d9b7204827e901acf400dc31e1369c09bd22bd0ba067ce3136d7e3bf3452b3170917893c6f07a7df8aa3c5544f816a55983fdb1b0a7", @generic="e86d33be7450ddde7c2c8c08d0dfdd89b7fb5176e81cff1714c765d5bd6564e9aae0e033a05f82f463387455618cabcbfdd8daf1a1d4c2787a83f2b1d03114fd71d536a734ed760c9bbc4c8a76dc1eb7b43f255500f7be38b30ca321df0872b26added70816ba9c7e958b5874316cd2217"]}, @typed={0x4, 0x15}, @typed={0x8, 0x82, 0x0, 0x0, @uid=r2}, @typed={0xc, 0x8f, 0x0, 0x0, @u64=0x600000000000000}, @generic="00d82069ca2e1ad3e12aabee39381aa91ed0f3c95ce58d06874d6a230680375c5549dd447d8202fb5dfa06e2975bcb31383bc0ef9608a3c67c0db5d57f40"]}, 0x1570}, 0x1, 0x0, 0x0, 0x4000000}, 0x4)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f0000000080)=0x3, 0x2)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001880), r1)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(r1, &(0x7f0000001940)={&(0x7f0000001840)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000001900)={&(0x7f00000018c0)={0x34, r3, 0x100, 0x70bd29, 0x25dfdbfe, {}, [@ETHTOOL_A_LINKINFO_TP_MDIX_CTRL={0x5, 0x5, 0x1}, @ETHTOOL_A_LINKINFO_TP_MDIX_CTRL={0x5, 0x5, 0x3}, @ETHTOOL_A_LINKINFO_TP_MDIX_CTRL={0x5, 0x5, 0x4}, @ETHTOOL_A_LINKINFO_PORT={0x5, 0x2, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004040}, 0x80)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r4 = syz_mount_image$iso9660(&(0x7f0000001980), &(0x7f00000019c0)='./file0\x00', 0x7fff, 0x6, &(0x7f0000002d00)=[{&(0x7f0000001a00)="2165b49ae21bcf1e967836f9e0ea86d4246df792947ac25c58598a7d76c4f2b830555bd27cc4ed194244dd1cd90fe4603568c05ada9b6879c3a545bc216758dba9e3caac291e765fe255", 0x4a}, {&(0x7f0000001a80)="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", 0x1000, 0xffffffff}, {&(0x7f0000002a80)="953b7935b77bc0b562534f5977e0759a49d24950f19274a8e97b06534a00f27b9145afef02d4821f650073d5807487896dc9372d20ef6defe291856538b2dd4945945628fa4aebf0f15d1fef7e37901926075cf52553d15be7ce96610708844d58ced1a9d5564659bea7d507f717ea281728ed", 0x73, 0x4}, {&(0x7f0000002b00)="2f73aaac8630f92ed62cd11842fa5349c53a7a719f2899b10a9aa170be675bc1c0c5831a623eaaf949e4d639081d8e34cef7e904cfa3ce2fc5af4bfb4e6c1b4bdf19dc8bc30457c10e24dfeda2c89128621798a49c9b27d71897deda89ec992ccb900ef2bc00381538e07a1e80265016655f81398f43f0c17c0007fdc78fbecfc67d4e71d7d71ce4220c013d30716fb942175b589a50af8b89908ed9c84ea0c9ce77f1d0e5c28febe5", 0xa9, 0xff}, {&(0x7f0000002bc0)="0210e4ca9baab4d0efe3f358ac8ec000e520b45c0c0e95fa1839b73d4605e9d32058b0b726368f6a9c9e4281ae41eae7c3de8714f879841f5acc73eeaca6bdc4d658fb7f0062ae22a05a7f3f09b50f06b294799cbe223515f9c9e64c298ebe86a1180c508b99dd57d9379e36ea832cfdd4289b5dcfd036aaf21a6a20d531988841b125f6cc7511edfd26186c2d24d6c2b22fad68e66e049a3c19f2f317e53b21fe91354651136c271b107dcd1d5dc56ea02e8f7928d28501f69e619b82b649c4a18cc5b6ab7187237e778c83383ac67a22376202122579d965fe0886210a0a837fa176d0694fba1e5dd24239034ecea955e3d912", 0xf4, 0xffffffff}, {&(0x7f0000002cc0)="6a688accbb6cf3b7", 0x8}], 0x84000, &(0x7f0000002dc0)=ANY=[@ANYBLOB='nojol\b\x00t,sbsector=0x0000000000000008,appraise_type=imasig,obj_role=ethtool\x00,\x00'])
openat(r4, &(0x7f0000002e40)='./file0\x00', 0x200903, 0x7)
r5 = signalfd(r1, &(0x7f0000002e80)={[0x100000001]}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r5, 0xc0189372, &(0x7f0000002ec0)={{0x1, 0x1, 0x18, <r6=>r0, {0x3}}, './file0\x00'})
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r8 = fcntl$dupfd(r7, 0x0, r7)
connect$bt_sco(r8, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r6, 0xc0189379, &(0x7f0000002f00)={{0x1, 0x1, 0x18, r8}, './file0/../file0\x00'})
r9 = fcntl$dupfd(r5, 0x406, r0)
connect$bt_sco(r9, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

[ 2888.553163] loop7: detected capacity change from 0 to 135266304
[ 2888.689269] loop5: detected capacity change from 0 to 135266304
[ 2889.426756] loop5: detected capacity change from 0 to 135266304
16:54:19 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x4000000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:54:19 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @none}, 0x8)
getsockopt$bt_l2cap_L2CAP_LM(r2, 0x6, 0x3, &(0x7f0000000000), &(0x7f0000000040)=0x4)
fcntl$dupfd(r0, 0x0, r0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = fcntl$dupfd(r3, 0x0, r3)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$sock_inet6_tcp_SIOCOUTQ(r4, 0x5411, &(0x7f0000000180))

16:54:19 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2010, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:54:19 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000281)

16:54:19 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r1, 0x0, r1)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x50002, 0x0)
r2 = fcntl$dupfd(r1, 0x406, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))
clock_gettime(0x0, &(0x7f0000000080)={<r3=>0x0, <r4=>0x0})
syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
r8 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f00000001c0)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x800)
setsockopt$bt_BT_POWER(r8, 0x112, 0x9, &(0x7f00000002c0)=0xf0, 0x1)
syz_io_uring_submit(r5, r6, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r7, 0x0, 0x0}, 0x0)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FSYNC={0x3, 0x1, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r9}}, 0x8)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000700)=@IORING_OP_RECVMSG={0xa, 0x1, 0x0, r7, 0x0, &(0x7f00000006c0)={&(0x7f0000000440)=@ax25={{0x3, @netrom}, [@bcast, @bcast, @bcast, @default, @netrom, @bcast, @bcast]}, 0x80, &(0x7f0000000640)=[{&(0x7f00000003c0)=""/12, 0xc}, {&(0x7f00000004c0)=""/90, 0x5a}, {&(0x7f0000000540)=""/205, 0xcd}], 0x3, &(0x7f0000000680)=""/23, 0x17}, 0x0, 0x40, 0x0, {0x2, r9}}, 0x7)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_POLL_REMOVE={0x7, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, {0x0, r9}}, 0x6)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_TIMEOUT={0xb, 0x5, 0x0, 0x0, 0x9, &(0x7f00000000c0)={r3, r4+60000000}, 0x1, 0x0, 0x0, {0x0, r9}}, 0x6)
ioctl$TIOCL_SETVESABLANK(r0, 0x541c, &(0x7f0000000000))

16:54:19 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:54:19 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r2, 0x0, r2)
fcntl$dupfd(r0, 0x406, r2)
r3 = signalfd(r1, &(0x7f0000000080)={[0x4]}, 0x8)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000040), r3)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

16:54:19 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = fcntl$dupfd(r4, 0x0, r4)
connect$bt_sco(r5, &(0x7f0000000000), 0x8)
syz_io_uring_setup(0x357c, &(0x7f0000000340)={0x0, 0x1ab1, 0x2, 0x2, 0x315, 0x0, r5}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000000140), &(0x7f0000000180)=<r6=>0x0)
fcntl$dupfd(r3, 0x0, r3)
write$sndseq(r1, &(0x7f0000000240)=[{0xdf, 0x0, 0x7, 0x80, @tick=0x1, {0x80, 0x8}, {0x34, 0x5}, @time=@tick=0x1}, {0x8d, 0x9, 0x0, 0x40, @tick=0x8, {0x1, 0x5}, {0x81, 0x9}, @raw32={[0x3, 0x3]}}, {0x7, 0x4, 0x1, 0xd9, @tick=0x2, {0x0, 0x8}, {0x8}, @queue={0x1, {0x401, 0xfffffffd}}}, {0x0, 0x7f, 0xff, 0xbb, @time={0x8, 0x5768}, {0x7f, 0x3c}, {0x3f, 0x69}, @time=@tick=0x7f}], 0x70)
sendfile(r2, r3, &(0x7f0000000080)=0x7, 0x43)
r7 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x8}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r8=>0x0, &(0x7f0000000140)=<r9=>0x0)
r10 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r11 = fcntl$dupfd(r10, 0x0, r10)
syz_io_uring_submit(r8, r9, &(0x7f0000000000)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, r11, 0x0, &(0x7f0000000400)='./file0\x00', 0x0, 0x40c001, 0x12345}, 0x0)
r12 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r7, 0x0)
syz_io_uring_submit(r12, r9, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r12, r6, &(0x7f00000001c0)=@IORING_OP_NOP={0x0, 0x1}, 0x0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

[ 2904.677178] loop4: detected capacity change from 0 to 16896
[ 2904.704195] 9pnet: Could not find request transport: xen
16:54:19 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r0, 0x8982, &(0x7f0000000040)={0x3, 'veth1_to_team\x00', {0x3}, 0x20})
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
r2 = syz_open_dev$ptys(0xc, 0x3, 0x1)
ioctl$TIOCEXCL(r2, 0x540c)
shutdown(r1, 0x0)

[ 2904.784232] loop7: detected capacity change from 0 to 135266304
16:54:19 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
getsockopt$IP_VS_SO_GET_DAEMON(r3, 0x0, 0x487, &(0x7f0000000000), &(0x7f0000000040)=0x30)

16:54:19 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x5000000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:54:19 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)={0x20, r1, 0xd11, 0x0, 0x0, {{}, {@void, @val={0xc}}}}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_DEL_PMKSA(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="6000040033ff66d473b5a1e29d0cb315929fc3bbbc30e9e4c97ee7d3415605444f0b4cdd959b47d80bdf3d20500ef069e5987633fba32760930d5f2f612bc512246e97f4e96c64126e669615fc2afebbc5f5c2b6f798f7fba5277adb1a1fa27173866fe4b1646ecb4210a03d4c220fed385bb206452984cb864f4c3907c8cd56ebd43ce221666433578ed3e9d9ace34b70b468e3dc1c23ac1bfaaad997c30ef10c764058fcdb9fc56eda8450e0778fce82e91a0d92", @ANYRES16=r1, @ANYBLOB="20002cbd7000fddbdf253500000008000300", @ANYRES32=0x0, @ANYBLOB="0a0034000101010101010000050020013c000000050020012a000000050020011c0000000a0006005050505050500000140055002b167a15a1592841935d763b20abda2e"], 0x60}, 0x1, 0x0, 0x0, 0x84}, 0x4000040)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r2, &(0x7f00000002c0)={0x1f, @none}, 0x8)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = fcntl$dupfd(r3, 0x0, r3)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r4)
r5 = fcntl$dupfd(r2, 0x0, r2)
fcntl$dupfd(r2, 0x406, r4)
sendfile(0xffffffffffffffff, r3, &(0x7f0000000300)=0x2, 0xffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="20140000", @ANYRES16=r7, @ANYBLOB="110d0000000000000000700000000c0099000000000000000000"], 0x20}}, 0x0)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x2c, r7, 0x1, 0x70bd2c, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x7, 0xb}}}}, [@NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_TX_NO_CCK_RATE={0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x20048895)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r5, 0xc0189378, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r8=>r2, {<r9=>r2}}, './file0\x00'})
ioctl$sock_TIOCINQ(r9, 0x541b, &(0x7f0000000080))
ioctl$sock_inet6_tcp_SIOCOUTQ(r8, 0x5411, &(0x7f0000000000))

[ 2904.916019] loop4: detected capacity change from 0 to 16896
16:54:19 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2e00, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:54:19 executing program 6:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
timerfd_create(0x4, 0x80800)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2000002, 0x4010, r1, 0x0)
timerfd_gettime(r1, &(0x7f0000000100))
r3 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0xa, 0x100010, r1, 0x10000000)
syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x4, 0x0, @fd_index=0x8, 0x0, 0x0, 0x0, {0x1080}, 0x1}, 0x7f)
openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='./binderfs2/binder-control\x00', 0x802, 0x0)
r4 = openat$cgroup_type(r1, &(0x7f00000000c0), 0x2, 0x0)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r6 = fcntl$dupfd(r5, 0x0, r5)
connect$bt_sco(r6, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r7 = fcntl$dupfd(r4, 0x0, r6)
connect$bt_sco(r7, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r7, 0x0)

16:54:19 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000300)

16:54:19 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
syz_io_uring_setup(0x67d, &(0x7f0000000000)={0x0, 0x10d6, 0x8, 0x3, 0x37d, 0x0, r1}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000080)=<r2=>0x0, &(0x7f00000000c0))
syz_io_uring_submit(r2, 0x0, &(0x7f0000000100)=@IORING_OP_WRITE_FIXED={0x5, 0x3, 0x2003, @fd_index=0x7, 0x3, 0x20, 0x7, 0x5, 0x1, {0x1}}, 0x6d0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:54:19 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x406, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = fcntl$dupfd(r3, 0x0, r3)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r5, 0x0, r5)
poll(&(0x7f0000000040)=[{r1, 0x2000}, {r2, 0x101}, {r5, 0x12a4}, {r4, 0x4}], 0x4, 0x7ff)

[ 2905.166054] loop7: detected capacity change from 0 to 135266304
[ 2905.238958] loop7: detected capacity change from 0 to 135266304
16:54:34 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x1499, &(0x7f0000000080)={0x0, 0x7bfe, 0x8, 0x1, 0x228}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x1, 0x0, 0x10001, 0x0, 0x0, 0x0, 0x0, 0x0, {0x1}}, 0x5)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r4 = fcntl$dupfd(r0, 0x0, r0)
r5 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
syz_io_uring_submit(r8, r7, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r9 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x3000002, 0x100010, r4, 0x10000000)
r10 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r11 = fcntl$dupfd(r10, 0x0, r10)
connect$bt_sco(r11, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
syz_io_uring_submit(r8, r9, &(0x7f00000001c0)=@IORING_OP_SEND={0x1a, 0x3, 0x0, r11, 0x0, &(0x7f0000000400)="bc38db61c013efe18b5e6534b548963ecaf59cd164f2368988252d50ee7671de34fe8929095f9b11864dab3c249d98607f598bba32f9d6311bcc531bc28b77c5998c46d1532a8993722ee229475fceb5777f830a64b649238f70be4b65b9eacca86ebd9bfef60982a474f29c866497d1484690e7b358b351cf07049ac55468a6badeafa2ab508e2462312fbc002b524d8197b4e94d8278772a06800c3335439ae69ccf2b14c52181a6c4d36d6d25905e35f28840673d7b76b421979781df775a3ef14c4c402d24b267d7141f104ddbb54378ff2f3e11ad0a47754a", 0xdb, 0x2404c004, 0x1}, 0x4)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:54:34 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000500)

16:54:34 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000000c0), 0x4800, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r1, 0x0, r1)
dup(r1)
memfd_create(&(0x7f0000000100)='/proc/self\x00', 0x1)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/vmstat\x00', 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_CLOSE={0x13, 0x3, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x10001)
pidfd_send_signal(r2, 0x1d, &(0x7f0000000040)={0x25, 0x101, 0x7}, 0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = fcntl$dupfd(r3, 0x0, r3)
recvmmsg(r3, &(0x7f0000003d80)=[{{&(0x7f00000001c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r5=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @empty}}}, 0x80, &(0x7f0000000240)=[{&(0x7f0000000140)=""/18, 0x12}], 0x1}, 0x8}, {{&(0x7f0000003c80)=@tipc=@name, 0x80, &(0x7f0000000540)=[{&(0x7f0000000300)=""/54, 0x36}, {&(0x7f0000000340)=""/208, 0xd0}, {&(0x7f0000000440)=""/69, 0x45}, {&(0x7f00000004c0)=""/75, 0x4b}], 0x4, &(0x7f0000000580)}, 0x6}, {{&(0x7f00000005c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @loopback}}}, 0x80, &(0x7f00000016c0)=[{&(0x7f0000004140)=""/4099, 0x1003}, {&(0x7f0000001640)=""/65, 0x41}], 0x2}, 0x8000}, {{&(0x7f0000001700)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast2}}}, 0x80, &(0x7f0000001a40)=[{&(0x7f0000001780)=""/174, 0xae}, {&(0x7f0000001840)=""/202, 0xca}, {&(0x7f0000001940)=""/134, 0x86}, {&(0x7f0000001a80)=""/13, 0xd}], 0x4, &(0x7f0000001a00)=""/8, 0x8}, 0x1}, {{&(0x7f0000001ac0)=@alg, 0x80, &(0x7f0000003c40)=[{&(0x7f0000001b40)=""/4096, 0x1000}, {&(0x7f0000002b40)=""/14, 0xe}, {&(0x7f0000002b80)=""/4096, 0x1000}, {&(0x7f0000003b80)=""/163, 0xa3}], 0x4, &(0x7f0000004040)=""/241, 0xf1}}], 0x5, 0x12040, &(0x7f0000003ec0)={0x0, 0x3938700})
ioctl$INCFS_IOC_PERMIT_FILL(r5, 0x40046721, &(0x7f00000006c0))
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r6 = fcntl$dupfd(r4, 0x406, r0)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, &(0x7f0000000700)=ANY=[@ANYBLOB="000007fd680000040000fbff0000", @ANYRES32=<r8=>r5, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000640)={&(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ff0000/0x10000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ff2000/0x1000)=nil, &(0x7f0000ff7000/0x2000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000280)="0e817f9722ad76b55ea32c76e60bd32a6bee9d5131c31bc28e8a9a5f68f5", 0x1e, r8}, 0x68)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000580)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x4, 0x2004, @fd_index, 0x7, 0x0, 0x0, 0x2, 0x0, {0x1, r7}}, 0xffff)
ioctl$sock_inet6_tcp_SIOCOUTQ(r6, 0x5411, &(0x7f0000000180))

16:54:34 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x3f00, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:54:34 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:54:34 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x6000000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:54:34 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(r0, 0x942e, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='net_prio.prioidx\x00', 0x0, 0x0)
openat(r1, &(0x7f0000000080)='./file0\x00', 0x208000, 0x37)
r2 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r2, 0x0)

16:54:34 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
close_range(r1, r0, 0x2)

[ 2920.524790] loop4: detected capacity change from 0 to 16896
[ 2920.527283] 9pnet: Could not find request transport: xen
16:54:35 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x2, 0x4e21, @multicast1}, 0x10, 0x0}, 0x404c008)
connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x4e22, 0x1, @ipv4={'\x00', '\xff\xff', @empty}, 0x1}, 0x1c)
r5 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
sendmsg$inet6(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000001ac0)={{{@in6, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}}, {{@in6=@private1}, 0x0, @in=@initdev}}, &(0x7f0000001a80)=0xfffffffffffffda2)
r7 = socket$netlink(0x10, 0x3, 0x0)
r8 = fcntl$dupfd(r7, 0x0, r7)
sendmsg$nl_generic(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0xf8}, 0x1, 0x0, 0x0, 0x44801}, 0x4000000)
setsockopt$inet_pktinfo(r8, 0x0, 0x8, &(0x7f0000001a40)={r6, @multicast1, @multicast1}, 0xc)
ioctl$NS_GET_OWNER_UID(r5, 0xb704, &(0x7f00000001c0)=<r9=>0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000380)={{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in=@empty, 0x4e21, 0x9, 0x4e24, 0x4, 0xa, 0x80, 0x0, 0x6c, r6, r9}, {0xfffffffffffffffe, 0x80, 0x9, 0x7fffffff, 0xfffffffffffffffe, 0x1ac0, 0xfb5, 0x4}, {0x7ffffffe, 0x9, 0x0, 0x975}, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1}, {{@in=@loopback, 0x4d2, 0x33}, 0xa, @in=@dev={0xac, 0x14, 0x14, 0xd}, 0x0, 0x0, 0x3, 0x40, 0x3f, 0x2, 0x7}}, 0xe8)
bind$packet(r1, &(0x7f0000000040)={0x11, 0x1b, r6, 0x1, 0x1, 0x6, @broadcast}, 0x14)
dup2(r3, r4)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

[ 2920.625801] netlink: 220 bytes leftover after parsing attributes in process `syz-executor.3'.
16:54:35 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r2, 0x0, r2)
dup(r2)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:54:35 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
shutdown(r1, 0x0)

[ 2920.637623] netlink: 220 bytes leftover after parsing attributes in process `syz-executor.3'.
16:54:35 executing program 3:
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040), 0x200241, 0x0)
r2 = syz_open_dev$vcsn(&(0x7f00000001c0), 0x6, 0x1)
ioctl$SNAPSHOT_GET_IMAGE_SIZE(r2, 0x8008330e, &(0x7f0000000200))
write$binfmt_script(r1, &(0x7f0000000280)={'#! ', './file0', [{0x20, '\xff\xff\xff\xff\xff\xff'}, {}, {0x20, '\xff\xff\xff\xff\xff\xff'}, {0x20, '\xff\xff\xff\xff\xff\xff'}, {0x20, ',.{@(y,):[-\xc5'}, {0x20, '\xff\xff\xff\xff\xff\xff'}, {0x20, 'H\x9a\x1f\x18pQ\xf8\x85nVgj\x8d\x0f\x17I&b\xa6\x1f\xef\xa9&\xea\x92\xe3\x8e\xaf\x8e\xf1\xe1\xe5\xcfd\xa9\x1a)%\x8cN\xc2#`!\xac\xf6\x81\x9d\x04,\xc4Rj\x02F\xc6\xd4\xfb\xc5C\x84B\xba\x18S\xa6\x94\\\xdcv\xb6\n\xa7\x14h\xddH\x12\x97\x82@\xef\"\"\x10;\x95$~\xc7<\xdb&-\xe3\xd2g\x88\x8b\x9e\xb6}c*OKHF?\xcc\xf3\xb5\x9f\xbe\x16\x97\'zF\'\x80\xb6\xfc\x88\xf2_\x11\xe9\xcc\n\xbcHfu\x1cR\xe7\x8e8\x8d\xdcW.#\x98s\xa8\xc1K\xe7\xb9\xc3K\xd3YI`\xc7\x88\xa4\x0e\xc4\xf2\xf4\xd7\x96\xc6ne\xd4\x7fh\xd2I\x06\xdbd\xc9\xa9\xd4KT\x8c\x8e\xa4\xd7\xbe%\xe4k\x1dQ\xf0\xfe\xe1\x82\xca\xdc(_\xcc\xff\x9eX\xc2\xbc\xeeo\xe3\xc51\xcd\'\xc4\\>\xda\x02\xce\xfa:\x9a\x1d\xac\xc2V-b\x12\xc5K,\x19Z\xcc\x88-\x8b\xdb&\x06\\=\xf0\xd4'}, {0x20, '\xff\xff\xff\xff\xff\xff'}], 0xa, "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"}, 0x22f)
r3 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @none}, 0x8)
ioctl$sock_inet6_tcp_SIOCOUTQ(r3, 0x5411, &(0x7f0000000000))
openat$bsg(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)

16:54:35 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000600)

16:54:35 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
getsockopt$bt_sco_SCO_OPTIONS(r0, 0x11, 0x1, &(0x7f0000000000)=""/112, &(0x7f0000000080)=0x70)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:54:35 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x7000000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:54:35 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r3 = fcntl$dupfd(r0, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r3, 0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r6 = fcntl$dupfd(r5, 0x0, r5)
connect$bt_sco(r6, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
openat(r6, &(0x7f0000000040)='./file0\x00', 0x20202, 0x0)
r7 = fcntl$dupfd(r4, 0x0, r4)
connect$bt_sco(r7, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
readahead(r7, 0x7, 0x3f)

[ 2920.856161] loop7: detected capacity change from 0 to 135266304
[ 2920.939102] loop4: detected capacity change from 0 to 16896
[ 2921.001450] loop4: detected capacity change from 0 to 16896
16:54:49 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000100), 0x200000, 0x0)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x80001, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r2, 0xc018937d, &(0x7f0000000040)={{0x1, 0x1, 0x18, r4, {0x81}}, './file0\x00'})
r5 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x319a00, 0x0)
ioctl$RTC_RD_TIME(r5, 0x80247009, &(0x7f00000000c0))
r6 = fcntl$dupfd(r0, 0x0, r0)
r7 = signalfd(r2, &(0x7f0000000140)={[0x1]}, 0x8)
bind$bt_sco(r7, &(0x7f00000001c0)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$sock_inet6_tcp_SIOCOUTQ(r6, 0x5411, &(0x7f0000000180))

16:54:49 executing program 1:
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x1000}}, './file0\x00'})
getsockopt$ARPT_SO_GET_REVISION_TARGET(r0, 0x0, 0x63, &(0x7f0000000080)={'NETMAP\x00'}, &(0x7f00000000c0)=0x1e)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x4a0b41, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
recvmsg(r3, &(0x7f00000012c0)={&(0x7f0000000100)=@pppoe={0x18, 0x0, {0x0, @broadcast}}, 0x80, &(0x7f0000000280)=[{&(0x7f0000000200)=""/66, 0x42}], 0x1, &(0x7f00000002c0)=""/4096, 0x1000}, 0x20)
dup(r2)
r4 = fcntl$dupfd(r1, 0x0, r1)
ioctl$sock_inet6_tcp_SIOCOUTQ(r4, 0x5411, &(0x7f0000000180))

16:54:49 executing program 5:
r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000ffd000/0x1000)=nil)
shmctl$IPC_STAT(r0, 0x2, &(0x7f0000000000)=""/9)
shmctl$IPC_RMID(r0, 0x0)
getresuid(&(0x7f00000003c0)=<r1=>0x0, &(0x7f00000001c0), &(0x7f0000000340))
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x7f, 0x0, &(0x7f00000000c0), 0x2010004, &(0x7f0000000400)=ANY=[@ANYBLOB="646973636172642c6175746f5f64615f616c6c6f632c696e6f64655f7265616461686561645f626c6b733d3078303030303030303030303030303430302c6a82666d743d76667376302c666f776e65723c422e37ce37860d79b17b013c0e6c95346f1648fda0b10796aac3086f06537ea88018d69a113cf6cec9703af807b87d64640f5cd1b9f36803b379", @ANYRESDEC=r1, @ANYBLOB="9c2bc96d455ecedef905af4f03345659b8e4ae1e8baddb8336e0e83875f4bf6deb665b9bdc64404a9a91526ecc77c4f38aeeeafa2bac46bd466320a4b02f6dea02aabb3add37ce1c91232bce466d69cbf00cf135905877c17df23612bc3120a53b2969115314bd5c12cbfa029087bfd5f40659d91d884d66d9629b3d"])
r2 = geteuid()
statx(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x800, 0x400, &(0x7f0000000980)={0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0})
lstat(&(0x7f0000000100)='./file2\x00', &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2, &(0x7f00000005c0)=ANY=[@ANYBLOB='trans=f', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c64666c74673ebc84c1b518f706ad06986964", @ANYRESHEX=r3, @ANYBLOB=',posixacl,access=any,version=9p2000.u,dfltgi', @ANYRESHEX=r4, @ANYBLOB=',version=9p2000,fowner=', @ANYRESDEC, @ANYBLOB=',dont_hash,defcontext=unconfined_u,measure,smackfshat=\',\'A,seclabel,pcr=00000000000000000051,defcontext=\x00ser_u,appraise,\x00'])
shmctl$IPC_SET(r0, 0x1, &(0x7f0000000080)={{0x0, r1, 0xffffffffffffffff, r2, r3, 0x32, 0x7f}, 0x8, 0x6, 0x5, 0x10000, 0x0, 0x0, 0xfff9})
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r5, &(0x7f0000000040), 0x8)
r6 = fcntl$dupfd(r5, 0x0, r5)
connect$bt_sco(r6, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:54:49 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:54:49 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000700)

16:54:49 executing program 6:
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x100001, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
fspick(r3, &(0x7f0000000100)='./file0\x00', 0x1)
r4 = openat(r1, &(0x7f0000000140)='./file0\x00', 0x2040, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f0000000740)=ANY=[@ANYBLOB="014bda03bb00000018000000", @ANYRES32, @ANYBLOB='\a\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r7, 0x0, 0x0}, 0x0)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FSYNC={0x3, 0x1, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r8}}, 0x8)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000700)=@IORING_OP_RECVMSG={0xa, 0x1, 0x0, r7, 0x0, &(0x7f00000006c0)={&(0x7f0000000440)=@ax25={{0x3, @netrom}, [@bcast, @bcast, @bcast, @default, @netrom, @bcast, @bcast]}, 0x80, &(0x7f0000000640)=[{&(0x7f00000003c0)=""/12, 0xc}, {&(0x7f00000004c0)=""/90, 0x5a}, {&(0x7f0000000540)=""/205, 0xcd}], 0x3, &(0x7f0000000680)=""/23, 0x17}, 0x0, 0x40, 0x0, {0x2, r8}}, 0x7)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_POLL_REMOVE={0x7, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, {0x0, r8}}, 0x6)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000005c0)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, r4, 0x0, &(0x7f0000000580)={&(0x7f0000000180)=@tipc, 0x80, &(0x7f0000000480)=[{&(0x7f0000000200)=""/94, 0x5e}, {&(0x7f0000000280)=""/108, 0x6c}, {&(0x7f0000000300)=""/233, 0xe9}, {&(0x7f0000000400)=""/115, 0x73}], 0x4, &(0x7f00000004c0)=""/135, 0x87}, 0x0, 0x2, 0x0, {0x3, r8}}, 0x8)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

16:54:49 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x4000, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:54:49 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x10000000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

[ 2935.378767] EXT4-fs (loop5): VFS: Can't find ext4 filesystem
[ 2935.385657] loop4: detected capacity change from 0 to 16896
[ 2935.403379] 9pnet: Could not find request transport: xen
[ 2935.429706] loop4: detected capacity change from 0 to 16896
16:54:49 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ftruncate(r1, 0x51)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x1010, r3, 0x0)

16:54:49 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
bind$bt_sco(r2, &(0x7f0000000000), 0x8)
r3 = fcntl$dupfd(r0, 0x0, r0)
r4 = creat(&(0x7f0000000040)='\x00', 0x180)
syz_io_uring_setup(0xb185, &(0x7f0000000080)={0x0, 0x819, 0x20, 0x1, 0x332, 0x0, r4}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))
ioctl$sock_inet6_tcp_SIOCOUTQ(r3, 0x5411, &(0x7f0000000180))

16:54:49 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x48000000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:54:49 executing program 6:
syz_io_uring_setup(0x4c79, &(0x7f0000000040)={0x0, 0x7f52, 0x0, 0x1, 0x3a4}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000000c0), &(0x7f0000000100)=<r0=>0x0)
syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FSYNC={0x3, 0x1, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r4}}, 0x8)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000700)=@IORING_OP_RECVMSG={0xa, 0x1, 0x0, r3, 0x0, &(0x7f00000006c0)={&(0x7f0000000440)=@ax25={{0x3, @netrom}, [@bcast, @bcast, @bcast, @default, @netrom, @bcast, @bcast]}, 0x80, &(0x7f0000000640)=[{&(0x7f00000003c0)=""/12, 0xc}, {&(0x7f00000004c0)=""/90, 0x5a}, {&(0x7f0000000540)=""/205, 0xcd}], 0x3, &(0x7f0000000680)=""/23, 0x17}, 0x0, 0x40, 0x0, {0x2, r4}}, 0x7)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000800)='./file0\x00', 0x200000, 0x45)
fgetxattr(r5, &(0x7f0000000380)=@random={'os2.', '*:({%=%+)\'@\x00'}, &(0x7f0000000740)=""/175, 0xaf)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_POLL_REMOVE={0x7, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, {0x0, r4}}, 0x6)
syz_io_uring_submit(0x0, r0, &(0x7f0000000300)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0xa, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000140)="dc64769bc5043d3a7776bdb9d4c29ca0f5b3ce9084880b26cf3281ef124d4c54faf980ea2ef311445d3da53de0dd625ac9ec90528d191b975bb7ec14de7c51d598a87751fa6e8ea09ec23ad1b6f7a23c9e6ea0456ccc9a469613e5230b5d00d9186a3008d556ffc530b88a8087f89500a1b1b2023ab6e7f772709c89c799d315057f6939d2", 0x85}, {&(0x7f0000000200)="ace8d7e5c2b03070b978cbe32cbef5cfb7c3ad8156cd90c32babf68f505707acba331c795fed886ccb1ca10f1e923502fed472f46efb367c13a429b8fcb6b746eaa1073665f7c70e834369536d96ac2e83a2063058b01fc9c89b8ece7bb3236889698803d1ad71ba916ea6283cbad8eba14355d1687d986758f7a9c2964e1cade808222016572c6cc4182f2a3d37bccb47698c4a55ecaf6886", 0x99}], 0x2, 0x2, 0x0, {0x0, r4}}, 0x66)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r7 = fcntl$dupfd(r6, 0x0, r6)
open(&(0x7f0000000340)='./file0\x00', 0xc0, 0x2)
connect$bt_sco(r7, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r7, 0x0)

16:54:49 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
close(r0)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$KDGKBSENT(r3, 0x4b48, &(0x7f00000001c0)={0xd3, "c9361ced11161948f31942b6bdcb9e911a06b6077da69d77213c08b3b4fc05d9e97e5d0f101c3b3dc7f8eaffeb1c697d76a868b3f0a92197f2cb312b80009070c6c53a36d7130fe5bb26b89aeee8519633e1b81511798a1b2d3fae3cd0fda27d21381daaeb3e86acd58c3c5ae48d90f033514cfafff7d9e9170d91e604dfe6897b24423235918a4b88c3e1f2ec8ffa942bae4ea8a2ee22efd57712f78dbe04c60d93e8f09b352c2fa3bf3080ca71f6d4afd378ce1cb231eb3184e7c2efc65b379b15eb240f57fe8b923fa2645a505615d67999120e0f14375e9b50374d00f39ef5e853606dfbaa6c1f43bcedfd9d47f81d69801de24e3af1663f6a8b2e98d173f1546db903a34ce686c096c3d30ce18dff2ad262cb5c8c427b31386e22ed13b958dd885419d5929d4a3402699504d340034037518d2f0c2b9f031a3c33f2494cb9db1ef42c849f49b00356a8427f8d4df808da4b58acf9f998ca74da0a6cec1eb4d1d387d10383dd0579b2922be7838872a776d2388f33c91987974aed6af54a6cd292dae65085b5eb14651c30524bedd22dadd8d1cb8a6821b160d88bce078f0b0021ecb5cae384cc330d4c03fbc065ed5223c11191cded4bb4a76a7a9a3670fd8b36a06c36161d6946e5895dc46248fc7e04acfd99d85afad6e5fa9065a6fcac2c4eb050ceeb23dbb6155cfeafa30efe92b2af81e916212fa6aeabef49e6e7"})
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = fcntl$dupfd(r4, 0x0, r4)
connect$bt_sco(r5, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r6=>r0, {0x907, 0x9}}, './file0\x00'})
r7 = accept4$unix(r1, 0x0, &(0x7f0000000080), 0x80000)
bind$bt_sco(r2, &(0x7f0000000140)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}}, 0x8)
r8 = openat$zero(0xffffffffffffff9c, &(0x7f00000000c0), 0x4a0002, 0x0)
poll(&(0x7f0000000100)=[{r0, 0x1120}, {r5, 0x1000}, {r6, 0x845806742384fdb3}, {r7, 0x12}, {r3, 0x8000}, {r8, 0x2d0}], 0x6, 0xde9)

[ 2935.614198] loop4: detected capacity change from 0 to 16896
16:54:50 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_open_dev$vcsa(&(0x7f0000000000), 0x54, 0x400500)
r2 = syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = fork()
ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f0000000200)={{0x1, 0x1, 0x18, r2, {0x6}}, './file2\x00'})
r4 = gettid()
kcmp(r3, r4, 0x3, r1, 0xffffffffffffffff)
fcntl$setown(r1, 0x8, r3)
accept4(r1, 0x0, &(0x7f0000000040), 0x80000)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
fork()
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_inet_SIOCSIFPFLAGS(r5, 0x8934, &(0x7f0000000080)={'ipvlan0\x00'})
r6 = fcntl$dupfd(r0, 0x0, r0)
move_pages(r4, 0x1, &(0x7f00000000c0)=[&(0x7f0000ffc000/0x2000)=nil], &(0x7f0000000100)=[0x4], &(0x7f0000000140)=[0x0], 0x6)
ioctl$sock_inet6_tcp_SIOCOUTQ(r6, 0x5411, &(0x7f0000000180))

16:54:50 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000900)

16:54:50 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(r4, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
syz_io_uring_submit(r8, r7, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r10 = fcntl$dupfd(r9, 0x0, r9)
connect$bt_sco(r10, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
syz_io_uring_submit(r4, r7, &(0x7f0000000140)=@IORING_OP_STATX={0x15, 0x3, 0x0, r10, &(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x80, 0x6000}, 0x1)
r11 = fcntl$dupfd(r0, 0x406, r0)
dup2(r11, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r11, 0x5411, &(0x7f0000000180))

[ 2935.818018] loop7: detected capacity change from 0 to 135266304
16:54:50 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r1, 0x0, r1)
fcntl$getflags(r1, 0x401)
r2 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @none}, 0x8)
accept4$bt_l2cap(r2, &(0x7f0000000040)={0x1f, 0x0, @none}, &(0x7f0000000080)=0xe, 0x80000)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r3, 0x0, r3)
shutdown(r3, 0x0)

16:54:50 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(0x0, r3, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

[ 2935.965985] cgroup: fork rejected by pids controller in /syz1
[ 2936.021026] 9pnet: Could not find request transport: xen
[ 2936.177597] EXT4-fs (loop5): VFS: Can't find ext4 filesystem
16:55:06 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x4c000000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:55:06 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(0xffffffffffffffff, &(0x7f0000000000), 0x8)
shutdown(r1, 0x0)

16:55:06 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(0x0, r3, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:55:06 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
sendmsg$NL80211_CMD_FRAME(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000040)={&(0x7f0000000340)={0x144, 0x0, 0x800, 0x70bd29, 0x8, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_FRAME={0x126, 0x33, @probe_response={@wo_ht={{0x0, 0x0, 0x5, 0x0, 0x0, 0x1, 0x0, 0x1}, {0x3f}, @broadcast, @device_a, @random="2db7eed5d737", {0x7, 0x40}}, 0x5, @random=0x8, 0x20, @val={0x0, 0x6, @default_ibss_ssid}, @void, @void, @void, @void, @void, @void, @val={0x71, 0x7, {0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2, 0x2, 0x80}}, [{0xdd, 0x84, "7eb0d03e3651f1939f831afbfbbebc3c98b65373ddb7e113b2f00d8ab344345ccb014483dead263d45e9bbc5146dfb7ca88551a35ba257c3852e68ac3c4665c7f5fd4efcbba4f61296df53a267edb66a35dee662524f49fdbcb232f3b290f3c41df16518827f89937936a28b28be32d1d8f64fefca61d032db33621e75899a2a3cec1ccd"}, {0xdd, 0x65, "9f78dc58897ff2f0d0604c2e2dd37f8fb8a72a56c63e42e75d613e406099245bcf3e4b185d4896b99b3c18ebaaa4253d921655fb4b2c7935452cde436dca252f0d016990fab57fd388dccce154e0f24646f6b0b6d346c9fb4ac9e2cd749d668ba67cf090d1"}]}}]}, 0x144}, 0x1, 0x0, 0x0, 0x800}, 0x40100)

16:55:06 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x53ef, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:55:06 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000a00)

16:55:06 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r2, 0x0, r2)
ioctl$AUTOFS_IOC_PROTOSUBVER(r2, 0x80049367, &(0x7f0000000080))
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:55:06 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r2=>r1, {0x8}}, './file0\x00'})
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000040))

16:55:06 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_open_dev$tty20(0xc, 0x4, 0x1)
openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
r3 = accept$inet(r1, 0x0, &(0x7f0000000080))
r4 = fsopen(&(0x7f00000000c0)='devpts\x00', 0x0)
fcntl$dupfd(r4, 0x406, r3)
fdatasync(r2)

[ 2952.404982] 9pnet: Could not find request transport: xen
[ 2952.411136] loop4: detected capacity change from 0 to 16896
16:55:06 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0, {0x8}}, './file0\x00'})
ioctl$NS_GET_PARENT(r1, 0xb702, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @none}, 0x8)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r4, 0x0, r4)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r6 = fcntl$dupfd(r5, 0x0, r5)
connect$bt_sco(r6, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r7 = open$dir(&(0x7f0000000040)='./file0\x00', 0x2, 0x4)
fcntl$dupfd(r7, 0x406, r4)

16:55:06 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = syz_open_dev$vcsu(&(0x7f0000000000), 0x6, 0x280)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x2000005, 0x40010, r2, 0x0)
fcntl$dupfd(r1, 0x0, r1)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
r4 = openat$cgroup_subtree(r2, &(0x7f0000000040), 0x2, 0x0)
write$binfmt_elf64(r4, &(0x7f0000000200)={{0x7f, 0x45, 0x4c, 0x46, 0x3, 0x5, 0x8, 0x0, 0xffffffff, 0x3, 0x3b, 0x2, 0xda, 0x40, 0x147, 0x6, 0xffc0, 0x38, 0x1, 0x6, 0x0, 0x138d}, [{0x3, 0x1000, 0x100, 0x9, 0x6, 0x10001, 0x0, 0x6356}], "be3b52a51a9b94c8525a1a6f8642c67a35202e9df5997b3f4140d3", ['\x00', '\x00', '\x00', '\x00']}, 0x493)
r5 = fcntl$dupfd(r3, 0x0, r0)
readv(r2, &(0x7f0000001ac0)=[{&(0x7f0000000700)=""/4096, 0x1000}, {&(0x7f0000001700)=""/130, 0x82}, {&(0x7f00000017c0)=""/189, 0xbd}, {&(0x7f0000001880)=""/192, 0xc0}, {&(0x7f0000001940)=""/110, 0x6e}, {&(0x7f00000019c0)=""/239, 0xef}], 0x6)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r2, 0xc018937a, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r6=>r3, {0x1f}}, './file0\x00'})
syz_io_uring_setup(0x2d45, &(0x7f00000000c0)={0x0, 0x65a, 0x2, 0x3, 0x48, 0x0, r6}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000140), &(0x7f00000006c0))
ioctl$sock_inet6_tcp_SIOCOUTQ(r5, 0x5411, &(0x7f0000000180))

16:55:06 executing program 6:
r0 = openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0)
ioctl$EXT4_IOC_CHECKPOINT(r0, 0x4004662b, &(0x7f0000000080))
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r2, 0x0)

16:55:07 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r2, 0xc018937a, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x4}}, './file0\x00'})
io_cancel(0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x801, r1, &(0x7f0000000040)="cdbc0803809b84c0067c95caa6ff131aaca75e6a1118c1055478ab", 0x1b, 0xfffffffffffffffb, 0x0, 0x2, r2}, &(0x7f00000000c0))
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r3 = fcntl$dupfd(r0, 0x0, r0)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r4, 0x4018f50b, &(0x7f0000000080)={0x0, 0x40})
ioctl$sock_inet6_tcp_SIOCOUTQ(r3, 0x5411, &(0x7f0000000180))

16:55:07 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000b00)

16:55:07 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x68000000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

[ 2952.813250] loop4: detected capacity change from 0 to 16896
[ 2952.870301] loop4: detected capacity change from 0 to 16896
[ 2952.964732] loop7: detected capacity change from 0 to 135266304
[ 2953.051169] loop7: detected capacity change from 0 to 135266304
16:55:24 executing program 3:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r0 = accept4$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1}, &(0x7f0000000040)=0x1c, 0x80000)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r1=>r0}, './file0\x00'})
r2 = fcntl$dupfd(r0, 0x0, r1)
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))

16:55:24 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r1, 0xc0189371, &(0x7f00000004c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYBLOB="0ce1a641613f00ecb3b915ba9179f7d70c1621aaec165d0807645f464a36db72ad25b8dd02cb0f2e0489bdb6f0d7091b560c9d28dfba08d18525730b25c27fda5ff3ccf484", @ANYRESHEX])
ioctl$GIO_FONTX(0xffffffffffffffff, 0x4b6b, &(0x7f0000000480)={0xc8, 0xc, &(0x7f0000000080)})

16:55:24 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000), 0x8)

16:55:24 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x6c000000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:55:24 executing program 1:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r2 = socket$inet6_icmp(0xa, 0x2, 0x3a)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_FLAG_CMD(r2, 0x8983, &(0x7f0000000040)={0x7, 'vlan1\x00', {0x9f5}, 0xb6b5})
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = fcntl$dupfd(r1, 0x0, r3)
ioctl$sock_inet6_tcp_SIOCOUTQ(r4, 0x5411, &(0x7f0000000180))

16:55:24 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(0x0, r3, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:55:24 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000c00)

16:55:24 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0xedc0, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:55:24 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))

[ 2970.028005] 9pnet: Could not find request transport: xen
[ 2970.034909] loop4: detected capacity change from 0 to 16896
16:55:24 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r1, 0x0, r1)
fcntl$F_SET_FILE_RW_HINT(r0, 0x40e, &(0x7f0000000000)=0x4)
r2 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = fcntl$dupfd(r3, 0x0, r3)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$F2FS_IOC_GARBAGE_COLLECT(r4, 0x4004f506, &(0x7f0000000040))

16:55:24 executing program 6:
r0 = syz_open_dev$vcsa(&(0x7f0000000040), 0x4, 0x206002)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f0000000a80)=ANY=[@ANYBLOB="0100d975fba46367de5fe600000100000018000000", @ANYRES32=<r4=>r3, @ANYBLOB="04000000000000002e2f66696c653000"])
sendmsg$nl_generic(r4, &(0x7f0000000a40)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000a00)={&(0x7f0000000f40)={0x3fc, 0x32, 0x2, 0x70bd26, 0x25dfdbfb, {0x15}, [@generic="b25a041f58d6bdc9087849413f821903d03ec33eb8d8fd7f12f8c365402d8d6f980f61c223daef8b87f815ae77611268233a99b7144f8be3d0788f807edb0f9bf53ae89d494052f33f1b2441522ef8fced4a2801e6a2440f99f9a914435de04f5cccfe741e6ca0b9031f6d3b25681e3a153fb3ccd16bccf09d83270b", @nested={0x17c, 0x1f, 0x0, 0x1, [@typed={0x8, 0x11, 0x0, 0x0, @ipv4=@loopback}, @typed={0x4, 0x15}, @generic="515235c247898398650bb49bad2000dd2757ad32554468ebb406c0ca4aac92710f21c98c0dfd9ce1df", @typed={0x41, 0x6d, 0x0, 0x0, @str='\xff\xff\xff\xffm\xff\xbc~L\x9c\x1b\xaf\xe3\xd2\x1c~F\xe5k\xb6\x94\x8a\xb9b\xc9\n\x12q\xb8\x97\x00Xm\xc9l\x9d\x01\x92\xc0|\r\xc4v{(\xd3\xb1\x8c*\xef\xf7\x91\xf2y:\xb4\xe7i\xdf\xdaW'}, @typed={0x8, 0x33, 0x0, 0x0, @uid=0xee01}, @typed={0x4, 0x86}, @generic="3adb2cb065f80ad4f492f03638d61633906f326aa3d49668421f2b3d69e4dcc3cc3dc2c04f108d20a117d8b4612cc8f6da06b09d446643878cf3a47c75505650028b57255a2d62be22f003830ad1b5d77276e99f7448fd2682d10ab663c3f1024c92bd99657f8723e0d03465731bcf7d95c82d01834850bdadb522d65b0f4396555468c6210640f7e6c0ea30e8941c55a7cc64dcb139ddb19c4e1e43683e796638f4cce18ee7afe9db34f33d4e81525d0230e170111acd6df22e9ad33e43032def4a64e4d4fbab5534073d1e19e3edb0a5aadff3b99197c41a86221e2e8723f2d7b833a1538a8d313613473701c4eca9c9a622"]}, @generic="21f0339b3739fa4c082164aaf5ffbbf2c32dbda127d0c090292742b91a05da44c0d8f2b5d391437ea8e45409605e5cf2e2d7c54c7dc7bea80bd3a8f9b31419ede3717b1886cd68c156b80ba163bf1a4455fb1dc5b78fd96a065c95e998e63abba103fc476f11e364e20ef801366bd8150e5902cb113b5314b4b5f8321c93d6aec4a1acf4f499aa8c30bd67e92091900fa1f43dfa9d62728e5142b3ef22ede23bf65ae3d9fcd77935f629", @nested={0x143, 0x2c, 0x0, 0x1, [@generic="d33f7a64b48fd34af01f969d79d84c", @generic="0cb502a3a6b074420c6f8b1c7e9aecea30459233d6e6a22c02d8965c761d2d85674b6732226663f4ff08dfb5f28b24510e477ba3f57e923bfd6450a456e3b189eff0c93e0de6b172b74161932d074b08e28b1adc95896414bc50a2f9", @typed={0xcc, 0x3c, 0x0, 0x0, @binary="d217c0f451a5a34e20cc1b58889d20c39777ed740498a994e0a2bb4c3eacaadcd436d4af6d1c31895834235a670421152dfb42476fdd7117500d361c90de8d0a16594918078916ea7d55bd3bf2dbd86fdd93ceb29ba69e8c0f64a1224a37eb56132bf49190cf069840ae667d13647f6eb81cda29185e039189a726adcb69486f658d47ec747fd1e4211e2a586b5a7b6035c78c9db0d63cc1d4c672382cfe1798d4e4b062e8755ed7c73ef7ba65293b3f8c1ff22c5e8e9625392cde63175f94ecf828ed85bf21c361"}, @typed={0x8, 0x14, 0x0, 0x0, @fd=r0}]}]}, 0x3fc}}, 0x80)
r5 = fcntl$dupfd(r3, 0x0, r3)
connect$bt_sco(r5, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r6 = getpgrp(0x0)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r8 = fcntl$dupfd(r7, 0x0, r7)
connect$bt_sco(r8, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
sendmsg$nl_generic(r5, &(0x7f0000000680)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000640)={&(0x7f00000002c0)={0x350, 0x25, 0x10, 0x70bd27, 0x25dfdbfc, {0x19}, [@generic="365e8fe2dce569dbcb0694d9813633a9f1aa8b60fdef940a682ab1baedbf5b978dc6aaa167ad4625d1926a0a1fbe44ea41f440f661e7ec920ac4effb97a6250fc3f96ebd297db7dfe313d4f6606fa8a858b6bb3872f0fd9a459e8d68ab0495493e602221c6f9ae9a3cc7a10ef924c185016df143f71c84fbf6", @nested={0xbc, 0x5a, 0x0, 0x1, [@generic="fbe4154a5964254c105a84bddcb61ef582a49310a08db3199305360a7c5ea7ab", @typed={0x8, 0x3c, 0x0, 0x0, @fd=r8}, @typed={0x8, 0x48, 0x0, 0x0, @u32=0x8}, @typed={0x4, 0x11}, @generic="8296a3f72e79fa832bea56ba3e672c1b8a8aa2da60e21c2cd5184ae6fccbc6fb46eab8803dd3f1e1857fed49db0033fb3c80ba850939c8d9fb22ffc8fc9760d8b3853127cb9ad3b5cd267a4aeb735d91677e63b39d26f98094c5918372da0d3479b78686a05dfc84b3dfbff82750e9c8", @typed={0xc, 0x8f, 0x0, 0x0, @u64=0x1}, @typed={0x8, 0x27, 0x0, 0x0, @ipv4=@broadcast}]}, @generic="332f4a94ba40522ec7e491d5eccc6044bb7784dd2d0109cffc1911d5318f27042b31e8a9a95aaf3deddcb6bfefdf48e1d6aac2a51f061624bd31a01028558d92abb571156254c1fc0200000094b2806352639661b9a00893052f79ffccc05dceddd08306633b003654adf813e47e720ac66ba1c7d29c191976bc3589768290be12da622ab240a23880891170d9d5b792984ad6f828f9762237d9f59b120c2af89dbec1e14bcc84106876702ff73e1357728b210c40f8df23ce", @typed={0x8, 0x1c, 0x0, 0x0, @ipv4=@loopback}, @typed={0xc, 0x27, 0x0, 0x0, @u64=0x2}, @generic="bf607c78c87f9b3b22079ad8238a6b4edaa01121a6f7044f63c3e76edcbc2c4ee4bb4315f5d3bfc7b6877f4a0c732bf1a1c32371430cf889049e4979a4f9e08c63890ba26d8b0ac1e3e94e87256be01b9cd433248d34d93b2681a0062eb54f200cb67c17c3", @typed={0x4, 0x5c}, @generic="37765c15683553b739a3cd2917d38f37480b331c897f441b029550f94a8db5c23dc90f0eb83e92e2ccd71344d8b646c6e222c3fb835db0c9bf55a3554f46521bc60a06c75d8ea9d8489e62bd0e6fe3c9db0dbe8b643f0d91a8c17194fa570027339021c0f1b949fbbff70960285047160d33087658132213c2d7cb8657a07bf7c9eba96314f4f67dfd8a972f48fc7194f1ffa40059a7511514aa618b2778beb3", @nested={0x18, 0x33, 0x0, 0x1, [@typed={0x8, 0x95, 0x0, 0x0, @pid=r6}, @generic="e792505b", @typed={0x8, 0x68, 0x0, 0x0, @fd=r0}]}, @generic="722439991f18cf305c08687bb5adffc65d971642c0e7"]}, 0x350}, 0x1, 0x0, 0x0, 0x8000}, 0x401)
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="000201008793487a91c1e201e1b5c6fc9d4dec3d7c18d43cd087bc285f20598e26445c59495685fcaac9b496b6c28ef36ddacdabd73bd35ea3a153964db2cd989faef7414bc2e7a7d50791d7740408c03c34", @ANYRES16=r2, @ANYBLOB="110d0000000000000000700000000c0099000000000000000000"], 0x20}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="10002cbd7000ffdbdf253200000008000300", @ANYRES32=r9, @ANYBLOB="1fc8106ca7844f536e3d116b6dcf9da155ec357006c381e443b61f585e47a1d466cda31d29ca3b639e89ac8656450f211bfffcca249b04d533aa15d300"/71], 0x1c}, 0x1, 0x0, 0x0, 0x20000001}, 0x4000001)
r10 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r11 = fcntl$dupfd(r10, 0x0, r10)
connect$bt_sco(r11, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r11, 0x0)

16:55:24 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000d00)

16:55:24 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x74000000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:55:24 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = dup3(r1, r0, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000040))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r2)

[ 2970.481819] loop4: detected capacity change from 0 to 16896
16:55:24 executing program 1:
r0 = openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x20000, 0x0)
r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = syz_genetlink_get_family_id$tipc(&(0x7f00000003c0), r1)
sendmsg$TIPC_CMD_SHOW_STATS(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x1c, r2, 0x2, 0x70bd2d, 0x25dfdbfe, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000800}, 0x20000850)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = fcntl$dupfd(r3, 0x0, r3)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
sendmsg$TIPC_CMD_SHOW_STATS(r4, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, r2, 0x20, 0x70bd25, 0x25dfdbfd, {}, ["", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0xe7e1bc657726783e}, 0x1)
sendmsg$TIPC_CMD_SHOW_LINK_STATS(r0, &(0x7f00000005c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x28, r2, 0x400, 0x70bd2a, 0x25dfdbfc, {{}, {}, {0xc, 0x14, 'syz1\x00'}}, ["", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x80408c4}, 0x10)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r6 = fcntl$dupfd(r5, 0x0, r5)
ioctl$sock_inet6_tcp_SIOCOUTQ(r6, 0x5411, &(0x7f0000000180))
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r7, 0x0, r7)
getresuid(&(0x7f00000003c0)=<r8=>0x0, &(0x7f00000001c0), &(0x7f0000000340))
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x7f, 0x0, &(0x7f00000000c0), 0x2010004, &(0x7f0000000600)=ANY=[@ANYBLOB='discard,auto_da_alloc,inode_readahead_blks=0x0000000000000400,jqfmt=vfsv0,fowner<', @ANYRESDEC=r8, @ANYBLOB="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"])
sendmsg$nl_generic(r6, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000040)={&(0x7f0000000780)=ANY=[@ANYBLOB="340300003c00000328bd7000fbdbdf250e000000f501688031686984e207b72718ef85c0b94afd21fcd574f72872b8cce681728d35ad1fc55a92475bdfd6a701f9e05d4828ef42943a23b8b2fbf98bbb9fe64a55e30126946c8bc7ece999a04e1f2a2e5866850fcb694af5fef1c43277cbc33fd83550ecd88644151158782a4500d2e7b24976d3f03fb78fee34e47cb45a4fe547f709e4163c6508001500", @ANYRES32=r7, @ANYBLOB="7245c4a2114504c4d51278669d9c6c50014ec57e73e75bda60bf06a6eefcd4afc0ad6bdf1ab56453e37b72b4c40bded167605639ae22c0300793dc4e26c5894064d5a63cb2b17acd2ad73e8347e5492aba0734a6292c439b72ce63cf824f2918edb23209530eb3daed36265f880e8f0b994a8df69d5bd4fb141f8c40a4e9279ce43498960dae16e3d5b1c970ed4a577a5f8f50a35ea117c031c230639f8d621bfc0f68d14fdda485cc927bfc4f830678a1f1af75d6a9ffb645281f03afcdf0144e5625eaa32a9f54528e007613ca9412ef53958aee6e49d808006e00", @ANYRES32=r8, @ANYBLOB="433b5d012ae8ab74df21ad4588c6a22dba198c4cf190f356895c3105aa9d428c9f8ac485207ff793490b8954f9e413a24580ad23f2494c5f31d9bc5e22ff94def77afb6edae4d5ce6acf491b54ac5fdb3abe3366bb642dc33dbf8138947a108664201bca4d731a6923dc79e16d7e177d7bfa0e5b68e41a073cf81406007c002d0000000f006e002f70726f632f73656c66000000000008000100", @ANYRES32, @ANYBLOB="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"], 0x334}, 0x1, 0x0, 0x0, 0x40}, 0x4040001)

16:55:25 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = fcntl$dupfd(r3, 0x0, r3)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
shutdown(r2, 0x1)

[ 2970.613450] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
[ 2970.615228] loop4: detected capacity change from 0 to 16896
16:55:25 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0)
syz_io_uring_submit(r5, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r7 = fcntl$dupfd(r6, 0x0, r6)
connect$bt_sco(r7, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
syz_io_uring_submit(0x0, r4, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd=r7, 0x0, 0x0, 0x7, 0xa, 0x1, {0x0, 0x0, r0}}, 0xc000)

[ 2970.743258] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
16:55:25 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$bt_hci(r0, 0x0, 0x2, &(0x7f0000000080)=""/86, &(0x7f0000000100)=0x56)
r4 = fcntl$dupfd(r3, 0x0, r3)
r5 = fcntl$dupfd(r3, 0x406, r2)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r6, 0x0, r6)
r7 = openat$cgroup_procs(r4, &(0x7f0000000040)='cgroup.threads\x00', 0x2, 0x0)
r8 = fcntl$dupfd(r7, 0x0, r6)
connect$bt_sco(r8, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r8, 0x40189429, &(0x7f0000000000)={0x0, 0x70, 0x3})
ioctl$sock_inet6_tcp_SIOCOUTQ(r5, 0x5411, &(0x7f0000000180))

16:55:25 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000e00)

16:55:25 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:55:39 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:55:39 executing program 6:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
io_uring_setup(0x68aa, &(0x7f0000000040)={0x0, 0xbd7a, 0x0, 0x0, 0x99, 0x0, r1})
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
io_uring_enter(r3, 0x33fb, 0xe647, 0x3, &(0x7f00000000c0)={[0x1]}, 0x8)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r4, 0x0, r4)
r5 = fcntl$dupfd(r4, 0x406, r0)
connect$bt_sco(r5, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}}, 0x8)
shutdown(r5, 0x0)

16:55:39 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000f00)

16:55:39 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x7a000000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:55:39 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0xef53, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:55:39 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x400280, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r2, 0x0, r2)
dup2(r0, r2)

16:55:39 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4000000000000}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000600)={0x0, ""/256, <r3=>0x0})
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r2, 0xc0709411, &(0x7f0000000140)={{r3, 0x5, 0x7fff, 0x9, 0x200, 0x3, 0x7, 0x9, 0x7fffffff, 0x6, 0x3, 0x55, 0x6, 0x4, 0xfffffffffffffff8}, 0x18, [0x0, 0x0, 0x0]})
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r0, 0xc0709411, &(0x7f0000000000)={{r3, 0x7ff, 0x5, 0x7, 0x2, 0x53f1, 0x9, 0x0, 0x400, 0x3f, 0x440, 0x0, 0x100000000, 0x257, 0x6}, 0x48, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})

16:55:39 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)
r2 = socket$inet6(0xa, 0x6, 0xb23)
r3 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000008, 0x4010, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f00000001c0)=ANY=[@ANYBLOB="010000000100000018000000d10a67745a6b29ec76a500681af75a7dd3fac27000bb7a4a9f2c79f135822fb2bd0bb73758a661", @ANYRES32=<r5=>r3, @ANYBLOB="00000080000100002e2f66696c653000"])
syz_io_uring_submit(r4, 0x0, &(0x7f0000000140)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x5, 0x0, @fd=r5, 0x0, 0x0, 0x3, 0x6}, 0x400)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r7 = fcntl$dupfd(r6, 0x0, r6)
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r9 = fcntl$dupfd(r8, 0x0, r8)
connect$bt_sco(r9, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r9, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x10a})
connect$bt_sco(r6, &(0x7f0000000180)={0x1f, @none}, 0x8)
connect$bt_sco(r7, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
poll(&(0x7f00000000c0)=[{r2, 0x11}, {r0, 0x40}, {r7, 0x7002}, {r1, 0x60}, {r1, 0x2000}, {r3, 0x80}], 0x6, 0x3)

[ 2985.012811] 9pnet: Could not find request transport: xen
[ 2985.046382] loop4: detected capacity change from 0 to 16896
16:55:39 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000140)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r1=>r0, @ANYBLOB="00000000000000002e2f66696c653000a185d3a65a6d138d5d2755ee87ec7eeb62c0935a39b3275452e40625b92a69f7a803ba20a1214fb55a3eaa5ced2c95eaee4abafd8b6c2410084ec906f930e5e4bdda9245e4574e76dd122c43d5"])
bind$bt_sco(r1, &(0x7f0000000080)={0x1f, @none}, 0x8)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000100))
r2 = syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001440)=[{&(0x7f0000000200)="66ac0284eac0905e1cf181372aa51ca9c3c42e6170f0b7412b9fc6404fe231f10d55cc3a3d39458b1742db0bb6eda43362d73a605307e8f6409fc3adeaf7154df84563ac54db269ad19470ad68890ea70b6dff7ec39137fd5c83267a5e2bae98d56b1ae3a5c8b463a4741535d1cdb2537dc7c2f153109d556662477e51fbd4d369816cd3a219d5eab6d871573fd68adda27cfa7bcaf61d20a7c978eb4821de3fe97b0dba1664470b19f5ab0806033ab9fc74411c8942358aaa9c8633462a76f9f89f86e93008243785f54e9aec42fcd7e3d0bd173d5ea080418d9634", 0xdc, 0x20}, {&(0x7f0000000300)="8cd782fda1dc19a5ed61eb9a70f52d978dc179ea54b2dbe28a0f02cc36e7c01364d4b94965cf91c264dfe212ff540328542fba94b7b305958f6ea96e158ff016637fd0e2ff6cc4aca6e391c8b40cb20c09642d17d2ac9d35b55f9f99e2debf14308ca778e88c722d1b3f15bfff9f3865b2f65ab2e81fa6ea99ccd85e52c0bfa65d909856fbe81f212ab646c9936d8bc240ac7c766e70e325538aeef11776ead6dff6bb0e54f725b54b491a3e1495425279b797047aa945a7312fbae4544a4b36884d241ac44e88d05b0631545a7cf8f49899", 0xd2, 0xa62}, {&(0x7f0000000400)="84193454da1cad5b6b4693f5c17a628fc9eee2d43143e4bbf9534e2ce565b7f857e097ebf7b33a1b433516e45cc603dee389269791", 0x35, 0x401}, {&(0x7f0000000440)="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", 0x1000, 0x3}], 0x8, &(0x7f00000014c0)={[{@block={'block', 0x3d, 0x400}}, {@map_acorn}, {@block={'block', 0x3d, 0xc00}}, {@session={'session', 0x3d, 0x5b}}, {@dmode}], [{@euid_eq={'euid', 0x3d, 0xee00}}, {@fowner_lt={'fowner<', 0xffffffffffffffff}}, {@obj_type={'obj_type', 0x3d, ',}'}}]})
dup(r2)
bind$bt_sco(r0, &(0x7f0000000000)={0x1f, @none}, 0x8)

16:55:39 executing program 3:
statx(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x0, 0x400, &(0x7f0000000980)={0x0, 0x0, 0x0, 0x0, 0x0, <r0=>0x0})
lstat(&(0x7f00000002c0)='./file1\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2, &(0x7f00000005c0)=ANY=[@ANYBLOB='trans=f', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c64666c74673ebc84c1b518f706ad06986964", @ANYRESHEX=r0, @ANYBLOB=',posixacl,access=any,version=9p2000.u,dfltgi', @ANYRESHEX=r1, @ANYBLOB=',version=9p2000,fowner=', @ANYRESDEC, @ANYBLOB=',dont_hash,defcontext=unconfined_u,measure,smackfshat=\',\'A,seclabel,pcr=00000000000000000051,defcontext=\x00ser_u,appraise,\x00'])
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}, 0x2000)
setresgid(r0, 0xee00, r2)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = fcntl$dupfd(r3, 0x0, r3)
ioctl$sock_netdev_private(r3, 0x89f2, &(0x7f0000000000)="ad38662b6b4a3cee6c880cc40997ae16e06f6dc7f7307ac2692b737acc8daa75b2396c0b1d55fbfb142e1a67ff7281e1e97f43e8f2c877748c0c3c12a155dbd4fc3f7d8357fd886bef8493dc41aa84557068ffd0865d7e418a391ec585541d1b7ee20fc1001f1fa09087975f30ca6491f49e42f5f93b7aa078af7d34a10e6b5c543a80778a5f679e9d7843c38119e9482aa279362b7aa1bfb12be9012456812decc1f63b871d30b439a0af3d354711380be4686d6822145856f87ab35c5278195aa2259f4332e539be63e351415058d63cf551755c46bf413694a661e7820b44f54d54bef4d7e4318122ca88c1eb2c22e6394ce0b4")
ioctl$sock_inet6_tcp_SIOCOUTQ(r4, 0x5411, &(0x7f0000000180))

[ 2985.186051] loop4: detected capacity change from 0 to 16896
16:55:39 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0)
syz_io_uring_submit(r5, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r6, 0x0, r6)
ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000080)={<r7=>r1, 0x6, 0x90e, 0xffffffff})
syz_io_uring_submit(0x0, r4, &(0x7f00000000c0)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd_index=0x9, 0x7, {0x0, r6}, 0x0, 0x0, 0x0, {0x0, 0x0, r7}}, 0x6)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r8, 0x0, r8)
r9 = socket$nl_route(0x10, 0x3, 0x0)
shutdown(r9, 0x1)
pipe2(&(0x7f0000000040)={<r10=>0xffffffffffffffff}, 0x80800)
shutdown(r10, 0x1)

16:55:39 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x8000000000000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

[ 2985.323410] loop1: detected capacity change from 0 to 5120
16:55:39 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000040))

[ 2985.401204] loop1: detected capacity change from 0 to 5120
16:55:39 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x10000000000000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:55:39 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x1ffff8000)

[ 2985.595382] loop4: detected capacity change from 0 to 16896
16:55:54 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0xff0f, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:55:54 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x6d2480, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
r2 = syz_io_uring_complete(0x0)
ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f0000000000)=ANY=[@ANYBLOB="0300000000000000050000000000000003000000000000200600000000000000ff07000000000000020000000000000009000000000000000000000000000000000000000000000002201000000000001000000000000000810000000000000002000000000000000800000000000000000000000000000000000000000000000001000000000000090000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000ff7f00000000000000010000000000000600000000000000000000000000000000000000000000008001000000ff000000000000000000001103000000000000030000000000000058eb00000000000000000000000000000000000000fe000081300000000000000000000000000000e008000000000000030000000000000080000000000000000000000000000000000000000000000008040000741100"/368])

16:55:54 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:55:54 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
getsockopt$inet_mreqn(r1, 0x0, 0x20, &(0x7f00000002c0)={@remote, @multicast1, <r2=>0x0}, &(0x7f0000000300)=0xc)
sendmsg$inet(r1, &(0x7f0000000400)={&(0x7f0000000080)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f0000000280)=[{&(0x7f00000000c0)="24d76017827bbff43327d35054508dcefb59ed1b2a68191f3c2f80a8311b3e514cc0d9389bf0b125b2dc7045c20e4d95637b995d8ad73a25ffb12c7ed125f0344b111230e1586c52fa", 0x49}, {&(0x7f0000000140)="f23a127d7c9d0818cc8ca8e86bde2a7d4f9ce4cdd21e30d63f53f1e804394594217e5cced0148a056c08d274f266457e44b7e24f", 0x34}, {&(0x7f0000000180)="24b5ab9239294d10b2947bf6fadf5bbd09ef513a07b01339ccd31fccb09d7509ae21b22b860ec9f7811e6d6611aa8bdb420e1b92f405bb848e6a32967a2894011f1f8d0dfb9aae6d498bf937bae05e36fe92329515de273fc3921c58c87fd9fa11c07efeb614bf7fdb8f2b5b132e33515a3fd08c08a6717837432555c13ff0c9487e3cb9a11fd82ec9e7bd1e4c839099e578147e8ab73c4f3ecfc222d8c2c2bf29cd45efbbd2c34e874c93d687e5b789cbf12ddb06be1e61f932b227c72a6b9a2b12a3710813db8a4f63ffb03f26b994155328b4197e5428284d65fe8339a116802ffb7f817d07093ef75b283b30c436b1fda1653d44", 0xf6}], 0x3, &(0x7f0000000340)=[@ip_ttl={{0x14, 0x0, 0x2, 0x3f}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0xfd}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x9}}, @ip_retopts={{0x14, 0x0, 0x7, {[@ra={0x94, 0x4}]}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r2, @broadcast, @empty}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @multicast2, @multicast1}}}], 0xa0}, 0x4)
getsockopt$inet_mreqn(r1, 0x0, 0x23, &(0x7f0000000440)={@loopback, @dev, <r3=>0x0}, &(0x7f0000000480)=0xc)
setsockopt$inet_mreqn(r1, 0x0, 0x20, &(0x7f00000004c0)={@multicast1, @rand_addr=0x64010102, r3}, 0xc)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:55:55 executing program 6:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(0xffffffffffffffff, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(0xffffffffffffffff, 0x0)

16:55:55 executing program 3:
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
write$9p(r2, &(0x7f0000000000)="2f1df057b3c5d1f17d599bde4cbe9964a662aca220128491f986ce4e1597c380373e1edd42818db17005549cefbc430d803b2d328b0d071126cb497b20567b11c548cc3fcd5d0e9d590a43503fd797ef22bfbaa3aa253ec116205d87bff4c9cd317b48c334bd63b61215fde83e2240feaff4da525c78330a95251d0fe356e167b0da7bdf6a1114171b00db4e173c448df2a8f92aba51a275cd721024ce", 0x9d)
ioctl$sock_inet6_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000180))
shutdown(r0, 0x0)

16:55:55 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x100000000000000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:55:55 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x1ffffffe4)

16:55:55 executing program 3:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$sock_inet6_tcp_SIOCOUTQ(r3, 0x5411, &(0x7f0000000040))

16:55:55 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
r4 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
syz_io_uring_submit(r7, r6, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r8 = open(&(0x7f0000000040)='./file0\x00', 0x442040, 0xc4)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r6, &(0x7f0000000100)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r8, &(0x7f0000000080)={0x0, 0x0, 0x5}, &(0x7f00000000c0)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r9}}, 0x7)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
fcntl$F_GET_RW_HINT(r3, 0x40b, &(0x7f0000000000))
r10 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r11 = fcntl$dupfd(r10, 0x0, r10)
connect$bt_sco(r11, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
dup(r11)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

[ 3000.681174] loop4: detected capacity change from 0 to 16896
[ 3000.686047] 9pnet: Could not find request transport: xen
16:55:55 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x260e2, 0x30)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0x7, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0)
madvise(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x8)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

[ 3000.777390] loop4: detected capacity change from 0 to 16896
16:55:55 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_open_procfs$userns(0x0, &(0x7f0000000000))
dup3(r0, r0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
syz_open_dev$ptys(0xc, 0x3, 0x1)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r3, 0x0, r3)
r4 = openat$full(0xffffffffffffff9c, &(0x7f00000000c0), 0xa0001, 0x0)
ioctl$FS_IOC_READ_VERITY_METADATA(r4, 0xc0286687, &(0x7f0000000580)={0x2, 0x3, 0x32, &(0x7f0000000540)=""/50})
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x0, 0x6, &(0x7f0000000400)=[{&(0x7f00000000c0), 0x0, 0x800}, {&(0x7f0000000100)="807d07a07a4cb4d5d05075bef23f286d0797d52a49b2f4ae984c4067f9e027bac25205d02240b39de30ff1e830d5085f7f8b9bae72d093bab791cb1670a84c529750e4f367af8bd8275fc662f8", 0x4d, 0x20}, {&(0x7f00000001c0)="0eaade4ef62051590c4ff636e74c121434eb2f52b661165607e5a91e6891e8522cca6359dce350395e0710abdd1f60145381c9b85fbb450a5ac29019e240d3d288acd3442d6780d09cde6a68", 0x4c, 0x1}, {&(0x7f0000000240)="c2a4d41d0d35dbd15a44f2f96b60352840", 0x11, 0x4}, {&(0x7f0000000280)="264f44c7f8d7afcc70e9b158344e125d1575fad8bd2da10bc9d005756b50d6b05735492ae80dcd43b3b27997df58564ca2cfe7347d80710280bd45c055a5c4ca3bb02703564163098138cbab22c406e1b9159346c25c5d7743b87406fe643a63c7d336d914cb92ed507c5d664a8c84581f6564a1c2efe2b75fd125cc017d668f909ef6ef036ccf4d9e1ba3d992db771e57ff5ba70b", 0x95, 0x2}, {&(0x7f0000000340)="2169bd8a873218bc6862eaee8e593e2342f005be530452e10c506b9e0e023296316369ceb7ff5c97d6290a272c0129a61b27e224ca7296d9ca6dce941071b8b2be38adc31cbf3fdee362afdebd14094d61f5ed96dfee58dcec83c04eb4f9a62fcc8aeace098fa0c410ed9bbe50c8476a80ef557dd50744be38a6314ee10913f2d2f4a35aa3784e3a211b790caebd863b59ca5c4efd728ea5857d3ad889feebc12bb3a3", 0xa3}], 0x1001, &(0x7f00000004c0)=ANY=[@ANYBLOB='/-,ns/user\x00,-\',ns/user\x00,[%,&,k)-$,,ns/user@,$@,euid>', @ANYRESDEC=0xee01, @ANYBLOB=',\x00'])
r5 = eventfd2(0x5, 0x80000)
r6 = fcntl$dupfd(r2, 0x406, r5)
ioctl$sock_inet6_tcp_SIOCOUTQ(r6, 0x5411, &(0x7f0000000180))

16:55:55 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x200000000000000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

[ 3000.905725] loop3: detected capacity change from 0 to 4096
[ 3000.932794] loop3: detected capacity change from 0 to 4096
[ 3000.950261] loop4: detected capacity change from 0 to 16896
[ 3001.368240] loop7: detected capacity change from 0 to 135266304
16:56:10 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x80000, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:56:10 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r2 = fcntl$dupfd(r0, 0x0, r0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/bus/platform', 0x7a1080, 0x10)
syz_open_pts(r3, 0x440000)
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r4, 0x0, r4)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000700)={0x2, 0x3ff, 0x7, 0x1, 0x8})
ioctl$FICLONE(r4, 0x40049409, r1)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/event_source', 0x600c0, 0x10)
fstat(r0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
sendmsg$nl_generic(r5, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000100)={&(0x7f0000000200)={0x48c, 0x3b, 0x20, 0x70bd2a, 0x25dfdbfb, {0x15}, [@generic="0b7735efd6fff2bc08540788853cd36f5dd2ad2d300841f491336158d9301d4ce009ba7bfde98c64939d19fa2ac6f31d84caab5b11fe695839716beee645065d00bfa432eee3f830b6ea56abe9888dfe15cd0525e8e4dccb146e734fec59aea680762a2771587968476232a3f9e194ab0470f28101d2ac9e116df71dacaf994d24458e774b821354b5ce270b16f8035d59faa9fb50eaa7eaff0b4df74c9a5ccbeccfbd36ea281567bb52648c487b4276b04bb6792a7f71d2e61b2a345786a0bdab6476ca8a6f0dd6e96ede7eb32a58b64016183e8c4f076786a7d1addb388b", @generic="06742efb19871d43e9ffaa390b9b8f31a2747fce9eb7633d4726ae746d", @generic="d906e93c58a2725e3481033bb4874588e182038dce2c1b8a9a3abb747d7b8cf2ccf7a1537167af29274441066c48d67e5b59dc9d5b196c260af20d43738e06d172cb11516b75506c984b5cd3d02885d856a5ace6d41cf124aaff4eaefde0254c8854a22d3ddbf40748938f23cdb28f69e364ee60838ad58c892bda127fed70e6573e45362ff302527827f3dc17b1ed5e9fe6b81ae04d720022c46c7789a568bcc5fc7284c879d8f6aab309ebb0be81ada815ff6490db7f3c74b5368d312ac83b6f536a76eeb0011dd836d442c6cc10cc17a9012cc6e2ee6126b9f5", @typed={0xc, 0x64, 0x0, 0x0, @u64=0x7}, @typed={0x8, 0x32, 0x0, 0x0, @u32=0x1}, @generic="80167069b740343761518bbbc1dd87adabc99a0781ff42d1440f23f8576fafd066d6ef824a7e424619ceb7e3b5c7062858b51438c1fc489d6c9aa8b5be3ac0d980d3d8e22908ebf5763c125cc62fa34a516c488e5bf1fbac7f4f9499b3dba0bac72da59fa3dd70f9ad2f3c211d5bb2d379b85ce322ce0e556022c3ac6fadbc49e5e14d7bc51627ef86b3f2ce2f04b81b42693dae8f69646e415f6dfa3a177092918ecab14b9638c9ab0b4cf9769f726ee1ade04f4fdde84b45960db7913134abd5196e78cdd73db1e06e97cb38359bbbbc71261714ff1ef93a85e56d90eb129e43632b15817b", @nested={0x19b, 0x0, 0x0, 0x1, [@typed={0xf, 0x25, 0x0, 0x0, @str='/proc/self\x00'}, @typed={0x95, 0x17, 0x0, 0x0, @binary="06cfb48566005faa96e13c9e5b5f6cb9d82b786c42fd773539a7de6b6e2050f73a7cae9786c80ff325f6ead02614f4f40643d63fe40c9d86b12ec0df40329c17d4b4514d6c624e00a2779a8d45331c25b180de380a7d503ba9a131cd4f302e838a4920f963813dcbba73cbbe670b3368a4b99daa4d7eca1a0bcd4bd2f8369aa1282ff5452b17a3c27ea994323d32e294f7"}, @generic="54baa824dfd5fcb99e333d22c0efc6383e749ecd3dbbe2c8faba4ada9cebfac283db1e2a44e531ded5b9da6a219a1810c37af202a264c7ddbb8017b9a81cf3f901a7550a175297202e61fd1e7e4ab184fc7e0c63f47bd4dbd9b53b9eed2ba7c1896936a7e7ebd98e203cedf3f80745f7c0c718282045209d431e38fa7cc0d654c92084923ebb339540fc9ff888385aa67962ff8acdcd95da461d5063cab31b4b95171a1a77f02ab6cc9f7310faca5d6cd4c0fe88446089bd2955a9cf9c33ec79be6959b7cfc5a785a7e0725e65e5b547eb422ba1739f943f527ce2b8d0c9ca572c4e05f10e0580", @typed={0x8, 0x2b, 0x0, 0x0, @uid=0xffffffffffffffff}]}, @typed={0x8, 0x3a, 0x0, 0x0, @uid=r6}]}, 0x48c}, 0x1, 0x0, 0x0, 0x1}, 0x4000900)

16:56:10 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)
getsockopt$bt_sco_SCO_OPTIONS(r1, 0x11, 0x1, &(0x7f0000000080)=""/244, &(0x7f0000000180)=0xf4)

16:56:10 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000000))

16:56:10 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x3, 0x0, 0x0, 0x0, &(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xb, 0x1}, 0x101)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
bind$inet(r3, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
dup2(r1, r3)

16:56:10 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x1fffffff5)

16:56:10 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:56:10 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x300000000000000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:56:10 executing program 1:
r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x100000000}, 0x8001}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x7, 0x80, 0x40, 0xe9, 0x0, 0x3, 0x0, 0x8, 0x8800, 0xa, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0xfffffffa, 0x1, @perf_config_ext={0x2, 0x1f}, 0x40000, 0x5, 0x74, 0x6, 0x80000000, 0x9, 0x3f, 0x0, 0x433, 0x0, 0x1}, 0xffffffffffffffff, 0x11, r0, 0x0)
mmap$perf(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x10010, r0, 0x3)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000280)='(&\x15}\x00')
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))

[ 3015.758351] 9pnet: Could not find request transport: xen
[ 3015.765166] loop4: detected capacity change from 0 to 16896
16:56:10 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file2\x00', 0xfff, 0x0, 0x0, 0x2311041, 0x0)
r3 = fork()
r4 = gettid()
kcmp(r3, r4, 0x3, r2, 0xffffffffffffffff)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r6 = fcntl$dupfd(r5, 0x0, r5)
connect$bt_sco(r6, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
perf_event_open(&(0x7f0000000000)={0x4, 0x80, 0x9, 0x7f, 0x80, 0x6, 0x0, 0x2, 0x5381, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0xffff8000, 0x1, @perf_config_ext={0x4, 0x1}, 0x10080, 0x101, 0x80000000, 0x8, 0x2, 0xbe, 0x3f, 0x0, 0x3, 0x0, 0x1}, r3, 0x10, r6, 0x255aa78ac4e573c3)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

[ 3015.910550] loop4: detected capacity change from 0 to 16896
16:56:10 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100002040}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x20, 0x1a, 0x300, 0x70bd25, 0x25dfdbfc, {0x13}, [@typed={0x4, 0x8e}, @typed={0x5, 0x26, 0x0, 0x0, @str='\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x8800}, 0x30048890)
r2 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x200000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = fork()
r5 = gettid()
kcmp(r4, r5, 0x3, r3, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000240)={0x5, 0x80, 0x4, 0x81, 0x5, 0x81, 0x0, 0x6, 0x40, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x3, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x9, 0x6798}, 0x8, 0x5, 0x4f, 0x3, 0x1f, 0x0, 0x8, 0x0, 0x9, 0x0, 0xfffffffeffffffff}, r5, 0x10, r2, 0x1)
kcmp(r5, 0xffffffffffffffff, 0x6, r0, 0xffffffffffffffff)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:56:10 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x400000000000000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:56:10 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
dup(r2)
r3 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r3, 0x5411, &(0x7f0000000180))
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = fcntl$dupfd(r4, 0x0, r4)
connect$bt_sco(r5, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$FS_IOC_GETFSLABEL(r5, 0x81009431, &(0x7f0000000040))
ioctl$CDROM_GET_MCN(r3, 0x5311, &(0x7f0000000000))

16:56:10 executing program 6:
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000180)=0x7, 0x3de)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r4 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000fcd000/0x3000)=nil, 0x3000, 0x2000004, 0x1010, r4, 0x0)
syz_io_uring_submit(r7, r6, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r2, r6, &(0x7f00000000c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x2007, @fd_index=0xa, 0x20b, 0x100, 0x20, 0x17, 0x0, {0x3}}, 0xaa)
shutdown(r1, 0x0)
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r9 = fcntl$dupfd(r8, 0x0, r8)
connect$bt_sco(r9, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r10 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r11 = fcntl$dupfd(r10, 0x0, r10)
connect$bt_sco(r11, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r11, 0xc018937a, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x7}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_FAIL(r9, 0xc0189377, &(0x7f0000000040)=ANY=[@ANYBLOB="010000000100000018200000", @ANYRES32=r1, @ANYBLOB="0080362f66696c7b3000000800001600"])

[ 3016.129434] loop4: detected capacity change from 0 to 16896
16:56:10 executing program 2:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
openat$cgroup_int(r0, &(0x7f0000000080)='pids.max\x00', 0x2, 0x0)
fallocate(r0, 0x1, 0x100004, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x803, 0x3)
openat(r3, &(0x7f0000000040)='/proc/self/exe\x00', 0x10080, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = fcntl$dupfd(r4, 0x0, r4)
connect$bt_sco(r5, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r6, 0x0, r6)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendfile(r7, r6, 0x0, 0x100000001)

16:56:26 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x1000000, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:56:26 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x1)

16:56:26 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)
getsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0x7, &(0x7f00000000c0)=0x1, &(0x7f0000000080)=0x4)

16:56:26 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x164)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001)

16:56:26 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
getsockopt$bt_hci(r1, 0x0, 0x2, &(0x7f0000000080)=""/96, &(0x7f0000000100)=0x60)
setsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000001c0)={{{@in=@remote, @in6=@private2, 0x4e22, 0xfff8, 0x4e20, 0x227, 0x2, 0xe0, 0x0, 0x8c, 0x0, 0xffffffffffffffff}, {0x9, 0x20, 0x7, 0x9, 0x3f, 0xffffffffffffb404, 0x2d2, 0x7}, {0x8000, 0x100, 0xfffffffffffffe01, 0x2}, 0x9, 0x6e6bb2, 0x0, 0x0, 0x0, 0x3}, {{@in=@private=0xa010102, 0x4d6, 0x2b}, 0xa, @in6=@empty, 0x3506, 0x1, 0x3, 0x2, 0x5, 0xfffffff7, 0xa5}}, 0xe8)
r2 = fcntl$dupfd(r0, 0x0, r0)
r3 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x9000, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc0189379, &(0x7f0000000040)={{0x1, 0x1, 0x18, r3}, './file0\x00'})
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))
getsockopt$inet6_opts(r1, 0x29, 0x36, &(0x7f0000000140)=""/41, &(0x7f00000002c0)=0x29)

16:56:26 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:56:26 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_open_dev$hidraw(&(0x7f0000000480), 0x9, 0x208080)
r2 = syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = fork()
r4 = gettid()
kcmp(r3, r4, 0x3, r2, 0xffffffffffffffff)
fcntl$setownex(r1, 0xf, &(0x7f00000004c0)={0x1, r3})
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r5 = fcntl$dupfd(r0, 0x0, r0)
sendmsg(r5, &(0x7f0000000440)={&(0x7f0000000000)=@x25, 0x80, &(0x7f0000000300)=[{&(0x7f0000000080)="9cdc2c3f8b6ba7213c99fdade4ea2d32c0cfe0dc89405b813d5a38bb4727564870b074a4153e328392a5e4aa83743b6706782ab112c7544caea7cf343a17cea91bb3e3719c1ede287eb64b380cb58fbb7774943f996a7f7966daad3166ec6662f2204c7c1d73932353214e0314e53b594353364f08d2149daa56cae49ceefd6abe03d8689b4fe56ab22595be731f0a78ee18cc2d9cc4eb016924ddba9ddbb76b", 0xa0}, {&(0x7f0000000140)='P', 0x1}, {&(0x7f0000000200)="3d25a9eb7cf1fd5b8bcb7b005a8e5d74f75cafaf4b62d4b0bf632c7f7a808838499a9aa53f1a3752132451f6f87dd8159bd534b21106b809c66da1974cc6e0aef5d4825bef2c86b61df7dc27fbb6889d12c07e3fcabe7519a3b38ed44bf946df10226e647b508a95b62f01591599e1af3c6a3deed6f816e610aaf21a7e944fc27c2c58f4139d27d74fd8bf0d1819ece8a3be78632eb7537925cc46bd2c43e8f8293315067dfcb4dc773b201353f9bdfe37bd99774bc80ce20ae050a9b27171b5481ab5785d11d5fcbff23b96f71fac2940ba0577ce2096c950", 0xd9}], 0x3, &(0x7f0000000340)=[{0xc8, 0xf, 0xfff, "7525bb0e3915fcfd627c3b7d3bb842c95c2f6a07e3fba0db406cb85e19c473cc40889d0743cdc9048d1a634cd832d756cfa5862b75fc1cfbc008023d478e01cb6a68a142822a89538e8d8b0d312a23a468e05c4369f989f1a071f7609f801e4cf9e538f7d679dca606059943a91d9963c753e23e7fadb54dcc37f35c7edff710c738b8775822883002af43796ecbb9c37ca0039193b3055dd52fe4ba7d3d731bb136e34dac342e41091725afcca3f42ea1e2"}], 0xc8}, 0x4040)
ioctl$sock_inet6_tcp_SIOCOUTQ(r5, 0x5411, &(0x7f0000000180))

16:56:26 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x500000000000000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

[ 3031.867435] 9pnet: Could not find request transport: xen
[ 3031.893889] loop4: detected capacity change from 0 to 16896
16:56:26 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = accept4$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14, 0x80000)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
signalfd4(r3, &(0x7f0000000100)={[0xac72]}, 0x8, 0x80000)
bind(r1, &(0x7f0000000080)=@in6={0xa, 0x4e22, 0x20, @mcast2, 0x1}, 0x80)
r4 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r4, 0x5411, &(0x7f0000000180))
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r4, 0xc018937e, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r5=>0xffffffffffffffff, @out_args}, './file0\x00'})
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), r4)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r5, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x3c, r6, 0x4, 0x70bd28, 0x25dfdbfe, {}, [@ETHTOOL_A_PAUSE_RX={0x5}, @ETHTOOL_A_PAUSE_AUTONEG={0x5}, @ETHTOOL_A_PAUSE_TX={0x5, 0x4, 0x1}, @ETHTOOL_A_PAUSE_AUTONEG={0x5}, @ETHTOOL_A_PAUSE_TX={0x5, 0x4, 0x1}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000004}, 0x2000c895)

16:56:26 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x406, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

16:56:26 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x103000, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:56:26 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0}, './file0\x00'})
setsockopt$sock_int(r1, 0x1, 0x28, &(0x7f0000000040)=0x8, 0x4)
r2 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))

16:56:26 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
syz_io_uring_setup(0x3771, &(0x7f0000000140)={0x0, 0x3ef8, 0x1, 0x3, 0x13f, 0x0, r0}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f00000000c0), &(0x7f00000001c0))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r1, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
getdents(0xffffffffffffff9c, &(0x7f0000000040)=""/15, 0xf)
sendfile(r1, r2, 0x0, 0x100000001)

16:56:26 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
dup3(r0, r0, 0x80000)
r1 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x103103)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r2, 0x0, r2)
r3 = fcntl$dupfd(r2, 0x406, r1)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r3, 0x0)

16:56:26 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x600000000000000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:56:26 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r1, 0xc0189372, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r0}, './file0\x00'})
pidfd_send_signal(r2, 0x19, &(0x7f0000001200)={0x14, 0x1ff, 0xcb2}, 0x0)
r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2, 0x10, 0xffffffffffffffff, 0x8000000)
r4 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
syz_io_uring_submit(r7, r6, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000000)={<r8=>r1, 0x401, 0x8, 0x4})
syz_io_uring_setup(0x804ebb, &(0x7f0000001280)={0x0, 0x1b97, 0x8, 0x0, 0x161}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r9=>0x0, &(0x7f00000000c0)=<r10=>0x0)
r11 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r11, 0x0, 0x0}, 0x0)
r12 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FSYNC={0x3, 0x1, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r12}}, 0x8)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000700)=@IORING_OP_RECVMSG={0xa, 0x1, 0x0, r11, 0x0, &(0x7f00000006c0)={&(0x7f0000000440)=@ax25={{0x3, @netrom}, [@bcast, @bcast, @bcast, @default, @netrom, @bcast, @bcast]}, 0x80, &(0x7f0000000640)=[{&(0x7f00000003c0)=""/12, 0xc}, {&(0x7f00000004c0)=""/90, 0x5a}, {&(0x7f0000000540)=""/205, 0xcd}], 0x3, &(0x7f0000000680)=""/23, 0x17}, 0x0, 0x40, 0x0, {0x2, r12}}, 0x7)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_POLL_REMOVE={0x7, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, {0x0, r12}}, 0x6)
syz_io_uring_submit(r3, r6, &(0x7f0000000040)=@IORING_OP_SEND={0x1a, 0x1, 0x0, r8, 0x0, &(0x7f0000000200)="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", 0x1000, 0x20000110, 0x1, {0x0, r12}}, 0x8001)
r13 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r13, 0x5411, &(0x7f0000000180))

[ 3032.229270] loop4: detected capacity change from 0 to 16896
[ 3032.256267] loop4: detected capacity change from 0 to 16896
16:56:43 executing program 6:
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
ioctl$BLKFRASET(r0, 0x1264, &(0x7f0000000080)=0x6)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r2, 0x0)
r3 = socket$nl_audit(0x10, 0x3, 0x9)
ioctl$int_out(r3, 0x2, &(0x7f00000000c0))

16:56:43 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2000000, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:56:43 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r2, 0x0, r2)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = fcntl$dupfd(r4, 0x0, r4)
connect$bt_sco(r5, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
poll(&(0x7f0000000080)=[{r2, 0x80}, {r3, 0x1080}, {r1, 0x200}, {r0, 0x200}, {r5, 0x4}, {r1, 0x3}], 0x6, 0x40)

16:56:43 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000040)="5b40fdb3b0941f245412020fc023ec25141af414926261810f8f3a5150d78319e74417bcdb36916dfa6136ad59fc4d6853b252ca32e072ac6a574d5f58935a5fea9fda2e5a42a9d2a80b1cb8978907ed1aaac58f", 0x54}, {&(0x7f00000001c0)="7760c93f073e1113173bc1669f8b21328d41a6e90a65ea7fa6c6c6af78d2654022852c170d3d76f13cfec7b345ae192c2b140aeb33224c4a75e672e0d5a097b2f4b54c333fca2e57a29771cdb8463a4e05988dc9ef0fe88ac732c2383f6b628bff814f085522e6f58e47f0449bb914095a98111339c4eb072b4ec1a3a8a5ec24aa4b342f2b9b66ab5f574eedcf44ebf3b97b77f1e9366c1262055a808307a7a91f7500ee509a9629fad0b0608bb45ea70f6d0dd11bc16ed7c7d1e7db2ee01484e106392ee557241d70b9919c908b23307745d9c688f411429347dcb4ca2ef2b2982e81597d0e5531", 0xe8}], 0x2)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f0000000000)=0x3, 0x2)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:56:43 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = syz_io_uring_setup(0x14df, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2, 0xf7fffffc, 0x0, 0x0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000c3f000/0x1000)=nil, &(0x7f0000000280)=<r2=>0x0, &(0x7f0000000000)=<r3=>0x0)
socketpair(0x22, 0xa, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$BTRFS_IOC_DEV_INFO(r4, 0xd000941e, &(0x7f0000000380)={0x0, "0ccbb09d28dfb3817f091162cfc56a77"})
r5 = eventfd2(0x0, 0x0)
r6 = perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4303, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000340)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r5, 0x3, 0x0}, 0x0)
io_uring_enter(r1, 0x76d3, 0x0, 0x0, 0x0, 0x0)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r7, 0x0, r7)
r8 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ppoll(&(0x7f0000000100)=[{r7, 0x80}, {r0, 0x100}, {r8, 0x14}, {r6, 0xd100}], 0x4, &(0x7f0000000200), &(0x7f0000000240)={[0x1]}, 0x8)
ioctl$AUTOFS_IOC_SETTIMEOUT(r6, 0x80049367, &(0x7f00000000c0)=0xe7)
r9 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r9, 0x5411, &(0x7f0000000180))

16:56:43 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x700000000000000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:56:43 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:56:43 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1/file0\x00', 0x400000, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$AUTOFS_IOC_SETTIMEOUT(0xffffffffffffffff, 0x80049367, &(0x7f0000000380)=0x7f)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$FS_IOC_FSSETXATTR(r3, 0x401c5820, &(0x7f00000002c0)={0x4ea, 0x3, 0x6, 0xfffffffc, 0x2})
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x6)
getresuid(&(0x7f00000003c0)=<r4=>0x0, &(0x7f00000001c0), &(0x7f0000000340))
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x7f, 0x0, &(0x7f00000000c0), 0x2010004, &(0x7f0000000400)=ANY=[@ANYBLOB='discard,auto_da_alloc,inode_readahead_blks=0x0000000000000400,jqfmt=vfsv0,fowner<', @ANYRESDEC=r4, @ANYBLOB="9c2bc96d455ecedef905af4f03345659b8e4ae1e8baddb8336e0e83875f4bf6deb665b9bdc64404a9a91526ecc77c4f38aeeeafa2bac46bd466320a4b02f6dea02aace1c91232bce466d69cbf00cf135905877c17df23612bc3120a53b2969115314bd5c1202fa029087bfd5f40659d91d884d66d9629b3d00000000c1c28b9afa771a3f6c8189774d40108d2877086aec728d5755fe3c068a42fc0e57ed889c6a9f3bc7710ff60b63cae4fc6aa9fe0c"])
getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000080)={{{@in=@empty, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in=@remote}, 0x0, @in6=@mcast2}}, &(0x7f0000000180)=0xe8)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r6 = fcntl$dupfd(0xffffffffffffffff, 0x0, r3)
connect$bt_sco(r6, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r6, 0x10e, 0x1, &(0x7f0000000300)=0x1b, 0x4)
write$P9_RSTATu(r1, &(0x7f00000001c0)={0x93, 0x7d, 0x1, {{0x0, 0x65, 0x8001, 0x5, {0x4, 0x1, 0x5}, 0x8b00000, 0x4, 0x1f, 0x1, 0x19, 'trusted.overlay.redirect\x00', 0x0, '', 0x0, '', 0x19, 'trusted.overlay.redirect\x00'}, 0x19, 'trusted.overlay.redirect\x00', r4, 0xee00, r5}}, 0x93)

[ 3048.772202] EXT4-fs (loop2): VFS: Can't find ext4 filesystem
16:56:43 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r4 = fsmount(0xffffffffffffffff, 0x1, 0x4)
tee(r3, r4, 0x8e, 0x4)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

[ 3048.797111] 9pnet: Could not find request transport: xen
[ 3048.802172] loop4: detected capacity change from 0 to 16896
16:56:43 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x150181, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fallocate(r1, 0x40, 0x1, 0x9)
r2 = fcntl$dupfd(r1, 0x0, r1)
r3 = signalfd(r0, &(0x7f0000000080)={[0x200]}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r3, 0xc0189372, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r4=>r1, {0x15236fbe}}, './file0\x00'})
ioctl$BTRFS_IOC_TREE_SEARCH(r4, 0xd0009411, &(0x7f00000002c0)={{0x0, 0x7, 0x1, 0x100000000, 0x0, 0x4dd5008e, 0x400, 0x7ff, 0x10001, 0x84e, 0x80000000, 0x2, 0xfffffffffffffc01, 0x6, 0x2}})
pidfd_send_signal(r3, 0x37, &(0x7f00000000c0)={0x21, 0x10001, 0x3}, 0x0)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
pidfd_send_signal(r2, 0x6, &(0x7f0000000000)={0x3b, 0x100, 0x614}, 0x0)
r5 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r5, 0x5411, &(0x7f0000000180))

16:56:43 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
poll(&(0x7f0000000080)=[{r3, 0x508}, {r0, 0x100}], 0x2, 0x2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
bind$bt_sco(r3, &(0x7f0000000040)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}}, 0x8)
shutdown(r1, 0x0)

16:56:43 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x105142, 0x108)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000280)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
r2 = pidfd_open(0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff, {0x4}}, './file1\x00'})
sendfile(r3, r2, 0x0, 0x80000000)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r5, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_POLL_REMOVE={0x7, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0xfff)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000400)={'ip6_vti0\x00', &(0x7f0000000380)={'syztnl0\x00', <r6=>0x0, 0x4, 0x8, 0x0, 0x2, 0x40, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @private1, 0x7, 0x8000, 0x200, 0x1}})
sendmsg$sock(r1, &(0x7f00000006c0)={&(0x7f0000000440)=@can={0x1d, r6}, 0x80, &(0x7f0000000500)=[{&(0x7f0000000600)="8600d65c544f0bc7bb8aab87c873d4f13e790abe61f0c5d8d170bee6374a9acc220ebf974d506cb157406f4139759e47705c185283e3ed26eb5725e7abe27eefe6b7a8cf91619ed462a017522e2927fb118544b5a3b839fbfa8de28eedb47a261dd17d96eb2d2ef135df38d4effe4b8fb4b5cf4380972d349ad7ee5429a63e66ca75cadc3f45be4eb2e4d9cac6e6ce2103beff066b2f44acbedcff", 0x9b}, {&(0x7f00000004c0)="085869fc7e777e07259d8b9bc4bc817e232029f2285199b889f8b7", 0x1b}], 0x2}, 0x20044040)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x800000, 0x11, r3, 0x0)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r7, 0x0, &(0x7f0000000200)=@IORING_OP_FSYNC={0x3, 0x1, 0x0, @fd=r2, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r8}}, 0x5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x3, 0x0, 0x8, 0x1, &(0x7f00000000c0)="6e41573b3bc1db39f0efad511e0e9369d2d8d6849a4d8be11b091de1473f6043d07a0ee5fc854665c7861445fa1e3cfded54059721fdaeca451ef9e6eceef5df0b6b4d955f0fd34dfa93168bccc733a47b078c03dfa24f56564fb8f6223f149d52b1ab6ead58939b29e33e2069e2481665cd38d9e83e827d7c8f3a8a4b0d4b88b8370e72e95200fa5c2f5d0597713f63917bc2cba8fd32631b0af22abb39bc29d93024fe13a0a6de20a22afb5a63cb8538ea77651548e1dfab6bf0177826cb0c8a68a130fe13a6", 0x81, 0x0, 0x1, {0x1, r4}}, 0x9)

16:56:43 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r3, 0xc018937c, &(0x7f0000000300)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x1}}, './file0\x00'})
r4 = socket$nl_sock_diag(0x10, 0x3, 0x4)
ioctl$sock_inet_SIOCSIFDSTADDR(r4, 0x8918, &(0x7f00000002c0)={'ip6gre0\x00', {0x2, 0x0, @broadcast}})
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r1)
sendmsg$NL80211_CMD_SET_INTERFACE(r3, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x28, r5, 0x300, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x6, 0x32}}}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0xb}]}, 0x28}, 0x1, 0x0, 0x0, 0x4c000}, 0x6e14b8a00806552c)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000000)={'lo\x00'})
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x38, r5, 0xc18, 0x70bd25, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_PBSS={0x4}, @NL80211_ATTR_PBSS={0x4}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x24}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}]}, 0x38}, 0x1, 0x0, 0x0, 0x90}, 0x4008005)

16:56:43 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x1000000000000000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:56:43 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)={0x20, r3, 0xd11, 0x0, 0x0, {{}, {@void, @val={0xc}}}}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_NEW_MPATH(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2080}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x68, r3, 0x20, 0x70bd27, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x68}, 0x1, 0x0, 0x0, 0x4000081}, 0x4000000)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$sock_inet6_tcp_SIOCOUTQ(r5, 0x5411, &(0x7f0000000180))
fcntl$getflags(r4, 0xb)

[ 3049.182211] loop4: detected capacity change from 0 to 16896
16:56:43 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
write$bt_hci(r1, &(0x7f0000000040)={0x1, @le_del_from_accept_list={{0x2012, 0x7}, {0xc}}}, 0xb)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

16:56:43 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r0, 0x0, r0)

16:56:57 executing program 2:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r1, 0x800, 0x0)
fspick(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='./file1\x00', 0x2028c0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x3)
sendfile(r1, r2, 0x0, 0x100000001)
ioctl$CDROMGETSPINDOWN(r0, 0x531d, &(0x7f0000000040))
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r3, 0x0, r3)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r3, &(0x7f00000000c0))

16:56:57 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x4800000000000000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:56:57 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x3000000, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:56:57 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000080), 0x8)

16:56:57 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x526aecad77afeb9e, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:56:57 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000440)={{0x1, 0x1, 0x18, r0, {0x6}}, './file0\x00'})
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r1, 0x84009422, &(0x7f0000000040)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct}})
shutdown(r1, 0x0)

16:56:57 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:56:57 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = openat$sr(0xffffffffffffff9c, &(0x7f0000002b40), 0x0, 0x0)
bind$bt_sco(r3, &(0x7f0000002b80)={0x1f, @none}, 0x8)
fcntl$dupfd(r2, 0x0, r2)
mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x200000a, 0x10, r0, 0xa9fba000)
recvmmsg(r2, &(0x7f0000002a40)=[{{&(0x7f0000000000)=@qipcrtr, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000080)=""/8, 0x8}], 0x1, &(0x7f0000000100)=""/92, 0x5c}, 0x8000}, {{&(0x7f00000001c0)=@x25={0x9, @remote}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000240)=""/218, 0xda}, {&(0x7f0000000340)=""/47, 0x36}, {&(0x7f0000000380)=""/202, 0xca}], 0x3}, 0x1}, {{&(0x7f00000004c0)=@caif=@rfm, 0xfffffffffffffd34, &(0x7f0000001680)=[{&(0x7f0000000540)=""/4096, 0x1000}, {&(0x7f0000001540)=""/24, 0x18}, {&(0x7f0000001580)=""/112, 0x70}, {&(0x7f0000001600)=""/100, 0x64}], 0x4}, 0x47f}, {{&(0x7f00000016c0)=@xdp, 0x80, &(0x7f0000002900)=[{&(0x7f0000001740)=""/232, 0xe8}, {&(0x7f0000001840)=""/4096, 0x1000}, {&(0x7f0000002840)=""/144, 0x90}], 0x3, &(0x7f0000002940)=""/224, 0xe0}, 0x4}], 0x4, 0x2, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
getsockopt$bt_hci(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000002bc0)=""/173, &(0x7f0000002c80)=0xad)

[ 3063.421295] loop4: detected capacity change from 0 to 16896
[ 3063.432795] 9pnet: Could not find request transport: xen
16:56:57 executing program 2:
ioctl$BTRFS_IOC_QGROUP_ASSIGN(0xffffffffffffffff, 0x40189429, &(0x7f0000000180)={0x1, 0x3, 0x3})
getresuid(&(0x7f00000003c0)=<r0=>0x0, &(0x7f00000001c0), &(0x7f0000000340))
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x7f, 0x0, &(0x7f00000000c0), 0x2010004, &(0x7f0000000800)=ANY=[@ANYBLOB='discard,auto_da_alloc,inode_readahead_blks=0x0000000000000400,jqfmt=vfsv0,fowner<', @ANYRESDEC=r0, @ANYBLOB="9c2bc96d455ecedef905af4f03345659b8e4ae1e8baddb8336e0e83875f4bf6deb665b9bdc64404a9a91526ecc77c4f38aeeeafa2bac46bd466320a4b02f6dea02aabb3add37ce1c91232bce466d69cbf00cf135905877c17df23612bc3120a53b2969115314bd5c12cbfa029087bfd5f40659d91d884d66d9629b3d"])
r1 = socket$nl_sock_diag(0x10, 0x3, 0x4)
getresuid(&(0x7f00000003c0)=<r2=>0x0, &(0x7f00000001c0), &(0x7f0000000340))
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x7f, 0x0, &(0x7f00000000c0), 0x2010004, &(0x7f0000000800)=ANY=[@ANYBLOB='discard,auto_da_alloc,inode_readahead_blks=0x0000000000000400,jqfmt=vfsv0,fowner<', @ANYRESDEC=r2, @ANYBLOB="9c2bc96d455ecedef905af4f03345659b8e4ae1e8baddb8336e0e83875f4bf6deb665b9bdc64404a9a91526ecc77c4f38aeeeafa2bac46bd466320a4b02f6dea02aabb3add37ce1c91232bce466d69cbf00cf135905877c17df23612bc3120a53b2969115314bd5c12cbfa029087bfd5f40659d91d884d66d9629b3d"])
sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000080)={&(0x7f0000000600)={0x3e4, 0x2, 0xb, 0x201, 0x70bd2b, 0x25dfdbff, {0x3, 0x0, 0x7}, [@generic="5f30c58c8e5249713b3819b92fcba5d6ef6943d76f1360419f9e383bcb9119415460ebf4d4fb024dcc63f2cacfbe6477a90da90e5083e68521994dd1cc0f6024b7ca99e3574a727ca8d557ec8e3ea322da327d19e6a4bffa1c91806ccc900bcd4bb7673fa3c1e06ca4c1f9644df449844a216a38360367c610df482dd348e029c3d466aa3f258369c9338c938db9e7add7", @typed={0x8, 0x67, 0x0, 0x0, @uid=r0}, @typed={0x8, 0x81, 0x0, 0x0, @fd=r1}, @nested={0x40, 0x51, 0x0, 0x1, [@typed={0x8, 0x74, 0x0, 0x0, @u32=0x80b5}, @typed={0x8, 0x2c, 0x0, 0x0, @u32=0x5}, @typed={0x4, 0x62}, @typed={0x8, 0x49, 0x0, 0x0, @uid=r2}, @typed={0x14, 0x4d, 0x0, 0x0, @ipv6=@empty}, @typed={0xa, 0x41, 0x0, 0x0, @str='/[[(@\x00'}]}, @generic="e84cfa96c04ad10c6215caee962e68d91d23acef4a396d8f12761563b6980b59c777e1293706eeda3bd58305ef2a5e5a6e02d6a4493a53d3eb12dbfed3b0d8e9bc615444a144e11df7625522f6f14dbc9d8731d0645f381217a7409abf111d52becdd3c389b777630f5e9cc3cfc8ab6ab7f9e3dcfc033813fae71d26eb50d845df6371f7ee57c651d2816623a6a59bf38b85701fa518d4f9c0f51beca756f664af0932ede0da6efeddf84f07348e2a2fe9ac25b5b8e0a92a986b81c78cb6aa8e1d94cbc0487aabf4fd681218264b9607b9bd00a1b2e602c5d46e5fb71274bdde219bf8333919c0e00cc7", @typed={0x8, 0x33, 0x0, 0x0, @ipv4=@loopback}, @typed={0x14, 0x17, 0x0, 0x0, @ipv6=@mcast2}, @generic="33c8a75296ce8a1515e000c6ce0440a8f9d1262d46d19af111d16195faf1b24eb2f4b7a29a9888a9ca5f8b5427489c3b3ab0659bbe6e942497fb8087ea76d6704e3b018c493d8ce0379cda9e0515e7c85b8abd83f26fe99d844a41d9bf52e7c8f5e94b29b8d0c736511c563de466f9a6d64cd795c21ae5eb19fc92c849cc22276c5fa5d4db4574eb8d71093d8a2f0cbe19bbe1ace2faa089e4eeac266b4bbccffd0acd5562a515962befddbdd3415d32989acab2d899026544e6ef115babf797a4bb48fca488f2238540467ad66d93e5b67ef62a6ee7dae40852948c8a72e16ec73a7d00c7f716f7176dd6d797e17540eb9c8c529762", @nested={0xed, 0x1b, 0x0, 0x1, [@generic="38f508348b132bfe48101dd9ad1575eb0d584137a8007137ff233be200252c290fda980f91f98d219c448d91f4139d40ec54bafaecb3ce89ed3665818c13c24f661c5f777f33010c645d8af5fc40a7204ddfd37af0cb1fe9d435c55fb9d4bea08771889e5277a16eedc9098c5457085f618d6e69d38f199438671b6ce88012225a9ab245444588fe686d930775fa577280d3aff54cd44ad25d812c73eddb111e36cfd9ebed458276def7d0abf4e215b10def21b733e8e9bcb0815df8d495a7f96676a761aecffbdfd2ee58af30aa9fa366238fd9ca6965a4b772c4c459", @generic, @typed={0x7, 0x18, 0x0, 0x0, @str='+\'\x00'}, @typed={0x4, 0x3c}]}]}, 0x3e4}, 0x1, 0x0, 0x0, 0x20000081}, 0x40000)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r3, 0x800, 0x0)
r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r3, r4, 0x0, 0x100000001)

16:56:57 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r2 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))
r3 = dup(r1)
write$P9_RLERRORu(r3, &(0x7f0000000000)={0xd, 0x7, 0x1, {{}, 0x2}}, 0xd)

[ 3063.498061] loop4: detected capacity change from 0 to 16896
[ 3063.597544] EXT4-fs (loop2): VFS: Can't find ext4 filesystem
16:56:58 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r1, 0x0, r1)
r2 = fcntl$dupfd(r0, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @none}, 0x8)
socket$inet6_udp(0xa, 0x2, 0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = fcntl$dupfd(r3, 0x0, r3)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r5 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
read(r5, &(0x7f0000000100)=""/154, 0x9a)
shutdown(r2, 0x0)

16:56:58 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000000040)=ANY=[])
ioctl$sock_inet6_tcp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000000))

[ 3063.667981] EXT4-fs (loop2): VFS: Can't find ext4 filesystem
16:56:58 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x4c00000000000000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:56:58 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x60400, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
pidfd_send_signal(r1, 0x20, &(0x7f0000000000)={0x35, 0x64, 0x80}, 0x0)
creat(&(0x7f0000000140)='./file0/file0\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./file0\x00', 0x50)
pidfd_send_signal(r2, 0x13, &(0x7f00000000c0)={0x38, 0x81, 0x1000}, 0x0)
pidfd_send_signal(r1, 0x27, &(0x7f0000000240)={0x2d, 0xc2a0, 0x71}, 0x0)

[ 3063.822354] loop4: detected capacity change from 0 to 16896
16:56:58 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(0xffffffffffffffff, 0x6, 0x21, &(0x7f0000000000)="f975750c069ed456d40a82470b00f08e", 0x10)

16:56:58 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(0x0, r3, 0x0, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:56:58 executing program 3:
r0 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)={0x100, 0x40, 0x1c}, 0x18)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000040))

[ 3063.955943] EXT4-fs (loop2): VFS: Can't find ext4 filesystem
[ 3063.970344] 9pnet: Could not find request transport: xen
16:57:13 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = syz_mount_image$ext4(&(0x7f0000000180)='ext2\x00', &(0x7f00000001c0)='./file1\x00', 0x1, 0x5, &(0x7f00000004c0)=[{&(0x7f00000002c0)="46edfd22bba24ff92288e5cdb8964675f6ccc4f3ef53a3ed6f754337e77aa398b5d3d2bb73ab27a1e488bd28133e2f3aa2e2afff1bed32ce4d6d8ccb903b1468231914d879038a86c0f729f5b4412ecd6b02ce72eef36729ca03c784d24f16e3cd72dd09812e464f6c449d04b2c8477b320d41a572c9ab0b9b3a078270904bdeafb77501cdd3d3e2dead2faeb6d4f19987be42699973a7fdee62a765cb5180a0a500c7a1cb86f55811d9fa51311daaecc94bc70eb88f80d86b716cf5f23315ab5eccae6d577373020d917bbdda6790ace497256da7b1", 0xd6, 0x64}, {&(0x7f00000003c0)="0c03a4205dad2bd53b863888bf7d6bb2383123bd4b5b74869fefebfb1c528b1b30815ebbd8a028258d79261e14db3319ca8c322cff9e59d25775d771a7f7f143dbfde349e4f05360a8f22de0e0828a4c1b2f508642c4d9510ae8e0875d007a8d6a722f8cac69e853117bb554b7c1bd6ceec20a9b9f4d796a0e9c07b06fd51d326a6066df754c7a64", 0x88, 0xffffffffffffffe1}, {&(0x7f0000000600)="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", 0x1000, 0x5}, {&(0x7f0000000200)="d625e5a5998b641decffba979b78b159c14201e31ab8cf0b85c35222e2b8db4e3267a4fa9cf627e701f076b6f66702782fc4a8a14d8874d0d2fcb697d127cd0459b2afcfca", 0x45, 0x2}, {&(0x7f0000000480)="ae04f961552c3bedbca7d6779b26ee4c2619082ef0ef19a7d3ae5392545a2708b3ca92b383932638d49b197caa", 0x2d, 0x2}], 0x118800, &(0x7f0000001600)={[{@data_ordered}, {@nolazytime}, {@dioread_lock}, {@jqfmt_vfsold}, {@nojournal_checksum}, {@nodiscard}], [{@context={'context', 0x3d, 'staff_u'}}, {@smackfshat={'smackfshat', 0x3d, '/dev/vcs\x00'}}, {@uid_gt}]})
sendfile(0xffffffffffffffff, r2, &(0x7f00000016c0)=0x7, 0xffff)
r3 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
getsockopt$bt_BT_RCVMTU(r0, 0x112, 0xd, &(0x7f00000000c0)=0x3, &(0x7f0000000140)=0x2)
r4 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x44000, 0x0)
ioctl$HIDIOCGNAME(r4, 0x80404806, &(0x7f0000000080))
r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r5, 0x0, 0x100000001)

16:57:13 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000), 0x8)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r3, 0x89f0, &(0x7f00000000c0)={'gretap0\x00', &(0x7f0000000040)={'tunl0\x00', 0x0, 0x8, 0x7800, 0x4, 0xcce, {{0x12, 0x4, 0x0, 0x5, 0x48, 0x66, 0x0, 0x3f, 0x29, 0x0, @empty, @local, {[@ra={0x94, 0x4}, @ssrr={0x89, 0x23, 0xbe, [@loopback, @empty, @broadcast, @local, @private=0xa010100, @empty, @empty, @rand_addr=0x64010101]}, @timestamp_prespec={0x44, 0xc, 0x2f, 0x3, 0x8, [{@multicast2, 0x2}]}, @end]}}}}})
shutdown(r1, 0x0)
r4 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
syz_io_uring_submit(r7, r6, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r8 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r9=>0x0, &(0x7f0000000140)=<r10=>0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r11 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r8, 0x0)
syz_io_uring_submit(r11, r10, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r12 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(r7, r10, &(0x7f0000000100)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd_index=0x9, 0x8, 0x0, 0x288, 0x5, 0x0, {0x0, r12}}, 0x20000000)

16:57:13 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x6800000000000000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:57:13 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x4000000, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:57:13 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r3, 0x0, r3)
setsockopt$bt_BT_RCVMTU(r3, 0x112, 0xd, &(0x7f0000000040)=0x81, 0x2)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r4=>r2}, './file0\x00'})
getsockopt$bt_BT_POWER(r4, 0x112, 0x9, &(0x7f00000000c0)=0x8, &(0x7f0000000100)=0x1)
r5 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r5, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000000)={0x20, 0x6, 0x80000000, 0x4, 0x8})
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:57:13 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x101480, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
clock_gettime(0x0, &(0x7f0000000480)={<r4=>0x0, <r5=>0x0})
clock_gettime(0x0, &(0x7f00000004c0)={<r6=>0x0, <r7=>0x0})
futimesat(r3, &(0x7f0000000440)='./file1\x00', &(0x7f0000000500)={{r4, r5/1000+10000}, {r6, r7/1000+60000}})
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r8 = perf_event_open$cgroup(&(0x7f00000000c0)={0x4, 0x80, 0x7, 0x7, 0x9, 0x7, 0x0, 0x800, 0x880, 0xf, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0xffffff3c, 0x1, @perf_config_ext={0x4, 0x9}, 0x40, 0x1, 0x9d, 0x7, 0x7f, 0x55eaadd, 0x1f, 0x0, 0x7ff, 0x0, 0x8}, r1, 0xc, 0xffffffffffffffff, 0x6)
pwritev2(r8, &(0x7f00000003c0)=[{&(0x7f0000000140)="b4b64da95c717ec6dbf6811a82ebbe705b7e276339a9736ad1be1470077904cfa674058c5aa6945c71e8b077a4dac310977a5311829308b45f2765433843c9d5b934847c8442bdd417931907ff48095f8119a17c32d3d1c4afc1c22e63290f86b94cca983485b35b658444553ff2e75d09fa8662f80bea52daf52a5ac8deb9f58d2132464da89b62f0252f998a99dcfec156be677348b787e2a0f00484858d5aa9bbe31f5810cad9c5", 0xa9}, {&(0x7f0000000200)="9a55718ae35a951d5d2fb3e5075491a320c0a39d8539bbc7988f38190bc70f67d6a01da7a45a9640dacbbdeefabcc7ed07d4a45b3369ddbd2f3a1f7bafc8a12e6e720b4af2db1681c2d6e188f789eec9ff2c7f0df777c0b9c20b426b536c98c56c1404e1de5f55aae775d91fa02925c506301852b73c4e891f27e9a0512cd7fd1877ec459372ce1b2dfc362af4fb5d9029829bc87356eef4a46d8a69cfd980", 0x9f}, {&(0x7f00000002c0)="481f6482d0f57b22ea55e0148e2814b2537265f4232364f06329642238386a3a8d8d3e4a1adc96054394710ed22b1df439984c4f96728a31a3bfdf675f2c02f2a231de5156298ad7af94eef386c07e2e3c4ccae032b9b587b600fd57a19aad0aa23fcb071122ab47d0f2a9267a4359f55ce37f592f9075ef7f56597a2cd9e02dc59878c252ebc9d7a0c9e4b3e3617044af7c8fd8decf052edc8a299dc212320c90f29ea225dc4267ed752199c1e9b555930a546cf0dccb86e2597f989cf30ed69c", 0xc1}], 0x3, 0x7, 0xffffff6e, 0x0)
r9 = fcntl$dupfd(r0, 0x0, r0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_FSYNC={0x3, 0x5, 0x0, @fd_index=0x1, 0x0, 0x0, 0x0, 0x1}, 0x78153aa9)
connect$bt_sco(r9, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:57:13 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(0x0, r3, 0x0, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:57:13 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
setsockopt$sock_int(r1, 0x1, 0xc, &(0x7f0000000000)=0xffff0000, 0x4)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

[ 3078.931128] loop2: detected capacity change from 0 to 8388096
[ 3078.941322] loop4: detected capacity change from 0 to 16896
[ 3078.960776] loop4: detected capacity change from 0 to 16896
[ 3078.981870] 9pnet: Could not find request transport: xen
16:57:13 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x6c00000000000000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:57:13 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000000)={<r2=>r1, 0xffffffffffffff0b, 0xb8f6, 0x7})
ioctl$TUNSETVNETHDRSZ(r2, 0x400454d8, &(0x7f0000000040)=0x80000000)
openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x200000, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))

16:57:13 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r2 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))
pidfd_send_signal(r1, 0x2f, &(0x7f0000000000)={0x6, 0x9, 0x6}, 0x0)

16:57:13 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
syz_io_uring_setup(0x36e1, &(0x7f0000000080)={0x0, 0x73d1, 0x4, 0x3, 0x35b}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r1=>0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000240)=@IORING_OP_SEND={0x1a, 0x5, 0x0, r2, 0x0, &(0x7f0000000180)="f3b0d09a8605eec9d3c3992ae4533bcf860f425a9db61ff755e72cea68c34d54acab3d0f574387a5554d7c6b575df3b6327b95a1aab4a5f5ad0b537a9c0b81475f0a940c7c6c9555cb589d73dca757b9663cd999675f558557effdb4fa77792265b0773ada6531fe0acdc1e4c79514b96e0cf18c7f0523fc5c98646a1f81b99cd16baf55640de184a6", 0x89, 0x80}, 0x8e22)
r3 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

[ 3079.117701] loop4: detected capacity change from 0 to 16896
16:57:13 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
sendmsg$nl_generic(r1, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="14001a00fc000000000000000000000000000001f7066572a3a6eb8d12dd7eda997202913cd4f35dab72787920ad82d2c038a6075130b29cad1ff1a1a9169817b9b3796cffed5764ff5a4561cf2477abd64e9e8ccb32de276681aadca5e8b9105f651f8cce22c433d213d9e37a828dfe4d675a841872d8e0b8fda67f05b4a20ddc70bb5fe275220c181a4d1723122dc72257556cb9772ccb03f9014948b5ea08001000", @ANYRES32=0xee00, @ANYBLOB="63deb5a300"], 0x1b4}, 0x1, 0x0, 0x0, 0x20040c00}, 0x20000000)

16:57:13 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_MADVISE={0x19, 0x3, 0x0, 0x0, 0x0, &(0x7f0000ffc000/0x1000)=nil, 0x1000, 0xe}, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

16:57:13 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r3 = fcntl$dupfd(r2, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r3, 0x5411, &(0x7f0000000180))

[ 3079.193578] loop4: detected capacity change from 0 to 16896
[ 3079.275059] loop2: detected capacity change from 0 to 8388096
16:57:13 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x7400000000000000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:57:13 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r3, 0x0, r3)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x5014, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_L}, {@version_9p2000}, {@cachetag}, {@afid={'afid', 0x3d, 0x7}}, {@cache_loose}, {@afid}, {@aname={'aname', 0x3d, ':!'}}, {@access_client}, {@cachetag={'cachetag', 0x3d, '/proc/self\x00'}}], [{@dont_measure}, {@smackfsroot={'smackfsroot', 0x3d, '/proc/self\x00'}}, {@smackfstransmute={'smackfstransmute', 0x3d, '/proc/self\x00'}}, {@obj_type={'obj_type', 0x3d, '--^*-(7#,\x86$#^\x91@\\'}}, {@measure}, {@smackfstransmute={'smackfstransmute', 0x3d, '/proc/self\x00'}}]}})
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r4 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r4, 0x5411, &(0x7f0000000180))

16:57:13 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = fork()
r3 = gettid()
kcmp(r2, r3, 0x3, r1, 0xffffffffffffffff)
r4 = syz_open_procfs(r2, &(0x7f0000000040)='net/mcfilter\x00')
lseek(r0, 0x800, 0x0)
r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r5, 0x0, 0x100000001)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0x10, r4, 0xb7904000)

[ 3079.405927] loop4: detected capacity change from 0 to 16896
16:57:13 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x1000008, 0x20010, 0xffffffffffffffff, 0x8000000)
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0xfffffff8)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0)
syz_io_uring_submit(r5, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_setup(0x804ebb, &(0x7f00000007c0)={0x0, 0x9b9b, 0x1, 0x2, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000280)=<r7=>0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r8, 0x0, 0x0}, 0x0)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000740)='./file0\x00', 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FSYNC={0x3, 0x1, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r9}}, 0x8)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000700)=@IORING_OP_RECVMSG={0xa, 0x1, 0x0, r8, 0x0, &(0x7f00000006c0)={&(0x7f0000000440)=@ax25={{0x3, @netrom}, [@bcast, @bcast, @bcast, @default, @netrom, @bcast, @bcast]}, 0x80, &(0x7f0000000640)=[{&(0x7f00000003c0)=""/12, 0xc}, {&(0x7f00000004c0)=""/90, 0x5a}, {&(0x7f0000000540)=""/205, 0xcd}], 0x3, &(0x7f0000000680)=""/23, 0x17}, 0x0, 0x40, 0x0, {0x2, r9}}, 0x7)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_POLL_REMOVE={0x7, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, {0x0, r9}}, 0x6)
syz_io_uring_submit(r1, r4, &(0x7f0000000000)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x1, 0x0, {0x0, r9}}, 0x9)
r10 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r10, 0x5411, &(0x7f0000000180))
r11 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x200000, 0x0)
r12 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x2, 0x0, r11, &(0x7f00000000c0)={0x2}, r10, 0x1, 0x0, 0x0, {0x0, r12}}, 0xe0)

[ 3079.435285] loop4: detected capacity change from 0 to 16896
16:57:14 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x5000000, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:57:14 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000), 0x8)
r2 = socket$packet(0x11, 0x3, 0x300)
shutdown(r2, 0x1)

16:57:14 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r0, 0x0, r0)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040), 0x200000, 0x0)
openat$vcs(0xffffffffffffff9c, &(0x7f0000000080), 0x123000, 0x0)
recvmmsg(r2, &(0x7f00000036c0)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000000c0)=""/96, 0x60}, {&(0x7f00000001c0)=""/131, 0x83}], 0x2, &(0x7f0000000280)=""/233, 0xe9}, 0xd690}, {{&(0x7f0000000380)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @dev}}}, 0x80, &(0x7f00000008c0)=[{&(0x7f0000000400)=""/119, 0x77}, {&(0x7f0000000480)=""/203, 0xcb}, {&(0x7f0000000580)=""/170, 0xaa}, {&(0x7f0000000640)=""/175, 0xaf}, {&(0x7f0000000700)=""/133, 0x85}, {&(0x7f00000007c0)=""/222, 0xde}], 0x6, &(0x7f0000000940)=""/69, 0x45}, 0x8}, {{&(0x7f00000009c0)=@xdp, 0x80, &(0x7f0000002f00)=[{&(0x7f0000000a40)=""/23, 0x17}, {&(0x7f0000000a80)=""/4096, 0x1000}, {&(0x7f0000001a80)=""/145, 0x91}, {&(0x7f0000001b40)=""/53, 0x35}, {&(0x7f0000001b80)=""/77, 0x4d}, {&(0x7f0000001c00)=""/4096, 0x1000}, {&(0x7f0000002c00)=""/195, 0xc3}, {&(0x7f0000002d00)=""/131, 0x83}, {&(0x7f0000002dc0)=""/219, 0xdb}, {&(0x7f0000002ec0)=""/21, 0x15}], 0xa, &(0x7f0000002fc0)=""/223, 0xdf}, 0x5}, {{&(0x7f00000030c0)=@l2tp6={0xa, 0x0, 0x0, @initdev}, 0x80, &(0x7f0000003340)=[{&(0x7f0000003140)=""/163, 0xa3}, {&(0x7f0000003200)=""/201, 0xc9}, {&(0x7f0000003300)=""/21, 0x15}], 0x3, &(0x7f0000003380)=""/163, 0xa3}, 0xf3}, {{&(0x7f0000003440)=@qipcrtr, 0x80, &(0x7f0000003580)=[{&(0x7f00000034c0)=""/160, 0xa0}], 0x1, &(0x7f00000035c0)=""/246, 0xf6}, 0x5}], 0x5, 0x1, &(0x7f0000003800)={0x77359400})
ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r3=>r2, {0x6}}, './file0\x00'})
ioctl$sock_inet6_tcp_SIOCOUTQ(r3, 0x5411, &(0x7f0000003840))

16:57:14 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x7a00000000000000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:57:14 executing program 1:
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x82000, 0x80)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
pidfd_send_signal(r3, 0x2d, &(0x7f0000000040)={0x21, 0xee3e, 0x3}, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
setsockopt$bt_BT_CHANNEL_POLICY(r2, 0x112, 0xa, &(0x7f00000000c0)=0x1, 0x4)

16:57:14 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$security_ima(&(0x7f0000000040)='./file1\x00', &(0x7f0000000080), &(0x7f00000000c0)=@v1={0x2, "62a979ee4a"}, 0x6, 0x1)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001)

16:57:14 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(0x0, r3, 0x0, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

[ 3079.915454] 9pnet: Could not find request transport: xen
16:57:14 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

[ 3080.021954] loop4: detected capacity change from 0 to 16896
16:57:30 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x6000000, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:57:30 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
writev(r0, &(0x7f0000001300)=[{&(0x7f0000000040)="3554c6fe949f7fdb0c2ff01eb28d739a0d61981b1342131f1e0f5caf31eb9791367341d500a115b2d97db7c929b411663e8010e8494a984a27dcd540bcfff7ca09e74c4953ce98bdf52364bbee114e854794adb926d8f2faaf89c1d22e43947e57dee72d58beb0a5b57dbe2f769dfc91bb8ab19972a9ca1ec390", 0x7a}, {&(0x7f00000000c0)="82b049802dd0feabaa9f6ef6f80d9c59dabea8230ea4742f2057fc51b3db9d2df95e112f17df3ec75345b0671434567e82c93362f0bc445a51239623413aff3fd9cb1da9409484cc5df4b0b21ef643bac5340fed920874e718520e8e771d56364be4d651eb51356b8a14bbbe59ac", 0x6e}, {&(0x7f0000000140)}, {&(0x7f0000000180)="078c7b62dab5bdc9e20ff41e200a5d7a1fe23df174a7aab664d42f1f33890c2a35b56fde29e3cec20793e76b2846b875e55f6123f55ae5f5b468927b8f38a4cc90b923520a70f05eb535f74e1a63badf2991dd5bd3b41611f2d536f6ef4b782aa3582cf9bec5f4eba853d04d679d1a672225dbce6e0a0c6843ab816228", 0x7d}, {&(0x7f0000000200)="114401fa572c5b8c93517030919d83ccae8c1d590ed451565e9b90b89377df5e43523b6516d6d6923f6c1d633f343bc0b36aff287b886a591b809fae8aa8111851c1c5417c4110ecfa2eb9cfd99098ba5495f68c94d59c8b8e6869b17c5feb9c07226317a40b2c68d0760ac9fa525d2312ce2cc6986a1598f76af18da0ec6ce921c18a0ce458811aff1a11aa2057de853553e37f2ee13b24c4dd0cf7ae9c9bedbb33b40f99b1fc78e0411d334ec0c999dd599bdf0cd912d13e7b6d9b9d3da130d9789eb617fabac525a9cf4c272f212af297637974a37b827592595af3f69fc8d0", 0xe1}, {&(0x7f0000000300)="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", 0x1000}], 0x6)
shutdown(r1, 0x0)

16:57:30 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)
timer_create(0x1, &(0x7f0000000080)={0x0, 0x13}, &(0x7f00000000c0)=<r2=>0x0)
timer_gettime(r2, &(0x7f0000000100))

16:57:30 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0xef48e1c0d595de2b, r0)
r2 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000080), 0x604300, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f00000000c0))
getpeername$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @private2}, &(0x7f0000000040)=0x1c)

16:57:30 executing program 3:
perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3f}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
sendmsg$NL80211_CMD_VENDOR(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000000), 0xc, 0x0, 0x1, 0x0, 0x0, 0x40448c0}, 0x8000)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', <r2=>0x0})
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2})
ioctl$sock_ipv6_tunnel_SIOCDEL6RD(0xffffffffffffffff, 0x89fa, &(0x7f00000000c0)={'syztnl1\x00', &(0x7f0000000200)={'syztnl2\x00', r2, 0x4, 0x40, 0x1, 0x4, 0xe51cc672dc8c9673, @private1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x20, 0x1000004, 0xff}})
openat$sr(0xffffffffffffff9c, &(0x7f0000000280), 0x20000, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000480), 0xffffffffffffffff)
ioctl$sock_ipv6_tunnel_SIOCDEL6RD(0xffffffffffffffff, 0x89fa, &(0x7f0000005fc0)={'ip6_vti0\x00', &(0x7f0000005f40)={'syztnl2\x00', 0x0, 0x4, 0x7, 0x80, 0x1f8, 0x20, @private0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x80, 0x1, 0x9, 0x9}})
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = fcntl$dupfd(r3, 0x0, r3)
ioctl$sock_inet6_tcp_SIOCOUTQ(r4, 0x5411, &(0x7f0000000180))
r5 = fcntl$dupfd(r4, 0x0, r3)
syz_open_dev$vcsu(&(0x7f0000000100), 0x3, 0x220400)
setsockopt$inet6_tcp_buf(r5, 0x6, 0xe, &(0x7f0000000000)="26a9e17adcbc2f2a1fee82f375db704b4171df60b86e891c223ad88df4eea1f992e35cc345e09fa08fb8cc289f17dffb2884536d9e8a8196174e5fba4ab5a523cd48a16b25b5256176c31496c58a87b89e67cbb8623b01c7ab1924ba916b1bc03ef7f0dc524477ed183f53bd89225f3b68e4d2a3c1152840e43ca7a548793513fec41f7a575c8a73af71a67ec9092d6f96f93e40a06b66b5c1ddaac47f0159a62c80f2fac4f37aed1932b41e838589f9012de556a3802c0986d3afaa2469d264776d98729c816ee3f95f08a08965da3b6de5359d750db2471070e99476", 0xdd)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r6, 0x0, r6)
fcntl$F_GET_FILE_RW_HINT(r6, 0x40d, &(0x7f00000001c0))

16:57:30 executing program 2:
ioctl$RTC_PIE_ON(0xffffffffffffffff, 0x7005)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001)

16:57:30 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(0x0, r3, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:57:30 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0xffffffff00000000)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

[ 3096.249094] 9pnet: Could not find request transport: xen
[ 3096.250378] loop4: detected capacity change from 0 to 16896
16:57:30 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r1, 0xc0189378, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000100000018100000", @ANYRES32, @ANYRES32=<r2=>r1, @ANYBLOB='\x00\x00\x00\x00./file0\x00'])
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = fcntl$dupfd(r3, 0x0, r3)
ioctl$EVIOCRMFF(r2, 0x40044581, &(0x7f0000000040)=0x2)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$sock_inet6_tcp_SIOCOUTQ(r4, 0x5411, &(0x7f0000000180))

16:57:30 executing program 6:
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
connect$bt_sco(r0, &(0x7f0000000000)={0x1f, @none}, 0x8)
r1 = syz_open_dev$usbmon(&(0x7f0000000040), 0x3, 0x4000)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r4, 0x0, r4)
poll(&(0x7f00000000c0)=[{r0, 0x40}, {r1, 0x80}, {r2, 0x8200}, {r3, 0xb5}, {r4, 0x8000}], 0x5, 0x8)
shutdown(r0, 0x0)

16:57:30 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
fcntl$dupfd(r1, 0x406, r1)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:57:30 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r1, 0x0, r1)
r2 = fcntl$dupfd(r0, 0x406, r1)
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))

16:57:30 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x5, 0x1, &(0x7f00000000c0)=[{&(0x7f0000000140)="1282c940d7227f04cdc45453a7befe5a6bba4a88ee8b0ab21c0caaf56ed3d391ad21aa78b8d714b17620c373d7f6e95894984a41f399f2012c236635dbfa052cdf21be56d96d47730c3b1e7bcf0f567b494be82c2758e057adb1dae1dcbc24adb0007c892b22a3b3c3edc63e0d61985ec64247aa126f8f5a082aa903f3d3a6c8b4428ac24f89bc27e8ead6a53e8f8cab6f98d899c59f3b947a352e302e01cae1c029c9b48bb2fe82c625d8829f", 0xad}], 0x10000a, &(0x7f00000002c0)={[{@nocompress}, {@overriderock}, {@hide}], [{@uid_gt={'uid>', 0xee01}}, {@appraise_type}, {@hash}, {@fscontext={'fscontext', 0x3d, 'user_u'}}, {@dont_measure}, {@seclabel}, {@fowner_lt={'fowner<', 0xee00}}, {@rootcontext={'rootcontext', 0x3d, 'root'}}]})
openat(r1, &(0x7f0000000200)='./file1\x00', 0x260000, 0x4)
lseek(r0, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r2, 0x0, 0x100000001)

16:57:31 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmsg(0xffffffffffffffff, &(0x7f00000013c0)={0x0, 0x0, &(0x7f0000001200)=[{&(0x7f0000000040)="37006a759f3d92c5d76d5ae57e457ffc41c109621f3bbdfcdd1b1956ae875ef576048435f1a7c4520ce7e425c9c6cb64f683af9c2f2a45c4c9cfb1ec44540df1bd79ac61fbcfeead506ac3d0d44ac2e4994a3316f27d7390b0395ce1dd50a3ba113fa1e1e3a206", 0x67}, {&(0x7f00000000c0)="b372393dd5bd94b080b068356f22f341d1af22abdd2fbffd3e1af940798f1cea1b14643ed2af1ea7304868c9ddf73e2129b240c73dd5e7ee471d1d80", 0x3c}, {&(0x7f0000000100)="b4a2992e52f25c65b6493e5c1be7ce672e865d70efa5812b8094a16af4d1af7c883e7849a29f077f6f93b89be90c28e6f56170dd55824880f374618e84eab4b2a13ce7ea37cbb08fc1181fb9af680f2aeddffb3c1f7ca2634bfe9893073efe9d644680d323a86c008f36", 0x6a}, {&(0x7f0000000180)="9ad7e89938e652b3fc802c399ae64abe46e9cb12a285e3c6fa386f4f05ba68eff4ee04a88f97f2e8e2e946b9a3ff9c8fd0882d4fb41834f423f14fb0e8fdfeff763cba028144cdf20fc8316e9a7697f30d50ab0507e03722a6606767fb675c6cfed2f8e2f2e62303363218fa82885b29ea38625735e52654ae2bab1b4cdcfd54", 0x80}, {&(0x7f0000000200)="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", 0x1000}], 0x5, &(0x7f0000001280)=[{0x78, 0x113, 0x800, "e1292c27f99befa4033e5a2c4c3863f86153226e8eacace3a89c7800f95cbf9dddb5316e260c38e74c787a8af999d068d406df0c652ef8977cf7b825ba483f796c29909d21993fcf47e286a86a182f2473fe91a0256173fbcd063706beed9273203e4d"}, {0x18, 0x117, 0x7fffffff, "b26c680f8eede1f2"}, {0x78, 0x119, 0x1, "936cc852aebb4c165438a45949d30bc7f6fd2ffa1db0d8951101be7905ec7900f060e270d7a66f8a8ee90fc0f3b6dc6646a9f5b015d08ed0387ff21873e634b94c82c399046911dda1efa65a8dc3c80ffb98116b532f68f00a41f71e89d5b61ed9798b899def362d"}], 0x108}, 0x44000)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

16:57:31 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
r5 = openat$zero(0xffffffffffffff9c, &(0x7f00000000c0), 0x30001, 0x0)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r6, 0x0, r6)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r5, 0xc0189379, &(0x7f0000000140)={{0x1, 0x1, 0x18, r6}, './file0\x00'})

16:57:31 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r4 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
syz_io_uring_submit(r7, r6, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r8 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x880, 0x28)
syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r9=>0x0, &(0x7f0000000140)=<r10=>0x0)
r11 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r11, 0x0, 0x0}, 0x0)
r12 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FSYNC={0x3, 0x1, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r12}}, 0x8)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000700)=@IORING_OP_RECVMSG={0xa, 0x1, 0x0, r11, 0x0, &(0x7f00000006c0)={&(0x7f0000000440)=@ax25={{0x3, @netrom}, [@bcast, @bcast, @bcast, @default, @netrom, @bcast, @bcast]}, 0x80, &(0x7f0000000640)=[{&(0x7f00000003c0)=""/12, 0xc}, {&(0x7f00000004c0)=""/90, 0x5a}, {&(0x7f0000000540)=""/205, 0xcd}], 0x3, &(0x7f0000000680)=""/23, 0x17}, 0x0, 0x40, 0x0, {0x2, r12}}, 0x7)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_POLL_REMOVE={0x7, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, {0x0, r12}}, 0x6)
syz_io_uring_submit(0x0, r6, &(0x7f0000001900)=@IORING_OP_SENDMSG={0x9, 0x4, 0x0, r8, 0x0, &(0x7f00000018c0)={&(0x7f0000000080)=@caif, 0x80, &(0x7f0000001500)=[{&(0x7f00000001c0)="b1aa0368f9db40e810e5ad1f9bbf9ea21ae20cd312d1d227325dc48690e719b426f3df8be194e2b0c427efbc65ec0a7afeae7cb21ceb02135a2e1a5ae1370f46875cefee74b3bad2906487e0ff7c541af58cff059c7cd830f347599bd893e374bb751feace53ac1808ccb608b12b0541798f5c377c3393e32a6a02e6d7393db77326a34cd316c6eb880600c46ccd7399eb9e1aa1e440008fd40597e49135f1e06f208d1a24348f23d89059f3d3b346f53b97c457195aae38493a6e53383006425a000254daa5", 0xc6}, {&(0x7f0000000100)="84435ca67a0c7bd65eddadbbe764f8e7fe6a863c674c702133ea5b456e7378caabfd311c705faa0fa56fc8df33483b1d8f1ad899afb655296e8ea2cb41073253173a1edfb5d1ee0eb744a0e077bc69736204f99fac21400e73646912d83e2f4a4d2607dd", 0x64}, {&(0x7f00000002c0)="48196bdb79ef868de74582acd4fdf03066ba43da80729decb353c52a8986104b5714b1cfb1e689615135aa6213961a58e9adbca4af2b34213e2628c92d50be1bdb7d174ce8916f2f3d6501412c24dea0b9fa5f940627adbc333a49948cef110848fe4635db33d5bfc03e142c0300a6ee7d10176c8880e66e02f28d3ebbc10e2592c9a551799edb56b4890bc7db761a20b5767157f21aae608351bff7855a36138ba3561960efe94fb1dee036bee9814fe9be496d55db7cf1470839885f01bf0e678e4e0e109c2e29535e409b9a057b95b4a4a812c14fbf", 0xd7}, {&(0x7f00000003c0)="d665539d02336259c02acd2ac9ee898e8345419c6c346d1f9536a4fe89532d7d15fc868dd0f76764f57cb3d2bdc2a997a30d8d78c18c16d640ade23df35c", 0x3e}, {&(0x7f0000000400)="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", 0x1000}, {&(0x7f0000001400)="6eda4d1540c73e0602fe5e28e2c5d1faa120dd39284b7084920461bd3ec6f472632133e17abbc8f04360159fce1d0a325d85ed30639d87b57cbe0592f0764b8c4d9e3016b0b0625242f6496adb6927e07d9e53f48a16ab097d39f2a087c33d6f329783788952e5b07f7dae3c7b4e37a30fa5ef170386fdc75f7f884f7f2c00927fe11be57a5efa4c2249ecca9809efcbe066522ffab1179efd79f9ceae7c7912ab1310c1329ec8ea88e92fa89a07b23dc46e45684c204bc871b0b67a430e25ed6d", 0xc1}], 0x6, &(0x7f0000001580)=[{0x48, 0x117, 0x652, "5831106193b4b9a6cc31378a3a60b970e16d6770df765eedda36470feaabd31a250cf8b7f91593f363aed67fc6e936b53c227c6f8a"}, {0xc8, 0x103, 0xdf, "5cb835b72976a498c9e53378395a791474a98cd199eecda1d286d690688f85ba018327e72bfc29f216f8dfde1737eeacb2422ac0ec0580f7101230cd2ed3e847f795335151205c3c2ef603c26baf4c6c0df4775d3b43e3a3642e4920123e8a8c8d4f4c196a4dd9cd04071cad3214960af9dd5bc108be9dfe482699db04f1f3e8aae1914d509528bf392e90f1d250488dbb08c5854e578464358606ada78ebab2ad79d6c827eb0717f648f458d21cd5c4f0b7"}, {0xe8, 0x10c, 0x401, "7a145a75696e7000a6477183ef881c8bd598a056626d8826beaf50fef3f6c6e2057e510046f9a3682d03ae348c3f76121de957c0929fef1f94b580c10d4417b5860835121ef5cd080f79c6903f55a04ce3ea0da9e6d7ec7a034f0f928ab23cbbc5a48aa8979d65ab5406d199050b3637412b9b97ea566e5d03f095a6d974c0596ddd86209caca068c6ecba0595f23c0920fd88bed439544f7e851ef3c8fd648c8d86945964fcef3fa5a1e12a22bb8434726c0649183c5ccb63799b21114f0bb802c66d9664103ec7c430eebe712529a221"}, {0x68, 0x10b, 0x8000, "706f70a43d18d2b3ce03884924ebf9c376e03f12333cff5f8748a499449345809867780cedc877b42ab76d83ae211c7ec27a07ed608eb86fb590b9ed70df7a73ba6882dd0592516d006a01208c5ecd7806a1d9f3c6"}, {0xc8, 0x10d, 0x2, "e7ca03e5588536770b5b11a0d50ef98ee7fab119fab348490240c9e03f5f8fb95c178bf97ef44ba15d9f7db8ab3bda49f343221e292d15691ef68b3fe29b15bc45d9255c443ae294ad7d4ad20bd96f5b900f2afd7cea4c11798d7e1550009240e343d0eebc7cb6bd76fdb0f8e7486a526c0158dda0012f202afeeabde17727b8bb8b4b09ef73ef2d31433985be79727b002986fa64b40997575115bebed4421f8ca0f912ea199fccad9404ed840c889e66c120bcdd"}], 0x328}, 0x0, 0x40000, 0x0, {0x0, r12}}, 0x2b84)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @none}, 0x8)

[ 3096.806272] loop4: detected capacity change from 0 to 16896
16:57:47 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x7000000, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:57:47 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='map_files\x00')
getdents64(r4, &(0x7f00000007c0)=""/180, 0x200007d8)
getdents64(r4, 0x0, 0x0)
r5 = syz_genetlink_get_family_id$ipvs(0x0, r4)
sendmsg$IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000700)=ANY=[@ANYRESOCT, @ANYRES16=r5, @ANYBLOB], 0x100}, 0x1, 0x0, 0x0, 0x4804}, 0x0)
sendmsg$IPVS_CMD_GET_CONFIG(r3, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4820800}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r5, 0x4, 0x70bd25, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x10000}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x3}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xffff0001}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x42eb}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x6}]}, 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x40040)
shutdown(r1, 0x0)

16:57:47 executing program 1:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x200000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = fork()
r3 = gettid()
kcmp(r2, r3, 0x3, r1, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000240)={0x5, 0x80, 0x4, 0x81, 0x5, 0x81, 0x0, 0x6, 0x40, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x3, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x9, 0x6798}, 0x8, 0x5, 0x4f, 0x3, 0x1f, 0x0, 0x8, 0x0, 0x9, 0x0, 0xfffffffeffffffff}, r3, 0x10, r0, 0x1)
capset(&(0x7f0000000000)={0x333f1364, r3}, &(0x7f0000000040)={0x20, 0x9, 0x0, 0x100, 0x800})
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$sock_inet6_tcp_SIOCOUTQ(r5, 0x5411, &(0x7f0000000180))

16:57:47 executing program 2:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r1, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
openat(r0, &(0x7f0000000040)='./file1\x00', 0x400000, 0x13)
sendfile(r1, r2, 0x0, 0x100000001)

16:57:47 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(0x0, r3, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:57:47 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_open_dev$vcsa(&(0x7f0000000080), 0xff, 0x400)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_SPLICE={0x1e, 0x1, 0x0, @fd_index=0xa, 0x1, {0x0, r1}, 0x1f, 0x4, 0x0, {0x0, 0x0, r2}}, 0x1)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
socket$nl_audit(0x10, 0x3, 0x9)
r3 = syz_mount_image$nfs(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x1eec, 0x1, &(0x7f0000000240)=[{&(0x7f0000000180)="a03ecfe28a4961fa5955f6dccb15bd7bfa5c73435ab32f112f04dd06852b962cc5180ac03b99f70e47f8e612d48a7c8ade64a824fa4e4da98a0644c3734fc5a82d922f8a77079f1edc362939b9a599933ddc7702f7893dcdc8fcb019eee8c5105083962a07025af3c0b5b4e5a47d1beead9340c6aed3c1c981ec0282e5a5bf4e51aad944b021c69ed177019107c1", 0x8e, 0x100000001}], 0x210800, &(0x7f0000000280)=ANY=[@ANYBLOB="2f6465762f7663736123002c2f6465762f7663736123002caaaaaaaaaa2c5b2c2d2c342c66736d616769633d3078666666666666666663663466366337392c6d61736b3d4d41595f57524954452c7569643c", @ANYRESDEC, @ANYBLOB="2c6f626a5f747970653d41857b7b2c7365636c6148656c2c736d61636c66737472616e736d7574653d2f6465762fc900736123002c00"])
r4 = dup2(r3, r3)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r5, 0x0, r5)
openat$null(0xffffffffffffff9c, &(0x7f0000000340), 0x305002, 0x0)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r7 = fcntl$dupfd(r6, 0x0, r6)
connect$bt_sco(r7, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
openat2(r4, &(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)={0x20000, 0x84, 0xf}, 0x18)
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r9 = fcntl$dupfd(r8, 0x0, r8)
connect$bt_sco(r9, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r10 = fcntl$dupfd(r7, 0x406, 0xffffffffffffffff)
connect$bt_sco(r10, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:57:47 executing program 3:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4000, @fd_index=0x8, 0x4000000000, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r4 = syz_open_dev$vcsn(&(0x7f0000000040), 0x1, 0x84041)
syz_io_uring_submit(0x0, r2, &(0x7f0000000080)=@IORING_OP_FADVISE={0x18, 0x3, 0x0, @fd=r4, 0x10001, 0x0, 0x7, 0x1, 0x1}, 0x1)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FSYNC={0x3, 0x1, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x8)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000700)=@IORING_OP_RECVMSG={0xa, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000006c0)={&(0x7f0000000440)=@ax25={{0x3, @netrom}, [@bcast, @bcast, @bcast, @default, @netrom, @bcast, @bcast]}, 0x80, &(0x7f0000000640)=[{&(0x7f00000003c0)=""/12, 0xc}, {&(0x7f00000004c0)=""/90, 0x5a}, {&(0x7f0000000540)=""/205, 0xcd}], 0x3, &(0x7f0000000680)=""/23, 0x17}, 0x0, 0x40, 0x0, {0x2, r5}}, 0x7)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_POLL_REMOVE={0x7, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, {0x0, r5}}, 0x6)
syz_io_uring_submit(r1, r2, &(0x7f0000000600)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r4, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=@hci, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000400)=""/201, 0xc9}, {&(0x7f0000000500)=""/197, 0xc5}], 0x2}, 0x0, 0x16020, 0x1, {0x3, r5}}, 0x0)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r8 = fcntl$dupfd(r7, 0x0, r7)
connect$bt_sco(r8, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r9 = eventfd(0x9)
fcntl$dupfd(r9, 0x0, r8)
listen(r6, 0x6)
ioctl$sock_inet6_tcp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000180))

16:57:47 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x5fb6b3546c517d2e, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x119c6cda14e09dac, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001f7351e45c00"])
r5 = getpid()
r6 = fcntl$dupfd(0xffffffffffffffff, 0x0, r4)
setsockopt$inet6_tcp_int(r6, 0x6, 0x8, &(0x7f00000000c0)=0x1f, 0x4)
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r2, 0x6, &(0x7f00000003c0)={0x3, 0x0, &(0x7f0000000140)=[r6]}, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
rt_tgsigqueueinfo(r5, r5, 0x32, &(0x7f0000000340)={0x8, 0x2, 0xdbd})

[ 3112.784312] 9pnet: Could not find request transport: xen
[ 3112.799314] loop4: detected capacity change from 0 to 16896
[ 3112.840140] loop5: detected capacity change from 0 to 135266304
[ 3112.846794] nfs: Unknown parameter '/dev/vcsa#'
[ 3112.869962] loop4: detected capacity change from 0 to 16896
16:57:47 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000040)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}, 0x8)
shutdown(r1, 0x0)

16:57:47 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
fcntl$F_GET_RW_HINT(r3, 0x40b, &(0x7f00000000c0))
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="00000002681a7351e45c00"/25])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:57:47 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = fcntl$dupfd(r4, 0x0, r4)
connect$bt_sco(r5, &(0x7f0000000000)={0x1f, @none}, 0x8)
ioctl$sock_inet_SIOCSIFADDR(r5, 0x8916, &(0x7f0000000040)={'geneve1\x00', {0x2, 0x0, @empty}})
io_uring_enter(r3, 0x7c9d, 0x98ce, 0x0, &(0x7f0000000000)={[0x5]}, 0x8)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:57:47 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r2 = fcntl$dupfd(r0, 0x0, r0)
pidfd_send_signal(r1, 0x1b, &(0x7f0000000080)={0x41, 0xffffffff, 0x2}, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))

16:57:47 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
lseek(r1, 0x9, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r2, 0x0, 0x100000001)
openat(r0, &(0x7f0000000040)='./file1\x00', 0x260001, 0x2)

[ 3113.150104] loop4: detected capacity change from 0 to 16896
16:57:47 executing program 1:
syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r2 = syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r5, 0x0, 0x0}, 0x0)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FSYNC={0x3, 0x1, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x8)
dup(r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000700)=@IORING_OP_RECVMSG={0xa, 0x1, 0x0, r5, 0x0, &(0x7f00000006c0)={&(0x7f0000000440)=@ax25={{0x3, @netrom}, [@bcast, @bcast, @bcast, @default, @netrom, @bcast, @bcast]}, 0x80, &(0x7f0000000640)=[{&(0x7f00000003c0)=""/12, 0xc}, {&(0x7f00000004c0)=""/90, 0x5a}, {&(0x7f0000000540)=""/205, 0xcd}], 0x3, &(0x7f0000000680)=""/23, 0x17}, 0x0, 0x40, 0x0, {0x2, r6}}, 0x7)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_POLL_REMOVE={0x7, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, {0x0, r6}}, 0x6)
syz_io_uring_submit(r0, 0x0, &(0x7f0000000100)=@IORING_OP_LINK_TIMEOUT={0xf, 0x2, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0x77359400}, 0x1, 0x1, 0x1, {0x0, r6}}, 0x400)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r8 = fcntl$dupfd(r7, 0x0, r7)
ioctl$sock_inet6_tcp_SIOCOUTQ(r8, 0x5411, &(0x7f0000000180))
r9 = syz_open_procfs(0x0, &(0x7f0000000000)='net/packet\x00')
pidfd_send_signal(r9, 0x2a, &(0x7f0000000040)={0x1e, 0x7, 0x1}, 0x0)

16:57:47 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(0x0, r3, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:57:47 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = fcntl$dupfd(r0, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @none}, 0x8)
bind$bt_sco(0xffffffffffffffff, &(0x7f0000000100), 0x8)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = fcntl$dupfd(r1, 0x0, r3)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040), 0x10400, 0x0)
accept4$inet6(r4, &(0x7f0000000080)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80000)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r6, 0x0, r6)
fcntl$dupfd(r6, 0x0, r5)
openat(r2, &(0x7f0000000140)='./file0\x00', 0xa042, 0x18e)
shutdown(r5, 0x1)

[ 3113.397776] 9pnet: Could not find request transport: xen
[ 3113.614957] loop5: detected capacity change from 0 to 135266304
[ 3113.617080] nfs: Unknown parameter '/dev/vcsa#'
16:58:04 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
ioctl$sock_SIOCDELRT(r1, 0x890c, &(0x7f0000000040)={0x0, @nl=@unspec, @ethernet={0x6, @random="ccf9f112b41f"}, @vsock={0x28, 0x0, 0x0, @my=0x1}, 0xfffe, 0x0, 0x0, 0x0, 0x7, &(0x7f0000000000)='veth1_macvtap\x00', 0x6, 0x2, 0xe85})
fcntl$setstatus(r0, 0x4, 0x0)

16:58:04 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x8000000, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:58:04 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000000))
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r2, 0x0, r2)
preadv2(r2, &(0x7f0000000040), 0x0, 0x401, 0x8, 0x2)

16:58:04 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
clone3(&(0x7f0000000480)={0xa0200, &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000340)=<r3=>0x0, {0x1c}, &(0x7f00000020c0)=""/4096, 0x1000, &(0x7f0000000380)=""/55, &(0x7f00000003c0), 0x0, {r2}}, 0x58)
r4 = perf_event_open(0x0, r3, 0x100007, r2, 0x9)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r5, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r6 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0xb, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r4)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r7, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r9 = fcntl$dupfd(r8, 0x0, r8)
connect$bt_sco(r9, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$sock_SIOCOUTQ(r9, 0x5411, &(0x7f00000003c0))
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r6, r7]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:58:04 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0x100010, 0xffffffffffffffff, 0x10000000)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
r3 = dup(r0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000002, 0x1010, r3, 0x0)
r4 = accept4$unix(r3, &(0x7f0000000140), &(0x7f0000000080)=0x6e, 0x0)
r5 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000380)='.log\x00', 0x501000, 0x2)
ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(r5, 0xc0a85322, &(0x7f00000003c0))
getsockopt$SO_COOKIE(r4, 0x1, 0x39, &(0x7f00000001c0), &(0x7f0000000200)=0x8)
syz_io_uring_submit(0x0, r1, &(0x7f00000000c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x2e1, &(0x7f0000000100)=[{&(0x7f0000000040)=""/6, 0x6}], 0x1, 0x8, 0x0, {0x0, r2}}, 0xd8)
r6 = fcntl$dupfd(r0, 0x0, r0)
r7 = openat(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x440, 0x4)
syz_io_uring_setup(0x1aed, &(0x7f0000000280)={0x0, 0x3409, 0x8, 0x0, 0x2a1, 0x0, r7}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000300), &(0x7f0000000340))
connect$bt_sco(r6, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r6, 0x0)

16:58:04 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = signalfd(r0, &(0x7f0000000080)={[0xbd]}, 0x8)
connect$bt_sco(r1, &(0x7f00000000c0)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}, 0xffffff02)
r2 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed}, 0x8)
accept(r1, 0x0, &(0x7f0000000040))
io_cancel(0x0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x3, r1, &(0x7f0000000100)="e3254e81ccb801f79556ed2102f41225ff70758b2a2a6d51dc1ff1049180d17fbc88679359c6dbc210a027f06545a472ec9e1cabef135f8709ed8c74284f45fa480270730c4f6bd3fa2f117c86c2a0d112356e90e84ba892105a7906ba5b57b3b4df910b2b6ba772318d66a425b7058ad52064b854a3bf76ffa740650108404056d3346dc43968766cef06999018566940f972dde912ed420f2cf558f9c2ad5b516b6bf80bddabd705b770120c668c729f8cfb6e9c363a720776f9977b0927347a0235630d", 0xc5, 0x7, 0x0, 0x3, r1}, &(0x7f0000000240))

16:58:04 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x26401, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001)

16:58:04 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(0x0, r3, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, 0x0, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

[ 3130.613030] loop4: detected capacity change from 0 to 16896
[ 3130.625066] 9pnet: Could not find request transport: xen
16:58:21 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x9000000, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:58:21 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(0x0, r3, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, 0x0, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:58:21 executing program 3:
prctl$PR_GET_NO_NEW_PRIVS(0x27)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = pidfd_getfd(0xffffffffffffffff, r0, 0x0)
getsockopt$bt_l2cap_L2CAP_CONNINFO(r1, 0x6, 0x2, &(0x7f0000000000), &(0x7f0000000040)=0x6)
write$binfmt_elf64(r0, &(0x7f00000001c0)={{0x7f, 0x45, 0x4c, 0x46, 0x1f, 0x9c, 0x8, 0x40, 0x5, 0x3, 0x3, 0x2, 0x269, 0x40, 0x2c0, 0x0, 0xb3ea, 0x38, 0x2, 0xfffc, 0x3, 0x9}, [{0x6, 0x4, 0x2, 0x10001, 0xa771, 0x7f, 0x20, 0x8}], "079e5f8a9e0d2eb4d96c9928da", ['\x00']}, 0x185)
r2 = fcntl$dupfd(r0, 0x0, r0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = fcntl$dupfd(r3, 0x0, r3)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
syz_io_uring_setup(0x7a45, &(0x7f0000000080)={0x0, 0xcc8, 0x1, 0x1, 0x24b, 0x0, r4}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000100), &(0x7f0000000140))
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
ftruncate(r5, 0x4)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r7 = fcntl$dupfd(r6, 0x0, r6)
connect$bt_sco(r7, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r9 = fcntl$dupfd(r8, 0x0, r8)
connect$bt_sco(r9, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
pidfd_getfd(r7, r9, 0x0)

16:58:21 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x4000, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r2, 0x0, r2)
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x109800, 0x0)
connect$bt_sco(r3, &(0x7f0000000040)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}, 0x8)
shutdown(r1, 0x0)

16:58:21 executing program 2:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r1, 0x0, r1)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000080)={0x0, r0, 0xbda, 0x7fff, 0x7, 0x6})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r2, 0x800, 0x0)
r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
creat(&(0x7f0000000040)='./file1\x00', 0x110)
sendfile(r2, r3, 0x0, 0x100000001)

16:58:21 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000080)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}, 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:58:21 executing program 1:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x1a1800, 0x0)
getxattr(0x0, 0x0, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe76f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, r0, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
ioctl$EXT4_IOC_SWAP_BOOT(0xffffffffffffffff, 0x6611)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000140)={{0x1, 0x1, 0x18, r1, {0x3}}, './file0\x00'})
ioctl$GIO_FONT(0xffffffffffffffff, 0x4b60, &(0x7f0000000000)=""/128)
fremovexattr(0xffffffffffffffff, &(0x7f0000000380)=ANY=[@ANYBLOB="6f730800005789dd0eb1e7ee9d73e9f921f9275c6844544b7917f7"])
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
ioctl$SG_IO(0xffffffffffffffff, 0x127f, &(0x7f00000003c0)={0xe00, 0x0, 0x0, 0x0, @buffer={0x300, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x13, 0x0, 0x0})
ioctl$SG_SET_DEBUG(0xffffffffffffffff, 0x227e, &(0x7f0000000100)=0xffffffff)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x145622, 0x41)
ioctl$EXT4_IOC_SWAP_BOOT(r3, 0x6611)
statx(0xffffffffffffffff, &(0x7f0000000440)='./file0\x00', 0x0, 0x200, &(0x7f0000000280))
openat(r3, &(0x7f0000000200)='./file0\x00', 0x101140, 0x1a2)
sendmsg$inet6(r2, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001)
recvmmsg(r2, &(0x7f0000000000), 0x5ac, 0x0, 0x0)

16:58:21 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x5}, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/locks\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec8dd2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

[ 3147.183165] loop4: detected capacity change from 0 to 16896
16:58:21 executing program 6:
keyctl$KEYCTL_MOVE(0x1e, 0x0, 0xfffffffffffffffe, 0xfffffffffffffffc, 0x1)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_open_dev$mouse(&(0x7f0000000000), 0x4, 0x608000)
getsockopt$bt_sco_SCO_OPTIONS(r2, 0x11, 0x1, &(0x7f0000000080)=""/22, &(0x7f00000000c0)=0x16)
connect$bt_sco(r1, &(0x7f0000000040)={0x1f, @none}, 0x8)
fcntl$dupfd(r2, 0x406, r2)
shutdown(r1, 0x0)

[ 3147.236754] 9pnet: Could not find request transport: xen
16:58:21 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000040), &(0x7f0000000080)=0xc)

16:58:40 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0xa000000, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:58:40 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x406, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)
ioctl$SNAPSHOT_ALLOC_SWAP_PAGE(r1, 0x80083314, &(0x7f0000000040))
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x6402, 0x0)
shutdown(r2, 0x1)

16:58:40 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fsetxattr$trusted_overlay_nlink(r0, &(0x7f0000000080), &(0x7f00000000c0)={'L+', 0xfffffffffffffe01}, 0x16, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:58:40 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x0, 0x12, 0xffffffffffffffff, 0x10000000)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
syz_io_uring_submit(0x0, r1, &(0x7f0000001240)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000001200)={&(0x7f0000000000)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000080)=""/88, 0x58}, {&(0x7f0000000100)=""/67, 0x43}], 0x2, &(0x7f0000000200)=""/4096, 0x1000}, 0x0, 0x1}, 0x10000)
r4 = fcntl$dupfd(r0, 0x0, r0)
openat(r4, &(0x7f0000001280)='./file0\x00', 0x2c0, 0x100)
ioctl$sock_inet6_tcp_SIOCOUTQ(r4, 0x5411, &(0x7f0000000180))

16:58:40 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010, 0x84b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r1 = pkey_alloc(0x0, 0x2)
pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0)
pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x1, 0xffffffffffffffff)
mbind(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1, 0x0, 0x0, 0x0)
pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1)
pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, 0xffffffffffffffff)
pkey_free(0xffffffffffffffff)
pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r1)
pkey_mprotect(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x3000008, 0xffffffffffffffff)
munlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000)
r2 = creat(&(0x7f0000000040)='./file1\x00', 0x80)
pkey_free(0xffffffffffffffff)
fallocate(r2, 0x0, 0x0, 0x8800000)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/timer\x00', 0x0, 0x0)
pread64(r3, &(0x7f00000010c0)=""/4075, 0x676, 0x0)

16:58:40 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x200000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = fork()
r4 = gettid()
kcmp(r3, r4, 0x3, r2, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000240)={0x5, 0x80, 0x4, 0x81, 0x5, 0x81, 0x0, 0x6, 0x40, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x3, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x9, 0x6798}, 0x8, 0x5, 0x4f, 0x3, 0x1f, 0x0, 0x8, 0x0, 0x9, 0x0, 0xfffffffeffffffff}, r4, 0x10, r1, 0x1)
clone3(&(0x7f00000002c0)={0x4106c500, &(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0), {0x32}, &(0x7f0000000140)=""/40, 0x28, &(0x7f0000000180)=""/124, &(0x7f0000000200)=[r4, 0xffffffffffffffff], 0x2, {r0}}, 0x58)
r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x110)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r5, 0x0, 0x100000001)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0)
ioctl$EXT4_IOC_MIGRATE(r6, 0x6609)

16:58:40 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(0x0, r3, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, 0x0, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:58:40 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_CONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="050000000000000000000200000008000300", @ANYRES32=r3, @ANYBLOB='\b\x00?\x00\x00@'], 0x24}}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDPRL(0xffffffffffffffff, 0x89f5, &(0x7f0000000040)={'syztnl1\x00', &(0x7f0000000240)={'syztnl2\x00', <r4=>0x0, 0x29, 0x8, 0xbd, 0x8001, 0x20, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @mcast1, 0x40, 0x10, 0x8001, 0x55b07975}})
sendmsg$FOU_CMD_DEL(r1, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000140)={&(0x7f00000002c0)={0x5c, 0x0, 0x400, 0x70bd26, 0x25dfdbfb, {}, [@FOU_ATTR_PEER_V6={0x14, 0x9, @dev={0xfe, 0x80, '\x00', 0x1f}}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @remote}, @FOU_ATTR_IFINDEX={0x8, 0xb, r4}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e20}, @FOU_ATTR_PEER_V4={0x8, 0x8, @multicast2}, @FOU_ATTR_PEER_V4={0x8, 0x8, @broadcast}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e23}]}, 0x5c}, 0x1, 0x0, 0x0, 0x400c005}, 0x800)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r5 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r5, 0x5411, &(0x7f0000000180))

[ 3166.164754] 9pnet: Could not find request transport: xen
16:58:40 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)
r2 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x200000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = fork()
r5 = gettid()
kcmp(r4, r5, 0x3, r3, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000240)={0x5, 0x80, 0x4, 0x81, 0x5, 0x81, 0x0, 0x6, 0x40, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x3, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x9, 0x6798}, 0x8, 0x5, 0x4f, 0x3, 0x1f, 0x0, 0x8, 0x0, 0x9, 0x0, 0xfffffffeffffffff}, r5, 0x10, r2, 0x1)
r6 = clone3(&(0x7f0000000440)={0x100000, &(0x7f0000000180), &(0x7f00000001c0), &(0x7f0000000200), {0x41}, &(0x7f00000002c0)=""/192, 0xc0, &(0x7f0000000380)=""/65, &(0x7f0000000400)=[r5, r5, r4, r4, r4, r4, r4], 0x7, {r1}}, 0x58)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r1, 0xc018937d, &(0x7f00000004c0)={{0x1, 0x1, 0x18, <r7=>r2, {0x1b5}}, './file0\x00'})
preadv2(0xffffffffffffffff, &(0x7f0000001600)=[{&(0x7f0000000500)=""/20, 0x14}, {&(0x7f0000000540)=""/146, 0x92}, {&(0x7f0000000600)=""/4096, 0x1000}], 0x3, 0x4, 0x6, 0x11)
perf_event_open(&(0x7f0000000100)={0x4, 0x80, 0x9, 0xff, 0x7, 0xb1, 0x0, 0x6, 0x10000, 0x6, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x3, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1f, 0x2, @perf_bp={&(0x7f00000000c0), 0x3}, 0x40040, 0xffffffffffffffab, 0x900000, 0x5, 0x8, 0xffff1afa, 0x2, 0x0, 0x7, 0x0, 0x4}, r6, 0xf, r7, 0x1)
syz_open_procfs(r5, &(0x7f0000000040)='attr/exec\x00')

16:58:40 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_setup(0x3d25, &(0x7f0000000000)={0x0, 0xf725, 0x20, 0x0, 0xda}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080)=<r1=>0x0, &(0x7f00000000c0))
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0)
syz_io_uring_submit(r5, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r6, 0x0, r6)
syz_io_uring_submit(r1, r4, &(0x7f0000000100)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x4, 0x0, r6, 0x0, &(0x7f00000001c0)="0f42d1f1b31208aa382818e364282844bd8e27d3d206f5cf070f5da3a6ddfe9e82e9b31cb62be3e3350610521c32e32b1e62bff8f9ab4bb1c2e3774214e592853fd14097e37f2d8f787490807fa1111b9d1f8fb9178bfb42fce0556db1a16e7ee409f755fae0c7b47879f5f459754d3f090be033cbbb06d70c0c48bd5248c2c7a963376495d4d18ef6c605c45b6238c3f068e7c02bf7061f562e47389158d8b56ab811694499718def6ba20a46326643b7b4941a7e9811ff2900231f5a3871245a965b4578f6f2c2a00e77b685362c8c0229ff9796e75b2019f643b4c1e391c69c47e2ff3f944f6f737e0c3966feb29c", 0xf0, 0x20000043, 0x1}, 0x8)
r7 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r7, 0x5411, &(0x7f0000000180))

16:58:40 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140))
r3 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0)
syz_io_uring_submit(r6, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r2, r5, &(0x7f00000000c0)=@IORING_OP_WRITE={0x17, 0x9, 0x6000, @fd=r1, 0xc, &(0x7f0000000000)="b88680d056b6381d2896312c621f2eff1e42242a768d4286cc2eefba7193244706c02d1f991612839c88a101b0238932d1906abf01d08ead9b88b05db307a6a8430f30ff0536335f4a48cd3161beb150fd453e835fcda29fcd4d8f6fbfd076bf8e78d6a2ec54cf5f4e8f0d731d8b8adb485ceefd8d33c8cf94333621b5698b06adef6cc50128009693112f93f87e970fba1297c935ad11d47fa26a8464c31cc64212f70bc4dd87c35603487c006f0a", 0xaf, 0x1}, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:58:40 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r1, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r2=>0xffffffffffffffff, {0x80}}, './file0\x00'})
fsmount(r2, 0x1, 0x81)

16:58:40 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
openat(r0, &(0x7f00000000c0)='./file1\x00', 0x301000, 0xed)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r1, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r1, r2, 0x0, 0x100000001)

16:58:40 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000000))
r2 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000040)=0x80)

16:58:40 executing program 3:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
pipe(&(0x7f0000000000)={<r1=>0xffffffffffffffff})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r2=>r1, {<r3=>0xee01, 0xee01}}, './file0\x00'})
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r4, 0x0, r4)
statx(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x0, 0x400, &(0x7f0000000980)={0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0})
lstat(&(0x7f00000002c0)='./file1\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2, &(0x7f00000005c0)=ANY=[@ANYBLOB='trans=f', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c64666c74673ebc84c1b518f706ad06986964", @ANYRESHEX=r5, @ANYBLOB=',posixacl,access=any,version=9p2000.u,dfltgi', @ANYRESHEX=r6, @ANYBLOB=',version=9p2000,fowner=', @ANYRESDEC, @ANYBLOB=',dont_hash,defcontext=unconfined_u,measure,smackfshat=\',\'A,seclabel,pcr=00000000000000000051,defcontext=\x00ser_u,appraise,\x00'])
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r4, @ANYRES32=r3, @ANYRES32=r6, @ANYBLOB="1d2f66696c653000"])
r7 = fcntl$dupfd(r0, 0x0, r2)
r8 = openat$full(0xffffffffffffff9c, &(0x7f0000000100), 0x109642, 0x0)
sendmsg$NFNL_MSG_CTHELPER_NEW(r8, &(0x7f0000000380)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x48, 0x0, 0x9, 0x301, 0x0, 0x0, {0xc, 0x0, 0xee42}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x8}}, @NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x1}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x8}}, @NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x7}]}, 0x48}, 0x1, 0x0, 0x0, 0x44090}, 0x4004)
ioctl$sock_inet6_tcp_SIOCOUTQ(r7, 0x5411, &(0x7f0000000180))

16:58:54 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0xb000000, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:58:54 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ftruncate(r1, 0x5)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r2 = fcntl$dupfd(r0, 0x0, r0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r3, 0x0, r3)
ioctl$BTRFS_IOC_QUOTA_RESCAN_STATUS(r3, 0x8040942d, &(0x7f0000000080))
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:58:54 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, 0x12, r1, 0xdae7b000)

16:58:54 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4}, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r7 = fcntl$dupfd(r6, 0x0, r6)
connect$bt_sco(r7, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
poll(&(0x7f0000000440)=[{r2, 0x12}, {0xffffffffffffffff, 0x1000}, {r3, 0x408}, {r4, 0x200}, {0xffffffffffffffff, 0x4210}, {r5, 0x440}, {r7, 0x8000}], 0x7, 0x4)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r8, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x3, &(0x7f00000003c0)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x101}, {&(0x7f0000000340)="7a0b7e06f231bd398fd8868deb1f196666f96f6298360d1b0c37072aaa45e6aa51afb384d090a07f7b01f3953f9cd7dce85c2cbde12204b3ef9648f757d05dc6ef83f84b0b66ffffcedfb45e43425de461e8c98edb52019b00014056da12697bd6c0b71d84659b4f2deba281871b56b393dc4075", 0x74, 0x8}], 0x200c040, &(0x7f0000000140)=ANY=[@ANYBLOB="0000000268091110b12d283f8409d9a4feb8b7e20398b65caa1c9600"])
getpid()
openat(r2, 0xfffffffffffffffe, 0x182402, 0x11)
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r8]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:58:54 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r2, 0xa, 0x0, r3)
getsockopt$IP_SET_OP_VERSION(r1, 0x1, 0x53, &(0x7f0000000000), &(0x7f0000000040)=0x8)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f0000000200)=0x63, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r4 = fcntl$dupfd(r0, 0x0, r0)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r5, 0x0, r5)
r6 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
connect$bt_sco(r6, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
connect$inet6(r6, &(0x7f0000000240)={0xa, 0x4e24, 0x5, @mcast1, 0x7}, 0x1c)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r4, 0xc018937e, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r7=>r0, @in_args={0x4}}, './file0\x00'})
write$P9_RREADLINK(r7, &(0x7f0000000280)=ANY=[@ANYBLOB="18000008174200c3f9c9776ec2bbdbb00e00"/30], 0x10)
getsockopt$bt_BT_DEFER_SETUP(r5, 0x112, 0x7, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
ioctl$sock_inet6_tcp_SIOCOUTQ(r4, 0x5411, &(0x7f0000000180))

16:58:54 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_inet_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f0000000040)={'batadv_slave_0\x00', {0x2, 0x0, @empty}})
r1 = fcntl$dupfd(r0, 0x0, r0)
mmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1000008, 0x30, r0, 0x8276f000)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

16:58:54 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(0x0, r3, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:58:54 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = fsmount(r0, 0x1, 0x80)
openat(r1, &(0x7f0000000040)='./file1/file0\x00', 0xa00, 0xc)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r2, 0x0, 0x100000001)

[ 3180.275251] 9pnet: Could not find request transport: xen
16:58:54 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x200000, 0x0)
openat(r2, &(0x7f0000000040)='./file0\x00', 0x400, 0x172)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

[ 3180.323796] loop4: detected capacity change from 0 to 4096
16:58:54 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000040), &(0x7f0000000080)=0xc)

16:58:54 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
fcntl$dupfd(r0, 0x0, r0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000000))

16:58:54 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = signalfd4(r0, &(0x7f0000000040)={[0x3]}, 0x8, 0x800)
r2 = openat(r1, &(0x7f0000000080)='./file0\x00', 0x0, 0x101)
r3 = fcntl$dupfd(r0, 0x0, r0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r4, 0x0, r4)
sendfile(0xffffffffffffffff, r4, 0x0, 0x4)
writev(r2, &(0x7f00000001c0)=[{&(0x7f00000000c0)="d2100a8d22471e4c408d5ec47e9df87d95c9956dd2d64ee8957c601e45396c5855b89dbb853369ef512075c3b6267db8af43fefc3b59c23a5701e278060aee6a1739539effa8584cd5f756f809de870f195e8ba5698899aa16ac04672375a8973e0bb249af9f27b86ce52b5da012bf49d614fb279d9bdbc7cca880c2936b75eecceb7c31b7f375cbd5", 0x89}], 0x1)
ioctl$sock_inet6_tcp_SIOCOUTQ(r3, 0x5411, &(0x7f0000000180))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x3, 0x0, 0x0, 0x0, 0x23457}, 0xf06)

16:58:55 executing program 2:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
openat(r0, &(0x7f0000000040)='./file1\x00', 0x331a00, 0x8)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r1, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r1, r2, 0x0, 0x100000001)

16:58:55 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000480)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d206f9027b5d8f19c38d90552b1fd80f42978fe0000001a7351e45c00184ba9e8bb0afa0212912a0436ebe7f2ed9dc749821b740cc62f9ed26298ce6db956342c8d5229e0e506ad3b8e9040fbcb91f53ea8047a13bba85a6b4ae3c8d9c0abf570a827a34b565084d57b20de5210af8f23f6c149f8d5fae1173ae4bbf322b669a7f26d234332db0eb17c9b17298ce190bb2e34642ec230188f9f851938e011d6dfa7eced38694aff987ee44d91565479744ab1b4a90ef8071826424041e7b1bf7fb73b94c81d76fee019a136933fe3e1626b099bc2d5be03df206730ad6f2152c59e2da70caff33678996a08fc2f50f1d79c02e87e5793ea8bc2f9469f475f90e2acd7782bc05b2897bd57e8354d7a36"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:58:55 executing program 6:
timer_create(0x3, &(0x7f0000000000)={0x0, 0x1c, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000040)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000480)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
clock_gettime(0x0, &(0x7f0000000080)={<r1=>0x0, <r2=>0x0})
timer_settime(r0, 0x1, &(0x7f00000000c0)={{0x77359400}, {r1, r2+10000000}}, &(0x7f0000000440))
timer_delete(r0)
clock_gettime(0x0, &(0x7f0000000040)={<r3=>0x0, <r4=>0x0})
timer_settime(r0, 0x0, &(0x7f0000000080)={{r3, r4+10000000}, {0x0, 0x3938700}}, &(0x7f00000000c0))
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r6 = fcntl$dupfd(r5, 0x0, r5)
connect$bt_sco(r6, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r6, 0x0)

16:58:55 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r1, 0x0, r1)
fcntl$dupfd(r0, 0x406, r1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$full(0xffffffffffffff9c, &(0x7f0000000040), 0x121400, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$sock_inet6_tcp_SIOCOUTQ(r3, 0x5411, &(0x7f0000000180))

[ 3180.873277] loop4: detected capacity change from 0 to 16896
[ 3180.956470] loop4: detected capacity change from 0 to 16896
16:59:18 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0xd000000, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:59:18 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = accept$inet(0xffffffffffffffff, 0x0, &(0x7f0000000380))
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'veth0\x00'})
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r2 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r2, &(0x7f0000000000), 0x8)

16:59:18 executing program 2:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r1, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = fcntl$dupfd(r3, 0x0, r3)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r5, 0x0, r5)
sendfile(r4, r5, &(0x7f0000000040)=0x5, 0x6)
dup2(r2, r0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r1, r2, 0x0, 0x100000001)

16:59:18 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_io_uring_complete(0x0)
pidfd_send_signal(r2, 0x3d, &(0x7f0000000000)={0x2d, 0x0, 0x7}, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:59:18 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
ioctl$LOOP_SET_FD(r1, 0x4c00, r1)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x22, &(0x7f0000000040)=0x1, 0x4)
ioctl$sock_inet_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000080))
shutdown(r1, 0x0)

16:59:18 executing program 3:
socket$inet_udp(0x2, 0x2, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_open_dev$vcsa(&(0x7f0000000000), 0x7, 0x2a0402)
sendmmsg$inet(r1, &(0x7f0000000040), 0x0, 0x40)
socket$inet6_udplite(0xa, 0x2, 0x88)
r2 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r2, &(0x7f0000002440)={&(0x7f0000001b40)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000001f40)={&(0x7f0000002240)=ANY=[@ANYBLOB="e80100002b00000425bd7000fcdbdf2509000000f5da7078257c66b356e718074978fb56e7e1896478d7d6bc62ac096d45224650c04bcab19fdded5eeb2fdac69d4b1ded77b08d91710bf09274dc4fcd6702fb4407b9ec596a575352b105291efb2a84dbef72510965e5aca672c9e0ee9ff1603b706602778816e51f562b57dd7fbc2dfd3847e010522327f5a8fdaa3a6aa1a459151f8dcd18424a5df6e4af108838472234efa1e2f7b362ef38caad3fb27026083efa5e388575507631c461c49be6134b341e543c3b65af86fe947a0f511deb28bce7ed267470a6dded30c66ecbd4c10af7b9cffdcb2354bb746c88dd0e8145c9e71208000f00", @ANYRES32=r0, @ANYBLOB="6288236129f2d6e768c890880cdcec02e4a8e1b5d26d6ea93898eb2a21bcadc9994a1a16f37e22d46291adbb88aa5a5bcad56b7f67f269ea1f43635222e5da48293cb10d247ce95a22792a8ec3ed8d521e6c427331c5e8891eb9df2a0742c6530112056586a4c541d0daccec0fd1c02b29cf767a48df131e9a3c75476b2e23f7b7e1c36506cebfe7722d86974e7db70fac79e0f6afcd8f6f6292cde10a885366e654df0b4d8457f6dd4fafa4c0f6fe32b814a3b9b2d381138959f1593025339979029b47fb7361132f9abc2dc3840afa3014a9e2c239f604bac995713965e9f2cfcd19f0cc9884bb5100"], 0x1e8}, 0x1, 0x0, 0x0, 0x20044010}, 0x24000080)
clock_gettime(0x0, &(0x7f00000021c0)={<r3=>0x0, <r4=>0x0})
recvmmsg(r2, &(0x7f0000002080)=[{{&(0x7f00000000c0)=@phonet, 0x80, &(0x7f0000002700)=[{&(0x7f00000001c0)=""/114, 0x72}, {&(0x7f0000000140)=""/24, 0x18}, {&(0x7f0000001b00)}, {&(0x7f0000002580)=""/35, 0x23}, {&(0x7f00000025c0)=""/133, 0x85}, {&(0x7f0000002680)=""/128, 0x80}], 0x6}, 0x80000001}, {{&(0x7f0000000280)=@can, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000300)=""/145, 0x91}], 0x1, &(0x7f0000000400)=""/86, 0x56}, 0x7fffffff}, {{&(0x7f0000000480)=@nfc, 0x80, &(0x7f00000017c0)=[{&(0x7f0000000500)=""/124, 0x7c}, {&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f0000001580)=""/177, 0xb1}, {&(0x7f0000001640)=""/214, 0xd6}, {&(0x7f0000001740)=""/79, 0x4f}], 0x5, &(0x7f0000001840)=""/216, 0xd8}, 0x101}, {{&(0x7f0000001940)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @broadcast}}}, 0x80, &(0x7f0000002200)=[{&(0x7f00000019c0)=""/168, 0xa8}, {&(0x7f0000001a80)=""/73, 0x49}, {&(0x7f00000024c0)=""/150, 0x96}], 0x3, &(0x7f0000001b40)}, 0x8}, {{&(0x7f0000001b80)=@l2tp6, 0x80, &(0x7f0000001fc0)=[{&(0x7f0000001c00)=""/68, 0x44}, {&(0x7f0000001c80)=""/56, 0x38}, {&(0x7f0000001cc0)=""/192, 0xc0}, {&(0x7f0000001d80)=""/145, 0x91}, {&(0x7f0000001e40)=""/193, 0xc1}, {&(0x7f0000001f40)}, {&(0x7f0000001f80)=""/62, 0x3e}], 0x7, &(0x7f0000002040)=""/3, 0x3}, 0xfff}], 0x5, 0x10040, &(0x7f0000002480)={r3, r4+60000000})
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))

16:59:18 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(0x0, r3, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:59:18 executing program 4:
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000740)={<r0=>0x0}, &(0x7f0000000780)=0xc)
r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x80, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, @perf_bp={&(0x7f0000000140), 0xb}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x8, 0x10, 0x0, 0x0, 0x0, 0x8}, r0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r2 = perf_event_open(0x0, 0x0, 0xf, r1, 0xc)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r3, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r4 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x8, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r1, 0x3)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r6 = fcntl$dupfd(r5, 0x0, r5)
connect$bt_sco(r6, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0xde, 0xd3, 0x2, 0x20, 0x0, 0x338, 0x800, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x9, 0x1, @perf_bp={&(0x7f00000000c0), 0x9}, 0x202, 0x5, 0x3, 0x5, 0x7, 0xf2, 0x63, 0x0, 0x6, 0x0, 0x1}, 0x0, 0x10, r6, 0xb)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r2)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r7, 0x0, r7)
ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r7, 0x8008f513, &(0x7f00000003c0))
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r8, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000540)=ANY=[@ANYBLOB="20789b8b61c48f09642000b21da10fcc1d7bd0063696576da72a580496f734b099fbddc2b55e544128d2c6890273981f3a25ec8a48774a9b02cbc2f3e0b4aa0322df60af1771d6a368d000487294de85e3cfd57570002492fa6e10d9a0a697b1c0f81063d2afed66d77693a6fad2358324c60570e04fa396f6f2e9b4eef4152fa5feea5c15df1ed124229bd54112da14865f3e9e60ebd4770df4978baa2af037623af116808b3d81db7f000600"/190])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r4, r8]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

[ 3203.809023] 9pnet: Could not find request transport: xen
[ 3203.822996] loop4: detected capacity change from 0 to 16896
16:59:18 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r2, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4)
connect$inet6(r2, &(0x7f0000000100)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
sendmsg$inet(r2, &(0x7f00000000c0)={&(0x7f0000000000)={0x2, 0x4e21, @multicast1}, 0x10, 0x0}, 0x404c008)
connect$inet6(r2, &(0x7f0000000080)={0xa, 0x4e22, 0x1, @ipv4={'\x00', '\xff\xff', @empty}, 0x1}, 0x1c)
setsockopt$inet6_IPV6_RTHDR(r1, 0x29, 0x39, &(0x7f0000000040)={0x0, 0x4, 0xed063e702c296f72, 0x18, 0x0, [@ipv4={'\x00', '\xff\xff', @multicast2}, @rand_addr=' \x01\x00']}, 0x28)
r3 = fcntl$dupfd(r2, 0x0, r2)
sendmsg$inet6(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000001ac0)={{{@in6, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in6=@private1}, 0x0, @in=@initdev}}, &(0x7f0000001a80)=0xfffffffffffffda2)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = fcntl$dupfd(r5, 0x0, r5)
sendmsg$nl_generic(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="f80000001c00210cfffffffffff9f06ab8083214e8c7167d9b85d29e83b01df1ee2532386c4e622017246a951804d7491b1b50bdd12865aef323f8041d80e8b40f9e98e643da8978aa20260bf93696ba075b54c81e6450a6fa0f9e87e2b6e224bdbc39dbcf96ddc38a51f7f3b91d9e6fed2380fb998b06340be515dd22e0fd27ca86bccd9df4c6b3233a8aedeebd0ed4587bb7f669002d2ed764685cec08743482681efe6e7e757728bc2f4e40a5c82dc230114229c1e1c98750eed455c41138f3ea94eb12abe8a55904c5f7035286c0d4d39dd6168e3bc8b1385e463cdbbffbc4e2080001000a010100080002002a5c3a00000000000000"], 0xf8}, 0x1, 0x0, 0x0, 0x44801}, 0x4000000)
setsockopt$inet_pktinfo(r6, 0x0, 0x8, &(0x7f0000001a40)={r4, @multicast1, @multicast1}, 0xc)
ioctl$NS_GET_OWNER_UID(r3, 0xb704, &(0x7f00000001c0)=<r7=>0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000380)={{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in=@empty, 0x4e21, 0x9, 0x4e24, 0x4, 0xa, 0x80, 0x0, 0x6c, r4, r7}, {0xfffffffffffffffe, 0x80, 0x800, 0x7fffffff, 0xfffffffffffffffe, 0x1ac0, 0xfb5, 0x4}, {0x7fffffff, 0x9, 0x0, 0x975}, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1}, {{@in=@local, 0x4d2, 0x33}, 0x2, @in6=@remote, 0x0, 0x0, 0x3, 0x40, 0x3f, 0x2, 0x7}}, 0xe8)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000000)={@remote, r4}, 0x14)

16:59:18 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:59:18 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
syz_io_uring_submit(r4, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r6 = fcntl$dupfd(r5, 0x0, r5)
connect$bt_sco(r6, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
syz_io_uring_submit(r4, 0x0, &(0x7f0000000140)=@IORING_OP_READ_FIXED={0x4, 0x2, 0x4007, @fd=r6, 0x7, 0x0, 0x10001, 0xb, 0x1, {0x2}}, 0x400)
r7 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r7, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r7, 0x0)
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000480)=@IORING_OP_READ_FIXED={0x4, 0xc761513dce01cf8b, 0x4000, @fd, 0x6, 0xd517, 0x9, 0x9, 0x0, {0x2}}, 0x2)
openat$hpet(0xffffffffffffff9c, &(0x7f0000000180), 0x2a0542, 0x0)
r9 = fcntl$dupfd(r8, 0x0, r8)
connect$bt_sco(r9, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_FLAG_CMD(r7, 0x8982, &(0x7f0000000080)={0x7, 'veth0_virt_wifi\x00', {0x1}, 0x81})
shutdown(r8, 0x1)
sendmsg$NL80211_CMD_FRAME(r9, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="274292d6c68e7d3ef49d1d112220000000", @ANYRES16=0x0, @ANYBLOB="00012abd7000fddbdf253b00000008005700a40d000004008e00"], 0x20}, 0x1, 0x0, 0x0, 0x801}, 0x20000080)

[ 3204.087945] netlink: 220 bytes leftover after parsing attributes in process `syz-executor.3'.
16:59:18 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f00000000c0)=<r5=>0x0)
perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x8, 0x0, 0x0, 0x6, 0x0, 0x2, 0x4000, 0x8, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, @perf_config_ext={0x5, 0xffffffff}, 0x40000, 0x80000000, 0x80000001, 0x8, 0x400, 0x4, 0x6, 0x0, 0x8, 0x0, 0xffff}, r5, 0x5, r2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

[ 3204.153413] netlink: 220 bytes leftover after parsing attributes in process `syz-executor.3'.
16:59:18 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001)

16:59:18 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r1, 0xc018937d, &(0x7f0000000040)=ANY=[@ANYBLOB="010100645e", @ANYRES32=<r2=>0xffffffffffffffff, @ANYBLOB='\a\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
r3 = openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x880, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r2, 0xc0189372, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'})
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r1, 0x84009422, &(0x7f00000001c0)={0x0, 0x0, {}, {}, {0x0, @struct}})
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000000)='dctcp\x00', 0x6)

16:59:18 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
bind$bt_sco(r0, &(0x7f00000000c0)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}, 0x8)
pread64(r2, &(0x7f00000001c0)=""/230, 0xe6, 0xffffffffffffffff)
fsetxattr$trusted_overlay_redirect(r0, &(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x8, 0x3)
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x10000, 0x0)
r3 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r3, 0x5411, &(0x7f0000000180))
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = fcntl$dupfd(r4, 0x0, r4)
connect$bt_sco(r5, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
pidfd_send_signal(r5, 0xc, &(0x7f0000000000)={0x38, 0x2, 0x8b}, 0x0)

[ 3204.323092] loop4: detected capacity change from 0 to 16896
16:59:18 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
sendmsg$nl_netfilter(r1, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="400500001102010828bd7000fbdbdf25020000031803068008001800", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=r3, @ANYBLOB="15004d00564dd90598a2e5120426068421e7eed132000000ea55e1dd00f493cbadde46cab9f0c4cf09fabef8ba7f7806e700067ba06296b7cec3ef9e12a63c89b47e66069365216b9773fa9d95ecf36eb8a6a50e3f17691859ed98fd3fd21e6d27a1788fa761a43c494d4f205b71b3a2aca31fc51c6f992841052412219fa4d3d16908008b00", @ANYRES32=r1, @ANYBLOB='\b\x00x\x00', @ANYRES32=r1, @ANYBLOB="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"], 0x540}, 0x1, 0x0, 0x0, 0x40000}, 0x90)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)

16:59:32 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000080)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}, 0x8)

16:59:32 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0xf000000, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

16:59:32 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
io_cancel(0x0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x8, 0xdeb7, r1, &(0x7f0000000400)="2f0f04f9f7be15a71c1af1833a56a30d775ccb997f2ae097fbf35f5e5b4100055897e8bf19629f51ad0d25869c9c6e43e85940036ebb96ab5f5689fda9e4623c42f261028e1aad431f8d0888b3f85bb5d68dbb77236318c25cccc7193b34b6f417e67e863d89859da9f8ce76da7b438e1be34b86a9419ce550423bb4d66453cbe02678fea0ba902499a70f2057b85716d8a0b8a34882df9006e4355c230298789b0df09fcae3f4ec16938e6677", 0xad, 0x2200000000000000, 0x0, 0x3}, &(0x7f0000000280))
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f00000004c0)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000180)=0x28)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @none}, 0x8)
shutdown(r1, 0x0)
listen(r1, 0x0)
bind$bt_sco(r1, &(0x7f00000000c0)={0x1f, @none}, 0x8)
getsockopt$IP_SET_OP_GET_BYINDEX(r3, 0x1, 0x53, &(0x7f0000000040)={0x7, 0x7, 0x3}, &(0x7f0000000080)=0x28)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x300000f, 0x50, r3, 0x0)
r5 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0)
syz_io_uring_submit(r8, r7, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
syz_io_uring_submit(r4, r7, &(0x7f0000000200)=@IORING_OP_POLL_ADD={0x6, 0x1, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, {}, 0x1}, 0x40)
r9 = dup2(r1, r0)
bind$bt_sco(r9, &(0x7f0000000100)={0x1f, @none}, 0x8)
openat(r1, &(0x7f00000001c0)='./file0\x00', 0x101000, 0xa1)

16:59:32 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs2/binder-control\x00', 0x802, 0x0)
ioctl$BTRFS_IOC_QUOTA_CTL(r1, 0xc0109428, &(0x7f0000000340)={0x1, 0x7})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000140)={0x1, 0x1f, 0x4, 0x4, 0x5})
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000380)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00570f9704c277818060da317914faf0495e7ef293e3369a85084eaa923f48d0519cf267513af5745ee25f063e3c8616a67e2fbf70417ae9caa098258da14d3fac90d7866bf45e5bc1b1defd1e78709e100729b4"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:59:32 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(0x0, r3, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:59:32 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
bind$inet6(r3, &(0x7f0000000000)={0xa, 0x4e23, 0x8, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x5}, 0x1c)

16:59:32 executing program 2:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0xf8001, 0x8)
r1 = openat(r0, &(0x7f00000002c0)='./file1\x00', 0x181000, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
getresuid(&(0x7f0000000080), &(0x7f00000000c0)=<r4=>0x0, &(0x7f0000000140))
fsetxattr$security_capability(r2, &(0x7f0000000040), &(0x7f0000000180)=@v3={0x3000000, [{0x0, 0x9e}, {0x2040000, 0x4}], r4}, 0x18, 0x2)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r5, 0x800, 0x0)
r6 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x460040, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
write$binfmt_script(r6, &(0x7f0000000400)=ANY=[@ANYBLOB="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"/281], 0x119)
r7 = openat$cgroup_subtree(r1, &(0x7f0000000300), 0x2, 0x0)
r8 = openat2(r3, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380)={0x2574839278f5d183, 0x10, 0x1e}, 0x18)
ioctl$EXT4_IOC_MOVE_EXT(r7, 0xc028660f, &(0x7f00000003c0)={0x0, r8, 0x925, 0x2, 0x3ff, 0x7})
sendfile(r5, r6, 0x0, 0x100000001)
r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r10 = fcntl$dupfd(r9, 0x0, r9)
connect$bt_sco(r10, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
setsockopt$inet6_opts(r10, 0x29, 0x3b, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], 0x28)

16:59:32 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x107742, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000040)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="00927ba1fa000000317eea20000000000000"])
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r1, 0x0, r1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r2, 0x0, r2)
openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000002780)='/proc/thread-self/attr/sockcreate\x00', 0x2, 0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = fcntl$dupfd(r3, 0x0, r3)
connect$bt_sco(r4, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r6 = fcntl$dupfd(r5, 0x0, r5)
connect$bt_sco(r6, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
r7 = fcntl$dupfd(r2, 0x0, r6)
ioctl$sock_inet6_tcp_SIOCOUTQ(r7, 0x5411, &(0x7f0000000180))

16:59:32 executing program 2:
r0 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file1\x00', 0x404000, 0x0)
open(&(0x7f00000001c0)='./file1/file0\x00', 0x0, 0x24)
execveat(r0, &(0x7f0000000040)='./file1\x00', &(0x7f0000000180)=[&(0x7f0000000080)='\\my\x9e\xdcWJ\xbf\x84\xf3\x00', &(0x7f00000000c0)='}[\x00', &(0x7f0000000140)='trusted.overlay.redirect\x00'], &(0x7f0000000200), 0x1000)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r1, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r3, 0x0, r3)
sendfile(r3, r2, &(0x7f0000000240)=0x8, 0x100000000)
sendfile(r1, r2, 0x0, 0x100000001)

[ 3218.496467] 9pnet: Could not find request transport: xen
[ 3218.509037] loop4: detected capacity change from 0 to 16896
16:59:32 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
fcntl$dupfd(r0, 0x406, r0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000040))

16:59:33 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x52bc41, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
dup(r3)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:59:33 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
writev(r1, &(0x7f0000000200)=[{&(0x7f0000000000)="42eb6f685fb236e82a69ae8b7e937bf63b59851e134e24b8fd66b62392ddde13ea2ccad9e1857542aea2ba381ac5e513e9ba31c1693659e1cadfd218095f795efc3eb795f2c871edc558cd4c9539d5c804299e677d11df94e35481bd6c8d35596a56151be3f5b9a783cb05c6c3367cb59ae47237c61e0e44d827bb33a4de58cc4c6aff1fc06ce82f11ca17e780b2399af2c5", 0x92}, {&(0x7f00000000c0)="f78bc6dc8ec41e4e89b39fad8a9ccbe2f6c97d7c30d24b9e5f58d103da17ceb14307e1eb12eafa93edaed3e34b78e79cac8c86b67795b37ef4dfde89a9af77b78c22bd52de17af77c08d4b5fca2b6f1a374e420842125934f3e56f3282e8b8b3952f70c503af64b436a9312761f89cf1be428c36080fbbd145f9e853bec7ea3e1d9c54b77c733ac50599afde5c52259a062fb5696d38", 0x96}, {&(0x7f00000001c0)="968759b0080433133970b13b1b04c136985040edf316150001b4d94d59e5c28904c30a850bcd", 0x26}], 0x3)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:59:33 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
pidfd_send_signal(r1, 0x10, &(0x7f0000000000)={0x3c, 0x2, 0x83}, 0x0)
r2 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))

16:59:33 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x2, 0x48)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>0xffffffffffffffff}, './file1/file0\x00'})
write(r2, &(0x7f00000000c0)="b0bd68e52ecc99b160b0dde1b255ddb0ff182fdd22", 0x15)
sendfile(r0, r1, 0x0, 0x100000001)

16:59:33 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r6 = fcntl$dupfd(r5, 0x0, r5)
connect$bt_sco(r6, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
syz_io_uring_setup(0xcc3, &(0x7f0000000340)={0x0, 0x1832, 0x1, 0x0, 0x24f, 0x0, r6}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140))
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:59:33 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$VFAT_IOCTL_READDIR_BOTH(r0, 0x82307201, &(0x7f0000000200)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

[ 3219.147149] loop4: detected capacity change from 0 to 16896
16:59:46 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xba}, 0x40, 0x0, 0x3, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x0, 0x4, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
fcntl$setown(r2, 0x8, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
r5 = getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r7 = fcntl$dupfd(r6, 0x0, r6)
r8 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
connect$bt_sco(r8, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
sendmsg$NFT_MSG_GETSETELEM(r8, &(0x7f0000000480)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1001800}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x38, 0xd, 0xa, 0x101, 0x0, 0x0, {0x0, 0x0, 0x7}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x38}, 0x1, 0x0, 0x0, 0x41}, 0x8040000)
connect$bt_sco(r7, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
perf_event_open(&(0x7f0000000340)={0xda459bd72687b3e2, 0x80, 0x8, 0x9, 0xff, 0x4, 0x0, 0x8001, 0x52010, 0x6, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x3, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_bp={&(0x7f00000000c0), 0x3}, 0x40400, 0x401, 0x3, 0x0, 0x476, 0x80000001, 0x5, 0x0, 0x1f, 0x0, 0x8}, r5, 0xffffffffffffffff, r7, 0x1)

16:59:46 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = fcntl$dupfd(r4, 0x0, r4)
connect$bt_sco(r5, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x2c, 0x10, 0x400, 0x70bd27, 0x25dfdbfc, {0x11}, [@typed={0x8, 0x60, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x25, 0x0, 0x0, @fd=r3}, @typed={0x8, 0x60, 0x0, 0x0, @fd=r5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x400c080)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
ioctl$EXT4_IOC_GROUP_ADD(r3, 0x40286608, &(0x7f0000000000)={0x6, 0x77, 0xfffffffffffffffa, 0x9, 0xffffffc4, 0x4})
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:59:46 executing program 3:
socket$inet_udp(0x2, 0x2, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
connect$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
sendmsg$nl_generic(r3, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="dc0000003500200029bd7000fddbdf2515000000a838b489f7223eb418b78861a012fe2d0da27140227673b4d0bb1b0cc1cef700a9c9bed935470b80c23c970c4691c855777493f006d8a48d1409a8f160ad907ab221bf9ed3296fcc9b0469859dd750055843c5987f7431ab2db50230c7c5b786bd53765e458c2459e7343dece36b6d1511c579703d9ca67098ae3a0cbfc5cb9a02ba0d8d5ca467d000ec473162fc99d3b9d7a7cb82de51d1339332a725f1b2bd827eae401398410e9a51b8045db167afa0f3685862476327ae396016e1c22a080076000500000000"], 0xdc}, 0x1, 0x0, 0x0, 0x24040000}, 0x50)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:59:46 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(0x0, r3, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340), 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:59:46 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0)
syz_io_uring_submit(r5, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f0000000080)=@IORING_OP_FSYNC={0x3, 0x1, 0x0, @fd_index=0x1, 0x0, 0x0, 0x0, 0x1, 0x1, {0x0, r6}}, 0x6)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

16:59:46 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000003)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001)

16:59:46 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @none}, 0x8)
ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r0, 0x80489439, &(0x7f0000001880))
shutdown(r1, 0x0)
sendmsg$SMC_PNETID_DEL(r1, &(0x7f0000001840)={&(0x7f0000001540), 0xc, &(0x7f0000001800)={&(0x7f0000001740)={0x80, 0x0, 0x400, 0x70bd2b, 0x25dfdbfe, {}, [@SMC_PNETID_IBPORT={0x5, 0x4, 0x2}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'veth1_to_hsr\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x2}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x2}, @SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz2\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'veth1\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x1}, @SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x80}}, 0x20000800)
syz_io_uring_setup(0xc50, &(0x7f0000000040)={0x0, 0x8abc, 0x4, 0x1, 0xd4, 0x0, r1}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f00000000c0)=<r2=>0x0, &(0x7f0000000100))
r3 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x8, 0xfffffffd}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f00000017c0)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0)
syz_io_uring_submit(r6, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, r5, &(0x7f0000001700)=@IORING_OP_READV=@pass_iovec={0x1, 0x4, 0x2000, @fd_index=0x3, 0x8, &(0x7f0000001640)=[{&(0x7f0000000140)=""/48, 0x30}, {&(0x7f0000000180)=""/183, 0xb7}, {&(0x7f0000000240)=""/228, 0xe4}, {&(0x7f0000000340)=""/4096, 0x1000}, {&(0x7f0000001340)=""/154, 0x9a}, {&(0x7f0000001400)=""/195, 0xc3}, {&(0x7f0000001500)=""/53, 0x35}, {&(0x7f0000001540)}, {&(0x7f0000001580)=""/170, 0xaa}], 0x9, 0xa, 0x1, {0x0, r7}}, 0x6)

16:59:46 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x11000000, &(0x7f00000000c0), 0x0, &(0x7f0000000800)=ANY=[])

[ 3232.640237] loop4: detected capacity change from 0 to 16896
[ 3232.674992] 9pnet: Could not find request transport: xen
[ 3232.728236] loop4: detected capacity change from 0 to 16896
16:59:47 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendto(r0, &(0x7f0000000080)="331c9622df2769d0318d4b4cf60bc1b2e06b074fabb4fb380eca05f11af2dce5dbd05ee117d1d2ca4c0f818a7f75f575c60cc9ff43c57b6a67432b2df379a0c4c92e067b928f89c842675700b00de7a2899e716303a375677a51382d438b70cb58f1", 0x62, 0x4004040, &(0x7f0000000100)=@x25, 0x80)
r1 = io_uring_setup(0x1ee8, &(0x7f0000000000)={0x0, 0x4a8f, 0x8, 0x2, 0x2cb})
r2 = syz_open_pts(0xffffffffffffffff, 0x501002)
r3 = fcntl$dupfd(r1, 0x0, r2)
syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0xba2, &(0x7f00000001c0)={0x0, 0x42e7, 0x10, 0x2, 0x49, 0x0, r1}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000fed000/0x11000)=nil, &(0x7f0000000240), &(0x7f0000000280)=<r6=>0x0)
recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000400)=""/1, 0x1}, {&(0x7f0000000440)=""/243, 0xf3}, {&(0x7f0000000540)=""/242, 0xf2}, {&(0x7f0000000640)=""/117, 0x75}, {&(0x7f00000006c0)=""/149, 0x95}, {&(0x7f0000000780)}, {&(0x7f00000007c0)=""/96, 0x60}, {&(0x7f0000000900)=""/4096, 0x1000}], 0x8, &(0x7f0000001900)=""/194, 0xc2}, 0x6}], 0x1, 0x2000, 0x0)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_setup(0x5e02, &(0x7f0000001a40)={0x0, 0xd190, 0x20, 0x1, 0x1cb, 0x0, r3}, &(0x7f0000ff6000/0x2000)=nil, &(0x7f0000ff6000/0x2000)=nil, &(0x7f0000000780), &(0x7f0000001ac0))
r8 = fcntl$dupfd(r7, 0x0, r7)
connect$bt_sco(r8, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
syz_io_uring_submit(r4, r6, &(0x7f00000002c0)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4000, @fd=r8, 0x0, 0x0, 0x0, 0x10, 0x0, {0xaebf}}, 0x8)
ioctl$sock_inet6_tcp_SIOCOUTQ(r3, 0x5411, &(0x7f0000000180))
r9 = openat$zero(0xffffffffffffff9c, &(0x7f0000001b00), 0x80, 0x0)
read(r9, &(0x7f0000001b40)=""/41, 0x29)

16:59:47 executing program 6:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs2/binder-control\x00', 0x802, 0x0)
ioctl$BTRFS_IOC_QUOTA_CTL(r1, 0xc0109428, &(0x7f0000000340)={0x1, 0x7})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000140)={0x1, 0x1f, 0x4, 0x4, 0x5})
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000380)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00570f9704c277818060da317914faf0495e7ef293e3369a85084eaa923f48d0519cf267513af5745ee25f063e3c8616a67e2fbf70417ae9caa098258da14d3fac90d7866bf45e5bc1b1defd1e78709e100729b4"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:59:47 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r2 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))
r3 = epoll_create1(0x80000)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r4=>r1, {0x80000001}}, './file0\x00'})
ioctl$sock_inet6_tcp_SIOCOUTQ(r4, 0x5411, &(0x7f0000000080))
r5 = fcntl$dupfd(r1, 0x0, r0)
epoll_ctl$EPOLL_CTL_MOD(r3, 0x3, r5, &(0x7f0000000000)={0x8})

[ 3232.969054] loop6: detected capacity change from 0 to 16896
16:59:47 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffe000000000003, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
close(r3)
recvmsg$unix(r2, &(0x7f00000008c0)={&(0x7f0000000340), 0x6e, &(0x7f0000000780)=[{&(0x7f00000003c0)=""/87, 0x57}, {&(0x7f0000000480)=""/132, 0x84}, {&(0x7f0000000140)=""/29, 0x1d}, {&(0x7f0000000540)=""/115, 0x73}, {&(0x7f00000005c0)=""/194, 0xc2}, {&(0x7f00000006c0)=""/131, 0x83}], 0x6, &(0x7f0000000800)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x98}, 0x1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="00000002680900801a7311e45c00"/25])
getpid()
r5 = syz_open_dev$vcsn(&(0x7f00000000c0), 0x7, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:59:47 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x200000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = fork()
r4 = gettid()
kcmp(r3, r4, 0x3, r2, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000240)={0x5, 0x80, 0x4, 0x81, 0x5, 0x81, 0x0, 0x6, 0x40, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x3, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x9, 0x6798}, 0x8, 0x5, 0x4f, 0x3, 0x1f, 0x0, 0x8, 0x0, 0x9, 0x0, 0xfffffffeffffffff}, r4, 0x10, r1, 0x1)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r5=>r0, {0x3}}, './file0\x00'})
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x80, 0x4, 0x7, 0x7, 0x0, 0x400, 0x8082, 0x8, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x4, 0x0, @perf_config_ext={0x67, 0x8}, 0x8100, 0xfe, 0x7, 0x9, 0x80000001, 0x10001, 0x3f, 0x0, 0x401, 0x0, 0x8}, r4, 0x0, r5, 0x8)
r6 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r6, 0x5411, &(0x7f0000000180))

16:59:47 executing program 6:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs2/binder-control\x00', 0x802, 0x0)
ioctl$BTRFS_IOC_QUOTA_CTL(r1, 0xc0109428, &(0x7f0000000340)={0x1, 0x7})
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000140)={0x1, 0x1f, 0x4, 0x4, 0x5})
pread64(r4, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000380)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00570f9704c277818060da317914faf0495e7ef293e3369a85084eaa923f48d0519cf267513af5745ee25f063e3c8616a67e2fbf70417ae9caa098258da14d3fac90d7866bf45e5bc1b1defd1e78709e100729b4"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r4]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

[ 3233.108142] loop4: detected capacity change from 0 to 16896
16:59:47 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
sendfile(r0, r1, 0x0, 0x100000001)
r2 = syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x4, 0x6, &(0x7f00000002c0)=[{&(0x7f0000000600)="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", 0x1000, 0x1400000}, {&(0x7f0000001600)="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", 0x1000, 0xb3dc}, {&(0x7f00000000c0)="c44f539d96681e77861f2d1376a48573a391fccfb23c818406c8f6", 0x1b, 0x7}, {&(0x7f0000000140)="d585da5cda35b91c73f104d972a7c92974fdb1c24f96500e3896482c8b11d375856a7eca42e61d94b1d368da2acfa55b60ff4acd80bbfa306c03d7f5675fcc7b3540653ae4e3786a25b7c0798e0f0ec02c2f20d9390894f2a8c690b926314e3e20dfa6fb1f6a8a7c18c1", 0x6a, 0x9}, {&(0x7f00000001c0)="eb5af6125c0b79f313b7348e68b2097f03fa33e0bec2f8cf2bf30033a5e8c8dc310f8effdb536f87ac6a1bef4dd1e1a9d6c7f2ca633f0721e1ade3d0edfc0d4c7fc24d439079a1c32f7664a437d0f2dcc630a68f7f27227c5761b8aa3adf00cf3ba3bd91fa66c450890e", 0x6a, 0x1}, {&(0x7f0000002600)="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", 0x1000, 0x3}], 0x400, &(0x7f0000000380)={[{@nr_inodes={'nr_inodes', 0x3d, [0x2d, 0x74, 0x6b, 0x35, 0x6b, 0x33, 0x2d, 0x31, 0x25]}}, {@huge_always}, {@uid={'uid', 0x3d, 0xee00}}, {@nr_inodes={'nr_inodes', 0x3d, [0x6b, 0x65, 0x39, 0x32, 0x34, 0x37, 0x78, 0x35]}}], [{@smackfsfloor={'smackfsfloor', 0x3d, ')\xc3}\\&&-$}-+:+))'}}, {@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}]})
ioctl$FS_IOC_GETFSMAP(r2, 0xc0c0583b, &(0x7f0000000400)={0x0, 0x0, 0x1, 0x0, '\x00', [{0x2, 0x8001, 0x1000, 0x7f, 0xffffffff, 0xffffffffffff0000}, {0xc691, 0x0, 0x8, 0x1e, 0x7fff, 0x7a7}], ['\x00']})

[ 3233.186922] loop4: detected capacity change from 0 to 16896
[ 3233.212168] loop6: detected capacity change from 0 to 16896
[ 3233.241239] loop2: detected capacity change from 0 to 41943040
[ 3233.243354] tmpfs: Bad value for 'nr_inodes'
16:59:47 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = fsmount(r1, 0x0, 0x8)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r2, 0x8982, &(0x7f0000000000)={0x2, 'ipvlan1\x00', {0x8001}, 0xb6})
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))

16:59:47 executing program 4:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xf, r0, 0xc)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
r3 = perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x1, 0x1, 0x0, 0x1000, 0xc5021, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x188, 0x5, 0x6, 0xd, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0xffffffffffffffff, 0x0, r0, 0x3)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = fcntl$dupfd(r4, 0x0, r4)
connect$bt_sco(r5, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
write$bt_hci(r5, &(0x7f00000000c0)=ANY=[@ANYBLOB="01041001ac"], 0x5)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
pread64(r6, &(0x7f0000000180)=""/128, 0x80, 0xffffffffffffff1d)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x200c040, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000268091110b1b15ec89d2078fe0000001a7351e45c00"])
getpid()
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0x4, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, r3, r6]}, 0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

16:59:47 executing program 0:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000e40))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(0xffffffffffffffff, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
inotify_init1(0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, 0x0, &(0x7f00000000c0))
mount$9p_xen(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=xen,access=', @ANYBLOB=',loose,obj_type', @ANYBLOB=',subv_lser=,,\x00'])
openat$null(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10100, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file1\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x8, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x54, 0x3)
syz_io_uring_setup(0x2201, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(0x0, r3, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000500)={&(0x7f0000000340), 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, 0x34, 0x400, 0x70bd2b, 0x25dfdbfb, {0x9}, [@nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @fd=r2}]}, @typed={0x4, 0x52}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
sendfile(r1, r2, 0x0, 0x100000001)

16:59:47 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='blkio.bfq.io_queued\x00', 0x0, 0x0)
r3 = getpgrp(0xffffffffffffffff)
syz_open_dev$vcsa(&(0x7f00000000c0), 0x401, 0x1307f7e172e62c5c)
mq_notify(r2, &(0x7f0000000040)={0x0, 0x25, 0x60e3e285d7f506cf, @tid=r3})

2025/03/30 16:59:47 Manager.Poll call failed: read tcp 127.0.0.1:55470->127.0.0.1:37083: i/o timeout
[ 3233.419819] loop4: detected capacity change from 0 to 16896
[ 3233.430848] 9pnet: Could not find request transport: xen
[ 3233.509629] loop2: detected capacity change from 0 to 41943040
[ 3233.521182] tmpfs: Bad value for 'nr_inodes'

VM DIAGNOSIS:
17:04:57  Registers:
info registers vcpu 0
RAX=ffffffff83e8ce00 RBX=0000000000000000 RCX=ffffffff83e749ac RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff83e8d408 RBP=0000000000000000 RSP=ffffffff84e07e38
R8 =0000000000000001 R9 =ffff88806ce3c12b R10=ffffed100d9c7825 R11=0000000000000001
R12=0000000000000000 R13=ffffffff85678e48 R14=0000000000000000 R15=dffffc0000000000
RIP=ffffffff83e8ce0e RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000560e255279ac CR3=000000000e938000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000
XMM02=00000000000000000000000000000000 XMM03=746f72702f6374652f00656372000a23
XMM04=40404040404040404040404040404040 XMM05=5a5a5a5a5a5a5a5a5a5a5a5a5a5a5a5a
XMM06=20202020202020202020202020202020 XMM07=00000000000000000000000000000000
XMM08=3270682820262620294c4c554e203d21 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=ffffffff83e8ce00 RBX=0000000000000001 RCX=ffffffff83e749ac RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff83e8d408 RBP=0000000000000001 RSP=ffff888008987e70
R8 =0000000000000001 R9 =ffff88806cf3c12b R10=ffffed100d9e7825 R11=0000000000000001
R12=0000000000000001 R13=ffffffff85678e48 R14=0000000000000000 R15=dffffc0000000000
RIP=ffffffff83e8ce0e RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f44dc71d010 CR3=0000000009ad6000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=2ad17a559e6d1436f883ba2ac3c2a74e
XMM02=d7606331538a3767b9c89bf1d8a891ab XMM03=b62d0cab53247f16e446c0fb2edc94a9
XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000
XMM06=0d0c0f0e09080b0a0504070601000302 XMM07=0e0d0c0f0a09080b0605040702010003
XMM08=64707466730073254073250070746673 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000